Warning: Permanently added '[localhost]:2671' (ED25519) to the list of known hosts.
1970/01/01 00:05:02 ignoring optional flag "sandboxArg"="0"
1970/01/01 00:05:06 parsed 1 programs
[  319.022127][ T3520] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  333.082789][ T3536] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  333.103933][ T3536] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  334.931370][ T3536] hsr_slave_0: entered promiscuous mode
[  334.992974][ T3536] hsr_slave_1: entered promiscuous mode
[  336.524933][ T3536] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  336.570998][ T3536] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  336.606886][ T3536] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  336.643908][ T3536] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  338.943916][ T3536] 8021q: adding VLAN 0 to HW filter on device bond0
[  345.600485][ T3536] veth0_vlan: entered promiscuous mode
[  345.679491][ T3536] veth1_vlan: entered promiscuous mode
[  345.907508][ T3536] veth0_macvtap: entered promiscuous mode
[  345.959501][ T3536] veth1_macvtap: entered promiscuous mode
[  346.248754][ T3536] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  346.252819][ T3536] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  346.253935][ T3536] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  346.255505][ T3536] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  347.827821][  T986] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  347.998905][  T986] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.327981][  T986] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  348.482300][  T986] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  350.145042][  T986] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  350.218729][  T986] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  350.285303][  T986] bond0 (unregistering): Released all slaves
[  350.636469][  T986] hsr_slave_0: left promiscuous mode
[  350.722107][  T986] hsr_slave_1: left promiscuous mode
[  350.867344][  T986] veth1_macvtap: left promiscuous mode
[  350.868596][  T986] veth0_macvtap: left promiscuous mode
[  350.881775][  T986] veth1_vlan: left promiscuous mode
[  350.884645][  T986] veth0_vlan: left promiscuous mode
1970/01/01 00:05:58 executed programs: 0
[  364.029342][ T3713] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  364.073707][ T3713] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.390839][ T3713] hsr_slave_0: entered promiscuous mode
[  366.434028][ T3713] hsr_slave_1: entered promiscuous mode
[  368.197234][ T3713] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  368.227835][ T3713] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  368.272829][ T3713] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  368.318614][ T3713] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  370.094314][ T3713] 8021q: adding VLAN 0 to HW filter on device bond0
[  376.552196][ T3713] veth0_vlan: entered promiscuous mode
[  376.596296][ T3713] veth1_vlan: entered promiscuous mode
[  376.809819][ T3713] veth0_macvtap: entered promiscuous mode
[  376.881227][ T3713] veth1_macvtap: entered promiscuous mode
[  377.137140][ T3713] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  377.138781][ T3713] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  377.146007][ T3713] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  377.147303][ T3713] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
1970/01/01 00:06:17 executed programs: 2
[  377.925181][ T3851] BUG: Bad page cache in process syz.0.15  pfn:4b63a
[  377.926893][ T3851] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x0 pfn:0x4b63a
[  377.932726][ T3851] memcg:f4f00000060ad000
[  377.933703][ T3851] aops:shmem_aops ino:401
[  377.935508][ T3851] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  377.938467][ T3851] raw: 01ffc0000004002d ffffc1ffc01a0988 ffffc1ffc01a2fc8 f1f00000070f2470
[  377.939607][ T3851] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  377.941323][ T3851] page dumped because: still mapped when deleted
[  377.942557][ T3851] CPU: 1 PID: 3851 Comm: syz.0.15 Not tainted 6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  377.944309][ T3851] Hardware name: linux,dummy-virt (DT)
[  377.945320][ T3851] Call trace:
[  377.945863][ T3851]  dump_backtrace+0x94/0xec
[  377.946695][ T3851]  show_stack+0x18/0x24
[  377.947408][ T3851]  dump_stack_lvl+0x78/0x90
[  377.948043][ T3851]  dump_stack+0x18/0x24
[  377.948783][ T3851]  filemap_unaccount_folio+0x118/0x278
[  377.949568][ T3851]  __filemap_remove_folio+0x3c/0x178
[  377.950365][ T3851]  filemap_remove_folio+0x48/0xa8
[  377.951024][ T3851]  truncate_inode_folio+0x30/0x4c
[  377.951773][ T3851]  shmem_undo_range+0x208/0x620
[  377.958460][ T3851]  shmem_evict_inode+0x130/0x2dc
[  377.959392][ T3851]  evict+0xb4/0x198
[  377.967155][ T3851]  iput+0x100/0x1b8
[  377.969041][ T3851]  dentry_unlink_inode+0xc0/0x188
[  377.970663][ T3851]  __dentry_kill+0x7c/0x1d4
[  377.971623][ T3851]  dput.part.0+0x30/0xbc
[  377.973568][ T3851]  dput+0x4c/0x50
[  377.974662][ T3851]  __fput+0x110/0x2d4
[  377.975550][ T3851]  ____fput+0x10/0x1c
[  377.976401][ T3851]  task_work_run+0x78/0xd0
[  377.977329][ T3851]  do_notify_resume+0x134/0x164
[  377.978127][ T3851]  el0_svc+0xc8/0xf8
[  377.978841][ T3851]  el0t_64_sync_handler+0x100/0x12c
[  377.979832][ T3851]  el0t_64_sync+0x19c/0x1a0
[  377.981207][ T3851] Disabling lock debugging due to kernel taint
[  378.020903][ T3851] BUG: Bad page cache in process syz.0.15  pfn:468bf
[  378.022027][ T3851] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x1 pfn:0x468bf
[  378.023332][ T3851] memcg:f4f00000060ad000
[  378.024881][ T3851] aops:shmem_aops ino:401
[  378.026720][ T3851] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.030730][ T3851] raw: 01ffc0000004002d ffffc1ffc02d8e88 ffffc1ffc02d7448 f1f00000070f2470
[  378.032840][ T3851] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  378.036051][ T3851] page dumped because: still mapped when deleted
[  378.038334][ T3851] CPU: 1 PID: 3851 Comm: syz.0.15 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.042420][ T3851] Hardware name: linux,dummy-virt (DT)
[  378.044326][ T3851] Call trace:
[  378.045524][ T3851]  dump_backtrace+0x94/0xec
[  378.047175][ T3851]  show_stack+0x18/0x24
[  378.048118][ T3851]  dump_stack_lvl+0x78/0x90
[  378.049678][ T3851]  dump_stack+0x18/0x24
[  378.051613][ T3851]  filemap_unaccount_folio+0x118/0x278
[  378.053480][ T3851]  __filemap_remove_folio+0x3c/0x178
[  378.055233][ T3851]  filemap_remove_folio+0x48/0xa8
[  378.056550][ T3851]  truncate_inode_folio+0x30/0x4c
[  378.059000][ T3851]  shmem_undo_range+0x208/0x620
[  378.061016][ T3851]  shmem_evict_inode+0x130/0x2dc
[  378.063105][ T3851]  evict+0xb4/0x198
[  378.064688][ T3851]  iput+0x100/0x1b8
[  378.066293][ T3851]  dentry_unlink_inode+0xc0/0x188
[  378.067856][ T3851]  __dentry_kill+0x7c/0x1d4
[  378.069489][ T3851]  dput.part.0+0x30/0xbc
[  378.071579][ T3851]  dput+0x4c/0x50
[  378.073073][ T3851]  __fput+0x110/0x2d4
[  378.074572][ T3851]  ____fput+0x10/0x1c
[  378.076052][ T3851]  task_work_run+0x78/0xd0
[  378.077637][ T3851]  do_notify_resume+0x134/0x164
[  378.079395][ T3851]  el0_svc+0xc8/0xf8
[  378.081382][ T3851]  el0t_64_sync_handler+0x100/0x12c
[  378.083122][ T3851]  el0t_64_sync+0x19c/0x1a0
[  378.101896][ T3851] BUG: Bad page map in process syz.0.15  pte:6000004b63a8c3 pmd:800000043b9a003
[  378.103165][ T3851] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b63a
[  378.104643][ T3851] memcg:f4f00000060ad000
[  378.105193][ T3851] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.106201][ T3851] raw: 01ffc0000004002c ffffc1ffc0325848 ffffc1ffc01a2fc8 0000000000000000
[  378.107418][ T3851] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  378.108200][ T3851] page dumped because: bad pte
[  378.108742][ T3851] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fcf00000033edda8 index:0
[  378.111135][ T3851] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  378.112683][ T3851] CPU: 1 PID: 3851 Comm: syz.0.15 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.113876][ T3851] Hardware name: linux,dummy-virt (DT)
[  378.114496][ T3851] Call trace:
[  378.115051][ T3851]  dump_backtrace+0x94/0xec
[  378.115638][ T3851]  show_stack+0x18/0x24
[  378.116166][ T3851]  dump_stack_lvl+0x78/0x90
[  378.116706][ T3851]  dump_stack+0x18/0x24
[  378.117231][ T3851]  print_bad_pte+0x1c8/0x258
[  378.117775][ T3851]  unmap_page_range+0x904/0x1190
[  378.118349][ T3851]  unmap_single_vma.constprop.0+0x4c/0x84
[  378.119013][ T3851]  unmap_vmas+0x7c/0x170
[  378.119605][ T3851]  exit_mmap+0xc0/0x288
[  378.120384][ T3851]  __mmput+0x3c/0x170
[  378.120970][ T3851]  mmput+0x50/0x5c
[  378.121476][ T3851]  do_exit+0x270/0x98c
[  378.122227][ T3851]  do_group_exit+0x34/0x90
[  378.122937][ T3851]  pid_child_should_wake+0x0/0x5c
[  378.123734][ T3851]  invoke_syscall+0x48/0x118
[  378.124415][ T3851]  el0_svc_common.constprop.0+0x40/0xe0
[  378.125190][ T3851]  do_el0_svc+0x1c/0x28
[  378.125803][ T3851]  el0_svc+0x34/0xf8
[  378.126401][ T3851]  el0t_64_sync_handler+0x100/0x12c
[  378.127045][ T3851]  el0t_64_sync+0x19c/0x1a0
[  378.132640][ T3851] BUG: Bad page map in process syz.0.15  pte:600000468bf8c3 pmd:800000043b9a003
[  378.133621][ T3851] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x468bf
[  378.134545][ T3851] memcg:f4f00000060ad000
[  378.135096][ T3851] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.136271][ T3851] raw: 01ffc0000004002c ffffc1ffc02d8e88 ffffc1ffc02d7448 0000000000000000
[  378.137373][ T3851] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  378.138112][ T3851] page dumped because: bad pte
[  378.138721][ T3851] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fcf00000033edda8 index:1
[  378.140381][ T3851] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  378.141397][ T3851] CPU: 1 PID: 3851 Comm: syz.0.15 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.142423][ T3851] Hardware name: linux,dummy-virt (DT)
[  378.143119][ T3851] Call trace:
[  378.143598][ T3851]  dump_backtrace+0x94/0xec
[  378.144249][ T3851]  show_stack+0x18/0x24
[  378.144798][ T3851]  dump_stack_lvl+0x78/0x90
[  378.145428][ T3851]  dump_stack+0x18/0x24
[  378.146057][ T3851]  print_bad_pte+0x1c8/0x258
[  378.146701][ T3851]  unmap_page_range+0x904/0x1190
[  378.147373][ T3851]  unmap_single_vma.constprop.0+0x4c/0x84
[  378.148065][ T3851]  unmap_vmas+0x7c/0x170
[  378.148677][ T3851]  exit_mmap+0xc0/0x288
[  378.149305][ T3851]  __mmput+0x3c/0x170
[  378.150276][ T3851]  mmput+0x50/0x5c
[  378.150845][ T3851]  do_exit+0x270/0x98c
[  378.151448][ T3851]  do_group_exit+0x34/0x90
[  378.152109][ T3851]  pid_child_should_wake+0x0/0x5c
[  378.152861][ T3851]  invoke_syscall+0x48/0x118
[  378.153583][ T3851]  el0_svc_common.constprop.0+0x40/0xe0
[  378.154350][ T3851]  do_el0_svc+0x1c/0x28
[  378.154931][ T3851]  el0_svc+0x34/0xf8
[  378.155638][ T3851]  el0t_64_sync_handler+0x100/0x12c
[  378.156408][ T3851]  el0t_64_sync+0x19c/0x1a0
[  378.159333][ T3851] BUG: Bad page state in process syz.0.15  pfn:4b63a
[  378.166425][ T3851] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b63a
[  378.168144][ T3851] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.172718][ T3851] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  378.173850][ T3851] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  378.175004][ T3851] page dumped because: nonzero mapcount
[  378.176010][ T3851] Modules linked in:
[  378.193836][ T3851] CPU: 1 PID: 3851 Comm: syz.0.15 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.196645][ T3851] Hardware name: linux,dummy-virt (DT)
[  378.198162][ T3851] Call trace:
[  378.199291][ T3851]  dump_backtrace+0x94/0xec
[  378.201196][ T3851]  show_stack+0x18/0x24
[  378.202808][ T3851]  dump_stack_lvl+0x78/0x90
[  378.204486][ T3851]  dump_stack+0x18/0x24
[  378.205989][ T3851]  bad_page+0x84/0x11c
[  378.207330][ T3851]  free_page_is_bad_report+0x98/0xa4
[  378.208907][ T3851]  free_unref_folios+0x4c0/0x624
[  378.210715][ T3851]  folios_put_refs+0x108/0x284
[  378.212365][ T3851]  free_pages_and_swap_cache+0x14c/0x164
[  378.214787][ T3851]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  378.215832][ T3851]  tlb_flush_mmu+0x54/0xe4
[  378.216850][ T3851]  unmap_page_range+0xab0/0x1190
[  378.218362][ T3851]  unmap_single_vma.constprop.0+0x4c/0x84
[  378.220343][ T3851]  unmap_vmas+0x7c/0x170
[  378.221738][ T3851]  exit_mmap+0xc0/0x288
[  378.223163][ T3851]  __mmput+0x3c/0x170
[  378.224594][ T3851]  mmput+0x50/0x5c
[  378.225794][ T3851]  do_exit+0x270/0x98c
[  378.226444][ T3851]  do_group_exit+0x34/0x90
[  378.227188][ T3851]  pid_child_should_wake+0x0/0x5c
[  378.228055][ T3851]  invoke_syscall+0x48/0x118
[  378.228844][ T3851]  el0_svc_common.constprop.0+0x40/0xe0
[  378.229662][ T3851]  do_el0_svc+0x1c/0x28
[  378.230649][ T3851]  el0_svc+0x34/0xf8
[  378.231476][ T3851]  el0t_64_sync_handler+0x100/0x12c
[  378.232282][ T3851]  el0t_64_sync+0x19c/0x1a0
[  378.261207][ T3851] BUG: Bad page state in process syz.0.15  pfn:468bf
[  378.262311][ T3851] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x468bf
[  378.263373][ T3851] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.264760][ T3851] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  378.266051][ T3851] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  378.267023][ T3851] page dumped because: nonzero mapcount
[  378.267759][ T3851] Modules linked in:
[  378.268509][ T3851] CPU: 1 PID: 3851 Comm: syz.0.15 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.270205][ T3851] Hardware name: linux,dummy-virt (DT)
[  378.271059][ T3851] Call trace:
[  378.271713][ T3851]  dump_backtrace+0x94/0xec
[  378.272528][ T3851]  show_stack+0x18/0x24
[  378.273327][ T3851]  dump_stack_lvl+0x78/0x90
[  378.274142][ T3851]  dump_stack+0x18/0x24
[  378.274979][ T3851]  bad_page+0x84/0x11c
[  378.275695][ T3851]  free_page_is_bad_report+0x98/0xa4
[  378.276421][ T3851]  free_unref_folios+0x4c0/0x624
[  378.277146][ T3851]  folios_put_refs+0x108/0x284
[  378.277987][ T3851]  free_pages_and_swap_cache+0x14c/0x164
[  378.278987][ T3851]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  378.280162][ T3851]  tlb_flush_mmu+0x54/0xe4
[  378.280920][ T3851]  unmap_page_range+0xab0/0x1190
[  378.281773][ T3851]  unmap_single_vma.constprop.0+0x4c/0x84
[  378.282651][ T3851]  unmap_vmas+0x7c/0x170
[  378.283391][ T3851]  exit_mmap+0xc0/0x288
[  378.284136][ T3851]  __mmput+0x3c/0x170
[  378.284924][ T3851]  mmput+0x50/0x5c
[  378.285621][ T3851]  do_exit+0x270/0x98c
[  378.286445][ T3851]  do_group_exit+0x34/0x90
[  378.287195][ T3851]  pid_child_should_wake+0x0/0x5c
[  378.288063][ T3851]  invoke_syscall+0x48/0x118
[  378.288940][ T3851]  el0_svc_common.constprop.0+0x40/0xe0
[  378.289948][ T3851]  do_el0_svc+0x1c/0x28
[  378.290639][ T3851]  el0_svc+0x34/0xf8
[  378.291394][ T3851]  el0t_64_sync_handler+0x100/0x12c
[  378.292191][ T3851]  el0t_64_sync+0x19c/0x1a0
[  378.587152][ T3854] BUG: Bad page cache in process syz.0.16  pfn:4b606
[  378.587750][ T3854] page: refcount:4 mapcount:1 mapping:00000000db2c476b index:0x0 pfn:0x4b606
[  378.588263][ T3854] memcg:f4f00000060ad000
[  378.588584][ T3854] aops:shmem_aops ino:402
[  378.589034][ T3854] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.589758][ T3854] raw: 01ffc0000004002d ffffc1ffc02d6f88 ffffc1ffc039ca08 fdf00000070f14d0
[  378.590539][ T3854] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  378.591044][ T3854] page dumped because: still mapped when deleted
[  378.591531][ T3854] CPU: 1 PID: 3854 Comm: syz.0.16 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.592584][ T3854] Hardware name: linux,dummy-virt (DT)
[  378.593310][ T3854] Call trace:
[  378.593840][ T3854]  dump_backtrace+0x94/0xec
[  378.594651][ T3854]  show_stack+0x18/0x24
[  378.595418][ T3854]  dump_stack_lvl+0x78/0x90
[  378.596170][ T3854]  dump_stack+0x18/0x24
[  378.596867][ T3854]  filemap_unaccount_folio+0x118/0x278
[  378.597661][ T3854]  __filemap_remove_folio+0x3c/0x178
[  378.598331][ T3854]  filemap_remove_folio+0x48/0xa8
[  378.598978][ T3854]  truncate_inode_folio+0x30/0x4c
[  378.599740][ T3854]  shmem_undo_range+0x208/0x620
[  378.600703][ T3854]  shmem_evict_inode+0x130/0x2dc
[  378.601436][ T3854]  evict+0xb4/0x198
[  378.602074][ T3854]  iput+0x100/0x1b8
[  378.602758][ T3854]  dentry_unlink_inode+0xc0/0x188
[  378.603510][ T3854]  __dentry_kill+0x7c/0x1d4
[  378.604290][ T3854]  dput.part.0+0x30/0xbc
[  378.604958][ T3854]  dput+0x4c/0x50
[  378.605673][ T3854]  __fput+0x110/0x2d4
[  378.606358][ T3854]  ____fput+0x10/0x1c
[  378.607066][ T3854]  task_work_run+0x78/0xd0
[  378.607760][ T3854]  do_notify_resume+0x134/0x164
[  378.608502][ T3854]  el0_svc+0xc8/0xf8
[  378.609241][ T3854]  el0t_64_sync_handler+0x100/0x12c
[  378.610266][ T3854]  el0t_64_sync+0x19c/0x1a0
[  378.614753][ T3854] BUG: Bad page cache in process syz.0.16  pfn:4e728
[  378.615715][ T3854] page: refcount:4 mapcount:1 mapping:00000000db2c476b index:0x1 pfn:0x4e728
[  378.616730][ T3854] memcg:f4f00000060ad000
[  378.618039][ T3854] aops:shmem_aops ino:402
[  378.619400][ T3854] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.621153][ T3854] raw: 01ffc0000004002d ffffc1ffc02d8188 ffffc1ffc02f7dc8 fdf00000070f14d0
[  378.622204][ T3854] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  378.623465][ T3854] page dumped because: still mapped when deleted
[  378.624111][ T3854] CPU: 1 PID: 3854 Comm: syz.0.16 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.625841][ T3854] Hardware name: linux,dummy-virt (DT)
[  378.626615][ T3854] Call trace:
[  378.627282][ T3854]  dump_backtrace+0x94/0xec
[  378.628844][ T3854]  show_stack+0x18/0x24
[  378.630188][ T3854]  dump_stack_lvl+0x78/0x90
[  378.631861][ T3854]  dump_stack+0x18/0x24
[  378.633432][ T3854]  filemap_unaccount_folio+0x118/0x278
[  378.634754][ T3854]  __filemap_remove_folio+0x3c/0x178
[  378.635694][ T3854]  filemap_remove_folio+0x48/0xa8
[  378.636448][ T3854]  truncate_inode_folio+0x30/0x4c
[  378.637251][ T3854]  shmem_undo_range+0x208/0x620
[  378.637930][ T3854]  shmem_evict_inode+0x130/0x2dc
[  378.638560][ T3854]  evict+0xb4/0x198
[  378.639307][ T3854]  iput+0x100/0x1b8
[  378.640179][ T3854]  dentry_unlink_inode+0xc0/0x188
[  378.641423][ T3854]  __dentry_kill+0x7c/0x1d4
[  378.642188][ T3854]  dput.part.0+0x30/0xbc
[  378.642926][ T3854]  dput+0x4c/0x50
[  378.644240][ T3854]  __fput+0x110/0x2d4
[  378.645048][ T3854]  ____fput+0x10/0x1c
[  378.646176][ T3854]  task_work_run+0x78/0xd0
[  378.647321][ T3854]  do_notify_resume+0x134/0x164
[  378.649014][ T3854]  el0_svc+0xc8/0xf8
[  378.650109][ T3854]  el0t_64_sync_handler+0x100/0x12c
[  378.650909][ T3854]  el0t_64_sync+0x19c/0x1a0
[  378.667483][ T3855] BUG: Bad page map in process syz.0.16  pte:6000004b6068c3 pmd:80000004394a003
[  378.669009][ T3855] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b606
[  378.671633][ T3855] memcg:f4f00000060ad000
[  378.672563][ T3855] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.673629][ T3855] raw: 01ffc0000004002c ffffc1ffc02f7a08 ffffc1ffc039ca08 0000000000000000
[  378.674450][ T3855] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  378.675325][ T3855] page dumped because: bad pte
[  378.675867][ T3855] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fcf00000033edda8 index:0
[  378.677386][ T3855] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  378.678391][ T3855] CPU: 1 PID: 3855 Comm: syz.0.16 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.679505][ T3855] Hardware name: linux,dummy-virt (DT)
[  378.680520][ T3855] Call trace:
[  378.680980][ T3855]  dump_backtrace+0x94/0xec
[  378.681701][ T3855]  show_stack+0x18/0x24
[  378.682281][ T3855]  dump_stack_lvl+0x78/0x90
[  378.682941][ T3855]  dump_stack+0x18/0x24
[  378.683568][ T3855]  print_bad_pte+0x1c8/0x258
[  378.684207][ T3855]  unmap_page_range+0x904/0x1190
[  378.684845][ T3855]  unmap_single_vma.constprop.0+0x4c/0x84
[  378.685589][ T3855]  unmap_vmas+0x7c/0x170
[  378.686207][ T3855]  exit_mmap+0xc0/0x288
[  378.686791][ T3855]  __mmput+0x3c/0x170
[  378.687554][ T3855]  mmput+0x50/0x5c
[  378.688103][ T3855]  do_exit+0x270/0x98c
[  378.688702][ T3855]  do_group_exit+0x34/0x90
[  378.689339][ T3855]  copy_siginfo_to_user+0x0/0xec
[  378.690126][ T3855]  do_signal+0x94/0x1450
[  378.691005][ T3855]  do_notify_resume+0xd8/0x164
[  378.691719][ T3855]  el0_svc+0xc8/0xf8
[  378.692242][ T3855]  el0t_64_sync_handler+0x100/0x12c
[  378.692982][ T3855]  el0t_64_sync+0x19c/0x1a0
[  378.696340][ T3855] BUG: Bad page map in process syz.0.16  pte:6000004e7288c3 pmd:80000004394a003
[  378.697676][ T3855] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4e728
[  378.698857][ T3855] memcg:f4f00000060ad000
[  378.699538][ T3855] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.701777][ T3855] raw: 01ffc0000004002c ffffc1ffc02d8188 ffffc1ffc02f7dc8 0000000000000000
[  378.703003][ T3855] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  378.704132][ T3855] page dumped because: bad pte
[  378.704796][ T3855] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fcf00000033edda8 index:1
[  378.706397][ T3855] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  378.707610][ T3855] CPU: 0 PID: 3855 Comm: syz.0.16 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.709163][ T3855] Hardware name: linux,dummy-virt (DT)
[  378.710072][ T3855] Call trace:
[  378.710735][ T3855]  dump_backtrace+0x94/0xec
[  378.711851][ T3855]  show_stack+0x18/0x24
[  378.712776][ T3855]  dump_stack_lvl+0x78/0x90
[  378.713705][ T3855]  dump_stack+0x18/0x24
[  378.714448][ T3855]  print_bad_pte+0x1c8/0x258
[  378.715452][ T3855]  unmap_page_range+0x904/0x1190
[  378.716202][ T3855]  unmap_single_vma.constprop.0+0x4c/0x84
[  378.717065][ T3855]  unmap_vmas+0x7c/0x170
[  378.717909][ T3855]  exit_mmap+0xc0/0x288
[  378.718813][ T3855]  __mmput+0x3c/0x170
[  378.719764][ T3855]  mmput+0x50/0x5c
[  378.720609][ T3855]  do_exit+0x270/0x98c
[  378.721506][ T3855]  do_group_exit+0x34/0x90
[  378.722435][ T3855]  copy_siginfo_to_user+0x0/0xec
[  378.723359][ T3855]  do_signal+0x94/0x1450
[  378.724218][ T3855]  do_notify_resume+0xd8/0x164
[  378.725121][ T3855]  el0_svc+0xc8/0xf8
[  378.725944][ T3855]  el0t_64_sync_handler+0x100/0x12c
[  378.726939][ T3855]  el0t_64_sync+0x19c/0x1a0
[  378.732620][ T3855] BUG: Bad page state in process syz.0.16  pfn:4b606
[  378.733563][ T3855] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b606
[  378.734395][ T3855] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.735576][ T3855] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  378.736591][ T3855] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  378.737485][ T3855] page dumped because: nonzero mapcount
[  378.738286][ T3855] Modules linked in:
[  378.739013][ T3855] CPU: 0 PID: 3855 Comm: syz.0.16 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.740651][ T3855] Hardware name: linux,dummy-virt (DT)
[  378.741410][ T3855] Call trace:
[  378.741990][ T3855]  dump_backtrace+0x94/0xec
[  378.742830][ T3855]  show_stack+0x18/0x24
[  378.743728][ T3855]  dump_stack_lvl+0x78/0x90
[  378.744521][ T3855]  dump_stack+0x18/0x24
[  378.745398][ T3855]  bad_page+0x84/0x11c
[  378.746228][ T3855]  free_page_is_bad_report+0x98/0xa4
[  378.747146][ T3855]  free_unref_folios+0x4c0/0x624
[  378.748080][ T3855]  folios_put_refs+0x108/0x284
[  378.748983][ T3855]  free_pages_and_swap_cache+0x14c/0x164
[  378.750709][ T3855]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  378.751690][ T3855]  tlb_flush_mmu+0x54/0xe4
[  378.752953][ T3855]  unmap_page_range+0xab0/0x1190
[  378.754647][ T3855]  unmap_single_vma.constprop.0+0x4c/0x84
[  378.756047][ T3855]  unmap_vmas+0x7c/0x170
[  378.756783][ T3855]  exit_mmap+0xc0/0x288
[  378.757521][ T3855]  __mmput+0x3c/0x170
[  378.758289][ T3855]  mmput+0x50/0x5c
[  378.758991][ T3855]  do_exit+0x270/0x98c
[  378.759814][ T3855]  do_group_exit+0x34/0x90
[  378.760640][ T3855]  copy_siginfo_to_user+0x0/0xec
[  378.761352][ T3855]  do_signal+0x94/0x1450
[  378.762029][ T3855]  do_notify_resume+0xd8/0x164
[  378.762755][ T3855]  el0_svc+0xc8/0xf8
[  378.763406][ T3855]  el0t_64_sync_handler+0x100/0x12c
[  378.764194][ T3855]  el0t_64_sync+0x19c/0x1a0
[  378.770516][ T3855] BUG: Bad page state in process syz.0.16  pfn:4e728
[  378.771604][ T3855] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4e728
[  378.772691][ T3855] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.774189][ T3855] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  378.775112][ T3855] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  378.776117][ T3855] page dumped because: nonzero mapcount
[  378.776758][ T3855] Modules linked in:
[  378.777424][ T3855] CPU: 0 PID: 3855 Comm: syz.0.16 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.780304][ T3855] Hardware name: linux,dummy-virt (DT)
[  378.781062][ T3855] Call trace:
[  378.781669][ T3855]  dump_backtrace+0x94/0xec
[  378.782521][ T3855]  show_stack+0x18/0x24
[  378.783271][ T3855]  dump_stack_lvl+0x78/0x90
[  378.784033][ T3855]  dump_stack+0x18/0x24
[  378.784708][ T3855]  bad_page+0x84/0x11c
[  378.785376][ T3855]  free_page_is_bad_report+0x98/0xa4
[  378.786295][ T3855]  free_unref_folios+0x4c0/0x624
[  378.787077][ T3855]  folios_put_refs+0x108/0x284
[  378.788078][ T3855]  free_pages_and_swap_cache+0x14c/0x164
[  378.789007][ T3855]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  378.790188][ T3855]  tlb_flush_mmu+0x54/0xe4
[  378.790983][ T3855]  unmap_page_range+0xab0/0x1190
[  378.791879][ T3855]  unmap_single_vma.constprop.0+0x4c/0x84
[  378.792712][ T3855]  unmap_vmas+0x7c/0x170
[  378.793375][ T3855]  exit_mmap+0xc0/0x288
[  378.794137][ T3855]  __mmput+0x3c/0x170
[  378.794824][ T3855]  mmput+0x50/0x5c
[  378.795692][ T3855]  do_exit+0x270/0x98c
[  378.796404][ T3855]  do_group_exit+0x34/0x90
[  378.797102][ T3855]  copy_siginfo_to_user+0x0/0xec
[  378.797796][ T3855]  do_signal+0x94/0x1450
[  378.798423][ T3855]  do_notify_resume+0xd8/0x164
[  378.799150][ T3855]  el0_svc+0xc8/0xf8
[  378.800118][ T3855]  el0t_64_sync_handler+0x100/0x12c
[  378.800888][ T3855]  el0t_64_sync+0x19c/0x1a0
[  378.972236][ T3856] BUG: Bad page cache in process syz.0.17  pfn:4db7f
[  378.973265][ T3856] page: refcount:4 mapcount:1 mapping:000000007d28cf24 index:0x0 pfn:0x4db7f
[  378.975523][ T3856] memcg:f4f00000060ad000
[  378.976903][ T3856] aops:shmem_aops ino:2
[  378.978334][ T3856] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  378.982382][ T3856] raw: 01ffc0000004002d ffffc1ffc02cddc8 ffffc1ffc02ccb48 faf00000039e8530
[  378.984790][ T3856] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  378.985936][ T3856] page dumped because: still mapped when deleted
[  378.986843][ T3856] CPU: 0 PID: 3856 Comm: syz.0.17 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  378.988317][ T3856] Hardware name: linux,dummy-virt (DT)
[  378.989186][ T3856] Call trace:
[  378.990117][ T3856]  dump_backtrace+0x94/0xec
[  378.991050][ T3856]  show_stack+0x18/0x24
[  378.991950][ T3856]  dump_stack_lvl+0x78/0x90
[  378.992715][ T3856]  dump_stack+0x18/0x24
[  378.993491][ T3856]  filemap_unaccount_folio+0x118/0x278
[  378.994342][ T3856]  __filemap_remove_folio+0x3c/0x178
[  378.995253][ T3856]  filemap_remove_folio+0x48/0xa8
[  378.996154][ T3856]  truncate_inode_folio+0x30/0x4c
[  378.997055][ T3856]  shmem_undo_range+0x208/0x620
[  378.997928][ T3856]  shmem_evict_inode+0x130/0x2dc
[  378.998815][ T3856]  evict+0xb4/0x198
[  378.999736][ T3856]  iput+0x100/0x1b8
[  379.000600][ T3856]  dentry_unlink_inode+0xc0/0x188
[  379.001416][ T3856]  __dentry_kill+0x7c/0x1d4
[  379.002195][ T3856]  dput.part.0+0x30/0xbc
[  379.002905][ T3856]  dput+0x4c/0x50
[  379.003639][ T3856]  __fput+0x110/0x2d4
[  379.004385][ T3856]  ____fput+0x10/0x1c
[  379.005159][ T3856]  task_work_run+0x78/0xd0
[  379.006002][ T3856]  do_notify_resume+0x134/0x164
[  379.006878][ T3856]  el0_svc+0xc8/0xf8
[  379.007620][ T3856]  el0t_64_sync_handler+0x100/0x12c
[  379.008451][ T3856]  el0t_64_sync+0x19c/0x1a0
[  379.014094][ T3856] BUG: Bad page cache in process syz.0.17  pfn:4b32d
[  379.015097][ T3856] page: refcount:4 mapcount:1 mapping:000000007d28cf24 index:0x1 pfn:0x4b32d
[  379.018333][ T3856] memcg:f4f00000060ad000
[  379.018968][ T3856] aops:shmem_aops ino:2
[  379.019770][ T3856] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.021672][ T3856] raw: 01ffc0000004002d ffffc1ffc036dfc8 ffffc1ffc02f34c8 faf00000039e8530
[  379.023360][ T3856] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  379.025821][ T3856] page dumped because: still mapped when deleted
[  379.028094][ T3856] CPU: 0 PID: 3856 Comm: syz.0.17 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.031709][ T3856] Hardware name: linux,dummy-virt (DT)
[  379.032535][ T3856] Call trace:
[  379.033103][ T3856]  dump_backtrace+0x94/0xec
[  379.033827][ T3856]  show_stack+0x18/0x24
[  379.034535][ T3856]  dump_stack_lvl+0x78/0x90
[  379.047051][ T3856]  dump_stack+0x18/0x24
[  379.048575][ T3856]  filemap_unaccount_folio+0x118/0x278
[  379.050788][ T3856]  __filemap_remove_folio+0x3c/0x178
[  379.051528][ T3856]  filemap_remove_folio+0x48/0xa8
[  379.052169][ T3856]  truncate_inode_folio+0x30/0x4c
[  379.052763][ T3856]  shmem_undo_range+0x208/0x620
[  379.053570][ T3856]  shmem_evict_inode+0x130/0x2dc
[  379.054246][ T3856]  evict+0xb4/0x198
[  379.054905][ T3856]  iput+0x100/0x1b8
[  379.055747][ T3856]  dentry_unlink_inode+0xc0/0x188
[  379.056505][ T3856]  __dentry_kill+0x7c/0x1d4
[  379.057111][ T3856]  dput.part.0+0x30/0xbc
[  379.058613][ T3856]  dput+0x4c/0x50
[  379.059246][ T3856]  __fput+0x110/0x2d4
[  379.059770][ T3856]  ____fput+0x10/0x1c
[  379.060513][ T3856]  task_work_run+0x78/0xd0
[  379.061472][ T3856]  do_notify_resume+0x134/0x164
[  379.062328][ T3856]  el0_svc+0xc8/0xf8
[  379.062914][ T3856]  el0t_64_sync_handler+0x100/0x12c
[  379.063649][ T3856]  el0t_64_sync+0x19c/0x1a0
[  379.076078][ T3857] BUG: Bad page map in process syz.0.17  pte:6000004db7f8c3 pmd:80000004798e003
[  379.078068][ T3857] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4db7f
[  379.079245][ T3857] memcg:f4f00000060ad000
[  379.081536][ T3857] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.084419][ T3857] raw: 01ffc0000004002c ffffc1ffc02f3408 ffffc1ffc02ccb48 0000000000000000
[  379.085927][ T3857] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  379.089037][ T3857] page dumped because: bad pte
[  379.091953][ T3857] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:0
[  379.094519][ T3857] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  379.095774][ T3857] CPU: 0 PID: 3857 Comm: syz.0.17 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.096945][ T3857] Hardware name: linux,dummy-virt (DT)
[  379.098076][ T3857] Call trace:
[  379.099453][ T3857]  dump_backtrace+0x94/0xec
[  379.101450][ T3857]  show_stack+0x18/0x24
[  379.102843][ T3857]  dump_stack_lvl+0x78/0x90
[  379.103844][ T3857]  dump_stack+0x18/0x24
[  379.104571][ T3857]  print_bad_pte+0x1c8/0x258
[  379.105318][ T3857]  unmap_page_range+0x904/0x1190
[  379.106169][ T3857]  unmap_single_vma.constprop.0+0x4c/0x84
[  379.107076][ T3857]  unmap_vmas+0x7c/0x170
[  379.108750][ T3857]  exit_mmap+0xc0/0x288
[  379.110449][ T3857]  __mmput+0x3c/0x170
[  379.111882][ T3857]  mmput+0x50/0x5c
[  379.113089][ T3857]  do_exit+0x270/0x98c
[  379.114631][ T3857]  do_group_exit+0x34/0x90
[  379.116260][ T3857]  copy_siginfo_to_user+0x0/0xec
[  379.117949][ T3857]  do_signal+0x94/0x1450
[  379.119467][ T3857]  do_notify_resume+0xd8/0x164
[  379.121396][ T3857]  el0_svc+0xc8/0xf8
[  379.122939][ T3857]  el0t_64_sync_handler+0x100/0x12c
[  379.124646][ T3857]  el0t_64_sync+0x19c/0x1a0
[  379.128367][ T3857] BUG: Bad page map in process syz.0.17  pte:6000004b32d8c3 pmd:80000004798e003
[  379.132253][ T3857] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b32d
[  379.135624][ T3857] memcg:f4f00000060ad000
[  379.137365][ T3857] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.140243][ T3857] raw: 01ffc0000004002c ffffc1ffc036dfc8 ffffc1ffc02f34c8 0000000000000000
[  379.141104][ T3857] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  379.141949][ T3857] page dumped because: bad pte
[  379.142447][ T3857] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:1
[  379.143450][ T3857] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  379.144410][ T3857] CPU: 0 PID: 3857 Comm: syz.0.17 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.145550][ T3857] Hardware name: linux,dummy-virt (DT)
[  379.146127][ T3857] Call trace:
[  379.146562][ T3857]  dump_backtrace+0x94/0xec
[  379.147270][ T3857]  show_stack+0x18/0x24
[  379.147841][ T3857]  dump_stack_lvl+0x78/0x90
[  379.148378][ T3857]  dump_stack+0x18/0x24
[  379.148895][ T3857]  print_bad_pte+0x1c8/0x258
[  379.149447][ T3857]  unmap_page_range+0x904/0x1190
[  379.150576][ T3857]  unmap_single_vma.constprop.0+0x4c/0x84
[  379.151433][ T3857]  unmap_vmas+0x7c/0x170
[  379.152073][ T3857]  exit_mmap+0xc0/0x288
[  379.152684][ T3857]  __mmput+0x3c/0x170
[  379.153476][ T3857]  mmput+0x50/0x5c
[  379.154131][ T3857]  do_exit+0x270/0x98c
[  379.154739][ T3857]  do_group_exit+0x34/0x90
[  379.155350][ T3857]  copy_siginfo_to_user+0x0/0xec
[  379.156178][ T3857]  do_signal+0x94/0x1450
[  379.156783][ T3857]  do_notify_resume+0xd8/0x164
[  379.157494][ T3857]  el0_svc+0xc8/0xf8
[  379.158017][ T3857]  el0t_64_sync_handler+0x100/0x12c
[  379.158737][ T3857]  el0t_64_sync+0x19c/0x1a0
[  379.162369][ T3857] BUG: Bad page state in process syz.0.17  pfn:4db7f
[  379.163167][ T3857] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4db7f
[  379.164196][ T3857] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.165447][ T3857] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  379.166221][ T3857] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  379.167153][ T3857] page dumped because: nonzero mapcount
[  379.167860][ T3857] Modules linked in:
[  379.168541][ T3857] CPU: 0 PID: 3857 Comm: syz.0.17 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.169813][ T3857] Hardware name: linux,dummy-virt (DT)
[  379.170996][ T3857] Call trace:
[  379.171539][ T3857]  dump_backtrace+0x94/0xec
[  379.172226][ T3857]  show_stack+0x18/0x24
[  379.172828][ T3857]  dump_stack_lvl+0x78/0x90
[  379.173451][ T3857]  dump_stack+0x18/0x24
[  379.174030][ T3857]  bad_page+0x84/0x11c
[  379.174612][ T3857]  free_page_is_bad_report+0x98/0xa4
[  379.175312][ T3857]  free_unref_folios+0x4c0/0x624
[  379.175976][ T3857]  folios_put_refs+0x108/0x284
[  379.176681][ T3857]  free_pages_and_swap_cache+0x14c/0x164
[  379.177542][ T3857]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  379.178317][ T3857]  tlb_flush_mmu+0x54/0xe4
[  379.178977][ T3857]  unmap_page_range+0xab0/0x1190
[  379.179948][ T3857]  unmap_single_vma.constprop.0+0x4c/0x84
[  379.180723][ T3857]  unmap_vmas+0x7c/0x170
[  379.181368][ T3857]  exit_mmap+0xc0/0x288
[  379.182097][ T3857]  __mmput+0x3c/0x170
[  379.182795][ T3857]  mmput+0x50/0x5c
[  379.183647][ T3857]  do_exit+0x270/0x98c
[  379.184288][ T3857]  do_group_exit+0x34/0x90
[  379.185003][ T3857]  copy_siginfo_to_user+0x0/0xec
[  379.185839][ T3857]  do_signal+0x94/0x1450
[  379.186527][ T3857]  do_notify_resume+0xd8/0x164
[  379.187249][ T3857]  el0_svc+0xc8/0xf8
[  379.187845][ T3857]  el0t_64_sync_handler+0x100/0x12c
[  379.188528][ T3857]  el0t_64_sync+0x19c/0x1a0
[  379.193843][ T3857] BUG: Bad page state in process syz.0.17  pfn:4b32d
[  379.194552][ T3857] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b32d
[  379.195576][ T3857] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.196784][ T3857] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  379.197647][ T3857] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  379.198369][ T3857] page dumped because: nonzero mapcount
[  379.198946][ T3857] Modules linked in:
[  379.200283][ T3857] CPU: 0 PID: 3857 Comm: syz.0.17 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.201589][ T3857] Hardware name: linux,dummy-virt (DT)
[  379.202346][ T3857] Call trace:
[  379.202875][ T3857]  dump_backtrace+0x94/0xec
[  379.203557][ T3857]  show_stack+0x18/0x24
[  379.204168][ T3857]  dump_stack_lvl+0x78/0x90
[  379.204933][ T3857]  dump_stack+0x18/0x24
[  379.205572][ T3857]  bad_page+0x84/0x11c
[  379.206162][ T3857]  free_page_is_bad_report+0x98/0xa4
[  379.206887][ T3857]  free_unref_folios+0x4c0/0x624
[  379.207567][ T3857]  folios_put_refs+0x108/0x284
[  379.208225][ T3857]  free_pages_and_swap_cache+0x14c/0x164
[  379.209050][ T3857]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  379.209823][ T3857]  tlb_flush_mmu+0x54/0xe4
[  379.210903][ T3857]  unmap_page_range+0xab0/0x1190
[  379.211647][ T3857]  unmap_single_vma.constprop.0+0x4c/0x84
[  379.212413][ T3857]  unmap_vmas+0x7c/0x170
[  379.213181][ T3857]  exit_mmap+0xc0/0x288
[  379.213804][ T3857]  __mmput+0x3c/0x170
[  379.214434][ T3857]  mmput+0x50/0x5c
[  379.215001][ T3857]  do_exit+0x270/0x98c
[  379.215819][ T3857]  do_group_exit+0x34/0x90
[  379.216438][ T3857]  copy_siginfo_to_user+0x0/0xec
[  379.216909][ T3857]  do_signal+0x94/0x1450
[  379.217465][ T3857]  do_notify_resume+0xd8/0x164
[  379.217914][ T3857]  el0_svc+0xc8/0xf8
[  379.218309][ T3857]  el0t_64_sync_handler+0x100/0x12c
[  379.218676][ T3857]  el0t_64_sync+0x19c/0x1a0
[  379.386344][ T3858] BUG: Bad page cache in process syz.0.18  pfn:4bde8
[  379.387270][ T3858] page: refcount:4 mapcount:1 mapping:000000008ffa70f7 index:0x0 pfn:0x4bde8
[  379.388114][ T3858] memcg:f4f00000060ad000
[  379.389046][ T3858] aops:shmem_aops ino:3
[  379.389783][ T3858] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.390740][ T3858] raw: 01ffc0000004002d ffffc1ffc0309808 ffffc1ffc02f3488 fbf00000039eaab0
[  379.391450][ T3858] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  379.391939][ T3858] page dumped because: still mapped when deleted
[  379.392357][ T3858] CPU: 0 PID: 3858 Comm: syz.0.18 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.393040][ T3858] Hardware name: linux,dummy-virt (DT)
[  379.393475][ T3858] Call trace:
[  379.393776][ T3858]  dump_backtrace+0x94/0xec
[  379.394203][ T3858]  show_stack+0x18/0x24
[  379.394579][ T3858]  dump_stack_lvl+0x78/0x90
[  379.394967][ T3858]  dump_stack+0x18/0x24
[  379.395459][ T3858]  filemap_unaccount_folio+0x118/0x278
[  379.395881][ T3858]  __filemap_remove_folio+0x3c/0x178
[  379.396353][ T3858]  filemap_remove_folio+0x48/0xa8
[  379.396961][ T3858]  truncate_inode_folio+0x30/0x4c
[  379.397683][ T3858]  shmem_undo_range+0x208/0x620
[  379.398480][ T3858]  shmem_evict_inode+0x130/0x2dc
[  379.399317][ T3858]  evict+0xb4/0x198
[  379.400194][ T3858]  iput+0x100/0x1b8
[  379.400974][ T3858]  dentry_unlink_inode+0xc0/0x188
[  379.402073][ T3858]  __dentry_kill+0x7c/0x1d4
[  379.402920][ T3858]  dput.part.0+0x30/0xbc
[  379.403650][ T3858]  dput+0x4c/0x50
[  379.404344][ T3858]  __fput+0x110/0x2d4
[  379.405033][ T3858]  ____fput+0x10/0x1c
[  379.405799][ T3858]  task_work_run+0x78/0xd0
[  379.406500][ T3858]  do_notify_resume+0x134/0x164
[  379.407158][ T3858]  el0_svc+0xc8/0xf8
[  379.407981][ T3858]  el0t_64_sync_handler+0x100/0x12c
[  379.408786][ T3858]  el0t_64_sync+0x19c/0x1a0
[  379.431674][ T3858] BUG: Bad page cache in process syz.0.18  pfn:4bcd2
[  379.432600][ T3858] page: refcount:4 mapcount:1 mapping:000000008ffa70f7 index:0x1 pfn:0x4bcd2
[  379.433555][ T3858] memcg:f4f00000060ad000
[  379.434135][ T3858] aops:shmem_aops ino:3
[  379.434845][ T3858] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.436340][ T3858] raw: 01ffc0000004002d ffffc1ffc02f7a08 ffffc1ffc02f4208 fbf00000039eaab0
[  379.437399][ T3858] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  379.438445][ T3858] page dumped because: still mapped when deleted
[  379.439302][ T3858] CPU: 0 PID: 3858 Comm: syz.0.18 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.441282][ T3858] Hardware name: linux,dummy-virt (DT)
[  379.442107][ T3858] Call trace:
[  379.442600][ T3858]  dump_backtrace+0x94/0xec
[  379.443681][ T3858]  show_stack+0x18/0x24
[  379.444391][ T3858]  dump_stack_lvl+0x78/0x90
[  379.445140][ T3858]  dump_stack+0x18/0x24
[  379.445847][ T3858]  filemap_unaccount_folio+0x118/0x278
[  379.446592][ T3858]  __filemap_remove_folio+0x3c/0x178
[  379.447423][ T3858]  filemap_remove_folio+0x48/0xa8
[  379.448094][ T3858]  truncate_inode_folio+0x30/0x4c
[  379.448869][ T3858]  shmem_undo_range+0x208/0x620
[  379.449897][ T3858]  shmem_evict_inode+0x130/0x2dc
[  379.450800][ T3858]  evict+0xb4/0x198
[  379.451514][ T3858]  iput+0x100/0x1b8
[  379.452186][ T3858]  dentry_unlink_inode+0xc0/0x188
[  379.452925][ T3858]  __dentry_kill+0x7c/0x1d4
[  379.453650][ T3858]  dput.part.0+0x30/0xbc
[  379.454372][ T3858]  dput+0x4c/0x50
[  379.455107][ T3858]  __fput+0x110/0x2d4
[  379.455813][ T3858]  ____fput+0x10/0x1c
[  379.456436][ T3858]  task_work_run+0x78/0xd0
[  379.457045][ T3858]  do_notify_resume+0x134/0x164
[  379.457768][ T3858]  el0_svc+0xc8/0xf8
[  379.458393][ T3858]  el0t_64_sync_handler+0x100/0x12c
[  379.459066][ T3858]  el0t_64_sync+0x19c/0x1a0
[  379.484408][ T3858] BUG: Bad page map in process syz.0.18  pte:6000004bde88c3 pmd:80000004799a003
[  379.485562][ T3858] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4bde8
[  379.486503][ T3858] memcg:f4f00000060ad000
[  379.487120][ T3858] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.488510][ T3858] raw: 01ffc0000004002c ffffc1ffc0398b08 ffffc1ffc02f3488 0000000000000000
[  379.489522][ T3858] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  379.491705][ T3858] page dumped because: bad pte
[  379.492330][ T3858] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:0
[  379.493319][ T3858] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  379.494911][ T3858] CPU: 0 PID: 3858 Comm: syz.0.18 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.496222][ T3858] Hardware name: linux,dummy-virt (DT)
[  379.496857][ T3858] Call trace:
[  379.497330][ T3858]  dump_backtrace+0x94/0xec
[  379.497989][ T3858]  show_stack+0x18/0x24
[  379.498617][ T3858]  dump_stack_lvl+0x78/0x90
[  379.499338][ T3858]  dump_stack+0x18/0x24
[  379.500454][ T3858]  print_bad_pte+0x1c8/0x258
[  379.501266][ T3858]  unmap_page_range+0x904/0x1190
[  379.502087][ T3858]  unmap_single_vma.constprop.0+0x4c/0x84
[  379.502862][ T3858]  unmap_vmas+0x7c/0x170
[  379.503493][ T3858]  exit_mmap+0xc0/0x288
[  379.504231][ T3858]  __mmput+0x3c/0x170
[  379.504910][ T3858]  mmput+0x50/0x5c
[  379.505511][ T3858]  do_exit+0x270/0x98c
[  379.506177][ T3858]  do_group_exit+0x34/0x90
[  379.506924][ T3858]  pid_child_should_wake+0x0/0x5c
[  379.507645][ T3858]  invoke_syscall+0x48/0x118
[  379.508418][ T3858]  el0_svc_common.constprop.0+0x40/0xe0
[  379.509186][ T3858]  do_el0_svc+0x1c/0x28
[  379.510369][ T3858]  el0_svc+0x34/0xf8
[  379.511136][ T3858]  el0t_64_sync_handler+0x100/0x12c
[  379.511970][ T3858]  el0t_64_sync+0x19c/0x1a0
[  379.530774][ T3858] BUG: Bad page map in process syz.0.18  pte:6000004bcd28c3 pmd:80000004799a003
[  379.531720][ T3858] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4bcd2
[  379.532613][ T3858] memcg:f4f00000060ad000
[  379.533172][ T3858] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.534312][ T3858] raw: 01ffc0000004002c ffffc1ffc02f7a08 ffffc1ffc02f4208 0000000000000000
[  379.535119][ T3858] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  379.536109][ T3858] page dumped because: bad pte
[  379.536815][ T3858] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:1
[  379.537887][ T3858] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  379.538846][ T3858] CPU: 1 PID: 3858 Comm: syz.0.18 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.540240][ T3858] Hardware name: linux,dummy-virt (DT)
[  379.540929][ T3858] Call trace:
[  379.541419][ T3858]  dump_backtrace+0x94/0xec
[  379.542041][ T3858]  show_stack+0x18/0x24
[  379.542669][ T3858]  dump_stack_lvl+0x78/0x90
[  379.543311][ T3858]  dump_stack+0x18/0x24
[  379.543838][ T3858]  print_bad_pte+0x1c8/0x258
[  379.544486][ T3858]  unmap_page_range+0x904/0x1190
[  379.545139][ T3858]  unmap_single_vma.constprop.0+0x4c/0x84
[  379.545985][ T3858]  unmap_vmas+0x7c/0x170
[  379.546674][ T3858]  exit_mmap+0xc0/0x288
[  379.547511][ T3858]  __mmput+0x3c/0x170
[  379.548174][ T3858]  mmput+0x50/0x5c
[  379.548727][ T3858]  do_exit+0x270/0x98c
[  379.549291][ T3858]  do_group_exit+0x34/0x90
[  379.550376][ T3858]  pid_child_should_wake+0x0/0x5c
[  379.551250][ T3858]  invoke_syscall+0x48/0x118
[  379.552083][ T3858]  el0_svc_common.constprop.0+0x40/0xe0
[  379.553016][ T3858]  do_el0_svc+0x1c/0x28
[  379.553819][ T3858]  el0_svc+0x34/0xf8
[  379.554569][ T3858]  el0t_64_sync_handler+0x100/0x12c
[  379.555494][ T3858]  el0t_64_sync+0x19c/0x1a0
[  379.557953][ T3858] BUG: Bad page state in process syz.0.18  pfn:4bde8
[  379.558733][ T3858] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4bde8
[  379.559569][ T3858] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.567143][ T3858] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  379.568095][ T3858] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  379.577608][ T3858] page dumped because: nonzero mapcount
[  379.578559][ T3858] Modules linked in:
[  379.579319][ T3858] CPU: 0 PID: 3858 Comm: syz.0.18 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.581239][ T3858] Hardware name: linux,dummy-virt (DT)
[  379.582293][ T3858] Call trace:
[  379.582897][ T3858]  dump_backtrace+0x94/0xec
[  379.583812][ T3858]  show_stack+0x18/0x24
[  379.584575][ T3858]  dump_stack_lvl+0x78/0x90
[  379.585359][ T3858]  dump_stack+0x18/0x24
[  379.586044][ T3858]  bad_page+0x84/0x11c
[  379.586802][ T3858]  free_page_is_bad_report+0x98/0xa4
[  379.587685][ T3858]  free_unref_folios+0x4c0/0x624
[  379.588426][ T3858]  folios_put_refs+0x108/0x284
[  379.589258][ T3858]  free_pages_and_swap_cache+0x14c/0x164
[  379.590781][ T3858]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  379.591668][ T3858]  tlb_flush_mmu+0x54/0xe4
[  379.592409][ T3858]  unmap_page_range+0xab0/0x1190
[  379.593860][ T3858]  unmap_single_vma.constprop.0+0x4c/0x84
[  379.595538][ T3858]  unmap_vmas+0x7c/0x170
[  379.596272][ T3858]  exit_mmap+0xc0/0x288
[  379.596964][ T3858]  __mmput+0x3c/0x170
[  379.597672][ T3858]  mmput+0x50/0x5c
[  379.598354][ T3858]  do_exit+0x270/0x98c
[  379.599058][ T3858]  do_group_exit+0x34/0x90
[  379.599924][ T3858]  pid_child_should_wake+0x0/0x5c
[  379.601685][ T3858]  invoke_syscall+0x48/0x118
[  379.603467][ T3858]  el0_svc_common.constprop.0+0x40/0xe0
[  379.605393][ T3858]  do_el0_svc+0x1c/0x28
[  379.607058][ T3858]  el0_svc+0x34/0xf8
[  379.608631][ T3858]  el0t_64_sync_handler+0x100/0x12c
[  379.610541][ T3858]  el0t_64_sync+0x19c/0x1a0
[  379.627091][ T3858] BUG: Bad page state in process syz.0.18  pfn:4bcd2
[  379.628118][ T3858] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4bcd2
[  379.629208][ T3858] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.632570][ T3858] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  379.635659][ T3858] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  379.639585][ T3858] page dumped because: nonzero mapcount
[  379.649088][ T3858] Modules linked in:
[  379.651909][ T3858] CPU: 0 PID: 3858 Comm: syz.0.18 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.656300][ T3858] Hardware name: linux,dummy-virt (DT)
[  379.658550][ T3858] Call trace:
[  379.660297][ T3858]  dump_backtrace+0x94/0xec
[  379.662523][ T3858]  show_stack+0x18/0x24
[  379.664551][ T3858]  dump_stack_lvl+0x78/0x90
[  379.666461][ T3858]  dump_stack+0x18/0x24
[  379.668184][ T3858]  bad_page+0x84/0x11c
[  379.668847][ T3858]  free_page_is_bad_report+0x98/0xa4
[  379.669801][ T3858]  free_unref_folios+0x4c0/0x624
[  379.671116][ T3858]  folios_put_refs+0x108/0x284
[  379.673119][ T3858]  free_pages_and_swap_cache+0x14c/0x164
[  379.674223][ T3858]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  379.676800][ T3858]  tlb_flush_mmu+0x54/0xe4
[  379.677496][ T3858]  unmap_page_range+0xab0/0x1190
[  379.678231][ T3858]  unmap_single_vma.constprop.0+0x4c/0x84
[  379.679054][ T3858]  unmap_vmas+0x7c/0x170
[  379.680055][ T3858]  exit_mmap+0xc0/0x288
[  379.680844][ T3858]  __mmput+0x3c/0x170
[  379.681681][ T3858]  mmput+0x50/0x5c
[  379.682407][ T3858]  do_exit+0x270/0x98c
[  379.683176][ T3858]  do_group_exit+0x34/0x90
[  379.684317][ T3858]  pid_child_should_wake+0x0/0x5c
[  379.685864][ T3858]  invoke_syscall+0x48/0x118
[  379.686598][ T3858]  el0_svc_common.constprop.0+0x40/0xe0
[  379.687407][ T3858]  do_el0_svc+0x1c/0x28
[  379.688046][ T3858]  el0_svc+0x34/0xf8
[  379.689681][ T3858]  el0t_64_sync_handler+0x100/0x12c
[  379.690666][ T3858]  el0t_64_sync+0x19c/0x1a0
[  379.854340][ T3860] BUG: Bad page cache in process syz.0.19  pfn:4b5ca
[  379.855241][ T3860] page: refcount:4 mapcount:1 mapping:00000000c1fb38f6 index:0x0 pfn:0x4b5ca
[  379.856258][ T3860] memcg:f4f00000060ad000
[  379.856846][ T3860] aops:shmem_aops ino:403
[  379.857536][ T3860] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.858755][ T3860] raw: 01ffc0000004002d ffffc1ffc03577c8 ffffc1ffc02d5a88 f9f00000070f3730
[  379.859583][ T3860] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  379.860109][ T3860] page dumped because: still mapped when deleted
[  379.860643][ T3860] CPU: 1 PID: 3860 Comm: syz.0.19 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.861348][ T3860] Hardware name: linux,dummy-virt (DT)
[  379.862081][ T3860] Call trace:
[  379.862524][ T3860]  dump_backtrace+0x94/0xec
[  379.863549][ T3860]  show_stack+0x18/0x24
[  379.864260][ T3860]  dump_stack_lvl+0x78/0x90
[  379.865529][ T3860]  dump_stack+0x18/0x24
[  379.866389][ T3860]  filemap_unaccount_folio+0x118/0x278
[  379.867229][ T3860]  __filemap_remove_folio+0x3c/0x178
[  379.867978][ T3860]  filemap_remove_folio+0x48/0xa8
[  379.869393][ T3860]  truncate_inode_folio+0x30/0x4c
[  379.871571][ T3860]  shmem_undo_range+0x208/0x620
[  379.872427][ T3860]  shmem_evict_inode+0x130/0x2dc
[  379.872854][ T3860]  evict+0xb4/0x198
[  379.873274][ T3860]  iput+0x100/0x1b8
[  379.874029][ T3860]  dentry_unlink_inode+0xc0/0x188
[  379.875158][ T3860]  __dentry_kill+0x7c/0x1d4
[  379.876186][ T3860]  dput.part.0+0x30/0xbc
[  379.876561][ T3860]  dput+0x4c/0x50
[  379.876899][ T3860]  __fput+0x110/0x2d4
[  379.877257][ T3860]  ____fput+0x10/0x1c
[  379.877602][ T3860]  task_work_run+0x78/0xd0
[  379.877971][ T3860]  do_notify_resume+0x134/0x164
[  379.878340][ T3860]  el0_svc+0xc8/0xf8
[  379.878680][ T3860]  el0t_64_sync_handler+0x100/0x12c
[  379.879065][ T3860]  el0t_64_sync+0x19c/0x1a0
[  379.892833][ T3860] BUG: Bad page cache in process syz.0.19  pfn:4b56a
[  379.893581][ T3860] page: refcount:4 mapcount:1 mapping:00000000c1fb38f6 index:0x1 pfn:0x4b56a
[  379.894397][ T3860] memcg:f4f00000060ad000
[  379.894975][ T3860] aops:shmem_aops ino:403
[  379.895671][ T3860] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.897369][ T3860] raw: 01ffc0000004002d ffffc1ffc02d7288 ffffc1ffc0357a48 f9f00000070f3730
[  379.898406][ T3860] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  379.899268][ T3860] page dumped because: still mapped when deleted
[  379.900548][ T3860] CPU: 1 PID: 3860 Comm: syz.0.19 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.902074][ T3860] Hardware name: linux,dummy-virt (DT)
[  379.902713][ T3860] Call trace:
[  379.903197][ T3860]  dump_backtrace+0x94/0xec
[  379.903903][ T3860]  show_stack+0x18/0x24
[  379.904482][ T3860]  dump_stack_lvl+0x78/0x90
[  379.905127][ T3860]  dump_stack+0x18/0x24
[  379.905695][ T3860]  filemap_unaccount_folio+0x118/0x278
[  379.906388][ T3860]  __filemap_remove_folio+0x3c/0x178
[  379.907087][ T3860]  filemap_remove_folio+0x48/0xa8
[  379.907835][ T3860]  truncate_inode_folio+0x30/0x4c
[  379.908481][ T3860]  shmem_undo_range+0x208/0x620
[  379.909391][ T3860]  shmem_evict_inode+0x130/0x2dc
[  379.910434][ T3860]  evict+0xb4/0x198
[  379.911192][ T3860]  iput+0x100/0x1b8
[  379.912008][ T3860]  dentry_unlink_inode+0xc0/0x188
[  379.912766][ T3860]  __dentry_kill+0x7c/0x1d4
[  379.913386][ T3860]  dput.part.0+0x30/0xbc
[  379.913957][ T3860]  dput+0x4c/0x50
[  379.914855][ T3860]  __fput+0x110/0x2d4
[  379.915538][ T3860]  ____fput+0x10/0x1c
[  379.916104][ T3860]  task_work_run+0x78/0xd0
[  379.916748][ T3860]  do_notify_resume+0x134/0x164
[  379.917408][ T3860]  el0_svc+0xc8/0xf8
[  379.918026][ T3860]  el0t_64_sync_handler+0x100/0x12c
[  379.918766][ T3860]  el0t_64_sync+0x19c/0x1a0
[  379.955079][ T3861] BUG: Bad page map in process syz.0.19  pte:6000004b5ca8c3 pmd:800000046592003
[  379.958951][ T3861] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b5ca
[  379.964139][ T3861] memcg:f4f00000060ad000
[  379.964899][ T3861] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.966593][ T3861] raw: 01ffc0000004002c ffffc1ffc02d5ac8 ffffc1ffc02d5a88 0000000000000000
[  379.967736][ T3861] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  379.968820][ T3861] page dumped because: bad pte
[  379.969522][ T3861] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033edb18 index:0
[  379.971414][ T3861] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  379.974200][ T3861] CPU: 1 PID: 3861 Comm: syz.0.19 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  379.975717][ T3861] Hardware name: linux,dummy-virt (DT)
[  379.976348][ T3861] Call trace:
[  379.976880][ T3861]  dump_backtrace+0x94/0xec
[  379.977522][ T3861]  show_stack+0x18/0x24
[  379.978253][ T3861]  dump_stack_lvl+0x78/0x90
[  379.978808][ T3861]  dump_stack+0x18/0x24
[  379.979450][ T3861]  print_bad_pte+0x1c8/0x258
[  379.980339][ T3861]  unmap_page_range+0x904/0x1190
[  379.981072][ T3861]  unmap_single_vma.constprop.0+0x4c/0x84
[  379.981802][ T3861]  unmap_vmas+0x7c/0x170
[  379.982450][ T3861]  exit_mmap+0xc0/0x288
[  379.983024][ T3861]  __mmput+0x3c/0x170
[  379.983626][ T3861]  mmput+0x50/0x5c
[  379.984172][ T3861]  do_exit+0x270/0x98c
[  379.984804][ T3861]  do_group_exit+0x34/0x90
[  379.985407][ T3861]  copy_siginfo_to_user+0x0/0xec
[  379.986035][ T3861]  do_signal+0x94/0x1450
[  379.986433][ T3861]  do_notify_resume+0xd8/0x164
[  379.986889][ T3861]  el0_svc+0xc8/0xf8
[  379.987485][ T3861]  el0t_64_sync_handler+0x100/0x12c
[  379.988254][ T3861]  el0t_64_sync+0x19c/0x1a0
[  379.990270][ T3861] BUG: Bad page map in process syz.0.19  pte:6000004b56a8c3 pmd:800000046592003
[  379.992166][ T3861] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b56a
[  379.993129][ T3861] memcg:f4f00000060ad000
[  379.993658][ T3861] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  379.994884][ T3861] raw: 01ffc0000004002c ffffc1ffc02d7288 ffffc1ffc0357a48 0000000000000000
[  379.995910][ T3861] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  379.996720][ T3861] page dumped because: bad pte
[  379.997297][ T3861] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033edb18 index:1
[  379.998260][ T3861] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  379.999335][ T3861] CPU: 1 PID: 3861 Comm: syz.0.19 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.000933][ T3861] Hardware name: linux,dummy-virt (DT)
[  380.001602][ T3861] Call trace:
[  380.002114][ T3861]  dump_backtrace+0x94/0xec
[  380.002799][ T3861]  show_stack+0x18/0x24
[  380.003670][ T3861]  dump_stack_lvl+0x78/0x90
[  380.004359][ T3861]  dump_stack+0x18/0x24
[  380.004900][ T3861]  print_bad_pte+0x1c8/0x258
[  380.005544][ T3861]  unmap_page_range+0x904/0x1190
[  380.006269][ T3861]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.006940][ T3861]  unmap_vmas+0x7c/0x170
[  380.007724][ T3861]  exit_mmap+0xc0/0x288
[  380.008229][ T3861]  __mmput+0x3c/0x170
[  380.008745][ T3861]  mmput+0x50/0x5c
[  380.009353][ T3861]  do_exit+0x270/0x98c
[  380.010090][ T3861]  do_group_exit+0x34/0x90
[  380.010760][ T3861]  copy_siginfo_to_user+0x0/0xec
[  380.011619][ T3861]  do_signal+0x94/0x1450
[  380.012416][ T3861]  do_notify_resume+0xd8/0x164
[  380.013181][ T3861]  el0_svc+0xc8/0xf8
[  380.013585][ T3861]  el0t_64_sync_handler+0x100/0x12c
[  380.014017][ T3861]  el0t_64_sync+0x19c/0x1a0
[  380.015746][ T3861] BUG: Bad page state in process syz.0.19  pfn:4b5ca
[  380.016399][ T3861] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b5ca
[  380.017188][ T3861] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.018095][ T3861] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  380.019016][ T3861] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  380.020266][ T3861] page dumped because: nonzero mapcount
[  380.020745][ T3861] Modules linked in:
[  380.021298][ T3861] CPU: 1 PID: 3861 Comm: syz.0.19 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.022715][ T3861] Hardware name: linux,dummy-virt (DT)
[  380.023626][ T3861] Call trace:
[  380.024234][ T3861]  dump_backtrace+0x94/0xec
[  380.024789][ T3861]  show_stack+0x18/0x24
[  380.025452][ T3861]  dump_stack_lvl+0x78/0x90
[  380.026273][ T3861]  dump_stack+0x18/0x24
[  380.026817][ T3861]  bad_page+0x84/0x11c
[  380.027393][ T3861]  free_page_is_bad_report+0x98/0xa4
[  380.027992][ T3861]  free_unref_folios+0x4c0/0x624
[  380.028479][ T3861]  folios_put_refs+0x108/0x284
[  380.028908][ T3861]  free_pages_and_swap_cache+0x14c/0x164
[  380.029423][ T3861]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  380.030143][ T3861]  tlb_flush_mmu+0x54/0xe4
[  380.030704][ T3861]  unmap_page_range+0xab0/0x1190
[  380.031433][ T3861]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.032099][ T3861]  unmap_vmas+0x7c/0x170
[  380.032644][ T3861]  exit_mmap+0xc0/0x288
[  380.033170][ T3861]  __mmput+0x3c/0x170
[  380.033848][ T3861]  mmput+0x50/0x5c
[  380.034593][ T3861]  do_exit+0x270/0x98c
[  380.035262][ T3861]  do_group_exit+0x34/0x90
[  380.035872][ T3861]  copy_siginfo_to_user+0x0/0xec
[  380.036540][ T3861]  do_signal+0x94/0x1450
[  380.037190][ T3861]  do_notify_resume+0xd8/0x164
[  380.037837][ T3861]  el0_svc+0xc8/0xf8
[  380.038384][ T3861]  el0t_64_sync_handler+0x100/0x12c
[  380.039106][ T3861]  el0t_64_sync+0x19c/0x1a0
[  380.040615][ T3861] BUG: Bad page state in process syz.0.19  pfn:4b56a
[  380.041408][ T3861] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b56a
[  380.042359][ T3861] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.043537][ T3861] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  380.044727][ T3861] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  380.045653][ T3861] page dumped because: nonzero mapcount
[  380.046414][ T3861] Modules linked in:
[  380.047091][ T3861] CPU: 1 PID: 3861 Comm: syz.0.19 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.048625][ T3861] Hardware name: linux,dummy-virt (DT)
[  380.049419][ T3861] Call trace:
[  380.050243][ T3861]  dump_backtrace+0x94/0xec
[  380.051184][ T3861]  show_stack+0x18/0x24
[  380.052245][ T3861]  dump_stack_lvl+0x78/0x90
[  380.053072][ T3861]  dump_stack+0x18/0x24
[  380.053854][ T3861]  bad_page+0x84/0x11c
[  380.054590][ T3861]  free_page_is_bad_report+0x98/0xa4
[  380.055387][ T3861]  free_unref_folios+0x4c0/0x624
[  380.056179][ T3861]  folios_put_refs+0x108/0x284
[  380.057103][ T3861]  free_pages_and_swap_cache+0x14c/0x164
[  380.058071][ T3861]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  380.058911][ T3861]  tlb_flush_mmu+0x54/0xe4
[  380.059932][ T3861]  unmap_page_range+0xab0/0x1190
[  380.060803][ T3861]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.061610][ T3861]  unmap_vmas+0x7c/0x170
[  380.062473][ T3861]  exit_mmap+0xc0/0x288
[  380.063300][ T3861]  __mmput+0x3c/0x170
[  380.064205][ T3861]  mmput+0x50/0x5c
[  380.064875][ T3861]  do_exit+0x270/0x98c
[  380.065604][ T3861]  do_group_exit+0x34/0x90
[  380.066732][ T3861]  copy_siginfo_to_user+0x0/0xec
[  380.067651][ T3861]  do_signal+0x94/0x1450
[  380.068556][ T3861]  do_notify_resume+0xd8/0x164
[  380.069514][ T3861]  el0_svc+0xc8/0xf8
[  380.070408][ T3861]  el0t_64_sync_handler+0x100/0x12c
[  380.071164][ T3861]  el0t_64_sync+0x19c/0x1a0
[  380.262222][ T3862] BUG: Bad page cache in process syz.0.20  pfn:4b60e
[  380.264313][ T3862] page: refcount:4 mapcount:1 mapping:000000009965bad8 index:0x0 pfn:0x4b60e
[  380.265384][ T3862] memcg:f4f00000060ad000
[  380.266060][ T3862] aops:shmem_aops ino:4
[  380.266848][ T3862] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.268394][ T3862] raw: 01ffc0000004002d ffffc1ffc02f7b88 ffffc1ffc02f3408 f2f00000039e94d0
[  380.269385][ T3862] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  380.271015][ T3862] page dumped because: still mapped when deleted
[  380.272151][ T3862] CPU: 0 PID: 3862 Comm: syz.0.20 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.273638][ T3862] Hardware name: linux,dummy-virt (DT)
[  380.274391][ T3862] Call trace:
[  380.274952][ T3862]  dump_backtrace+0x94/0xec
[  380.275777][ T3862]  show_stack+0x18/0x24
[  380.276541][ T3862]  dump_stack_lvl+0x78/0x90
[  380.277284][ T3862]  dump_stack+0x18/0x24
[  380.278008][ T3862]  filemap_unaccount_folio+0x118/0x278
[  380.278779][ T3862]  __filemap_remove_folio+0x3c/0x178
[  380.279787][ T3862]  filemap_remove_folio+0x48/0xa8
[  380.280859][ T3862]  truncate_inode_folio+0x30/0x4c
[  380.281647][ T3862]  shmem_undo_range+0x208/0x620
[  380.282565][ T3862]  shmem_evict_inode+0x130/0x2dc
[  380.283423][ T3862]  evict+0xb4/0x198
[  380.284133][ T3862]  iput+0x100/0x1b8
[  380.284824][ T3862]  dentry_unlink_inode+0xc0/0x188
[  380.285566][ T3862]  __dentry_kill+0x7c/0x1d4
[  380.286319][ T3862]  dput.part.0+0x30/0xbc
[  380.286999][ T3862]  dput+0x4c/0x50
[  380.287646][ T3862]  __fput+0x110/0x2d4
[  380.288336][ T3862]  ____fput+0x10/0x1c
[  380.288991][ T3862]  task_work_run+0x78/0xd0
[  380.289768][ T3862]  do_notify_resume+0x134/0x164
[  380.290655][ T3862]  el0_svc+0xc8/0xf8
[  380.291422][ T3862]  el0t_64_sync_handler+0x100/0x12c
[  380.292250][ T3862]  el0t_64_sync+0x19c/0x1a0
[  380.298962][ T3862] BUG: Bad page cache in process syz.0.20  pfn:4bcd0
[  380.300534][ T3862] page: refcount:4 mapcount:1 mapping:000000009965bad8 index:0x1 pfn:0x4bcd0
[  380.301703][ T3862] memcg:f4f00000060ad000
[  380.302497][ T3862] aops:shmem_aops ino:4
[  380.303632][ T3862] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.305428][ T3862] raw: 01ffc0000004002d ffffc1ffc02d8388 ffffc1ffc02cb548 f2f00000039e94d0
[  380.306987][ T3862] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  380.308365][ T3862] page dumped because: still mapped when deleted
[  380.309404][ T3862] CPU: 0 PID: 3862 Comm: syz.0.20 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.311054][ T3862] Hardware name: linux,dummy-virt (DT)
[  380.312098][ T3862] Call trace:
[  380.312736][ T3862]  dump_backtrace+0x94/0xec
[  380.313766][ T3862]  show_stack+0x18/0x24
[  380.314628][ T3862]  dump_stack_lvl+0x78/0x90
[  380.315526][ T3862]  dump_stack+0x18/0x24
[  380.316276][ T3862]  filemap_unaccount_folio+0x118/0x278
[  380.317451][ T3862]  __filemap_remove_folio+0x3c/0x178
[  380.318436][ T3862]  filemap_remove_folio+0x48/0xa8
[  380.319467][ T3862]  truncate_inode_folio+0x30/0x4c
[  380.320489][ T3862]  shmem_undo_range+0x208/0x620
[  380.321224][ T3862]  shmem_evict_inode+0x130/0x2dc
[  380.322074][ T3862]  evict+0xb4/0x198
[  380.322780][ T3862]  iput+0x100/0x1b8
[  380.323464][ T3862]  dentry_unlink_inode+0xc0/0x188
[  380.324149][ T3862]  __dentry_kill+0x7c/0x1d4
[  380.324871][ T3862]  dput.part.0+0x30/0xbc
[  380.325549][ T3862]  dput+0x4c/0x50
[  380.326176][ T3862]  __fput+0x110/0x2d4
[  380.326967][ T3862]  ____fput+0x10/0x1c
[  380.327821][ T3862]  task_work_run+0x78/0xd0
[  380.328585][ T3862]  do_notify_resume+0x134/0x164
[  380.329303][ T3862]  el0_svc+0xc8/0xf8
[  380.330216][ T3862]  el0t_64_sync_handler+0x100/0x12c
[  380.331227][ T3862]  el0t_64_sync+0x19c/0x1a0
[  380.358224][ T3863] BUG: Bad page map in process syz.0.20  pte:6000004b60e8c3 pmd:800000047986003
[  380.359499][ T3863] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b60e
[  380.361985][ T3863] memcg:f4f00000060ad000
[  380.362665][ T3863] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.364147][ T3863] raw: 01ffc0000004002c ffffc1ffc02cc148 ffffc1ffc02f3408 0000000000000000
[  380.365262][ T3863] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  380.366403][ T3863] page dumped because: bad pte
[  380.367239][ T3863] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:0
[  380.368435][ T3863] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  380.369751][ T3863] CPU: 0 PID: 3863 Comm: syz.0.20 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.371441][ T3863] Hardware name: linux,dummy-virt (DT)
[  380.372182][ T3863] Call trace:
[  380.372839][ T3863]  dump_backtrace+0x94/0xec
[  380.373701][ T3863]  show_stack+0x18/0x24
[  380.374451][ T3863]  dump_stack_lvl+0x78/0x90
[  380.375289][ T3863]  dump_stack+0x18/0x24
[  380.376021][ T3863]  print_bad_pte+0x1c8/0x258
[  380.376795][ T3863]  unmap_page_range+0x904/0x1190
[  380.377652][ T3863]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.378504][ T3863]  unmap_vmas+0x7c/0x170
[  380.379176][ T3863]  exit_mmap+0xc0/0x288
[  380.380083][ T3863]  __mmput+0x3c/0x170
[  380.380889][ T3863]  mmput+0x50/0x5c
[  380.381557][ T3863]  do_exit+0x270/0x98c
[  380.382275][ T3863]  do_group_exit+0x34/0x90
[  380.382931][ T3863]  copy_siginfo_to_user+0x0/0xec
[  380.383551][ T3863]  do_signal+0x94/0x1450
[  380.383974][ T3863]  do_notify_resume+0xd8/0x164
[  380.384372][ T3863]  el0_svc+0xc8/0xf8
[  380.384776][ T3863]  el0t_64_sync_handler+0x100/0x12c
[  380.385154][ T3863]  el0t_64_sync+0x19c/0x1a0
[  380.386221][ T3863] BUG: Bad page map in process syz.0.20  pte:6000004bcd08c3 pmd:800000047986003
[  380.386823][ T3863] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4bcd0
[  380.388742][ T3863] memcg:f4f00000060ad000
[  380.389279][ T3863] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.392003][ T3863] raw: 01ffc0000004002c ffffc1ffc02d8388 ffffc1ffc02cb548 0000000000000000
[  380.393052][ T3863] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  380.393915][ T3863] page dumped because: bad pte
[  380.394531][ T3863] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:1
[  380.395220][ T3863] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  380.396099][ T3863] CPU: 0 PID: 3863 Comm: syz.0.20 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.396920][ T3863] Hardware name: linux,dummy-virt (DT)
[  380.397333][ T3863] Call trace:
[  380.397612][ T3863]  dump_backtrace+0x94/0xec
[  380.397977][ T3863]  show_stack+0x18/0x24
[  380.398523][ T3863]  dump_stack_lvl+0x78/0x90
[  380.399125][ T3863]  dump_stack+0x18/0x24
[  380.399824][ T3863]  print_bad_pte+0x1c8/0x258
[  380.400682][ T3863]  unmap_page_range+0x904/0x1190
[  380.401457][ T3863]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.402277][ T3863]  unmap_vmas+0x7c/0x170
[  380.402980][ T3863]  exit_mmap+0xc0/0x288
[  380.403704][ T3863]  __mmput+0x3c/0x170
[  380.404433][ T3863]  mmput+0x50/0x5c
[  380.405139][ T3863]  do_exit+0x270/0x98c
[  380.405954][ T3863]  do_group_exit+0x34/0x90
[  380.406720][ T3863]  copy_siginfo_to_user+0x0/0xec
[  380.408103][ T3863]  do_signal+0x94/0x1450
[  380.408834][ T3863]  do_notify_resume+0xd8/0x164
[  380.409891][ T3863]  el0_svc+0xc8/0xf8
[  380.410744][ T3863]  el0t_64_sync_handler+0x100/0x12c
[  380.411862][ T3863]  el0t_64_sync+0x19c/0x1a0
[  380.414510][ T3863] BUG: Bad page state in process syz.0.20  pfn:4b60e
[  380.415522][ T3863] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b60e
[  380.416373][ T3863] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.417502][ T3863] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  380.422631][ T3863] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  380.423953][ T3863] page dumped because: nonzero mapcount
[  380.424823][ T3863] Modules linked in:
[  380.425725][ T3863] CPU: 0 PID: 3863 Comm: syz.0.20 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.427593][ T3863] Hardware name: linux,dummy-virt (DT)
[  380.428633][ T3863] Call trace:
[  380.429206][ T3863]  dump_backtrace+0x94/0xec
[  380.430254][ T3863]  show_stack+0x18/0x24
[  380.430990][ T3863]  dump_stack_lvl+0x78/0x90
[  380.431823][ T3863]  dump_stack+0x18/0x24
[  380.432843][ T3863]  bad_page+0x84/0x11c
[  380.433607][ T3863]  free_page_is_bad_report+0x98/0xa4
[  380.434616][ T3863]  free_unref_folios+0x4c0/0x624
[  380.435552][ T3863]  folios_put_refs+0x108/0x284
[  380.436338][ T3863]  free_pages_and_swap_cache+0x14c/0x164
[  380.437314][ T3863]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  380.438162][ T3863]  tlb_flush_mmu+0x54/0xe4
[  380.438984][ T3863]  unmap_page_range+0xab0/0x1190
[  380.439845][ T3863]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.440821][ T3863]  unmap_vmas+0x7c/0x170
[  380.441518][ T3863]  exit_mmap+0xc0/0x288
[  380.442162][ T3863]  __mmput+0x3c/0x170
[  380.442848][ T3863]  mmput+0x50/0x5c
[  380.443496][ T3863]  do_exit+0x270/0x98c
[  380.444253][ T3863]  do_group_exit+0x34/0x90
[  380.444983][ T3863]  copy_siginfo_to_user+0x0/0xec
[  380.445873][ T3863]  do_signal+0x94/0x1450
[  380.446693][ T3863]  do_notify_resume+0xd8/0x164
[  380.447508][ T3863]  el0_svc+0xc8/0xf8
[  380.448190][ T3863]  el0t_64_sync_handler+0x100/0x12c
[  380.448987][ T3863]  el0t_64_sync+0x19c/0x1a0
[  380.466690][ T3863] BUG: Bad page state in process syz.0.20  pfn:4bcd0
[  380.467765][ T3863] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4bcd0
[  380.468843][ T3863] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.474590][ T3863] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  380.477875][ T3863] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  380.481788][ T3863] page dumped because: nonzero mapcount
[  380.483729][ T3863] Modules linked in:
[  380.486194][ T3863] CPU: 0 PID: 3863 Comm: syz.0.20 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.487773][ T3863] Hardware name: linux,dummy-virt (DT)
[  380.488597][ T3863] Call trace:
[  380.489220][ T3863]  dump_backtrace+0x94/0xec
[  380.490303][ T3863]  show_stack+0x18/0x24
[  380.491113][ T3863]  dump_stack_lvl+0x78/0x90
[  380.491859][ T3863]  dump_stack+0x18/0x24
[  380.492560][ T3863]  bad_page+0x84/0x11c
[  380.493237][ T3863]  free_page_is_bad_report+0x98/0xa4
[  380.494048][ T3863]  free_unref_folios+0x4c0/0x624
[  380.494883][ T3863]  folios_put_refs+0x108/0x284
[  380.495864][ T3863]  free_pages_and_swap_cache+0x14c/0x164
[  380.496782][ T3863]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  380.497675][ T3863]  tlb_flush_mmu+0x54/0xe4
[  380.498435][ T3863]  unmap_page_range+0xab0/0x1190
[  380.499262][ T3863]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.500454][ T3863]  unmap_vmas+0x7c/0x170
[  380.501188][ T3863]  exit_mmap+0xc0/0x288
[  380.501860][ T3863]  __mmput+0x3c/0x170
[  380.502518][ T3863]  mmput+0x50/0x5c
[  380.503136][ T3863]  do_exit+0x270/0x98c
[  380.503869][ T3863]  do_group_exit+0x34/0x90
[  380.504649][ T3863]  copy_siginfo_to_user+0x0/0xec
[  380.505453][ T3863]  do_signal+0x94/0x1450
[  380.506156][ T3863]  do_notify_resume+0xd8/0x164
[  380.506963][ T3863]  el0_svc+0xc8/0xf8
[  380.507714][ T3863]  el0t_64_sync_handler+0x100/0x12c
[  380.508541][ T3863]  el0t_64_sync+0x19c/0x1a0
[  380.668327][ T3864] BUG: Bad page cache in process syz.0.21  pfn:4b567
[  380.668983][ T3864] page: refcount:4 mapcount:1 mapping:00000000f2fad324 index:0x0 pfn:0x4b567
[  380.669516][ T3864] memcg:f4f00000060ad000
[  380.670596][ T3864] aops:shmem_aops ino:404
[  380.672134][ T3864] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.676223][ T3864] raw: 01ffc0000004002d ffffc1ffc02d6cc8 ffffc1ffc03098c8 f8f00000070f3410
[  380.678560][ T3864] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  380.679771][ T3864] page dumped because: still mapped when deleted
[  380.680820][ T3864] CPU: 1 PID: 3864 Comm: syz.0.21 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.682201][ T3864] Hardware name: linux,dummy-virt (DT)
[  380.682843][ T3864] Call trace:
[  380.683332][ T3864]  dump_backtrace+0x94/0xec
[  380.683987][ T3864]  show_stack+0x18/0x24
[  380.684533][ T3864]  dump_stack_lvl+0x78/0x90
[  380.685147][ T3864]  dump_stack+0x18/0x24
[  380.685706][ T3864]  filemap_unaccount_folio+0x118/0x278
[  380.686447][ T3864]  __filemap_remove_folio+0x3c/0x178
[  380.687150][ T3864]  filemap_remove_folio+0x48/0xa8
[  380.687869][ T3864]  truncate_inode_folio+0x30/0x4c
[  380.688618][ T3864]  shmem_undo_range+0x208/0x620
[  380.689291][ T3864]  shmem_evict_inode+0x130/0x2dc
[  380.690173][ T3864]  evict+0xb4/0x198
[  380.690808][ T3864]  iput+0x100/0x1b8
[  380.691573][ T3864]  dentry_unlink_inode+0xc0/0x188
[  380.692682][ T3864]  __dentry_kill+0x7c/0x1d4
[  380.693328][ T3864]  dput.part.0+0x30/0xbc
[  380.694108][ T3864]  dput+0x4c/0x50
[  380.694940][ T3864]  __fput+0x110/0x2d4
[  380.695537][ T3864]  ____fput+0x10/0x1c
[  380.696161][ T3864]  task_work_run+0x78/0xd0
[  380.696778][ T3864]  do_notify_resume+0x134/0x164
[  380.697415][ T3864]  el0_svc+0xc8/0xf8
[  380.698153][ T3864]  el0t_64_sync_handler+0x100/0x12c
[  380.698799][ T3864]  el0t_64_sync+0x19c/0x1a0
[  380.701969][ T3864] BUG: Bad page cache in process syz.0.21  pfn:4c263
[  380.702705][ T3864] page: refcount:4 mapcount:1 mapping:00000000f2fad324 index:0x1 pfn:0x4c263
[  380.703625][ T3864] memcg:f4f00000060ad000
[  380.704165][ T3864] aops:shmem_aops ino:404
[  380.704697][ T3864] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.705841][ T3864] raw: 01ffc0000004002d ffffc1ffc02d59c8 ffffc1ffc0357d08 f8f00000070f3410
[  380.706469][ T3864] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  380.707127][ T3864] page dumped because: still mapped when deleted
[  380.708032][ T3864] CPU: 1 PID: 3864 Comm: syz.0.21 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.709345][ T3864] Hardware name: linux,dummy-virt (DT)
[  380.710150][ T3864] Call trace:
[  380.710658][ T3864]  dump_backtrace+0x94/0xec
[  380.711342][ T3864]  show_stack+0x18/0x24
[  380.712033][ T3864]  dump_stack_lvl+0x78/0x90
[  380.712527][ T3864]  dump_stack+0x18/0x24
[  380.713118][ T3864]  filemap_unaccount_folio+0x118/0x278
[  380.713655][ T3864]  __filemap_remove_folio+0x3c/0x178
[  380.714207][ T3864]  filemap_remove_folio+0x48/0xa8
[  380.714834][ T3864]  truncate_inode_folio+0x30/0x4c
[  380.715385][ T3864]  shmem_undo_range+0x208/0x620
[  380.715924][ T3864]  shmem_evict_inode+0x130/0x2dc
[  380.716442][ T3864]  evict+0xb4/0x198
[  380.716886][ T3864]  iput+0x100/0x1b8
[  380.717352][ T3864]  dentry_unlink_inode+0xc0/0x188
[  380.717888][ T3864]  __dentry_kill+0x7c/0x1d4
[  380.718344][ T3864]  dput.part.0+0x30/0xbc
[  380.718822][ T3864]  dput+0x4c/0x50
[  380.719287][ T3864]  __fput+0x110/0x2d4
[  380.719824][ T3864]  ____fput+0x10/0x1c
[  380.720455][ T3864]  task_work_run+0x78/0xd0
[  380.720958][ T3864]  do_notify_resume+0x134/0x164
[  380.721634][ T3864]  el0_svc+0xc8/0xf8
[  380.722169][ T3864]  el0t_64_sync_handler+0x100/0x12c
[  380.723027][ T3864]  el0t_64_sync+0x19c/0x1a0
[  380.774718][ T3865] BUG: Bad page map in process syz.0.21  pte:6000004b5678c3 pmd:800000043a9f003
[  380.775822][ T3865] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b567
[  380.777413][ T3865] memcg:f4f00000060ad000
[  380.778100][ T3865] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.779406][ T3865] raw: 01ffc0000004002c ffffc1ffc02dae48 ffffc1ffc03098c8 0000000000000000
[  380.781683][ T3865] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  380.782609][ T3865] page dumped because: bad pte
[  380.784269][ T3865] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033edb18 index:0
[  380.785415][ T3865] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  380.787081][ T3865] CPU: 1 PID: 3865 Comm: syz.0.21 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.788639][ T3865] Hardware name: linux,dummy-virt (DT)
[  380.789317][ T3865] Call trace:
[  380.790206][ T3865]  dump_backtrace+0x94/0xec
[  380.791031][ T3865]  show_stack+0x18/0x24
[  380.791944][ T3865]  dump_stack_lvl+0x78/0x90
[  380.792672][ T3865]  dump_stack+0x18/0x24
[  380.793363][ T3865]  print_bad_pte+0x1c8/0x258
[  380.794108][ T3865]  unmap_page_range+0x904/0x1190
[  380.794853][ T3865]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.795868][ T3865]  unmap_vmas+0x7c/0x170
[  380.796616][ T3865]  exit_mmap+0xc0/0x288
[  380.797499][ T3865]  __mmput+0x3c/0x170
[  380.798198][ T3865]  mmput+0x50/0x5c
[  380.798869][ T3865]  do_exit+0x270/0x98c
[  380.799605][ T3865]  do_group_exit+0x34/0x90
[  380.800579][ T3865]  copy_siginfo_to_user+0x0/0xec
[  380.801350][ T3865]  do_signal+0x94/0x1450
[  380.803177][ T3865]  do_notify_resume+0xd8/0x164
[  380.804015][ T3865]  el0_svc+0xc8/0xf8
[  380.804705][ T3865]  el0t_64_sync_handler+0x100/0x12c
[  380.805668][ T3865]  el0t_64_sync+0x19c/0x1a0
[  380.821763][ T3865] BUG: Bad page map in process syz.0.21  pte:6000004c2638c3 pmd:800000043a9f003
[  380.822969][ T3865] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4c263
[  380.823865][ T3865] memcg:f4f00000060ad000
[  380.824443][ T3865] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.825920][ T3865] raw: 01ffc0000004002c ffffc1ffc02d59c8 ffffc1ffc0357d08 0000000000000000
[  380.827340][ T3865] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  380.828356][ T3865] page dumped because: bad pte
[  380.829223][ T3865] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033edb18 index:1
[  380.832110][ T3865] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  380.833222][ T3865] CPU: 0 PID: 3865 Comm: syz.0.21 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.834539][ T3865] Hardware name: linux,dummy-virt (DT)
[  380.835300][ T3865] Call trace:
[  380.835900][ T3865]  dump_backtrace+0x94/0xec
[  380.836769][ T3865]  show_stack+0x18/0x24
[  380.837481][ T3865]  dump_stack_lvl+0x78/0x90
[  380.838348][ T3865]  dump_stack+0x18/0x24
[  380.839070][ T3865]  print_bad_pte+0x1c8/0x258
[  380.840123][ T3865]  unmap_page_range+0x904/0x1190
[  380.840946][ T3865]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.841796][ T3865]  unmap_vmas+0x7c/0x170
[  380.842481][ T3865]  exit_mmap+0xc0/0x288
[  380.843296][ T3865]  __mmput+0x3c/0x170
[  380.843988][ T3865]  mmput+0x50/0x5c
[  380.844723][ T3865]  do_exit+0x270/0x98c
[  380.845478][ T3865]  do_group_exit+0x34/0x90
[  380.846274][ T3865]  copy_siginfo_to_user+0x0/0xec
[  380.847326][ T3865]  do_signal+0x94/0x1450
[  380.848070][ T3865]  do_notify_resume+0xd8/0x164
[  380.848986][ T3865]  el0_svc+0xc8/0xf8
[  380.849812][ T3865]  el0t_64_sync_handler+0x100/0x12c
[  380.850777][ T3865]  el0t_64_sync+0x19c/0x1a0
[  380.863356][ T3865] BUG: Bad page state in process syz.0.21  pfn:4b567
[  380.864232][ T3865] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b567
[  380.865215][ T3865] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.866866][ T3865] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  380.868117][ T3865] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  380.869199][ T3865] page dumped because: nonzero mapcount
[  380.871657][ T3865] Modules linked in:
[  380.872377][ T3865] CPU: 0 PID: 3865 Comm: syz.0.21 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.873623][ T3865] Hardware name: linux,dummy-virt (DT)
[  380.874375][ T3865] Call trace:
[  380.874940][ T3865]  dump_backtrace+0x94/0xec
[  380.875798][ T3865]  show_stack+0x18/0x24
[  380.876608][ T3865]  dump_stack_lvl+0x78/0x90
[  380.877559][ T3865]  dump_stack+0x18/0x24
[  380.878412][ T3865]  bad_page+0x84/0x11c
[  380.879112][ T3865]  free_page_is_bad_report+0x98/0xa4
[  380.880191][ T3865]  free_unref_folios+0x4c0/0x624
[  380.881004][ T3865]  folios_put_refs+0x108/0x284
[  380.881728][ T3865]  free_pages_and_swap_cache+0x14c/0x164
[  380.882460][ T3865]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  380.883261][ T3865]  tlb_flush_mmu+0x54/0xe4
[  380.883949][ T3865]  unmap_page_range+0xab0/0x1190
[  380.884709][ T3865]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.885501][ T3865]  unmap_vmas+0x7c/0x170
[  380.886250][ T3865]  exit_mmap+0xc0/0x288
[  380.887029][ T3865]  __mmput+0x3c/0x170
[  380.887814][ T3865]  mmput+0x50/0x5c
[  380.888537][ T3865]  do_exit+0x270/0x98c
[  380.889250][ T3865]  do_group_exit+0x34/0x90
[  380.890144][ T3865]  copy_siginfo_to_user+0x0/0xec
[  380.891033][ T3865]  do_signal+0x94/0x1450
[  380.891777][ T3865]  do_notify_resume+0xd8/0x164
[  380.892465][ T3865]  el0_svc+0xc8/0xf8
[  380.893230][ T3865]  el0t_64_sync_handler+0x100/0x12c
[  380.894077][ T3865]  el0t_64_sync+0x19c/0x1a0
[  380.896354][ T3865] BUG: Bad page state in process syz.0.21  pfn:4c263
[  380.897347][ T3865] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4c263
[  380.898440][ T3865] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  380.903777][ T3865] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  380.905131][ T3865] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  380.906194][ T3865] page dumped because: nonzero mapcount
[  380.906959][ T3865] Modules linked in:
[  380.908042][ T3865] CPU: 0 PID: 3865 Comm: syz.0.21 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  380.909738][ T3865] Hardware name: linux,dummy-virt (DT)
[  380.910901][ T3865] Call trace:
[  380.911635][ T3865]  dump_backtrace+0x94/0xec
[  380.912416][ T3865]  show_stack+0x18/0x24
[  380.913124][ T3865]  dump_stack_lvl+0x78/0x90
[  380.913982][ T3865]  dump_stack+0x18/0x24
[  380.914733][ T3865]  bad_page+0x84/0x11c
[  380.915521][ T3865]  free_page_is_bad_report+0x98/0xa4
[  380.916610][ T3865]  free_unref_folios+0x4c0/0x624
[  380.917474][ T3865]  folios_put_refs+0x108/0x284
[  380.918318][ T3865]  free_pages_and_swap_cache+0x14c/0x164
[  380.919181][ T3865]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  380.920462][ T3865]  tlb_flush_mmu+0x54/0xe4
[  380.921095][ T3865]  unmap_page_range+0xab0/0x1190
[  380.921862][ T3865]  unmap_single_vma.constprop.0+0x4c/0x84
[  380.922656][ T3865]  unmap_vmas+0x7c/0x170
[  380.923623][ T3865]  exit_mmap+0xc0/0x288
[  380.924470][ T3865]  __mmput+0x3c/0x170
[  380.925228][ T3865]  mmput+0x50/0x5c
[  380.925975][ T3865]  do_exit+0x270/0x98c
[  380.926709][ T3865]  do_group_exit+0x34/0x90
[  380.927676][ T3865]  copy_siginfo_to_user+0x0/0xec
[  380.928547][ T3865]  do_signal+0x94/0x1450
[  380.929350][ T3865]  do_notify_resume+0xd8/0x164
[  380.930567][ T3865]  el0_svc+0xc8/0xf8
[  380.931428][ T3865]  el0t_64_sync_handler+0x100/0x12c
[  380.932242][ T3865]  el0t_64_sync+0x19c/0x1a0
[  381.134981][ T3866] BUG: Bad page cache in process syz.0.22  pfn:46ac5
[  381.137499][ T3866] page: refcount:4 mapcount:1 mapping:00000000257b2338 index:0x0 pfn:0x46ac5
[  381.138679][ T3866] memcg:f4f00000060ad000
[  381.139406][ T3866] aops:shmem_aops ino:5
[  381.140351][ T3866] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.141848][ T3866] raw: 01ffc0000004002d ffffc1ffc02dafc8 ffffc1ffc1e83008 f7f00000039eb730
[  381.143097][ T3866] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  381.144515][ T3866] page dumped because: still mapped when deleted
[  381.145472][ T3866] CPU: 0 PID: 3866 Comm: syz.0.22 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.146955][ T3866] Hardware name: linux,dummy-virt (DT)
[  381.147819][ T3866] Call trace:
[  381.148429][ T3866]  dump_backtrace+0x94/0xec
[  381.149319][ T3866]  show_stack+0x18/0x24
[  381.150407][ T3866]  dump_stack_lvl+0x78/0x90
[  381.151331][ T3866]  dump_stack+0x18/0x24
[  381.152067][ T3866]  filemap_unaccount_folio+0x118/0x278
[  381.152821][ T3866]  __filemap_remove_folio+0x3c/0x178
[  381.154007][ T3866]  filemap_remove_folio+0x48/0xa8
[  381.154848][ T3866]  truncate_inode_folio+0x30/0x4c
[  381.155660][ T3866]  shmem_undo_range+0x208/0x620
[  381.156485][ T3866]  shmem_evict_inode+0x130/0x2dc
[  381.157251][ T3866]  evict+0xb4/0x198
[  381.157926][ T3866]  iput+0x100/0x1b8
[  381.158570][ T3866]  dentry_unlink_inode+0xc0/0x188
[  381.159516][ T3866]  __dentry_kill+0x7c/0x1d4
[  381.160622][ T3866]  dput.part.0+0x30/0xbc
[  381.161422][ T3866]  dput+0x4c/0x50
[  381.162121][ T3866]  __fput+0x110/0x2d4
[  381.162774][ T3866]  ____fput+0x10/0x1c
[  381.163526][ T3866]  task_work_run+0x78/0xd0
[  381.164368][ T3866]  do_notify_resume+0x134/0x164
[  381.165299][ T3866]  el0_svc+0xc8/0xf8
[  381.166276][ T3866]  el0t_64_sync_handler+0x100/0x12c
[  381.168741][ T3866]  el0t_64_sync+0x19c/0x1a0
[  381.182185][ T3866] BUG: Bad page cache in process syz.0.22  pfn:ba0c0
[  381.183157][ T3866] page: refcount:4 mapcount:1 mapping:00000000257b2338 index:0x1 pfn:0xba0c0
[  381.184297][ T3866] memcg:f4f00000060ad000
[  381.184987][ T3866] aops:shmem_aops ino:5
[  381.185712][ T3866] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.187150][ T3866] raw: 01ffc0000004002d ffffc1ffc01ab148 ffffc1ffc039cb08 f7f00000039eb730
[  381.188111][ T3866] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  381.189159][ T3866] page dumped because: still mapped when deleted
[  381.190237][ T3866] CPU: 0 PID: 3866 Comm: syz.0.22 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.191989][ T3866] Hardware name: linux,dummy-virt (DT)
[  381.192642][ T3866] Call trace:
[  381.193171][ T3866]  dump_backtrace+0x94/0xec
[  381.193882][ T3866]  show_stack+0x18/0x24
[  381.194530][ T3866]  dump_stack_lvl+0x78/0x90
[  381.195450][ T3866]  dump_stack+0x18/0x24
[  381.196289][ T3866]  filemap_unaccount_folio+0x118/0x278
[  381.197203][ T3866]  __filemap_remove_folio+0x3c/0x178
[  381.198033][ T3866]  filemap_remove_folio+0x48/0xa8
[  381.198814][ T3866]  truncate_inode_folio+0x30/0x4c
[  381.199799][ T3866]  shmem_undo_range+0x208/0x620
[  381.200697][ T3866]  shmem_evict_inode+0x130/0x2dc
[  381.201457][ T3866]  evict+0xb4/0x198
[  381.202092][ T3866]  iput+0x100/0x1b8
[  381.202698][ T3866]  dentry_unlink_inode+0xc0/0x188
[  381.203410][ T3866]  __dentry_kill+0x7c/0x1d4
[  381.204091][ T3866]  dput.part.0+0x30/0xbc
[  381.204874][ T3866]  dput+0x4c/0x50
[  381.205957][ T3866]  __fput+0x110/0x2d4
[  381.206636][ T3866]  ____fput+0x10/0x1c
[  381.207466][ T3866]  task_work_run+0x78/0xd0
[  381.208234][ T3866]  do_notify_resume+0x134/0x164
[  381.208980][ T3866]  el0_svc+0xc8/0xf8
[  381.209897][ T3866]  el0t_64_sync_handler+0x100/0x12c
[  381.211272][ T3866]  el0t_64_sync+0x19c/0x1a0
[  381.217285][ T3867] BUG: Bad page map in process syz.0.22  pte:60000046ac58c3 pmd:8000000479f0003
[  381.218540][ T3867] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x46ac5
[  381.219731][ T3867] memcg:f4f00000060ad000
[  381.221314][ T3867] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.225367][ T3867] raw: 01ffc0000004002c ffffc1ffc02d9a48 ffffc1ffc1e83008 0000000000000000
[  381.226865][ T3867] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  381.231098][ T3867] page dumped because: bad pte
[  381.233098][ T3867] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:0
[  381.235925][ T3867] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  381.239579][ T3867] CPU: 0 PID: 3867 Comm: syz.0.22 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.243341][ T3867] Hardware name: linux,dummy-virt (DT)
[  381.244128][ T3867] Call trace:
[  381.244743][ T3867]  dump_backtrace+0x94/0xec
[  381.245616][ T3867]  show_stack+0x18/0x24
[  381.246383][ T3867]  dump_stack_lvl+0x78/0x90
[  381.247256][ T3867]  dump_stack+0x18/0x24
[  381.248641][ T3867]  print_bad_pte+0x1c8/0x258
[  381.249552][ T3867]  unmap_page_range+0x904/0x1190
[  381.250518][ T3867]  unmap_single_vma.constprop.0+0x4c/0x84
[  381.251441][ T3867]  unmap_vmas+0x7c/0x170
[  381.252094][ T3867]  exit_mmap+0xc0/0x288
[  381.252778][ T3867]  __mmput+0x3c/0x170
[  381.253476][ T3867]  mmput+0x50/0x5c
[  381.254208][ T3867]  do_exit+0x270/0x98c
[  381.255001][ T3867]  do_group_exit+0x34/0x90
[  381.255753][ T3867]  copy_siginfo_to_user+0x0/0xec
[  381.256551][ T3867]  do_signal+0x94/0x1450
[  381.257453][ T3867]  do_notify_resume+0xd8/0x164
[  381.258306][ T3867]  el0_svc+0xc8/0xf8
[  381.259147][ T3867]  el0t_64_sync_handler+0x100/0x12c
[  381.260524][ T3867]  el0t_64_sync+0x19c/0x1a0
[  381.265310][ T3867] BUG: Bad page map in process syz.0.22  pte:600000ba0c08c3 pmd:8000000479f0003
[  381.266561][ T3867] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0xba0c0
[  381.269001][ T3867] memcg:f4f00000060ad000
[  381.269588][ T3867] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.271849][ T3867] raw: 01ffc0000004002c ffffc1ffc01ab148 ffffc1ffc039cb08 0000000000000000
[  381.272856][ T3867] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  381.273825][ T3867] page dumped because: bad pte
[  381.274506][ T3867] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:1
[  381.276105][ T3867] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  381.277422][ T3867] CPU: 0 PID: 3867 Comm: syz.0.22 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.278749][ T3867] Hardware name: linux,dummy-virt (DT)
[  381.279593][ T3867] Call trace:
[  381.280483][ T3867]  dump_backtrace+0x94/0xec
[  381.281291][ T3867]  show_stack+0x18/0x24
[  381.281987][ T3867]  dump_stack_lvl+0x78/0x90
[  381.282701][ T3867]  dump_stack+0x18/0x24
[  381.283451][ T3867]  print_bad_pte+0x1c8/0x258
[  381.284206][ T3867]  unmap_page_range+0x904/0x1190
[  381.285031][ T3867]  unmap_single_vma.constprop.0+0x4c/0x84
[  381.285985][ T3867]  unmap_vmas+0x7c/0x170
[  381.286782][ T3867]  exit_mmap+0xc0/0x288
[  381.287844][ T3867]  __mmput+0x3c/0x170
[  381.288514][ T3867]  mmput+0x50/0x5c
[  381.289166][ T3867]  do_exit+0x270/0x98c
[  381.290281][ T3867]  do_group_exit+0x34/0x90
[  381.291076][ T3867]  copy_siginfo_to_user+0x0/0xec
[  381.291925][ T3867]  do_signal+0x94/0x1450
[  381.292652][ T3867]  do_notify_resume+0xd8/0x164
[  381.293462][ T3867]  el0_svc+0xc8/0xf8
[  381.294261][ T3867]  el0t_64_sync_handler+0x100/0x12c
[  381.294981][ T3867]  el0t_64_sync+0x19c/0x1a0
[  381.305783][ T3867] BUG: Bad page state in process syz.0.22  pfn:46ac5
[  381.306913][ T3867] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x46ac5
[  381.308264][ T3867] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.311191][ T3867] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  381.312340][ T3867] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  381.313445][ T3867] page dumped because: nonzero mapcount
[  381.314293][ T3867] Modules linked in:
[  381.314999][ T3867] CPU: 0 PID: 3867 Comm: syz.0.22 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.316327][ T3867] Hardware name: linux,dummy-virt (DT)
[  381.317122][ T3867] Call trace:
[  381.317719][ T3867]  dump_backtrace+0x94/0xec
[  381.318579][ T3867]  show_stack+0x18/0x24
[  381.319351][ T3867]  dump_stack_lvl+0x78/0x90
[  381.320807][ T3867]  dump_stack+0x18/0x24
[  381.321530][ T3867]  bad_page+0x84/0x11c
[  381.322313][ T3867]  free_page_is_bad_report+0x98/0xa4
[  381.323114][ T3867]  free_unref_folios+0x4c0/0x624
[  381.323889][ T3867]  folios_put_refs+0x108/0x284
[  381.324715][ T3867]  free_pages_and_swap_cache+0x14c/0x164
[  381.326185][ T3867]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  381.327129][ T3867]  tlb_flush_mmu+0x54/0xe4
[  381.327929][ T3867]  unmap_page_range+0xab0/0x1190
[  381.328694][ T3867]  unmap_single_vma.constprop.0+0x4c/0x84
[  381.329490][ T3867]  unmap_vmas+0x7c/0x170
[  381.330511][ T3867]  exit_mmap+0xc0/0x288
[  381.331184][ T3867]  __mmput+0x3c/0x170
[  381.331847][ T3867]  mmput+0x50/0x5c
[  381.332519][ T3867]  do_exit+0x270/0x98c
[  381.333212][ T3867]  do_group_exit+0x34/0x90
[  381.333868][ T3867]  copy_siginfo_to_user+0x0/0xec
[  381.334517][ T3867]  do_signal+0x94/0x1450
[  381.335174][ T3867]  do_notify_resume+0xd8/0x164
[  381.336087][ T3867]  el0_svc+0xc8/0xf8
[  381.337426][ T3867]  el0t_64_sync_handler+0x100/0x12c
[  381.339416][ T3867]  el0t_64_sync+0x19c/0x1a0
[  381.342309][ T3867] BUG: Bad page state in process syz.0.22  pfn:ba0c0
[  381.344793][ T3867] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0xba0c0
[  381.347767][ T3867] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.352831][ T3867] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  381.355412][ T3867] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  381.358532][ T3867] page dumped because: nonzero mapcount
[  381.361374][ T3867] Modules linked in:
[  381.363182][ T3867] CPU: 0 PID: 3867 Comm: syz.0.22 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.367690][ T3867] Hardware name: linux,dummy-virt (DT)
[  381.370244][ T3867] Call trace:
[  381.371519][ T3867]  dump_backtrace+0x94/0xec
[  381.373930][ T3867]  show_stack+0x18/0x24
[  381.375908][ T3867]  dump_stack_lvl+0x78/0x90
[  381.377739][ T3867]  dump_stack+0x18/0x24
[  381.379726][ T3867]  bad_page+0x84/0x11c
[  381.381834][ T3867]  free_page_is_bad_report+0x98/0xa4
[  381.383901][ T3867]  free_unref_folios+0x4c0/0x624
[  381.385757][ T3867]  folios_put_refs+0x108/0x284
[  381.387372][ T3867]  free_pages_and_swap_cache+0x14c/0x164
[  381.389665][ T3867]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  381.392312][ T3867]  tlb_flush_mmu+0x54/0xe4
[  381.393883][ T3867]  unmap_page_range+0xab0/0x1190
[  381.394969][ T3867]  unmap_single_vma.constprop.0+0x4c/0x84
[  381.395874][ T3867]  unmap_vmas+0x7c/0x170
[  381.396787][ T3867]  exit_mmap+0xc0/0x288
[  381.397698][ T3867]  __mmput+0x3c/0x170
[  381.400034][ T3867]  mmput+0x50/0x5c
[  381.400872][ T3867]  do_exit+0x270/0x98c
[  381.401654][ T3867]  do_group_exit+0x34/0x90
[  381.402396][ T3867]  copy_siginfo_to_user+0x0/0xec
[  381.403229][ T3867]  do_signal+0x94/0x1450
[  381.403993][ T3867]  do_notify_resume+0xd8/0x164
[  381.404755][ T3867]  el0_svc+0xc8/0xf8
[  381.405597][ T3867]  el0t_64_sync_handler+0x100/0x12c
[  381.406464][ T3867]  el0t_64_sync+0x19c/0x1a0
[  381.582349][ T3868] BUG: Bad page cache in process syz.0.23  pfn:4bcf4
[  381.584102][ T3868] page: refcount:4 mapcount:1 mapping:000000009965bad8 index:0x0 pfn:0x4bcf4
[  381.587991][ T3868] memcg:f4f00000060ad000
[  381.590164][ T3868] aops:shmem_aops ino:6
[  381.592335][ T3868] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.596478][ T3868] raw: 01ffc0000004002d ffffc1ffc02dae48 ffffc1ffc02d5ac8 f2f00000039e94d0
[  381.598874][ T3868] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  381.603318][ T3868] page dumped because: still mapped when deleted
[  381.605627][ T3868] CPU: 0 PID: 3868 Comm: syz.0.23 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.609890][ T3868] Hardware name: linux,dummy-virt (DT)
[  381.611989][ T3868] Call trace:
[  381.613355][ T3868]  dump_backtrace+0x94/0xec
[  381.615019][ T3868]  show_stack+0x18/0x24
[  381.616007][ T3868]  dump_stack_lvl+0x78/0x90
[  381.616813][ T3868]  dump_stack+0x18/0x24
[  381.617442][ T3868]  filemap_unaccount_folio+0x118/0x278
[  381.618262][ T3868]  __filemap_remove_folio+0x3c/0x178
[  381.619063][ T3868]  filemap_remove_folio+0x48/0xa8
[  381.620001][ T3868]  truncate_inode_folio+0x30/0x4c
[  381.620914][ T3868]  shmem_undo_range+0x208/0x620
[  381.621739][ T3868]  shmem_evict_inode+0x130/0x2dc
[  381.622562][ T3868]  evict+0xb4/0x198
[  381.623292][ T3868]  iput+0x100/0x1b8
[  381.624070][ T3868]  dentry_unlink_inode+0xc0/0x188
[  381.624852][ T3868]  __dentry_kill+0x7c/0x1d4
[  381.625680][ T3868]  dput.part.0+0x30/0xbc
[  381.626442][ T3868]  dput+0x4c/0x50
[  381.627337][ T3868]  __fput+0x110/0x2d4
[  381.628143][ T3868]  ____fput+0x10/0x1c
[  381.628941][ T3868]  task_work_run+0x78/0xd0
[  381.629780][ T3868]  do_notify_resume+0x134/0x164
[  381.630994][ T3868]  el0_svc+0xc8/0xf8
[  381.631756][ T3868]  el0t_64_sync_handler+0x100/0x12c
[  381.632615][ T3868]  el0t_64_sync+0x19c/0x1a0
[  381.662161][ T3868] BUG: Bad page cache in process syz.0.23  pfn:4b56b
[  381.664408][ T3868] page: refcount:4 mapcount:1 mapping:000000009965bad8 index:0x1 pfn:0x4b56b
[  381.667511][ T3868] memcg:f4f00000060ad000
[  381.668884][ T3868] aops:shmem_aops ino:6
[  381.671076][ T3868] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.675280][ T3868] raw: 01ffc0000004002d ffffc1ffc02f3d08 ffffc1ffc02dafc8 f2f00000039e94d0
[  381.677700][ T3868] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  381.681000][ T3868] page dumped because: still mapped when deleted
[  381.683255][ T3868] CPU: 0 PID: 3868 Comm: syz.0.23 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.687020][ T3868] Hardware name: linux,dummy-virt (DT)
[  381.688566][ T3868] Call trace:
[  381.690148][ T3868]  dump_backtrace+0x94/0xec
[  381.692164][ T3868]  show_stack+0x18/0x24
[  381.693832][ T3868]  dump_stack_lvl+0x78/0x90
[  381.696264][ T3868]  dump_stack+0x18/0x24
[  381.697949][ T3868]  filemap_unaccount_folio+0x118/0x278
[  381.700158][ T3868]  __filemap_remove_folio+0x3c/0x178
[  381.702162][ T3868]  filemap_remove_folio+0x48/0xa8
[  381.703403][ T3868]  truncate_inode_folio+0x30/0x4c
[  381.705413][ T3868]  shmem_undo_range+0x208/0x620
[  381.707379][ T3868]  shmem_evict_inode+0x130/0x2dc
[  381.709410][ T3868]  evict+0xb4/0x198
[  381.711762][ T3868]  iput+0x100/0x1b8
[  381.713529][ T3868]  dentry_unlink_inode+0xc0/0x188
[  381.715134][ T3868]  __dentry_kill+0x7c/0x1d4
[  381.716372][ T3868]  dput.part.0+0x30/0xbc
[  381.717854][ T3868]  dput+0x4c/0x50
[  381.719150][ T3868]  __fput+0x110/0x2d4
[  381.721376][ T3868]  ____fput+0x10/0x1c
[  381.722680][ T3868]  task_work_run+0x78/0xd0
[  381.723602][ T3868]  do_notify_resume+0x134/0x164
[  381.724785][ T3868]  el0_svc+0xc8/0xf8
[  381.725722][ T3868]  el0t_64_sync_handler+0x100/0x12c
[  381.726576][ T3868]  el0t_64_sync+0x19c/0x1a0
[  381.764118][ T3869] BUG: Bad page map in process syz.0.23  pte:6000004bcf48c3 pmd:800000047bfe003
[  381.766089][ T3869] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4bcf4
[  381.768349][ T3869] memcg:f4f00000060ad000
[  381.769452][ T3869] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.774374][ T3869] raw: 01ffc0000004002c ffffc1ffc01ff508 ffffc1ffc02d5ac8 0000000000000000
[  381.776972][ T3869] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  381.779313][ T3869] page dumped because: bad pte
[  381.781749][ T3869] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:0
[  381.784593][ T3869] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  381.787105][ T3869] CPU: 1 PID: 3869 Comm: syz.0.23 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.791792][ T3869] Hardware name: linux,dummy-virt (DT)
[  381.793601][ T3869] Call trace:
[  381.794815][ T3869]  dump_backtrace+0x94/0xec
[  381.796227][ T3869]  show_stack+0x18/0x24
[  381.797524][ T3869]  dump_stack_lvl+0x78/0x90
[  381.798992][ T3869]  dump_stack+0x18/0x24
[  381.800671][ T3869]  print_bad_pte+0x1c8/0x258
[  381.802058][ T3869]  unmap_page_range+0x904/0x1190
[  381.803477][ T3869]  unmap_single_vma.constprop.0+0x4c/0x84
[  381.805034][ T3869]  unmap_vmas+0x7c/0x170
[  381.806407][ T3869]  exit_mmap+0xc0/0x288
[  381.807098][ T3869]  __mmput+0x3c/0x170
[  381.807821][ T3869]  mmput+0x50/0x5c
[  381.808569][ T3869]  do_exit+0x270/0x98c
[  381.809264][ T3869]  do_group_exit+0x34/0x90
[  381.810125][ T3869]  copy_siginfo_to_user+0x0/0xec
[  381.811036][ T3869]  do_signal+0x94/0x1450
[  381.811775][ T3869]  do_notify_resume+0xd8/0x164
[  381.812610][ T3869]  el0_svc+0xc8/0xf8
[  381.813364][ T3869]  el0t_64_sync_handler+0x100/0x12c
[  381.814217][ T3869]  el0t_64_sync+0x19c/0x1a0
[  381.822228][ T3869] BUG: Bad page map in process syz.0.23  pte:6000004b56b8c3 pmd:800000047bfe003
[  381.824069][ T3869] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b56b
[  381.825436][ T3869] memcg:f4f00000060ad000
[  381.826107][ T3869] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.828187][ T3869] raw: 01ffc0000004002c ffffc1ffc02f3d08 ffffc1ffc02dafc8 0000000000000000
[  381.829268][ T3869] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  381.831473][ T3869] page dumped because: bad pte
[  381.832191][ T3869] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:1
[  381.833387][ T3869] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  381.834740][ T3869] CPU: 0 PID: 3869 Comm: syz.0.23 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.836260][ T3869] Hardware name: linux,dummy-virt (DT)
[  381.836991][ T3869] Call trace:
[  381.837575][ T3869]  dump_backtrace+0x94/0xec
[  381.838348][ T3869]  show_stack+0x18/0x24
[  381.839097][ T3869]  dump_stack_lvl+0x78/0x90
[  381.840136][ T3869]  dump_stack+0x18/0x24
[  381.840843][ T3869]  print_bad_pte+0x1c8/0x258
[  381.841590][ T3869]  unmap_page_range+0x904/0x1190
[  381.842311][ T3869]  unmap_single_vma.constprop.0+0x4c/0x84
[  381.843248][ T3869]  unmap_vmas+0x7c/0x170
[  381.844014][ T3869]  exit_mmap+0xc0/0x288
[  381.844762][ T3869]  __mmput+0x3c/0x170
[  381.845523][ T3869]  mmput+0x50/0x5c
[  381.846140][ T3869]  do_exit+0x270/0x98c
[  381.846856][ T3869]  do_group_exit+0x34/0x90
[  381.847639][ T3869]  copy_siginfo_to_user+0x0/0xec
[  381.848423][ T3869]  do_signal+0x94/0x1450
[  381.849152][ T3869]  do_notify_resume+0xd8/0x164
[  381.850301][ T3869]  el0_svc+0xc8/0xf8
[  381.851039][ T3869]  el0t_64_sync_handler+0x100/0x12c
[  381.851901][ T3869]  el0t_64_sync+0x19c/0x1a0
[  381.854852][ T3869] BUG: Bad page state in process syz.0.23  pfn:4bcf4
[  381.855829][ T3869] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4bcf4
[  381.856853][ T3869] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.858300][ T3869] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  381.859364][ T3869] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  381.862411][ T3869] page dumped because: nonzero mapcount
[  381.863283][ T3869] Modules linked in:
[  381.864160][ T3869] CPU: 0 PID: 3869 Comm: syz.0.23 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.865888][ T3869] Hardware name: linux,dummy-virt (DT)
[  381.866608][ T3869] Call trace:
[  381.867261][ T3869]  dump_backtrace+0x94/0xec
[  381.868298][ T3869]  show_stack+0x18/0x24
[  381.868997][ T3869]  dump_stack_lvl+0x78/0x90
[  381.869979][ T3869]  dump_stack+0x18/0x24
[  381.870733][ T3869]  bad_page+0x84/0x11c
[  381.871429][ T3869]  free_page_is_bad_report+0x98/0xa4
[  381.872365][ T3869]  free_unref_folios+0x4c0/0x624
[  381.873124][ T3869]  folios_put_refs+0x108/0x284
[  381.873888][ T3869]  free_pages_and_swap_cache+0x14c/0x164
[  381.874690][ T3869]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  381.875530][ T3869]  tlb_flush_mmu+0x54/0xe4
[  381.876282][ T3869]  unmap_page_range+0xab0/0x1190
[  381.877145][ T3869]  unmap_single_vma.constprop.0+0x4c/0x84
[  381.878020][ T3869]  unmap_vmas+0x7c/0x170
[  381.878773][ T3869]  exit_mmap+0xc0/0x288
[  381.879674][ T3869]  __mmput+0x3c/0x170
[  381.880437][ T3869]  mmput+0x50/0x5c
[  381.881099][ T3869]  do_exit+0x270/0x98c
[  381.881844][ T3869]  do_group_exit+0x34/0x90
[  381.882582][ T3869]  copy_siginfo_to_user+0x0/0xec
[  381.883428][ T3869]  do_signal+0x94/0x1450
[  381.884151][ T3869]  do_notify_resume+0xd8/0x164
[  381.884876][ T3869]  el0_svc+0xc8/0xf8
[  381.885542][ T3869]  el0t_64_sync_handler+0x100/0x12c
[  381.886394][ T3869]  el0t_64_sync+0x19c/0x1a0
[  381.897078][ T3869] BUG: Bad page state in process syz.0.23  pfn:4b56b
[  381.897930][ T3869] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b56b
[  381.899002][ T3869] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  381.901122][ T3869] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  381.902157][ T3869] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  381.903257][ T3869] page dumped because: nonzero mapcount
[  381.903995][ T3869] Modules linked in:
[  381.904625][ T3869] CPU: 0 PID: 3869 Comm: syz.0.23 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  381.905898][ T3869] Hardware name: linux,dummy-virt (DT)
[  381.906674][ T3869] Call trace:
[  381.907438][ T3869]  dump_backtrace+0x94/0xec
[  381.908257][ T3869]  show_stack+0x18/0x24
[  381.909063][ T3869]  dump_stack_lvl+0x78/0x90
[  381.910199][ T3869]  dump_stack+0x18/0x24
[  381.911171][ T3869]  bad_page+0x84/0x11c
[  381.912310][ T3869]  free_page_is_bad_report+0x98/0xa4
[  381.913500][ T3869]  free_unref_folios+0x4c0/0x624
[  381.914415][ T3869]  folios_put_refs+0x108/0x284
[  381.915229][ T3869]  free_pages_and_swap_cache+0x14c/0x164
[  381.916030][ T3869]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  381.916845][ T3869]  tlb_flush_mmu+0x54/0xe4
[  381.917541][ T3869]  unmap_page_range+0xab0/0x1190
[  381.918350][ T3869]  unmap_single_vma.constprop.0+0x4c/0x84
[  381.919287][ T3869]  unmap_vmas+0x7c/0x170
[  381.920663][ T3869]  exit_mmap+0xc0/0x288
[  381.921634][ T3869]  __mmput+0x3c/0x170
[  381.922360][ T3869]  mmput+0x50/0x5c
[  381.923090][ T3869]  do_exit+0x270/0x98c
[  381.923898][ T3869]  do_group_exit+0x34/0x90
[  381.924715][ T3869]  copy_siginfo_to_user+0x0/0xec
[  381.925540][ T3869]  do_signal+0x94/0x1450
[  381.926341][ T3869]  do_notify_resume+0xd8/0x164
[  381.927113][ T3869]  el0_svc+0xc8/0xf8
[  381.927852][ T3869]  el0t_64_sync_handler+0x100/0x12c
[  381.928635][ T3869]  el0t_64_sync+0x19c/0x1a0
[  382.127866][ T3870] BUG: Bad page cache in process syz.0.24  pfn:4b57c
[  382.128828][ T3870] page: refcount:4 mapcount:1 mapping:0000000093139182 index:0x0 pfn:0x4b57c
[  382.130360][ T3870] memcg:f4f00000060ad000
[  382.131036][ T3870] aops:shmem_aops ino:7
[  382.131885][ T3870] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.133423][ T3870] raw: 01ffc0000004002d ffffc1ffc02cb548 ffffc1ffc0357fc8 fbf00000072ca470
[  382.134642][ T3870] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  382.135694][ T3870] page dumped because: still mapped when deleted
[  382.136526][ T3870] CPU: 0 PID: 3870 Comm: syz.0.24 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.137956][ T3870] Hardware name: linux,dummy-virt (DT)
[  382.138727][ T3870] Call trace:
[  382.139337][ T3870]  dump_backtrace+0x94/0xec
[  382.141602][ T3870]  show_stack+0x18/0x24
[  382.143241][ T3870]  dump_stack_lvl+0x78/0x90
[  382.144983][ T3870]  dump_stack+0x18/0x24
[  382.146416][ T3870]  filemap_unaccount_folio+0x118/0x278
[  382.148356][ T3870]  __filemap_remove_folio+0x3c/0x178
[  382.149210][ T3870]  filemap_remove_folio+0x48/0xa8
[  382.150478][ T3870]  truncate_inode_folio+0x30/0x4c
[  382.151306][ T3870]  shmem_undo_range+0x208/0x620
[  382.153051][ T3870]  shmem_evict_inode+0x130/0x2dc
[  382.154811][ T3870]  evict+0xb4/0x198
[  382.156279][ T3870]  iput+0x100/0x1b8
[  382.157760][ T3870]  dentry_unlink_inode+0xc0/0x188
[  382.158600][ T3870]  __dentry_kill+0x7c/0x1d4
[  382.159364][ T3870]  dput.part.0+0x30/0xbc
[  382.160349][ T3870]  dput+0x4c/0x50
[  382.161057][ T3870]  __fput+0x110/0x2d4
[  382.161825][ T3870]  ____fput+0x10/0x1c
[  382.162518][ T3870]  task_work_run+0x78/0xd0
[  382.163510][ T3870]  do_notify_resume+0x134/0x164
[  382.164211][ T3870]  el0_svc+0xc8/0xf8
[  382.164918][ T3870]  el0t_64_sync_handler+0x100/0x12c
[  382.165666][ T3870]  el0t_64_sync+0x19c/0x1a0
[  382.168540][ T3870] BUG: Bad page cache in process syz.0.24  pfn:4d5ff
[  382.169440][ T3870] page: refcount:4 mapcount:1 mapping:0000000093139182 index:0x1 pfn:0x4d5ff
[  382.170962][ T3870] memcg:f4f00000060ad000
[  382.171638][ T3870] aops:shmem_aops ino:7
[  382.172376][ T3870] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.173802][ T3870] raw: 01ffc0000004002d ffffc1ffc02d5f08 ffffc1ffc02d5b08 fbf00000072ca470
[  382.174802][ T3870] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  382.175768][ T3870] page dumped because: still mapped when deleted
[  382.176508][ T3870] CPU: 0 PID: 3870 Comm: syz.0.24 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.178010][ T3870] Hardware name: linux,dummy-virt (DT)
[  382.178751][ T3870] Call trace:
[  382.179354][ T3870]  dump_backtrace+0x94/0xec
[  382.180410][ T3870]  show_stack+0x18/0x24
[  382.181173][ T3870]  dump_stack_lvl+0x78/0x90
[  382.181993][ T3870]  dump_stack+0x18/0x24
[  382.182940][ T3870]  filemap_unaccount_folio+0x118/0x278
[  382.183866][ T3870]  __filemap_remove_folio+0x3c/0x178
[  382.184773][ T3870]  filemap_remove_folio+0x48/0xa8
[  382.185666][ T3870]  truncate_inode_folio+0x30/0x4c
[  382.186469][ T3870]  shmem_undo_range+0x208/0x620
[  382.187307][ T3870]  shmem_evict_inode+0x130/0x2dc
[  382.188124][ T3870]  evict+0xb4/0x198
[  382.188717][ T3870]  iput+0x100/0x1b8
[  382.189394][ T3870]  dentry_unlink_inode+0xc0/0x188
[  382.190898][ T3870]  __dentry_kill+0x7c/0x1d4
[  382.191705][ T3870]  dput.part.0+0x30/0xbc
[  382.192475][ T3870]  dput+0x4c/0x50
[  382.193229][ T3870]  __fput+0x110/0x2d4
[  382.194001][ T3870]  ____fput+0x10/0x1c
[  382.195812][ T3870]  task_work_run+0x78/0xd0
[  382.197413][ T3870]  do_notify_resume+0x134/0x164
[  382.198209][ T3870]  el0_svc+0xc8/0xf8
[  382.198955][ T3870]  el0t_64_sync_handler+0x100/0x12c
[  382.199938][ T3870]  el0t_64_sync+0x19c/0x1a0
[  382.224673][ T3871] BUG: Bad page map in process syz.0.24  pte:6000004b57c8c3 pmd:800000043b8d003
[  382.225826][ T3871] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b57c
[  382.226923][ T3871] memcg:f4f00000060ad000
[  382.227592][ T3871] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.228842][ T3871] raw: 01ffc0000004002c ffffc1ffc02d9a48 ffffc1ffc0357fc8 0000000000000000
[  382.230663][ T3871] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  382.232233][ T3871] page dumped because: bad pte
[  382.233097][ T3871] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:0
[  382.234242][ T3871] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  382.235353][ T3871] CPU: 0 PID: 3871 Comm: syz.0.24 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.236537][ T3871] Hardware name: linux,dummy-virt (DT)
[  382.237231][ T3871] Call trace:
[  382.237720][ T3871]  dump_backtrace+0x94/0xec
[  382.238397][ T3871]  show_stack+0x18/0x24
[  382.239084][ T3871]  dump_stack_lvl+0x78/0x90
[  382.239985][ T3871]  dump_stack+0x18/0x24
[  382.240734][ T3871]  print_bad_pte+0x1c8/0x258
[  382.241455][ T3871]  unmap_page_range+0x904/0x1190
[  382.242371][ T3871]  unmap_single_vma.constprop.0+0x4c/0x84
[  382.243376][ T3871]  unmap_vmas+0x7c/0x170
[  382.244945][ T3871]  exit_mmap+0xc0/0x288
[  382.246453][ T3871]  __mmput+0x3c/0x170
[  382.248030][ T3871]  mmput+0x50/0x5c
[  382.248731][ T3871]  do_exit+0x270/0x98c
[  382.249430][ T3871]  do_group_exit+0x34/0x90
[  382.250376][ T3871]  copy_siginfo_to_user+0x0/0xec
[  382.251449][ T3871]  do_signal+0x94/0x1450
[  382.253113][ T3871]  do_notify_resume+0xd8/0x164
[  382.254958][ T3871]  el0_svc+0xc8/0xf8
[  382.256529][ T3871]  el0t_64_sync_handler+0x100/0x12c
[  382.257464][ T3871]  el0t_64_sync+0x19c/0x1a0
[  382.267540][ T3871] BUG: Bad page map in process syz.0.24  pte:6000004d5ff8c3 pmd:800000043b8d003
[  382.272957][ T3871] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4d5ff
[  382.275857][ T3871] memcg:f4f00000060ad000
[  382.278528][ T3871] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.282957][ T3871] raw: 01ffc0000004002c ffffc1ffc02d5f08 ffffc1ffc02d5b08 0000000000000000
[  382.285646][ T3871] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  382.288565][ T3871] page dumped because: bad pte
[  382.291031][ T3871] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:1
[  382.294438][ T3871] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  382.297618][ T3871] CPU: 0 PID: 3871 Comm: syz.0.24 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.301905][ T3871] Hardware name: linux,dummy-virt (DT)
[  382.303822][ T3871] Call trace:
[  382.305077][ T3871]  dump_backtrace+0x94/0xec
[  382.306870][ T3871]  show_stack+0x18/0x24
[  382.308488][ T3871]  dump_stack_lvl+0x78/0x90
[  382.310135][ T3871]  dump_stack+0x18/0x24
[  382.311690][ T3871]  print_bad_pte+0x1c8/0x258
[  382.312785][ T3871]  unmap_page_range+0x904/0x1190
[  382.314621][ T3871]  unmap_single_vma.constprop.0+0x4c/0x84
[  382.316620][ T3871]  unmap_vmas+0x7c/0x170
[  382.318313][ T3871]  exit_mmap+0xc0/0x288
[  382.320009][ T3871]  __mmput+0x3c/0x170
[  382.321528][ T3871]  mmput+0x50/0x5c
[  382.322860][ T3871]  do_exit+0x270/0x98c
[  382.324294][ T3871]  do_group_exit+0x34/0x90
[  382.325912][ T3871]  copy_siginfo_to_user+0x0/0xec
[  382.327537][ T3871]  do_signal+0x94/0x1450
[  382.328479][ T3871]  do_notify_resume+0xd8/0x164
[  382.329205][ T3871]  el0_svc+0xc8/0xf8
[  382.330258][ T3871]  el0t_64_sync_handler+0x100/0x12c
[  382.331147][ T3871]  el0t_64_sync+0x19c/0x1a0
[  382.335650][ T3871] BUG: Bad page state in process syz.0.24  pfn:4b57c
[  382.336993][ T3871] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b57c
[  382.338298][ T3871] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.340440][ T3871] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  382.341640][ T3871] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  382.344269][ T3871] page dumped because: nonzero mapcount
[  382.345124][ T3871] Modules linked in:
[  382.347098][ T3871] CPU: 0 PID: 3871 Comm: syz.0.24 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.348630][ T3871] Hardware name: linux,dummy-virt (DT)
[  382.349429][ T3871] Call trace:
[  382.350699][ T3871]  dump_backtrace+0x94/0xec
[  382.352173][ T3871]  show_stack+0x18/0x24
[  382.353430][ T3871]  dump_stack_lvl+0x78/0x90
[  382.354607][ T3871]  dump_stack+0x18/0x24
[  382.355692][ T3871]  bad_page+0x84/0x11c
[  382.356742][ T3871]  free_page_is_bad_report+0x98/0xa4
[  382.357704][ T3871]  free_unref_folios+0x4c0/0x624
[  382.358573][ T3871]  folios_put_refs+0x108/0x284
[  382.359405][ T3871]  free_pages_and_swap_cache+0x14c/0x164
[  382.360573][ T3871]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  382.361466][ T3871]  tlb_flush_mmu+0x54/0xe4
[  382.362330][ T3871]  unmap_page_range+0xab0/0x1190
[  382.363459][ T3871]  unmap_single_vma.constprop.0+0x4c/0x84
[  382.364447][ T3871]  unmap_vmas+0x7c/0x170
[  382.365384][ T3871]  exit_mmap+0xc0/0x288
[  382.366216][ T3871]  __mmput+0x3c/0x170
[  382.367080][ T3871]  mmput+0x50/0x5c
[  382.367908][ T3871]  do_exit+0x270/0x98c
[  382.368678][ T3871]  do_group_exit+0x34/0x90
[  382.369420][ T3871]  copy_siginfo_to_user+0x0/0xec
[  382.370469][ T3871]  do_signal+0x94/0x1450
[  382.371417][ T3871]  do_notify_resume+0xd8/0x164
[  382.372296][ T3871]  el0_svc+0xc8/0xf8
[  382.373184][ T3871]  el0t_64_sync_handler+0x100/0x12c
[  382.374164][ T3871]  el0t_64_sync+0x19c/0x1a0
[  382.388438][ T3871] BUG: Bad page state in process syz.0.24  pfn:4d5ff
[  382.389531][ T3871] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4d5ff
[  382.391621][ T3871] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.393169][ T3871] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  382.394323][ T3871] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  382.395568][ T3871] page dumped because: nonzero mapcount
[  382.396506][ T3871] Modules linked in:
[  382.397334][ T3871] CPU: 0 PID: 3871 Comm: syz.0.24 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.398935][ T3871] Hardware name: linux,dummy-virt (DT)
[  382.400280][ T3871] Call trace:
[  382.401083][ T3871]  dump_backtrace+0x94/0xec
[  382.402040][ T3871]  show_stack+0x18/0x24
[  382.402825][ T3871]  dump_stack_lvl+0x78/0x90
[  382.403767][ T3871]  dump_stack+0x18/0x24
[  382.404583][ T3871]  bad_page+0x84/0x11c
[  382.405479][ T3871]  free_page_is_bad_report+0x98/0xa4
[  382.406480][ T3871]  free_unref_folios+0x4c0/0x624
[  382.407448][ T3871]  folios_put_refs+0x108/0x284
[  382.408359][ T3871]  free_pages_and_swap_cache+0x14c/0x164
[  382.409234][ T3871]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  382.410680][ T3871]  tlb_flush_mmu+0x54/0xe4
[  382.411481][ T3871]  unmap_page_range+0xab0/0x1190
[  382.412442][ T3871]  unmap_single_vma.constprop.0+0x4c/0x84
[  382.413402][ T3871]  unmap_vmas+0x7c/0x170
[  382.414206][ T3871]  exit_mmap+0xc0/0x288
[  382.414931][ T3871]  __mmput+0x3c/0x170
[  382.415661][ T3871]  mmput+0x50/0x5c
[  382.416308][ T3871]  do_exit+0x270/0x98c
[  382.416937][ T3871]  do_group_exit+0x34/0x90
[  382.417780][ T3871]  copy_siginfo_to_user+0x0/0xec
[  382.418582][ T3871]  do_signal+0x94/0x1450
[  382.419366][ T3871]  do_notify_resume+0xd8/0x164
[  382.420674][ T3871]  el0_svc+0xc8/0xf8
[  382.421324][ T3871]  el0t_64_sync_handler+0x100/0x12c
[  382.422120][ T3871]  el0t_64_sync+0x19c/0x1a0
[  382.586121][ T3872] BUG: Bad page cache in process syz.0.25  pfn:4b375
[  382.587179][ T3872] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x0 pfn:0x4b375
[  382.588261][ T3872] memcg:f4f00000060ad000
[  382.588908][ T3872] aops:shmem_aops ino:405
[  382.589562][ T3872] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.591544][ T3872] raw: 01ffc0000004002d ffffc1ffc01dbc88 ffffc1ffc039c9c8 f1f00000070f2470
[  382.592656][ T3872] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  382.593635][ T3872] page dumped because: still mapped when deleted
[  382.594584][ T3872] CPU: 1 PID: 3872 Comm: syz.0.25 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.595901][ T3872] Hardware name: linux,dummy-virt (DT)
[  382.596706][ T3872] Call trace:
[  382.597285][ T3872]  dump_backtrace+0x94/0xec
[  382.598060][ T3872]  show_stack+0x18/0x24
[  382.598808][ T3872]  dump_stack_lvl+0x78/0x90
[  382.599683][ T3872]  dump_stack+0x18/0x24
[  382.600673][ T3872]  filemap_unaccount_folio+0x118/0x278
[  382.601553][ T3872]  __filemap_remove_folio+0x3c/0x178
[  382.602338][ T3872]  filemap_remove_folio+0x48/0xa8
[  382.603157][ T3872]  truncate_inode_folio+0x30/0x4c
[  382.604019][ T3872]  shmem_undo_range+0x208/0x620
[  382.604781][ T3872]  shmem_evict_inode+0x130/0x2dc
[  382.605546][ T3872]  evict+0xb4/0x198
[  382.606227][ T3872]  iput+0x100/0x1b8
[  382.606916][ T3872]  dentry_unlink_inode+0xc0/0x188
[  382.607738][ T3872]  __dentry_kill+0x7c/0x1d4
[  382.608472][ T3872]  dput.part.0+0x30/0xbc
[  382.609192][ T3872]  dput+0x4c/0x50
[  382.610059][ T3872]  __fput+0x110/0x2d4
[  382.610864][ T3872]  ____fput+0x10/0x1c
[  382.611630][ T3872]  task_work_run+0x78/0xd0
[  382.612364][ T3872]  do_notify_resume+0x134/0x164
[  382.613309][ T3872]  el0_svc+0xc8/0xf8
[  382.614050][ T3872]  el0t_64_sync_handler+0x100/0x12c
[  382.614880][ T3872]  el0t_64_sync+0x19c/0x1a0
[  382.617978][ T3872] BUG: Bad page cache in process syz.0.25  pfn:4e727
[  382.619389][ T3872] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x1 pfn:0x4e727
[  382.620824][ T3872] memcg:f4f00000060ad000
[  382.621709][ T3872] aops:shmem_aops ino:405
[  382.622713][ T3872] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.625296][ T3872] raw: 01ffc0000004002d ffffc1ffc02cdd48 ffffc1ffc02f7b08 f1f00000070f2470
[  382.627053][ T3872] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  382.628831][ T3872] page dumped because: still mapped when deleted
[  382.630320][ T3872] CPU: 1 PID: 3872 Comm: syz.0.25 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.632226][ T3872] Hardware name: linux,dummy-virt (DT)
[  382.633164][ T3872] Call trace:
[  382.633857][ T3872]  dump_backtrace+0x94/0xec
[  382.634690][ T3872]  show_stack+0x18/0x24
[  382.635464][ T3872]  dump_stack_lvl+0x78/0x90
[  382.636177][ T3872]  dump_stack+0x18/0x24
[  382.636855][ T3872]  filemap_unaccount_folio+0x118/0x278
[  382.637621][ T3872]  __filemap_remove_folio+0x3c/0x178
[  382.638348][ T3872]  filemap_remove_folio+0x48/0xa8
[  382.639085][ T3872]  truncate_inode_folio+0x30/0x4c
[  382.640231][ T3872]  shmem_undo_range+0x208/0x620
[  382.641284][ T3872]  shmem_evict_inode+0x130/0x2dc
[  382.642084][ T3872]  evict+0xb4/0x198
[  382.642754][ T3872]  iput+0x100/0x1b8
[  382.643616][ T3872]  dentry_unlink_inode+0xc0/0x188
[  382.644540][ T3872]  __dentry_kill+0x7c/0x1d4
[  382.645201][ T3872]  dput.part.0+0x30/0xbc
[  382.645967][ T3872]  dput+0x4c/0x50
[  382.646629][ T3872]  __fput+0x110/0x2d4
[  382.647606][ T3872]  ____fput+0x10/0x1c
[  382.648364][ T3872]  task_work_run+0x78/0xd0
[  382.649174][ T3872]  do_notify_resume+0x134/0x164
[  382.650425][ T3872]  el0_svc+0xc8/0xf8
[  382.651471][ T3872]  el0t_64_sync_handler+0x100/0x12c
[  382.652369][ T3872]  el0t_64_sync+0x19c/0x1a0
[  382.727652][ T3873] BUG: Bad page map in process syz.0.25  pte:6000004b3758c3 pmd:800000047159003
[  382.731195][ T3873] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b375
[  382.734240][ T3873] memcg:f4f00000060ad000
[  382.734853][ T3873] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.737526][ T3873] raw: 01ffc0000004002c ffffc1ffc02cd0c8 ffffc1ffc039c9c8 0000000000000000
[  382.741090][ T3873] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  382.743624][ T3873] page dumped because: bad pte
[  382.745312][ T3873] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:0
[  382.748492][ T3873] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  382.749784][ T3873] CPU: 1 PID: 3873 Comm: syz.0.25 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.753735][ T3873] Hardware name: linux,dummy-virt (DT)
[  382.754556][ T3873] Call trace:
[  382.755887][ T3873]  dump_backtrace+0x94/0xec
[  382.757958][ T3873]  show_stack+0x18/0x24
[  382.759514][ T3873]  dump_stack_lvl+0x78/0x90
[  382.761411][ T3873]  dump_stack+0x18/0x24
[  382.762760][ T3873]  print_bad_pte+0x1c8/0x258
[  382.764694][ T3873]  unmap_page_range+0x904/0x1190
[  382.766168][ T3873]  unmap_single_vma.constprop.0+0x4c/0x84
[  382.768261][ T3873]  unmap_vmas+0x7c/0x170
[  382.770044][ T3873]  exit_mmap+0xc0/0x288
[  382.772005][ T3873]  __mmput+0x3c/0x170
[  382.773674][ T3873]  mmput+0x50/0x5c
[  382.775062][ T3873]  do_exit+0x270/0x98c
[  382.776738][ T3873]  do_group_exit+0x34/0x90
[  382.778367][ T3873]  copy_siginfo_to_user+0x0/0xec
[  382.780517][ T3873]  do_signal+0x94/0x1450
[  382.783263][ T3873]  do_notify_resume+0xd8/0x164
[  382.785539][ T3873]  el0_svc+0xc8/0xf8
[  382.787094][ T3873]  el0t_64_sync_handler+0x100/0x12c
[  382.788956][ T3873]  el0t_64_sync+0x19c/0x1a0
[  382.793865][ T3873] BUG: Bad page map in process syz.0.25  pte:6000004e7278c3 pmd:800000047159003
[  382.797726][ T3873] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4e727
[  382.801851][ T3873] memcg:f4f00000060ad000
[  382.803513][ T3873] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.807541][ T3873] raw: 01ffc0000004002c ffffc1ffc02cdd48 ffffc1ffc02f7b08 0000000000000000
[  382.811417][ T3873] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  382.813719][ T3873] page dumped because: bad pte
[  382.815430][ T3873] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:1
[  382.819015][ T3873] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  382.823282][ T3873] CPU: 1 PID: 3873 Comm: syz.0.25 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.824627][ T3873] Hardware name: linux,dummy-virt (DT)
[  382.825273][ T3873] Call trace:
[  382.825839][ T3873]  dump_backtrace+0x94/0xec
[  382.826555][ T3873]  show_stack+0x18/0x24
[  382.827310][ T3873]  dump_stack_lvl+0x78/0x90
[  382.828119][ T3873]  dump_stack+0x18/0x24
[  382.828950][ T3873]  print_bad_pte+0x1c8/0x258
[  382.829726][ T3873]  unmap_page_range+0x904/0x1190
[  382.830503][ T3873]  unmap_single_vma.constprop.0+0x4c/0x84
[  382.831463][ T3873]  unmap_vmas+0x7c/0x170
[  382.832258][ T3873]  exit_mmap+0xc0/0x288
[  382.833000][ T3873]  __mmput+0x3c/0x170
[  382.833815][ T3873]  mmput+0x50/0x5c
[  382.834548][ T3873]  do_exit+0x270/0x98c
[  382.835229][ T3873]  do_group_exit+0x34/0x90
[  382.835939][ T3873]  copy_siginfo_to_user+0x0/0xec
[  382.836723][ T3873]  do_signal+0x94/0x1450
[  382.837513][ T3873]  do_notify_resume+0xd8/0x164
[  382.838469][ T3873]  el0_svc+0xc8/0xf8
[  382.839291][ T3873]  el0t_64_sync_handler+0x100/0x12c
[  382.840496][ T3873]  el0t_64_sync+0x19c/0x1a0
[  382.842782][ T3873] BUG: Bad page state in process syz.0.25  pfn:4b375
[  382.843758][ T3873] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b375
[  382.844695][ T3873] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.848367][ T3873] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  382.852680][ T3873] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  382.855569][ T3873] page dumped because: nonzero mapcount
[  382.857546][ T3873] Modules linked in:
[  382.859345][ T3873] CPU: 1 PID: 3873 Comm: syz.0.25 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.863677][ T3873] Hardware name: linux,dummy-virt (DT)
[  382.865772][ T3873] Call trace:
[  382.867267][ T3873]  dump_backtrace+0x94/0xec
[  382.869048][ T3873]  show_stack+0x18/0x24
[  382.871097][ T3873]  dump_stack_lvl+0x78/0x90
[  382.872551][ T3873]  dump_stack+0x18/0x24
[  382.874051][ T3873]  bad_page+0x84/0x11c
[  382.875546][ T3873]  free_page_is_bad_report+0x98/0xa4
[  382.877847][ T3873]  free_unref_folios+0x4c0/0x624
[  382.879910][ T3873]  folios_put_refs+0x108/0x284
[  382.881830][ T3873]  free_pages_and_swap_cache+0x14c/0x164
[  382.883864][ T3873]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  382.885757][ T3873]  tlb_flush_mmu+0x54/0xe4
[  382.887692][ T3873]  unmap_page_range+0xab0/0x1190
[  382.889760][ T3873]  unmap_single_vma.constprop.0+0x4c/0x84
[  382.892377][ T3873]  unmap_vmas+0x7c/0x170
[  382.894108][ T3873]  exit_mmap+0xc0/0x288
[  382.895804][ T3873]  __mmput+0x3c/0x170
[  382.897101][ T3873]  mmput+0x50/0x5c
[  382.898581][ T3873]  do_exit+0x270/0x98c
[  382.900403][ T3873]  do_group_exit+0x34/0x90
[  382.902505][ T3873]  copy_siginfo_to_user+0x0/0xec
[  382.904618][ T3873]  do_signal+0x94/0x1450
[  382.906283][ T3873]  do_notify_resume+0xd8/0x164
[  382.908174][ T3873]  el0_svc+0xc8/0xf8
[  382.909799][ T3873]  el0t_64_sync_handler+0x100/0x12c
[  382.911816][ T3873]  el0t_64_sync+0x19c/0x1a0
[  382.918769][ T3873] BUG: Bad page state in process syz.0.25  pfn:4e727
[  382.920436][ T3873] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4e727
[  382.921423][ T3873] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  382.923742][ T3873] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  382.924848][ T3873] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  382.925946][ T3873] page dumped because: nonzero mapcount
[  382.926701][ T3873] Modules linked in:
[  382.927463][ T3873] CPU: 1 PID: 3873 Comm: syz.0.25 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  382.928989][ T3873] Hardware name: linux,dummy-virt (DT)
[  382.929854][ T3873] Call trace:
[  382.930654][ T3873]  dump_backtrace+0x94/0xec
[  382.931582][ T3873]  show_stack+0x18/0x24
[  382.932515][ T3873]  dump_stack_lvl+0x78/0x90
[  382.933297][ T3873]  dump_stack+0x18/0x24
[  382.934230][ T3873]  bad_page+0x84/0x11c
[  382.935343][ T3873]  free_page_is_bad_report+0x98/0xa4
[  382.936182][ T3873]  free_unref_folios+0x4c0/0x624
[  382.937073][ T3873]  folios_put_refs+0x108/0x284
[  382.937914][ T3873]  free_pages_and_swap_cache+0x14c/0x164
[  382.938865][ T3873]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  382.939908][ T3873]  tlb_flush_mmu+0x54/0xe4
[  382.940784][ T3873]  unmap_page_range+0xab0/0x1190
[  382.941656][ T3873]  unmap_single_vma.constprop.0+0x4c/0x84
[  382.942590][ T3873]  unmap_vmas+0x7c/0x170
[  382.943561][ T3873]  exit_mmap+0xc0/0x288
[  382.944539][ T3873]  __mmput+0x3c/0x170
[  382.945466][ T3873]  mmput+0x50/0x5c
[  382.946390][ T3873]  do_exit+0x270/0x98c
[  382.947364][ T3873]  do_group_exit+0x34/0x90
[  382.948153][ T3873]  copy_siginfo_to_user+0x0/0xec
[  382.949003][ T3873]  do_signal+0x94/0x1450
[  382.950191][ T3873]  do_notify_resume+0xd8/0x164
[  382.951194][ T3873]  el0_svc+0xc8/0xf8
[  382.952021][ T3873]  el0t_64_sync_handler+0x100/0x12c
[  382.952936][ T3873]  el0t_64_sync+0x19c/0x1a0
1970/01/01 00:06:22 executed programs: 13
[  383.125884][ T3874] BUG: Bad page cache in process syz.0.26  pfn:47eec
[  383.126882][ T3874] page: refcount:4 mapcount:1 mapping:00000000034e59e8 index:0x0 pfn:0x47eec
[  383.127909][ T3874] memcg:f4f00000060ad000
[  383.128546][ T3874] aops:shmem_aops ino:406
[  383.129254][ T3874] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.131222][ T3874] raw: 01ffc0000004002d ffffc1ffc02f3d88 ffffc1ffc1e826c8 f7f00000070f30f0
[  383.132516][ T3874] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  383.133585][ T3874] page dumped because: still mapped when deleted
[  383.134641][ T3874] CPU: 1 PID: 3874 Comm: syz.0.26 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.135987][ T3874] Hardware name: linux,dummy-virt (DT)
[  383.138019][ T3874] Call trace:
[  383.139376][ T3874]  dump_backtrace+0x94/0xec
[  383.141781][ T3874]  show_stack+0x18/0x24
[  383.143809][ T3874]  dump_stack_lvl+0x78/0x90
[  383.145566][ T3874]  dump_stack+0x18/0x24
[  383.147415][ T3874]  filemap_unaccount_folio+0x118/0x278
[  383.149234][ T3874]  __filemap_remove_folio+0x3c/0x178
[  383.151857][ T3874]  filemap_remove_folio+0x48/0xa8
[  383.153660][ T3874]  truncate_inode_folio+0x30/0x4c
[  383.155389][ T3874]  shmem_undo_range+0x208/0x620
[  383.157242][ T3874]  shmem_evict_inode+0x130/0x2dc
[  383.158894][ T3874]  evict+0xb4/0x198
[  383.160675][ T3874]  iput+0x100/0x1b8
[  383.162190][ T3874]  dentry_unlink_inode+0xc0/0x188
[  383.164146][ T3874]  __dentry_kill+0x7c/0x1d4
[  383.165462][ T3874]  dput.part.0+0x30/0xbc
[  383.166043][ T3874]  dput+0x4c/0x50
[  383.166605][ T3874]  __fput+0x110/0x2d4
[  383.167311][ T3874]  ____fput+0x10/0x1c
[  383.167884][ T3874]  task_work_run+0x78/0xd0
[  383.168498][ T3874]  do_notify_resume+0x134/0x164
[  383.169143][ T3874]  el0_svc+0xc8/0xf8
[  383.169777][ T3874]  el0t_64_sync_handler+0x100/0x12c
[  383.170613][ T3874]  el0t_64_sync+0x19c/0x1a0
[  383.172981][ T3874] BUG: Bad page cache in process syz.0.26  pfn:ba09b
[  383.173691][ T3874] page: refcount:4 mapcount:1 mapping:00000000034e59e8 index:0x1 pfn:0xba09b
[  383.174542][ T3874] memcg:f4f00000060ad000
[  383.175075][ T3874] aops:shmem_aops ino:406
[  383.175693][ T3874] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.177040][ T3874] raw: 01ffc0000004002d ffffc1ffc01fbb08 ffffc1ffc02f7a88 f7f00000070f30f0
[  383.178228][ T3874] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  383.179146][ T3874] page dumped because: still mapped when deleted
[  383.180182][ T3874] CPU: 1 PID: 3874 Comm: syz.0.26 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.182010][ T3874] Hardware name: linux,dummy-virt (DT)
[  383.183246][ T3874] Call trace:
[  383.183903][ T3874]  dump_backtrace+0x94/0xec
[  383.184538][ T3874]  show_stack+0x18/0x24
[  383.185161][ T3874]  dump_stack_lvl+0x78/0x90
[  383.185936][ T3874]  dump_stack+0x18/0x24
[  383.187151][ T3874]  filemap_unaccount_folio+0x118/0x278
[  383.188011][ T3874]  __filemap_remove_folio+0x3c/0x178
[  383.188781][ T3874]  filemap_remove_folio+0x48/0xa8
[  383.189564][ T3874]  truncate_inode_folio+0x30/0x4c
[  383.190572][ T3874]  shmem_undo_range+0x208/0x620
[  383.191345][ T3874]  shmem_evict_inode+0x130/0x2dc
[  383.192100][ T3874]  evict+0xb4/0x198
[  383.192795][ T3874]  iput+0x100/0x1b8
[  383.193320][ T3874]  dentry_unlink_inode+0xc0/0x188
[  383.193766][ T3874]  __dentry_kill+0x7c/0x1d4
[  383.194300][ T3874]  dput.part.0+0x30/0xbc
[  383.194728][ T3874]  dput+0x4c/0x50
[  383.195120][ T3874]  __fput+0x110/0x2d4
[  383.195605][ T3874]  ____fput+0x10/0x1c
[  383.196082][ T3874]  task_work_run+0x78/0xd0
[  383.196515][ T3874]  do_notify_resume+0x134/0x164
[  383.196943][ T3874]  el0_svc+0xc8/0xf8
[  383.197360][ T3874]  el0t_64_sync_handler+0x100/0x12c
[  383.197795][ T3874]  el0t_64_sync+0x19c/0x1a0
[  383.206165][ T3874] BUG: Bad page map in process syz.0.26  pte:60000047eec8c3 pmd:8000000460b2003
[  383.207308][ T3874] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x47eec
[  383.208128][ T3874] memcg:f4f00000060ad000
[  383.208785][ T3874] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.211055][ T3874] raw: 01ffc0000004002c ffffc1ffc01f0c88 ffffc1ffc1e826c8 0000000000000000
[  383.212212][ T3874] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  383.213149][ T3874] page dumped because: bad pte
[  383.214094][ T3874] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:0
[  383.215561][ T3874] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  383.216806][ T3874] CPU: 1 PID: 3874 Comm: syz.0.26 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.218423][ T3874] Hardware name: linux,dummy-virt (DT)
[  383.219373][ T3874] Call trace:
[  383.220322][ T3874]  dump_backtrace+0x94/0xec
[  383.221168][ T3874]  show_stack+0x18/0x24
[  383.221891][ T3874]  dump_stack_lvl+0x78/0x90
[  383.222767][ T3874]  dump_stack+0x18/0x24
[  383.223704][ T3874]  print_bad_pte+0x1c8/0x258
[  383.224533][ T3874]  unmap_page_range+0x904/0x1190
[  383.225426][ T3874]  unmap_single_vma.constprop.0+0x4c/0x84
[  383.226317][ T3874]  unmap_vmas+0x7c/0x170
[  383.227001][ T3874]  exit_mmap+0xc0/0x288
[  383.227739][ T3874]  __mmput+0x3c/0x170
[  383.228438][ T3874]  mmput+0x50/0x5c
[  383.229162][ T3874]  do_exit+0x270/0x98c
[  383.230185][ T3874]  do_group_exit+0x34/0x90
[  383.230939][ T3874]  pid_child_should_wake+0x0/0x5c
[  383.231748][ T3874]  invoke_syscall+0x48/0x118
[  383.232630][ T3874]  el0_svc_common.constprop.0+0x40/0xe0
[  383.233554][ T3874]  do_el0_svc+0x1c/0x28
[  383.234190][ T3874]  el0_svc+0x34/0xf8
[  383.234881][ T3874]  el0t_64_sync_handler+0x100/0x12c
[  383.235753][ T3874]  el0t_64_sync+0x19c/0x1a0
[  383.240937][ T3874] BUG: Bad page map in process syz.0.26  pte:600000ba09b8c3 pmd:8000000460b2003
[  383.242067][ T3874] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0xba09b
[  383.243173][ T3874] memcg:f4f00000060ad000
[  383.243798][ T3874] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.245275][ T3874] raw: 01ffc0000004002c ffffc1ffc01fbb08 ffffc1ffc02f7a88 0000000000000000
[  383.246396][ T3874] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  383.247174][ T3874] page dumped because: bad pte
[  383.247740][ T3874] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:1
[  383.248635][ T3874] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  383.250672][ T3874] CPU: 1 PID: 3874 Comm: syz.0.26 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.252195][ T3874] Hardware name: linux,dummy-virt (DT)
[  383.253001][ T3874] Call trace:
[  383.253627][ T3874]  dump_backtrace+0x94/0xec
[  383.254437][ T3874]  show_stack+0x18/0x24
[  383.255081][ T3874]  dump_stack_lvl+0x78/0x90
[  383.255996][ T3874]  dump_stack+0x18/0x24
[  383.256727][ T3874]  print_bad_pte+0x1c8/0x258
[  383.257799][ T3874]  unmap_page_range+0x904/0x1190
[  383.258503][ T3874]  unmap_single_vma.constprop.0+0x4c/0x84
[  383.259263][ T3874]  unmap_vmas+0x7c/0x170
[  383.260059][ T3874]  exit_mmap+0xc0/0x288
[  383.260796][ T3874]  __mmput+0x3c/0x170
[  383.261721][ T3874]  mmput+0x50/0x5c
[  383.262494][ T3874]  do_exit+0x270/0x98c
[  383.263328][ T3874]  do_group_exit+0x34/0x90
[  383.264111][ T3874]  pid_child_should_wake+0x0/0x5c
[  383.264924][ T3874]  invoke_syscall+0x48/0x118
[  383.265691][ T3874]  el0_svc_common.constprop.0+0x40/0xe0
[  383.266501][ T3874]  do_el0_svc+0x1c/0x28
[  383.267317][ T3874]  el0_svc+0x34/0xf8
[  383.268064][ T3874]  el0t_64_sync_handler+0x100/0x12c
[  383.268904][ T3874]  el0t_64_sync+0x19c/0x1a0
[  383.292923][ T3874] BUG: Bad page state in process syz.0.26  pfn:47eec
[  383.293939][ T3874] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x47eec
[  383.294896][ T3874] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.296132][ T3874] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  383.297126][ T3874] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  383.298166][ T3874] page dumped because: nonzero mapcount
[  383.298935][ T3874] Modules linked in:
[  383.299673][ T3874] CPU: 1 PID: 3874 Comm: syz.0.26 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.301327][ T3874] Hardware name: linux,dummy-virt (DT)
[  383.302162][ T3874] Call trace:
[  383.302824][ T3874]  dump_backtrace+0x94/0xec
[  383.303799][ T3874]  show_stack+0x18/0x24
[  383.304696][ T3874]  dump_stack_lvl+0x78/0x90
[  383.305375][ T3874]  dump_stack+0x18/0x24
[  383.305954][ T3874]  bad_page+0x84/0x11c
[  383.306555][ T3874]  free_page_is_bad_report+0x98/0xa4
[  383.307313][ T3874]  free_unref_folios+0x4c0/0x624
[  383.307981][ T3874]  folios_put_refs+0x108/0x284
[  383.308891][ T3874]  free_pages_and_swap_cache+0x14c/0x164
[  383.309769][ T3874]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  383.310700][ T3874]  tlb_flush_mmu+0x54/0xe4
[  383.311424][ T3874]  unmap_page_range+0xab0/0x1190
[  383.312302][ T3874]  unmap_single_vma.constprop.0+0x4c/0x84
[  383.313254][ T3874]  unmap_vmas+0x7c/0x170
[  383.314006][ T3874]  exit_mmap+0xc0/0x288
[  383.314857][ T3874]  __mmput+0x3c/0x170
[  383.315624][ T3874]  mmput+0x50/0x5c
[  383.316646][ T3874]  do_exit+0x270/0x98c
[  383.317299][ T3874]  do_group_exit+0x34/0x90
[  383.318071][ T3874]  pid_child_should_wake+0x0/0x5c
[  383.318798][ T3874]  invoke_syscall+0x48/0x118
[  383.319536][ T3874]  el0_svc_common.constprop.0+0x40/0xe0
[  383.320683][ T3874]  do_el0_svc+0x1c/0x28
[  383.321588][ T3874]  el0_svc+0x34/0xf8
[  383.322355][ T3874]  el0t_64_sync_handler+0x100/0x12c
[  383.323159][ T3874]  el0t_64_sync+0x19c/0x1a0
[  383.326542][ T3874] BUG: Bad page state in process syz.0.26  pfn:ba09b
[  383.327928][ T3874] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0xba09b
[  383.329381][ T3874] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.331388][ T3874] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  383.332392][ T3874] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  383.333296][ T3874] page dumped because: nonzero mapcount
[  383.334017][ T3874] Modules linked in:
[  383.334696][ T3874] CPU: 1 PID: 3874 Comm: syz.0.26 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.336016][ T3874] Hardware name: linux,dummy-virt (DT)
[  383.336838][ T3874] Call trace:
[  383.337400][ T3874]  dump_backtrace+0x94/0xec
[  383.338284][ T3874]  show_stack+0x18/0x24
[  383.339082][ T3874]  dump_stack_lvl+0x78/0x90
[  383.339957][ T3874]  dump_stack+0x18/0x24
[  383.340748][ T3874]  bad_page+0x84/0x11c
[  383.341552][ T3874]  free_page_is_bad_report+0x98/0xa4
[  383.342383][ T3874]  free_unref_folios+0x4c0/0x624
[  383.343131][ T3874]  folios_put_refs+0x108/0x284
[  383.343956][ T3874]  free_pages_and_swap_cache+0x14c/0x164
[  383.344958][ T3874]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  383.345977][ T3874]  tlb_flush_mmu+0x54/0xe4
[  383.346792][ T3874]  unmap_page_range+0xab0/0x1190
[  383.347554][ T3874]  unmap_single_vma.constprop.0+0x4c/0x84
[  383.348294][ T3874]  unmap_vmas+0x7c/0x170
[  383.348992][ T3874]  exit_mmap+0xc0/0x288
[  383.349760][ T3874]  __mmput+0x3c/0x170
[  383.350737][ T3874]  mmput+0x50/0x5c
[  383.351732][ T3874]  do_exit+0x270/0x98c
[  383.352646][ T3874]  do_group_exit+0x34/0x90
[  383.353611][ T3874]  pid_child_should_wake+0x0/0x5c
[  383.354609][ T3874]  invoke_syscall+0x48/0x118
[  383.355491][ T3874]  el0_svc_common.constprop.0+0x40/0xe0
[  383.356317][ T3874]  do_el0_svc+0x1c/0x28
[  383.356999][ T3874]  el0_svc+0x34/0xf8
[  383.357671][ T3874]  el0t_64_sync_handler+0x100/0x12c
[  383.358403][ T3874]  el0t_64_sync+0x19c/0x1a0
[  383.544390][ T3876] BUG: Bad page cache in process syz.0.27  pfn:4e726
[  383.545520][ T3876] page: refcount:4 mapcount:1 mapping:00000000fe4387ab index:0x0 pfn:0x4e726
[  383.546737][ T3876] memcg:f4f00000060ad000
[  383.547456][ T3876] aops:shmem_aops ino:8
[  383.548250][ T3876] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.550406][ T3876] raw: 01ffc0000004002d ffffc1ffc0357d88 ffffc1ffc02f2588 f6f00000072c9b10
[  383.551671][ T3876] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  383.552616][ T3876] page dumped because: still mapped when deleted
[  383.553492][ T3876] CPU: 0 PID: 3876 Comm: syz.0.27 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.555155][ T3876] Hardware name: linux,dummy-virt (DT)
[  383.556037][ T3876] Call trace:
[  383.556610][ T3876]  dump_backtrace+0x94/0xec
[  383.557447][ T3876]  show_stack+0x18/0x24
[  383.558217][ T3876]  dump_stack_lvl+0x78/0x90
[  383.559017][ T3876]  dump_stack+0x18/0x24
[  383.559923][ T3876]  filemap_unaccount_folio+0x118/0x278
[  383.560905][ T3876]  __filemap_remove_folio+0x3c/0x178
[  383.561651][ T3876]  filemap_remove_folio+0x48/0xa8
[  383.562402][ T3876]  truncate_inode_folio+0x30/0x4c
[  383.563498][ T3876]  shmem_undo_range+0x208/0x620
[  383.564517][ T3876]  shmem_evict_inode+0x130/0x2dc
[  383.565648][ T3876]  evict+0xb4/0x198
[  383.566487][ T3876]  iput+0x100/0x1b8
[  383.567500][ T3876]  dentry_unlink_inode+0xc0/0x188
[  383.568392][ T3876]  __dentry_kill+0x7c/0x1d4
[  383.569203][ T3876]  dput.part.0+0x30/0xbc
[  383.570038][ T3876]  dput+0x4c/0x50
[  383.570734][ T3876]  __fput+0x110/0x2d4
[  383.571833][ T3876]  ____fput+0x10/0x1c
[  383.572713][ T3876]  task_work_run+0x78/0xd0
[  383.573910][ T3876]  do_notify_resume+0x134/0x164
[  383.575035][ T3876]  el0_svc+0xc8/0xf8
[  383.576107][ T3876]  el0t_64_sync_handler+0x100/0x12c
[  383.577109][ T3876]  el0t_64_sync+0x19c/0x1a0
[  383.587326][ T3876] BUG: Bad page cache in process syz.0.27  pfn:4bc96
[  383.588325][ T3876] page: refcount:4 mapcount:1 mapping:00000000fe4387ab index:0x1 pfn:0x4bc96
[  383.589436][ T3876] memcg:f4f00000060ad000
[  383.591468][ T3876] aops:shmem_aops ino:8
[  383.592367][ T3876] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.593786][ T3876] raw: 01ffc0000004002d ffffc1ffc039c988 ffffc1ffc02d7088 f6f00000072c9b10
[  383.594844][ T3876] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  383.596751][ T3876] page dumped because: still mapped when deleted
[  383.597644][ T3876] CPU: 0 PID: 3876 Comm: syz.0.27 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.599274][ T3876] Hardware name: linux,dummy-virt (DT)
[  383.600801][ T3876] Call trace:
[  383.601473][ T3876]  dump_backtrace+0x94/0xec
[  383.602209][ T3876]  show_stack+0x18/0x24
[  383.602916][ T3876]  dump_stack_lvl+0x78/0x90
[  383.603853][ T3876]  dump_stack+0x18/0x24
[  383.604734][ T3876]  filemap_unaccount_folio+0x118/0x278
[  383.605656][ T3876]  __filemap_remove_folio+0x3c/0x178
[  383.606520][ T3876]  filemap_remove_folio+0x48/0xa8
[  383.607420][ T3876]  truncate_inode_folio+0x30/0x4c
[  383.608244][ T3876]  shmem_undo_range+0x208/0x620
[  383.609146][ T3876]  shmem_evict_inode+0x130/0x2dc
[  383.610236][ T3876]  evict+0xb4/0x198
[  383.611061][ T3876]  iput+0x100/0x1b8
[  383.611780][ T3876]  dentry_unlink_inode+0xc0/0x188
[  383.612534][ T3876]  __dentry_kill+0x7c/0x1d4
[  383.613296][ T3876]  dput.part.0+0x30/0xbc
[  383.614171][ T3876]  dput+0x4c/0x50
[  383.614897][ T3876]  __fput+0x110/0x2d4
[  383.615768][ T3876]  ____fput+0x10/0x1c
[  383.616474][ T3876]  task_work_run+0x78/0xd0
[  383.617263][ T3876]  do_notify_resume+0x134/0x164
[  383.618020][ T3876]  el0_svc+0xc8/0xf8
[  383.618801][ T3876]  el0t_64_sync_handler+0x100/0x12c
[  383.621107][ T3876]  el0t_64_sync+0x19c/0x1a0
[  383.656821][ T3877] BUG: Bad page map in process syz.0.27  pte:6000004e7268c3 pmd:800000047bfe003
[  383.658007][ T3877] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4e726
[  383.658590][ T3877] memcg:f4f00000060ad000
[  383.658910][ T3877] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.660400][ T3877] raw: 01ffc0000004002c ffffc1ffc02cc148 ffffc1ffc02f2588 0000000000000000
[  383.662450][ T3877] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  383.665535][ T3877] page dumped because: bad pte
[  383.666661][ T3877] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:0
[  383.668129][ T3877] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  383.669710][ T3877] CPU: 0 PID: 3877 Comm: syz.0.27 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.671631][ T3877] Hardware name: linux,dummy-virt (DT)
[  383.673155][ T3877] Call trace:
[  383.674435][ T3877]  dump_backtrace+0x94/0xec
[  383.675866][ T3877]  show_stack+0x18/0x24
[  383.677468][ T3877]  dump_stack_lvl+0x78/0x90
[  383.679267][ T3877]  dump_stack+0x18/0x24
[  383.681010][ T3877]  print_bad_pte+0x1c8/0x258
[  383.682027][ T3877]  unmap_page_range+0x904/0x1190
[  383.682843][ T3877]  unmap_single_vma.constprop.0+0x4c/0x84
[  383.683767][ T3877]  unmap_vmas+0x7c/0x170
[  383.684616][ T3877]  exit_mmap+0xc0/0x288
[  383.685527][ T3877]  __mmput+0x3c/0x170
[  383.686291][ T3877]  mmput+0x50/0x5c
[  383.687186][ T3877]  do_exit+0x270/0x98c
[  383.688028][ T3877]  do_group_exit+0x34/0x90
[  383.688887][ T3877]  copy_siginfo_to_user+0x0/0xec
[  383.690035][ T3877]  do_signal+0x94/0x1450
[  383.691193][ T3877]  do_notify_resume+0xd8/0x164
[  383.692451][ T3877]  el0_svc+0xc8/0xf8
[  383.693137][ T3877]  el0t_64_sync_handler+0x100/0x12c
[  383.694344][ T3877]  el0t_64_sync+0x19c/0x1a0
[  383.697187][ T3877] BUG: Bad page map in process syz.0.27  pte:6000004bc968c3 pmd:800000047bfe003
[  383.698837][ T3877] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4bc96
[  383.700808][ T3877] memcg:f4f00000060ad000
[  383.701517][ T3877] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.703331][ T3877] raw: 01ffc0000004002c ffffc1ffc039c988 ffffc1ffc02d7088 0000000000000000
[  383.704566][ T3877] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  383.705668][ T3877] page dumped because: bad pte
[  383.706452][ T3877] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:1
[  383.708368][ T3877] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  383.711005][ T3877] CPU: 0 PID: 3877 Comm: syz.0.27 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.712261][ T3877] Hardware name: linux,dummy-virt (DT)
[  383.713070][ T3877] Call trace:
[  383.713704][ T3877]  dump_backtrace+0x94/0xec
[  383.714536][ T3877]  show_stack+0x18/0x24
[  383.715361][ T3877]  dump_stack_lvl+0x78/0x90
[  383.716197][ T3877]  dump_stack+0x18/0x24
[  383.717125][ T3877]  print_bad_pte+0x1c8/0x258
[  383.718023][ T3877]  unmap_page_range+0x904/0x1190
[  383.719035][ T3877]  unmap_single_vma.constprop.0+0x4c/0x84
[  383.720286][ T3877]  unmap_vmas+0x7c/0x170
[  383.721251][ T3877]  exit_mmap+0xc0/0x288
[  383.722123][ T3877]  __mmput+0x3c/0x170
[  383.722964][ T3877]  mmput+0x50/0x5c
[  383.723693][ T3877]  do_exit+0x270/0x98c
[  383.724888][ T3877]  do_group_exit+0x34/0x90
[  383.725982][ T3877]  copy_siginfo_to_user+0x0/0xec
[  383.726967][ T3877]  do_signal+0x94/0x1450
[  383.727908][ T3877]  do_notify_resume+0xd8/0x164
[  383.728753][ T3877]  el0_svc+0xc8/0xf8
[  383.729499][ T3877]  el0t_64_sync_handler+0x100/0x12c
[  383.730630][ T3877]  el0t_64_sync+0x19c/0x1a0
[  383.747695][ T3877] BUG: Bad page state in process syz.0.27  pfn:4e726
[  383.748749][ T3877] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4e726
[  383.752577][ T3877] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.754183][ T3877] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  383.755323][ T3877] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  383.761454][ T3877] page dumped because: nonzero mapcount
[  383.762558][ T3877] Modules linked in:
[  383.763291][ T3877] CPU: 0 PID: 3877 Comm: syz.0.27 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.764616][ T3877] Hardware name: linux,dummy-virt (DT)
[  383.765446][ T3877] Call trace:
[  383.766121][ T3877]  dump_backtrace+0x94/0xec
[  383.766990][ T3877]  show_stack+0x18/0x24
[  383.767841][ T3877]  dump_stack_lvl+0x78/0x90
[  383.768636][ T3877]  dump_stack+0x18/0x24
[  383.769322][ T3877]  bad_page+0x84/0x11c
[  383.770358][ T3877]  free_page_is_bad_report+0x98/0xa4
[  383.771439][ T3877]  free_unref_folios+0x4c0/0x624
[  383.772262][ T3877]  folios_put_refs+0x108/0x284
[  383.773073][ T3877]  free_pages_and_swap_cache+0x14c/0x164
[  383.773985][ T3877]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  383.774821][ T3877]  tlb_flush_mmu+0x54/0xe4
[  383.775638][ T3877]  unmap_page_range+0xab0/0x1190
[  383.776502][ T3877]  unmap_single_vma.constprop.0+0x4c/0x84
[  383.777419][ T3877]  unmap_vmas+0x7c/0x170
[  383.778092][ T3877]  exit_mmap+0xc0/0x288
[  383.778804][ T3877]  __mmput+0x3c/0x170
[  383.779573][ T3877]  mmput+0x50/0x5c
[  383.780323][ T3877]  do_exit+0x270/0x98c
[  383.781182][ T3877]  do_group_exit+0x34/0x90
[  383.781962][ T3877]  copy_siginfo_to_user+0x0/0xec
[  383.782761][ T3877]  do_signal+0x94/0x1450
[  383.783491][ T3877]  do_notify_resume+0xd8/0x164
[  383.784262][ T3877]  el0_svc+0xc8/0xf8
[  383.784922][ T3877]  el0t_64_sync_handler+0x100/0x12c
[  383.785708][ T3877]  el0t_64_sync+0x19c/0x1a0
[  383.787749][ T3877] BUG: Bad page state in process syz.0.27  pfn:4bc96
[  383.788797][ T3877] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4bc96
[  383.790265][ T3877] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.793847][ T3877] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  383.794882][ T3877] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  383.797302][ T3877] page dumped because: nonzero mapcount
[  383.799195][ T3877] Modules linked in:
[  383.801534][ T3877] CPU: 0 PID: 3877 Comm: syz.0.27 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  383.803243][ T3877] Hardware name: linux,dummy-virt (DT)
[  383.804074][ T3877] Call trace:
[  383.804688][ T3877]  dump_backtrace+0x94/0xec
[  383.805460][ T3877]  show_stack+0x18/0x24
[  383.806158][ T3877]  dump_stack_lvl+0x78/0x90
[  383.806924][ T3877]  dump_stack+0x18/0x24
[  383.807602][ T3877]  bad_page+0x84/0x11c
[  383.808330][ T3877]  free_page_is_bad_report+0x98/0xa4
[  383.809154][ T3877]  free_unref_folios+0x4c0/0x624
[  383.810088][ T3877]  folios_put_refs+0x108/0x284
[  383.810880][ T3877]  free_pages_and_swap_cache+0x14c/0x164
[  383.811785][ T3877]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  383.812732][ T3877]  tlb_flush_mmu+0x54/0xe4
[  383.813430][ T3877]  unmap_page_range+0xab0/0x1190
[  383.815535][ T3877]  unmap_single_vma.constprop.0+0x4c/0x84
[  383.816339][ T3877]  unmap_vmas+0x7c/0x170
[  383.816997][ T3877]  exit_mmap+0xc0/0x288
[  383.817703][ T3877]  __mmput+0x3c/0x170
[  383.818515][ T3877]  mmput+0x50/0x5c
[  383.819305][ T3877]  do_exit+0x270/0x98c
[  383.820428][ T3877]  do_group_exit+0x34/0x90
[  383.821120][ T3877]  copy_siginfo_to_user+0x0/0xec
[  383.822164][ T3877]  do_signal+0x94/0x1450
[  383.822827][ T3877]  do_notify_resume+0xd8/0x164
[  383.823620][ T3877]  el0_svc+0xc8/0xf8
[  383.824308][ T3877]  el0t_64_sync_handler+0x100/0x12c
[  383.825043][ T3877]  el0t_64_sync+0x19c/0x1a0
[  383.989069][ T3878] BUG: Bad page cache in process syz.0.28  pfn:47fd4
[  383.990701][ T3878] page: refcount:4 mapcount:1 mapping:0000000036895b00 index:0x0 pfn:0x47fd4
[  383.992453][ T3878] memcg:f4f00000060ad000
[  383.993144][ T3878] aops:shmem_aops ino:9
[  383.993903][ T3878] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  383.995423][ T3878] raw: 01ffc0000004002d ffffc1ffc0325b88 ffffc1ffc02cb548 f7f00000072cb730
[  383.996660][ T3878] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  383.997634][ T3878] page dumped because: still mapped when deleted
[  383.998455][ T3878] CPU: 0 PID: 3878 Comm: syz.0.28 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.000199][ T3878] Hardware name: linux,dummy-virt (DT)
[  384.000997][ T3878] Call trace:
[  384.001649][ T3878]  dump_backtrace+0x94/0xec
[  384.002397][ T3878]  show_stack+0x18/0x24
[  384.003048][ T3878]  dump_stack_lvl+0x78/0x90
[  384.004153][ T3878]  dump_stack+0x18/0x24
[  384.004883][ T3878]  filemap_unaccount_folio+0x118/0x278
[  384.005781][ T3878]  __filemap_remove_folio+0x3c/0x178
[  384.006612][ T3878]  filemap_remove_folio+0x48/0xa8
[  384.007499][ T3878]  truncate_inode_folio+0x30/0x4c
[  384.008443][ T3878]  shmem_undo_range+0x208/0x620
[  384.009239][ T3878]  shmem_evict_inode+0x130/0x2dc
[  384.010256][ T3878]  evict+0xb4/0x198
[  384.010950][ T3878]  iput+0x100/0x1b8
[  384.011923][ T3878]  dentry_unlink_inode+0xc0/0x188
[  384.012677][ T3878]  __dentry_kill+0x7c/0x1d4
[  384.013414][ T3878]  dput.part.0+0x30/0xbc
[  384.014123][ T3878]  dput+0x4c/0x50
[  384.014742][ T3878]  __fput+0x110/0x2d4
[  384.015704][ T3878]  ____fput+0x10/0x1c
[  384.016453][ T3878]  task_work_run+0x78/0xd0
[  384.017192][ T3878]  do_notify_resume+0x134/0x164
[  384.017963][ T3878]  el0_svc+0xc8/0xf8
[  384.018706][ T3878]  el0t_64_sync_handler+0x100/0x12c
[  384.019812][ T3878]  el0t_64_sync+0x19c/0x1a0
[  384.033183][ T3878] BUG: Bad page cache in process syz.0.28  pfn:4b2d5
[  384.034420][ T3878] page: refcount:4 mapcount:1 mapping:0000000036895b00 index:0x1 pfn:0x4b2d5
[  384.035721][ T3878] memcg:f4f00000060ad000
[  384.036593][ T3878] aops:shmem_aops ino:9
[  384.037755][ T3878] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.039516][ T3878] raw: 01ffc0000004002d ffffc1ffc01ff508 ffffc1ffc02d5b48 f7f00000072cb730
[  384.041088][ T3878] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  384.042183][ T3878] page dumped because: still mapped when deleted
[  384.042938][ T3878] CPU: 0 PID: 3878 Comm: syz.0.28 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.044369][ T3878] Hardware name: linux,dummy-virt (DT)
[  384.045113][ T3878] Call trace:
[  384.045742][ T3878]  dump_backtrace+0x94/0xec
[  384.046724][ T3878]  show_stack+0x18/0x24
[  384.047549][ T3878]  dump_stack_lvl+0x78/0x90
[  384.048363][ T3878]  dump_stack+0x18/0x24
[  384.049417][ T3878]  filemap_unaccount_folio+0x118/0x278
[  384.050524][ T3878]  __filemap_remove_folio+0x3c/0x178
[  384.051563][ T3878]  filemap_remove_folio+0x48/0xa8
[  384.052400][ T3878]  truncate_inode_folio+0x30/0x4c
[  384.053188][ T3878]  shmem_undo_range+0x208/0x620
[  384.054212][ T3878]  shmem_evict_inode+0x130/0x2dc
[  384.054987][ T3878]  evict+0xb4/0x198
[  384.055705][ T3878]  iput+0x100/0x1b8
[  384.056599][ T3878]  dentry_unlink_inode+0xc0/0x188
[  384.057466][ T3878]  __dentry_kill+0x7c/0x1d4
[  384.058302][ T3878]  dput.part.0+0x30/0xbc
[  384.059083][ T3878]  dput+0x4c/0x50
[  384.060015][ T3878]  __fput+0x110/0x2d4
[  384.060922][ T3878]  ____fput+0x10/0x1c
[  384.061631][ T3878]  task_work_run+0x78/0xd0
[  384.062371][ T3878]  do_notify_resume+0x134/0x164
[  384.063092][ T3878]  el0_svc+0xc8/0xf8
[  384.063848][ T3878]  el0t_64_sync_handler+0x100/0x12c
[  384.064645][ T3878]  el0t_64_sync+0x19c/0x1a0
[  384.114658][ T3878] BUG: Bad page map in process syz.0.28  pte:60000047fd48c3 pmd:8000000479d9003
[  384.115888][ T3878] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x47fd4
[  384.116968][ T3878] memcg:f4f00000060ad000
[  384.117556][ T3878] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.118945][ T3878] raw: 01ffc0000004002c ffffc1ffc02d7088 ffffc1ffc02cb548 0000000000000000
[  384.121223][ T3878] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  384.122141][ T3878] page dumped because: bad pte
[  384.122824][ T3878] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:0
[  384.124164][ T3878] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  384.125598][ T3878] CPU: 0 PID: 3878 Comm: syz.0.28 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.127314][ T3878] Hardware name: linux,dummy-virt (DT)
[  384.128088][ T3878] Call trace:
[  384.128692][ T3878]  dump_backtrace+0x94/0xec
[  384.129454][ T3878]  show_stack+0x18/0x24
[  384.130368][ T3878]  dump_stack_lvl+0x78/0x90
[  384.131086][ T3878]  dump_stack+0x18/0x24
[  384.132018][ T3878]  print_bad_pte+0x1c8/0x258
[  384.132832][ T3878]  unmap_page_range+0x904/0x1190
[  384.133635][ T3878]  unmap_single_vma.constprop.0+0x4c/0x84
[  384.134440][ T3878]  unmap_vmas+0x7c/0x170
[  384.135248][ T3878]  exit_mmap+0xc0/0x288
[  384.135994][ T3878]  __mmput+0x3c/0x170
[  384.136706][ T3878]  mmput+0x50/0x5c
[  384.137362][ T3878]  do_exit+0x270/0x98c
[  384.138125][ T3878]  do_group_exit+0x34/0x90
[  384.138892][ T3878]  pid_child_should_wake+0x0/0x5c
[  384.139807][ T3878]  invoke_syscall+0x48/0x118
[  384.140808][ T3878]  el0_svc_common.constprop.0+0x40/0xe0
[  384.141661][ T3878]  do_el0_svc+0x1c/0x28
[  384.142373][ T3878]  el0_svc+0x34/0xf8
[  384.143066][ T3878]  el0t_64_sync_handler+0x100/0x12c
[  384.143825][ T3878]  el0t_64_sync+0x19c/0x1a0
[  384.145850][ T3878] BUG: Bad page map in process syz.0.28  pte:6000004b2d58c3 pmd:8000000479d9003
[  384.147355][ T3878] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b2d5
[  384.148336][ T3878] memcg:f4f00000060ad000
[  384.149031][ T3878] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.151469][ T3878] raw: 01ffc0000004002c ffffc1ffc01ff508 ffffc1ffc02d5b48 0000000000000000
[  384.154603][ T3878] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  384.155685][ T3878] page dumped because: bad pte
[  384.156399][ T3878] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f1f0000006e6ce48 index:1
[  384.157524][ T3878] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  384.158757][ T3878] CPU: 0 PID: 3878 Comm: syz.0.28 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.161655][ T3878] Hardware name: linux,dummy-virt (DT)
[  384.162560][ T3878] Call trace:
[  384.163088][ T3878]  dump_backtrace+0x94/0xec
[  384.163908][ T3878]  show_stack+0x18/0x24
[  384.164571][ T3878]  dump_stack_lvl+0x78/0x90
[  384.165443][ T3878]  dump_stack+0x18/0x24
[  384.166295][ T3878]  print_bad_pte+0x1c8/0x258
[  384.167083][ T3878]  unmap_page_range+0x904/0x1190
[  384.167973][ T3878]  unmap_single_vma.constprop.0+0x4c/0x84
[  384.169405][ T3878]  unmap_vmas+0x7c/0x170
[  384.170281][ T3878]  exit_mmap+0xc0/0x288
[  384.170961][ T3878]  __mmput+0x3c/0x170
[  384.171663][ T3878]  mmput+0x50/0x5c
[  384.172339][ T3878]  do_exit+0x270/0x98c
[  384.172872][ T3878]  do_group_exit+0x34/0x90
[  384.173444][ T3878]  pid_child_should_wake+0x0/0x5c
[  384.174074][ T3878]  invoke_syscall+0x48/0x118
[  384.174674][ T3878]  el0_svc_common.constprop.0+0x40/0xe0
[  384.175414][ T3878]  do_el0_svc+0x1c/0x28
[  384.176077][ T3878]  el0_svc+0x34/0xf8
[  384.176872][ T3878]  el0t_64_sync_handler+0x100/0x12c
[  384.177808][ T3878]  el0t_64_sync+0x19c/0x1a0
[  384.181419][ T3878] BUG: Bad page state in process syz.0.28  pfn:47fd4
[  384.182537][ T3878] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x47fd4
[  384.183582][ T3878] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.185083][ T3878] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  384.186331][ T3878] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  384.187609][ T3878] page dumped because: nonzero mapcount
[  384.188349][ T3878] Modules linked in:
[  384.189376][ T3878] CPU: 0 PID: 3878 Comm: syz.0.28 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.192164][ T3878] Hardware name: linux,dummy-virt (DT)
[  384.193503][ T3878] Call trace:
[  384.194040][ T3878]  dump_backtrace+0x94/0xec
[  384.195000][ T3878]  show_stack+0x18/0x24
[  384.195785][ T3878]  dump_stack_lvl+0x78/0x90
[  384.196750][ T3878]  dump_stack+0x18/0x24
[  384.197627][ T3878]  bad_page+0x84/0x11c
[  384.198356][ T3878]  free_page_is_bad_report+0x98/0xa4
[  384.199221][ T3878]  free_unref_folios+0x4c0/0x624
[  384.200378][ T3878]  folios_put_refs+0x108/0x284
[  384.202004][ T3878]  free_pages_and_swap_cache+0x14c/0x164
[  384.202908][ T3878]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  384.203985][ T3878]  tlb_flush_mmu+0x54/0xe4
[  384.204864][ T3878]  unmap_page_range+0xab0/0x1190
[  384.205895][ T3878]  unmap_single_vma.constprop.0+0x4c/0x84
[  384.206973][ T3878]  unmap_vmas+0x7c/0x170
[  384.208161][ T3878]  exit_mmap+0xc0/0x288
[  384.209063][ T3878]  __mmput+0x3c/0x170
[  384.209961][ T3878]  mmput+0x50/0x5c
[  384.210716][ T3878]  do_exit+0x270/0x98c
[  384.211647][ T3878]  do_group_exit+0x34/0x90
[  384.212379][ T3878]  pid_child_should_wake+0x0/0x5c
[  384.213191][ T3878]  invoke_syscall+0x48/0x118
[  384.213965][ T3878]  el0_svc_common.constprop.0+0x40/0xe0
[  384.214858][ T3878]  do_el0_svc+0x1c/0x28
[  384.215679][ T3878]  el0_svc+0x34/0xf8
[  384.216480][ T3878]  el0t_64_sync_handler+0x100/0x12c
[  384.217289][ T3878]  el0t_64_sync+0x19c/0x1a0
[  384.237317][ T3878] BUG: Bad page state in process syz.0.28  pfn:4b2d5
[  384.238239][ T3878] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b2d5
[  384.239222][ T3878] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.241185][ T3878] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  384.243034][ T3878] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  384.246446][ T3878] page dumped because: nonzero mapcount
[  384.248927][ T3878] Modules linked in:
[  384.250576][ T3878] CPU: 0 PID: 3878 Comm: syz.0.28 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.252131][ T3878] Hardware name: linux,dummy-virt (DT)
[  384.252953][ T3878] Call trace:
[  384.253531][ T3878]  dump_backtrace+0x94/0xec
[  384.254337][ T3878]  show_stack+0x18/0x24
[  384.255116][ T3878]  dump_stack_lvl+0x78/0x90
[  384.255969][ T3878]  dump_stack+0x18/0x24
[  384.257325][ T3878]  bad_page+0x84/0x11c
[  384.258482][ T3878]  free_page_is_bad_report+0x98/0xa4
[  384.259326][ T3878]  free_unref_folios+0x4c0/0x624
[  384.260428][ T3878]  folios_put_refs+0x108/0x284
[  384.261258][ T3878]  free_pages_and_swap_cache+0x14c/0x164
[  384.262286][ T3878]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  384.263124][ T3878]  tlb_flush_mmu+0x54/0xe4
[  384.263906][ T3878]  unmap_page_range+0xab0/0x1190
[  384.264855][ T3878]  unmap_single_vma.constprop.0+0x4c/0x84
[  384.265766][ T3878]  unmap_vmas+0x7c/0x170
[  384.266534][ T3878]  exit_mmap+0xc0/0x288
[  384.267391][ T3878]  __mmput+0x3c/0x170
[  384.268182][ T3878]  mmput+0x50/0x5c
[  384.268855][ T3878]  do_exit+0x270/0x98c
[  384.269696][ T3878]  do_group_exit+0x34/0x90
[  384.270522][ T3878]  pid_child_should_wake+0x0/0x5c
[  384.271338][ T3878]  invoke_syscall+0x48/0x118
[  384.272142][ T3878]  el0_svc_common.constprop.0+0x40/0xe0
[  384.272945][ T3878]  do_el0_svc+0x1c/0x28
[  384.273705][ T3878]  el0_svc+0x34/0xf8
[  384.274528][ T3878]  el0t_64_sync_handler+0x100/0x12c
[  384.275431][ T3878]  el0t_64_sync+0x19c/0x1a0
[  384.469466][ T3880] BUG: Bad page cache in process syz.0.29  pfn:4b2c1
[  384.472021][ T3880] page: refcount:4 mapcount:1 mapping:0000000075ce9b79 index:0x0 pfn:0x4b2c1
[  384.474811][ T3880] memcg:f4f00000060ad000
[  384.476322][ T3880] aops:shmem_aops ino:407
[  384.477985][ T3880] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.483403][ T3880] raw: 01ffc0000004002d ffffc1ffc1e830c8 ffffc1ffc0325b48 f1f00000070f2dd0
[  384.486265][ T3880] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  384.490239][ T3880] page dumped because: still mapped when deleted
[  384.492646][ T3880] CPU: 1 PID: 3880 Comm: syz.0.29 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.496354][ T3880] Hardware name: linux,dummy-virt (DT)
[  384.497877][ T3880] Call trace:
[  384.498493][ T3880]  dump_backtrace+0x94/0xec
[  384.499388][ T3880]  show_stack+0x18/0x24
[  384.500875][ T3880]  dump_stack_lvl+0x78/0x90
[  384.501740][ T3880]  dump_stack+0x18/0x24
[  384.502514][ T3880]  filemap_unaccount_folio+0x118/0x278
[  384.503418][ T3880]  __filemap_remove_folio+0x3c/0x178
[  384.504419][ T3880]  filemap_remove_folio+0x48/0xa8
[  384.505225][ T3880]  truncate_inode_folio+0x30/0x4c
[  384.506072][ T3880]  shmem_undo_range+0x208/0x620
[  384.506971][ T3880]  shmem_evict_inode+0x130/0x2dc
[  384.507856][ T3880]  evict+0xb4/0x198
[  384.508589][ T3880]  iput+0x100/0x1b8
[  384.509608][ T3880]  dentry_unlink_inode+0xc0/0x188
[  384.510893][ T3880]  __dentry_kill+0x7c/0x1d4
[  384.511650][ T3880]  dput.part.0+0x30/0xbc
[  384.512321][ T3880]  dput+0x4c/0x50
[  384.512959][ T3880]  __fput+0x110/0x2d4
[  384.513808][ T3880]  ____fput+0x10/0x1c
[  384.514536][ T3880]  task_work_run+0x78/0xd0
[  384.515336][ T3880]  do_notify_resume+0x134/0x164
[  384.516144][ T3880]  el0_svc+0xc8/0xf8
[  384.516899][ T3880]  el0t_64_sync_handler+0x100/0x12c
[  384.517744][ T3880]  el0t_64_sync+0x19c/0x1a0
[  384.521156][ T3880] BUG: Bad page cache in process syz.0.29  pfn:4c96d
[  384.522012][ T3880] page: refcount:4 mapcount:1 mapping:0000000075ce9b79 index:0x1 pfn:0x4c96d
[  384.522975][ T3880] memcg:f4f00000060ad000
[  384.523684][ T3880] aops:shmem_aops ino:407
[  384.524430][ T3880] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.525892][ T3880] raw: 01ffc0000004002d ffffc1ffc02cb048 ffffc1ffc01a0588 f1f00000070f2dd0
[  384.526922][ T3880] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  384.527929][ T3880] page dumped because: still mapped when deleted
[  384.528719][ T3880] CPU: 1 PID: 3880 Comm: syz.0.29 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.530463][ T3880] Hardware name: linux,dummy-virt (DT)
[  384.531233][ T3880] Call trace:
[  384.531809][ T3880]  dump_backtrace+0x94/0xec
[  384.532512][ T3880]  show_stack+0x18/0x24
[  384.533207][ T3880]  dump_stack_lvl+0x78/0x90
[  384.533964][ T3880]  dump_stack+0x18/0x24
[  384.534860][ T3880]  filemap_unaccount_folio+0x118/0x278
[  384.535709][ T3880]  __filemap_remove_folio+0x3c/0x178
[  384.536502][ T3880]  filemap_remove_folio+0x48/0xa8
[  384.537229][ T3880]  truncate_inode_folio+0x30/0x4c
[  384.537933][ T3880]  shmem_undo_range+0x208/0x620
[  384.538641][ T3880]  shmem_evict_inode+0x130/0x2dc
[  384.539393][ T3880]  evict+0xb4/0x198
[  384.540261][ T3880]  iput+0x100/0x1b8
[  384.541243][ T3880]  dentry_unlink_inode+0xc0/0x188
[  384.541854][ T3880]  __dentry_kill+0x7c/0x1d4
[  384.542471][ T3880]  dput.part.0+0x30/0xbc
[  384.543057][ T3880]  dput+0x4c/0x50
[  384.543716][ T3880]  __fput+0x110/0x2d4
[  384.544448][ T3880]  ____fput+0x10/0x1c
[  384.545107][ T3880]  task_work_run+0x78/0xd0
[  384.545828][ T3880]  do_notify_resume+0x134/0x164
[  384.546537][ T3880]  el0_svc+0xc8/0xf8
[  384.547255][ T3880]  el0t_64_sync_handler+0x100/0x12c
[  384.547942][ T3880]  el0t_64_sync+0x19c/0x1a0
[  384.553848][ T3880] BUG: Bad page map in process syz.0.29  pte:6000004b2c18c3 pmd:8000000460b2003
[  384.555057][ T3880] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b2c1
[  384.556250][ T3880] memcg:f4f00000060ad000
[  384.556935][ T3880] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.558462][ T3880] raw: 01ffc0000004002c ffffc1ffc02f7b08 ffffc1ffc0325b48 0000000000000000
[  384.559573][ T3880] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  384.562087][ T3880] page dumped because: bad pte
[  384.563508][ T3880] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:0
[  384.565428][ T3880] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  384.566808][ T3880] CPU: 1 PID: 3880 Comm: syz.0.29 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.569074][ T3880] Hardware name: linux,dummy-virt (DT)
[  384.570225][ T3880] Call trace:
[  384.570810][ T3880]  dump_backtrace+0x94/0xec
[  384.571991][ T3880]  show_stack+0x18/0x24
[  384.573321][ T3880]  dump_stack_lvl+0x78/0x90
[  384.575493][ T3880]  dump_stack+0x18/0x24
[  384.577293][ T3880]  print_bad_pte+0x1c8/0x258
[  384.579477][ T3880]  unmap_page_range+0x904/0x1190
[  384.580863][ T3880]  unmap_single_vma.constprop.0+0x4c/0x84
[  384.582081][ T3880]  unmap_vmas+0x7c/0x170
[  384.582867][ T3880]  exit_mmap+0xc0/0x288
[  384.583605][ T3880]  __mmput+0x3c/0x170
[  384.584368][ T3880]  mmput+0x50/0x5c
[  384.584935][ T3880]  do_exit+0x270/0x98c
[  384.585582][ T3880]  do_group_exit+0x34/0x90
[  384.586307][ T3880]  pid_child_should_wake+0x0/0x5c
[  384.587040][ T3880]  invoke_syscall+0x48/0x118
[  384.587791][ T3880]  el0_svc_common.constprop.0+0x40/0xe0
[  384.590693][ T3880]  do_el0_svc+0x1c/0x28
[  384.591688][ T3880]  el0_svc+0x34/0xf8
[  384.592504][ T3880]  el0t_64_sync_handler+0x100/0x12c
[  384.593341][ T3880]  el0t_64_sync+0x19c/0x1a0
[  384.596706][ T3880] BUG: Bad page map in process syz.0.29  pte:6000004c96d8c3 pmd:8000000460b2003
[  384.599609][ T3880] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4c96d
[  384.601867][ T3880] memcg:f4f00000060ad000
[  384.602425][ T3880] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.603695][ T3880] raw: 01ffc0000004002c ffffc1ffc02cb048 ffffc1ffc01a0588 0000000000000000
[  384.604803][ T3880] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  384.605960][ T3880] page dumped because: bad pte
[  384.607289][ T3880] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:1
[  384.608580][ T3880] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  384.612519][ T3880] CPU: 1 PID: 3880 Comm: syz.0.29 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.613745][ T3880] Hardware name: linux,dummy-virt (DT)
[  384.614466][ T3880] Call trace:
[  384.614967][ T3880]  dump_backtrace+0x94/0xec
[  384.615857][ T3880]  show_stack+0x18/0x24
[  384.616640][ T3880]  dump_stack_lvl+0x78/0x90
[  384.617485][ T3880]  dump_stack+0x18/0x24
[  384.618226][ T3880]  print_bad_pte+0x1c8/0x258
[  384.619036][ T3880]  unmap_page_range+0x904/0x1190
[  384.620157][ T3880]  unmap_single_vma.constprop.0+0x4c/0x84
[  384.621054][ T3880]  unmap_vmas+0x7c/0x170
[  384.621786][ T3880]  exit_mmap+0xc0/0x288
[  384.622517][ T3880]  __mmput+0x3c/0x170
[  384.623353][ T3880]  mmput+0x50/0x5c
[  384.624311][ T3880]  do_exit+0x270/0x98c
[  384.625073][ T3880]  do_group_exit+0x34/0x90
[  384.626059][ T3880]  pid_child_should_wake+0x0/0x5c
[  384.626943][ T3880]  invoke_syscall+0x48/0x118
[  384.627659][ T3880]  el0_svc_common.constprop.0+0x40/0xe0
[  384.628532][ T3880]  do_el0_svc+0x1c/0x28
[  384.629265][ T3880]  el0_svc+0x34/0xf8
[  384.630626][ T3880]  el0t_64_sync_handler+0x100/0x12c
[  384.631468][ T3880]  el0t_64_sync+0x19c/0x1a0
[  384.634745][ T3880] BUG: Bad page state in process syz.0.29  pfn:4b2c1
[  384.636757][ T3880] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b2c1
[  384.637899][ T3880] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.639340][ T3880] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  384.642308][ T3880] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  384.643154][ T3880] page dumped because: nonzero mapcount
[  384.643794][ T3880] Modules linked in:
[  384.645644][ T3880] CPU: 1 PID: 3880 Comm: syz.0.29 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.647146][ T3880] Hardware name: linux,dummy-virt (DT)
[  384.647896][ T3880] Call trace:
[  384.648462][ T3880]  dump_backtrace+0x94/0xec
[  384.649309][ T3880]  show_stack+0x18/0x24
[  384.650551][ T3880]  dump_stack_lvl+0x78/0x90
[  384.651378][ T3880]  dump_stack+0x18/0x24
[  384.652236][ T3880]  bad_page+0x84/0x11c
[  384.652998][ T3880]  free_page_is_bad_report+0x98/0xa4
[  384.654142][ T3880]  free_unref_folios+0x4c0/0x624
[  384.654992][ T3880]  folios_put_refs+0x108/0x284
[  384.656038][ T3880]  free_pages_and_swap_cache+0x14c/0x164
[  384.656994][ T3880]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  384.658018][ T3880]  tlb_flush_mmu+0x54/0xe4
[  384.658819][ T3880]  unmap_page_range+0xab0/0x1190
[  384.659905][ T3880]  unmap_single_vma.constprop.0+0x4c/0x84
[  384.660882][ T3880]  unmap_vmas+0x7c/0x170
[  384.661573][ T3880]  exit_mmap+0xc0/0x288
[  384.662225][ T3880]  __mmput+0x3c/0x170
[  384.662945][ T3880]  mmput+0x50/0x5c
[  384.663613][ T3880]  do_exit+0x270/0x98c
[  384.664377][ T3880]  do_group_exit+0x34/0x90
[  384.665325][ T3880]  pid_child_should_wake+0x0/0x5c
[  384.666258][ T3880]  invoke_syscall+0x48/0x118
[  384.667157][ T3880]  el0_svc_common.constprop.0+0x40/0xe0
[  384.668209][ T3880]  do_el0_svc+0x1c/0x28
[  384.669035][ T3880]  el0_svc+0x34/0xf8
[  384.670036][ T3880]  el0t_64_sync_handler+0x100/0x12c
[  384.671257][ T3880]  el0t_64_sync+0x19c/0x1a0
[  384.676825][ T3880] BUG: Bad page state in process syz.0.29  pfn:4c96d
[  384.678685][ T3880] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4c96d
[  384.690538][ T3880] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.692059][ T3880] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  384.697919][ T3880] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  384.699252][ T3880] page dumped because: nonzero mapcount
[  384.701649][ T3880] Modules linked in:
[  384.702660][ T3880] CPU: 1 PID: 3880 Comm: syz.0.29 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.704204][ T3880] Hardware name: linux,dummy-virt (DT)
[  384.705098][ T3880] Call trace:
[  384.705714][ T3880]  dump_backtrace+0x94/0xec
[  384.706653][ T3880]  show_stack+0x18/0x24
[  384.707612][ T3880]  dump_stack_lvl+0x78/0x90
[  384.708450][ T3880]  dump_stack+0x18/0x24
[  384.709259][ T3880]  bad_page+0x84/0x11c
[  384.710622][ T3880]  free_page_is_bad_report+0x98/0xa4
[  384.711425][ T3880]  free_unref_folios+0x4c0/0x624
[  384.712058][ T3880]  folios_put_refs+0x108/0x284
[  384.712856][ T3880]  free_pages_and_swap_cache+0x14c/0x164
[  384.713761][ T3880]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  384.714876][ T3880]  tlb_flush_mmu+0x54/0xe4
[  384.715825][ T3880]  unmap_page_range+0xab0/0x1190
[  384.716685][ T3880]  unmap_single_vma.constprop.0+0x4c/0x84
[  384.717617][ T3880]  unmap_vmas+0x7c/0x170
[  384.718342][ T3880]  exit_mmap+0xc0/0x288
[  384.719186][ T3880]  __mmput+0x3c/0x170
[  384.720354][ T3880]  mmput+0x50/0x5c
[  384.720984][ T3880]  do_exit+0x270/0x98c
[  384.721681][ T3880]  do_group_exit+0x34/0x90
[  384.722502][ T3880]  pid_child_should_wake+0x0/0x5c
[  384.723277][ T3880]  invoke_syscall+0x48/0x118
[  384.723982][ T3880]  el0_svc_common.constprop.0+0x40/0xe0
[  384.724749][ T3880]  do_el0_svc+0x1c/0x28
[  384.725534][ T3880]  el0_svc+0x34/0xf8
[  384.726987][ T3880]  el0t_64_sync_handler+0x100/0x12c
[  384.727941][ T3880]  el0t_64_sync+0x19c/0x1a0
[  384.933736][ T3882] BUG: Bad page cache in process syz.0.30  pfn:4b3b5
[  384.935001][ T3882] page: refcount:4 mapcount:1 mapping:00000000b1fef2fe index:0x0 pfn:0x4b3b5
[  384.936615][ T3882] memcg:f4f00000060ad000
[  384.937371][ T3882] aops:shmem_aops ino:408
[  384.938196][ T3882] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.944021][ T3882] raw: 01ffc0000004002d ffffc1ffc02d5b48 ffffc1ffc0325b08 fbf00000070f0e90
[  384.945532][ T3882] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  384.946794][ T3882] page dumped because: still mapped when deleted
[  384.947888][ T3882] CPU: 1 PID: 3882 Comm: syz.0.30 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.951976][ T3882] Hardware name: linux,dummy-virt (DT)
[  384.954104][ T3882] Call trace:
[  384.954772][ T3882]  dump_backtrace+0x94/0xec
[  384.955937][ T3882]  show_stack+0x18/0x24
[  384.956848][ T3882]  dump_stack_lvl+0x78/0x90
[  384.957748][ T3882]  dump_stack+0x18/0x24
[  384.958468][ T3882]  filemap_unaccount_folio+0x118/0x278
[  384.959353][ T3882]  __filemap_remove_folio+0x3c/0x178
[  384.960203][ T3882]  filemap_remove_folio+0x48/0xa8
[  384.961135][ T3882]  truncate_inode_folio+0x30/0x4c
[  384.961762][ T3882]  shmem_undo_range+0x208/0x620
[  384.962407][ T3882]  shmem_evict_inode+0x130/0x2dc
[  384.963048][ T3882]  evict+0xb4/0x198
[  384.963865][ T3882]  iput+0x100/0x1b8
[  384.964772][ T3882]  dentry_unlink_inode+0xc0/0x188
[  384.965790][ T3882]  __dentry_kill+0x7c/0x1d4
[  384.966713][ T3882]  dput.part.0+0x30/0xbc
[  384.967683][ T3882]  dput+0x4c/0x50
[  384.968434][ T3882]  __fput+0x110/0x2d4
[  384.969079][ T3882]  ____fput+0x10/0x1c
[  384.969827][ T3882]  task_work_run+0x78/0xd0
[  384.970590][ T3882]  do_notify_resume+0x134/0x164
[  384.971353][ T3882]  el0_svc+0xc8/0xf8
[  384.971928][ T3882]  el0t_64_sync_handler+0x100/0x12c
[  384.972578][ T3882]  el0t_64_sync+0x19c/0x1a0
[  384.976291][ T3882] BUG: Bad page cache in process syz.0.30  pfn:4c96c
[  384.979080][ T3882] page: refcount:4 mapcount:1 mapping:00000000b1fef2fe index:0x1 pfn:0x4c96c
[  384.980834][ T3882] memcg:f4f00000060ad000
[  384.981402][ T3882] aops:shmem_aops ino:408
[  384.981963][ T3882] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  384.983756][ T3882] raw: 01ffc0000004002d ffffc1ffc02ced48 ffffc1ffc02d5c08 fbf00000070f0e90
[  384.984992][ T3882] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  384.986199][ T3882] page dumped because: still mapped when deleted
[  384.987046][ T3882] CPU: 1 PID: 3882 Comm: syz.0.30 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  384.988657][ T3882] Hardware name: linux,dummy-virt (DT)
[  384.989696][ T3882] Call trace:
[  384.990682][ T3882]  dump_backtrace+0x94/0xec
[  384.991577][ T3882]  show_stack+0x18/0x24
[  384.992275][ T3882]  dump_stack_lvl+0x78/0x90
[  384.993046][ T3882]  dump_stack+0x18/0x24
[  384.993913][ T3882]  filemap_unaccount_folio+0x118/0x278
[  384.994848][ T3882]  __filemap_remove_folio+0x3c/0x178
[  384.995892][ T3882]  filemap_remove_folio+0x48/0xa8
[  384.996862][ T3882]  truncate_inode_folio+0x30/0x4c
[  384.997814][ T3882]  shmem_undo_range+0x208/0x620
[  384.998823][ T3882]  shmem_evict_inode+0x130/0x2dc
[  385.001780][ T3882]  evict+0xb4/0x198
[  385.002469][ T3882]  iput+0x100/0x1b8
[  385.003137][ T3882]  dentry_unlink_inode+0xc0/0x188
[  385.004353][ T3882]  __dentry_kill+0x7c/0x1d4
[  385.005159][ T3882]  dput.part.0+0x30/0xbc
[  385.005992][ T3882]  dput+0x4c/0x50
[  385.006874][ T3882]  __fput+0x110/0x2d4
[  385.007736][ T3882]  ____fput+0x10/0x1c
[  385.008548][ T3882]  task_work_run+0x78/0xd0
[  385.009388][ T3882]  do_notify_resume+0x134/0x164
[  385.010619][ T3882]  el0_svc+0xc8/0xf8
[  385.011503][ T3882]  el0t_64_sync_handler+0x100/0x12c
[  385.012284][ T3882]  el0t_64_sync+0x19c/0x1a0
[  385.018486][ T3882] BUG: Bad page map in process syz.0.30  pte:6000004b3b58c3 pmd:8000000439b9003
[  385.020638][ T3882] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b3b5
[  385.021871][ T3882] memcg:f4f00000060ad000
[  385.022454][ T3882] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.023943][ T3882] raw: 01ffc0000004002c ffffc1ffc01f0c88 ffffc1ffc0325b08 0000000000000000
[  385.025946][ T3882] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  385.027192][ T3882] page dumped because: bad pte
[  385.028086][ T3882] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:0
[  385.030582][ T3882] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  385.031938][ T3882] CPU: 1 PID: 3882 Comm: syz.0.30 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.033580][ T3882] Hardware name: linux,dummy-virt (DT)
[  385.034341][ T3882] Call trace:
[  385.035006][ T3882]  dump_backtrace+0x94/0xec
[  385.035967][ T3882]  show_stack+0x18/0x24
[  385.036811][ T3882]  dump_stack_lvl+0x78/0x90
[  385.037661][ T3882]  dump_stack+0x18/0x24
[  385.038403][ T3882]  print_bad_pte+0x1c8/0x258
[  385.039265][ T3882]  unmap_page_range+0x904/0x1190
[  385.040667][ T3882]  unmap_single_vma.constprop.0+0x4c/0x84
[  385.041524][ T3882]  unmap_vmas+0x7c/0x170
[  385.042366][ T3882]  exit_mmap+0xc0/0x288
[  385.043272][ T3882]  __mmput+0x3c/0x170
[  385.044130][ T3882]  mmput+0x50/0x5c
[  385.045104][ T3882]  do_exit+0x270/0x98c
[  385.046095][ T3882]  do_group_exit+0x34/0x90
[  385.046929][ T3882]  pid_child_should_wake+0x0/0x5c
[  385.048858][ T3882]  invoke_syscall+0x48/0x118
[  385.049821][ T3882]  el0_svc_common.constprop.0+0x40/0xe0
[  385.050955][ T3882]  do_el0_svc+0x1c/0x28
[  385.051684][ T3882]  el0_svc+0x34/0xf8
[  385.052343][ T3882]  el0t_64_sync_handler+0x100/0x12c
[  385.053073][ T3882]  el0t_64_sync+0x19c/0x1a0
[  385.056047][ T3882] BUG: Bad page map in process syz.0.30  pte:6000004c96c8c3 pmd:8000000439b9003
[  385.059298][ T3882] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4c96c
[  385.064040][ T3882] memcg:f4f00000060ad000
[  385.067247][ T3882] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.073092][ T3882] raw: 01ffc0000004002c ffffc1ffc02ced48 ffffc1ffc02d5c08 0000000000000000
[  385.077176][ T3882] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  385.078290][ T3882] page dumped because: bad pte
[  385.079031][ T3882] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:1
[  385.081963][ T3882] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  385.083895][ T3882] CPU: 1 PID: 3882 Comm: syz.0.30 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.085478][ T3882] Hardware name: linux,dummy-virt (DT)
[  385.086286][ T3882] Call trace:
[  385.087009][ T3882]  dump_backtrace+0x94/0xec
[  385.088382][ T3882]  show_stack+0x18/0x24
[  385.089296][ T3882]  dump_stack_lvl+0x78/0x90
[  385.090681][ T3882]  dump_stack+0x18/0x24
[  385.092156][ T3882]  print_bad_pte+0x1c8/0x258
[  385.092932][ T3882]  unmap_page_range+0x904/0x1190
[  385.093760][ T3882]  unmap_single_vma.constprop.0+0x4c/0x84
[  385.094751][ T3882]  unmap_vmas+0x7c/0x170
[  385.095925][ T3882]  exit_mmap+0xc0/0x288
[  385.097733][ T3882]  __mmput+0x3c/0x170
[  385.099084][ T3882]  mmput+0x50/0x5c
[  385.100230][ T3882]  do_exit+0x270/0x98c
[  385.100931][ T3882]  do_group_exit+0x34/0x90
[  385.102926][ T3882]  pid_child_should_wake+0x0/0x5c
[  385.105330][ T3882]  invoke_syscall+0x48/0x118
[  385.107309][ T3882]  el0_svc_common.constprop.0+0x40/0xe0
[  385.108240][ T3882]  do_el0_svc+0x1c/0x28
[  385.109082][ T3882]  el0_svc+0x34/0xf8
[  385.110130][ T3882]  el0t_64_sync_handler+0x100/0x12c
[  385.111669][ T3882]  el0t_64_sync+0x19c/0x1a0
[  385.115189][ T3882] BUG: Bad page state in process syz.0.30  pfn:4b3b5
[  385.121023][ T3882] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b3b5
[  385.122298][ T3882] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.124129][ T3882] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  385.126624][ T3882] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  385.128204][ T3882] page dumped because: nonzero mapcount
[  385.129166][ T3882] Modules linked in:
[  385.130566][ T3882] CPU: 1 PID: 3882 Comm: syz.0.30 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.132017][ T3882] Hardware name: linux,dummy-virt (DT)
[  385.132951][ T3882] Call trace:
[  385.133649][ T3882]  dump_backtrace+0x94/0xec
[  385.134751][ T3882]  show_stack+0x18/0x24
[  385.135666][ T3882]  dump_stack_lvl+0x78/0x90
[  385.136809][ T3882]  dump_stack+0x18/0x24
[  385.137788][ T3882]  bad_page+0x84/0x11c
[  385.138753][ T3882]  free_page_is_bad_report+0x98/0xa4
[  385.139785][ T3882]  free_unref_folios+0x4c0/0x624
[  385.140936][ T3882]  folios_put_refs+0x108/0x284
[  385.141680][ T3882]  free_pages_and_swap_cache+0x14c/0x164
[  385.142629][ T3882]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  385.145176][ T3882]  tlb_flush_mmu+0x54/0xe4
[  385.146952][ T3882]  unmap_page_range+0xab0/0x1190
[  385.149006][ T3882]  unmap_single_vma.constprop.0+0x4c/0x84
[  385.152065][ T3882]  unmap_vmas+0x7c/0x170
[  385.153833][ T3882]  exit_mmap+0xc0/0x288
[  385.155788][ T3882]  __mmput+0x3c/0x170
[  385.157495][ T3882]  mmput+0x50/0x5c
[  385.159347][ T3882]  do_exit+0x270/0x98c
[  385.160413][ T3882]  do_group_exit+0x34/0x90
[  385.161257][ T3882]  pid_child_should_wake+0x0/0x5c
[  385.161974][ T3882]  invoke_syscall+0x48/0x118
[  385.162735][ T3882]  el0_svc_common.constprop.0+0x40/0xe0
[  385.163756][ T3882]  do_el0_svc+0x1c/0x28
[  385.164671][ T3882]  el0_svc+0x34/0xf8
[  385.165316][ T3882]  el0t_64_sync_handler+0x100/0x12c
[  385.169148][ T3882]  el0t_64_sync+0x19c/0x1a0
[  385.173105][ T3882] BUG: Bad page state in process syz.0.30  pfn:4c96c
[  385.175929][ T3882] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4c96c
[  385.180395][ T3882] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.186721][ T3882] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  385.191556][ T3882] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  385.195188][ T3882] page dumped because: nonzero mapcount
[  385.199505][ T3882] Modules linked in:
[  385.202062][ T3882] CPU: 1 PID: 3882 Comm: syz.0.30 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.205487][ T3882] Hardware name: linux,dummy-virt (DT)
[  385.208115][ T3882] Call trace:
[  385.209596][ T3882]  dump_backtrace+0x94/0xec
[  385.211586][ T3882]  show_stack+0x18/0x24
[  385.212640][ T3882]  dump_stack_lvl+0x78/0x90
[  385.214743][ T3882]  dump_stack+0x18/0x24
[  385.216680][ T3882]  bad_page+0x84/0x11c
[  385.217556][ T3882]  free_page_is_bad_report+0x98/0xa4
[  385.218469][ T3882]  free_unref_folios+0x4c0/0x624
[  385.219413][ T3882]  folios_put_refs+0x108/0x284
[  385.220588][ T3882]  free_pages_and_swap_cache+0x14c/0x164
[  385.221444][ T3882]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  385.222159][ T3882]  tlb_flush_mmu+0x54/0xe4
[  385.222829][ T3882]  unmap_page_range+0xab0/0x1190
[  385.223907][ T3882]  unmap_single_vma.constprop.0+0x4c/0x84
[  385.225051][ T3882]  unmap_vmas+0x7c/0x170
[  385.225969][ T3882]  exit_mmap+0xc0/0x288
[  385.226855][ T3882]  __mmput+0x3c/0x170
[  385.227862][ T3882]  mmput+0x50/0x5c
[  385.228634][ T3882]  do_exit+0x270/0x98c
[  385.229505][ T3882]  do_group_exit+0x34/0x90
[  385.230649][ T3882]  pid_child_should_wake+0x0/0x5c
[  385.231567][ T3882]  invoke_syscall+0x48/0x118
[  385.232275][ T3882]  el0_svc_common.constprop.0+0x40/0xe0
[  385.233223][ T3882]  do_el0_svc+0x1c/0x28
[  385.234080][ T3882]  el0_svc+0x34/0xf8
[  385.234856][ T3882]  el0t_64_sync_handler+0x100/0x12c
[  385.235784][ T3882]  el0t_64_sync+0x19c/0x1a0
[  385.438537][ T3884] BUG: Bad page cache in process syz.0.31  pfn:4b56d
[  385.442878][ T3884] page: refcount:4 mapcount:1 mapping:00000000db2c476b index:0x0 pfn:0x4b56d
[  385.446289][ T3884] memcg:f4f00000060ad000
[  385.447938][ T3884] aops:shmem_aops ino:409
[  385.449947][ T3884] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.451950][ T3884] raw: 01ffc0000004002d ffffc1ffc02cee48 ffffc1ffc0242b08 fdf00000070f14d0
[  385.454771][ T3884] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  385.455865][ T3884] page dumped because: still mapped when deleted
[  385.456967][ T3884] CPU: 1 PID: 3884 Comm: syz.0.31 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.458633][ T3884] Hardware name: linux,dummy-virt (DT)
[  385.459639][ T3884] Call trace:
[  385.460422][ T3884]  dump_backtrace+0x94/0xec
[  385.461280][ T3884]  show_stack+0x18/0x24
[  385.461946][ T3884]  dump_stack_lvl+0x78/0x90
[  385.462657][ T3884]  dump_stack+0x18/0x24
[  385.463414][ T3884]  filemap_unaccount_folio+0x118/0x278
[  385.464324][ T3884]  __filemap_remove_folio+0x3c/0x178
[  385.465183][ T3884]  filemap_remove_folio+0x48/0xa8
[  385.466004][ T3884]  truncate_inode_folio+0x30/0x4c
[  385.466877][ T3884]  shmem_undo_range+0x208/0x620
[  385.467754][ T3884]  shmem_evict_inode+0x130/0x2dc
[  385.468525][ T3884]  evict+0xb4/0x198
[  385.469266][ T3884]  iput+0x100/0x1b8
[  385.470455][ T3884]  dentry_unlink_inode+0xc0/0x188
[  385.471324][ T3884]  __dentry_kill+0x7c/0x1d4
[  385.472028][ T3884]  dput.part.0+0x30/0xbc
[  385.472707][ T3884]  dput+0x4c/0x50
[  385.473345][ T3884]  __fput+0x110/0x2d4
[  385.474119][ T3884]  ____fput+0x10/0x1c
[  385.474885][ T3884]  task_work_run+0x78/0xd0
[  385.475704][ T3884]  do_notify_resume+0x134/0x164
[  385.476429][ T3884]  el0_svc+0xc8/0xf8
[  385.477175][ T3884]  el0t_64_sync_handler+0x100/0x12c
[  385.478139][ T3884]  el0t_64_sync+0x19c/0x1a0
[  385.482152][ T3884] BUG: Bad page cache in process syz.0.31  pfn:490ac
[  385.483335][ T3884] page: refcount:4 mapcount:1 mapping:00000000db2c476b index:0x1 pfn:0x490ac
[  385.484399][ T3884] memcg:f4f00000060ad000
[  385.485064][ T3884] aops:shmem_aops ino:409
[  385.485784][ T3884] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.487587][ T3884] raw: 01ffc0000004002d ffffc1ffc02d5b48 ffffc1ffc02d9448 fdf00000070f14d0
[  385.488767][ T3884] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  385.489691][ T3884] page dumped because: still mapped when deleted
[  385.490662][ T3884] CPU: 1 PID: 3884 Comm: syz.0.31 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.492071][ T3884] Hardware name: linux,dummy-virt (DT)
[  385.492816][ T3884] Call trace:
[  385.493374][ T3884]  dump_backtrace+0x94/0xec
[  385.494257][ T3884]  show_stack+0x18/0x24
[  385.495055][ T3884]  dump_stack_lvl+0x78/0x90
[  385.496001][ T3884]  dump_stack+0x18/0x24
[  385.496976][ T3884]  filemap_unaccount_folio+0x118/0x278
[  385.497917][ T3884]  __filemap_remove_folio+0x3c/0x178
[  385.498783][ T3884]  filemap_remove_folio+0x48/0xa8
[  385.499800][ T3884]  truncate_inode_folio+0x30/0x4c
[  385.500804][ T3884]  shmem_undo_range+0x208/0x620
[  385.501539][ T3884]  shmem_evict_inode+0x130/0x2dc
[  385.502309][ T3884]  evict+0xb4/0x198
[  385.503092][ T3884]  iput+0x100/0x1b8
[  385.504087][ T3884]  dentry_unlink_inode+0xc0/0x188
[  385.504865][ T3884]  __dentry_kill+0x7c/0x1d4
[  385.505616][ T3884]  dput.part.0+0x30/0xbc
[  385.506420][ T3884]  dput+0x4c/0x50
[  385.507179][ T3884]  __fput+0x110/0x2d4
[  385.507983][ T3884]  ____fput+0x10/0x1c
[  385.508790][ T3884]  task_work_run+0x78/0xd0
[  385.509735][ T3884]  do_notify_resume+0x134/0x164
[  385.510970][ T3884]  el0_svc+0xc8/0xf8
[  385.511698][ T3884]  el0t_64_sync_handler+0x100/0x12c
[  385.512473][ T3884]  el0t_64_sync+0x19c/0x1a0
[  385.518876][ T3884] BUG: Bad page map in process syz.0.31  pte:6000004b56d8c3 pmd:8000000479d9003
[  385.522226][ T3884] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b56d
[  385.523349][ T3884] memcg:f4f00000060ad000
[  385.524264][ T3884] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.526717][ T3884] raw: 01ffc0000004002c ffffc1ffc01a0588 ffffc1ffc0242b08 0000000000000000
[  385.527962][ T3884] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  385.529095][ T3884] page dumped because: bad pte
[  385.530710][ T3884] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:0
[  385.532525][ T3884] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  385.533781][ T3884] CPU: 1 PID: 3884 Comm: syz.0.31 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.535370][ T3884] Hardware name: linux,dummy-virt (DT)
[  385.536267][ T3884] Call trace:
[  385.536986][ T3884]  dump_backtrace+0x94/0xec
[  385.538082][ T3884]  show_stack+0x18/0x24
[  385.538823][ T3884]  dump_stack_lvl+0x78/0x90
[  385.539611][ T3884]  dump_stack+0x18/0x24
[  385.540681][ T3884]  print_bad_pte+0x1c8/0x258
[  385.541778][ T3884]  unmap_page_range+0x904/0x1190
[  385.542595][ T3884]  unmap_single_vma.constprop.0+0x4c/0x84
[  385.543627][ T3884]  unmap_vmas+0x7c/0x170
[  385.544353][ T3884]  exit_mmap+0xc0/0x288
[  385.545035][ T3884]  __mmput+0x3c/0x170
[  385.545785][ T3884]  mmput+0x50/0x5c
[  385.546477][ T3884]  do_exit+0x270/0x98c
[  385.547335][ T3884]  do_group_exit+0x34/0x90
[  385.548143][ T3884]  pid_child_should_wake+0x0/0x5c
[  385.549004][ T3884]  invoke_syscall+0x48/0x118
[  385.549865][ T3884]  el0_svc_common.constprop.0+0x40/0xe0
[  385.550902][ T3884]  do_el0_svc+0x1c/0x28
[  385.551682][ T3884]  el0_svc+0x34/0xf8
[  385.552331][ T3884]  el0t_64_sync_handler+0x100/0x12c
[  385.553426][ T3884]  el0t_64_sync+0x19c/0x1a0
[  385.556791][ T3884] BUG: Bad page map in process syz.0.31  pte:600000490ac8c3 pmd:8000000479d9003
[  385.558130][ T3884] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x490ac
[  385.559361][ T3884] memcg:f4f00000060ad000
[  385.561140][ T3884] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.562650][ T3884] raw: 01ffc0000004002c ffffc1ffc02d5b48 ffffc1ffc02d9448 0000000000000000
[  385.563639][ T3884] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  385.564610][ T3884] page dumped because: bad pte
[  385.565308][ T3884] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:1
[  385.567015][ T3884] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  385.568471][ T3884] CPU: 1 PID: 3884 Comm: syz.0.31 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.570050][ T3884] Hardware name: linux,dummy-virt (DT)
[  385.570893][ T3884] Call trace:
[  385.571461][ T3884]  dump_backtrace+0x94/0xec
[  385.572173][ T3884]  show_stack+0x18/0x24
[  385.573029][ T3884]  dump_stack_lvl+0x78/0x90
[  385.573833][ T3884]  dump_stack+0x18/0x24
[  385.574637][ T3884]  print_bad_pte+0x1c8/0x258
[  385.575519][ T3884]  unmap_page_range+0x904/0x1190
[  385.576544][ T3884]  unmap_single_vma.constprop.0+0x4c/0x84
[  385.577647][ T3884]  unmap_vmas+0x7c/0x170
[  385.578475][ T3884]  exit_mmap+0xc0/0x288
[  385.579312][ T3884]  __mmput+0x3c/0x170
[  385.580405][ T3884]  mmput+0x50/0x5c
[  385.581130][ T3884]  do_exit+0x270/0x98c
[  385.581852][ T3884]  do_group_exit+0x34/0x90
[  385.582541][ T3884]  pid_child_should_wake+0x0/0x5c
[  385.583591][ T3884]  invoke_syscall+0x48/0x118
[  385.584404][ T3884]  el0_svc_common.constprop.0+0x40/0xe0
[  385.585352][ T3884]  do_el0_svc+0x1c/0x28
[  385.586117][ T3884]  el0_svc+0x34/0xf8
[  385.586933][ T3884]  el0t_64_sync_handler+0x100/0x12c
[  385.587938][ T3884]  el0t_64_sync+0x19c/0x1a0
[  385.591590][ T3884] BUG: Bad page state in process syz.0.31  pfn:4b56d
[  385.592620][ T3884] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b56d
[  385.593745][ T3884] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.595163][ T3884] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  385.596295][ T3884] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  385.597630][ T3884] page dumped because: nonzero mapcount
[  385.598357][ T3884] Modules linked in:
[  385.599110][ T3884] CPU: 1 PID: 3884 Comm: syz.0.31 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.601392][ T3884] Hardware name: linux,dummy-virt (DT)
[  385.602119][ T3884] Call trace:
[  385.602710][ T3884]  dump_backtrace+0x94/0xec
[  385.603499][ T3884]  show_stack+0x18/0x24
[  385.604342][ T3884]  dump_stack_lvl+0x78/0x90
[  385.605273][ T3884]  dump_stack+0x18/0x24
[  385.606041][ T3884]  bad_page+0x84/0x11c
[  385.606869][ T3884]  free_page_is_bad_report+0x98/0xa4
[  385.607784][ T3884]  free_unref_folios+0x4c0/0x624
[  385.608635][ T3884]  folios_put_refs+0x108/0x284
[  385.609596][ T3884]  free_pages_and_swap_cache+0x14c/0x164
[  385.610861][ T3884]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  385.611679][ T3884]  tlb_flush_mmu+0x54/0xe4
[  385.612433][ T3884]  unmap_page_range+0xab0/0x1190
[  385.613668][ T3884]  unmap_single_vma.constprop.0+0x4c/0x84
[  385.614756][ T3884]  unmap_vmas+0x7c/0x170
[  385.615564][ T3884]  exit_mmap+0xc0/0x288
[  385.616410][ T3884]  __mmput+0x3c/0x170
[  385.617161][ T3884]  mmput+0x50/0x5c
[  385.617991][ T3884]  do_exit+0x270/0x98c
[  385.618746][ T3884]  do_group_exit+0x34/0x90
[  385.619593][ T3884]  pid_child_should_wake+0x0/0x5c
[  385.620843][ T3884]  invoke_syscall+0x48/0x118
[  385.621598][ T3884]  el0_svc_common.constprop.0+0x40/0xe0
[  385.622696][ T3884]  do_el0_svc+0x1c/0x28
[  385.623548][ T3884]  el0_svc+0x34/0xf8
[  385.624401][ T3884]  el0t_64_sync_handler+0x100/0x12c
[  385.625427][ T3884]  el0t_64_sync+0x19c/0x1a0
[  385.628590][ T3884] BUG: Bad page state in process syz.0.31  pfn:490ac
[  385.630358][ T3884] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x490ac
[  385.631463][ T3884] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.632686][ T3884] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  385.633683][ T3884] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  385.634648][ T3884] page dumped because: nonzero mapcount
[  385.635479][ T3884] Modules linked in:
[  385.636253][ T3884] CPU: 1 PID: 3884 Comm: syz.0.31 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.637749][ T3884] Hardware name: linux,dummy-virt (DT)
[  385.638573][ T3884] Call trace:
[  385.639116][ T3884]  dump_backtrace+0x94/0xec
[  385.640395][ T3884]  show_stack+0x18/0x24
[  385.641266][ T3884]  dump_stack_lvl+0x78/0x90
[  385.642018][ T3884]  dump_stack+0x18/0x24
[  385.642937][ T3884]  bad_page+0x84/0x11c
[  385.644027][ T3884]  free_page_is_bad_report+0x98/0xa4
[  385.644915][ T3884]  free_unref_folios+0x4c0/0x624
[  385.645890][ T3884]  folios_put_refs+0x108/0x284
[  385.646831][ T3884]  free_pages_and_swap_cache+0x14c/0x164
[  385.647937][ T3884]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  385.648900][ T3884]  tlb_flush_mmu+0x54/0xe4
[  385.649819][ T3884]  unmap_page_range+0xab0/0x1190
[  385.650794][ T3884]  unmap_single_vma.constprop.0+0x4c/0x84
[  385.651767][ T3884]  unmap_vmas+0x7c/0x170
[  385.652573][ T3884]  exit_mmap+0xc0/0x288
[  385.653524][ T3884]  __mmput+0x3c/0x170
[  385.654393][ T3884]  mmput+0x50/0x5c
[  385.655242][ T3884]  do_exit+0x270/0x98c
[  385.656013][ T3884]  do_group_exit+0x34/0x90
[  385.656987][ T3884]  pid_child_should_wake+0x0/0x5c
[  385.657934][ T3884]  invoke_syscall+0x48/0x118
[  385.658755][ T3884]  el0_svc_common.constprop.0+0x40/0xe0
[  385.667615][ T3884]  do_el0_svc+0x1c/0x28
[  385.668458][ T3884]  el0_svc+0x34/0xf8
[  385.669250][ T3884]  el0t_64_sync_handler+0x100/0x12c
[  385.670875][ T3884]  el0t_64_sync+0x19c/0x1a0
[  385.865992][ T3886] BUG: Bad page cache in process syz.0.32  pfn:4b69a
[  385.867165][ T3886] page: refcount:4 mapcount:1 mapping:00000000db2c476b index:0x0 pfn:0x4b69a
[  385.868511][ T3886] memcg:f4f00000060ad000
[  385.869368][ T3886] aops:shmem_aops ino:40a
[  385.870639][ T3886] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.872161][ T3886] raw: 01ffc0000004002d ffffc1ffc02d5988 ffffc1ffc02cee48 fdf00000070f14d0
[  385.873565][ T3886] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  385.874727][ T3886] page dumped because: still mapped when deleted
[  385.875692][ T3886] CPU: 1 PID: 3886 Comm: syz.0.32 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.877368][ T3886] Hardware name: linux,dummy-virt (DT)
[  385.878272][ T3886] Call trace:
[  385.878898][ T3886]  dump_backtrace+0x94/0xec
[  385.880053][ T3886]  show_stack+0x18/0x24
[  385.881073][ T3886]  dump_stack_lvl+0x78/0x90
[  385.881799][ T3886]  dump_stack+0x18/0x24
[  385.882495][ T3886]  filemap_unaccount_folio+0x118/0x278
[  385.883422][ T3886]  __filemap_remove_folio+0x3c/0x178
[  385.884540][ T3886]  filemap_remove_folio+0x48/0xa8
[  385.885447][ T3886]  truncate_inode_folio+0x30/0x4c
[  385.886493][ T3886]  shmem_undo_range+0x208/0x620
[  385.887377][ T3886]  shmem_evict_inode+0x130/0x2dc
[  385.888306][ T3886]  evict+0xb4/0x198
[  385.889243][ T3886]  iput+0x100/0x1b8
[  385.890141][ T3886]  dentry_unlink_inode+0xc0/0x188
[  385.891001][ T3886]  __dentry_kill+0x7c/0x1d4
[  385.891725][ T3886]  dput.part.0+0x30/0xbc
[  385.892406][ T3886]  dput+0x4c/0x50
[  385.893043][ T3886]  __fput+0x110/0x2d4
[  385.893722][ T3886]  ____fput+0x10/0x1c
[  385.894435][ T3886]  task_work_run+0x78/0xd0
[  385.895260][ T3886]  do_notify_resume+0x134/0x164
[  385.896143][ T3886]  el0_svc+0xc8/0xf8
[  385.896946][ T3886]  el0t_64_sync_handler+0x100/0x12c
[  385.897838][ T3886]  el0t_64_sync+0x19c/0x1a0
[  385.903469][ T3886] BUG: Bad page cache in process syz.0.32  pfn:4b3b9
[  385.904478][ T3886] page: refcount:4 mapcount:1 mapping:00000000db2c476b index:0x1 pfn:0x4b3b9
[  385.905495][ T3886] memcg:f4f00000060ad000
[  385.906166][ T3886] aops:shmem_aops ino:40a
[  385.906959][ T3886] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.909821][ T3886] raw: 01ffc0000004002d ffffc1ffc02da688 ffffc1ffc02cbac8 fdf00000070f14d0
[  385.911525][ T3886] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  385.912420][ T3886] page dumped because: still mapped when deleted
[  385.913220][ T3886] CPU: 1 PID: 3886 Comm: syz.0.32 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.917357][ T3886] Hardware name: linux,dummy-virt (DT)
[  385.918075][ T3886] Call trace:
[  385.918754][ T3886]  dump_backtrace+0x94/0xec
[  385.919800][ T3886]  show_stack+0x18/0x24
[  385.920878][ T3886]  dump_stack_lvl+0x78/0x90
[  385.921669][ T3886]  dump_stack+0x18/0x24
[  385.922282][ T3886]  filemap_unaccount_folio+0x118/0x278
[  385.923092][ T3886]  __filemap_remove_folio+0x3c/0x178
[  385.923906][ T3886]  filemap_remove_folio+0x48/0xa8
[  385.924738][ T3886]  truncate_inode_folio+0x30/0x4c
[  385.926350][ T3886]  shmem_undo_range+0x208/0x620
[  385.928643][ T3886]  shmem_evict_inode+0x130/0x2dc
[  385.931147][ T3886]  evict+0xb4/0x198
[  385.933020][ T3886]  iput+0x100/0x1b8
[  385.933721][ T3886]  dentry_unlink_inode+0xc0/0x188
[  385.934488][ T3886]  __dentry_kill+0x7c/0x1d4
[  385.935309][ T3886]  dput.part.0+0x30/0xbc
[  385.936104][ T3886]  dput+0x4c/0x50
[  385.936868][ T3886]  __fput+0x110/0x2d4
[  385.937593][ T3886]  ____fput+0x10/0x1c
[  385.938371][ T3886]  task_work_run+0x78/0xd0
[  385.939187][ T3886]  do_notify_resume+0x134/0x164
[  385.941732][ T3886]  el0_svc+0xc8/0xf8
[  385.943918][ T3886]  el0t_64_sync_handler+0x100/0x12c
[  385.946219][ T3886]  el0t_64_sync+0x19c/0x1a0
[  385.955920][ T3887] BUG: Bad page map in process syz.0.32  pte:6000004b69a8c3 pmd:8000000439b9003
[  385.958955][ T3887] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b69a
[  385.964219][ T3887] memcg:f4f00000060ad000
[  385.965495][ T3887] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  385.969139][ T3887] raw: 01ffc0000004002c ffffc1ffc02dc708 ffffc1ffc02cee48 0000000000000000
[  385.973253][ T3887] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  385.976506][ T3887] page dumped because: bad pte
[  385.978061][ T3887] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:0
[  385.982566][ T3887] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  385.985534][ T3887] CPU: 1 PID: 3887 Comm: syz.0.32 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  385.989198][ T3887] Hardware name: linux,dummy-virt (DT)
[  385.991689][ T3887] Call trace:
[  385.993098][ T3887]  dump_backtrace+0x94/0xec
[  385.994740][ T3887]  show_stack+0x18/0x24
[  385.996241][ T3887]  dump_stack_lvl+0x78/0x90
[  385.997796][ T3887]  dump_stack+0x18/0x24
[  385.999354][ T3887]  print_bad_pte+0x1c8/0x258
[  386.001549][ T3887]  unmap_page_range+0x904/0x1190
[  386.002615][ T3887]  unmap_single_vma.constprop.0+0x4c/0x84
[  386.004580][ T3887]  unmap_vmas+0x7c/0x170
[  386.006036][ T3887]  exit_mmap+0xc0/0x288
[  386.007570][ T3887]  __mmput+0x3c/0x170
[  386.008995][ T3887]  mmput+0x50/0x5c
[  386.010795][ T3887]  do_exit+0x270/0x98c
[  386.012332][ T3887]  do_group_exit+0x34/0x90
[  386.014058][ T3887]  copy_siginfo_to_user+0x0/0xec
[  386.015795][ T3887]  do_signal+0x94/0x1450
[  386.017316][ T3887]  do_notify_resume+0xd8/0x164
[  386.019094][ T3887]  el0_svc+0xc8/0xf8
[  386.021030][ T3887]  el0t_64_sync_handler+0x100/0x12c
[  386.023110][ T3887]  el0t_64_sync+0x19c/0x1a0
[  386.027741][ T3887] BUG: Bad page map in process syz.0.32  pte:6000004b3b98c3 pmd:8000000439b9003
[  386.033859][ T3887] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b3b9
[  386.036645][ T3887] memcg:f4f00000060ad000
[  386.038387][ T3887] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.044015][ T3887] raw: 01ffc0000004002c ffffc1ffc02da688 ffffc1ffc02cbac8 0000000000000000
[  386.047572][ T3887] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  386.052172][ T3887] page dumped because: bad pte
[  386.053807][ T3887] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:fdf00000033ece48 index:1
[  386.057868][ T3887] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  386.063104][ T3887] CPU: 0 PID: 3887 Comm: syz.0.32 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.067993][ T3887] Hardware name: linux,dummy-virt (DT)
[  386.070585][ T3887] Call trace:
[  386.072539][ T3887]  dump_backtrace+0x94/0xec
[  386.074655][ T3887]  show_stack+0x18/0x24
[  386.076433][ T3887]  dump_stack_lvl+0x78/0x90
[  386.078504][ T3887]  dump_stack+0x18/0x24
[  386.080635][ T3887]  print_bad_pte+0x1c8/0x258
[  386.083166][ T3887]  unmap_page_range+0x904/0x1190
[  386.085570][ T3887]  unmap_single_vma.constprop.0+0x4c/0x84
[  386.087968][ T3887]  unmap_vmas+0x7c/0x170
[  386.089788][ T3887]  exit_mmap+0xc0/0x288
[  386.091860][ T3887]  __mmput+0x3c/0x170
[  386.093641][ T3887]  mmput+0x50/0x5c
[  386.095337][ T3887]  do_exit+0x270/0x98c
[  386.097261][ T3887]  do_group_exit+0x34/0x90
[  386.098695][ T3887]  copy_siginfo_to_user+0x0/0xec
[  386.100823][ T3887]  do_signal+0x94/0x1450
[  386.101864][ T3887]  do_notify_resume+0xd8/0x164
[  386.102694][ T3887]  el0_svc+0xc8/0xf8
[  386.103456][ T3887]  el0t_64_sync_handler+0x100/0x12c
[  386.104311][ T3887]  el0t_64_sync+0x19c/0x1a0
[  386.114841][ T3887] BUG: Bad page state in process syz.0.32  pfn:4b69a
[  386.116115][ T3887] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b69a
[  386.117560][ T3887] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.123580][ T3887] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  386.127346][ T3887] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  386.130681][ T3887] page dumped because: nonzero mapcount
[  386.131501][ T3887] Modules linked in:
[  386.132297][ T3887] CPU: 0 PID: 3887 Comm: syz.0.32 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.133791][ T3887] Hardware name: linux,dummy-virt (DT)
[  386.134639][ T3887] Call trace:
[  386.135278][ T3887]  dump_backtrace+0x94/0xec
[  386.136096][ T3887]  show_stack+0x18/0x24
[  386.136764][ T3887]  dump_stack_lvl+0x78/0x90
[  386.137594][ T3887]  dump_stack+0x18/0x24
[  386.138304][ T3887]  bad_page+0x84/0x11c
[  386.139038][ T3887]  free_page_is_bad_report+0x98/0xa4
[  386.140005][ T3887]  free_unref_folios+0x4c0/0x624
[  386.140992][ T3887]  folios_put_refs+0x108/0x284
[  386.142098][ T3887]  free_pages_and_swap_cache+0x14c/0x164
[  386.143285][ T3887]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  386.144515][ T3887]  tlb_flush_mmu+0x54/0xe4
[  386.145354][ T3887]  unmap_page_range+0xab0/0x1190
[  386.146327][ T3887]  unmap_single_vma.constprop.0+0x4c/0x84
[  386.147124][ T3887]  unmap_vmas+0x7c/0x170
[  386.147964][ T3887]  exit_mmap+0xc0/0x288
[  386.148758][ T3887]  __mmput+0x3c/0x170
[  386.149548][ T3887]  mmput+0x50/0x5c
[  386.150443][ T3887]  do_exit+0x270/0x98c
[  386.151370][ T3887]  do_group_exit+0x34/0x90
[  386.152220][ T3887]  copy_siginfo_to_user+0x0/0xec
[  386.153115][ T3887]  do_signal+0x94/0x1450
[  386.153925][ T3887]  do_notify_resume+0xd8/0x164
[  386.154820][ T3887]  el0_svc+0xc8/0xf8
[  386.155649][ T3887]  el0t_64_sync_handler+0x100/0x12c
[  386.156502][ T3887]  el0t_64_sync+0x19c/0x1a0
[  386.159285][ T3887] BUG: Bad page state in process syz.0.32  pfn:4b3b9
[  386.161108][ T3887] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b3b9
[  386.163367][ T3887] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.166702][ T3887] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  386.171059][ T3887] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  386.173955][ T3887] page dumped because: nonzero mapcount
[  386.175638][ T3887] Modules linked in:
[  386.176642][ T3887] CPU: 0 PID: 3887 Comm: syz.0.32 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.180990][ T3887] Hardware name: linux,dummy-virt (DT)
[  386.182948][ T3887] Call trace:
[  386.184301][ T3887]  dump_backtrace+0x94/0xec
[  386.186549][ T3887]  show_stack+0x18/0x24
[  386.188389][ T3887]  dump_stack_lvl+0x78/0x90
[  386.190650][ T3887]  dump_stack+0x18/0x24
[  386.192717][ T3887]  bad_page+0x84/0x11c
[  386.194644][ T3887]  free_page_is_bad_report+0x98/0xa4
[  386.196635][ T3887]  free_unref_folios+0x4c0/0x624
[  386.197448][ T3887]  folios_put_refs+0x108/0x284
[  386.198247][ T3887]  free_pages_and_swap_cache+0x14c/0x164
[  386.199224][ T3887]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  386.202045][ T3887]  tlb_flush_mmu+0x54/0xe4
[  386.204020][ T3887]  unmap_page_range+0xab0/0x1190
[  386.205869][ T3887]  unmap_single_vma.constprop.0+0x4c/0x84
[  386.206956][ T3887]  unmap_vmas+0x7c/0x170
[  386.207695][ T3887]  exit_mmap+0xc0/0x288
[  386.208477][ T3887]  __mmput+0x3c/0x170
[  386.209395][ T3887]  mmput+0x50/0x5c
[  386.210459][ T3887]  do_exit+0x270/0x98c
[  386.211500][ T3887]  do_group_exit+0x34/0x90
[  386.212317][ T3887]  copy_siginfo_to_user+0x0/0xec
[  386.213233][ T3887]  do_signal+0x94/0x1450
[  386.214200][ T3887]  do_notify_resume+0xd8/0x164
[  386.215034][ T3887]  el0_svc+0xc8/0xf8
[  386.215841][ T3887]  el0t_64_sync_handler+0x100/0x12c
[  386.217984][ T3887]  el0t_64_sync+0x19c/0x1a0
[  386.426719][ T3888] BUG: Bad page cache in process syz.0.33  pfn:4b681
[  386.427974][ T3888] page: refcount:4 mapcount:1 mapping:00000000007eb9af index:0x0 pfn:0x4b681
[  386.429283][ T3888] memcg:f4f00000060ad000
[  386.430269][ T3888] aops:shmem_aops ino:40b
[  386.431241][ T3888] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.432656][ T3888] raw: 01ffc0000004002d ffffc1ffc02d1bc8 ffffc1ffc02f32c8 f7f00000070f3d70
[  386.433683][ T3888] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  386.434719][ T3888] page dumped because: still mapped when deleted
[  386.435634][ T3888] CPU: 1 PID: 3888 Comm: syz.0.33 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.437414][ T3888] Hardware name: linux,dummy-virt (DT)
[  386.438248][ T3888] Call trace:
[  386.438894][ T3888]  dump_backtrace+0x94/0xec
[  386.440192][ T3888]  show_stack+0x18/0x24
[  386.441011][ T3888]  dump_stack_lvl+0x78/0x90
[  386.441721][ T3888]  dump_stack+0x18/0x24
[  386.442402][ T3888]  filemap_unaccount_folio+0x118/0x278
[  386.443239][ T3888]  __filemap_remove_folio+0x3c/0x178
[  386.444144][ T3888]  filemap_remove_folio+0x48/0xa8
[  386.444960][ T3888]  truncate_inode_folio+0x30/0x4c
[  386.445815][ T3888]  shmem_undo_range+0x208/0x620
[  386.446664][ T3888]  shmem_evict_inode+0x130/0x2dc
[  386.447521][ T3888]  evict+0xb4/0x198
[  386.448332][ T3888]  iput+0x100/0x1b8
[  386.449145][ T3888]  dentry_unlink_inode+0xc0/0x188
[  386.450159][ T3888]  __dentry_kill+0x7c/0x1d4
[  386.451038][ T3888]  dput.part.0+0x30/0xbc
[  386.451730][ T3888]  dput+0x4c/0x50
[  386.452350][ T3888]  __fput+0x110/0x2d4
[  386.453017][ T3888]  ____fput+0x10/0x1c
[  386.453900][ T3888]  task_work_run+0x78/0xd0
[  386.454893][ T3888]  do_notify_resume+0x134/0x164
[  386.455833][ T3888]  el0_svc+0xc8/0xf8
[  386.456665][ T3888]  el0t_64_sync_handler+0x100/0x12c
[  386.457558][ T3888]  el0t_64_sync+0x19c/0x1a0
[  386.484177][ T3888] BUG: Bad page cache in process syz.0.33  pfn:4bccb
[  386.485186][ T3888] page: refcount:4 mapcount:1 mapping:00000000007eb9af index:0x1 pfn:0x4bccb
[  386.486231][ T3888] memcg:f4f00000060ad000
[  386.487113][ T3888] aops:shmem_aops ino:40b
[  386.487905][ T3888] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.489501][ T3888] raw: 01ffc0000004002d ffffc1ffc02da048 ffffc1ffc039cbc8 f7f00000070f3d70
[  386.490989][ T3888] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  386.492212][ T3888] page dumped because: still mapped when deleted
[  386.493302][ T3888] CPU: 1 PID: 3888 Comm: syz.0.33 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.494837][ T3888] Hardware name: linux,dummy-virt (DT)
[  386.495722][ T3888] Call trace:
[  386.496370][ T3888]  dump_backtrace+0x94/0xec
[  386.497265][ T3888]  show_stack+0x18/0x24
[  386.498074][ T3888]  dump_stack_lvl+0x78/0x90
[  386.499140][ T3888]  dump_stack+0x18/0x24
[  386.500258][ T3888]  filemap_unaccount_folio+0x118/0x278
[  386.501251][ T3888]  __filemap_remove_folio+0x3c/0x178
[  386.502024][ T3888]  filemap_remove_folio+0x48/0xa8
[  386.502771][ T3888]  truncate_inode_folio+0x30/0x4c
[  386.503578][ T3888]  shmem_undo_range+0x208/0x620
[  386.504345][ T3888]  shmem_evict_inode+0x130/0x2dc
[  386.505217][ T3888]  evict+0xb4/0x198
[  386.505964][ T3888]  iput+0x100/0x1b8
[  386.506712][ T3888]  dentry_unlink_inode+0xc0/0x188
[  386.507606][ T3888]  __dentry_kill+0x7c/0x1d4
[  386.508410][ T3888]  dput.part.0+0x30/0xbc
[  386.509195][ T3888]  dput+0x4c/0x50
[  386.509838][ T3888]  __fput+0x110/0x2d4
[  386.510630][ T3888]  ____fput+0x10/0x1c
[  386.511537][ T3888]  task_work_run+0x78/0xd0
[  386.512449][ T3888]  do_notify_resume+0x134/0x164
[  386.513312][ T3888]  el0_svc+0xc8/0xf8
[  386.514156][ T3888]  el0t_64_sync_handler+0x100/0x12c
[  386.515011][ T3888]  el0t_64_sync+0x19c/0x1a0
[  386.520737][ T3889] BUG: Bad page map in process syz.0.33  pte:6000004b6818c3 pmd:800000043b92003
[  386.521797][ T3889] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b681
[  386.522742][ T3889] memcg:f4f00000060ad000
[  386.523463][ T3889] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.524908][ T3889] raw: 01ffc0000004002c ffffc1ffc01dbd08 ffffc1ffc02f32c8 0000000000000000
[  386.526021][ T3889] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  386.527136][ T3889] page dumped because: bad pte
[  386.527886][ T3889] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f6f00000033ed368 index:0
[  386.528984][ T3889] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  386.531421][ T3889] CPU: 1 PID: 3889 Comm: syz.0.33 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.532791][ T3889] Hardware name: linux,dummy-virt (DT)
[  386.533862][ T3889] Call trace:
[  386.534623][ T3889]  dump_backtrace+0x94/0xec
[  386.535463][ T3889]  show_stack+0x18/0x24
[  386.536189][ T3889]  dump_stack_lvl+0x78/0x90
[  386.537042][ T3889]  dump_stack+0x18/0x24
[  386.537817][ T3889]  print_bad_pte+0x1c8/0x258
[  386.538606][ T3889]  unmap_page_range+0x904/0x1190
[  386.539428][ T3889]  unmap_single_vma.constprop.0+0x4c/0x84
[  386.540384][ T3889]  unmap_vmas+0x7c/0x170
[  386.541316][ T3889]  exit_mmap+0xc0/0x288
[  386.541963][ T3889]  __mmput+0x3c/0x170
[  386.542598][ T3889]  mmput+0x50/0x5c
[  386.543246][ T3889]  do_exit+0x270/0x98c
[  386.544015][ T3889]  do_group_exit+0x34/0x90
[  386.544874][ T3889]  copy_siginfo_to_user+0x0/0xec
[  386.545734][ T3889]  do_signal+0x94/0x1450
[  386.546535][ T3889]  do_notify_resume+0xd8/0x164
[  386.547428][ T3889]  el0_svc+0xc8/0xf8
[  386.548198][ T3889]  el0t_64_sync_handler+0x100/0x12c
[  386.549174][ T3889]  el0t_64_sync+0x19c/0x1a0
[  386.575255][ T3889] BUG: Bad page map in process syz.0.33  pte:6000004bccb8c3 pmd:800000043b92003
[  386.576484][ T3889] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4bccb
[  386.577627][ T3889] memcg:f4f00000060ad000
[  386.578285][ T3889] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.581719][ T3889] raw: 01ffc0000004002c ffffc1ffc02da048 ffffc1ffc039cbc8 0000000000000000
[  386.582753][ T3889] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  386.583821][ T3889] page dumped because: bad pte
[  386.584529][ T3889] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f6f00000033ed368 index:1
[  386.585853][ T3889] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  386.587515][ T3889] CPU: 1 PID: 3889 Comm: syz.0.33 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.589083][ T3889] Hardware name: linux,dummy-virt (DT)
[  386.589995][ T3889] Call trace:
[  386.590699][ T3889]  dump_backtrace+0x94/0xec
[  386.591634][ T3889]  show_stack+0x18/0x24
[  386.592344][ T3889]  dump_stack_lvl+0x78/0x90
[  386.593077][ T3889]  dump_stack+0x18/0x24
[  386.593877][ T3889]  print_bad_pte+0x1c8/0x258
[  386.594733][ T3889]  unmap_page_range+0x904/0x1190
[  386.595656][ T3889]  unmap_single_vma.constprop.0+0x4c/0x84
[  386.596593][ T3889]  unmap_vmas+0x7c/0x170
[  386.597447][ T3889]  exit_mmap+0xc0/0x288
[  386.598359][ T3889]  __mmput+0x3c/0x170
[  386.599262][ T3889]  mmput+0x50/0x5c
[  386.600390][ T3889]  do_exit+0x270/0x98c
[  386.601365][ T3889]  do_group_exit+0x34/0x90
[  386.602052][ T3889]  copy_siginfo_to_user+0x0/0xec
[  386.602835][ T3889]  do_signal+0x94/0x1450
[  386.603650][ T3889]  do_notify_resume+0xd8/0x164
[  386.604463][ T3889]  el0_svc+0xc8/0xf8
[  386.605229][ T3889]  el0t_64_sync_handler+0x100/0x12c
[  386.606092][ T3889]  el0t_64_sync+0x19c/0x1a0
[  386.608010][ T3889] BUG: Bad page state in process syz.0.33  pfn:4b681
[  386.608952][ T3889] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b681
[  386.611071][ T3889] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.612416][ T3889] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  386.613434][ T3889] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  386.614390][ T3889] page dumped because: nonzero mapcount
[  386.615142][ T3889] Modules linked in:
[  386.615874][ T3889] CPU: 1 PID: 3889 Comm: syz.0.33 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.617320][ T3889] Hardware name: linux,dummy-virt (DT)
[  386.618346][ T3889] Call trace:
[  386.619099][ T3889]  dump_backtrace+0x94/0xec
[  386.620235][ T3889]  show_stack+0x18/0x24
[  386.621119][ T3889]  dump_stack_lvl+0x78/0x90
[  386.621803][ T3889]  dump_stack+0x18/0x24
[  386.622477][ T3889]  bad_page+0x84/0x11c
[  386.623152][ T3889]  free_page_is_bad_report+0x98/0xa4
[  386.624053][ T3889]  free_unref_folios+0x4c0/0x624
[  386.624822][ T3889]  folios_put_refs+0x108/0x284
[  386.625659][ T3889]  free_pages_and_swap_cache+0x14c/0x164
[  386.626698][ T3889]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  386.627716][ T3889]  tlb_flush_mmu+0x54/0xe4
[  386.628571][ T3889]  unmap_page_range+0xab0/0x1190
[  386.629552][ T3889]  unmap_single_vma.constprop.0+0x4c/0x84
[  386.630741][ T3889]  unmap_vmas+0x7c/0x170
[  386.631488][ T3889]  exit_mmap+0xc0/0x288
[  386.632163][ T3889]  __mmput+0x3c/0x170
[  386.633164][ T3889]  mmput+0x50/0x5c
[  386.634138][ T3889]  do_exit+0x270/0x98c
[  386.635030][ T3889]  do_group_exit+0x34/0x90
[  386.635998][ T3889]  copy_siginfo_to_user+0x0/0xec
[  386.636953][ T3889]  do_signal+0x94/0x1450
[  386.637885][ T3889]  do_notify_resume+0xd8/0x164
[  386.638745][ T3889]  el0_svc+0xc8/0xf8
[  386.639964][ T3889]  el0t_64_sync_handler+0x100/0x12c
[  386.640965][ T3889]  el0t_64_sync+0x19c/0x1a0
[  386.643034][ T3889] BUG: Bad page state in process syz.0.33  pfn:4bccb
[  386.644084][ T3889] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4bccb
[  386.645227][ T3889] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.646734][ T3889] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  386.647929][ T3889] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  386.648800][ T3889] page dumped because: nonzero mapcount
[  386.649427][ T3889] Modules linked in:
[  386.650848][ T3889] CPU: 1 PID: 3889 Comm: syz.0.33 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.652473][ T3889] Hardware name: linux,dummy-virt (DT)
[  386.653274][ T3889] Call trace:
[  386.653944][ T3889]  dump_backtrace+0x94/0xec
[  386.654709][ T3889]  show_stack+0x18/0x24
[  386.655528][ T3889]  dump_stack_lvl+0x78/0x90
[  386.656284][ T3889]  dump_stack+0x18/0x24
[  386.657199][ T3889]  bad_page+0x84/0x11c
[  386.657964][ T3889]  free_page_is_bad_report+0x98/0xa4
[  386.658803][ T3889]  free_unref_folios+0x4c0/0x624
[  386.659555][ T3889]  folios_put_refs+0x108/0x284
[  386.660554][ T3889]  free_pages_and_swap_cache+0x14c/0x164
[  386.661488][ T3889]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  386.662308][ T3889]  tlb_flush_mmu+0x54/0xe4
[  386.663013][ T3889]  unmap_page_range+0xab0/0x1190
[  386.663846][ T3889]  unmap_single_vma.constprop.0+0x4c/0x84
[  386.664975][ T3889]  unmap_vmas+0x7c/0x170
[  386.665806][ T3889]  exit_mmap+0xc0/0x288
[  386.666555][ T3889]  __mmput+0x3c/0x170
[  386.667335][ T3889]  mmput+0x50/0x5c
[  386.668311][ T3889]  do_exit+0x270/0x98c
[  386.669064][ T3889]  do_group_exit+0x34/0x90
[  386.669986][ T3889]  copy_siginfo_to_user+0x0/0xec
[  386.670914][ T3889]  do_signal+0x94/0x1450
[  386.671628][ T3889]  do_notify_resume+0xd8/0x164
[  386.672275][ T3889]  el0_svc+0xc8/0xf8
[  386.672907][ T3889]  el0t_64_sync_handler+0x100/0x12c
[  386.673673][ T3889]  el0t_64_sync+0x19c/0x1a0
[  386.863478][ T3890] BUG: Bad page cache in process syz.0.34  pfn:4b673
[  386.864562][ T3890] page: refcount:4 mapcount:1 mapping:00000000e748ea1d index:0x0 pfn:0x4b673
[  386.865672][ T3890] memcg:f4f00000060ad000
[  386.866335][ T3890] aops:shmem_aops ino:40c
[  386.867145][ T3890] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.868525][ T3890] raw: 01ffc0000004002d ffffc1ffc02d5d08 ffffc1ffc02d1bc8 f8f00000070f0530
[  386.869504][ T3890] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  386.871169][ T3890] page dumped because: still mapped when deleted
[  386.872085][ T3890] CPU: 1 PID: 3890 Comm: syz.0.34 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.873584][ T3890] Hardware name: linux,dummy-virt (DT)
[  386.874562][ T3890] Call trace:
[  386.875173][ T3890]  dump_backtrace+0x94/0xec
[  386.876058][ T3890]  show_stack+0x18/0x24
[  386.877018][ T3890]  dump_stack_lvl+0x78/0x90
[  386.877796][ T3890]  dump_stack+0x18/0x24
[  386.878572][ T3890]  filemap_unaccount_folio+0x118/0x278
[  386.879358][ T3890]  __filemap_remove_folio+0x3c/0x178
[  386.880496][ T3890]  filemap_remove_folio+0x48/0xa8
[  386.881313][ T3890]  truncate_inode_folio+0x30/0x4c
[  386.882158][ T3890]  shmem_undo_range+0x208/0x620
[  386.883038][ T3890]  shmem_evict_inode+0x130/0x2dc
[  386.883897][ T3890]  evict+0xb4/0x198
[  386.884653][ T3890]  iput+0x100/0x1b8
[  386.885370][ T3890]  dentry_unlink_inode+0xc0/0x188
[  386.886214][ T3890]  __dentry_kill+0x7c/0x1d4
[  386.887023][ T3890]  dput.part.0+0x30/0xbc
[  386.887971][ T3890]  dput+0x4c/0x50
[  386.888735][ T3890]  __fput+0x110/0x2d4
[  386.889478][ T3890]  ____fput+0x10/0x1c
[  386.890664][ T3890]  task_work_run+0x78/0xd0
[  386.891569][ T3890]  do_notify_resume+0x134/0x164
[  386.892449][ T3890]  el0_svc+0xc8/0xf8
[  386.893274][ T3890]  el0t_64_sync_handler+0x100/0x12c
[  386.894179][ T3890]  el0t_64_sync+0x19c/0x1a0
[  386.899488][ T3890] BUG: Bad page cache in process syz.0.34  pfn:4b46f
[  386.900769][ T3890] page: refcount:4 mapcount:1 mapping:00000000e748ea1d index:0x1 pfn:0x4b46f
[  386.902075][ T3890] memcg:f4f00000060ad000
[  386.902806][ T3890] aops:shmem_aops ino:40c
[  386.903638][ T3890] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.905440][ T3890] raw: 01ffc0000004002d ffffc1ffc02d9cc8 ffffc1ffc02d9e08 f8f00000070f0530
[  386.906625][ T3890] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  386.907799][ T3890] page dumped because: still mapped when deleted
[  386.908653][ T3890] CPU: 1 PID: 3890 Comm: syz.0.34 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.910766][ T3890] Hardware name: linux,dummy-virt (DT)
[  386.911543][ T3890] Call trace:
[  386.912136][ T3890]  dump_backtrace+0x94/0xec
[  386.912962][ T3890]  show_stack+0x18/0x24
[  386.913758][ T3890]  dump_stack_lvl+0x78/0x90
[  386.914615][ T3890]  dump_stack+0x18/0x24
[  386.915387][ T3890]  filemap_unaccount_folio+0x118/0x278
[  386.916332][ T3890]  __filemap_remove_folio+0x3c/0x178
[  386.917281][ T3890]  filemap_remove_folio+0x48/0xa8
[  386.918169][ T3890]  truncate_inode_folio+0x30/0x4c
[  386.919110][ T3890]  shmem_undo_range+0x208/0x620
[  386.920390][ T3890]  shmem_evict_inode+0x130/0x2dc
[  386.921329][ T3890]  evict+0xb4/0x198
[  386.922109][ T3890]  iput+0x100/0x1b8
[  386.922953][ T3890]  dentry_unlink_inode+0xc0/0x188
[  386.924178][ T3890]  __dentry_kill+0x7c/0x1d4
[  386.925104][ T3890]  dput.part.0+0x30/0xbc
[  386.926104][ T3890]  dput+0x4c/0x50
[  386.926895][ T3890]  __fput+0x110/0x2d4
[  386.927670][ T3890]  ____fput+0x10/0x1c
[  386.928622][ T3890]  task_work_run+0x78/0xd0
[  386.929360][ T3890]  do_notify_resume+0x134/0x164
[  386.930567][ T3890]  el0_svc+0xc8/0xf8
[  386.931366][ T3890]  el0t_64_sync_handler+0x100/0x12c
[  386.932315][ T3890]  el0t_64_sync+0x19c/0x1a0
[  386.944194][ T3890] BUG: Bad page map in process syz.0.34  pte:6000004b6738c3 pmd:80000004394c003
[  386.945497][ T3890] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b673
[  386.946677][ T3890] memcg:f4f00000060ad000
[  386.947510][ T3890] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  386.949155][ T3890] raw: 01ffc0000004002c ffffc1ffc020bc48 ffffc1ffc02d1bc8 0000000000000000
[  386.951161][ T3890] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  386.952171][ T3890] page dumped because: bad pte
[  386.952802][ T3890] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f6f00000033ed368 index:0
[  386.956074][ T3890] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  386.961285][ T3890] CPU: 1 PID: 3890 Comm: syz.0.34 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  386.962645][ T3890] Hardware name: linux,dummy-virt (DT)
[  386.963444][ T3890] Call trace:
[  386.964042][ T3890]  dump_backtrace+0x94/0xec
[  386.964823][ T3890]  show_stack+0x18/0x24
[  386.965551][ T3890]  dump_stack_lvl+0x78/0x90
[  386.966364][ T3890]  dump_stack+0x18/0x24
[  386.967307][ T3890]  print_bad_pte+0x1c8/0x258
[  386.968136][ T3890]  unmap_page_range+0x904/0x1190
[  386.968960][ T3890]  unmap_single_vma.constprop.0+0x4c/0x84
[  386.970187][ T3890]  unmap_vmas+0x7c/0x170
[  386.971053][ T3890]  exit_mmap+0xc0/0x288
[  386.971817][ T3890]  __mmput+0x3c/0x170
[  386.972653][ T3890]  mmput+0x50/0x5c
[  386.973525][ T3890]  do_exit+0x270/0x98c
[  386.974363][ T3890]  do_group_exit+0x34/0x90
[  386.975171][ T3890]  pid_child_should_wake+0x0/0x5c
[  386.976074][ T3890]  invoke_syscall+0x48/0x118
[  386.976944][ T3890]  el0_svc_common.constprop.0+0x40/0xe0
[  386.977835][ T3890]  do_el0_svc+0x1c/0x28
[  386.978587][ T3890]  el0_svc+0x34/0xf8
[  386.979258][ T3890]  el0t_64_sync_handler+0x100/0x12c
[  386.980395][ T3890]  el0t_64_sync+0x19c/0x1a0
[  386.995123][ T3890] BUG: Bad page map in process syz.0.34  pte:6000004b46f8c3 pmd:80000004394c003
[  386.996522][ T3890] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b46f
[  386.997616][ T3890] memcg:f4f00000060ad000
[  386.998268][ T3890] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.000548][ T3890] raw: 01ffc0000004002c ffffc1ffc02d9cc8 ffffc1ffc02d9e08 0000000000000000
[  387.001582][ T3890] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  387.002356][ T3890] page dumped because: bad pte
[  387.003058][ T3890] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f6f00000033ed368 index:1
[  387.006375][ T3890] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  387.007720][ T3890] CPU: 1 PID: 3890 Comm: syz.0.34 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.009274][ T3890] Hardware name: linux,dummy-virt (DT)
[  387.010314][ T3890] Call trace:
[  387.010929][ T3890]  dump_backtrace+0x94/0xec
[  387.011785][ T3890]  show_stack+0x18/0x24
[  387.012406][ T3890]  dump_stack_lvl+0x78/0x90
[  387.013114][ T3890]  dump_stack+0x18/0x24
[  387.013739][ T3890]  print_bad_pte+0x1c8/0x258
[  387.014560][ T3890]  unmap_page_range+0x904/0x1190
[  387.015302][ T3890]  unmap_single_vma.constprop.0+0x4c/0x84
[  387.016064][ T3890]  unmap_vmas+0x7c/0x170
[  387.016790][ T3890]  exit_mmap+0xc0/0x288
[  387.017557][ T3890]  __mmput+0x3c/0x170
[  387.018263][ T3890]  mmput+0x50/0x5c
[  387.018949][ T3890]  do_exit+0x270/0x98c
[  387.020024][ T3890]  do_group_exit+0x34/0x90
[  387.021081][ T3890]  pid_child_should_wake+0x0/0x5c
[  387.021867][ T3890]  invoke_syscall+0x48/0x118
[  387.022747][ T3890]  el0_svc_common.constprop.0+0x40/0xe0
[  387.023614][ T3890]  do_el0_svc+0x1c/0x28
[  387.024523][ T3890]  el0_svc+0x34/0xf8
[  387.025285][ T3890]  el0t_64_sync_handler+0x100/0x12c
[  387.026238][ T3890]  el0t_64_sync+0x19c/0x1a0
[  387.029307][ T3890] BUG: Bad page state in process syz.0.34  pfn:4b673
[  387.031743][ T3890] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b673
[  387.032877][ T3890] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.034347][ T3890] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  387.035466][ T3890] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  387.036389][ T3890] page dumped because: nonzero mapcount
[  387.037207][ T3890] Modules linked in:
[  387.037974][ T3890] CPU: 1 PID: 3890 Comm: syz.0.34 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.039647][ T3890] Hardware name: linux,dummy-virt (DT)
[  387.040593][ T3890] Call trace:
[  387.041229][ T3890]  dump_backtrace+0x94/0xec
[  387.042115][ T3890]  show_stack+0x18/0x24
[  387.043002][ T3890]  dump_stack_lvl+0x78/0x90
[  387.043864][ T3890]  dump_stack+0x18/0x24
[  387.044557][ T3890]  bad_page+0x84/0x11c
[  387.045348][ T3890]  free_page_is_bad_report+0x98/0xa4
[  387.046316][ T3890]  free_unref_folios+0x4c0/0x624
[  387.047163][ T3890]  folios_put_refs+0x108/0x284
[  387.048088][ T3890]  free_pages_and_swap_cache+0x14c/0x164
[  387.049178][ T3890]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  387.050517][ T3890]  tlb_flush_mmu+0x54/0xe4
[  387.051412][ T3890]  unmap_page_range+0xab0/0x1190
[  387.052300][ T3890]  unmap_single_vma.constprop.0+0x4c/0x84
[  387.053269][ T3890]  unmap_vmas+0x7c/0x170
[  387.054168][ T3890]  exit_mmap+0xc0/0x288
[  387.055172][ T3890]  __mmput+0x3c/0x170
[  387.055876][ T3890]  mmput+0x50/0x5c
[  387.056548][ T3890]  do_exit+0x270/0x98c
[  387.057483][ T3890]  do_group_exit+0x34/0x90
[  387.058259][ T3890]  pid_child_should_wake+0x0/0x5c
[  387.059285][ T3890]  invoke_syscall+0x48/0x118
[  387.062361][ T3890]  el0_svc_common.constprop.0+0x40/0xe0
[  387.063328][ T3890]  do_el0_svc+0x1c/0x28
[  387.064070][ T3890]  el0_svc+0x34/0xf8
[  387.064814][ T3890]  el0t_64_sync_handler+0x100/0x12c
[  387.065804][ T3890]  el0t_64_sync+0x19c/0x1a0
[  387.072688][ T3890] BUG: Bad page state in process syz.0.34  pfn:4b46f
[  387.073577][ T3890] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b46f
[  387.074715][ T3890] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.076438][ T3890] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  387.077796][ T3890] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  387.079117][ T3890] page dumped because: nonzero mapcount
[  387.080506][ T3890] Modules linked in:
[  387.081242][ T3890] CPU: 1 PID: 3890 Comm: syz.0.34 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.083110][ T3890] Hardware name: linux,dummy-virt (DT)
[  387.083911][ T3890] Call trace:
[  387.084476][ T3890]  dump_backtrace+0x94/0xec
[  387.085230][ T3890]  show_stack+0x18/0x24
[  387.086062][ T3890]  dump_stack_lvl+0x78/0x90
[  387.086907][ T3890]  dump_stack+0x18/0x24
[  387.087688][ T3890]  bad_page+0x84/0x11c
[  387.088420][ T3890]  free_page_is_bad_report+0x98/0xa4
[  387.089209][ T3890]  free_unref_folios+0x4c0/0x624
[  387.090227][ T3890]  folios_put_refs+0x108/0x284
[  387.091023][ T3890]  free_pages_and_swap_cache+0x14c/0x164
[  387.091908][ T3890]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  387.092736][ T3890]  tlb_flush_mmu+0x54/0xe4
[  387.093611][ T3890]  unmap_page_range+0xab0/0x1190
[  387.094480][ T3890]  unmap_single_vma.constprop.0+0x4c/0x84
[  387.095407][ T3890]  unmap_vmas+0x7c/0x170
[  387.096168][ T3890]  exit_mmap+0xc0/0x288
[  387.096980][ T3890]  __mmput+0x3c/0x170
[  387.098023][ T3890]  mmput+0x50/0x5c
[  387.098734][ T3890]  do_exit+0x270/0x98c
[  387.099540][ T3890]  do_group_exit+0x34/0x90
[  387.100852][ T3890]  pid_child_should_wake+0x0/0x5c
[  387.101707][ T3890]  invoke_syscall+0x48/0x118
[  387.102728][ T3890]  el0_svc_common.constprop.0+0x40/0xe0
[  387.103739][ T3890]  do_el0_svc+0x1c/0x28
[  387.104557][ T3890]  el0_svc+0x34/0xf8
[  387.105420][ T3890]  el0t_64_sync_handler+0x100/0x12c
[  387.106297][ T3890]  el0t_64_sync+0x19c/0x1a0
[  387.285894][ T3892] BUG: Bad page cache in process syz.0.35  pfn:4e944
[  387.287345][ T3892] page: refcount:4 mapcount:1 mapping:00000000d2ac2acd index:0x0 pfn:0x4e944
[  387.288251][ T3892] memcg:f4f00000060ad000
[  387.288852][ T3892] aops:shmem_aops ino:a
[  387.289392][ T3892] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.297279][ T3892] raw: 01ffc0000004002d ffffc1ffc03aa108 ffffc1ffc01f0a88 f7f00000072ca790
[  387.298143][ T3892] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  387.298698][ T3892] page dumped because: still mapped when deleted
[  387.299093][ T3892] CPU: 0 PID: 3892 Comm: syz.0.35 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.300011][ T3892] Hardware name: linux,dummy-virt (DT)
[  387.300507][ T3892] Call trace:
[  387.300909][ T3892]  dump_backtrace+0x94/0xec
[  387.301630][ T3892]  show_stack+0x18/0x24
[  387.302851][ T3892]  dump_stack_lvl+0x78/0x90
[  387.303787][ T3892]  dump_stack+0x18/0x24
[  387.304981][ T3892]  filemap_unaccount_folio+0x118/0x278
[  387.305870][ T3892]  __filemap_remove_folio+0x3c/0x178
[  387.306812][ T3892]  filemap_remove_folio+0x48/0xa8
[  387.307691][ T3892]  truncate_inode_folio+0x30/0x4c
[  387.308479][ T3892]  shmem_undo_range+0x208/0x620
[  387.309213][ T3892]  shmem_evict_inode+0x130/0x2dc
[  387.310382][ T3892]  evict+0xb4/0x198
[  387.311064][ T3892]  iput+0x100/0x1b8
[  387.311756][ T3892]  dentry_unlink_inode+0xc0/0x188
[  387.312555][ T3892]  __dentry_kill+0x7c/0x1d4
[  387.313277][ T3892]  dput.part.0+0x30/0xbc
[  387.314023][ T3892]  dput+0x4c/0x50
[  387.314720][ T3892]  __fput+0x110/0x2d4
[  387.315789][ T3892]  ____fput+0x10/0x1c
[  387.317477][ T3892]  task_work_run+0x78/0xd0
[  387.319365][ T3892]  do_notify_resume+0x134/0x164
[  387.321465][ T3892]  el0_svc+0xc8/0xf8
[  387.323582][ T3892]  el0t_64_sync_handler+0x100/0x12c
[  387.325808][ T3892]  el0t_64_sync+0x19c/0x1a0
[  387.359571][ T3892] BUG: Bad page cache in process syz.0.35  pfn:47c2a
[  387.362657][ T3892] page: refcount:4 mapcount:1 mapping:00000000d2ac2acd index:0x1 pfn:0x47c2a
[  387.364103][ T3892] memcg:f4f00000060ad000
[  387.364822][ T3892] aops:shmem_aops ino:a
[  387.366680][ T3892] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.370255][ T3892] raw: 01ffc0000004002d ffffc1ffc03a5108 ffffc1ffc01af348 f7f00000072ca790
[  387.374300][ T3892] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  387.377474][ T3892] page dumped because: still mapped when deleted
[  387.378886][ T3892] CPU: 0 PID: 3892 Comm: syz.0.35 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.383928][ T3892] Hardware name: linux,dummy-virt (DT)
[  387.385720][ T3892] Call trace:
[  387.386807][ T3892]  dump_backtrace+0x94/0xec
[  387.388556][ T3892]  show_stack+0x18/0x24
[  387.390359][ T3892]  dump_stack_lvl+0x78/0x90
[  387.392196][ T3892]  dump_stack+0x18/0x24
[  387.394113][ T3892]  filemap_unaccount_folio+0x118/0x278
[  387.395707][ T3892]  __filemap_remove_folio+0x3c/0x178
[  387.397823][ T3892]  filemap_remove_folio+0x48/0xa8
[  387.399929][ T3892]  truncate_inode_folio+0x30/0x4c
[  387.400956][ T3892]  shmem_undo_range+0x208/0x620
[  387.402472][ T3892]  shmem_evict_inode+0x130/0x2dc
[  387.403299][ T3892]  evict+0xb4/0x198
[  387.403886][ T3892]  iput+0x100/0x1b8
[  387.404449][ T3892]  dentry_unlink_inode+0xc0/0x188
[  387.405144][ T3892]  __dentry_kill+0x7c/0x1d4
[  387.405764][ T3892]  dput.part.0+0x30/0xbc
[  387.406467][ T3892]  dput+0x4c/0x50
[  387.407190][ T3892]  __fput+0x110/0x2d4
[  387.407904][ T3892]  ____fput+0x10/0x1c
[  387.408622][ T3892]  task_work_run+0x78/0xd0
[  387.409434][ T3892]  do_notify_resume+0x134/0x164
[  387.410450][ T3892]  el0_svc+0xc8/0xf8
[  387.411078][ T3892]  el0t_64_sync_handler+0x100/0x12c
[  387.411742][ T3892]  el0t_64_sync+0x19c/0x1a0
[  387.421481][ T3892] BUG: Bad page map in process syz.0.35  pte:6000004e9448c3 pmd:800000046759003
[  387.422535][ T3892] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4e944
[  387.423562][ T3892] memcg:f4f00000060ad000
[  387.424190][ T3892] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.425538][ T3892] raw: 01ffc0000004002c ffffc1ffc03aa248 ffffc1ffc01f0a88 0000000000000000
[  387.426529][ T3892] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  387.427495][ T3892] page dumped because: bad pte
[  387.428548][ T3892] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f9f0000006e6d0d8 index:0
[  387.430772][ T3892] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  387.432027][ T3892] CPU: 0 PID: 3892 Comm: syz.0.35 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.433445][ T3892] Hardware name: linux,dummy-virt (DT)
[  387.434148][ T3892] Call trace:
[  387.434767][ T3892]  dump_backtrace+0x94/0xec
[  387.435589][ T3892]  show_stack+0x18/0x24
[  387.436299][ T3892]  dump_stack_lvl+0x78/0x90
[  387.436797][ T3892]  dump_stack+0x18/0x24
[  387.437315][ T3892]  print_bad_pte+0x1c8/0x258
[  387.437843][ T3892]  unmap_page_range+0x904/0x1190
[  387.438471][ T3892]  unmap_single_vma.constprop.0+0x4c/0x84
[  387.439123][ T3892]  unmap_vmas+0x7c/0x170
[  387.439897][ T3892]  exit_mmap+0xc0/0x288
[  387.440578][ T3892]  __mmput+0x3c/0x170
[  387.441184][ T3892]  mmput+0x50/0x5c
[  387.441803][ T3892]  do_exit+0x270/0x98c
[  387.442431][ T3892]  do_group_exit+0x34/0x90
[  387.442951][ T3892]  pid_child_should_wake+0x0/0x5c
[  387.443595][ T3892]  invoke_syscall+0x48/0x118
[  387.444413][ T3892]  el0_svc_common.constprop.0+0x40/0xe0
[  387.445154][ T3892]  do_el0_svc+0x1c/0x28
[  387.445858][ T3892]  el0_svc+0x34/0xf8
[  387.446556][ T3892]  el0t_64_sync_handler+0x100/0x12c
[  387.447398][ T3892]  el0t_64_sync+0x19c/0x1a0
[  387.451183][ T3892] BUG: Bad page map in process syz.0.35  pte:60000047c2a8c3 pmd:800000046759003
[  387.452505][ T3892] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x47c2a
[  387.453558][ T3892] memcg:f4f00000060ad000
[  387.454230][ T3892] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.455822][ T3892] raw: 01ffc0000004002c ffffc1ffc03a5108 ffffc1ffc01af348 0000000000000000
[  387.456983][ T3892] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  387.458006][ T3892] page dumped because: bad pte
[  387.458771][ T3892] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f9f0000006e6d0d8 index:1
[  387.461435][ T3892] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  387.462575][ T3892] CPU: 0 PID: 3892 Comm: syz.0.35 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.463834][ T3892] Hardware name: linux,dummy-virt (DT)
[  387.464567][ T3892] Call trace:
[  387.465064][ T3892]  dump_backtrace+0x94/0xec
[  387.465800][ T3892]  show_stack+0x18/0x24
[  387.466542][ T3892]  dump_stack_lvl+0x78/0x90
[  387.467452][ T3892]  dump_stack+0x18/0x24
[  387.468284][ T3892]  print_bad_pte+0x1c8/0x258
[  387.469181][ T3892]  unmap_page_range+0x904/0x1190
[  387.470337][ T3892]  unmap_single_vma.constprop.0+0x4c/0x84
[  387.471163][ T3892]  unmap_vmas+0x7c/0x170
[  387.472013][ T3892]  exit_mmap+0xc0/0x288
[  387.472861][ T3892]  __mmput+0x3c/0x170
[  387.473624][ T3892]  mmput+0x50/0x5c
[  387.474434][ T3892]  do_exit+0x270/0x98c
[  387.475185][ T3892]  do_group_exit+0x34/0x90
[  387.475943][ T3892]  pid_child_should_wake+0x0/0x5c
[  387.476763][ T3892]  invoke_syscall+0x48/0x118
[  387.477563][ T3892]  el0_svc_common.constprop.0+0x40/0xe0
[  387.478853][ T3892]  do_el0_svc+0x1c/0x28
[  387.479799][ T3892]  el0_svc+0x34/0xf8
[  387.480991][ T3892]  el0t_64_sync_handler+0x100/0x12c
[  387.481912][ T3892]  el0t_64_sync+0x19c/0x1a0
[  387.491473][ T3892] BUG: Bad page state in process syz.0.35  pfn:4e944
[  387.492428][ T3892] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4e944
[  387.493533][ T3892] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.495041][ T3892] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  387.496116][ T3892] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  387.497038][ T3892] page dumped because: nonzero mapcount
[  387.497700][ T3892] Modules linked in:
[  387.498452][ T3892] CPU: 0 PID: 3892 Comm: syz.0.35 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.500024][ T3892] Hardware name: linux,dummy-virt (DT)
[  387.500899][ T3892] Call trace:
[  387.501549][ T3892]  dump_backtrace+0x94/0xec
[  387.502374][ T3892]  show_stack+0x18/0x24
[  387.503242][ T3892]  dump_stack_lvl+0x78/0x90
[  387.504041][ T3892]  dump_stack+0x18/0x24
[  387.504774][ T3892]  bad_page+0x84/0x11c
[  387.505466][ T3892]  free_page_is_bad_report+0x98/0xa4
[  387.506289][ T3892]  free_unref_folios+0x4c0/0x624
[  387.507107][ T3892]  folios_put_refs+0x108/0x284
[  387.507916][ T3892]  free_pages_and_swap_cache+0x14c/0x164
[  387.508855][ T3892]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  387.509732][ T3892]  tlb_flush_mmu+0x54/0xe4
[  387.510760][ T3892]  unmap_page_range+0xab0/0x1190
[  387.511554][ T3892]  unmap_single_vma.constprop.0+0x4c/0x84
[  387.512429][ T3892]  unmap_vmas+0x7c/0x170
[  387.513209][ T3892]  exit_mmap+0xc0/0x288
[  387.514188][ T3892]  __mmput+0x3c/0x170
[  387.514947][ T3892]  mmput+0x50/0x5c
[  387.515646][ T3892]  do_exit+0x270/0x98c
[  387.516329][ T3892]  do_group_exit+0x34/0x90
[  387.517031][ T3892]  pid_child_should_wake+0x0/0x5c
[  387.517850][ T3892]  invoke_syscall+0x48/0x118
[  387.518608][ T3892]  el0_svc_common.constprop.0+0x40/0xe0
[  387.519472][ T3892]  do_el0_svc+0x1c/0x28
[  387.520445][ T3892]  el0_svc+0x34/0xf8
[  387.521166][ T3892]  el0t_64_sync_handler+0x100/0x12c
[  387.522071][ T3892]  el0t_64_sync+0x19c/0x1a0
[  387.526956][ T3892] BUG: Bad page state in process syz.0.35  pfn:47c2a
[  387.527974][ T3892] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x47c2a
[  387.529128][ T3892] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.531430][ T3892] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  387.532519][ T3892] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  387.533492][ T3892] page dumped because: nonzero mapcount
[  387.534358][ T3892] Modules linked in:
[  387.535068][ T3892] CPU: 0 PID: 3892 Comm: syz.0.35 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.536557][ T3892] Hardware name: linux,dummy-virt (DT)
[  387.537367][ T3892] Call trace:
[  387.537911][ T3892]  dump_backtrace+0x94/0xec
[  387.538672][ T3892]  show_stack+0x18/0x24
[  387.539456][ T3892]  dump_stack_lvl+0x78/0x90
[  387.540246][ T3892]  dump_stack+0x18/0x24
[  387.540924][ T3892]  bad_page+0x84/0x11c
[  387.542167][ T3892]  free_page_is_bad_report+0x98/0xa4
[  387.542940][ T3892]  free_unref_folios+0x4c0/0x624
[  387.543744][ T3892]  folios_put_refs+0x108/0x284
[  387.544603][ T3892]  free_pages_and_swap_cache+0x14c/0x164
[  387.545448][ T3892]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  387.546345][ T3892]  tlb_flush_mmu+0x54/0xe4
[  387.547068][ T3892]  unmap_page_range+0xab0/0x1190
[  387.547970][ T3892]  unmap_single_vma.constprop.0+0x4c/0x84
[  387.548911][ T3892]  unmap_vmas+0x7c/0x170
[  387.549840][ T3892]  exit_mmap+0xc0/0x288
[  387.550880][ T3892]  __mmput+0x3c/0x170
[  387.551624][ T3892]  mmput+0x50/0x5c
[  387.552370][ T3892]  do_exit+0x270/0x98c
[  387.553127][ T3892]  do_group_exit+0x34/0x90
[  387.553962][ T3892]  pid_child_should_wake+0x0/0x5c
[  387.555007][ T3892]  invoke_syscall+0x48/0x118
[  387.555780][ T3892]  el0_svc_common.constprop.0+0x40/0xe0
[  387.556695][ T3892]  do_el0_svc+0x1c/0x28
[  387.557455][ T3892]  el0_svc+0x34/0xf8
[  387.558243][ T3892]  el0t_64_sync_handler+0x100/0x12c
[  387.559043][ T3892]  el0t_64_sync+0x19c/0x1a0
[  387.733867][ T3894] BUG: Bad page cache in process syz.0.36  pfn:4b563
[  387.735030][ T3894] page: refcount:4 mapcount:1 mapping:00000000e748ea1d index:0x0 pfn:0x4b563
[  387.736119][ T3894] memcg:f4f00000060ad000
[  387.736782][ T3894] aops:shmem_aops ino:40d
[  387.737553][ T3894] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.739488][ T3894] raw: 01ffc0000004002d ffffc1ffc02d9e48 ffffc1ffc0309ac8 f8f00000070f0530
[  387.741290][ T3894] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  387.742369][ T3894] page dumped because: still mapped when deleted
[  387.743330][ T3894] CPU: 1 PID: 3894 Comm: syz.0.36 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.744848][ T3894] Hardware name: linux,dummy-virt (DT)
[  387.745691][ T3894] Call trace:
[  387.746322][ T3894]  dump_backtrace+0x94/0xec
[  387.747289][ T3894]  show_stack+0x18/0x24
[  387.748215][ T3894]  dump_stack_lvl+0x78/0x90
[  387.749139][ T3894]  dump_stack+0x18/0x24
[  387.750135][ T3894]  filemap_unaccount_folio+0x118/0x278
[  387.751135][ T3894]  __filemap_remove_folio+0x3c/0x178
[  387.752144][ T3894]  filemap_remove_folio+0x48/0xa8
[  387.753052][ T3894]  truncate_inode_folio+0x30/0x4c
[  387.754084][ T3894]  shmem_undo_range+0x208/0x620
[  387.754994][ T3894]  shmem_evict_inode+0x130/0x2dc
[  387.755902][ T3894]  evict+0xb4/0x198
[  387.756605][ T3894]  iput+0x100/0x1b8
[  387.757331][ T3894]  dentry_unlink_inode+0xc0/0x188
[  387.758281][ T3894]  __dentry_kill+0x7c/0x1d4
[  387.759127][ T3894]  dput.part.0+0x30/0xbc
[  387.760218][ T3894]  dput+0x4c/0x50
[  387.760973][ T3894]  __fput+0x110/0x2d4
[  387.761746][ T3894]  ____fput+0x10/0x1c
[  387.762555][ T3894]  task_work_run+0x78/0xd0
[  387.763390][ T3894]  do_notify_resume+0x134/0x164
[  387.764596][ T3894]  el0_svc+0xc8/0xf8
[  387.765427][ T3894]  el0t_64_sync_handler+0x100/0x12c
[  387.766358][ T3894]  el0t_64_sync+0x19c/0x1a0
[  387.769298][ T3894] BUG: Bad page cache in process syz.0.36  pfn:4c26b
[  387.770427][ T3894] page: refcount:4 mapcount:1 mapping:00000000e748ea1d index:0x1 pfn:0x4c26b
[  387.771694][ T3894] memcg:f4f00000060ad000
[  387.772339][ T3894] aops:shmem_aops ino:40d
[  387.773170][ T3894] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.775430][ T3894] raw: 01ffc0000004002d ffffc1ffc02d58c8 ffffc1ffc02f2608 f8f00000070f0530
[  387.778133][ T3894] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  387.779739][ T3894] page dumped because: still mapped when deleted
[  387.780897][ T3894] CPU: 1 PID: 3894 Comm: syz.0.36 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.782312][ T3894] Hardware name: linux,dummy-virt (DT)
[  387.783174][ T3894] Call trace:
[  387.783848][ T3894]  dump_backtrace+0x94/0xec
[  387.784705][ T3894]  show_stack+0x18/0x24
[  387.785553][ T3894]  dump_stack_lvl+0x78/0x90
[  387.786347][ T3894]  dump_stack+0x18/0x24
[  387.787153][ T3894]  filemap_unaccount_folio+0x118/0x278
[  387.789993][ T3894]  __filemap_remove_folio+0x3c/0x178
[  387.791976][ T3894]  filemap_remove_folio+0x48/0xa8
[  387.793144][ T3894]  truncate_inode_folio+0x30/0x4c
[  387.793961][ T3894]  shmem_undo_range+0x208/0x620
[  387.794811][ T3894]  shmem_evict_inode+0x130/0x2dc
[  387.795768][ T3894]  evict+0xb4/0x198
[  387.796438][ T3894]  iput+0x100/0x1b8
[  387.797088][ T3894]  dentry_unlink_inode+0xc0/0x188
[  387.797834][ T3894]  __dentry_kill+0x7c/0x1d4
[  387.798628][ T3894]  dput.part.0+0x30/0xbc
[  387.799605][ T3894]  dput+0x4c/0x50
[  387.801058][ T3894]  __fput+0x110/0x2d4
[  387.802308][ T3894]  ____fput+0x10/0x1c
[  387.804046][ T3894]  task_work_run+0x78/0xd0
[  387.805138][ T3894]  do_notify_resume+0x134/0x164
[  387.805958][ T3894]  el0_svc+0xc8/0xf8
[  387.806732][ T3894]  el0t_64_sync_handler+0x100/0x12c
[  387.807651][ T3894]  el0t_64_sync+0x19c/0x1a0
[  387.843345][ T3894] BUG: Bad page map in process syz.0.36  pte:6000004b5638c3 pmd:800000046767003
[  387.844705][ T3894] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b563
[  387.845812][ T3894] memcg:f4f00000060ad000
[  387.846474][ T3894] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.850870][ T3894] raw: 01ffc0000004002c ffffc1ffc0325d48 ffffc1ffc0309ac8 0000000000000000
[  387.854458][ T3894] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  387.856083][ T3894] page dumped because: bad pte
[  387.856829][ T3894] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f6f00000033ed368 index:0
[  387.858556][ T3894] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  387.863229][ T3894] CPU: 1 PID: 3894 Comm: syz.0.36 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.867725][ T3894] Hardware name: linux,dummy-virt (DT)
[  387.869282][ T3894] Call trace:
[  387.870323][ T3894]  dump_backtrace+0x94/0xec
[  387.871330][ T3894]  show_stack+0x18/0x24
[  387.872200][ T3894]  dump_stack_lvl+0x78/0x90
[  387.874315][ T3894]  dump_stack+0x18/0x24
[  387.875166][ T3894]  print_bad_pte+0x1c8/0x258
[  387.876101][ T3894]  unmap_page_range+0x904/0x1190
[  387.877243][ T3894]  unmap_single_vma.constprop.0+0x4c/0x84
[  387.878568][ T3894]  unmap_vmas+0x7c/0x170
[  387.879675][ T3894]  exit_mmap+0xc0/0x288
[  387.880632][ T3894]  __mmput+0x3c/0x170
[  387.881650][ T3894]  mmput+0x50/0x5c
[  387.882339][ T3894]  do_exit+0x270/0x98c
[  387.883118][ T3894]  do_group_exit+0x34/0x90
[  387.883990][ T3894]  pid_child_should_wake+0x0/0x5c
[  387.884952][ T3894]  invoke_syscall+0x48/0x118
[  387.885680][ T3894]  el0_svc_common.constprop.0+0x40/0xe0
[  387.886445][ T3894]  do_el0_svc+0x1c/0x28
[  387.887323][ T3894]  el0_svc+0x34/0xf8
[  387.888072][ T3894]  el0t_64_sync_handler+0x100/0x12c
[  387.889002][ T3894]  el0t_64_sync+0x19c/0x1a0
[  387.921375][ T3894] BUG: Bad page map in process syz.0.36  pte:6000004c26b8c3 pmd:800000046767003
[  387.922757][ T3894] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4c26b
[  387.923993][ T3894] memcg:f4f00000060ad000
[  387.924735][ T3894] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.926141][ T3894] raw: 01ffc0000004002c ffffc1ffc02d58c8 ffffc1ffc02f2608 0000000000000000
[  387.927287][ T3894] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  387.928312][ T3894] page dumped because: bad pte
[  387.929039][ T3894] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f6f00000033ed368 index:1
[  387.932752][ T3894] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  387.934215][ T3894] CPU: 1 PID: 3894 Comm: syz.0.36 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.935834][ T3894] Hardware name: linux,dummy-virt (DT)
[  387.936709][ T3894] Call trace:
[  387.937349][ T3894]  dump_backtrace+0x94/0xec
[  387.938987][ T3894]  show_stack+0x18/0x24
[  387.941412][ T3894]  dump_stack_lvl+0x78/0x90
[  387.943598][ T3894]  dump_stack+0x18/0x24
[  387.944250][ T3894]  print_bad_pte+0x1c8/0x258
[  387.945069][ T3894]  unmap_page_range+0x904/0x1190
[  387.946010][ T3894]  unmap_single_vma.constprop.0+0x4c/0x84
[  387.948324][ T3894]  unmap_vmas+0x7c/0x170
[  387.950433][ T3894]  exit_mmap+0xc0/0x288
[  387.952217][ T3894]  __mmput+0x3c/0x170
[  387.954206][ T3894]  mmput+0x50/0x5c
[  387.955830][ T3894]  do_exit+0x270/0x98c
[  387.957356][ T3894]  do_group_exit+0x34/0x90
[  387.959396][ T3894]  pid_child_should_wake+0x0/0x5c
[  387.961812][ T3894]  invoke_syscall+0x48/0x118
[  387.962791][ T3894]  el0_svc_common.constprop.0+0x40/0xe0
[  387.963631][ T3894]  do_el0_svc+0x1c/0x28
[  387.964689][ T3894]  el0_svc+0x34/0xf8
[  387.965475][ T3894]  el0t_64_sync_handler+0x100/0x12c
[  387.966510][ T3894]  el0t_64_sync+0x19c/0x1a0
[  387.971913][ T3894] BUG: Bad page state in process syz.0.36  pfn:4b563
[  387.973027][ T3894] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b563
[  387.974236][ T3894] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  387.976302][ T3894] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  387.977359][ T3894] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  387.978270][ T3894] page dumped because: nonzero mapcount
[  387.978996][ T3894] Modules linked in:
[  387.981182][ T3894] CPU: 1 PID: 3894 Comm: syz.0.36 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  387.982741][ T3894] Hardware name: linux,dummy-virt (DT)
[  387.983437][ T3894] Call trace:
[  387.983959][ T3894]  dump_backtrace+0x94/0xec
[  387.984658][ T3894]  show_stack+0x18/0x24
[  387.985416][ T3894]  dump_stack_lvl+0x78/0x90
[  387.986121][ T3894]  dump_stack+0x18/0x24
[  387.986843][ T3894]  bad_page+0x84/0x11c
[  387.987744][ T3894]  free_page_is_bad_report+0x98/0xa4
[  387.989147][ T3894]  free_unref_folios+0x4c0/0x624
[  387.990425][ T3894]  folios_put_refs+0x108/0x284
[  387.992690][ T3894]  free_pages_and_swap_cache+0x14c/0x164
[  387.993505][ T3894]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  387.994324][ T3894]  tlb_flush_mmu+0x54/0xe4
[  387.995008][ T3894]  unmap_page_range+0xab0/0x1190
[  387.995685][ T3894]  unmap_single_vma.constprop.0+0x4c/0x84
[  387.996347][ T3894]  unmap_vmas+0x7c/0x170
[  387.997209][ T3894]  exit_mmap+0xc0/0x288
[  387.997614][ T3894]  __mmput+0x3c/0x170
[  387.998030][ T3894]  mmput+0x50/0x5c
[  387.998426][ T3894]  do_exit+0x270/0x98c
[  387.998831][ T3894]  do_group_exit+0x34/0x90
[  387.999283][ T3894]  pid_child_should_wake+0x0/0x5c
[  388.000186][ T3894]  invoke_syscall+0x48/0x118
[  388.000877][ T3894]  el0_svc_common.constprop.0+0x40/0xe0
[  388.001563][ T3894]  do_el0_svc+0x1c/0x28
[  388.002277][ T3894]  el0_svc+0x34/0xf8
[  388.002798][ T3894]  el0t_64_sync_handler+0x100/0x12c
[  388.003488][ T3894]  el0t_64_sync+0x19c/0x1a0
[  388.012385][ T3894] BUG: Bad page state in process syz.0.36  pfn:4c26b
[  388.013087][ T3894] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4c26b
[  388.014056][ T3894] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.015112][ T3894] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  388.016413][ T3894] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  388.017228][ T3894] page dumped because: nonzero mapcount
[  388.017810][ T3894] Modules linked in:
[  388.018349][ T3894] CPU: 1 PID: 3894 Comm: syz.0.36 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.019357][ T3894] Hardware name: linux,dummy-virt (DT)
[  388.020306][ T3894] Call trace:
[  388.020864][ T3894]  dump_backtrace+0x94/0xec
[  388.021816][ T3894]  show_stack+0x18/0x24
[  388.022689][ T3894]  dump_stack_lvl+0x78/0x90
[  388.023374][ T3894]  dump_stack+0x18/0x24
[  388.023970][ T3894]  bad_page+0x84/0x11c
[  388.024588][ T3894]  free_page_is_bad_report+0x98/0xa4
[  388.025286][ T3894]  free_unref_folios+0x4c0/0x624
[  388.025880][ T3894]  folios_put_refs+0x108/0x284
[  388.026540][ T3894]  free_pages_and_swap_cache+0x14c/0x164
[  388.027335][ T3894]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  388.028070][ T3894]  tlb_flush_mmu+0x54/0xe4
[  388.028626][ T3894]  unmap_page_range+0xab0/0x1190
[  388.029294][ T3894]  unmap_single_vma.constprop.0+0x4c/0x84
[  388.030081][ T3894]  unmap_vmas+0x7c/0x170
[  388.030803][ T3894]  exit_mmap+0xc0/0x288
[  388.031489][ T3894]  __mmput+0x3c/0x170
[  388.032142][ T3894]  mmput+0x50/0x5c
[  388.032799][ T3894]  do_exit+0x270/0x98c
[  388.033651][ T3894]  do_group_exit+0x34/0x90
[  388.034481][ T3894]  pid_child_should_wake+0x0/0x5c
[  388.035141][ T3894]  invoke_syscall+0x48/0x118
[  388.035841][ T3894]  el0_svc_common.constprop.0+0x40/0xe0
[  388.036508][ T3894]  do_el0_svc+0x1c/0x28
[  388.037091][ T3894]  el0_svc+0x34/0xf8
[  388.037771][ T3894]  el0t_64_sync_handler+0x100/0x12c
[  388.038545][ T3894]  el0t_64_sync+0x19c/0x1a0
1970/01/01 00:06:27 executed programs: 24
[  388.208684][ T3896] BUG: Bad page cache in process syz.0.37  pfn:4b609
[  388.211432][ T3896] page: refcount:4 mapcount:1 mapping:00000000d2ac2acd index:0x0 pfn:0x4b609
[  388.212633][ T3896] memcg:f4f00000060ad000
[  388.213307][ T3896] aops:shmem_aops ino:b
[  388.214193][ T3896] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.217761][ T3896] raw: 01ffc0000004002d ffffc1ffc02d7d88 ffffc1ffc03aa248 f7f00000072ca790
[  388.218740][ T3896] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  388.220199][ T3896] page dumped because: still mapped when deleted
[  388.221153][ T3896] CPU: 0 PID: 3896 Comm: syz.0.37 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.222818][ T3896] Hardware name: linux,dummy-virt (DT)
[  388.223884][ T3896] Call trace:
[  388.224496][ T3896]  dump_backtrace+0x94/0xec
[  388.225279][ T3896]  show_stack+0x18/0x24
[  388.225950][ T3896]  dump_stack_lvl+0x78/0x90
[  388.226647][ T3896]  dump_stack+0x18/0x24
[  388.227407][ T3896]  filemap_unaccount_folio+0x118/0x278
[  388.229272][ T3896]  __filemap_remove_folio+0x3c/0x178
[  388.231017][ T3896]  filemap_remove_folio+0x48/0xa8
[  388.233013][ T3896]  truncate_inode_folio+0x30/0x4c
[  388.234109][ T3896]  shmem_undo_range+0x208/0x620
[  388.235193][ T3896]  shmem_evict_inode+0x130/0x2dc
[  388.236363][ T3896]  evict+0xb4/0x198
[  388.237532][ T3896]  iput+0x100/0x1b8
[  388.238521][ T3896]  dentry_unlink_inode+0xc0/0x188
[  388.239953][ T3896]  __dentry_kill+0x7c/0x1d4
[  388.241217][ T3896]  dput.part.0+0x30/0xbc
[  388.242216][ T3896]  dput+0x4c/0x50
[  388.242904][ T3896]  __fput+0x110/0x2d4
[  388.243869][ T3896]  ____fput+0x10/0x1c
[  388.244691][ T3896]  task_work_run+0x78/0xd0
[  388.245618][ T3896]  do_notify_resume+0x134/0x164
[  388.246645][ T3896]  el0_svc+0xc8/0xf8
[  388.247623][ T3896]  el0t_64_sync_handler+0x100/0x12c
[  388.248745][ T3896]  el0t_64_sync+0x19c/0x1a0
[  388.275187][ T3896] BUG: Bad page cache in process syz.0.37  pfn:4ea89
[  388.276965][ T3896] page: refcount:4 mapcount:1 mapping:00000000d2ac2acd index:0x1 pfn:0x4ea89
[  388.278829][ T3896] memcg:f4f00000060ad000
[  388.279645][ T3896] aops:shmem_aops ino:b
[  388.280782][ T3896] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.284149][ T3896] raw: 01ffc0000004002d ffffc1ffc02d8248 ffffc1ffc02d6888 f7f00000072ca790
[  388.285424][ T3896] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  388.286602][ T3896] page dumped because: still mapped when deleted
[  388.287587][ T3896] CPU: 0 PID: 3896 Comm: syz.0.37 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.289485][ T3896] Hardware name: linux,dummy-virt (DT)
[  388.291856][ T3896] Call trace:
[  388.292913][ T3896]  dump_backtrace+0x94/0xec
[  388.294127][ T3896]  show_stack+0x18/0x24
[  388.294928][ T3896]  dump_stack_lvl+0x78/0x90
[  388.295785][ T3896]  dump_stack+0x18/0x24
[  388.296610][ T3896]  filemap_unaccount_folio+0x118/0x278
[  388.297522][ T3896]  __filemap_remove_folio+0x3c/0x178
[  388.298373][ T3896]  filemap_remove_folio+0x48/0xa8
[  388.299189][ T3896]  truncate_inode_folio+0x30/0x4c
[  388.301007][ T3896]  shmem_undo_range+0x208/0x620
[  388.301956][ T3896]  shmem_evict_inode+0x130/0x2dc
[  388.303757][ T3896]  evict+0xb4/0x198
[  388.304967][ T3896]  iput+0x100/0x1b8
[  388.306671][ T3896]  dentry_unlink_inode+0xc0/0x188
[  388.308393][ T3896]  __dentry_kill+0x7c/0x1d4
[  388.310190][ T3896]  dput.part.0+0x30/0xbc
[  388.311739][ T3896]  dput+0x4c/0x50
[  388.313137][ T3896]  __fput+0x110/0x2d4
[  388.314026][ T3896]  ____fput+0x10/0x1c
[  388.315027][ T3896]  task_work_run+0x78/0xd0
[  388.316957][ T3896]  do_notify_resume+0x134/0x164
[  388.318388][ T3896]  el0_svc+0xc8/0xf8
[  388.319136][ T3896]  el0t_64_sync_handler+0x100/0x12c
[  388.320315][ T3896]  el0t_64_sync+0x19c/0x1a0
[  388.346049][ T3897] BUG: Bad page map in process syz.0.37  pte:6000004b6098c3 pmd:800000047adc003
[  388.347716][ T3897] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b609
[  388.348761][ T3897] memcg:f4f00000060ad000
[  388.349590][ T3897] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.353136][ T3897] raw: 01ffc0000004002c ffffc1ffc02d6fc8 ffffc1ffc03aa248 0000000000000000
[  388.356445][ T3897] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  388.357508][ T3897] page dumped because: bad pte
[  388.358164][ T3897] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f9f0000006e6d0d8 index:0
[  388.359267][ T3897] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  388.361769][ T3897] CPU: 1 PID: 3897 Comm: syz.0.37 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.363226][ T3897] Hardware name: linux,dummy-virt (DT)
[  388.363920][ T3897] Call trace:
[  388.364467][ T3897]  dump_backtrace+0x94/0xec
[  388.365170][ T3897]  show_stack+0x18/0x24
[  388.365832][ T3897]  dump_stack_lvl+0x78/0x90
[  388.366520][ T3897]  dump_stack+0x18/0x24
[  388.367217][ T3897]  print_bad_pte+0x1c8/0x258
[  388.367901][ T3897]  unmap_page_range+0x904/0x1190
[  388.368667][ T3897]  unmap_single_vma.constprop.0+0x4c/0x84
[  388.369404][ T3897]  unmap_vmas+0x7c/0x170
[  388.370391][ T3897]  exit_mmap+0xc0/0x288
[  388.371099][ T3897]  __mmput+0x3c/0x170
[  388.371848][ T3897]  mmput+0x50/0x5c
[  388.372429][ T3897]  do_exit+0x270/0x98c
[  388.373025][ T3897]  do_group_exit+0x34/0x90
[  388.373672][ T3897]  copy_siginfo_to_user+0x0/0xec
[  388.374453][ T3897]  do_signal+0x94/0x1450
[  388.375252][ T3897]  do_notify_resume+0xd8/0x164
[  388.375951][ T3897]  el0_svc+0xc8/0xf8
[  388.376659][ T3897]  el0t_64_sync_handler+0x100/0x12c
[  388.377473][ T3897]  el0t_64_sync+0x19c/0x1a0
[  388.382187][ T3897] BUG: Bad page map in process syz.0.37  pte:6000004ea898c3 pmd:800000047adc003
[  388.383133][ T3897] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4ea89
[  388.384430][ T3897] memcg:f4f00000060ad000
[  388.384976][ T3897] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.386908][ T3897] raw: 01ffc0000004002c ffffc1ffc02d8248 ffffc1ffc02d6888 0000000000000000
[  388.387940][ T3897] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  388.389036][ T3897] page dumped because: bad pte
[  388.391227][ T3897] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f9f0000006e6d0d8 index:1
[  388.392537][ T3897] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  388.393874][ T3897] CPU: 1 PID: 3897 Comm: syz.0.37 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.394929][ T3897] Hardware name: linux,dummy-virt (DT)
[  388.395845][ T3897] Call trace:
[  388.396386][ T3897]  dump_backtrace+0x94/0xec
[  388.397072][ T3897]  show_stack+0x18/0x24
[  388.397736][ T3897]  dump_stack_lvl+0x78/0x90
[  388.398443][ T3897]  dump_stack+0x18/0x24
[  388.399089][ T3897]  print_bad_pte+0x1c8/0x258
[  388.399831][ T3897]  unmap_page_range+0x904/0x1190
[  388.400687][ T3897]  unmap_single_vma.constprop.0+0x4c/0x84
[  388.401519][ T3897]  unmap_vmas+0x7c/0x170
[  388.402250][ T3897]  exit_mmap+0xc0/0x288
[  388.402891][ T3897]  __mmput+0x3c/0x170
[  388.403706][ T3897]  mmput+0x50/0x5c
[  388.404348][ T3897]  do_exit+0x270/0x98c
[  388.404973][ T3897]  do_group_exit+0x34/0x90
[  388.405634][ T3897]  copy_siginfo_to_user+0x0/0xec
[  388.406315][ T3897]  do_signal+0x94/0x1450
[  388.407011][ T3897]  do_notify_resume+0xd8/0x164
[  388.407752][ T3897]  el0_svc+0xc8/0xf8
[  388.408425][ T3897]  el0t_64_sync_handler+0x100/0x12c
[  388.409159][ T3897]  el0t_64_sync+0x19c/0x1a0
[  388.415557][ T3897] BUG: Bad page state in process syz.0.37  pfn:4b609
[  388.416483][ T3897] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b609
[  388.417471][ T3897] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.418522][ T3897] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  388.419379][ T3897] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  388.420962][ T3897] page dumped because: nonzero mapcount
[  388.421656][ T3897] Modules linked in:
[  388.422369][ T3897] CPU: 1 PID: 3897 Comm: syz.0.37 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.423729][ T3897] Hardware name: linux,dummy-virt (DT)
[  388.424436][ T3897] Call trace:
[  388.424980][ T3897]  dump_backtrace+0x94/0xec
[  388.425774][ T3897]  show_stack+0x18/0x24
[  388.426454][ T3897]  dump_stack_lvl+0x78/0x90
[  388.427175][ T3897]  dump_stack+0x18/0x24
[  388.427872][ T3897]  bad_page+0x84/0x11c
[  388.428617][ T3897]  free_page_is_bad_report+0x98/0xa4
[  388.429409][ T3897]  free_unref_folios+0x4c0/0x624
[  388.430449][ T3897]  folios_put_refs+0x108/0x284
[  388.431071][ T3897]  free_pages_and_swap_cache+0x14c/0x164
[  388.431842][ T3897]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  388.433336][ T3897]  tlb_flush_mmu+0x54/0xe4
[  388.434078][ T3897]  unmap_page_range+0xab0/0x1190
[  388.434916][ T3897]  unmap_single_vma.constprop.0+0x4c/0x84
[  388.435840][ T3897]  unmap_vmas+0x7c/0x170
[  388.436518][ T3897]  exit_mmap+0xc0/0x288
[  388.437346][ T3897]  __mmput+0x3c/0x170
[  388.438111][ T3897]  mmput+0x50/0x5c
[  388.438885][ T3897]  do_exit+0x270/0x98c
[  388.439606][ T3897]  do_group_exit+0x34/0x90
[  388.440423][ T3897]  copy_siginfo_to_user+0x0/0xec
[  388.441220][ T3897]  do_signal+0x94/0x1450
[  388.442105][ T3897]  do_notify_resume+0xd8/0x164
[  388.442966][ T3897]  el0_svc+0xc8/0xf8
[  388.443642][ T3897]  el0t_64_sync_handler+0x100/0x12c
[  388.444409][ T3897]  el0t_64_sync+0x19c/0x1a0
[  388.446607][ T3897] BUG: Bad page state in process syz.0.37  pfn:4ea89
[  388.447552][ T3897] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4ea89
[  388.448532][ T3897] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.450459][ T3897] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  388.451428][ T3897] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  388.452418][ T3897] page dumped because: nonzero mapcount
[  388.453224][ T3897] Modules linked in:
[  388.454022][ T3897] CPU: 1 PID: 3897 Comm: syz.0.37 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.455379][ T3897] Hardware name: linux,dummy-virt (DT)
[  388.456107][ T3897] Call trace:
[  388.456666][ T3897]  dump_backtrace+0x94/0xec
[  388.457380][ T3897]  show_stack+0x18/0x24
[  388.458066][ T3897]  dump_stack_lvl+0x78/0x90
[  388.458781][ T3897]  dump_stack+0x18/0x24
[  388.459444][ T3897]  bad_page+0x84/0x11c
[  388.460196][ T3897]  free_page_is_bad_report+0x98/0xa4
[  388.461063][ T3897]  free_unref_folios+0x4c0/0x624
[  388.461855][ T3897]  folios_put_refs+0x108/0x284
[  388.462600][ T3897]  free_pages_and_swap_cache+0x14c/0x164
[  388.463550][ T3897]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  388.464290][ T3897]  tlb_flush_mmu+0x54/0xe4
[  388.464901][ T3897]  unmap_page_range+0xab0/0x1190
[  388.465637][ T3897]  unmap_single_vma.constprop.0+0x4c/0x84
[  388.466448][ T3897]  unmap_vmas+0x7c/0x170
[  388.467149][ T3897]  exit_mmap+0xc0/0x288
[  388.467845][ T3897]  __mmput+0x3c/0x170
[  388.468544][ T3897]  mmput+0x50/0x5c
[  388.469194][ T3897]  do_exit+0x270/0x98c
[  388.470005][ T3897]  do_group_exit+0x34/0x90
[  388.470753][ T3897]  copy_siginfo_to_user+0x0/0xec
[  388.471595][ T3897]  do_signal+0x94/0x1450
[  388.472318][ T3897]  do_notify_resume+0xd8/0x164
[  388.473140][ T3897]  el0_svc+0xc8/0xf8
[  388.473838][ T3897]  el0t_64_sync_handler+0x100/0x12c
[  388.474595][ T3897]  el0t_64_sync+0x19c/0x1a0
[  388.663895][ T3898] BUG: Bad page cache in process syz.0.38  pfn:4b2c6
[  388.665068][ T3898] page: refcount:4 mapcount:1 mapping:0000000075ce9b79 index:0x0 pfn:0x4b2c6
[  388.666155][ T3898] memcg:f4f00000060ad000
[  388.666854][ T3898] aops:shmem_aops ino:40e
[  388.667704][ T3898] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.669281][ T3898] raw: 01ffc0000004002d ffffc1ffc02d5808 ffffc1ffc02d9e48 f1f00000070f2dd0
[  388.670797][ T3898] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  388.671980][ T3898] page dumped because: still mapped when deleted
[  388.672833][ T3898] CPU: 1 PID: 3898 Comm: syz.0.38 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.674509][ T3898] Hardware name: linux,dummy-virt (DT)
[  388.675321][ T3898] Call trace:
[  388.676046][ T3898]  dump_backtrace+0x94/0xec
[  388.676826][ T3898]  show_stack+0x18/0x24
[  388.677540][ T3898]  dump_stack_lvl+0x78/0x90
[  388.678321][ T3898]  dump_stack+0x18/0x24
[  388.679057][ T3898]  filemap_unaccount_folio+0x118/0x278
[  388.680058][ T3898]  __filemap_remove_folio+0x3c/0x178
[  388.680952][ T3898]  filemap_remove_folio+0x48/0xa8
[  388.681749][ T3898]  truncate_inode_folio+0x30/0x4c
[  388.682559][ T3898]  shmem_undo_range+0x208/0x620
[  388.683401][ T3898]  shmem_evict_inode+0x130/0x2dc
[  388.684111][ T3898]  evict+0xb4/0x198
[  388.684780][ T3898]  iput+0x100/0x1b8
[  388.685557][ T3898]  dentry_unlink_inode+0xc0/0x188
[  388.686423][ T3898]  __dentry_kill+0x7c/0x1d4
[  388.687720][ T3898]  dput.part.0+0x30/0xbc
[  388.688498][ T3898]  dput+0x4c/0x50
[  388.689200][ T3898]  __fput+0x110/0x2d4
[  388.690008][ T3898]  ____fput+0x10/0x1c
[  388.690735][ T3898]  task_work_run+0x78/0xd0
[  388.691517][ T3898]  do_notify_resume+0x134/0x164
[  388.692280][ T3898]  el0_svc+0xc8/0xf8
[  388.693048][ T3898]  el0t_64_sync_handler+0x100/0x12c
[  388.694114][ T3898]  el0t_64_sync+0x19c/0x1a0
[  388.698777][ T3898] BUG: Bad page cache in process syz.0.38  pfn:4b679
[  388.699761][ T3898] page: refcount:4 mapcount:1 mapping:0000000075ce9b79 index:0x1 pfn:0x4b679
[  388.701079][ T3898] memcg:f4f00000060ad000
[  388.701745][ T3898] aops:shmem_aops ino:40e
[  388.702448][ T3898] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.703868][ T3898] raw: 01ffc0000004002d ffffc1ffc02cb188 ffffc1ffc02dae88 f1f00000070f2dd0
[  388.705063][ T3898] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  388.706011][ T3898] page dumped because: still mapped when deleted
[  388.706842][ T3898] CPU: 1 PID: 3898 Comm: syz.0.38 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.708220][ T3898] Hardware name: linux,dummy-virt (DT)
[  388.709194][ T3898] Call trace:
[  388.709893][ T3898]  dump_backtrace+0x94/0xec
[  388.710689][ T3898]  show_stack+0x18/0x24
[  388.711569][ T3898]  dump_stack_lvl+0x78/0x90
[  388.712504][ T3898]  dump_stack+0x18/0x24
[  388.713187][ T3898]  filemap_unaccount_folio+0x118/0x278
[  388.713972][ T3898]  __filemap_remove_folio+0x3c/0x178
[  388.714804][ T3898]  filemap_remove_folio+0x48/0xa8
[  388.715619][ T3898]  truncate_inode_folio+0x30/0x4c
[  388.716339][ T3898]  shmem_undo_range+0x208/0x620
[  388.717253][ T3898]  shmem_evict_inode+0x130/0x2dc
[  388.718137][ T3898]  evict+0xb4/0x198
[  388.718877][ T3898]  iput+0x100/0x1b8
[  388.719704][ T3898]  dentry_unlink_inode+0xc0/0x188
[  388.720525][ T3898]  __dentry_kill+0x7c/0x1d4
[  388.721542][ T3898]  dput.part.0+0x30/0xbc
[  388.722602][ T3898]  dput+0x4c/0x50
[  388.723331][ T3898]  __fput+0x110/0x2d4
[  388.724189][ T3898]  ____fput+0x10/0x1c
[  388.724972][ T3898]  task_work_run+0x78/0xd0
[  388.725838][ T3898]  do_notify_resume+0x134/0x164
[  388.726664][ T3898]  el0_svc+0xc8/0xf8
[  388.727715][ T3898]  el0t_64_sync_handler+0x100/0x12c
[  388.728823][ T3898]  el0t_64_sync+0x19c/0x1a0
[  388.738165][ T3898] BUG: Bad page map in process syz.0.38  pte:6000004b2c68c3 pmd:800000046767003
[  388.739543][ T3898] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b2c6
[  388.741344][ T3898] memcg:f4f00000060ad000
[  388.741971][ T3898] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.743383][ T3898] raw: 01ffc0000004002c ffffc1ffc02f2188 ffffc1ffc02d9e48 0000000000000000
[  388.744321][ T3898] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  388.745235][ T3898] page dumped because: bad pte
[  388.745846][ T3898] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f6f00000033ed368 index:0
[  388.747638][ T3898] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  388.748808][ T3898] CPU: 1 PID: 3898 Comm: syz.0.38 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.750326][ T3898] Hardware name: linux,dummy-virt (DT)
[  388.751056][ T3898] Call trace:
[  388.751785][ T3898]  dump_backtrace+0x94/0xec
[  388.753079][ T3898]  show_stack+0x18/0x24
[  388.753866][ T3898]  dump_stack_lvl+0x78/0x90
[  388.755575][ T3898]  dump_stack+0x18/0x24
[  388.756302][ T3898]  print_bad_pte+0x1c8/0x258
[  388.757030][ T3898]  unmap_page_range+0x904/0x1190
[  388.757772][ T3898]  unmap_single_vma.constprop.0+0x4c/0x84
[  388.758622][ T3898]  unmap_vmas+0x7c/0x170
[  388.759391][ T3898]  exit_mmap+0xc0/0x288
[  388.760331][ T3898]  __mmput+0x3c/0x170
[  388.761026][ T3898]  mmput+0x50/0x5c
[  388.761700][ T3898]  do_exit+0x270/0x98c
[  388.763328][ T3898]  do_group_exit+0x34/0x90
[  388.764674][ T3898]  pid_child_should_wake+0x0/0x5c
[  388.765615][ T3898]  invoke_syscall+0x48/0x118
[  388.766598][ T3898]  el0_svc_common.constprop.0+0x40/0xe0
[  388.768204][ T3898]  do_el0_svc+0x1c/0x28
[  388.769784][ T3898]  el0_svc+0x34/0xf8
[  388.771592][ T3898]  el0t_64_sync_handler+0x100/0x12c
[  388.773573][ T3898]  el0t_64_sync+0x19c/0x1a0
[  388.778322][ T3898] BUG: Bad page map in process syz.0.38  pte:6000004b6798c3 pmd:800000046767003
[  388.782679][ T3898] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b679
[  388.785341][ T3898] memcg:f4f00000060ad000
[  388.786700][ T3898] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.791838][ T3898] raw: 01ffc0000004002c ffffc1ffc02cb188 ffffc1ffc02dae88 0000000000000000
[  388.793201][ T3898] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  388.794301][ T3898] page dumped because: bad pte
[  388.795433][ T3898] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f6f00000033ed368 index:1
[  388.801874][ T3898] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  388.805959][ T3898] CPU: 1 PID: 3898 Comm: syz.0.38 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.809138][ T3898] Hardware name: linux,dummy-virt (DT)
[  388.811784][ T3898] Call trace:
[  388.812709][ T3898]  dump_backtrace+0x94/0xec
[  388.814550][ T3898]  show_stack+0x18/0x24
[  388.814981][ T3898]  dump_stack_lvl+0x78/0x90
[  388.815526][ T3898]  dump_stack+0x18/0x24
[  388.816179][ T3898]  print_bad_pte+0x1c8/0x258
[  388.817110][ T3898]  unmap_page_range+0x904/0x1190
[  388.817928][ T3898]  unmap_single_vma.constprop.0+0x4c/0x84
[  388.818487][ T3898]  unmap_vmas+0x7c/0x170
[  388.818914][ T3898]  exit_mmap+0xc0/0x288
[  388.819419][ T3898]  __mmput+0x3c/0x170
[  388.819900][ T3898]  mmput+0x50/0x5c
[  388.820444][ T3898]  do_exit+0x270/0x98c
[  388.820833][ T3898]  do_group_exit+0x34/0x90
[  388.821303][ T3898]  pid_child_should_wake+0x0/0x5c
[  388.821793][ T3898]  invoke_syscall+0x48/0x118
[  388.822201][ T3898]  el0_svc_common.constprop.0+0x40/0xe0
[  388.822615][ T3898]  do_el0_svc+0x1c/0x28
[  388.822983][ T3898]  el0_svc+0x34/0xf8
[  388.823420][ T3898]  el0t_64_sync_handler+0x100/0x12c
[  388.824119][ T3898]  el0t_64_sync+0x19c/0x1a0
[  388.829374][ T3898] BUG: Bad page state in process syz.0.38  pfn:4b2c6
[  388.830857][ T3898] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b2c6
[  388.831462][ T3898] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.832134][ T3898] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  388.832648][ T3898] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  388.833139][ T3898] page dumped because: nonzero mapcount
[  388.833625][ T3898] Modules linked in:
[  388.834002][ T3898] CPU: 1 PID: 3898 Comm: syz.0.38 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.834694][ T3898] Hardware name: linux,dummy-virt (DT)
[  388.835111][ T3898] Call trace:
[  388.835813][ T3898]  dump_backtrace+0x94/0xec
[  388.836765][ T3898]  show_stack+0x18/0x24
[  388.837471][ T3898]  dump_stack_lvl+0x78/0x90
[  388.838237][ T3898]  dump_stack+0x18/0x24
[  388.838950][ T3898]  bad_page+0x84/0x11c
[  388.840750][ T3898]  free_page_is_bad_report+0x98/0xa4
[  388.841298][ T3898]  free_unref_folios+0x4c0/0x624
[  388.842456][ T3898]  folios_put_refs+0x108/0x284
[  388.844885][ T3898]  free_pages_and_swap_cache+0x14c/0x164
[  388.845896][ T3898]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  388.846646][ T3898]  tlb_flush_mmu+0x54/0xe4
[  388.847512][ T3898]  unmap_page_range+0xab0/0x1190
[  388.848728][ T3898]  unmap_single_vma.constprop.0+0x4c/0x84
[  388.851330][ T3898]  unmap_vmas+0x7c/0x170
[  388.853361][ T3898]  exit_mmap+0xc0/0x288
[  388.854079][ T3898]  __mmput+0x3c/0x170
[  388.854961][ T3898]  mmput+0x50/0x5c
[  388.855766][ T3898]  do_exit+0x270/0x98c
[  388.856494][ T3898]  do_group_exit+0x34/0x90
[  388.857368][ T3898]  pid_child_should_wake+0x0/0x5c
[  388.858191][ T3898]  invoke_syscall+0x48/0x118
[  388.858923][ T3898]  el0_svc_common.constprop.0+0x40/0xe0
[  388.859571][ T3898]  do_el0_svc+0x1c/0x28
[  388.860106][ T3898]  el0_svc+0x34/0xf8
[  388.860795][ T3898]  el0t_64_sync_handler+0x100/0x12c
[  388.861566][ T3898]  el0t_64_sync+0x19c/0x1a0
[  388.863395][ T3898] BUG: Bad page state in process syz.0.38  pfn:4b679
[  388.863890][ T3898] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b679
[  388.864520][ T3898] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  388.865321][ T3898] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  388.865871][ T3898] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  388.866894][ T3898] page dumped because: nonzero mapcount
[  388.867635][ T3898] Modules linked in:
[  388.868334][ T3898] CPU: 1 PID: 3898 Comm: syz.0.38 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  388.869944][ T3898] Hardware name: linux,dummy-virt (DT)
[  388.870449][ T3898] Call trace:
[  388.870799][ T3898]  dump_backtrace+0x94/0xec
[  388.871317][ T3898]  show_stack+0x18/0x24
[  388.871733][ T3898]  dump_stack_lvl+0x78/0x90
[  388.872143][ T3898]  dump_stack+0x18/0x24
[  388.872911][ T3898]  bad_page+0x84/0x11c
[  388.873750][ T3898]  free_page_is_bad_report+0x98/0xa4
[  388.874302][ T3898]  free_unref_folios+0x4c0/0x624
[  388.874798][ T3898]  folios_put_refs+0x108/0x284
[  388.875416][ T3898]  free_pages_and_swap_cache+0x14c/0x164
[  388.875880][ T3898]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  388.876611][ T3898]  tlb_flush_mmu+0x54/0xe4
[  388.877424][ T3898]  unmap_page_range+0xab0/0x1190
[  388.878248][ T3898]  unmap_single_vma.constprop.0+0x4c/0x84
[  388.879073][ T3898]  unmap_vmas+0x7c/0x170
[  388.880243][ T3898]  exit_mmap+0xc0/0x288
[  388.881122][ T3898]  __mmput+0x3c/0x170
[  388.882022][ T3898]  mmput+0x50/0x5c
[  388.882743][ T3898]  do_exit+0x270/0x98c
[  388.883529][ T3898]  do_group_exit+0x34/0x90
[  388.884164][ T3898]  pid_child_should_wake+0x0/0x5c
[  388.885052][ T3898]  invoke_syscall+0x48/0x118
[  388.885846][ T3898]  el0_svc_common.constprop.0+0x40/0xe0
[  388.886646][ T3898]  do_el0_svc+0x1c/0x28
[  388.887684][ T3898]  el0_svc+0x34/0xf8
[  388.888346][ T3898]  el0t_64_sync_handler+0x100/0x12c
[  388.889173][ T3898]  el0t_64_sync+0x19c/0x1a0
[  389.135478][ T3900] BUG: Bad page cache in process syz.0.39  pfn:47ee8
[  389.137175][ T3900] page: refcount:4 mapcount:1 mapping:0000000016834ae7 index:0x0 pfn:0x47ee8
[  389.138968][ T3900] memcg:f4f00000060ad000
[  389.139801][ T3900] aops:shmem_aops ino:c
[  389.140689][ T3900] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.142153][ T3900] raw: 01ffc0000004002d ffffc1ffc02d9448 ffffc1ffc02db008 f4f00000072c9e30
[  389.143250][ T3900] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  389.144971][ T3900] page dumped because: still mapped when deleted
[  389.145754][ T3900] CPU: 1 PID: 3900 Comm: syz.0.39 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.148659][ T3900] Hardware name: linux,dummy-virt (DT)
[  389.152209][ T3900] Call trace:
[  389.153151][ T3900]  dump_backtrace+0x94/0xec
[  389.154241][ T3900]  show_stack+0x18/0x24
[  389.155027][ T3900]  dump_stack_lvl+0x78/0x90
[  389.155864][ T3900]  dump_stack+0x18/0x24
[  389.156704][ T3900]  filemap_unaccount_folio+0x118/0x278
[  389.157594][ T3900]  __filemap_remove_folio+0x3c/0x178
[  389.158501][ T3900]  filemap_remove_folio+0x48/0xa8
[  389.159294][ T3900]  truncate_inode_folio+0x30/0x4c
[  389.160603][ T3900]  shmem_undo_range+0x208/0x620
[  389.161567][ T3900]  shmem_evict_inode+0x130/0x2dc
[  389.162559][ T3900]  evict+0xb4/0x198
[  389.163403][ T3900]  iput+0x100/0x1b8
[  389.164217][ T3900]  dentry_unlink_inode+0xc0/0x188
[  389.165020][ T3900]  __dentry_kill+0x7c/0x1d4
[  389.166554][ T3900]  dput.part.0+0x30/0xbc
[  389.167570][ T3900]  dput+0x4c/0x50
[  389.168293][ T3900]  __fput+0x110/0x2d4
[  389.169018][ T3900]  ____fput+0x10/0x1c
[  389.170541][ T3900]  task_work_run+0x78/0xd0
[  389.171512][ T3900]  do_notify_resume+0x134/0x164
[  389.172359][ T3900]  el0_svc+0xc8/0xf8
[  389.172965][ T3900]  el0t_64_sync_handler+0x100/0x12c
[  389.173704][ T3900]  el0t_64_sync+0x19c/0x1a0
[  389.177252][ T3900] BUG: Bad page cache in process syz.0.39  pfn:4b6c0
[  389.178195][ T3900] page: refcount:4 mapcount:1 mapping:0000000016834ae7 index:0x1 pfn:0x4b6c0
[  389.179314][ T3900] memcg:f4f00000060ad000
[  389.180662][ T3900] aops:shmem_aops ino:c
[  389.181553][ T3900] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.183328][ T3900] raw: 01ffc0000004002d ffffc1ffc01fba08 ffffc1ffc02d5a08 f4f00000072c9e30
[  389.185364][ T3900] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  389.186715][ T3900] page dumped because: still mapped when deleted
[  389.188247][ T3900] CPU: 1 PID: 3900 Comm: syz.0.39 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.189690][ T3900] Hardware name: linux,dummy-virt (DT)
[  389.190780][ T3900] Call trace:
[  389.191393][ T3900]  dump_backtrace+0x94/0xec
[  389.192206][ T3900]  show_stack+0x18/0x24
[  389.192928][ T3900]  dump_stack_lvl+0x78/0x90
[  389.193760][ T3900]  dump_stack+0x18/0x24
[  389.194557][ T3900]  filemap_unaccount_folio+0x118/0x278
[  389.195480][ T3900]  __filemap_remove_folio+0x3c/0x178
[  389.196254][ T3900]  filemap_remove_folio+0x48/0xa8
[  389.197054][ T3900]  truncate_inode_folio+0x30/0x4c
[  389.197875][ T3900]  shmem_undo_range+0x208/0x620
[  389.198736][ T3900]  shmem_evict_inode+0x130/0x2dc
[  389.199636][ T3900]  evict+0xb4/0x198
[  389.200715][ T3900]  iput+0x100/0x1b8
[  389.201432][ T3900]  dentry_unlink_inode+0xc0/0x188
[  389.202286][ T3900]  __dentry_kill+0x7c/0x1d4
[  389.203021][ T3900]  dput.part.0+0x30/0xbc
[  389.203851][ T3900]  dput+0x4c/0x50
[  389.204643][ T3900]  __fput+0x110/0x2d4
[  389.205386][ T3900]  ____fput+0x10/0x1c
[  389.206131][ T3900]  task_work_run+0x78/0xd0
[  389.206878][ T3900]  do_notify_resume+0x134/0x164
[  389.207701][ T3900]  el0_svc+0xc8/0xf8
[  389.208385][ T3900]  el0t_64_sync_handler+0x100/0x12c
[  389.209539][ T3900]  el0t_64_sync+0x19c/0x1a0
[  389.219006][ T3901] BUG: Bad page map in process syz.0.39  pte:60000047ee88c3 pmd:8000000440e3003
[  389.221289][ T3901] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x47ee8
[  389.222383][ T3901] memcg:f4f00000060ad000
[  389.223321][ T3901] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.224677][ T3901] raw: 01ffc0000004002c ffffc1ffc02d9448 ffffc1ffc02db008 0000000000000000
[  389.225664][ T3901] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  389.226602][ T3901] page dumped because: bad pte
[  389.227343][ T3901] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f6f00000033ed368 index:0
[  389.229115][ T3901] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  389.230807][ T3901] CPU: 0 PID: 3901 Comm: syz.0.39 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.235376][ T3901] Hardware name: linux,dummy-virt (DT)
[  389.236116][ T3901] Call trace:
[  389.236749][ T3901]  dump_backtrace+0x94/0xec
[  389.237485][ T3901]  show_stack+0x18/0x24
[  389.238156][ T3901]  dump_stack_lvl+0x78/0x90
[  389.238982][ T3901]  dump_stack+0x18/0x24
[  389.241413][ T3901]  print_bad_pte+0x1c8/0x258
[  389.243275][ T3901]  unmap_page_range+0x904/0x1190
[  389.244118][ T3901]  unmap_single_vma.constprop.0+0x4c/0x84
[  389.244979][ T3901]  unmap_vmas+0x7c/0x170
[  389.245752][ T3901]  exit_mmap+0xc0/0x288
[  389.246476][ T3901]  __mmput+0x3c/0x170
[  389.248003][ T3901]  mmput+0x50/0x5c
[  389.249899][ T3901]  do_exit+0x270/0x98c
[  389.251346][ T3901]  do_group_exit+0x34/0x90
[  389.253483][ T3901]  copy_siginfo_to_user+0x0/0xec
[  389.255835][ T3901]  do_signal+0x94/0x1450
[  389.258020][ T3901]  do_notify_resume+0xd8/0x164
[  389.259830][ T3901]  el0_svc+0xc8/0xf8
[  389.260746][ T3901]  el0t_64_sync_handler+0x100/0x12c
[  389.261585][ T3901]  el0t_64_sync+0x19c/0x1a0
[  389.275435][ T3901] BUG: Bad page map in process syz.0.39  pte:6000004b6c08c3 pmd:8000000440e3003
[  389.277159][ T3901] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b6c0
[  389.278288][ T3901] memcg:f4f00000060ad000
[  389.281167][ T3901] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.283838][ T3901] raw: 01ffc0000004002c ffffc1ffc01fba08 ffffc1ffc02d5a08 0000000000000000
[  389.285284][ T3901] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  389.288369][ T3901] page dumped because: bad pte
[  389.288989][ T3901] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f6f00000033ed368 index:1
[  389.290831][ T3901] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  389.291932][ T3901] CPU: 0 PID: 3901 Comm: syz.0.39 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.293161][ T3901] Hardware name: linux,dummy-virt (DT)
[  389.293835][ T3901] Call trace:
[  389.294306][ T3901]  dump_backtrace+0x94/0xec
[  389.294997][ T3901]  show_stack+0x18/0x24
[  389.295711][ T3901]  dump_stack_lvl+0x78/0x90
[  389.296536][ T3901]  dump_stack+0x18/0x24
[  389.297311][ T3901]  print_bad_pte+0x1c8/0x258
[  389.298055][ T3901]  unmap_page_range+0x904/0x1190
[  389.298973][ T3901]  unmap_single_vma.constprop.0+0x4c/0x84
[  389.300676][ T3901]  unmap_vmas+0x7c/0x170
[  389.302280][ T3901]  exit_mmap+0xc0/0x288
[  389.303116][ T3901]  __mmput+0x3c/0x170
[  389.303984][ T3901]  mmput+0x50/0x5c
[  389.305225][ T3901]  do_exit+0x270/0x98c
[  389.306430][ T3901]  do_group_exit+0x34/0x90
[  389.307167][ T3901]  copy_siginfo_to_user+0x0/0xec
[  389.308056][ T3901]  do_signal+0x94/0x1450
[  389.308914][ T3901]  do_notify_resume+0xd8/0x164
[  389.310227][ T3901]  el0_svc+0xc8/0xf8
[  389.312496][ T3901]  el0t_64_sync_handler+0x100/0x12c
[  389.314762][ T3901]  el0t_64_sync+0x19c/0x1a0
[  389.319027][ T3901] BUG: Bad page state in process syz.0.39  pfn:47ee8
[  389.324081][ T3901] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x47ee8
[  389.325414][ T3901] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.327052][ T3901] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  389.328165][ T3901] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  389.329179][ T3901] page dumped because: nonzero mapcount
[  389.331115][ T3901] Modules linked in:
[  389.333058][ T3901] CPU: 0 PID: 3901 Comm: syz.0.39 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.335545][ T3901] Hardware name: linux,dummy-virt (DT)
[  389.336273][ T3901] Call trace:
[  389.337043][ T3901]  dump_backtrace+0x94/0xec
[  389.338317][ T3901]  show_stack+0x18/0x24
[  389.340421][ T3901]  dump_stack_lvl+0x78/0x90
[  389.341274][ T3901]  dump_stack+0x18/0x24
[  389.341961][ T3901]  bad_page+0x84/0x11c
[  389.342894][ T3901]  free_page_is_bad_report+0x98/0xa4
[  389.344265][ T3901]  free_unref_folios+0x4c0/0x624
[  389.345005][ T3901]  folios_put_refs+0x108/0x284
[  389.345954][ T3901]  free_pages_and_swap_cache+0x14c/0x164
[  389.346931][ T3901]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  389.347802][ T3901]  tlb_flush_mmu+0x54/0xe4
[  389.348522][ T3901]  unmap_page_range+0xab0/0x1190
[  389.349289][ T3901]  unmap_single_vma.constprop.0+0x4c/0x84
[  389.351246][ T3901]  unmap_vmas+0x7c/0x170
[  389.352503][ T3901]  exit_mmap+0xc0/0x288
[  389.353514][ T3901]  __mmput+0x3c/0x170
[  389.354248][ T3901]  mmput+0x50/0x5c
[  389.354944][ T3901]  do_exit+0x270/0x98c
[  389.355675][ T3901]  do_group_exit+0x34/0x90
[  389.356425][ T3901]  copy_siginfo_to_user+0x0/0xec
[  389.357228][ T3901]  do_signal+0x94/0x1450
[  389.357933][ T3901]  do_notify_resume+0xd8/0x164
[  389.358883][ T3901]  el0_svc+0xc8/0xf8
[  389.360416][ T3901]  el0t_64_sync_handler+0x100/0x12c
[  389.361382][ T3901]  el0t_64_sync+0x19c/0x1a0
[  389.362785][ T3901] BUG: Bad page state in process syz.0.39  pfn:4b6c0
[  389.363937][ T3901] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b6c0
[  389.365098][ T3901] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.368814][ T3901] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  389.370414][ T3901] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  389.373363][ T3901] page dumped because: nonzero mapcount
[  389.376366][ T3901] Modules linked in:
[  389.377075][ T3901] CPU: 0 PID: 3901 Comm: syz.0.39 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.378369][ T3901] Hardware name: linux,dummy-virt (DT)
[  389.379119][ T3901] Call trace:
[  389.380262][ T3901]  dump_backtrace+0x94/0xec
[  389.381087][ T3901]  show_stack+0x18/0x24
[  389.383025][ T3901]  dump_stack_lvl+0x78/0x90
[  389.383944][ T3901]  dump_stack+0x18/0x24
[  389.384781][ T3901]  bad_page+0x84/0x11c
[  389.385567][ T3901]  free_page_is_bad_report+0x98/0xa4
[  389.386392][ T3901]  free_unref_folios+0x4c0/0x624
[  389.387459][ T3901]  folios_put_refs+0x108/0x284
[  389.388334][ T3901]  free_pages_and_swap_cache+0x14c/0x164
[  389.389356][ T3901]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  389.391179][ T3901]  tlb_flush_mmu+0x54/0xe4
[  389.393411][ T3901]  unmap_page_range+0xab0/0x1190
[  389.394527][ T3901]  unmap_single_vma.constprop.0+0x4c/0x84
[  389.396767][ T3901]  unmap_vmas+0x7c/0x170
[  389.397494][ T3901]  exit_mmap+0xc0/0x288
[  389.398172][ T3901]  __mmput+0x3c/0x170
[  389.398837][ T3901]  mmput+0x50/0x5c
[  389.399562][ T3901]  do_exit+0x270/0x98c
[  389.400410][ T3901]  do_group_exit+0x34/0x90
[  389.401160][ T3901]  copy_siginfo_to_user+0x0/0xec
[  389.401963][ T3901]  do_signal+0x94/0x1450
[  389.402749][ T3901]  do_notify_resume+0xd8/0x164
[  389.403780][ T3901]  el0_svc+0xc8/0xf8
[  389.404647][ T3901]  el0t_64_sync_handler+0x100/0x12c
[  389.405495][ T3901]  el0t_64_sync+0x19c/0x1a0
[  389.633169][ T3902] BUG: Bad page cache in process syz.0.40  pfn:4b350
[  389.634588][ T3902] page: refcount:4 mapcount:1 mapping:000000008b8bbffe index:0x0 pfn:0x4b350
[  389.639542][ T3902] memcg:f4f00000060ad000
[  389.640915][ T3902] aops:shmem_aops ino:40f
[  389.642210][ T3902] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.644715][ T3902] raw: 01ffc0000004002d ffffc1ffc03a75c8 ffffc1ffc02dae48 fbf00000070f3a50
[  389.646065][ T3902] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  389.646639][ T3902] page dumped because: still mapped when deleted
[  389.647161][ T3902] CPU: 1 PID: 3902 Comm: syz.0.40 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.648205][ T3902] Hardware name: linux,dummy-virt (DT)
[  389.649000][ T3902] Call trace:
[  389.649405][ T3902]  dump_backtrace+0x94/0xec
[  389.650206][ T3902]  show_stack+0x18/0x24
[  389.650890][ T3902]  dump_stack_lvl+0x78/0x90
[  389.651678][ T3902]  dump_stack+0x18/0x24
[  389.652712][ T3902]  filemap_unaccount_folio+0x118/0x278
[  389.653439][ T3902]  __filemap_remove_folio+0x3c/0x178
[  389.654187][ T3902]  filemap_remove_folio+0x48/0xa8
[  389.654930][ T3902]  truncate_inode_folio+0x30/0x4c
[  389.655781][ T3902]  shmem_undo_range+0x208/0x620
[  389.656531][ T3902]  shmem_evict_inode+0x130/0x2dc
[  389.657277][ T3902]  evict+0xb4/0x198
[  389.658467][ T3902]  iput+0x100/0x1b8
[  389.659092][ T3902]  dentry_unlink_inode+0xc0/0x188
[  389.659956][ T3902]  __dentry_kill+0x7c/0x1d4
[  389.660986][ T3902]  dput.part.0+0x30/0xbc
[  389.661662][ T3902]  dput+0x4c/0x50
[  389.662320][ T3902]  __fput+0x110/0x2d4
[  389.662937][ T3902]  ____fput+0x10/0x1c
[  389.664005][ T3902]  task_work_run+0x78/0xd0
[  389.664715][ T3902]  do_notify_resume+0x134/0x164
[  389.665471][ T3902]  el0_svc+0xc8/0xf8
[  389.666184][ T3902]  el0t_64_sync_handler+0x100/0x12c
[  389.667039][ T3902]  el0t_64_sync+0x19c/0x1a0
[  389.672017][ T3902] BUG: Bad page cache in process syz.0.40  pfn:4b6b9
[  389.673583][ T3902] page: refcount:4 mapcount:1 mapping:000000008b8bbffe index:0x1 pfn:0x4b6b9
[  389.674579][ T3902] memcg:f4f00000060ad000
[  389.675193][ T3902] aops:shmem_aops ino:40f
[  389.675989][ T3902] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.677326][ T3902] raw: 01ffc0000004002d ffffc1ffc02cd408 ffffc1ffc02d9e88 fbf00000070f3a50
[  389.678286][ T3902] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  389.680010][ T3902] page dumped because: still mapped when deleted
[  389.681547][ T3902] CPU: 1 PID: 3902 Comm: syz.0.40 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.682880][ T3902] Hardware name: linux,dummy-virt (DT)
[  389.683746][ T3902] Call trace:
[  389.684337][ T3902]  dump_backtrace+0x94/0xec
[  389.685148][ T3902]  show_stack+0x18/0x24
[  389.685925][ T3902]  dump_stack_lvl+0x78/0x90
[  389.686666][ T3902]  dump_stack+0x18/0x24
[  389.687508][ T3902]  filemap_unaccount_folio+0x118/0x278
[  389.688401][ T3902]  __filemap_remove_folio+0x3c/0x178
[  389.689198][ T3902]  filemap_remove_folio+0x48/0xa8
[  389.690155][ T3902]  truncate_inode_folio+0x30/0x4c
[  389.690666][ T3902]  shmem_undo_range+0x208/0x620
[  389.691075][ T3902]  shmem_evict_inode+0x130/0x2dc
[  389.691632][ T3902]  evict+0xb4/0x198
[  389.692271][ T3902]  iput+0x100/0x1b8
[  389.692767][ T3902]  dentry_unlink_inode+0xc0/0x188
[  389.693244][ T3902]  __dentry_kill+0x7c/0x1d4
[  389.693634][ T3902]  dput.part.0+0x30/0xbc
[  389.694078][ T3902]  dput+0x4c/0x50
[  389.694464][ T3902]  __fput+0x110/0x2d4
[  389.694854][ T3902]  ____fput+0x10/0x1c
[  389.695450][ T3902]  task_work_run+0x78/0xd0
[  389.696172][ T3902]  do_notify_resume+0x134/0x164
[  389.696924][ T3902]  el0_svc+0xc8/0xf8
[  389.697613][ T3902]  el0t_64_sync_handler+0x100/0x12c
[  389.698153][ T3902]  el0t_64_sync+0x19c/0x1a0
[  389.703425][ T3902] BUG: Bad page map in process syz.0.40  pte:6000004b3508c3 pmd:8000000470e7003
[  389.704644][ T3902] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b350
[  389.705286][ T3902] memcg:f4f00000060ad000
[  389.705640][ T3902] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.706388][ T3902] raw: 01ffc0000004002c ffffc1ffc02daec8 ffffc1ffc02dae48 0000000000000000
[  389.706998][ T3902] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  389.707571][ T3902] page dumped because: bad pte
[  389.707946][ T3902] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f0f00000033ed5f8 index:0
[  389.709238][ T3902] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  389.711014][ T3902] CPU: 1 PID: 3902 Comm: syz.0.40 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.712377][ T3902] Hardware name: linux,dummy-virt (DT)
[  389.713121][ T3902] Call trace:
[  389.713700][ T3902]  dump_backtrace+0x94/0xec
[  389.714472][ T3902]  show_stack+0x18/0x24
[  389.715130][ T3902]  dump_stack_lvl+0x78/0x90
[  389.715868][ T3902]  dump_stack+0x18/0x24
[  389.716617][ T3902]  print_bad_pte+0x1c8/0x258
[  389.717335][ T3902]  unmap_page_range+0x904/0x1190
[  389.718087][ T3902]  unmap_single_vma.constprop.0+0x4c/0x84
[  389.718897][ T3902]  unmap_vmas+0x7c/0x170
[  389.720718][ T3902]  exit_mmap+0xc0/0x288
[  389.721496][ T3902]  __mmput+0x3c/0x170
[  389.722666][ T3902]  mmput+0x50/0x5c
[  389.723665][ T3902]  do_exit+0x270/0x98c
[  389.724406][ T3902]  do_group_exit+0x34/0x90
[  389.724984][ T3902]  pid_child_should_wake+0x0/0x5c
[  389.725637][ T3902]  invoke_syscall+0x48/0x118
[  389.726323][ T3902]  el0_svc_common.constprop.0+0x40/0xe0
[  389.726937][ T3902]  do_el0_svc+0x1c/0x28
[  389.727506][ T3902]  el0_svc+0x34/0xf8
[  389.728089][ T3902]  el0t_64_sync_handler+0x100/0x12c
[  389.728606][ T3902]  el0t_64_sync+0x19c/0x1a0
[  389.742500][ T3902] BUG: Bad page map in process syz.0.40  pte:6000004b6b98c3 pmd:8000000470e7003
[  389.745016][ T3902] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b6b9
[  389.753107][ T3902] memcg:f4f00000060ad000
[  389.754180][ T3902] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.756601][ T3902] raw: 01ffc0000004002c ffffc1ffc02cd408 ffffc1ffc02d9e88 0000000000000000
[  389.758465][ T3902] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  389.761308][ T3902] page dumped because: bad pte
[  389.762412][ T3902] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f0f00000033ed5f8 index:1
[  389.763400][ T3902] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  389.764483][ T3902] CPU: 1 PID: 3902 Comm: syz.0.40 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.765811][ T3902] Hardware name: linux,dummy-virt (DT)
[  389.766457][ T3902] Call trace:
[  389.766783][ T3902]  dump_backtrace+0x94/0xec
[  389.767355][ T3902]  show_stack+0x18/0x24
[  389.767758][ T3902]  dump_stack_lvl+0x78/0x90
[  389.768199][ T3902]  dump_stack+0x18/0x24
[  389.768684][ T3902]  print_bad_pte+0x1c8/0x258
[  389.769079][ T3902]  unmap_page_range+0x904/0x1190
[  389.769463][ T3902]  unmap_single_vma.constprop.0+0x4c/0x84
[  389.770147][ T3902]  unmap_vmas+0x7c/0x170
[  389.770635][ T3902]  exit_mmap+0xc0/0x288
[  389.771327][ T3902]  __mmput+0x3c/0x170
[  389.772077][ T3902]  mmput+0x50/0x5c
[  389.772729][ T3902]  do_exit+0x270/0x98c
[  389.773443][ T3902]  do_group_exit+0x34/0x90
[  389.775955][ T3902]  pid_child_should_wake+0x0/0x5c
[  389.778481][ T3902]  invoke_syscall+0x48/0x118
[  389.779333][ T3902]  el0_svc_common.constprop.0+0x40/0xe0
[  389.780796][ T3902]  do_el0_svc+0x1c/0x28
[  389.781627][ T3902]  el0_svc+0x34/0xf8
[  389.782455][ T3902]  el0t_64_sync_handler+0x100/0x12c
[  389.782949][ T3902]  el0t_64_sync+0x19c/0x1a0
[  389.784816][ T3902] BUG: Bad page state in process syz.0.40  pfn:4b350
[  389.785393][ T3902] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b350
[  389.786026][ T3902] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.786767][ T3902] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  389.787952][ T3902] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  389.788811][ T3902] page dumped because: nonzero mapcount
[  389.789257][ T3902] Modules linked in:
[  389.790921][ T3902] CPU: 1 PID: 3902 Comm: syz.0.40 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.792278][ T3902] Hardware name: linux,dummy-virt (DT)
[  389.792801][ T3902] Call trace:
[  389.793227][ T3902]  dump_backtrace+0x94/0xec
[  389.793852][ T3902]  show_stack+0x18/0x24
[  389.794395][ T3902]  dump_stack_lvl+0x78/0x90
[  389.795039][ T3902]  dump_stack+0x18/0x24
[  389.795770][ T3902]  bad_page+0x84/0x11c
[  389.796515][ T3902]  free_page_is_bad_report+0x98/0xa4
[  389.797833][ T3902]  free_unref_folios+0x4c0/0x624
[  389.799558][ T3902]  folios_put_refs+0x108/0x284
[  389.800815][ T3902]  free_pages_and_swap_cache+0x14c/0x164
[  389.802187][ T3902]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  389.803146][ T3902]  tlb_flush_mmu+0x54/0xe4
[  389.803904][ T3902]  unmap_page_range+0xab0/0x1190
[  389.804475][ T3902]  unmap_single_vma.constprop.0+0x4c/0x84
[  389.805271][ T3902]  unmap_vmas+0x7c/0x170
[  389.805996][ T3902]  exit_mmap+0xc0/0x288
[  389.806643][ T3902]  __mmput+0x3c/0x170
[  389.807382][ T3902]  mmput+0x50/0x5c
[  389.808168][ T3902]  do_exit+0x270/0x98c
[  389.808882][ T3902]  do_group_exit+0x34/0x90
[  389.810311][ T3902]  pid_child_should_wake+0x0/0x5c
[  389.813157][ T3902]  invoke_syscall+0x48/0x118
[  389.815265][ T3902]  el0_svc_common.constprop.0+0x40/0xe0
[  389.818682][ T3902]  do_el0_svc+0x1c/0x28
[  389.820723][ T3902]  el0_svc+0x34/0xf8
[  389.821603][ T3902]  el0t_64_sync_handler+0x100/0x12c
[  389.822570][ T3902]  el0t_64_sync+0x19c/0x1a0
[  389.837323][ T3902] BUG: Bad page state in process syz.0.40  pfn:4b6b9
[  389.838589][ T3902] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b6b9
[  389.850508][ T3902] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  389.852164][ T3902] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  389.853492][ T3902] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  389.854412][ T3902] page dumped because: nonzero mapcount
[  389.855115][ T3902] Modules linked in:
[  389.856101][ T3902] CPU: 0 PID: 3902 Comm: syz.0.40 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  389.858044][ T3902] Hardware name: linux,dummy-virt (DT)
[  389.858912][ T3902] Call trace:
[  389.859515][ T3902]  dump_backtrace+0x94/0xec
[  389.860553][ T3902]  show_stack+0x18/0x24
[  389.861330][ T3902]  dump_stack_lvl+0x78/0x90
[  389.862108][ T3902]  dump_stack+0x18/0x24
[  389.862906][ T3902]  bad_page+0x84/0x11c
[  389.863849][ T3902]  free_page_is_bad_report+0x98/0xa4
[  389.864726][ T3902]  free_unref_folios+0x4c0/0x624
[  389.865977][ T3902]  folios_put_refs+0x108/0x284
[  389.866924][ T3902]  free_pages_and_swap_cache+0x14c/0x164
[  389.867907][ T3902]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  389.868800][ T3902]  tlb_flush_mmu+0x54/0xe4
[  389.869765][ T3902]  unmap_page_range+0xab0/0x1190
[  389.870687][ T3902]  unmap_single_vma.constprop.0+0x4c/0x84
[  389.872138][ T3902]  unmap_vmas+0x7c/0x170
[  389.873004][ T3902]  exit_mmap+0xc0/0x288
[  389.873980][ T3902]  __mmput+0x3c/0x170
[  389.874850][ T3902]  mmput+0x50/0x5c
[  389.875622][ T3902]  do_exit+0x270/0x98c
[  389.876559][ T3902]  do_group_exit+0x34/0x90
[  389.877379][ T3902]  pid_child_should_wake+0x0/0x5c
[  389.878248][ T3902]  invoke_syscall+0x48/0x118
[  389.879238][ T3902]  el0_svc_common.constprop.0+0x40/0xe0
[  389.880521][ T3902]  do_el0_svc+0x1c/0x28
[  389.881445][ T3902]  el0_svc+0x34/0xf8
[  389.882209][ T3902]  el0t_64_sync_handler+0x100/0x12c
[  389.883106][ T3902]  el0t_64_sync+0x19c/0x1a0
[  390.076140][ T3904] BUG: Bad page cache in process syz.0.41  pfn:476f2
[  390.077331][ T3904] page: refcount:4 mapcount:1 mapping:00000000c6de0044 index:0x0 pfn:0x476f2
[  390.078466][ T3904] memcg:f4f00000060ad000
[  390.079188][ T3904] aops:shmem_aops ino:d
[  390.080280][ T3904] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.081809][ T3904] raw: 01ffc0000004002d ffffc1ffc02f7cc8 ffffc1ffc0000348 f0f0000003b857f0
[  390.082842][ T3904] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  390.083855][ T3904] page dumped because: still mapped when deleted
[  390.084751][ T3904] CPU: 0 PID: 3904 Comm: syz.0.41 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.086117][ T3904] Hardware name: linux,dummy-virt (DT)
[  390.086910][ T3904] Call trace:
[  390.087547][ T3904]  dump_backtrace+0x94/0xec
[  390.088442][ T3904]  show_stack+0x18/0x24
[  390.089202][ T3904]  dump_stack_lvl+0x78/0x90
[  390.090314][ T3904]  dump_stack+0x18/0x24
[  390.091733][ T3904]  filemap_unaccount_folio+0x118/0x278
[  390.092733][ T3904]  __filemap_remove_folio+0x3c/0x178
[  390.093661][ T3904]  filemap_remove_folio+0x48/0xa8
[  390.094504][ T3904]  truncate_inode_folio+0x30/0x4c
[  390.095250][ T3904]  shmem_undo_range+0x208/0x620
[  390.096023][ T3904]  shmem_evict_inode+0x130/0x2dc
[  390.096792][ T3904]  evict+0xb4/0x198
[  390.097437][ T3904]  iput+0x100/0x1b8
[  390.098121][ T3904]  dentry_unlink_inode+0xc0/0x188
[  390.098846][ T3904]  __dentry_kill+0x7c/0x1d4
[  390.099731][ T3904]  dput.part.0+0x30/0xbc
[  390.100685][ T3904]  dput+0x4c/0x50
[  390.101435][ T3904]  __fput+0x110/0x2d4
[  390.102137][ T3904]  ____fput+0x10/0x1c
[  390.102844][ T3904]  task_work_run+0x78/0xd0
[  390.103562][ T3904]  do_notify_resume+0x134/0x164
[  390.104279][ T3904]  el0_svc+0xc8/0xf8
[  390.105042][ T3904]  el0t_64_sync_handler+0x100/0x12c
[  390.105887][ T3904]  el0t_64_sync+0x19c/0x1a0
[  390.111842][ T3904] BUG: Bad page cache in process syz.0.41  pfn:4000d
[  390.112874][ T3904] page: refcount:4 mapcount:1 mapping:00000000c6de0044 index:0x1 pfn:0x4000d
[  390.114071][ T3904] memcg:f4f00000060ad000
[  390.114700][ T3904] aops:shmem_aops ino:d
[  390.116657][ T3904] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.121921][ T3904] raw: 01ffc0000004002d ffffc1ffc01dbc88 ffffc1ffc0205888 f0f0000003b857f0
[  390.123822][ T3904] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  390.125018][ T3904] page dumped because: still mapped when deleted
[  390.126008][ T3904] CPU: 0 PID: 3904 Comm: syz.0.41 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.127704][ T3904] Hardware name: linux,dummy-virt (DT)
[  390.128862][ T3904] Call trace:
[  390.129614][ T3904]  dump_backtrace+0x94/0xec
[  390.130941][ T3904]  show_stack+0x18/0x24
[  390.132047][ T3904]  dump_stack_lvl+0x78/0x90
[  390.132876][ T3904]  dump_stack+0x18/0x24
[  390.133673][ T3904]  filemap_unaccount_folio+0x118/0x278
[  390.134595][ T3904]  __filemap_remove_folio+0x3c/0x178
[  390.135354][ T3904]  filemap_remove_folio+0x48/0xa8
[  390.136174][ T3904]  truncate_inode_folio+0x30/0x4c
[  390.137136][ T3904]  shmem_undo_range+0x208/0x620
[  390.137936][ T3904]  shmem_evict_inode+0x130/0x2dc
[  390.138894][ T3904]  evict+0xb4/0x198
[  390.139937][ T3904]  iput+0x100/0x1b8
[  390.141126][ T3904]  dentry_unlink_inode+0xc0/0x188
[  390.142087][ T3904]  __dentry_kill+0x7c/0x1d4
[  390.143286][ T3904]  dput.part.0+0x30/0xbc
[  390.144105][ T3904]  dput+0x4c/0x50
[  390.144746][ T3904]  __fput+0x110/0x2d4
[  390.145386][ T3904]  ____fput+0x10/0x1c
[  390.146061][ T3904]  task_work_run+0x78/0xd0
[  390.146827][ T3904]  do_notify_resume+0x134/0x164
[  390.147668][ T3904]  el0_svc+0xc8/0xf8
[  390.148476][ T3904]  el0t_64_sync_handler+0x100/0x12c
[  390.149373][ T3904]  el0t_64_sync+0x19c/0x1a0
[  390.176720][ T3905] BUG: Bad page map in process syz.0.41  pte:600000476f28c3 pmd:8000000471b1003
[  390.177851][ T3905] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x476f2
[  390.178981][ T3905] memcg:f4f00000060ad000
[  390.180699][ T3905] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.182729][ T3905] raw: 01ffc0000004002c ffffc1ffc01f2d88 ffffc1ffc0000348 0000000000000000
[  390.184027][ T3905] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  390.185032][ T3905] page dumped because: bad pte
[  390.185629][ T3905] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f4f0000006e6d368 index:0
[  390.187158][ T3905] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  390.188710][ T3905] CPU: 0 PID: 3905 Comm: syz.0.41 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.192342][ T3905] Hardware name: linux,dummy-virt (DT)
[  390.194008][ T3905] Call trace:
[  390.194540][ T3905]  dump_backtrace+0x94/0xec
[  390.196196][ T3905]  show_stack+0x18/0x24
[  390.197107][ T3905]  dump_stack_lvl+0x78/0x90
[  390.198290][ T3905]  dump_stack+0x18/0x24
[  390.198942][ T3905]  print_bad_pte+0x1c8/0x258
[  390.200015][ T3905]  unmap_page_range+0x904/0x1190
[  390.201262][ T3905]  unmap_single_vma.constprop.0+0x4c/0x84
[  390.202105][ T3905]  unmap_vmas+0x7c/0x170
[  390.202947][ T3905]  exit_mmap+0xc0/0x288
[  390.203979][ T3905]  __mmput+0x3c/0x170
[  390.204695][ T3905]  mmput+0x50/0x5c
[  390.205376][ T3905]  do_exit+0x270/0x98c
[  390.206080][ T3905]  do_group_exit+0x34/0x90
[  390.206819][ T3905]  copy_siginfo_to_user+0x0/0xec
[  390.207692][ T3905]  do_signal+0x94/0x1450
[  390.208470][ T3905]  do_notify_resume+0xd8/0x164
[  390.209442][ T3905]  el0_svc+0xc8/0xf8
[  390.211007][ T3905]  el0t_64_sync_handler+0x100/0x12c
[  390.212938][ T3905]  el0t_64_sync+0x19c/0x1a0
[  390.214755][ T3905] BUG: Bad page map in process syz.0.41  pte:6000004000d8c3 pmd:8000000471b1003
[  390.217059][ T3905] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4000d
[  390.218296][ T3905] memcg:f4f00000060ad000
[  390.219483][ T3905] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.221610][ T3905] raw: 01ffc0000004002c ffffc1ffc01dbc88 ffffc1ffc0205888 0000000000000000
[  390.222737][ T3905] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  390.224269][ T3905] page dumped because: bad pte
[  390.225405][ T3905] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f4f0000006e6d368 index:1
[  390.228271][ T3905] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  390.231950][ T3905] CPU: 0 PID: 3905 Comm: syz.0.41 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.233865][ T3905] Hardware name: linux,dummy-virt (DT)
[  390.235366][ T3905] Call trace:
[  390.236055][ T3905]  dump_backtrace+0x94/0xec
[  390.236813][ T3905]  show_stack+0x18/0x24
[  390.237514][ T3905]  dump_stack_lvl+0x78/0x90
[  390.238284][ T3905]  dump_stack+0x18/0x24
[  390.239392][ T3905]  print_bad_pte+0x1c8/0x258
[  390.240563][ T3905]  unmap_page_range+0x904/0x1190
[  390.243782][ T3905]  unmap_single_vma.constprop.0+0x4c/0x84
[  390.246519][ T3905]  unmap_vmas+0x7c/0x170
[  390.248428][ T3905]  exit_mmap+0xc0/0x288
[  390.249236][ T3905]  __mmput+0x3c/0x170
[  390.250380][ T3905]  mmput+0x50/0x5c
[  390.251772][ T3905]  do_exit+0x270/0x98c
[  390.252499][ T3905]  do_group_exit+0x34/0x90
[  390.253272][ T3905]  copy_siginfo_to_user+0x0/0xec
[  390.254303][ T3905]  do_signal+0x94/0x1450
[  390.255057][ T3905]  do_notify_resume+0xd8/0x164
[  390.256645][ T3905]  el0_svc+0xc8/0xf8
[  390.264819][ T3905]  el0t_64_sync_handler+0x100/0x12c
[  390.265667][ T3905]  el0t_64_sync+0x19c/0x1a0
[  390.277887][ T3905] BUG: Bad page state in process syz.0.41  pfn:476f2
[  390.279090][ T3905] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x476f2
[  390.281695][ T3905] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.285344][ T3905] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  390.288117][ T3905] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  390.289065][ T3905] page dumped because: nonzero mapcount
[  390.295824][ T3905] Modules linked in:
[  390.297492][ T3905] CPU: 0 PID: 3905 Comm: syz.0.41 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.298855][ T3905] Hardware name: linux,dummy-virt (DT)
[  390.299693][ T3905] Call trace:
[  390.300731][ T3905]  dump_backtrace+0x94/0xec
[  390.303086][ T3905]  show_stack+0x18/0x24
[  390.303941][ T3905]  dump_stack_lvl+0x78/0x90
[  390.306274][ T3905]  dump_stack+0x18/0x24
[  390.308909][ T3905]  bad_page+0x84/0x11c
[  390.312106][ T3905]  free_page_is_bad_report+0x98/0xa4
[  390.315447][ T3905]  free_unref_folios+0x4c0/0x624
[  390.318154][ T3905]  folios_put_refs+0x108/0x284
[  390.320382][ T3905]  free_pages_and_swap_cache+0x14c/0x164
[  390.322249][ T3905]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  390.323518][ T3905]  tlb_flush_mmu+0x54/0xe4
[  390.324446][ T3905]  unmap_page_range+0xab0/0x1190
[  390.327313][ T3905]  unmap_single_vma.constprop.0+0x4c/0x84
[  390.328994][ T3905]  unmap_vmas+0x7c/0x170
[  390.329862][ T3905]  exit_mmap+0xc0/0x288
[  390.331741][ T3905]  __mmput+0x3c/0x170
[  390.332976][ T3905]  mmput+0x50/0x5c
[  390.333956][ T3905]  do_exit+0x270/0x98c
[  390.334700][ T3905]  do_group_exit+0x34/0x90
[  390.335546][ T3905]  copy_siginfo_to_user+0x0/0xec
[  390.336521][ T3905]  do_signal+0x94/0x1450
[  390.338146][ T3905]  do_notify_resume+0xd8/0x164
[  390.339135][ T3905]  el0_svc+0xc8/0xf8
[  390.340269][ T3905]  el0t_64_sync_handler+0x100/0x12c
[  390.341349][ T3905]  el0t_64_sync+0x19c/0x1a0
[  390.343397][ T3905] BUG: Bad page state in process syz.0.41  pfn:4000d
[  390.346925][ T3905] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4000d
[  390.348068][ T3905] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.358646][ T3905] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  390.361953][ T3905] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  390.363868][ T3905] page dumped because: nonzero mapcount
[  390.365062][ T3905] Modules linked in:
[  390.366168][ T3905] CPU: 0 PID: 3905 Comm: syz.0.41 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.367701][ T3905] Hardware name: linux,dummy-virt (DT)
[  390.368864][ T3905] Call trace:
[  390.369731][ T3905]  dump_backtrace+0x94/0xec
[  390.370560][ T3905]  show_stack+0x18/0x24
[  390.372871][ T3905]  dump_stack_lvl+0x78/0x90
[  390.373973][ T3905]  dump_stack+0x18/0x24
[  390.374800][ T3905]  bad_page+0x84/0x11c
[  390.375622][ T3905]  free_page_is_bad_report+0x98/0xa4
[  390.376408][ T3905]  free_unref_folios+0x4c0/0x624
[  390.377537][ T3905]  folios_put_refs+0x108/0x284
[  390.378323][ T3905]  free_pages_and_swap_cache+0x14c/0x164
[  390.379399][ T3905]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  390.381739][ T3905]  tlb_flush_mmu+0x54/0xe4
[  390.382606][ T3905]  unmap_page_range+0xab0/0x1190
[  390.384746][ T3905]  unmap_single_vma.constprop.0+0x4c/0x84
[  390.385709][ T3905]  unmap_vmas+0x7c/0x170
[  390.386430][ T3905]  exit_mmap+0xc0/0x288
[  390.387565][ T3905]  __mmput+0x3c/0x170
[  390.388979][ T3905]  mmput+0x50/0x5c
[  390.391243][ T3905]  do_exit+0x270/0x98c
[  390.392921][ T3905]  do_group_exit+0x34/0x90
[  390.393788][ T3905]  copy_siginfo_to_user+0x0/0xec
[  390.396003][ T3905]  do_signal+0x94/0x1450
[  390.398894][ T3905]  do_notify_resume+0xd8/0x164
[  390.400450][ T3905]  el0_svc+0xc8/0xf8
[  390.401435][ T3905]  el0t_64_sync_handler+0x100/0x12c
[  390.403422][ T3905]  el0t_64_sync+0x19c/0x1a0
[  390.576364][ T3906] BUG: Bad page cache in process syz.0.42  pfn:4d5f4
[  390.577320][ T3906] page: refcount:4 mapcount:1 mapping:00000000ecd8638f index:0x0 pfn:0x4d5f4
[  390.578315][ T3906] memcg:f4f00000060ad000
[  390.578928][ T3906] aops:shmem_aops ino:e
[  390.579670][ T3906] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.581319][ T3906] raw: 01ffc0000004002d ffffc1ffc02d9e88 ffffc1ffc02f7cc8 fbf0000003b84b70
[  390.582445][ T3906] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  390.583382][ T3906] page dumped because: still mapped when deleted
[  390.584218][ T3906] CPU: 0 PID: 3906 Comm: syz.0.42 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.585709][ T3906] Hardware name: linux,dummy-virt (DT)
[  390.586428][ T3906] Call trace:
[  390.587088][ T3906]  dump_backtrace+0x94/0xec
[  390.587980][ T3906]  show_stack+0x18/0x24
[  390.588641][ T3906]  dump_stack_lvl+0x78/0x90
[  390.589335][ T3906]  dump_stack+0x18/0x24
[  390.590306][ T3906]  filemap_unaccount_folio+0x118/0x278
[  390.591109][ T3906]  __filemap_remove_folio+0x3c/0x178
[  390.591920][ T3906]  filemap_remove_folio+0x48/0xa8
[  390.592708][ T3906]  truncate_inode_folio+0x30/0x4c
[  390.593453][ T3906]  shmem_undo_range+0x208/0x620
[  390.594193][ T3906]  shmem_evict_inode+0x130/0x2dc
[  390.594908][ T3906]  evict+0xb4/0x198
[  390.595572][ T3906]  iput+0x100/0x1b8
[  390.596218][ T3906]  dentry_unlink_inode+0xc0/0x188
[  390.596950][ T3906]  __dentry_kill+0x7c/0x1d4
[  390.597638][ T3906]  dput.part.0+0x30/0xbc
[  390.598299][ T3906]  dput+0x4c/0x50
[  390.598920][ T3906]  __fput+0x110/0x2d4
[  390.599685][ T3906]  ____fput+0x10/0x1c
[  390.600642][ T3906]  task_work_run+0x78/0xd0
[  390.602005][ T3906]  do_notify_resume+0x134/0x164
[  390.602743][ T3906]  el0_svc+0xc8/0xf8
[  390.603436][ T3906]  el0t_64_sync_handler+0x100/0x12c
[  390.604317][ T3906]  el0t_64_sync+0x19c/0x1a0
[  390.608489][ T3906] BUG: Bad page cache in process syz.0.42  pfn:4bdf3
[  390.609333][ T3906] page: refcount:4 mapcount:1 mapping:00000000ecd8638f index:0x1 pfn:0x4bdf3
[  390.610728][ T3906] memcg:f4f00000060ad000
[  390.611358][ T3906] aops:shmem_aops ino:e
[  390.612102][ T3906] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.613730][ T3906] raw: 01ffc0000004002d ffffc1ffc0357d08 ffffc1ffc0004d88 fbf0000003b84b70
[  390.615046][ T3906] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  390.616207][ T3906] page dumped because: still mapped when deleted
[  390.617335][ T3906] CPU: 0 PID: 3906 Comm: syz.0.42 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.618857][ T3906] Hardware name: linux,dummy-virt (DT)
[  390.619974][ T3906] Call trace:
[  390.620708][ T3906]  dump_backtrace+0x94/0xec
[  390.621574][ T3906]  show_stack+0x18/0x24
[  390.622482][ T3906]  dump_stack_lvl+0x78/0x90
[  390.623383][ T3906]  dump_stack+0x18/0x24
[  390.624177][ T3906]  filemap_unaccount_folio+0x118/0x278
[  390.625163][ T3906]  __filemap_remove_folio+0x3c/0x178
[  390.626179][ T3906]  filemap_remove_folio+0x48/0xa8
[  390.627262][ T3906]  truncate_inode_folio+0x30/0x4c
[  390.628248][ T3906]  shmem_undo_range+0x208/0x620
[  390.629248][ T3906]  shmem_evict_inode+0x130/0x2dc
[  390.630348][ T3906]  evict+0xb4/0x198
[  390.631009][ T3906]  iput+0x100/0x1b8
[  390.631709][ T3906]  dentry_unlink_inode+0xc0/0x188
[  390.632428][ T3906]  __dentry_kill+0x7c/0x1d4
[  390.633227][ T3906]  dput.part.0+0x30/0xbc
[  390.633887][ T3906]  dput+0x4c/0x50
[  390.634537][ T3906]  __fput+0x110/0x2d4
[  390.635177][ T3906]  ____fput+0x10/0x1c
[  390.635920][ T3906]  task_work_run+0x78/0xd0
[  390.636621][ T3906]  do_notify_resume+0x134/0x164
[  390.637331][ T3906]  el0_svc+0xc8/0xf8
[  390.637986][ T3906]  el0t_64_sync_handler+0x100/0x12c
[  390.638715][ T3906]  el0t_64_sync+0x19c/0x1a0
[  390.653164][ T3906] BUG: Bad page map in process syz.0.42  pte:6000004d5f48c3 pmd:8000000467de003
[  390.656115][ T3906] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4d5f4
[  390.661382][ T3906] memcg:f4f00000060ad000
[  390.662162][ T3906] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.664888][ T3906] raw: 01ffc0000004002c ffffc1ffc02f24c8 ffffc1ffc02f7cc8 0000000000000000
[  390.665814][ T3906] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  390.668649][ T3906] page dumped because: bad pte
[  390.669262][ T3906] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f4f0000006e6d368 index:0
[  390.673525][ T3906] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  390.674720][ T3906] CPU: 0 PID: 3906 Comm: syz.0.42 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.676491][ T3906] Hardware name: linux,dummy-virt (DT)
[  390.677693][ T3906] Call trace:
[  390.678899][ T3906]  dump_backtrace+0x94/0xec
[  390.680276][ T3906]  show_stack+0x18/0x24
[  390.681663][ T3906]  dump_stack_lvl+0x78/0x90
[  390.682426][ T3906]  dump_stack+0x18/0x24
[  390.683863][ T3906]  print_bad_pte+0x1c8/0x258
[  390.684665][ T3906]  unmap_page_range+0x904/0x1190
[  390.685440][ T3906]  unmap_single_vma.constprop.0+0x4c/0x84
[  390.686276][ T3906]  unmap_vmas+0x7c/0x170
[  390.687022][ T3906]  exit_mmap+0xc0/0x288
[  390.688743][ T3906]  __mmput+0x3c/0x170
[  390.689405][ T3906]  mmput+0x50/0x5c
[  390.690135][ T3906]  do_exit+0x270/0x98c
[  390.690812][ T3906]  do_group_exit+0x34/0x90
[  390.691539][ T3906]  pid_child_should_wake+0x0/0x5c
[  390.692302][ T3906]  invoke_syscall+0x48/0x118
[  390.693057][ T3906]  el0_svc_common.constprop.0+0x40/0xe0
[  390.693888][ T3906]  do_el0_svc+0x1c/0x28
[  390.694800][ T3906]  el0_svc+0x34/0xf8
[  390.695481][ T3906]  el0t_64_sync_handler+0x100/0x12c
[  390.696202][ T3906]  el0t_64_sync+0x19c/0x1a0
[  390.723336][ T3906] BUG: Bad page map in process syz.0.42  pte:6000004bdf38c3 pmd:8000000467de003
[  390.725244][ T3906] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4bdf3
[  390.726277][ T3906] memcg:f4f00000060ad000
[  390.726845][ T3906] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.728213][ T3906] raw: 01ffc0000004002c ffffc1ffc0357d08 ffffc1ffc0004d88 0000000000000000
[  390.729313][ T3906] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  390.731703][ T3906] page dumped because: bad pte
[  390.734118][ T3906] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f4f0000006e6d368 index:1
[  390.737149][ T3906] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  390.738638][ T3906] CPU: 0 PID: 3906 Comm: syz.0.42 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.740149][ T3906] Hardware name: linux,dummy-virt (DT)
[  390.741868][ T3906] Call trace:
[  390.743181][ T3906]  dump_backtrace+0x94/0xec
[  390.744104][ T3906]  show_stack+0x18/0x24
[  390.744811][ T3906]  dump_stack_lvl+0x78/0x90
[  390.746557][ T3906]  dump_stack+0x18/0x24
[  390.747347][ T3906]  print_bad_pte+0x1c8/0x258
[  390.748139][ T3906]  unmap_page_range+0x904/0x1190
[  390.748888][ T3906]  unmap_single_vma.constprop.0+0x4c/0x84
[  390.749823][ T3906]  unmap_vmas+0x7c/0x170
[  390.750729][ T3906]  exit_mmap+0xc0/0x288
[  390.751429][ T3906]  __mmput+0x3c/0x170
[  390.752117][ T3906]  mmput+0x50/0x5c
[  390.753522][ T3906]  do_exit+0x270/0x98c
[  390.755057][ T3906]  do_group_exit+0x34/0x90
[  390.757478][ T3906]  pid_child_should_wake+0x0/0x5c
[  390.758601][ T3906]  invoke_syscall+0x48/0x118
[  390.759358][ T3906]  el0_svc_common.constprop.0+0x40/0xe0
[  390.760526][ T3906]  do_el0_svc+0x1c/0x28
[  390.761242][ T3906]  el0_svc+0x34/0xf8
[  390.762951][ T3906]  el0t_64_sync_handler+0x100/0x12c
[  390.765140][ T3906]  el0t_64_sync+0x19c/0x1a0
[  390.782746][ T3906] BUG: Bad page state in process syz.0.42  pfn:4d5f4
[  390.785910][ T3906] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4d5f4
[  390.787346][ T3906] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.788700][ T3906] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  390.789636][ T3906] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  390.791432][ T3906] page dumped because: nonzero mapcount
[  390.793296][ T3906] Modules linked in:
[  390.794023][ T3906] CPU: 0 PID: 3906 Comm: syz.0.42 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.795459][ T3906] Hardware name: linux,dummy-virt (DT)
[  390.796361][ T3906] Call trace:
[  390.796891][ T3906]  dump_backtrace+0x94/0xec
[  390.797629][ T3906]  show_stack+0x18/0x24
[  390.798327][ T3906]  dump_stack_lvl+0x78/0x90
[  390.799132][ T3906]  dump_stack+0x18/0x24
[  390.800018][ T3906]  bad_page+0x84/0x11c
[  390.800878][ T3906]  free_page_is_bad_report+0x98/0xa4
[  390.801726][ T3906]  free_unref_folios+0x4c0/0x624
[  390.802584][ T3906]  folios_put_refs+0x108/0x284
[  390.803372][ T3906]  free_pages_and_swap_cache+0x14c/0x164
[  390.804700][ T3906]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  390.805444][ T3906]  tlb_flush_mmu+0x54/0xe4
[  390.806055][ T3906]  unmap_page_range+0xab0/0x1190
[  390.806856][ T3906]  unmap_single_vma.constprop.0+0x4c/0x84
[  390.808106][ T3906]  unmap_vmas+0x7c/0x170
[  390.808852][ T3906]  exit_mmap+0xc0/0x288
[  390.809543][ T3906]  __mmput+0x3c/0x170
[  390.810491][ T3906]  mmput+0x50/0x5c
[  390.811907][ T3906]  do_exit+0x270/0x98c
[  390.812577][ T3906]  do_group_exit+0x34/0x90
[  390.813284][ T3906]  pid_child_should_wake+0x0/0x5c
[  390.814073][ T3906]  invoke_syscall+0x48/0x118
[  390.814773][ T3906]  el0_svc_common.constprop.0+0x40/0xe0
[  390.815574][ T3906]  do_el0_svc+0x1c/0x28
[  390.816243][ T3906]  el0_svc+0x34/0xf8
[  390.816899][ T3906]  el0t_64_sync_handler+0x100/0x12c
[  390.817632][ T3906]  el0t_64_sync+0x19c/0x1a0
[  390.821089][ T3906] BUG: Bad page state in process syz.0.42  pfn:4bdf3
[  390.822097][ T3906] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4bdf3
[  390.823583][ T3906] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  390.825070][ T3906] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  390.826093][ T3906] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  390.827151][ T3906] page dumped because: nonzero mapcount
[  390.827926][ T3906] Modules linked in:
[  390.828664][ T3906] CPU: 0 PID: 3906 Comm: syz.0.42 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  390.830243][ T3906] Hardware name: linux,dummy-virt (DT)
[  390.831052][ T3906] Call trace:
[  390.831703][ T3906]  dump_backtrace+0x94/0xec
[  390.832466][ T3906]  show_stack+0x18/0x24
[  390.833300][ T3906]  dump_stack_lvl+0x78/0x90
[  390.834810][ T3906]  dump_stack+0x18/0x24
[  390.835640][ T3906]  bad_page+0x84/0x11c
[  390.836723][ T3906]  free_page_is_bad_report+0x98/0xa4
[  390.837528][ T3906]  free_unref_folios+0x4c0/0x624
[  390.838567][ T3906]  folios_put_refs+0x108/0x284
[  390.839291][ T3906]  free_pages_and_swap_cache+0x14c/0x164
[  390.840548][ T3906]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  390.841601][ T3906]  tlb_flush_mmu+0x54/0xe4
[  390.842637][ T3906]  unmap_page_range+0xab0/0x1190
[  390.843441][ T3906]  unmap_single_vma.constprop.0+0x4c/0x84
[  390.844263][ T3906]  unmap_vmas+0x7c/0x170
[  390.844998][ T3906]  exit_mmap+0xc0/0x288
[  390.845687][ T3906]  __mmput+0x3c/0x170
[  390.846416][ T3906]  mmput+0x50/0x5c
[  390.847101][ T3906]  do_exit+0x270/0x98c
[  390.847821][ T3906]  do_group_exit+0x34/0x90
[  390.848604][ T3906]  pid_child_should_wake+0x0/0x5c
[  390.849376][ T3906]  invoke_syscall+0x48/0x118
[  390.850459][ T3906]  el0_svc_common.constprop.0+0x40/0xe0
[  390.851276][ T3906]  do_el0_svc+0x1c/0x28
[  390.851947][ T3906]  el0_svc+0x34/0xf8
[  390.852627][ T3906]  el0t_64_sync_handler+0x100/0x12c
[  390.853364][ T3906]  el0t_64_sync+0x19c/0x1a0
[  391.013894][ T3908] BUG: Bad page cache in process syz.0.43  pfn:4b34b
[  391.015365][ T3908] page: refcount:4 mapcount:1 mapping:000000009fd99a07 index:0x0 pfn:0x4b34b
[  391.016678][ T3908] memcg:f4f00000060ad000
[  391.017286][ T3908] aops:shmem_aops ino:410
[  391.018007][ T3908] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.019366][ T3908] raw: 01ffc0000004002d ffffc1ffc02f2348 ffffc1ffc02d6fc8 f4f00000070f0850
[  391.020835][ T3908] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  391.021711][ T3908] page dumped because: still mapped when deleted
[  391.022442][ T3908] CPU: 1 PID: 3908 Comm: syz.0.43 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.023949][ T3908] Hardware name: linux,dummy-virt (DT)
[  391.024626][ T3908] Call trace:
[  391.025176][ T3908]  dump_backtrace+0x94/0xec
[  391.025953][ T3908]  show_stack+0x18/0x24
[  391.026588][ T3908]  dump_stack_lvl+0x78/0x90
[  391.027350][ T3908]  dump_stack+0x18/0x24
[  391.027983][ T3908]  filemap_unaccount_folio+0x118/0x278
[  391.028730][ T3908]  __filemap_remove_folio+0x3c/0x178
[  391.029810][ T3908]  filemap_remove_folio+0x48/0xa8
[  391.030707][ T3908]  truncate_inode_folio+0x30/0x4c
[  391.031576][ T3908]  shmem_undo_range+0x208/0x620
[  391.032317][ T3908]  shmem_evict_inode+0x130/0x2dc
[  391.033082][ T3908]  evict+0xb4/0x198
[  391.033754][ T3908]  iput+0x100/0x1b8
[  391.034373][ T3908]  dentry_unlink_inode+0xc0/0x188
[  391.035070][ T3908]  __dentry_kill+0x7c/0x1d4
[  391.035894][ T3908]  dput.part.0+0x30/0xbc
[  391.036591][ T3908]  dput+0x4c/0x50
[  391.037255][ T3908]  __fput+0x110/0x2d4
[  391.037968][ T3908]  ____fput+0x10/0x1c
[  391.038573][ T3908]  task_work_run+0x78/0xd0
[  391.039281][ T3908]  do_notify_resume+0x134/0x164
[  391.040064][ T3908]  el0_svc+0xc8/0xf8
[  391.040801][ T3908]  el0t_64_sync_handler+0x100/0x12c
[  391.041550][ T3908]  el0t_64_sync+0x19c/0x1a0
[  391.048586][ T3908] BUG: Bad page cache in process syz.0.43  pfn:4b5bf
[  391.049773][ T3908] page: refcount:4 mapcount:1 mapping:000000009fd99a07 index:0x1 pfn:0x4b5bf
[  391.050917][ T3908] memcg:f4f00000060ad000
[  391.051772][ T3908] aops:shmem_aops ino:410
[  391.052490][ T3908] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.053860][ T3908] raw: 01ffc0000004002d ffffc1ffc02cd2c8 ffffc1ffc02f2188 f4f00000070f0850
[  391.054913][ T3908] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  391.056373][ T3908] page dumped because: still mapped when deleted
[  391.057131][ T3908] CPU: 1 PID: 3908 Comm: syz.0.43 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.058458][ T3908] Hardware name: linux,dummy-virt (DT)
[  391.059165][ T3908] Call trace:
[  391.060325][ T3908]  dump_backtrace+0x94/0xec
[  391.061084][ T3908]  show_stack+0x18/0x24
[  391.061822][ T3908]  dump_stack_lvl+0x78/0x90
[  391.062567][ T3908]  dump_stack+0x18/0x24
[  391.063753][ T3908]  filemap_unaccount_folio+0x118/0x278
[  391.064673][ T3908]  __filemap_remove_folio+0x3c/0x178
[  391.065763][ T3908]  filemap_remove_folio+0x48/0xa8
[  391.066675][ T3908]  truncate_inode_folio+0x30/0x4c
[  391.067657][ T3908]  shmem_undo_range+0x208/0x620
[  391.069171][ T3908]  shmem_evict_inode+0x130/0x2dc
[  391.070754][ T3908]  evict+0xb4/0x198
[  391.071686][ T3908]  iput+0x100/0x1b8
[  391.072693][ T3908]  dentry_unlink_inode+0xc0/0x188
[  391.073604][ T3908]  __dentry_kill+0x7c/0x1d4
[  391.074503][ T3908]  dput.part.0+0x30/0xbc
[  391.075323][ T3908]  dput+0x4c/0x50
[  391.076422][ T3908]  __fput+0x110/0x2d4
[  391.077132][ T3908]  ____fput+0x10/0x1c
[  391.077818][ T3908]  task_work_run+0x78/0xd0
[  391.078572][ T3908]  do_notify_resume+0x134/0x164
[  391.079305][ T3908]  el0_svc+0xc8/0xf8
[  391.080325][ T3908]  el0t_64_sync_handler+0x100/0x12c
[  391.081090][ T3908]  el0t_64_sync+0x19c/0x1a0
[  391.119575][ T3909] BUG: Bad page map in process syz.0.43  pte:6000004b34b8c3 pmd:8000000478cd003
[  391.121686][ T3909] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b34b
[  391.122720][ T3909] memcg:f4f00000060ad000
[  391.123363][ T3909] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.124805][ T3909] raw: 01ffc0000004002c ffffc1ffc020bc48 ffffc1ffc02d6fc8 0000000000000000
[  391.125966][ T3909] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  391.127453][ T3909] page dumped because: bad pte
[  391.128200][ T3909] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:faf00000033ed0d8 index:0
[  391.130928][ T3909] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  391.132189][ T3909] CPU: 0 PID: 3909 Comm: syz.0.43 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.133539][ T3909] Hardware name: linux,dummy-virt (DT)
[  391.134358][ T3909] Call trace:
[  391.134893][ T3909]  dump_backtrace+0x94/0xec
[  391.135638][ T3909]  show_stack+0x18/0x24
[  391.136311][ T3909]  dump_stack_lvl+0x78/0x90
[  391.137022][ T3909]  dump_stack+0x18/0x24
[  391.137754][ T3909]  print_bad_pte+0x1c8/0x258
[  391.138543][ T3909]  unmap_page_range+0x904/0x1190
[  391.139378][ T3909]  unmap_single_vma.constprop.0+0x4c/0x84
[  391.140574][ T3909]  unmap_vmas+0x7c/0x170
[  391.141281][ T3909]  exit_mmap+0xc0/0x288
[  391.141959][ T3909]  __mmput+0x3c/0x170
[  391.142643][ T3909]  mmput+0x50/0x5c
[  391.143375][ T3909]  do_exit+0x270/0x98c
[  391.144104][ T3909]  do_group_exit+0x34/0x90
[  391.144923][ T3909]  copy_siginfo_to_user+0x0/0xec
[  391.145740][ T3909]  do_signal+0x94/0x1450
[  391.146476][ T3909]  do_notify_resume+0xd8/0x164
[  391.147286][ T3909]  el0_svc+0xc8/0xf8
[  391.148012][ T3909]  el0t_64_sync_handler+0x100/0x12c
[  391.148882][ T3909]  el0t_64_sync+0x19c/0x1a0
[  391.154955][ T3909] BUG: Bad page map in process syz.0.43  pte:6000004b5bf8c3 pmd:8000000478cd003
[  391.156077][ T3909] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b5bf
[  391.157133][ T3909] memcg:f4f00000060ad000
[  391.157793][ T3909] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.159184][ T3909] raw: 01ffc0000004002c ffffc1ffc02cd2c8 ffffc1ffc02f2188 0000000000000000
[  391.161629][ T3909] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  391.162603][ T3909] page dumped because: bad pte
[  391.163189][ T3909] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:faf00000033ed0d8 index:1
[  391.164418][ T3909] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  391.166783][ T3909] CPU: 0 PID: 3909 Comm: syz.0.43 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.168184][ T3909] Hardware name: linux,dummy-virt (DT)
[  391.168954][ T3909] Call trace:
[  391.169517][ T3909]  dump_backtrace+0x94/0xec
[  391.170508][ T3909]  show_stack+0x18/0x24
[  391.171224][ T3909]  dump_stack_lvl+0x78/0x90
[  391.171959][ T3909]  dump_stack+0x18/0x24
[  391.172742][ T3909]  print_bad_pte+0x1c8/0x258
[  391.173477][ T3909]  unmap_page_range+0x904/0x1190
[  391.174228][ T3909]  unmap_single_vma.constprop.0+0x4c/0x84
[  391.175126][ T3909]  unmap_vmas+0x7c/0x170
[  391.175917][ T3909]  exit_mmap+0xc0/0x288
[  391.176626][ T3909]  __mmput+0x3c/0x170
[  391.177297][ T3909]  mmput+0x50/0x5c
[  391.178018][ T3909]  do_exit+0x270/0x98c
[  391.178771][ T3909]  do_group_exit+0x34/0x90
[  391.179529][ T3909]  copy_siginfo_to_user+0x0/0xec
[  391.180549][ T3909]  do_signal+0x94/0x1450
[  391.181296][ T3909]  do_notify_resume+0xd8/0x164
[  391.182087][ T3909]  el0_svc+0xc8/0xf8
[  391.182781][ T3909]  el0t_64_sync_handler+0x100/0x12c
[  391.183596][ T3909]  el0t_64_sync+0x19c/0x1a0
[  391.186624][ T3909] BUG: Bad page state in process syz.0.43  pfn:4b34b
[  391.187619][ T3909] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b34b
[  391.188704][ T3909] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.191150][ T3909] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  391.192733][ T3909] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  391.193986][ T3909] page dumped because: nonzero mapcount
[  391.194774][ T3909] Modules linked in:
[  391.195660][ T3909] CPU: 0 PID: 3909 Comm: syz.0.43 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.199197][ T3909] Hardware name: linux,dummy-virt (DT)
[  391.200310][ T3909] Call trace:
[  391.200893][ T3909]  dump_backtrace+0x94/0xec
[  391.201632][ T3909]  show_stack+0x18/0x24
[  391.202478][ T3909]  dump_stack_lvl+0x78/0x90
[  391.203844][ T3909]  dump_stack+0x18/0x24
[  391.204958][ T3909]  bad_page+0x84/0x11c
[  391.205913][ T3909]  free_page_is_bad_report+0x98/0xa4
[  391.206863][ T3909]  free_unref_folios+0x4c0/0x624
[  391.208759][ T3909]  folios_put_refs+0x108/0x284
[  391.209784][ T3909]  free_pages_and_swap_cache+0x14c/0x164
[  391.211471][ T3909]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  391.213525][ T3909]  tlb_flush_mmu+0x54/0xe4
[  391.214340][ T3909]  unmap_page_range+0xab0/0x1190
[  391.215421][ T3909]  unmap_single_vma.constprop.0+0x4c/0x84
[  391.216307][ T3909]  unmap_vmas+0x7c/0x170
[  391.217238][ T3909]  exit_mmap+0xc0/0x288
[  391.218065][ T3909]  __mmput+0x3c/0x170
[  391.218934][ T3909]  mmput+0x50/0x5c
[  391.219716][ T3909]  do_exit+0x270/0x98c
[  391.221469][ T3909]  do_group_exit+0x34/0x90
[  391.223192][ T3909]  copy_siginfo_to_user+0x0/0xec
[  391.225134][ T3909]  do_signal+0x94/0x1450
[  391.226532][ T3909]  do_notify_resume+0xd8/0x164
[  391.228594][ T3909]  el0_svc+0xc8/0xf8
[  391.230038][ T3909]  el0t_64_sync_handler+0x100/0x12c
[  391.231984][ T3909]  el0t_64_sync+0x19c/0x1a0
[  391.244970][ T3909] BUG: Bad page state in process syz.0.43  pfn:4b5bf
[  391.246697][ T3909] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b5bf
[  391.249046][ T3909] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.252705][ T3909] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  391.256026][ T3909] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  391.257851][ T3909] page dumped because: nonzero mapcount
[  391.259010][ T3909] Modules linked in:
[  391.261406][ T3909] CPU: 0 PID: 3909 Comm: syz.0.43 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.262968][ T3909] Hardware name: linux,dummy-virt (DT)
[  391.263966][ T3909] Call trace:
[  391.265090][ T3909]  dump_backtrace+0x94/0xec
[  391.266725][ T3909]  show_stack+0x18/0x24
[  391.269863][ T3909]  dump_stack_lvl+0x78/0x90
[  391.271434][ T3909]  dump_stack+0x18/0x24
[  391.274249][ T3909]  bad_page+0x84/0x11c
[  391.275778][ T3909]  free_page_is_bad_report+0x98/0xa4
[  391.277306][ T3909]  free_unref_folios+0x4c0/0x624
[  391.278067][ T3909]  folios_put_refs+0x108/0x284
[  391.279192][ T3909]  free_pages_and_swap_cache+0x14c/0x164
[  391.281615][ T3909]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  391.282658][ T3909]  tlb_flush_mmu+0x54/0xe4
[  391.284046][ T3909]  unmap_page_range+0xab0/0x1190
[  391.285153][ T3909]  unmap_single_vma.constprop.0+0x4c/0x84
[  391.287720][ T3909]  unmap_vmas+0x7c/0x170
[  391.288488][ T3909]  exit_mmap+0xc0/0x288
[  391.290213][ T3909]  __mmput+0x3c/0x170
[  391.291269][ T3909]  mmput+0x50/0x5c
[  391.292840][ T3909]  do_exit+0x270/0x98c
[  391.293604][ T3909]  do_group_exit+0x34/0x90
[  391.295306][ T3909]  copy_siginfo_to_user+0x0/0xec
[  391.297236][ T3909]  do_signal+0x94/0x1450
[  391.298472][ T3909]  do_notify_resume+0xd8/0x164
[  391.300828][ T3909]  el0_svc+0xc8/0xf8
[  391.302946][ T3909]  el0t_64_sync_handler+0x100/0x12c
[  391.304057][ T3909]  el0t_64_sync+0x19c/0x1a0
[  391.514787][ T3910] BUG: Bad page cache in process syz.0.44  pfn:4b366
[  391.515774][ T3910] page: refcount:4 mapcount:1 mapping:00000000e748ea1d index:0x0 pfn:0x4b366
[  391.516776][ T3910] memcg:f4f00000060ad000
[  391.517400][ T3910] aops:shmem_aops ino:411
[  391.518132][ T3910] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.519783][ T3910] raw: 01ffc0000004002d ffffc1ffc02cb2c8 ffffc1ffc02d1b88 f8f00000070f0530
[  391.521247][ T3910] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  391.522229][ T3910] page dumped because: still mapped when deleted
[  391.523453][ T3910] CPU: 1 PID: 3910 Comm: syz.0.44 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.524837][ T3910] Hardware name: linux,dummy-virt (DT)
[  391.526264][ T3910] Call trace:
[  391.526804][ T3910]  dump_backtrace+0x94/0xec
[  391.528295][ T3910]  show_stack+0x18/0x24
[  391.529125][ T3910]  dump_stack_lvl+0x78/0x90
[  391.530301][ T3910]  dump_stack+0x18/0x24
[  391.531365][ T3910]  filemap_unaccount_folio+0x118/0x278
[  391.532875][ T3910]  __filemap_remove_folio+0x3c/0x178
[  391.533958][ T3910]  filemap_remove_folio+0x48/0xa8
[  391.534867][ T3910]  truncate_inode_folio+0x30/0x4c
[  391.535602][ T3910]  shmem_undo_range+0x208/0x620
[  391.536307][ T3910]  shmem_evict_inode+0x130/0x2dc
[  391.537115][ T3910]  evict+0xb4/0x198
[  391.537793][ T3910]  iput+0x100/0x1b8
[  391.538471][ T3910]  dentry_unlink_inode+0xc0/0x188
[  391.539278][ T3910]  __dentry_kill+0x7c/0x1d4
[  391.540569][ T3910]  dput.part.0+0x30/0xbc
[  391.541411][ T3910]  dput+0x4c/0x50
[  391.542145][ T3910]  __fput+0x110/0x2d4
[  391.542917][ T3910]  ____fput+0x10/0x1c
[  391.543704][ T3910]  task_work_run+0x78/0xd0
[  391.544509][ T3910]  do_notify_resume+0x134/0x164
[  391.545259][ T3910]  el0_svc+0xc8/0xf8
[  391.545967][ T3910]  el0t_64_sync_handler+0x100/0x12c
[  391.547016][ T3910]  el0t_64_sync+0x19c/0x1a0
[  391.550428][ T3910] BUG: Bad page cache in process syz.0.44  pfn:4b46e
[  391.552760][ T3910] page: refcount:4 mapcount:1 mapping:00000000e748ea1d index:0x1 pfn:0x4b46e
[  391.553817][ T3910] memcg:f4f00000060ad000
[  391.554500][ T3910] aops:shmem_aops ino:411
[  391.555234][ T3910] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.556722][ T3910] raw: 01ffc0000004002d ffffc1ffc02cd988 ffffc1ffc01f09c8 f8f00000070f0530
[  391.557865][ T3910] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  391.559163][ T3910] page dumped because: still mapped when deleted
[  391.560384][ T3910] CPU: 1 PID: 3910 Comm: syz.0.44 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.562325][ T3910] Hardware name: linux,dummy-virt (DT)
[  391.563162][ T3910] Call trace:
[  391.563832][ T3910]  dump_backtrace+0x94/0xec
[  391.564738][ T3910]  show_stack+0x18/0x24
[  391.565706][ T3910]  dump_stack_lvl+0x78/0x90
[  391.566530][ T3910]  dump_stack+0x18/0x24
[  391.567486][ T3910]  filemap_unaccount_folio+0x118/0x278
[  391.568405][ T3910]  __filemap_remove_folio+0x3c/0x178
[  391.569233][ T3910]  filemap_remove_folio+0x48/0xa8
[  391.570402][ T3910]  truncate_inode_folio+0x30/0x4c
[  391.571331][ T3910]  shmem_undo_range+0x208/0x620
[  391.572049][ T3910]  shmem_evict_inode+0x130/0x2dc
[  391.572780][ T3910]  evict+0xb4/0x198
[  391.573480][ T3910]  iput+0x100/0x1b8
[  391.574162][ T3910]  dentry_unlink_inode+0xc0/0x188
[  391.574911][ T3910]  __dentry_kill+0x7c/0x1d4
[  391.575652][ T3910]  dput.part.0+0x30/0xbc
[  391.576355][ T3910]  dput+0x4c/0x50
[  391.577070][ T3910]  __fput+0x110/0x2d4
[  391.577891][ T3910]  ____fput+0x10/0x1c
[  391.578753][ T3910]  task_work_run+0x78/0xd0
[  391.579760][ T3910]  do_notify_resume+0x134/0x164
[  391.580993][ T3910]  el0_svc+0xc8/0xf8
[  391.581784][ T3910]  el0t_64_sync_handler+0x100/0x12c
[  391.582788][ T3910]  el0t_64_sync+0x19c/0x1a0
[  391.588249][ T3911] BUG: Bad page map in process syz.0.44  pte:6000004b3668c3 pmd:80000004669e003
[  391.589429][ T3911] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b366
[  391.591176][ T3911] memcg:f4f00000060ad000
[  391.591786][ T3911] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.592950][ T3911] raw: 01ffc0000004002c ffffc1ffc039cd88 ffffc1ffc02d1b88 0000000000000000
[  391.593851][ T3911] raw: 0000000000000000 0000000000000000 00000001fffffffe f4f00000060ad000
[  391.594814][ T3911] page dumped because: bad pte
[  391.595448][ T3911] addr:00000000209a0000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f4f00000033ec178 index:0
[  391.597718][ T3911] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  391.599068][ T3911] CPU: 0 PID: 3911 Comm: syz.0.44 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.601133][ T3911] Hardware name: linux,dummy-virt (DT)
[  391.601575][ T3911] Call trace:
[  391.601849][ T3911]  dump_backtrace+0x94/0xec
[  391.610075][ T3911]  show_stack+0x18/0x24
[  391.610837][ T3911]  dump_stack_lvl+0x78/0x90
[  391.611631][ T3911]  dump_stack+0x18/0x24
[  391.612346][ T3911]  print_bad_pte+0x1c8/0x258
[  391.613074][ T3911]  unmap_page_range+0x904/0x1190
[  391.613845][ T3911]  unmap_single_vma.constprop.0+0x4c/0x84
[  391.614640][ T3911]  unmap_vmas+0x7c/0x170
[  391.615352][ T3911]  exit_mmap+0xc0/0x288
[  391.616038][ T3911]  __mmput+0x3c/0x170
[  391.616705][ T3911]  mmput+0x50/0x5c
[  391.617355][ T3911]  do_exit+0x270/0x98c
[  391.618097][ T3911]  do_group_exit+0x34/0x90
[  391.618832][ T3911]  copy_siginfo_to_user+0x0/0xec
[  391.619700][ T3911]  do_signal+0x94/0x1450
[  391.620634][ T3911]  do_notify_resume+0xd8/0x164
[  391.621401][ T3911]  el0_svc+0xc8/0xf8
[  391.622091][ T3911]  el0t_64_sync_handler+0x100/0x12c
[  391.622973][ T3911]  el0t_64_sync+0x19c/0x1a0
[  391.625303][ T3911] BUG: Bad page map in process syz.0.44  pte:6000004b46e8c3 pmd:80000004669e003
[  391.627916][ T3911] page: refcount:1 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b46e
[  391.633065][ T3911] memcg:f4f00000060ad000
[  391.633734][ T3911] flags: 0x1ffc0000004002c(referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.635298][ T3911] raw: 01ffc0000004002c ffffc1ffc02cd988 ffffc1ffc01f09c8 0000000000000000
[  391.636396][ T3911] raw: 0000000000000001 0000000000000000 00000001fffffffe f4f00000060ad000
[  391.637387][ T3911] page dumped because: bad pte
[  391.638044][ T3911] addr:00000000209a1000 vm_flags:400000f9 anon_vma:0000000000000000 mapping:f4f00000033ec178 index:1
[  391.639337][ T3911] file:dmabuf fault:udmabuf_vm_fault mmap:dma_buf_mmap_internal read_folio:0x0
[  391.641360][ T3911] CPU: 0 PID: 3911 Comm: syz.0.44 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.642975][ T3911] Hardware name: linux,dummy-virt (DT)
[  391.643795][ T3911] Call trace:
[  391.644432][ T3911]  dump_backtrace+0x94/0xec
[  391.645220][ T3911]  show_stack+0x18/0x24
[  391.645930][ T3911]  dump_stack_lvl+0x78/0x90
[  391.646881][ T3911]  dump_stack+0x18/0x24
[  391.647617][ T3911]  print_bad_pte+0x1c8/0x258
[  391.648402][ T3911]  unmap_page_range+0x904/0x1190
[  391.649257][ T3911]  unmap_single_vma.constprop.0+0x4c/0x84
[  391.650549][ T3911]  unmap_vmas+0x7c/0x170
[  391.651354][ T3911]  exit_mmap+0xc0/0x288
[  391.652054][ T3911]  __mmput+0x3c/0x170
[  391.652727][ T3911]  mmput+0x50/0x5c
[  391.653736][ T3911]  do_exit+0x270/0x98c
[  391.654436][ T3911]  do_group_exit+0x34/0x90
[  391.655252][ T3911]  copy_siginfo_to_user+0x0/0xec
[  391.656009][ T3911]  do_signal+0x94/0x1450
[  391.657012][ T3911]  do_notify_resume+0xd8/0x164
[  391.657796][ T3911]  el0_svc+0xc8/0xf8
[  391.658551][ T3911]  el0t_64_sync_handler+0x100/0x12c
[  391.659341][ T3911]  el0t_64_sync+0x19c/0x1a0
[  391.662006][ T3911] BUG: Bad page state in process syz.0.44  pfn:4b366
[  391.662996][ T3911] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x0 pfn:0x4b366
[  391.664248][ T3911] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.665646][ T3911] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  391.666679][ T3911] raw: 0000000000000000 0000000000000000 00000000fffffffe 0000000000000000
[  391.667884][ T3911] page dumped because: nonzero mapcount
[  391.668572][ T3911] Modules linked in:
[  391.669356][ T3911] CPU: 0 PID: 3911 Comm: syz.0.44 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.672563][ T3911] Hardware name: linux,dummy-virt (DT)
[  391.674038][ T3911] Call trace:
[  391.674988][ T3911]  dump_backtrace+0x94/0xec
[  391.676186][ T3911]  show_stack+0x18/0x24
[  391.677233][ T3911]  dump_stack_lvl+0x78/0x90
[  391.678124][ T3911]  dump_stack+0x18/0x24
[  391.678854][ T3911]  bad_page+0x84/0x11c
[  391.679683][ T3911]  free_page_is_bad_report+0x98/0xa4
[  391.680595][ T3911]  free_unref_folios+0x4c0/0x624
[  391.681435][ T3911]  folios_put_refs+0x108/0x284
[  391.682308][ T3911]  free_pages_and_swap_cache+0x14c/0x164
[  391.683108][ T3911]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  391.684074][ T3911]  tlb_flush_mmu+0x54/0xe4
[  391.685624][ T3911]  unmap_page_range+0xab0/0x1190
[  391.686520][ T3911]  unmap_single_vma.constprop.0+0x4c/0x84
[  391.688175][ T3911]  unmap_vmas+0x7c/0x170
[  391.689227][ T3911]  exit_mmap+0xc0/0x288
[  391.690118][ T3911]  __mmput+0x3c/0x170
[  391.691661][ T3911]  mmput+0x50/0x5c
[  391.692460][ T3911]  do_exit+0x270/0x98c
[  391.693648][ T3911]  do_group_exit+0x34/0x90
[  391.694439][ T3911]  copy_siginfo_to_user+0x0/0xec
[  391.695329][ T3911]  do_signal+0x94/0x1450
[  391.696501][ T3911]  do_notify_resume+0xd8/0x164
[  391.697306][ T3911]  el0_svc+0xc8/0xf8
[  391.698116][ T3911]  el0t_64_sync_handler+0x100/0x12c
[  391.699506][ T3911]  el0t_64_sync+0x19c/0x1a0
[  391.712544][ T3911] BUG: Bad page state in process syz.0.44  pfn:4b46e
[  391.714492][ T3911] page: refcount:0 mapcount:-1 mapping:0000000000000000 index:0x1 pfn:0x4b46e
[  391.717010][ T3911] flags: 0x1ffc0000004000c(referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.718606][ T3911] raw: 01ffc0000004000c dead000000000100 dead000000000122 0000000000000000
[  391.720693][ T3911] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[  391.721733][ T3911] page dumped because: nonzero mapcount
[  391.722499][ T3911] Modules linked in:
[  391.723241][ T3911] CPU: 0 PID: 3911 Comm: syz.0.44 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.724726][ T3911] Hardware name: linux,dummy-virt (DT)
[  391.725368][ T3911] Call trace:
[  391.725880][ T3911]  dump_backtrace+0x94/0xec
[  391.726634][ T3911]  show_stack+0x18/0x24
[  391.727491][ T3911]  dump_stack_lvl+0x78/0x90
[  391.728372][ T3911]  dump_stack+0x18/0x24
[  391.729007][ T3911]  bad_page+0x84/0x11c
[  391.729808][ T3911]  free_page_is_bad_report+0x98/0xa4
[  391.730620][ T3911]  free_unref_folios+0x4c0/0x624
[  391.731426][ T3911]  folios_put_refs+0x108/0x284
[  391.732259][ T3911]  free_pages_and_swap_cache+0x14c/0x164
[  391.733353][ T3911]  __tlb_batch_free_encoded_pages+0x4c/0xdc
[  391.734175][ T3911]  tlb_flush_mmu+0x54/0xe4
[  391.734864][ T3911]  unmap_page_range+0xab0/0x1190
[  391.736642][ T3911]  unmap_single_vma.constprop.0+0x4c/0x84
[  391.737886][ T3911]  unmap_vmas+0x7c/0x170
[  391.738715][ T3911]  exit_mmap+0xc0/0x288
[  391.739492][ T3911]  __mmput+0x3c/0x170
[  391.740437][ T3911]  mmput+0x50/0x5c
[  391.741436][ T3911]  do_exit+0x270/0x98c
[  391.742317][ T3911]  do_group_exit+0x34/0x90
[  391.743171][ T3911]  copy_siginfo_to_user+0x0/0xec
[  391.744355][ T3911]  do_signal+0x94/0x1450
[  391.745401][ T3911]  do_notify_resume+0xd8/0x164
[  391.746247][ T3911]  el0_svc+0xc8/0xf8
[  391.747101][ T3911]  el0t_64_sync_handler+0x100/0x12c
[  391.748015][ T3911]  el0t_64_sync+0x19c/0x1a0
[  391.957930][ T3912] BUG: Bad page cache in process syz.0.45  pfn:4b2de
[  391.959098][ T3912] page: refcount:4 mapcount:1 mapping:00000000b1fef2fe index:0x0 pfn:0x4b2de
[  391.961542][ T3912] memcg:f4f00000060ad000
[  391.962709][ T3912] aops:shmem_aops ino:412
[  391.964041][ T3912] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  391.966000][ T3912] raw: 01ffc0000004002d ffffc1ffc02d6988 ffffc1ffc02dc7c8 fbf00000070f0e90
[  391.967452][ T3912] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  391.968710][ T3912] page dumped because: still mapped when deleted
[  391.970583][ T3912] CPU: 1 PID: 3912 Comm: syz.0.45 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  391.974659][ T3912] Hardware name: linux,dummy-virt (DT)
[  391.975601][ T3912] Call trace:
[  391.976127][ T3912]  dump_backtrace+0x94/0xec
[  391.977253][ T3912]  show_stack+0x18/0x24
[  391.977968][ T3912]  dump_stack_lvl+0x78/0x90
[  391.978748][ T3912]  dump_stack+0x18/0x24
[  391.980027][ T3912]  filemap_unaccount_folio+0x118/0x278
[  391.981172][ T3912]  __filemap_remove_folio+0x3c/0x178
[  391.982288][ T3912]  filemap_remove_folio+0x48/0xa8
[  391.983662][ T3912]  truncate_inode_folio+0x30/0x4c
[  391.984877][ T3912]  shmem_undo_range+0x208/0x620
[  391.985596][ T3912]  shmem_evict_inode+0x130/0x2dc
[  391.986351][ T3912]  evict+0xb4/0x198
[  391.987082][ T3912]  iput+0x100/0x1b8
[  391.987761][ T3912]  dentry_unlink_inode+0xc0/0x188
[  391.988586][ T3912]  __dentry_kill+0x7c/0x1d4
[  391.989324][ T3912]  dput.part.0+0x30/0xbc
[  391.990274][ T3912]  dput+0x4c/0x50
[  391.991090][ T3912]  __fput+0x110/0x2d4
[  391.991963][ T3912]  ____fput+0x10/0x1c
[  391.992734][ T3912]  task_work_run+0x78/0xd0
[  391.993534][ T3912]  do_notify_resume+0x134/0x164
[  391.994400][ T3912]  el0_svc+0xc8/0xf8
[  391.995118][ T3912]  el0t_64_sync_handler+0x100/0x12c
[  391.995977][ T3912]  el0t_64_sync+0x19c/0x1a0
[  392.000586][ T3912] BUG: Bad page cache in process syz.0.45  pfn:4b71f
[  392.001492][ T3912] page: refcount:4 mapcount:1 mapping:00000000b1fef2fe index:0x1 pfn:0x4b71f
[  392.002495][ T3912] memcg:f4f00000060ad000
[  392.003318][ T3912] aops:shmem_aops ino:412
[  392.004017][ T3912] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  392.005369][ T3912] raw: 01ffc0000004002d ffffc1ffc02cb788 ffffc1ffc1e80388 fbf00000070f0e90
[  392.006342][ T3912] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  392.007329][ T3912] page dumped because: still mapped when deleted
[  392.008313][ T3912] CPU: 1 PID: 3912 Comm: syz.0.45 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  392.009514][ T3912] Hardware name: linux,dummy-virt (DT)
[  392.010537][ T3912] Call trace:
[  392.011108][ T3912]  dump_backtrace+0x94/0xec
[  392.011950][ T3912]  show_stack+0x18/0x24
[  392.012735][ T3912]  dump_stack_lvl+0x78/0x90
[  392.013492][ T3912]  dump_stack+0x18/0x24
[  392.014470][ T3912]  filemap_unaccount_folio+0x118/0x278
[  392.015304][ T3912]  __filemap_remove_folio+0x3c/0x178
[  392.016125][ T3912]  filemap_remove_folio+0x48/0xa8
[  392.017186][ T3912]  truncate_inode_folio+0x30/0x4c
[  392.018085][ T3912]  shmem_undo_range+0x208/0x620
[  392.018945][ T3912]  shmem_evict_inode+0x130/0x2dc
[  392.019891][ T3912]  evict+0xb4/0x198
[  392.020669][ T3912]  iput+0x100/0x1b8
[  392.021461][ T3912]  dentry_unlink_inode+0xc0/0x188
[  392.022260][ T3912]  __dentry_kill+0x7c/0x1d4
[  392.023008][ T3912]  dput.part.0+0x30/0xbc
[  392.023905][ T3912]  dput+0x4c/0x50
[  392.024672][ T3912]  __fput+0x110/0x2d4
[  392.025552][ T3912]  ____fput+0x10/0x1c
[  392.026207][ T3912]  task_work_run+0x78/0xd0
[  392.027025][ T3912]  do_notify_resume+0x134/0x164
[  392.027754][ T3912]  el0_svc+0xc8/0xf8
[  392.028427][ T3912]  el0t_64_sync_handler+0x100/0x12c
[  392.029706][ T3912]  el0t_64_sync+0x19c/0x1a0
[  392.221589][ T3914] BUG: Bad page cache in process syz.0.46  pfn:4b575
[  392.222587][ T3914] page: refcount:4 mapcount:1 mapping:000000001d2e0f35 index:0x0 pfn:0x4b575
[  392.223729][ T3914] memcg:f4f00000060ad000
[  392.224471][ T3914] aops:shmem_aops ino:413
[  392.225137][ T3914] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  392.228638][ T3914] raw: 01ffc0000004002d ffffc1ffc02d8b08 ffffc1ffc02d1e48 f9f00000070f17f0
[  392.230914][ T3914] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  392.233294][ T3914] page dumped because: still mapped when deleted
[  392.234240][ T3914] CPU: 1 PID: 3914 Comm: syz.0.46 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  392.235557][ T3914] Hardware name: linux,dummy-virt (DT)
[  392.236324][ T3914] Call trace:
[  392.236940][ T3914]  dump_backtrace+0x94/0xec
[  392.237883][ T3914]  show_stack+0x18/0x24
[  392.238632][ T3914]  dump_stack_lvl+0x78/0x90
[  392.239411][ T3914]  dump_stack+0x18/0x24
[  392.240440][ T3914]  filemap_unaccount_folio+0x118/0x278
[  392.241362][ T3914]  __filemap_remove_folio+0x3c/0x178
[  392.242203][ T3914]  filemap_remove_folio+0x48/0xa8
[  392.243074][ T3914]  truncate_inode_folio+0x30/0x4c
[  392.243946][ T3914]  shmem_undo_range+0x208/0x620
[  392.244732][ T3914]  shmem_evict_inode+0x130/0x2dc
[  392.245609][ T3914]  evict+0xb4/0x198
[  392.246414][ T3914]  iput+0x100/0x1b8
[  392.247388][ T3914]  dentry_unlink_inode+0xc0/0x188
[  392.248225][ T3914]  __dentry_kill+0x7c/0x1d4
[  392.248950][ T3914]  dput.part.0+0x30/0xbc
[  392.249839][ T3914]  dput+0x4c/0x50
[  392.251010][ T3914]  __fput+0x110/0x2d4
[  392.251757][ T3914]  ____fput+0x10/0x1c
[  392.252518][ T3914]  task_work_run+0x78/0xd0
[  392.253334][ T3914]  do_notify_resume+0x134/0x164
[  392.254221][ T3914]  el0_svc+0xc8/0xf8
[  392.254949][ T3914]  el0t_64_sync_handler+0x100/0x12c
[  392.255804][ T3914]  el0t_64_sync+0x19c/0x1a0
[  392.266207][ T3914] BUG: Bad page cache in process syz.0.46  pfn:4b479
[  392.268027][ T3914] page: refcount:4 mapcount:1 mapping:000000001d2e0f35 index:0x1 pfn:0x4b479
[  392.269316][ T3914] memcg:f4f00000060ad000
[  392.270513][ T3914] aops:shmem_aops ino:413
[  392.272932][ T3914] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  392.275685][ T3914] raw: 01ffc0000004002d ffffc1ffc02d5d48 ffffc1ffc02cd9c8 f9f00000070f17f0
[  392.278556][ T3914] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  392.281200][ T3914] page dumped because: still mapped when deleted
[  392.282888][ T3914] CPU: 1 PID: 3914 Comm: syz.0.46 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  392.284886][ T3914] Hardware name: linux,dummy-virt (DT)
[  392.285630][ T3914] Call trace:
[  392.286210][ T3914]  dump_backtrace+0x94/0xec
[  392.287015][ T3914]  show_stack+0x18/0x24
[  392.287954][ T3914]  dump_stack_lvl+0x78/0x90
[  392.288830][ T3914]  dump_stack+0x18/0x24
[  392.289553][ T3914]  filemap_unaccount_folio+0x118/0x278
[  392.290709][ T3914]  __filemap_remove_folio+0x3c/0x178
[  392.291522][ T3914]  filemap_remove_folio+0x48/0xa8
[  392.292398][ T3914]  truncate_inode_folio+0x30/0x4c
[  392.293175][ T3914]  shmem_undo_range+0x208/0x620
[  392.294152][ T3914]  shmem_evict_inode+0x130/0x2dc
[  392.295949][ T3914]  evict+0xb4/0x198
[  392.296692][ T3914]  iput+0x100/0x1b8
[  392.297540][ T3914]  dentry_unlink_inode+0xc0/0x188
[  392.299518][ T3914]  __dentry_kill+0x7c/0x1d4
[  392.300659][ T3914]  dput.part.0+0x30/0xbc
[  392.302302][ T3914]  dput+0x4c/0x50
[  392.303775][ T3914]  __fput+0x110/0x2d4
[  392.305156][ T3914]  ____fput+0x10/0x1c
[  392.306025][ T3914]  task_work_run+0x78/0xd0
[  392.307666][ T3914]  do_notify_resume+0x134/0x164
[  392.309227][ T3914]  el0_svc+0xc8/0xf8
[  392.310603][ T3914]  el0t_64_sync_handler+0x100/0x12c
[  392.312191][ T3914]  el0t_64_sync+0x19c/0x1a0
[  392.552529][ T3916] BUG: Bad page cache in process syz.0.47  pfn:4bc8a
[  392.555109][ T3916] page: refcount:4 mapcount:1 mapping:00000000ddaa6cf6 index:0x0 pfn:0x4bc8a
[  392.556361][ T3916] memcg:f4f00000060ad000
[  392.557476][ T3916] aops:shmem_aops ino:f
[  392.558208][ T3916] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  392.560366][ T3916] raw: 01ffc0000004002d ffffc1ffc0325d48 ffffc1ffc02d8b08 faf0000003b85e30
[  392.561707][ T3916] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  392.562997][ T3916] page dumped because: still mapped when deleted
[  392.565087][ T3916] CPU: 0 PID: 3916 Comm: syz.0.47 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  392.567254][ T3916] Hardware name: linux,dummy-virt (DT)
[  392.568328][ T3916] Call trace:
[  392.569006][ T3916]  dump_backtrace+0x94/0xec
[  392.570188][ T3916]  show_stack+0x18/0x24
[  392.571099][ T3916]  dump_stack_lvl+0x78/0x90
[  392.571952][ T3916]  dump_stack+0x18/0x24
[  392.572820][ T3916]  filemap_unaccount_folio+0x118/0x278
[  392.573952][ T3916]  __filemap_remove_folio+0x3c/0x178
[  392.575123][ T3916]  filemap_remove_folio+0x48/0xa8
[  392.576311][ T3916]  truncate_inode_folio+0x30/0x4c
[  392.577616][ T3916]  shmem_undo_range+0x208/0x620
[  392.579620][ T3916]  shmem_evict_inode+0x130/0x2dc
[  392.581680][ T3916]  evict+0xb4/0x198
[  392.583073][ T3916]  iput+0x100/0x1b8
[  392.584548][ T3916]  dentry_unlink_inode+0xc0/0x188
[  392.585273][ T3916]  __dentry_kill+0x7c/0x1d4
[  392.586002][ T3916]  dput.part.0+0x30/0xbc
[  392.586689][ T3916]  dput+0x4c/0x50
[  392.587368][ T3916]  __fput+0x110/0x2d4
[  392.588041][ T3916]  ____fput+0x10/0x1c
[  392.588712][ T3916]  task_work_run+0x78/0xd0
[  392.589456][ T3916]  do_notify_resume+0x134/0x164
[  392.595651][ T3916]  el0_svc+0xc8/0xf8
[  392.596416][ T3916]  el0t_64_sync_handler+0x100/0x12c
[  392.597627][ T3916]  el0t_64_sync+0x19c/0x1a0
[  392.630862][ T3916] BUG: Bad page cache in process syz.0.47  pfn:4b62c
[  392.631949][ T3916] page: refcount:4 mapcount:1 mapping:00000000ddaa6cf6 index:0x1 pfn:0x4b62c
[  392.633086][ T3916] memcg:f4f00000060ad000
[  392.634229][ T3916] aops:shmem_aops ino:f
[  392.634909][ T3916] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  392.637982][ T3916] raw: 01ffc0000004002d ffffc1ffc02f2288 ffffc1ffc02d6988 faf0000003b85e30
[  392.640205][ T3916] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  392.641196][ T3916] page dumped because: still mapped when deleted
[  392.642167][ T3916] CPU: 0 PID: 3916 Comm: syz.0.47 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  392.645807][ T3916] Hardware name: linux,dummy-virt (DT)
[  392.647926][ T3916] Call trace:
[  392.648532][ T3916]  dump_backtrace+0x94/0xec
[  392.649730][ T3916]  show_stack+0x18/0x24
[  392.650820][ T3916]  dump_stack_lvl+0x78/0x90
[  392.651619][ T3916]  dump_stack+0x18/0x24
[  392.653359][ T3916]  filemap_unaccount_folio+0x118/0x278
[  392.654834][ T3916]  __filemap_remove_folio+0x3c/0x178
[  392.656349][ T3916]  filemap_remove_folio+0x48/0xa8
[  392.657697][ T3916]  truncate_inode_folio+0x30/0x4c
[  392.658687][ T3916]  shmem_undo_range+0x208/0x620
[  392.660035][ T3916]  shmem_evict_inode+0x130/0x2dc
[  392.661001][ T3916]  evict+0xb4/0x198
[  392.662268][ T3916]  iput+0x100/0x1b8
[  392.663412][ T3916]  dentry_unlink_inode+0xc0/0x188
[  392.664743][ T3916]  __dentry_kill+0x7c/0x1d4
[  392.665500][ T3916]  dput.part.0+0x30/0xbc
[  392.666466][ T3916]  dput+0x4c/0x50
[  392.667312][ T3916]  __fput+0x110/0x2d4
[  392.668064][ T3916]  ____fput+0x10/0x1c
[  392.669550][ T3916]  task_work_run+0x78/0xd0
[  392.670995][ T3916]  do_notify_resume+0x134/0x164
[  392.672368][ T3916]  el0_svc+0xc8/0xf8
[  392.673224][ T3916]  el0t_64_sync_handler+0x100/0x12c
[  392.674480][ T3916]  el0t_64_sync+0x19c/0x1a0
[  392.846118][ T3918] BUG: Bad page cache in process syz.0.48  pfn:4b471
[  392.848225][ T3918] page: refcount:4 mapcount:1 mapping:00000000c6de0044 index:0x0 pfn:0x4b471
[  392.851903][ T3918] memcg:f4f00000060ad000
[  392.855159][ T3918] aops:shmem_aops ino:10
[  392.856663][ T3918] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  392.858609][ T3918] raw: 01ffc0000004002d ffffc1ffc02cd9c8 ffffc1ffc0325d48 f0f0000003b857f0
[  392.861441][ T3918] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  392.864287][ T3918] page dumped because: still mapped when deleted
[  392.866570][ T3918] CPU: 0 PID: 3918 Comm: syz.0.48 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  392.869283][ T3918] Hardware name: linux,dummy-virt (DT)
[  392.870803][ T3918] Call trace:
[  392.871542][ T3918]  dump_backtrace+0x94/0xec
[  392.872338][ T3918]  show_stack+0x18/0x24
[  392.873068][ T3918]  dump_stack_lvl+0x78/0x90
[  392.873924][ T3918]  dump_stack+0x18/0x24
[  392.874716][ T3918]  filemap_unaccount_folio+0x118/0x278
[  392.875557][ T3918]  __filemap_remove_folio+0x3c/0x178
[  392.876417][ T3918]  filemap_remove_folio+0x48/0xa8
[  392.877196][ T3918]  truncate_inode_folio+0x30/0x4c
[  392.878105][ T3918]  shmem_undo_range+0x208/0x620
[  392.878907][ T3918]  shmem_evict_inode+0x130/0x2dc
[  392.879800][ T3918]  evict+0xb4/0x198
[  392.880559][ T3918]  iput+0x100/0x1b8
[  392.881234][ T3918]  dentry_unlink_inode+0xc0/0x188
[  392.881983][ T3918]  __dentry_kill+0x7c/0x1d4
[  392.882681][ T3918]  dput.part.0+0x30/0xbc
[  392.883426][ T3918]  dput+0x4c/0x50
[  392.884160][ T3918]  __fput+0x110/0x2d4
[  392.884888][ T3918]  ____fput+0x10/0x1c
[  392.886164][ T3918]  task_work_run+0x78/0xd0
[  392.887735][ T3918]  do_notify_resume+0x134/0x164
[  392.889114][ T3918]  el0_svc+0xc8/0xf8
[  392.890711][ T3918]  el0t_64_sync_handler+0x100/0x12c
[  392.892374][ T3918]  el0t_64_sync+0x19c/0x1a0
[  392.896909][ T3918] BUG: Bad page cache in process syz.0.48  pfn:4c975
[  392.898248][ T3918] page: refcount:4 mapcount:1 mapping:00000000c6de0044 index:0x1 pfn:0x4c975
[  392.899310][ T3918] memcg:f4f00000060ad000
[  392.900915][ T3918] aops:shmem_aops ino:10
[  392.903148][ T3918] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  392.906027][ T3918] raw: 01ffc0000004002d ffffc1ffc02d1c48 ffffc1ffc02d9d08 f0f0000003b857f0
[  392.908825][ T3918] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  392.911178][ T3918] page dumped because: still mapped when deleted
[  392.915007][ T3918] CPU: 0 PID: 3918 Comm: syz.0.48 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  392.920112][ T3918] Hardware name: linux,dummy-virt (DT)
[  392.921702][ T3918] Call trace:
[  392.922369][ T3918]  dump_backtrace+0x94/0xec
[  392.923348][ T3918]  show_stack+0x18/0x24
[  392.925018][ T3918]  dump_stack_lvl+0x78/0x90
[  392.925763][ T3918]  dump_stack+0x18/0x24
[  392.926464][ T3918]  filemap_unaccount_folio+0x118/0x278
[  392.929399][ T3918]  __filemap_remove_folio+0x3c/0x178
[  392.931850][ T3918]  filemap_remove_folio+0x48/0xa8
[  392.932920][ T3918]  truncate_inode_folio+0x30/0x4c
[  392.933686][ T3918]  shmem_undo_range+0x208/0x620
[  392.934485][ T3918]  shmem_evict_inode+0x130/0x2dc
[  392.935511][ T3918]  evict+0xb4/0x198
[  392.937009][ T3918]  iput+0x100/0x1b8
[  392.938114][ T3918]  dentry_unlink_inode+0xc0/0x188
[  392.939979][ T3918]  __dentry_kill+0x7c/0x1d4
[  392.940986][ T3918]  dput.part.0+0x30/0xbc
[  392.941968][ T3918]  dput+0x4c/0x50
[  392.942688][ T3918]  __fput+0x110/0x2d4
[  392.943932][ T3918]  ____fput+0x10/0x1c
[  392.945646][ T3918]  task_work_run+0x78/0xd0
[  392.947381][ T3918]  do_notify_resume+0x134/0x164
[  392.948248][ T3918]  el0_svc+0xc8/0xf8
[  392.948888][ T3918]  el0t_64_sync_handler+0x100/0x12c
[  392.950760][ T3918]  el0t_64_sync+0x19c/0x1a0
[  393.129015][ T3920] BUG: Bad page cache in process syz.0.49  pfn:4b6b0
[  393.130202][ T3920] page: refcount:4 mapcount:1 mapping:00000000a5c0f789 index:0x0 pfn:0x4b6b0
[  393.131426][ T3920] memcg:f4f00000060ad000
[  393.132103][ T3920] aops:shmem_aops ino:11
[  393.132835][ T3920] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  393.134414][ T3920] raw: 01ffc0000004002d ffffc1ffc02d6988 ffffc1ffc02cd9c8 f2f0000003b84850
[  393.135484][ T3920] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  393.136533][ T3920] page dumped because: still mapped when deleted
[  393.137461][ T3920] CPU: 0 PID: 3920 Comm: syz.0.49 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  393.138818][ T3920] Hardware name: linux,dummy-virt (DT)
[  393.139678][ T3920] Call trace:
[  393.140528][ T3920]  dump_backtrace+0x94/0xec
[  393.141280][ T3920]  show_stack+0x18/0x24
[  393.142032][ T3920]  dump_stack_lvl+0x78/0x90
[  393.142774][ T3920]  dump_stack+0x18/0x24
[  393.143554][ T3920]  filemap_unaccount_folio+0x118/0x278
[  393.144446][ T3920]  __filemap_remove_folio+0x3c/0x178
[  393.145251][ T3920]  filemap_remove_folio+0x48/0xa8
[  393.146369][ T3920]  truncate_inode_folio+0x30/0x4c
[  393.147372][ T3920]  shmem_undo_range+0x208/0x620
[  393.148196][ T3920]  shmem_evict_inode+0x130/0x2dc
[  393.148958][ T3920]  evict+0xb4/0x198
[  393.149932][ T3920]  iput+0x100/0x1b8
[  393.150822][ T3920]  dentry_unlink_inode+0xc0/0x188
[  393.152334][ T3920]  __dentry_kill+0x7c/0x1d4
[  393.153069][ T3920]  dput.part.0+0x30/0xbc
[  393.153798][ T3920]  dput+0x4c/0x50
[  393.154445][ T3920]  __fput+0x110/0x2d4
[  393.155712][ T3920]  ____fput+0x10/0x1c
[  393.156454][ T3920]  task_work_run+0x78/0xd0
[  393.157854][ T3920]  do_notify_resume+0x134/0x164
[  393.158691][ T3920]  el0_svc+0xc8/0xf8
[  393.159482][ T3920]  el0t_64_sync_handler+0x100/0x12c
[  393.160771][ T3920]  el0t_64_sync+0x19c/0x1a0
[  393.164612][ T3920] BUG: Bad page cache in process syz.0.49  pfn:4b367
[  393.165557][ T3920] page: refcount:4 mapcount:1 mapping:00000000a5c0f789 index:0x1 pfn:0x4b367
[  393.166643][ T3920] memcg:f4f00000060ad000
[  393.167283][ T3920] aops:shmem_aops ino:11
[  393.168176][ T3920] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  393.169745][ T3920] raw: 01ffc0000004002d ffffc1ffc02dac08 ffffc1ffc03579c8 f2f0000003b84850
[  393.170928][ T3920] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  393.172010][ T3920] page dumped because: still mapped when deleted
[  393.172912][ T3920] CPU: 0 PID: 3920 Comm: syz.0.49 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  393.174600][ T3920] Hardware name: linux,dummy-virt (DT)
[  393.175775][ T3920] Call trace:
[  393.176468][ T3920]  dump_backtrace+0x94/0xec
[  393.177322][ T3920]  show_stack+0x18/0x24
[  393.178356][ T3920]  dump_stack_lvl+0x78/0x90
[  393.179509][ T3920]  dump_stack+0x18/0x24
[  393.180513][ T3920]  filemap_unaccount_folio+0x118/0x278
[  393.181413][ T3920]  __filemap_remove_folio+0x3c/0x178
[  393.182231][ T3920]  filemap_remove_folio+0x48/0xa8
[  393.183134][ T3920]  truncate_inode_folio+0x30/0x4c
[  393.183884][ T3920]  shmem_undo_range+0x208/0x620
[  393.184589][ T3920]  shmem_evict_inode+0x130/0x2dc
[  393.185289][ T3920]  evict+0xb4/0x198
[  393.185883][ T3920]  iput+0x100/0x1b8
[  393.186575][ T3920]  dentry_unlink_inode+0xc0/0x188
[  393.187355][ T3920]  __dentry_kill+0x7c/0x1d4
[  393.188183][ T3920]  dput.part.0+0x30/0xbc
[  393.188874][ T3920]  dput+0x4c/0x50
[  393.189540][ T3920]  __fput+0x110/0x2d4
[  393.190633][ T3920]  ____fput+0x10/0x1c
[  393.191420][ T3920]  task_work_run+0x78/0xd0
[  393.192135][ T3920]  do_notify_resume+0x134/0x164
[  393.192943][ T3920]  el0_svc+0xc8/0xf8
[  393.193712][ T3920]  el0t_64_sync_handler+0x100/0x12c
[  393.194833][ T3920]  el0t_64_sync+0x19c/0x1a0
1970/01/01 00:06:33 executed programs: 37
[  393.391759][ T3922] BUG: Bad page cache in process syz.0.50  pfn:ba00e
[  393.393674][ T3922] page: refcount:4 mapcount:1 mapping:00000000673eca63 index:0x0 pfn:0xba00e
[  393.394720][ T3922] memcg:f4f00000060ad000
[  393.395442][ T3922] aops:shmem_aops ino:12
[  393.396276][ T3922] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  393.398415][ T3922] raw: 01ffc0000004002d ffffc1ffc02d9d08 ffffc1ffc02d6988 f2f0000003b854d0
[  393.400895][ T3922] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  393.402088][ T3922] page dumped because: still mapped when deleted
[  393.403095][ T3922] CPU: 0 PID: 3922 Comm: syz.0.50 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  393.404861][ T3922] Hardware name: linux,dummy-virt (DT)
[  393.405497][ T3922] Call trace:
[  393.406476][ T3922]  dump_backtrace+0x94/0xec
[  393.407321][ T3922]  show_stack+0x18/0x24
[  393.408337][ T3922]  dump_stack_lvl+0x78/0x90
[  393.409045][ T3922]  dump_stack+0x18/0x24
[  393.409806][ T3922]  filemap_unaccount_folio+0x118/0x278
[  393.412123][ T3922]  __filemap_remove_folio+0x3c/0x178
[  393.412895][ T3922]  filemap_remove_folio+0x48/0xa8
[  393.413690][ T3922]  truncate_inode_folio+0x30/0x4c
[  393.414513][ T3922]  shmem_undo_range+0x208/0x620
[  393.415434][ T3922]  shmem_evict_inode+0x130/0x2dc
[  393.417382][ T3922]  evict+0xb4/0x198
[  393.418130][ T3922]  iput+0x100/0x1b8
[  393.418972][ T3922]  dentry_unlink_inode+0xc0/0x188
[  393.419915][ T3922]  __dentry_kill+0x7c/0x1d4
[  393.421074][ T3922]  dput.part.0+0x30/0xbc
[  393.421793][ T3922]  dput+0x4c/0x50
[  393.423681][ T3922]  __fput+0x110/0x2d4
[  393.424871][ T3922]  ____fput+0x10/0x1c
[  393.425605][ T3922]  task_work_run+0x78/0xd0
[  393.426422][ T3922]  do_notify_resume+0x134/0x164
[  393.427329][ T3922]  el0_svc+0xc8/0xf8
[  393.428608][ T3922]  el0t_64_sync_handler+0x100/0x12c
[  393.429433][ T3922]  el0t_64_sync+0x19c/0x1a0
[  393.445542][ T3922] BUG: Bad page cache in process syz.0.50  pfn:4b5a6
[  393.446518][ T3922] page: refcount:4 mapcount:1 mapping:00000000673eca63 index:0x1 pfn:0x4b5a6
[  393.447641][ T3922] memcg:f4f00000060ad000
[  393.448347][ T3922] aops:shmem_aops ino:12
[  393.450153][ T3922] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  393.452676][ T3922] raw: 01ffc0000004002d ffffc1ffc1e80388 ffffc1ffc02f2188 f2f0000003b854d0
[  393.453876][ T3922] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  393.455417][ T3922] page dumped because: still mapped when deleted
[  393.456153][ T3922] CPU: 0 PID: 3922 Comm: syz.0.50 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  393.458727][ T3922] Hardware name: linux,dummy-virt (DT)
[  393.459754][ T3922] Call trace:
[  393.460543][ T3922]  dump_backtrace+0x94/0xec
[  393.462411][ T3922]  show_stack+0x18/0x24
[  393.463968][ T3922]  dump_stack_lvl+0x78/0x90
[  393.464812][ T3922]  dump_stack+0x18/0x24
[  393.465722][ T3922]  filemap_unaccount_folio+0x118/0x278
[  393.466765][ T3922]  __filemap_remove_folio+0x3c/0x178
[  393.467642][ T3922]  filemap_remove_folio+0x48/0xa8
[  393.468604][ T3922]  truncate_inode_folio+0x30/0x4c
[  393.469500][ T3922]  shmem_undo_range+0x208/0x620
[  393.470442][ T3922]  shmem_evict_inode+0x130/0x2dc
[  393.471787][ T3922]  evict+0xb4/0x198
[  393.472516][ T3922]  iput+0x100/0x1b8
[  393.474576][ T3922]  dentry_unlink_inode+0xc0/0x188
[  393.475408][ T3922]  __dentry_kill+0x7c/0x1d4
[  393.476104][ T3922]  dput.part.0+0x30/0xbc
[  393.477182][ T3922]  dput+0x4c/0x50
[  393.477884][ T3922]  __fput+0x110/0x2d4
[  393.478647][ T3922]  ____fput+0x10/0x1c
[  393.479495][ T3922]  task_work_run+0x78/0xd0
[  393.480450][ T3922]  do_notify_resume+0x134/0x164
[  393.481610][ T3922]  el0_svc+0xc8/0xf8
[  393.482690][ T3922]  el0t_64_sync_handler+0x100/0x12c
[  393.483773][ T3922]  el0t_64_sync+0x19c/0x1a0
[  393.637774][ T3924] BUG: Bad page cache in process syz.0.51  pfn:48627
[  393.639704][ T3924] page: refcount:4 mapcount:1 mapping:00000000c6de0044 index:0x0 pfn:0x48627
[  393.642075][ T3924] memcg:f4f00000060ad000
[  393.642895][ T3924] aops:shmem_aops ino:13
[  393.643985][ T3924] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  393.647527][ T3924] raw: 01ffc0000004002d ffffc1ffc01f09c8 ffffc1ffc02d9d08 f0f0000003b857f0
[  393.651311][ T3924] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  393.654116][ T3924] page dumped because: still mapped when deleted
[  393.656154][ T3924] CPU: 0 PID: 3924 Comm: syz.0.51 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  393.657425][ T3924] Hardware name: linux,dummy-virt (DT)
[  393.658076][ T3924] Call trace:
[  393.658707][ T3924]  dump_backtrace+0x94/0xec
[  393.659680][ T3924]  show_stack+0x18/0x24
[  393.660478][ T3924]  dump_stack_lvl+0x78/0x90
[  393.661318][ T3924]  dump_stack+0x18/0x24
[  393.662058][ T3924]  filemap_unaccount_folio+0x118/0x278
[  393.662822][ T3924]  __filemap_remove_folio+0x3c/0x178
[  393.663630][ T3924]  filemap_remove_folio+0x48/0xa8
[  393.665520][ T3924]  truncate_inode_folio+0x30/0x4c
[  393.667347][ T3924]  shmem_undo_range+0x208/0x620
[  393.669016][ T3924]  shmem_evict_inode+0x130/0x2dc
[  393.671047][ T3924]  evict+0xb4/0x198
[  393.672390][ T3924]  iput+0x100/0x1b8
[  393.673784][ T3924]  dentry_unlink_inode+0xc0/0x188
[  393.675421][ T3924]  __dentry_kill+0x7c/0x1d4
[  393.676837][ T3924]  dput.part.0+0x30/0xbc
[  393.678373][ T3924]  dput+0x4c/0x50
[  393.679868][ T3924]  __fput+0x110/0x2d4
[  393.681456][ T3924]  ____fput+0x10/0x1c
[  393.683604][ T3924]  task_work_run+0x78/0xd0
[  393.685432][ T3924]  do_notify_resume+0x134/0x164
[  393.686404][ T3924]  el0_svc+0xc8/0xf8
[  393.687237][ T3924]  el0t_64_sync_handler+0x100/0x12c
[  393.688054][ T3924]  el0t_64_sync+0x19c/0x1a0
[  393.698008][ T3924] BUG: Bad page cache in process syz.0.51  pfn:4b674
[  393.699101][ T3924] page: refcount:4 mapcount:1 mapping:00000000c6de0044 index:0x1 pfn:0x4b674
[  393.703383][ T3924] memcg:f4f00000060ad000
[  393.704324][ T3924] aops:shmem_aops ino:13
[  393.705092][ T3924] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  393.707513][ T3924] raw: 01ffc0000004002d ffffc1ffc02189c8 ffffc1ffc0357a48 f0f0000003b857f0
[  393.710827][ T3924] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  393.712892][ T3924] page dumped because: still mapped when deleted
[  393.713980][ T3924] CPU: 0 PID: 3924 Comm: syz.0.51 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  393.716799][ T3924] Hardware name: linux,dummy-virt (DT)
[  393.718084][ T3924] Call trace:
[  393.718677][ T3924]  dump_backtrace+0x94/0xec
[  393.719824][ T3924]  show_stack+0x18/0x24
[  393.720754][ T3924]  dump_stack_lvl+0x78/0x90
[  393.721850][ T3924]  dump_stack+0x18/0x24
[  393.722869][ T3924]  filemap_unaccount_folio+0x118/0x278
[  393.723962][ T3924]  __filemap_remove_folio+0x3c/0x178
[  393.725074][ T3924]  filemap_remove_folio+0x48/0xa8
[  393.726808][ T3924]  truncate_inode_folio+0x30/0x4c
[  393.728212][ T3924]  shmem_undo_range+0x208/0x620
[  393.729455][ T3924]  shmem_evict_inode+0x130/0x2dc
[  393.730640][ T3924]  evict+0xb4/0x198
[  393.731832][ T3924]  iput+0x100/0x1b8
[  393.733206][ T3924]  dentry_unlink_inode+0xc0/0x188
[  393.735533][ T3924]  __dentry_kill+0x7c/0x1d4
[  393.736500][ T3924]  dput.part.0+0x30/0xbc
[  393.737559][ T3924]  dput+0x4c/0x50
[  393.738626][ T3924]  __fput+0x110/0x2d4
[  393.739856][ T3924]  ____fput+0x10/0x1c
[  393.741324][ T3924]  task_work_run+0x78/0xd0
[  393.743459][ T3924]  do_notify_resume+0x134/0x164
[  393.744931][ T3924]  el0_svc+0xc8/0xf8
[  393.745905][ T3924]  el0t_64_sync_handler+0x100/0x12c
[  393.746954][ T3924]  el0t_64_sync+0x19c/0x1a0
[  393.945973][ T3926] BUG: Bad page cache in process syz.0.52  pfn:4b70f
[  393.947788][ T3926] page: refcount:4 mapcount:1 mapping:00000000e748ea1d index:0x0 pfn:0x4b70f
[  393.951339][ T3926] memcg:f4f00000060ad000
[  393.952769][ T3926] aops:shmem_aops ino:414
[  393.954537][ T3926] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  393.958780][ T3926] raw: 01ffc0000004002d ffffc1ffc02cb348 ffffc1ffc02cb408 f8f00000070f0530
[  393.961490][ T3926] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  393.962412][ T3926] page dumped because: still mapped when deleted
[  393.963154][ T3926] CPU: 1 PID: 3926 Comm: syz.0.52 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  393.964434][ T3926] Hardware name: linux,dummy-virt (DT)
[  393.965077][ T3926] Call trace:
[  393.965618][ T3926]  dump_backtrace+0x94/0xec
[  393.966443][ T3926]  show_stack+0x18/0x24
[  393.967120][ T3926]  dump_stack_lvl+0x78/0x90
[  393.967814][ T3926]  dump_stack+0x18/0x24
[  393.968456][ T3926]  filemap_unaccount_folio+0x118/0x278
[  393.969098][ T3926]  __filemap_remove_folio+0x3c/0x178
[  393.969703][ T3926]  filemap_remove_folio+0x48/0xa8
[  393.970521][ T3926]  truncate_inode_folio+0x30/0x4c
[  393.971163][ T3926]  shmem_undo_range+0x208/0x620
[  393.973116][ T3926]  shmem_evict_inode+0x130/0x2dc
[  393.973849][ T3926]  evict+0xb4/0x198
[  393.974538][ T3926]  iput+0x100/0x1b8
[  393.975178][ T3926]  dentry_unlink_inode+0xc0/0x188
[  393.975997][ T3926]  __dentry_kill+0x7c/0x1d4
[  393.976711][ T3926]  dput.part.0+0x30/0xbc
[  393.977389][ T3926]  dput+0x4c/0x50
[  393.978083][ T3926]  __fput+0x110/0x2d4
[  393.978766][ T3926]  ____fput+0x10/0x1c
[  393.979408][ T3926]  task_work_run+0x78/0xd0
[  393.980485][ T3926]  do_notify_resume+0x134/0x164
[  393.980900][ T3926]  el0_svc+0xc8/0xf8
[  393.981305][ T3926]  el0t_64_sync_handler+0x100/0x12c
[  393.981714][ T3926]  el0t_64_sync+0x19c/0x1a0
[  393.984771][ T3926] BUG: Bad page cache in process syz.0.52  pfn:4b2d0
[  393.985743][ T3926] page: refcount:4 mapcount:1 mapping:00000000e748ea1d index:0x1 pfn:0x4b2d0
[  393.986883][ T3926] memcg:f4f00000060ad000
[  393.987575][ T3926] aops:shmem_aops ino:414
[  393.988317][ T3926] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  393.991403][ T3926] raw: 01ffc0000004002d ffffc1ffc02dc3c8 ffffc1ffc02d1ec8 f8f00000070f0530
[  393.992532][ T3926] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  393.993843][ T3926] page dumped because: still mapped when deleted
[  393.994794][ T3926] CPU: 0 PID: 3926 Comm: syz.0.52 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  393.998185][ T3926] Hardware name: linux,dummy-virt (DT)
[  393.999403][ T3926] Call trace:
[  394.001041][ T3926]  dump_backtrace+0x94/0xec
[  394.003973][ T3926]  show_stack+0x18/0x24
[  394.004895][ T3926]  dump_stack_lvl+0x78/0x90
[  394.006240][ T3926]  dump_stack+0x18/0x24
[  394.008004][ T3926]  filemap_unaccount_folio+0x118/0x278
[  394.009781][ T3926]  __filemap_remove_folio+0x3c/0x178
[  394.011612][ T3926]  filemap_remove_folio+0x48/0xa8
[  394.012540][ T3926]  truncate_inode_folio+0x30/0x4c
[  394.013416][ T3926]  shmem_undo_range+0x208/0x620
[  394.014324][ T3926]  shmem_evict_inode+0x130/0x2dc
[  394.015190][ T3926]  evict+0xb4/0x198
[  394.015845][ T3926]  iput+0x100/0x1b8
[  394.016483][ T3926]  dentry_unlink_inode+0xc0/0x188
[  394.017209][ T3926]  __dentry_kill+0x7c/0x1d4
[  394.017924][ T3926]  dput.part.0+0x30/0xbc
[  394.018630][ T3926]  dput+0x4c/0x50
[  394.020456][ T3926]  __fput+0x110/0x2d4
[  394.021302][ T3926]  ____fput+0x10/0x1c
[  394.022160][ T3926]  task_work_run+0x78/0xd0
[  394.022946][ T3926]  do_notify_resume+0x134/0x164
[  394.023832][ T3926]  el0_svc+0xc8/0xf8
[  394.025303][ T3926]  el0t_64_sync_handler+0x100/0x12c
[  394.026812][ T3926]  el0t_64_sync+0x19c/0x1a0
[  394.183988][ T3928] BUG: Bad page cache in process syz.0.53  pfn:4c267
[  394.184976][ T3928] page: refcount:4 mapcount:1 mapping:00000000b1fef2fe index:0x0 pfn:0x4c267
[  394.186305][ T3928] memcg:f4f00000060ad000
[  394.186967][ T3928] aops:shmem_aops ino:415
[  394.188030][ T3928] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  394.192620][ T3928] raw: 01ffc0000004002d ffffc1ffc02d8908 ffffc1ffc02d1dc8 fbf00000070f0e90
[  394.194047][ T3928] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  394.196651][ T3928] page dumped because: still mapped when deleted
[  394.197518][ T3928] CPU: 1 PID: 3928 Comm: syz.0.53 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  394.199040][ T3928] Hardware name: linux,dummy-virt (DT)
[  394.200424][ T3928] Call trace:
[  394.201010][ T3928]  dump_backtrace+0x94/0xec
[  394.203045][ T3928]  show_stack+0x18/0x24
[  394.205060][ T3928]  dump_stack_lvl+0x78/0x90
[  394.206168][ T3928]  dump_stack+0x18/0x24
[  394.206896][ T3928]  filemap_unaccount_folio+0x118/0x278
[  394.207716][ T3928]  __filemap_remove_folio+0x3c/0x178
[  394.208597][ T3928]  filemap_remove_folio+0x48/0xa8
[  394.209336][ T3928]  truncate_inode_folio+0x30/0x4c
[  394.210399][ T3928]  shmem_undo_range+0x208/0x620
[  394.211115][ T3928]  shmem_evict_inode+0x130/0x2dc
[  394.212071][ T3928]  evict+0xb4/0x198
[  394.212980][ T3928]  iput+0x100/0x1b8
[  394.213675][ T3928]  dentry_unlink_inode+0xc0/0x188
[  394.214374][ T3928]  __dentry_kill+0x7c/0x1d4
[  394.215030][ T3928]  dput.part.0+0x30/0xbc
[  394.215990][ T3928]  dput+0x4c/0x50
[  394.216637][ T3928]  __fput+0x110/0x2d4
[  394.217307][ T3928]  ____fput+0x10/0x1c
[  394.218002][ T3928]  task_work_run+0x78/0xd0
[  394.218742][ T3928]  do_notify_resume+0x134/0x164
[  394.220251][ T3928]  el0_svc+0xc8/0xf8
[  394.220989][ T3928]  el0t_64_sync_handler+0x100/0x12c
[  394.221712][ T3928]  el0t_64_sync+0x19c/0x1a0
[  394.242339][ T3928] BUG: Bad page cache in process syz.0.53  pfn:4b477
[  394.243373][ T3928] page: refcount:4 mapcount:1 mapping:00000000b1fef2fe index:0x1 pfn:0x4b477
[  394.244498][ T3928] memcg:f4f00000060ad000
[  394.245130][ T3928] aops:shmem_aops ino:415
[  394.246011][ T3928] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  394.247423][ T3928] raw: 01ffc0000004002d ffffc1ffc03099c8 ffffc1ffc03aa3c8 fbf00000070f0e90
[  394.248673][ T3928] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  394.249720][ T3928] page dumped because: still mapped when deleted
[  394.250755][ T3928] CPU: 1 PID: 3928 Comm: syz.0.53 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  394.252074][ T3928] Hardware name: linux,dummy-virt (DT)
[  394.252760][ T3928] Call trace:
[  394.253513][ T3928]  dump_backtrace+0x94/0xec
[  394.254244][ T3928]  show_stack+0x18/0x24
[  394.254934][ T3928]  dump_stack_lvl+0x78/0x90
[  394.255693][ T3928]  dump_stack+0x18/0x24
[  394.256699][ T3928]  filemap_unaccount_folio+0x118/0x278
[  394.257536][ T3928]  __filemap_remove_folio+0x3c/0x178
[  394.258369][ T3928]  filemap_remove_folio+0x48/0xa8
[  394.259075][ T3928]  truncate_inode_folio+0x30/0x4c
[  394.260132][ T3928]  shmem_undo_range+0x208/0x620
[  394.260940][ T3928]  shmem_evict_inode+0x130/0x2dc
[  394.261765][ T3928]  evict+0xb4/0x198
[  394.262418][ T3928]  iput+0x100/0x1b8
[  394.263041][ T3928]  dentry_unlink_inode+0xc0/0x188
[  394.263802][ T3928]  __dentry_kill+0x7c/0x1d4
[  394.264500][ T3928]  dput.part.0+0x30/0xbc
[  394.265195][ T3928]  dput+0x4c/0x50
[  394.265838][ T3928]  __fput+0x110/0x2d4
[  394.266521][ T3928]  ____fput+0x10/0x1c
[  394.267351][ T3928]  task_work_run+0x78/0xd0
[  394.268260][ T3928]  do_notify_resume+0x134/0x164
[  394.269075][ T3928]  el0_svc+0xc8/0xf8
[  394.269845][ T3928]  el0t_64_sync_handler+0x100/0x12c
[  394.270911][ T3928]  el0t_64_sync+0x19c/0x1a0
[  394.447386][ T3930] BUG: Bad page cache in process syz.0.54  pfn:4b560
[  394.448273][ T3930] page: refcount:5 mapcount:1 mapping:00000000a5c0f789 index:0x0 pfn:0x4b560
[  394.450271][ T3930] memcg:f4f00000060ad000
[  394.450913][ T3930] aops:shmem_aops ino:14
[  394.452447][ T3930] flags: 0x1ffc0000004000d(locked|referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  394.454655][ T3930] raw: 01ffc0000004000d 0000000000000000 dead000000000122 f2f0000003b84850
[  394.457159][ T3930] raw: 0000000000000000 0000000000000000 0000000500000000 f4f00000060ad000
[  394.458427][ T3930] page dumped because: still mapped when deleted
[  394.459253][ T3930] CPU: 1 PID: 3930 Comm: syz.0.54 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  394.460873][ T3930] Hardware name: linux,dummy-virt (DT)
[  394.461581][ T3930] Call trace:
[  394.462139][ T3930]  dump_backtrace+0x94/0xec
[  394.463863][ T3930]  show_stack+0x18/0x24
[  394.465597][ T3930]  dump_stack_lvl+0x78/0x90
[  394.467162][ T3930]  dump_stack+0x18/0x24
[  394.469440][ T3930]  filemap_unaccount_folio+0x118/0x278
[  394.470488][ T3930]  __filemap_remove_folio+0x3c/0x178
[  394.471279][ T3930]  filemap_remove_folio+0x48/0xa8
[  394.472064][ T3930]  truncate_inode_folio+0x30/0x4c
[  394.472800][ T3930]  shmem_undo_range+0x208/0x620
[  394.473522][ T3930]  shmem_evict_inode+0x130/0x2dc
[  394.474267][ T3930]  evict+0xb4/0x198
[  394.474932][ T3930]  iput+0x100/0x1b8
[  394.475655][ T3930]  dentry_unlink_inode+0xc0/0x188
[  394.476407][ T3930]  __dentry_kill+0x7c/0x1d4
[  394.477155][ T3930]  dput.part.0+0x30/0xbc
[  394.477913][ T3930]  dput+0x4c/0x50
[  394.478562][ T3930]  __fput+0x110/0x2d4
[  394.479273][ T3930]  ____fput+0x10/0x1c
[  394.480103][ T3930]  task_work_run+0x78/0xd0
[  394.480942][ T3930]  do_notify_resume+0x134/0x164
[  394.481664][ T3930]  el0_svc+0xc8/0xf8
[  394.482332][ T3930]  el0t_64_sync_handler+0x100/0x12c
[  394.483061][ T3930]  el0t_64_sync+0x19c/0x1a0
[  394.486728][ T3930] BUG: Bad page cache in process syz.0.54  pfn:4d5f9
[  394.487711][ T3930] page: refcount:5 mapcount:1 mapping:00000000a5c0f789 index:0x1 pfn:0x4d5f9
[  394.489288][ T3930] memcg:f4f00000060ad000
[  394.489956][ T3930] aops:shmem_aops ino:14
[  394.491019][ T3930] flags: 0x1ffc0000004000d(locked|referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  394.492619][ T3930] raw: 01ffc0000004000d 0000000000000000 dead000000000122 f2f0000003b84850
[  394.493837][ T3930] raw: 0000000000000001 0000000000000000 0000000500000000 f4f00000060ad000
[  394.494887][ T3930] page dumped because: still mapped when deleted
[  394.495904][ T3930] CPU: 1 PID: 3930 Comm: syz.0.54 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  394.497525][ T3930] Hardware name: linux,dummy-virt (DT)
[  394.498210][ T3930] Call trace:
[  394.498785][ T3930]  dump_backtrace+0x94/0xec
[  394.499537][ T3930]  show_stack+0x18/0x24
[  394.500633][ T3930]  dump_stack_lvl+0x78/0x90
[  394.501305][ T3930]  dump_stack+0x18/0x24
[  394.502442][ T3930]  filemap_unaccount_folio+0x118/0x278
[  394.503324][ T3930]  __filemap_remove_folio+0x3c/0x178
[  394.504284][ T3930]  filemap_remove_folio+0x48/0xa8
[  394.505299][ T3930]  truncate_inode_folio+0x30/0x4c
[  394.506234][ T3930]  shmem_undo_range+0x208/0x620
[  394.507070][ T3930]  shmem_evict_inode+0x130/0x2dc
[  394.507870][ T3930]  evict+0xb4/0x198
[  394.508481][ T3930]  iput+0x100/0x1b8
[  394.509061][ T3930]  dentry_unlink_inode+0xc0/0x188
[  394.510005][ T3930]  __dentry_kill+0x7c/0x1d4
[  394.510708][ T3930]  dput.part.0+0x30/0xbc
[  394.511403][ T3930]  dput+0x4c/0x50
[  394.512107][ T3930]  __fput+0x110/0x2d4
[  394.512686][ T3930]  ____fput+0x10/0x1c
[  394.513044][ T3930]  task_work_run+0x78/0xd0
[  394.513591][ T3930]  do_notify_resume+0x134/0x164
[  394.514250][ T3930]  el0_svc+0xc8/0xf8
[  394.514915][ T3930]  el0t_64_sync_handler+0x100/0x12c
[  394.515805][ T3930]  el0t_64_sync+0x19c/0x1a0
[  394.654824][ T3932] BUG: Bad page cache in process syz.0.55  pfn:47cc4
[  394.655850][ T3932] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x0 pfn:0x47cc4
[  394.656902][ T3932] memcg:f4f00000060ad000
[  394.657490][ T3932] aops:shmem_aops ino:416
[  394.658204][ T3932] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  394.659356][ T3932] raw: 01ffc0000004002d ffffc1ffc0348388 ffffc1ffc02d1ec8 f1f00000070f2470
[  394.660533][ T3932] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  394.661533][ T3932] page dumped because: still mapped when deleted
[  394.662439][ T3932] CPU: 1 PID: 3932 Comm: syz.0.55 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  394.663851][ T3932] Hardware name: linux,dummy-virt (DT)
[  394.664638][ T3932] Call trace:
[  394.665516][ T3932]  dump_backtrace+0x94/0xec
[  394.666290][ T3932]  show_stack+0x18/0x24
[  394.667010][ T3932]  dump_stack_lvl+0x78/0x90
[  394.668593][ T3932]  dump_stack+0x18/0x24
[  394.669525][ T3932]  filemap_unaccount_folio+0x118/0x278
[  394.671871][ T3932]  __filemap_remove_folio+0x3c/0x178
[  394.673692][ T3932]  filemap_remove_folio+0x48/0xa8
[  394.674709][ T3932]  truncate_inode_folio+0x30/0x4c
[  394.675884][ T3932]  shmem_undo_range+0x208/0x620
[  394.676838][ T3932]  shmem_evict_inode+0x130/0x2dc
[  394.680164][ T3932]  evict+0xb4/0x198
[  394.681709][ T3932]  iput+0x100/0x1b8
[  394.683787][ T3932]  dentry_unlink_inode+0xc0/0x188
[  394.684873][ T3932]  __dentry_kill+0x7c/0x1d4
[  394.685972][ T3932]  dput.part.0+0x30/0xbc
[  394.687197][ T3932]  dput+0x4c/0x50
[  394.688426][ T3932]  __fput+0x110/0x2d4
[  394.689888][ T3932]  ____fput+0x10/0x1c
[  394.691957][ T3932]  task_work_run+0x78/0xd0
[  394.693125][ T3932]  do_notify_resume+0x134/0x164
[  394.695477][ T3932]  el0_svc+0xc8/0xf8
[  394.696178][ T3932]  el0t_64_sync_handler+0x100/0x12c
[  394.697897][ T3932]  el0t_64_sync+0x19c/0x1a0
[  394.709081][ T3932] BUG: Bad page cache in process syz.0.55  pfn:4b47b
[  394.710479][ T3932] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x1 pfn:0x4b47b
[  394.711610][ T3932] memcg:f4f00000060ad000
[  394.712702][ T3932] aops:shmem_aops ino:416
[  394.713635][ T3932] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  394.715257][ T3932] raw: 01ffc0000004002d ffffc1ffc01f3108 ffffc1ffc02cdc08 f1f00000070f2470
[  394.716947][ T3932] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  394.719560][ T3932] page dumped because: still mapped when deleted
[  394.720867][ T3932] CPU: 1 PID: 3932 Comm: syz.0.55 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  394.722745][ T3932] Hardware name: linux,dummy-virt (DT)
[  394.724004][ T3932] Call trace:
[  394.724634][ T3932]  dump_backtrace+0x94/0xec
[  394.725390][ T3932]  show_stack+0x18/0x24
[  394.726197][ T3932]  dump_stack_lvl+0x78/0x90
[  394.726918][ T3932]  dump_stack+0x18/0x24
[  394.727601][ T3932]  filemap_unaccount_folio+0x118/0x278
[  394.728584][ T3932]  __filemap_remove_folio+0x3c/0x178
[  394.729452][ T3932]  filemap_remove_folio+0x48/0xa8
[  394.730462][ T3932]  truncate_inode_folio+0x30/0x4c
[  394.731377][ T3932]  shmem_undo_range+0x208/0x620
[  394.732058][ T3932]  shmem_evict_inode+0x130/0x2dc
[  394.732755][ T3932]  evict+0xb4/0x198
[  394.733303][ T3932]  iput+0x100/0x1b8
[  394.733804][ T3932]  dentry_unlink_inode+0xc0/0x188
[  394.734339][ T3932]  __dentry_kill+0x7c/0x1d4
[  394.734908][ T3932]  dput.part.0+0x30/0xbc
[  394.735621][ T3932]  dput+0x4c/0x50
[  394.736205][ T3932]  __fput+0x110/0x2d4
[  394.736655][ T3932]  ____fput+0x10/0x1c
[  394.737170][ T3932]  task_work_run+0x78/0xd0
[  394.737784][ T3932]  do_notify_resume+0x134/0x164
[  394.738526][ T3932]  el0_svc+0xc8/0xf8
[  394.738997][ T3932]  el0t_64_sync_handler+0x100/0x12c
[  394.739572][ T3932]  el0t_64_sync+0x19c/0x1a0
[  394.897522][ T3934] BUG: Bad page cache in process syz.0.56  pfn:46bcd
[  394.901572][ T3934] page: refcount:4 mapcount:1 mapping:00000000529654b3 index:0x0 pfn:0x46bcd
[  394.904676][ T3934] memcg:f4f00000060ad000
[  394.905797][ T3934] aops:shmem_aops ino:15
[  394.908165][ T3934] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  394.911544][ T3934] raw: 01ffc0000004002d ffffc1ffc02f3e88 ffffc1ffc02cd488 f8f0000003b87a50
[  394.912915][ T3934] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  394.915015][ T3934] page dumped because: still mapped when deleted
[  394.916187][ T3934] CPU: 0 PID: 3934 Comm: syz.0.56 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  394.917857][ T3934] Hardware name: linux,dummy-virt (DT)
[  394.918821][ T3934] Call trace:
[  394.919568][ T3934]  dump_backtrace+0x94/0xec
[  394.920888][ T3934]  show_stack+0x18/0x24
[  394.921849][ T3934]  dump_stack_lvl+0x78/0x90
[  394.922865][ T3934]  dump_stack+0x18/0x24
[  394.923939][ T3934]  filemap_unaccount_folio+0x118/0x278
[  394.925234][ T3934]  __filemap_remove_folio+0x3c/0x178
[  394.926394][ T3934]  filemap_remove_folio+0x48/0xa8
[  394.927702][ T3934]  truncate_inode_folio+0x30/0x4c
[  394.928598][ T3934]  shmem_undo_range+0x208/0x620
[  394.929836][ T3934]  shmem_evict_inode+0x130/0x2dc
[  394.931106][ T3934]  evict+0xb4/0x198
[  394.932247][ T3934]  iput+0x100/0x1b8
[  394.933205][ T3934]  dentry_unlink_inode+0xc0/0x188
[  394.934277][ T3934]  __dentry_kill+0x7c/0x1d4
[  394.935373][ T3934]  dput.part.0+0x30/0xbc
[  394.936541][ T3934]  dput+0x4c/0x50
[  394.937580][ T3934]  __fput+0x110/0x2d4
[  394.938499][ T3934]  ____fput+0x10/0x1c
[  394.939421][ T3934]  task_work_run+0x78/0xd0
[  394.940625][ T3934]  do_notify_resume+0x134/0x164
[  394.941857][ T3934]  el0_svc+0xc8/0xf8
[  394.943390][ T3934]  el0t_64_sync_handler+0x100/0x12c
[  394.944537][ T3934]  el0t_64_sync+0x19c/0x1a0
[  394.964240][ T3934] BUG: Bad page cache in process syz.0.56  pfn:4b352
[  394.965844][ T3934] page: refcount:4 mapcount:1 mapping:00000000529654b3 index:0x1 pfn:0x4b352
[  394.967333][ T3934] memcg:f4f00000060ad000
[  394.968201][ T3934] aops:shmem_aops ino:15
[  394.970362][ T3934] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  394.972701][ T3934] raw: 01ffc0000004002d ffffc1ffc01af348 ffffc1ffc02f7e08 f8f0000003b87a50
[  394.974326][ T3934] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  394.975691][ T3934] page dumped because: still mapped when deleted
[  394.976914][ T3934] CPU: 0 PID: 3934 Comm: syz.0.56 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  394.978905][ T3934] Hardware name: linux,dummy-virt (DT)
[  394.979814][ T3934] Call trace:
[  394.980457][ T3934]  dump_backtrace+0x94/0xec
[  394.981286][ T3934]  show_stack+0x18/0x24
[  394.982285][ T3934]  dump_stack_lvl+0x78/0x90
[  394.983712][ T3934]  dump_stack+0x18/0x24
[  394.984389][ T3934]  filemap_unaccount_folio+0x118/0x278
[  394.985190][ T3934]  __filemap_remove_folio+0x3c/0x178
[  394.985948][ T3934]  filemap_remove_folio+0x48/0xa8
[  394.987237][ T3934]  truncate_inode_folio+0x30/0x4c
[  394.988407][ T3934]  shmem_undo_range+0x208/0x620
[  394.989399][ T3934]  shmem_evict_inode+0x130/0x2dc
[  394.990953][ T3934]  evict+0xb4/0x198
[  394.992119][ T3934]  iput+0x100/0x1b8
[  394.993761][ T3934]  dentry_unlink_inode+0xc0/0x188
[  394.995759][ T3934]  __dentry_kill+0x7c/0x1d4
[  394.997731][ T3934]  dput.part.0+0x30/0xbc
[  395.001048][ T3934]  dput+0x4c/0x50
[  395.002663][ T3934]  __fput+0x110/0x2d4
[  395.003695][ T3934]  ____fput+0x10/0x1c
[  395.005172][ T3934]  task_work_run+0x78/0xd0
[  395.006493][ T3934]  do_notify_resume+0x134/0x164
[  395.008488][ T3934]  el0_svc+0xc8/0xf8
[  395.010115][ T3934]  el0t_64_sync_handler+0x100/0x12c
[  395.011748][ T3934]  el0t_64_sync+0x19c/0x1a0
[  395.198506][ T3936] BUG: Bad page cache in process syz.0.57  pfn:4b370
[  395.200196][ T3936] page: refcount:4 mapcount:1 mapping:00000000be14259f index:0x0 pfn:0x4b370
[  395.203776][ T3936] memcg:f4f00000060ad000
[  395.205708][ T3936] aops:shmem_aops ino:16
[  395.208081][ T3936] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  395.213592][ T3936] raw: 01ffc0000004002d ffffc1ffc039ca48 ffffc1ffc0325ac8 f1f0000003b870f0
[  395.216859][ T3936] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  395.221064][ T3936] page dumped because: still mapped when deleted
[  395.223748][ T3936] CPU: 0 PID: 3936 Comm: syz.0.57 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  395.228563][ T3936] Hardware name: linux,dummy-virt (DT)
[  395.229683][ T3936] Call trace:
[  395.230567][ T3936]  dump_backtrace+0x94/0xec
[  395.231893][ T3936]  show_stack+0x18/0x24
[  395.233149][ T3936]  dump_stack_lvl+0x78/0x90
[  395.234477][ T3936]  dump_stack+0x18/0x24
[  395.235646][ T3936]  filemap_unaccount_folio+0x118/0x278
[  395.236949][ T3936]  __filemap_remove_folio+0x3c/0x178
[  395.238037][ T3936]  filemap_remove_folio+0x48/0xa8
[  395.239330][ T3936]  truncate_inode_folio+0x30/0x4c
[  395.240503][ T3936]  shmem_undo_range+0x208/0x620
[  395.241328][ T3936]  shmem_evict_inode+0x130/0x2dc
[  395.242173][ T3936]  evict+0xb4/0x198
[  395.242872][ T3936]  iput+0x100/0x1b8
[  395.243649][ T3936]  dentry_unlink_inode+0xc0/0x188
[  395.244484][ T3936]  __dentry_kill+0x7c/0x1d4
[  395.245282][ T3936]  dput.part.0+0x30/0xbc
[  395.245991][ T3936]  dput+0x4c/0x50
[  395.246660][ T3936]  __fput+0x110/0x2d4
[  395.247542][ T3936]  ____fput+0x10/0x1c
[  395.248300][ T3936]  task_work_run+0x78/0xd0
[  395.249053][ T3936]  do_notify_resume+0x134/0x164
[  395.250722][ T3936]  el0_svc+0xc8/0xf8
[  395.252938][ T3936]  el0t_64_sync_handler+0x100/0x12c
[  395.254429][ T3936]  el0t_64_sync+0x19c/0x1a0
[  395.261710][ T3936] BUG: Bad page cache in process syz.0.57  pfn:4c96b
[  395.263492][ T3936] page: refcount:4 mapcount:1 mapping:00000000be14259f index:0x1 pfn:0x4c96b
[  395.265378][ T3936] memcg:f4f00000060ad000
[  395.266159][ T3936] aops:shmem_aops ino:16
[  395.267143][ T3936] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  395.268961][ T3936] raw: 01ffc0000004002d ffffc1ffc02cdc08 ffffc1ffc02f3e88 f1f0000003b870f0
[  395.271974][ T3936] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  395.273287][ T3936] page dumped because: still mapped when deleted
[  395.276942][ T3936] CPU: 0 PID: 3936 Comm: syz.0.57 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  395.279714][ T3936] Hardware name: linux,dummy-virt (DT)
[  395.280993][ T3936] Call trace:
[  395.281568][ T3936]  dump_backtrace+0x94/0xec
[  395.282373][ T3936]  show_stack+0x18/0x24
[  395.283083][ T3936]  dump_stack_lvl+0x78/0x90
[  395.283912][ T3936]  dump_stack+0x18/0x24
[  395.284676][ T3936]  filemap_unaccount_folio+0x118/0x278
[  395.285539][ T3936]  __filemap_remove_folio+0x3c/0x178
[  395.286346][ T3936]  filemap_remove_folio+0x48/0xa8
[  395.287232][ T3936]  truncate_inode_folio+0x30/0x4c
[  395.288126][ T3936]  shmem_undo_range+0x208/0x620
[  395.288906][ T3936]  shmem_evict_inode+0x130/0x2dc
[  395.289761][ T3936]  evict+0xb4/0x198
[  395.291322][ T3936]  iput+0x100/0x1b8
[  395.293010][ T3936]  dentry_unlink_inode+0xc0/0x188
[  395.293942][ T3936]  __dentry_kill+0x7c/0x1d4
[  395.294724][ T3936]  dput.part.0+0x30/0xbc
[  395.295526][ T3936]  dput+0x4c/0x50
[  395.296240][ T3936]  __fput+0x110/0x2d4
[  395.296999][ T3936]  ____fput+0x10/0x1c
[  395.297715][ T3936]  task_work_run+0x78/0xd0
[  395.298501][ T3936]  do_notify_resume+0x134/0x164
[  395.299274][ T3936]  el0_svc+0xc8/0xf8
[  395.304158][ T3936]  el0t_64_sync_handler+0x100/0x12c
[  395.305932][ T3936]  el0t_64_sync+0x19c/0x1a0
[  395.533490][ T3938] BUG: Bad page cache in process syz.0.58  pfn:4b371
[  395.534552][ T3938] page: refcount:4 mapcount:1 mapping:0000000044156b68 index:0x0 pfn:0x4b371
[  395.535798][ T3938] memcg:f4f00000060ad000
[  395.536439][ T3938] aops:shmem_aops ino:417
[  395.537262][ T3938] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  395.538898][ T3938] raw: 01ffc0000004002d ffffc1ffc02d5cc8 ffffc1ffc02d8808 f8f00000070f1b10
[  395.540139][ T3938] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  395.541193][ T3938] page dumped because: still mapped when deleted
[  395.542240][ T3938] CPU: 1 PID: 3938 Comm: syz.0.58 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  395.543928][ T3938] Hardware name: linux,dummy-virt (DT)
[  395.544944][ T3938] Call trace:
[  395.545566][ T3938]  dump_backtrace+0x94/0xec
[  395.546334][ T3938]  show_stack+0x18/0x24
[  395.547100][ T3938]  dump_stack_lvl+0x78/0x90
[  395.547908][ T3938]  dump_stack+0x18/0x24
[  395.548708][ T3938]  filemap_unaccount_folio+0x118/0x278
[  395.549457][ T3938]  __filemap_remove_folio+0x3c/0x178
[  395.550055][ T3938]  filemap_remove_folio+0x48/0xa8
[  395.550549][ T3938]  truncate_inode_folio+0x30/0x4c
[  395.551102][ T3938]  shmem_undo_range+0x208/0x620
[  395.552093][ T3938]  shmem_evict_inode+0x130/0x2dc
[  395.553207][ T3938]  evict+0xb4/0x198
[  395.553991][ T3938]  iput+0x100/0x1b8
[  395.554979][ T3938]  dentry_unlink_inode+0xc0/0x188
[  395.555866][ T3938]  __dentry_kill+0x7c/0x1d4
[  395.556572][ T3938]  dput.part.0+0x30/0xbc
[  395.557246][ T3938]  dput+0x4c/0x50
[  395.558099][ T3938]  __fput+0x110/0x2d4
[  395.558879][ T3938]  ____fput+0x10/0x1c
[  395.559882][ T3938]  task_work_run+0x78/0xd0
[  395.560849][ T3938]  do_notify_resume+0x134/0x164
[  395.561652][ T3938]  el0_svc+0xc8/0xf8
[  395.562455][ T3938]  el0t_64_sync_handler+0x100/0x12c
[  395.563337][ T3938]  el0t_64_sync+0x19c/0x1a0
[  395.601583][ T3938] BUG: Bad page cache in process syz.0.58  pfn:4b620
[  395.602660][ T3938] page: refcount:4 mapcount:1 mapping:0000000044156b68 index:0x1 pfn:0x4b620
[  395.603857][ T3938] memcg:f4f00000060ad000
[  395.604513][ T3938] aops:shmem_aops ino:417
[  395.605021][ T3938] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  395.605720][ T3938] raw: 01ffc0000004002d ffffc1ffc02cdc48 ffffc1ffc039c8c8 f8f00000070f1b10
[  395.606272][ T3938] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  395.607020][ T3938] page dumped because: still mapped when deleted
[  395.607752][ T3938] CPU: 1 PID: 3938 Comm: syz.0.58 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  395.608397][ T3938] Hardware name: linux,dummy-virt (DT)
[  395.608769][ T3938] Call trace:
[  395.609055][ T3938]  dump_backtrace+0x94/0xec
[  395.609443][ T3938]  show_stack+0x18/0x24
[  395.610032][ T3938]  dump_stack_lvl+0x78/0x90
[  395.610767][ T3938]  dump_stack+0x18/0x24
[  395.611498][ T3938]  filemap_unaccount_folio+0x118/0x278
[  395.612406][ T3938]  __filemap_remove_folio+0x3c/0x178
[  395.613252][ T3938]  filemap_remove_folio+0x48/0xa8
[  395.614230][ T3938]  truncate_inode_folio+0x30/0x4c
[  395.615106][ T3938]  shmem_undo_range+0x208/0x620
[  395.615966][ T3938]  shmem_evict_inode+0x130/0x2dc
[  395.616778][ T3938]  evict+0xb4/0x198
[  395.617451][ T3938]  iput+0x100/0x1b8
[  395.618142][ T3938]  dentry_unlink_inode+0xc0/0x188
[  395.618909][ T3938]  __dentry_kill+0x7c/0x1d4
[  395.619734][ T3938]  dput.part.0+0x30/0xbc
[  395.620496][ T3938]  dput+0x4c/0x50
[  395.621179][ T3938]  __fput+0x110/0x2d4
[  395.621908][ T3938]  ____fput+0x10/0x1c
[  395.622566][ T3938]  task_work_run+0x78/0xd0
[  395.623282][ T3938]  do_notify_resume+0x134/0x164
[  395.623987][ T3938]  el0_svc+0xc8/0xf8
[  395.624684][ T3938]  el0t_64_sync_handler+0x100/0x12c
[  395.625621][ T3938]  el0t_64_sync+0x19c/0x1a0
[  395.784465][ T3940] BUG: Bad page cache in process syz.0.59  pfn:4b573
[  395.785460][ T3940] page: refcount:4 mapcount:1 mapping:0000000064fda5a3 index:0x0 pfn:0x4b573
[  395.786755][ T3940] memcg:f4f00000060ad000
[  395.787389][ T3940] aops:shmem_aops ino:418
[  395.788042][ T3940] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  395.789328][ T3940] raw: 01ffc0000004002d ffffc1ffc0325908 ffffc1ffc02f23c8 f0f00000070f2ab0
[  395.790706][ T3940] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  395.791908][ T3940] page dumped because: still mapped when deleted
[  395.792829][ T3940] CPU: 1 PID: 3940 Comm: syz.0.59 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  395.794905][ T3940] Hardware name: linux,dummy-virt (DT)
[  395.795602][ T3940] Call trace:
[  395.796332][ T3940]  dump_backtrace+0x94/0xec
[  395.797191][ T3940]  show_stack+0x18/0x24
[  395.797896][ T3940]  dump_stack_lvl+0x78/0x90
[  395.798634][ T3940]  dump_stack+0x18/0x24
[  395.799354][ T3940]  filemap_unaccount_folio+0x118/0x278
[  395.800323][ T3940]  __filemap_remove_folio+0x3c/0x178
[  395.801198][ T3940]  filemap_remove_folio+0x48/0xa8
[  395.801960][ T3940]  truncate_inode_folio+0x30/0x4c
[  395.802687][ T3940]  shmem_undo_range+0x208/0x620
[  395.804329][ T3940]  shmem_evict_inode+0x130/0x2dc
[  395.805112][ T3940]  evict+0xb4/0x198
[  395.805909][ T3940]  iput+0x100/0x1b8
[  395.808094][ T3940]  dentry_unlink_inode+0xc0/0x188
[  395.808982][ T3940]  __dentry_kill+0x7c/0x1d4
[  395.810144][ T3940]  dput.part.0+0x30/0xbc
[  395.812217][ T3940]  dput+0x4c/0x50
[  395.814414][ T3940]  __fput+0x110/0x2d4
[  395.815369][ T3940]  ____fput+0x10/0x1c
[  395.816062][ T3940]  task_work_run+0x78/0xd0
[  395.816789][ T3940]  do_notify_resume+0x134/0x164
[  395.817544][ T3940]  el0_svc+0xc8/0xf8
[  395.818275][ T3940]  el0t_64_sync_handler+0x100/0x12c
[  395.819082][ T3940]  el0t_64_sync+0x19c/0x1a0
[  395.824990][ T3940] BUG: Bad page cache in process syz.0.59  pfn:4bc8f
[  395.825911][ T3940] page: refcount:4 mapcount:1 mapping:0000000064fda5a3 index:0x1 pfn:0x4bc8f
[  395.826847][ T3940] memcg:f4f00000060ad000
[  395.827967][ T3940] aops:shmem_aops ino:418
[  395.828639][ T3940] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  395.830231][ T3940] raw: 01ffc0000004002d ffffc1ffc02d5cc8 ffffc1ffc02f2408 f0f00000070f2ab0
[  395.831360][ T3940] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  395.832311][ T3940] page dumped because: still mapped when deleted
[  395.833072][ T3940] CPU: 1 PID: 3940 Comm: syz.0.59 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  395.834370][ T3940] Hardware name: linux,dummy-virt (DT)
[  395.835141][ T3940] Call trace:
[  395.835721][ T3940]  dump_backtrace+0x94/0xec
[  395.836452][ T3940]  show_stack+0x18/0x24
[  395.837206][ T3940]  dump_stack_lvl+0x78/0x90
[  395.837932][ T3940]  dump_stack+0x18/0x24
[  395.838663][ T3940]  filemap_unaccount_folio+0x118/0x278
[  395.839654][ T3940]  __filemap_remove_folio+0x3c/0x178
[  395.840708][ T3940]  filemap_remove_folio+0x48/0xa8
[  395.841569][ T3940]  truncate_inode_folio+0x30/0x4c
[  395.842398][ T3940]  shmem_undo_range+0x208/0x620
[  395.843104][ T3940]  shmem_evict_inode+0x130/0x2dc
[  395.843851][ T3940]  evict+0xb4/0x198
[  395.844520][ T3940]  iput+0x100/0x1b8
[  395.845251][ T3940]  dentry_unlink_inode+0xc0/0x188
[  395.846177][ T3940]  __dentry_kill+0x7c/0x1d4
[  395.846937][ T3940]  dput.part.0+0x30/0xbc
[  395.847727][ T3940]  dput+0x4c/0x50
[  395.848365][ T3940]  __fput+0x110/0x2d4
[  395.848934][ T3940]  ____fput+0x10/0x1c
[  395.849615][ T3940]  task_work_run+0x78/0xd0
[  395.850324][ T3940]  do_notify_resume+0x134/0x164
[  395.850925][ T3940]  el0_svc+0xc8/0xf8
[  395.851501][ T3940]  el0t_64_sync_handler+0x100/0x12c
[  395.852251][ T3940]  el0t_64_sync+0x19c/0x1a0
[  396.032359][ T3942] BUG: Bad page cache in process syz.0.60  pfn:4bdec
[  396.034914][ T3942] page: refcount:4 mapcount:1 mapping:000000001d45b8f4 index:0x0 pfn:0x4bdec
[  396.038119][ T3942] memcg:f4f00000060ad000
[  396.039516][ T3942] aops:shmem_aops ino:17
[  396.041317][ T3942] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  396.044594][ T3942] raw: 01ffc0000004002d ffffc1ffc02dc708 ffffc1ffc023d888 fdf0000003b86dd0
[  396.046392][ T3942] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  396.047772][ T3942] page dumped because: still mapped when deleted
[  396.048618][ T3942] CPU: 0 PID: 3942 Comm: syz.0.60 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  396.050120][ T3942] Hardware name: linux,dummy-virt (DT)
[  396.051112][ T3942] Call trace:
[  396.051798][ T3942]  dump_backtrace+0x94/0xec
[  396.052615][ T3942]  show_stack+0x18/0x24
[  396.053438][ T3942]  dump_stack_lvl+0x78/0x90
[  396.054238][ T3942]  dump_stack+0x18/0x24
[  396.054958][ T3942]  filemap_unaccount_folio+0x118/0x278
[  396.055999][ T3942]  __filemap_remove_folio+0x3c/0x178
[  396.056957][ T3942]  filemap_remove_folio+0x48/0xa8
[  396.057763][ T3942]  truncate_inode_folio+0x30/0x4c
[  396.059700][ T3942]  shmem_undo_range+0x208/0x620
[  396.061607][ T3942]  shmem_evict_inode+0x130/0x2dc
[  396.063019][ T3942]  evict+0xb4/0x198
[  396.063978][ T3942]  iput+0x100/0x1b8
[  396.065414][ T3942]  dentry_unlink_inode+0xc0/0x188
[  396.066520][ T3942]  __dentry_kill+0x7c/0x1d4
[  396.067341][ T3942]  dput.part.0+0x30/0xbc
[  396.068036][ T3942]  dput+0x4c/0x50
[  396.068743][ T3942]  __fput+0x110/0x2d4
[  396.069594][ T3942]  ____fput+0x10/0x1c
[  396.070677][ T3942]  task_work_run+0x78/0xd0
[  396.071518][ T3942]  do_notify_resume+0x134/0x164
[  396.073151][ T3942]  el0_svc+0xc8/0xf8
[  396.074431][ T3942]  el0t_64_sync_handler+0x100/0x12c
[  396.076141][ T3942]  el0t_64_sync+0x19c/0x1a0
[  396.108685][ T3942] BUG: Bad page cache in process syz.0.60  pfn:48f62
[  396.109870][ T3942] page: refcount:4 mapcount:1 mapping:000000001d45b8f4 index:0x1 pfn:0x48f62
[  396.111920][ T3942] memcg:f4f00000060ad000
[  396.113448][ T3942] aops:shmem_aops ino:17
[  396.114375][ T3942] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  396.116973][ T3942] raw: 01ffc0000004002d ffffc1ffc02f7b08 ffffc1ffc02d5908 fdf0000003b86dd0
[  396.118752][ T3942] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  396.121776][ T3942] page dumped because: still mapped when deleted
[  396.123305][ T3942] CPU: 0 PID: 3942 Comm: syz.0.60 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  396.126583][ T3942] Hardware name: linux,dummy-virt (DT)
[  396.129127][ T3942] Call trace:
[  396.130658][ T3942]  dump_backtrace+0x94/0xec
[  396.132682][ T3942]  show_stack+0x18/0x24
[  396.133575][ T3942]  dump_stack_lvl+0x78/0x90
[  396.134336][ T3942]  dump_stack+0x18/0x24
[  396.135057][ T3942]  filemap_unaccount_folio+0x118/0x278
[  396.137316][ T3942]  __filemap_remove_folio+0x3c/0x178
[  396.138473][ T3942]  filemap_remove_folio+0x48/0xa8
[  396.139177][ T3942]  truncate_inode_folio+0x30/0x4c
[  396.140179][ T3942]  shmem_undo_range+0x208/0x620
[  396.141153][ T3942]  shmem_evict_inode+0x130/0x2dc
[  396.142342][ T3942]  evict+0xb4/0x198
[  396.150528][ T3942]  iput+0x100/0x1b8
[  396.151311][ T3942]  dentry_unlink_inode+0xc0/0x188
[  396.152462][ T3942]  __dentry_kill+0x7c/0x1d4
[  396.153247][ T3942]  dput.part.0+0x30/0xbc
[  396.154049][ T3942]  dput+0x4c/0x50
[  396.155066][ T3942]  __fput+0x110/0x2d4
[  396.156245][ T3942]  ____fput+0x10/0x1c
[  396.156942][ T3942]  task_work_run+0x78/0xd0
[  396.157782][ T3942]  do_notify_resume+0x134/0x164
[  396.158771][ T3942]  el0_svc+0xc8/0xf8
[  396.159460][ T3942]  el0t_64_sync_handler+0x100/0x12c
[  396.161454][ T3942]  el0t_64_sync+0x19c/0x1a0
[  396.343537][ T3944] BUG: Bad page cache in process syz.0.61  pfn:4c964
[  396.344896][ T3944] page: refcount:4 mapcount:1 mapping:00000000d640a5e4 index:0x0 pfn:0x4c964
[  396.346300][ T3944] memcg:f4f00000060ad000
[  396.347036][ T3944] aops:shmem_aops ino:419
[  396.347768][ T3944] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  396.349742][ T3944] raw: 01ffc0000004002d ffffc1ffc02f7b48 ffffc1ffc02db148 f6f00000070f2150
[  396.350978][ T3944] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  396.351850][ T3944] page dumped because: still mapped when deleted
[  396.352570][ T3944] CPU: 1 PID: 3944 Comm: syz.0.61 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  396.353815][ T3944] Hardware name: linux,dummy-virt (DT)
[  396.354498][ T3944] Call trace:
[  396.354995][ T3944]  dump_backtrace+0x94/0xec
[  396.355759][ T3944]  show_stack+0x18/0x24
[  396.356454][ T3944]  dump_stack_lvl+0x78/0x90
[  396.357107][ T3944]  dump_stack+0x18/0x24
[  396.357747][ T3944]  filemap_unaccount_folio+0x118/0x278
[  396.358459][ T3944]  __filemap_remove_folio+0x3c/0x178
[  396.359146][ T3944]  filemap_remove_folio+0x48/0xa8
[  396.360533][ T3944]  truncate_inode_folio+0x30/0x4c
[  396.361299][ T3944]  shmem_undo_range+0x208/0x620
[  396.362105][ T3944]  shmem_evict_inode+0x130/0x2dc
[  396.362940][ T3944]  evict+0xb4/0x198
[  396.363730][ T3944]  iput+0x100/0x1b8
[  396.364457][ T3944]  dentry_unlink_inode+0xc0/0x188
[  396.365179][ T3944]  __dentry_kill+0x7c/0x1d4
[  396.366608][ T3944]  dput.part.0+0x30/0xbc
[  396.367387][ T3944]  dput+0x4c/0x50
[  396.368014][ T3944]  __fput+0x110/0x2d4
[  396.368812][ T3944]  ____fput+0x10/0x1c
[  396.369536][ T3944]  task_work_run+0x78/0xd0
[  396.370501][ T3944]  do_notify_resume+0x134/0x164
[  396.371534][ T3944]  el0_svc+0xc8/0xf8
[  396.372377][ T3944]  el0t_64_sync_handler+0x100/0x12c
[  396.373149][ T3944]  el0t_64_sync+0x19c/0x1a0
[  396.377197][ T3944] BUG: Bad page cache in process syz.0.61  pfn:4b6c5
[  396.378294][ T3944] page: refcount:4 mapcount:1 mapping:00000000d640a5e4 index:0x1 pfn:0x4b6c5
[  396.379178][ T3944] memcg:f4f00000060ad000
[  396.379833][ T3944] aops:shmem_aops ino:419
[  396.380581][ T3944] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  396.381946][ T3944] raw: 01ffc0000004002d ffffc1ffc0325908 ffffc1ffc01a0c88 f6f00000070f2150
[  396.382982][ T3944] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  396.384038][ T3944] page dumped because: still mapped when deleted
[  396.384802][ T3944] CPU: 1 PID: 3944 Comm: syz.0.61 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  396.386118][ T3944] Hardware name: linux,dummy-virt (DT)
[  396.386949][ T3944] Call trace:
[  396.387612][ T3944]  dump_backtrace+0x94/0xec
[  396.388331][ T3944]  show_stack+0x18/0x24
[  396.389044][ T3944]  dump_stack_lvl+0x78/0x90
[  396.389751][ T3944]  dump_stack+0x18/0x24
[  396.390528][ T3944]  filemap_unaccount_folio+0x118/0x278
[  396.391388][ T3944]  __filemap_remove_folio+0x3c/0x178
[  396.392205][ T3944]  filemap_remove_folio+0x48/0xa8
[  396.392952][ T3944]  truncate_inode_folio+0x30/0x4c
[  396.393837][ T3944]  shmem_undo_range+0x208/0x620
[  396.394619][ T3944]  shmem_evict_inode+0x130/0x2dc
[  396.395439][ T3944]  evict+0xb4/0x198
[  396.396074][ T3944]  iput+0x100/0x1b8
[  396.396727][ T3944]  dentry_unlink_inode+0xc0/0x188
[  396.397453][ T3944]  __dentry_kill+0x7c/0x1d4
[  396.398146][ T3944]  dput.part.0+0x30/0xbc
[  396.398819][ T3944]  dput+0x4c/0x50
[  396.399545][ T3944]  __fput+0x110/0x2d4
[  396.400423][ T3944]  ____fput+0x10/0x1c
[  396.401168][ T3944]  task_work_run+0x78/0xd0
[  396.401938][ T3944]  do_notify_resume+0x134/0x164
[  396.402820][ T3944]  el0_svc+0xc8/0xf8
[  396.403594][ T3944]  el0t_64_sync_handler+0x100/0x12c
[  396.404508][ T3944]  el0t_64_sync+0x19c/0x1a0
[  396.577023][ T3946] BUG: Bad page cache in process syz.0.62  pfn:4b2cf
[  396.577930][ T3946] page: refcount:4 mapcount:1 mapping:0000000064fda5a3 index:0x0 pfn:0x4b2cf
[  396.580305][ T3946] memcg:f4f00000060ad000
[  396.581260][ T3946] aops:shmem_aops ino:41a
[  396.582236][ T3946] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  396.587273][ T3946] raw: 01ffc0000004002d ffffc1ffc02d9e08 ffffc1ffc02f7b48 f0f00000070f2ab0
[  396.589864][ T3946] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  396.592928][ T3946] page dumped because: still mapped when deleted
[  396.594300][ T3946] CPU: 1 PID: 3946 Comm: syz.0.62 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  396.596997][ T3946] Hardware name: linux,dummy-virt (DT)
[  396.597794][ T3946] Call trace:
[  396.598698][ T3946]  dump_backtrace+0x94/0xec
[  396.599744][ T3946]  show_stack+0x18/0x24
[  396.601144][ T3946]  dump_stack_lvl+0x78/0x90
[  396.602495][ T3946]  dump_stack+0x18/0x24
[  396.603622][ T3946]  filemap_unaccount_folio+0x118/0x278
[  396.604884][ T3946]  __filemap_remove_folio+0x3c/0x178
[  396.607021][ T3946]  filemap_remove_folio+0x48/0xa8
[  396.608111][ T3946]  truncate_inode_folio+0x30/0x4c
[  396.609129][ T3946]  shmem_undo_range+0x208/0x620
[  396.612109][ T3946]  shmem_evict_inode+0x130/0x2dc
[  396.613767][ T3946]  evict+0xb4/0x198
[  396.615156][ T3946]  iput+0x100/0x1b8
[  396.616651][ T3946]  dentry_unlink_inode+0xc0/0x188
[  396.617482][ T3946]  __dentry_kill+0x7c/0x1d4
[  396.618355][ T3946]  dput.part.0+0x30/0xbc
[  396.619181][ T3946]  dput+0x4c/0x50
[  396.620428][ T3946]  __fput+0x110/0x2d4
[  396.621779][ T3946]  ____fput+0x10/0x1c
[  396.623409][ T3946]  task_work_run+0x78/0xd0
[  396.624243][ T3946]  do_notify_resume+0x134/0x164
[  396.625050][ T3946]  el0_svc+0xc8/0xf8
[  396.625793][ T3946]  el0t_64_sync_handler+0x100/0x12c
[  396.626629][ T3946]  el0t_64_sync+0x19c/0x1a0
[  396.629291][ T3946] BUG: Bad page cache in process syz.0.62  pfn:4bded
[  396.630610][ T3946] page: refcount:4 mapcount:1 mapping:0000000064fda5a3 index:0x1 pfn:0x4bded
[  396.631983][ T3946] memcg:f4f00000060ad000
[  396.632628][ T3946] aops:shmem_aops ino:41a
[  396.633338][ T3946] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  396.634777][ T3946] raw: 01ffc0000004002d ffffc1ffc02cb3c8 ffffc1ffc01f0ac8 f0f00000070f2ab0
[  396.635830][ T3946] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  396.636870][ T3946] page dumped because: still mapped when deleted
[  396.637728][ T3946] CPU: 1 PID: 3946 Comm: syz.0.62 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  396.639083][ T3946] Hardware name: linux,dummy-virt (DT)
[  396.640016][ T3946] Call trace:
[  396.640567][ T3946]  dump_backtrace+0x94/0xec
[  396.641473][ T3946]  show_stack+0x18/0x24
[  396.642182][ T3946]  dump_stack_lvl+0x78/0x90
[  396.642934][ T3946]  dump_stack+0x18/0x24
[  396.643660][ T3946]  filemap_unaccount_folio+0x118/0x278
[  396.644454][ T3946]  __filemap_remove_folio+0x3c/0x178
[  396.645282][ T3946]  filemap_remove_folio+0x48/0xa8
[  396.646354][ T3946]  truncate_inode_folio+0x30/0x4c
[  396.648699][ T3946]  shmem_undo_range+0x208/0x620
[  396.649518][ T3946]  shmem_evict_inode+0x130/0x2dc
[  396.651411][ T3946]  evict+0xb4/0x198
[  396.652505][ T3946]  iput+0x100/0x1b8
[  396.655277][ T3946]  dentry_unlink_inode+0xc0/0x188
[  396.656457][ T3946]  __dentry_kill+0x7c/0x1d4
[  396.658874][ T3946]  dput.part.0+0x30/0xbc
[  396.660122][ T3946]  dput+0x4c/0x50
[  396.661723][ T3946]  __fput+0x110/0x2d4
[  396.662805][ T3946]  ____fput+0x10/0x1c
[  396.663688][ T3946]  task_work_run+0x78/0xd0
[  396.664941][ T3946]  do_notify_resume+0x134/0x164
[  396.666290][ T3946]  el0_svc+0xc8/0xf8
[  396.667932][ T3946]  el0t_64_sync_handler+0x100/0x12c
[  396.669699][ T3946]  el0t_64_sync+0x19c/0x1a0
[  396.855709][ T3948] BUG: Bad page cache in process syz.0.63  pfn:4b47d
[  396.857118][ T3948] page: refcount:4 mapcount:1 mapping:00000000a5c0f789 index:0x0 pfn:0x4b47d
[  396.858568][ T3948] memcg:f4f00000060ad000
[  396.859771][ T3948] aops:shmem_aops ino:18
[  396.860743][ T3948] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  396.863706][ T3948] raw: 01ffc0000004002d ffffc1ffc0309908 ffffc1ffc01a0c88 f2f0000003b84850
[  396.865146][ T3948] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  396.866634][ T3948] page dumped because: still mapped when deleted
[  396.868305][ T3948] CPU: 1 PID: 3948 Comm: syz.0.63 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  396.869716][ T3948] Hardware name: linux,dummy-virt (DT)
[  396.870507][ T3948] Call trace:
[  396.871034][ T3948]  dump_backtrace+0x94/0xec
[  396.871829][ T3948]  show_stack+0x18/0x24
[  396.872536][ T3948]  dump_stack_lvl+0x78/0x90
[  396.873258][ T3948]  dump_stack+0x18/0x24
[  396.873947][ T3948]  filemap_unaccount_folio+0x118/0x278
[  396.874760][ T3948]  __filemap_remove_folio+0x3c/0x178
[  396.875563][ T3948]  filemap_remove_folio+0x48/0xa8
[  396.876351][ T3948]  truncate_inode_folio+0x30/0x4c
[  396.877165][ T3948]  shmem_undo_range+0x208/0x620
[  396.877906][ T3948]  shmem_evict_inode+0x130/0x2dc
[  396.878650][ T3948]  evict+0xb4/0x198
[  396.879329][ T3948]  iput+0x100/0x1b8
[  396.879984][ T3948]  dentry_unlink_inode+0xc0/0x188
[  396.880731][ T3948]  __dentry_kill+0x7c/0x1d4
[  396.881438][ T3948]  dput.part.0+0x30/0xbc
[  396.882149][ T3948]  dput+0x4c/0x50
[  396.882825][ T3948]  __fput+0x110/0x2d4
[  396.883562][ T3948]  ____fput+0x10/0x1c
[  396.884250][ T3948]  task_work_run+0x78/0xd0
[  396.884944][ T3948]  do_notify_resume+0x134/0x164
[  396.885678][ T3948]  el0_svc+0xc8/0xf8
[  396.886360][ T3948]  el0t_64_sync_handler+0x100/0x12c
[  396.887120][ T3948]  el0t_64_sync+0x19c/0x1a0
[  396.891987][ T3948] BUG: Bad page cache in process syz.0.63  pfn:46832
[  396.892960][ T3948] page: refcount:4 mapcount:1 mapping:00000000a5c0f789 index:0x1 pfn:0x46832
[  396.893969][ T3948] memcg:f4f00000060ad000
[  396.894617][ T3948] aops:shmem_aops ino:18
[  396.895527][ T3948] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  396.897077][ T3948] raw: 01ffc0000004002d ffffc1ffc02d1f48 ffffc1ffc03aa3c8 f2f0000003b84850
[  396.898205][ T3948] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  396.899279][ T3948] page dumped because: still mapped when deleted
[  396.900502][ T3948] CPU: 1 PID: 3948 Comm: syz.0.63 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  396.901849][ T3948] Hardware name: linux,dummy-virt (DT)
[  396.902625][ T3948] Call trace:
[  396.903262][ T3948]  dump_backtrace+0x94/0xec
[  396.904141][ T3948]  show_stack+0x18/0x24
[  396.904941][ T3948]  dump_stack_lvl+0x78/0x90
[  396.905698][ T3948]  dump_stack+0x18/0x24
[  396.906374][ T3948]  filemap_unaccount_folio+0x118/0x278
[  396.907300][ T3948]  __filemap_remove_folio+0x3c/0x178
[  396.908060][ T3948]  filemap_remove_folio+0x48/0xa8
[  396.908773][ T3948]  truncate_inode_folio+0x30/0x4c
[  396.909528][ T3948]  shmem_undo_range+0x208/0x620
[  396.910330][ T3948]  shmem_evict_inode+0x130/0x2dc
[  396.911076][ T3948]  evict+0xb4/0x198
[  396.911806][ T3948]  iput+0x100/0x1b8
[  396.912499][ T3948]  dentry_unlink_inode+0xc0/0x188
[  396.913249][ T3948]  __dentry_kill+0x7c/0x1d4
[  396.913962][ T3948]  dput.part.0+0x30/0xbc
[  396.914668][ T3948]  dput+0x4c/0x50
[  396.915345][ T3948]  __fput+0x110/0x2d4
[  396.916023][ T3948]  ____fput+0x10/0x1c
[  396.916720][ T3948]  task_work_run+0x78/0xd0
[  396.917437][ T3948]  do_notify_resume+0x134/0x164
[  396.918177][ T3948]  el0_svc+0xc8/0xf8
[  396.918873][ T3948]  el0t_64_sync_handler+0x100/0x12c
[  396.919674][ T3948]  el0t_64_sync+0x19c/0x1a0
[  397.103819][ T3950] BUG: Bad page cache in process syz.0.64  pfn:4e732
[  397.104915][ T3950] page: refcount:4 mapcount:1 mapping:000000009925be35 index:0x0 pfn:0x4e732
[  397.106014][ T3950] memcg:f4f00000060ad000
[  397.106670][ T3950] aops:shmem_aops ino:41b
[  397.107449][ T3950] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  397.108914][ T3950] raw: 01ffc0000004002d ffffc1ffc02cd548 ffffc1ffc039cdc8 f9f00000070f2790
[  397.109988][ T3950] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  397.111150][ T3950] page dumped because: still mapped when deleted
[  397.112299][ T3950] CPU: 1 PID: 3950 Comm: syz.0.64 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  397.113703][ T3950] Hardware name: linux,dummy-virt (DT)
[  397.114501][ T3950] Call trace:
[  397.115119][ T3950]  dump_backtrace+0x94/0xec
[  397.116092][ T3950]  show_stack+0x18/0x24
[  397.116920][ T3950]  dump_stack_lvl+0x78/0x90
[  397.117650][ T3950]  dump_stack+0x18/0x24
[  397.118370][ T3950]  filemap_unaccount_folio+0x118/0x278
[  397.119281][ T3950]  __filemap_remove_folio+0x3c/0x178
[  397.120268][ T3950]  filemap_remove_folio+0x48/0xa8
[  397.121000][ T3950]  truncate_inode_folio+0x30/0x4c
[  397.121744][ T3950]  shmem_undo_range+0x208/0x620
[  397.122658][ T3950]  shmem_evict_inode+0x130/0x2dc
[  397.123662][ T3950]  evict+0xb4/0x198
[  397.125127][ T3950]  iput+0x100/0x1b8
[  397.125883][ T3950]  dentry_unlink_inode+0xc0/0x188
[  397.126588][ T3950]  __dentry_kill+0x7c/0x1d4
[  397.127461][ T3950]  dput.part.0+0x30/0xbc
[  397.128150][ T3950]  dput+0x4c/0x50
[  397.128799][ T3950]  __fput+0x110/0x2d4
[  397.129684][ T3950]  ____fput+0x10/0x1c
[  397.130456][ T3950]  task_work_run+0x78/0xd0
[  397.131139][ T3950]  do_notify_resume+0x134/0x164
[  397.131817][ T3950]  el0_svc+0xc8/0xf8
[  397.132576][ T3950]  el0t_64_sync_handler+0x100/0x12c
[  397.133428][ T3950]  el0t_64_sync+0x19c/0x1a0
[  397.152972][ T3950] BUG: Bad page cache in process syz.0.64  pfn:4e737
[  397.153956][ T3950] page: refcount:4 mapcount:1 mapping:000000009925be35 index:0x1 pfn:0x4e737
[  397.155126][ T3950] memcg:f4f00000060ad000
[  397.155745][ T3950] aops:shmem_aops ino:41b
[  397.156495][ T3950] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  397.158098][ T3950] raw: 01ffc0000004002d ffffc1ffc039cc88 ffffc1ffc0357908 f9f00000070f2790
[  397.159223][ T3950] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  397.161566][ T3950] page dumped because: still mapped when deleted
[  397.162346][ T3950] CPU: 1 PID: 3950 Comm: syz.0.64 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  397.163914][ T3950] Hardware name: linux,dummy-virt (DT)
[  397.164673][ T3950] Call trace:
[  397.165724][ T3950]  dump_backtrace+0x94/0xec
[  397.166632][ T3950]  show_stack+0x18/0x24
[  397.167371][ T3950]  dump_stack_lvl+0x78/0x90
[  397.168297][ T3950]  dump_stack+0x18/0x24
[  397.168991][ T3950]  filemap_unaccount_folio+0x118/0x278
[  397.170699][ T3950]  __filemap_remove_folio+0x3c/0x178
[  397.171573][ T3950]  filemap_remove_folio+0x48/0xa8
[  397.172479][ T3950]  truncate_inode_folio+0x30/0x4c
[  397.173240][ T3950]  shmem_undo_range+0x208/0x620
[  397.173911][ T3950]  shmem_evict_inode+0x130/0x2dc
[  397.174556][ T3950]  evict+0xb4/0x198
[  397.175167][ T3950]  iput+0x100/0x1b8
[  397.175770][ T3950]  dentry_unlink_inode+0xc0/0x188
[  397.176434][ T3950]  __dentry_kill+0x7c/0x1d4
[  397.177076][ T3950]  dput.part.0+0x30/0xbc
[  397.177694][ T3950]  dput+0x4c/0x50
[  397.178600][ T3950]  __fput+0x110/0x2d4
[  397.179522][ T3950]  ____fput+0x10/0x1c
[  397.180557][ T3950]  task_work_run+0x78/0xd0
[  397.181205][ T3950]  do_notify_resume+0x134/0x164
[  397.182123][ T3950]  el0_svc+0xc8/0xf8
[  397.182835][ T3950]  el0t_64_sync_handler+0x100/0x12c
[  397.183648][ T3950]  el0t_64_sync+0x19c/0x1a0
[  397.387677][ T3952] BUG: Bad page cache in process syz.0.65  pfn:4d5e4
[  397.388856][ T3952] page: refcount:4 mapcount:1 mapping:00000000176640f1 index:0x0 pfn:0x4d5e4
[  397.392018][ T3952] memcg:f4f00000060ad000
[  397.393656][ T3952] aops:shmem_aops ino:41c
[  397.395369][ T3952] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  397.399026][ T3952] raw: 01ffc0000004002d ffffc1ffc02cd208 ffffc1ffc039ca48 f4f00000070f0210
[  397.402066][ T3952] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  397.404380][ T3952] page dumped because: still mapped when deleted
[  397.405748][ T3952] CPU: 1 PID: 3952 Comm: syz.0.65 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  397.408381][ T3952] Hardware name: linux,dummy-virt (DT)
[  397.410156][ T3952] Call trace:
[  397.411490][ T3952]  dump_backtrace+0x94/0xec
[  397.413036][ T3952]  show_stack+0x18/0x24
[  397.413733][ T3952]  dump_stack_lvl+0x78/0x90
[  397.414481][ T3952]  dump_stack+0x18/0x24
[  397.415300][ T3952]  filemap_unaccount_folio+0x118/0x278
[  397.416181][ T3952]  __filemap_remove_folio+0x3c/0x178
[  397.417070][ T3952]  filemap_remove_folio+0x48/0xa8
[  397.417851][ T3952]  truncate_inode_folio+0x30/0x4c
[  397.418591][ T3952]  shmem_undo_range+0x208/0x620
[  397.419360][ T3952]  shmem_evict_inode+0x130/0x2dc
[  397.426032][ T3952]  evict+0xb4/0x198
[  397.428120][ T3952]  iput+0x100/0x1b8
[  397.435299][ T3952]  dentry_unlink_inode+0xc0/0x188
[  397.436390][ T3952]  __dentry_kill+0x7c/0x1d4
[  397.437125][ T3952]  dput.part.0+0x30/0xbc
[  397.437794][ T3952]  dput+0x4c/0x50
[  397.438486][ T3952]  __fput+0x110/0x2d4
[  397.439181][ T3952]  ____fput+0x10/0x1c
[  397.441760][ T3952]  task_work_run+0x78/0xd0
[  397.445248][ T3952]  do_notify_resume+0x134/0x164
[  397.448445][ T3952]  el0_svc+0xc8/0xf8
[  397.450480][ T3952]  el0t_64_sync_handler+0x100/0x12c
[  397.452597][ T3952]  el0t_64_sync+0x19c/0x1a0
[  397.463446][ T3952] BUG: Bad page cache in process syz.0.65  pfn:4e729
[  397.467665][ T3952] page: refcount:4 mapcount:1 mapping:00000000176640f1 index:0x1 pfn:0x4e729
[  397.469364][ T3952] memcg:f4f00000060ad000
[  397.470577][ T3952] aops:shmem_aops ino:41c
[  397.472542][ T3952] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  397.475132][ T3952] raw: 01ffc0000004002d ffffc1ffc0357908 ffffc1ffc02f7d88 f4f00000070f0210
[  397.477081][ T3952] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  397.480191][ T3952] page dumped because: still mapped when deleted
[  397.483241][ T3952] CPU: 1 PID: 3952 Comm: syz.0.65 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  397.485751][ T3952] Hardware name: linux,dummy-virt (DT)
[  397.486503][ T3952] Call trace:
[  397.487437][ T3952]  dump_backtrace+0x94/0xec
[  397.489568][ T3952]  show_stack+0x18/0x24
[  397.490839][ T3952]  dump_stack_lvl+0x78/0x90
[  397.492247][ T3952]  dump_stack+0x18/0x24
[  397.493383][ T3952]  filemap_unaccount_folio+0x118/0x278
[  397.494861][ T3952]  __filemap_remove_folio+0x3c/0x178
[  397.495787][ T3952]  filemap_remove_folio+0x48/0xa8
[  397.497826][ T3952]  truncate_inode_folio+0x30/0x4c
[  397.499312][ T3952]  shmem_undo_range+0x208/0x620
[  397.501337][ T3952]  shmem_evict_inode+0x130/0x2dc
[  397.502408][ T3952]  evict+0xb4/0x198
[  397.503152][ T3952]  iput+0x100/0x1b8
[  397.504043][ T3952]  dentry_unlink_inode+0xc0/0x188
[  397.505557][ T3952]  __dentry_kill+0x7c/0x1d4
[  397.506580][ T3952]  dput.part.0+0x30/0xbc
[  397.507583][ T3952]  dput+0x4c/0x50
[  397.509414][ T3952]  __fput+0x110/0x2d4
[  397.510374][ T3952]  ____fput+0x10/0x1c
[  397.511713][ T3952]  task_work_run+0x78/0xd0
[  397.514607][ T3952]  do_notify_resume+0x134/0x164
[  397.515709][ T3952]  el0_svc+0xc8/0xf8
[  397.518167][ T3952]  el0t_64_sync_handler+0x100/0x12c
[  397.521915][ T3952]  el0t_64_sync+0x19c/0x1a0
[  397.704102][ T3954] BUG: Bad page cache in process syz.0.66  pfn:47c2b
[  397.705100][ T3954] page: refcount:4 mapcount:1 mapping:000000009fd99a07 index:0x0 pfn:0x47c2b
[  397.706437][ T3954] memcg:f4f00000060ad000
[  397.707573][ T3954] aops:shmem_aops ino:41d
[  397.708753][ T3954] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  397.710091][ T3954] raw: 01ffc0000004002d ffffc1ffc02d9e08 ffffc1ffc02f2408 f4f00000070f0850
[  397.711852][ T3954] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  397.713042][ T3954] page dumped because: still mapped when deleted
[  397.715018][ T3954] CPU: 1 PID: 3954 Comm: syz.0.66 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  397.717990][ T3954] Hardware name: linux,dummy-virt (DT)
[  397.718768][ T3954] Call trace:
[  397.719420][ T3954]  dump_backtrace+0x94/0xec
[  397.720266][ T3954]  show_stack+0x18/0x24
[  397.721138][ T3954]  dump_stack_lvl+0x78/0x90
[  397.722340][ T3954]  dump_stack+0x18/0x24
[  397.723116][ T3954]  filemap_unaccount_folio+0x118/0x278
[  397.724400][ T3954]  __filemap_remove_folio+0x3c/0x178
[  397.740172][ T3954]  filemap_remove_folio+0x48/0xa8
[  397.740983][ T3954]  truncate_inode_folio+0x30/0x4c
[  397.741752][ T3954]  shmem_undo_range+0x208/0x620
[  397.742500][ T3954]  shmem_evict_inode+0x130/0x2dc
[  397.744355][ T3954]  evict+0xb4/0x198
[  397.745510][ T3954]  iput+0x100/0x1b8
[  397.747021][ T3954]  dentry_unlink_inode+0xc0/0x188
[  397.748648][ T3954]  __dentry_kill+0x7c/0x1d4
[  397.750301][ T3954]  dput.part.0+0x30/0xbc
[  397.751716][ T3954]  dput+0x4c/0x50
[  397.753425][ T3954]  __fput+0x110/0x2d4
[  397.754749][ T3954]  ____fput+0x10/0x1c
[  397.756070][ T3954]  task_work_run+0x78/0xd0
[  397.758955][ T3954]  do_notify_resume+0x134/0x164
[  397.762124][ T3954]  el0_svc+0xc8/0xf8
[  397.762943][ T3954]  el0t_64_sync_handler+0x100/0x12c
[  397.766290][ T3954]  el0t_64_sync+0x19c/0x1a0
[  397.792247][ T3954] BUG: Bad page cache in process syz.0.66  pfn:4bc90
[  397.794962][ T3954] page: refcount:4 mapcount:1 mapping:000000009fd99a07 index:0x1 pfn:0x4bc90
[  397.796069][ T3954] memcg:f4f00000060ad000
[  397.796769][ T3954] aops:shmem_aops ino:41d
[  397.797671][ T3954] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  397.801350][ T3954] raw: 01ffc0000004002d ffffc1ffc01f0ac8 ffffc1ffc03aa3c8 f4f00000070f0850
[  397.803009][ T3954] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  397.805430][ T3954] page dumped because: still mapped when deleted
[  397.807634][ T3954] CPU: 1 PID: 3954 Comm: syz.0.66 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  397.812476][ T3954] Hardware name: linux,dummy-virt (DT)
[  397.814459][ T3954] Call trace:
[  397.815775][ T3954]  dump_backtrace+0x94/0xec
[  397.817533][ T3954]  show_stack+0x18/0x24
[  397.819072][ T3954]  dump_stack_lvl+0x78/0x90
[  397.826674][ T3954]  dump_stack+0x18/0x24
[  397.827566][ T3954]  filemap_unaccount_folio+0x118/0x278
[  397.829077][ T3954]  __filemap_remove_folio+0x3c/0x178
[  397.831404][ T3954]  filemap_remove_folio+0x48/0xa8
[  397.832642][ T3954]  truncate_inode_folio+0x30/0x4c
[  397.833529][ T3954]  shmem_undo_range+0x208/0x620
[  397.834362][ T3954]  shmem_evict_inode+0x130/0x2dc
[  397.835299][ T3954]  evict+0xb4/0x198
[  397.836051][ T3954]  iput+0x100/0x1b8
[  397.837809][ T3954]  dentry_unlink_inode+0xc0/0x188
[  397.838962][ T3954]  __dentry_kill+0x7c/0x1d4
[  397.839804][ T3954]  dput.part.0+0x30/0xbc
[  397.840615][ T3954]  dput+0x4c/0x50
[  397.841251][ T3954]  __fput+0x110/0x2d4
[  397.841986][ T3954]  ____fput+0x10/0x1c
[  397.842785][ T3954]  task_work_run+0x78/0xd0
[  397.843727][ T3954]  do_notify_resume+0x134/0x164
[  397.845511][ T3954]  el0_svc+0xc8/0xf8
[  397.846294][ T3954]  el0t_64_sync_handler+0x100/0x12c
[  397.847137][ T3954]  el0t_64_sync+0x19c/0x1a0
[  398.058689][ T3956] BUG: Bad page cache in process syz.0.67  pfn:4b653
[  398.060530][ T3956] page: refcount:5 mapcount:1 mapping:000000002c8bebbb index:0x0 pfn:0x4b653
[  398.061862][ T3956] memcg:f4f00000060ad000
[  398.062532][ T3956] aops:shmem_aops ino:41e
[  398.063410][ T3956] flags: 0x1ffc0000004000d(locked|referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  398.064824][ T3956] raw: 01ffc0000004000d 0000000000000000 dead000000000122 f1f00000070f11b0
[  398.065969][ T3956] raw: 0000000000000000 0000000000000000 0000000500000000 f4f00000060ad000
[  398.067127][ T3956] page dumped because: still mapped when deleted
[  398.068121][ T3956] CPU: 1 PID: 3956 Comm: syz.0.67 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  398.069486][ T3956] Hardware name: linux,dummy-virt (DT)
[  398.070283][ T3956] Call trace:
[  398.071172][ T3956]  dump_backtrace+0x94/0xec
[  398.071988][ T3956]  show_stack+0x18/0x24
[  398.072804][ T3956]  dump_stack_lvl+0x78/0x90
[  398.073560][ T3956]  dump_stack+0x18/0x24
[  398.074330][ T3956]  filemap_unaccount_folio+0x118/0x278
[  398.075168][ T3956]  __filemap_remove_folio+0x3c/0x178
[  398.076049][ T3956]  filemap_remove_folio+0x48/0xa8
[  398.076990][ T3956]  truncate_inode_folio+0x30/0x4c
[  398.077741][ T3956]  shmem_undo_range+0x208/0x620
[  398.078495][ T3956]  shmem_evict_inode+0x130/0x2dc
[  398.079319][ T3956]  evict+0xb4/0x198
[  398.080522][ T3956]  iput+0x100/0x1b8
[  398.081191][ T3956]  dentry_unlink_inode+0xc0/0x188
[  398.081955][ T3956]  __dentry_kill+0x7c/0x1d4
[  398.082689][ T3956]  dput.part.0+0x30/0xbc
[  398.083469][ T3956]  dput+0x4c/0x50
[  398.084161][ T3956]  __fput+0x110/0x2d4
[  398.084860][ T3956]  ____fput+0x10/0x1c
[  398.085623][ T3956]  task_work_run+0x78/0xd0
[  398.086509][ T3956]  do_notify_resume+0x134/0x164
[  398.087358][ T3956]  el0_svc+0xc8/0xf8
[  398.088140][ T3956]  el0t_64_sync_handler+0x100/0x12c
[  398.088909][ T3956]  el0t_64_sync+0x19c/0x1a0
[  398.092092][ T3956] BUG: Bad page cache in process syz.0.67  pfn:4eadc
[  398.092974][ T3956] page: refcount:5 mapcount:1 mapping:000000002c8bebbb index:0x1 pfn:0x4eadc
[  398.093943][ T3956] memcg:f4f00000060ad000
[  398.094575][ T3956] aops:shmem_aops ino:41e
[  398.095354][ T3956] flags: 0x1ffc0000004000d(locked|referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  398.097184][ T3956] raw: 01ffc0000004000d 0000000000000000 dead000000000122 f1f00000070f11b0
[  398.098120][ T3956] raw: 0000000000000001 0000000000000000 0000000500000000 f4f00000060ad000
[  398.099063][ T3956] page dumped because: still mapped when deleted
[  398.100012][ T3956] CPU: 1 PID: 3956 Comm: syz.0.67 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  398.101575][ T3956] Hardware name: linux,dummy-virt (DT)
[  398.102365][ T3956] Call trace:
[  398.102955][ T3956]  dump_backtrace+0x94/0xec
[  398.103766][ T3956]  show_stack+0x18/0x24
[  398.104513][ T3956]  dump_stack_lvl+0x78/0x90
[  398.105281][ T3956]  dump_stack+0x18/0x24
[  398.106019][ T3956]  filemap_unaccount_folio+0x118/0x278
[  398.106944][ T3956]  __filemap_remove_folio+0x3c/0x178
[  398.107787][ T3956]  filemap_remove_folio+0x48/0xa8
[  398.108579][ T3956]  truncate_inode_folio+0x30/0x4c
[  398.109350][ T3956]  shmem_undo_range+0x208/0x620
[  398.110422][ T3956]  shmem_evict_inode+0x130/0x2dc
[  398.111248][ T3956]  evict+0xb4/0x198
[  398.112029][ T3956]  iput+0x100/0x1b8
[  398.112807][ T3956]  dentry_unlink_inode+0xc0/0x188
[  398.113744][ T3956]  __dentry_kill+0x7c/0x1d4
[  398.114574][ T3956]  dput.part.0+0x30/0xbc
[  398.115336][ T3956]  dput+0x4c/0x50
[  398.116041][ T3956]  __fput+0x110/0x2d4
[  398.116769][ T3956]  ____fput+0x10/0x1c
[  398.117559][ T3956]  task_work_run+0x78/0xd0
[  398.118313][ T3956]  do_notify_resume+0x134/0x164
[  398.119030][ T3956]  el0_svc+0xc8/0xf8
[  398.119802][ T3956]  el0t_64_sync_handler+0x100/0x12c
[  398.120634][ T3956]  el0t_64_sync+0x19c/0x1a0
[  398.362874][ T3958] BUG: Bad page cache in process syz.0.68  pfn:4b676
[  398.365560][ T3958] page: refcount:4 mapcount:1 mapping:000000008b8bbffe index:0x0 pfn:0x4b676
[  398.371670][ T3958] memcg:f4f00000060ad000
[  398.374414][ T3958] aops:shmem_aops ino:41f
[  398.375439][ T3958] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  398.376976][ T3958] raw: 01ffc0000004002d ffffc1ffc01fcf88 ffffc1ffc02d6ac8 fbf00000070f3a50
[  398.379676][ T3958] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  398.383245][ T3958] page dumped because: still mapped when deleted
[  398.385396][ T3958] CPU: 1 PID: 3958 Comm: syz.0.68 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  398.388575][ T3958] Hardware name: linux,dummy-virt (DT)
[  398.390746][ T3958] Call trace:
[  398.392044][ T3958]  dump_backtrace+0x94/0xec
[  398.393006][ T3958]  show_stack+0x18/0x24
[  398.393761][ T3958]  dump_stack_lvl+0x78/0x90
[  398.395873][ T3958]  dump_stack+0x18/0x24
[  398.396797][ T3958]  filemap_unaccount_folio+0x118/0x278
[  398.398206][ T3958]  __filemap_remove_folio+0x3c/0x178
[  398.398946][ T3958]  filemap_remove_folio+0x48/0xa8
[  398.401393][ T3958]  truncate_inode_folio+0x30/0x4c
[  398.402274][ T3958]  shmem_undo_range+0x208/0x620
[  398.403441][ T3958]  shmem_evict_inode+0x130/0x2dc
[  398.404781][ T3958]  evict+0xb4/0x198
[  398.405610][ T3958]  iput+0x100/0x1b8
[  398.406574][ T3958]  dentry_unlink_inode+0xc0/0x188
[  398.407853][ T3958]  __dentry_kill+0x7c/0x1d4
[  398.408765][ T3958]  dput.part.0+0x30/0xbc
[  398.409796][ T3958]  dput+0x4c/0x50
[  398.412267][ T3958]  __fput+0x110/0x2d4
[  398.414056][ T3958]  ____fput+0x10/0x1c
[  398.415862][ T3958]  task_work_run+0x78/0xd0
[  398.416848][ T3958]  do_notify_resume+0x134/0x164
[  398.419703][ T3958]  el0_svc+0xc8/0xf8
[  398.420571][ T3958]  el0t_64_sync_handler+0x100/0x12c
[  398.421681][ T3958]  el0t_64_sync+0x19c/0x1a0
[  398.426453][ T3958] BUG: Bad page cache in process syz.0.68  pfn:4b5ab
[  398.428235][ T3958] page: refcount:4 mapcount:1 mapping:000000008b8bbffe index:0x1 pfn:0x4b5ab
[  398.430134][ T3958] memcg:f4f00000060ad000
[  398.431289][ T3958] aops:shmem_aops ino:41f
[  398.433572][ T3958] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  398.437566][ T3958] raw: 01ffc0000004002d ffffc1ffc02d9d88 ffffc1ffc03576c8 fbf00000070f3a50
[  398.439249][ T3958] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  398.442613][ T3958] page dumped because: still mapped when deleted
[  398.444270][ T3958] CPU: 1 PID: 3958 Comm: syz.0.68 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  398.446768][ T3958] Hardware name: linux,dummy-virt (DT)
[  398.448754][ T3958] Call trace:
[  398.449799][ T3958]  dump_backtrace+0x94/0xec
[  398.450723][ T3958]  show_stack+0x18/0x24
[  398.452541][ T3958]  dump_stack_lvl+0x78/0x90
[  398.455499][ T3958]  dump_stack+0x18/0x24
[  398.456498][ T3958]  filemap_unaccount_folio+0x118/0x278
[  398.457620][ T3958]  __filemap_remove_folio+0x3c/0x178
[  398.458433][ T3958]  filemap_remove_folio+0x48/0xa8
[  398.460818][ T3958]  truncate_inode_folio+0x30/0x4c
[  398.462793][ T3958]  shmem_undo_range+0x208/0x620
[  398.465075][ T3958]  shmem_evict_inode+0x130/0x2dc
[  398.467669][ T3958]  evict+0xb4/0x198
[  398.469710][ T3958]  iput+0x100/0x1b8
[  398.471167][ T3958]  dentry_unlink_inode+0xc0/0x188
[  398.472027][ T3958]  __dentry_kill+0x7c/0x1d4
[  398.473001][ T3958]  dput.part.0+0x30/0xbc
[  398.474291][ T3958]  dput+0x4c/0x50
[  398.475009][ T3958]  __fput+0x110/0x2d4
[  398.476218][ T3958]  ____fput+0x10/0x1c
[  398.478195][ T3958]  task_work_run+0x78/0xd0
[  398.479628][ T3958]  do_notify_resume+0x134/0x164
[  398.480878][ T3958]  el0_svc+0xc8/0xf8
[  398.481886][ T3958]  el0t_64_sync_handler+0x100/0x12c
[  398.483166][ T3958]  el0t_64_sync+0x19c/0x1a0
1970/01/01 00:06:38 executed programs: 56
[  398.646187][ T3960] BUG: Bad page cache in process syz.0.69  pfn:4b5c2
[  398.647763][ T3960] page: refcount:4 mapcount:1 mapping:000000009fd99a07 index:0x0 pfn:0x4b5c2
[  398.649025][ T3960] memcg:f4f00000060ad000
[  398.649711][ T3960] aops:shmem_aops ino:420
[  398.651329][ T3960] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  398.652739][ T3960] raw: 01ffc0000004002d ffffc1ffc0357748 ffffc1ffc01fcf88 f4f00000070f0850
[  398.654453][ T3960] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  398.656348][ T3960] page dumped because: still mapped when deleted
[  398.657296][ T3960] CPU: 1 PID: 3960 Comm: syz.0.69 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  398.659032][ T3960] Hardware name: linux,dummy-virt (DT)
[  398.660220][ T3960] Call trace:
[  398.660942][ T3960]  dump_backtrace+0x94/0xec
[  398.661722][ T3960]  show_stack+0x18/0x24
[  398.663325][ T3960]  dump_stack_lvl+0x78/0x90
[  398.665106][ T3960]  dump_stack+0x18/0x24
[  398.667028][ T3960]  filemap_unaccount_folio+0x118/0x278
[  398.668819][ T3960]  __filemap_remove_folio+0x3c/0x178
[  398.670078][ T3960]  filemap_remove_folio+0x48/0xa8
[  398.670873][ T3960]  truncate_inode_folio+0x30/0x4c
[  398.672262][ T3960]  shmem_undo_range+0x208/0x620
[  398.673580][ T3960]  shmem_evict_inode+0x130/0x2dc
[  398.674622][ T3960]  evict+0xb4/0x198
[  398.675938][ T3960]  iput+0x100/0x1b8
[  398.677115][ T3960]  dentry_unlink_inode+0xc0/0x188
[  398.678873][ T3960]  __dentry_kill+0x7c/0x1d4
[  398.679966][ T3960]  dput.part.0+0x30/0xbc
[  398.680824][ T3960]  dput+0x4c/0x50
[  398.682646][ T3960]  __fput+0x110/0x2d4
[  398.684648][ T3960]  ____fput+0x10/0x1c
[  398.686483][ T3960]  task_work_run+0x78/0xd0
[  398.689990][ T3960]  do_notify_resume+0x134/0x164
[  398.690727][ T3960]  el0_svc+0xc8/0xf8
[  398.691732][ T3960]  el0t_64_sync_handler+0x100/0x12c
[  398.693307][ T3960]  el0t_64_sync+0x19c/0x1a0
[  398.697969][ T3960] BUG: Bad page cache in process syz.0.69  pfn:47f3e
[  398.699891][ T3960] page: refcount:4 mapcount:1 mapping:000000009fd99a07 index:0x1 pfn:0x47f3e
[  398.701509][ T3960] memcg:f4f00000060ad000
[  398.702942][ T3960] aops:shmem_aops ino:420
[  398.709973][ T3960] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  398.711359][ T3960] raw: 01ffc0000004002d ffffc1ffc02d7088 ffffc1ffc02d9d48 f4f00000070f0850
[  398.712460][ T3960] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  398.713573][ T3960] page dumped because: still mapped when deleted
[  398.715355][ T3960] CPU: 1 PID: 3960 Comm: syz.0.69 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  398.719072][ T3960] Hardware name: linux,dummy-virt (DT)
[  398.720097][ T3960] Call trace:
[  398.720652][ T3960]  dump_backtrace+0x94/0xec
[  398.721766][ T3960]  show_stack+0x18/0x24
[  398.723032][ T3960]  dump_stack_lvl+0x78/0x90
[  398.725609][ T3960]  dump_stack+0x18/0x24
[  398.726817][ T3960]  filemap_unaccount_folio+0x118/0x278
[  398.728167][ T3960]  __filemap_remove_folio+0x3c/0x178
[  398.730243][ T3960]  filemap_remove_folio+0x48/0xa8
[  398.732089][ T3960]  truncate_inode_folio+0x30/0x4c
[  398.732913][ T3960]  shmem_undo_range+0x208/0x620
[  398.733818][ T3960]  shmem_evict_inode+0x130/0x2dc
[  398.735708][ T3960]  evict+0xb4/0x198
[  398.736513][ T3960]  iput+0x100/0x1b8
[  398.737406][ T3960]  dentry_unlink_inode+0xc0/0x188
[  398.739921][ T3960]  __dentry_kill+0x7c/0x1d4
[  398.742483][ T3960]  dput.part.0+0x30/0xbc
[  398.743935][ T3960]  dput+0x4c/0x50
[  398.746652][ T3960]  __fput+0x110/0x2d4
[  398.748698][ T3960]  ____fput+0x10/0x1c
[  398.750246][ T3960]  task_work_run+0x78/0xd0
[  398.752412][ T3960]  do_notify_resume+0x134/0x164
[  398.755590][ T3960]  el0_svc+0xc8/0xf8
[  398.757693][ T3960]  el0t_64_sync_handler+0x100/0x12c
[  398.759308][ T3960]  el0t_64_sync+0x19c/0x1a0
[  398.963191][ T3962] BUG: Bad page cache in process syz.0.70  pfn:4b343
[  398.963870][ T3962] page: refcount:4 mapcount:1 mapping:0000000026607bae index:0x0 pfn:0x4b343
[  398.964728][ T3962] memcg:f4f00000060ad000
[  398.965638][ T3962] aops:shmem_aops ino:19
[  398.966447][ T3962] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  398.968497][ T3962] raw: 01ffc0000004002d ffffc1ffc03257c8 ffffc1ffc02dc708 faf0000003b851b0
[  398.970535][ T3962] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  398.973441][ T3962] page dumped because: still mapped when deleted
[  398.975972][ T3962] CPU: 0 PID: 3962 Comm: syz.0.70 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  398.978016][ T3962] Hardware name: linux,dummy-virt (DT)
[  398.978800][ T3962] Call trace:
[  398.979418][ T3962]  dump_backtrace+0x94/0xec
[  398.980608][ T3962]  show_stack+0x18/0x24
[  398.981848][ T3962]  dump_stack_lvl+0x78/0x90
[  398.982806][ T3962]  dump_stack+0x18/0x24
[  398.983897][ T3962]  filemap_unaccount_folio+0x118/0x278
[  398.984824][ T3962]  __filemap_remove_folio+0x3c/0x178
[  398.985659][ T3962]  filemap_remove_folio+0x48/0xa8
[  398.986479][ T3962]  truncate_inode_folio+0x30/0x4c
[  398.987745][ T3962]  shmem_undo_range+0x208/0x620
[  398.989435][ T3962]  shmem_evict_inode+0x130/0x2dc
[  398.991102][ T3962]  evict+0xb4/0x198
[  398.992179][ T3962]  iput+0x100/0x1b8
[  398.992933][ T3962]  dentry_unlink_inode+0xc0/0x188
[  398.994312][ T3962]  __dentry_kill+0x7c/0x1d4
[  398.994987][ T3962]  dput.part.0+0x30/0xbc
[  398.995663][ T3962]  dput+0x4c/0x50
[  398.996438][ T3962]  __fput+0x110/0x2d4
[  398.997172][ T3962]  ____fput+0x10/0x1c
[  398.997877][ T3962]  task_work_run+0x78/0xd0
[  398.998614][ T3962]  do_notify_resume+0x134/0x164
[  399.001062][ T3962]  el0_svc+0xc8/0xf8
[  399.003823][ T3962]  el0t_64_sync_handler+0x100/0x12c
[  399.005343][ T3962]  el0t_64_sync+0x19c/0x1a0
[  399.015265][ T3962] BUG: Bad page cache in process syz.0.70  pfn:4b71c
[  399.016370][ T3962] page: refcount:4 mapcount:1 mapping:0000000026607bae index:0x1 pfn:0x4b71c
[  399.017764][ T3962] memcg:f4f00000060ad000
[  399.019143][ T3962] aops:shmem_aops ino:19
[  399.021178][ T3962] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  399.022832][ T3962] raw: 01ffc0000004002d ffffc1ffc02cd0c8 ffffc1ffc0357448 faf0000003b851b0
[  399.023874][ T3962] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  399.024791][ T3962] page dumped because: still mapped when deleted
[  399.025719][ T3962] CPU: 0 PID: 3962 Comm: syz.0.70 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  399.027477][ T3962] Hardware name: linux,dummy-virt (DT)
[  399.028459][ T3962] Call trace:
[  399.030785][ T3962]  dump_backtrace+0x94/0xec
[  399.032141][ T3962]  show_stack+0x18/0x24
[  399.032842][ T3962]  dump_stack_lvl+0x78/0x90
[  399.033569][ T3962]  dump_stack+0x18/0x24
[  399.034215][ T3962]  filemap_unaccount_folio+0x118/0x278
[  399.035771][ T3962]  __filemap_remove_folio+0x3c/0x178
[  399.036651][ T3962]  filemap_remove_folio+0x48/0xa8
[  399.037586][ T3962]  truncate_inode_folio+0x30/0x4c
[  399.038551][ T3962]  shmem_undo_range+0x208/0x620
[  399.039291][ T3962]  shmem_evict_inode+0x130/0x2dc
[  399.039806][ T3962]  evict+0xb4/0x198
[  399.040558][ T3962]  iput+0x100/0x1b8
[  399.041328][ T3962]  dentry_unlink_inode+0xc0/0x188
[  399.042418][ T3962]  __dentry_kill+0x7c/0x1d4
[  399.043457][ T3962]  dput.part.0+0x30/0xbc
[  399.044386][ T3962]  dput+0x4c/0x50
[  399.045308][ T3962]  __fput+0x110/0x2d4
[  399.046318][ T3962]  ____fput+0x10/0x1c
[  399.047526][ T3962]  task_work_run+0x78/0xd0
[  399.048781][ T3962]  do_notify_resume+0x134/0x164
[  399.050270][ T3962]  el0_svc+0xc8/0xf8
[  399.051339][ T3962]  el0t_64_sync_handler+0x100/0x12c
[  399.052206][ T3962]  el0t_64_sync+0x19c/0x1a0
[  399.198797][ T3964] BUG: Bad page cache in process syz.0.71  pfn:4b6c7
[  399.201164][ T3964] page: refcount:4 mapcount:1 mapping:00000000d2d38d84 index:0x0 pfn:0x4b6c7
[  399.202205][ T3964] memcg:f4f00000060ad000
[  399.202837][ T3964] aops:shmem_aops ino:1a
[  399.204005][ T3964] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  399.205435][ T3964] raw: 01ffc0000004002d ffffc1ffc02d9d48 ffffc1ffc03257c8 f7f0000003b86790
[  399.206731][ T3964] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  399.207853][ T3964] page dumped because: still mapped when deleted
[  399.208633][ T3964] CPU: 0 PID: 3964 Comm: syz.0.71 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  399.210260][ T3964] Hardware name: linux,dummy-virt (DT)
[  399.211522][ T3964] Call trace:
[  399.212305][ T3964]  dump_backtrace+0x94/0xec
[  399.213079][ T3964]  show_stack+0x18/0x24
[  399.213746][ T3964]  dump_stack_lvl+0x78/0x90
[  399.214489][ T3964]  dump_stack+0x18/0x24
[  399.215142][ T3964]  filemap_unaccount_folio+0x118/0x278
[  399.216031][ T3964]  __filemap_remove_folio+0x3c/0x178
[  399.216806][ T3964]  filemap_remove_folio+0x48/0xa8
[  399.217549][ T3964]  truncate_inode_folio+0x30/0x4c
[  399.218203][ T3964]  shmem_undo_range+0x208/0x620
[  399.218990][ T3964]  shmem_evict_inode+0x130/0x2dc
[  399.219854][ T3964]  evict+0xb4/0x198
[  399.221146][ T3964]  iput+0x100/0x1b8
[  399.222180][ T3964]  dentry_unlink_inode+0xc0/0x188
[  399.222981][ T3964]  __dentry_kill+0x7c/0x1d4
[  399.223828][ T3964]  dput.part.0+0x30/0xbc
[  399.224586][ T3964]  dput+0x4c/0x50
[  399.225446][ T3964]  __fput+0x110/0x2d4
[  399.226338][ T3964]  ____fput+0x10/0x1c
[  399.227478][ T3964]  task_work_run+0x78/0xd0
[  399.228323][ T3964]  do_notify_resume+0x134/0x164
[  399.229244][ T3964]  el0_svc+0xc8/0xf8
[  399.230165][ T3964]  el0t_64_sync_handler+0x100/0x12c
[  399.231263][ T3964]  el0t_64_sync+0x19c/0x1a0
[  399.251987][ T3964] BUG: Bad page cache in process syz.0.71  pfn:4c95f
[  399.252980][ T3964] page: refcount:4 mapcount:1 mapping:00000000d2d38d84 index:0x1 pfn:0x4c95f
[  399.254002][ T3964] memcg:f4f00000060ad000
[  399.254616][ T3964] aops:shmem_aops ino:1a
[  399.255568][ T3964] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  399.256811][ T3964] raw: 01ffc0000004002d ffffc1ffc02db1c8 ffffc1ffc02f26c8 f7f0000003b86790
[  399.257698][ T3964] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  399.258579][ T3964] page dumped because: still mapped when deleted
[  399.259425][ T3964] CPU: 0 PID: 3964 Comm: syz.0.71 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  399.261137][ T3964] Hardware name: linux,dummy-virt (DT)
[  399.261881][ T3964] Call trace:
[  399.262536][ T3964]  dump_backtrace+0x94/0xec
[  399.263520][ T3964]  show_stack+0x18/0x24
[  399.264268][ T3964]  dump_stack_lvl+0x78/0x90
[  399.264982][ T3964]  dump_stack+0x18/0x24
[  399.265625][ T3964]  filemap_unaccount_folio+0x118/0x278
[  399.266505][ T3964]  __filemap_remove_folio+0x3c/0x178
[  399.267477][ T3964]  filemap_remove_folio+0x48/0xa8
[  399.268244][ T3964]  truncate_inode_folio+0x30/0x4c
[  399.269103][ T3964]  shmem_undo_range+0x208/0x620
[  399.270204][ T3964]  shmem_evict_inode+0x130/0x2dc
[  399.271146][ T3964]  evict+0xb4/0x198
[  399.271857][ T3964]  iput+0x100/0x1b8
[  399.272590][ T3964]  dentry_unlink_inode+0xc0/0x188
[  399.273257][ T3964]  __dentry_kill+0x7c/0x1d4
[  399.273889][ T3964]  dput.part.0+0x30/0xbc
[  399.274460][ T3964]  dput+0x4c/0x50
[  399.275315][ T3964]  __fput+0x110/0x2d4
[  399.275928][ T3964]  ____fput+0x10/0x1c
[  399.276648][ T3964]  task_work_run+0x78/0xd0
[  399.277371][ T3964]  do_notify_resume+0x134/0x164
[  399.278008][ T3964]  el0_svc+0xc8/0xf8
[  399.278743][ T3964]  el0t_64_sync_handler+0x100/0x12c
[  399.279598][ T3964]  el0t_64_sync+0x19c/0x1a0
[  399.472291][ T3966] BUG: Bad page cache in process syz.0.72  pfn:4b5f6
[  399.473281][ T3966] page: refcount:5 mapcount:1 mapping:000000000983fcb3 index:0x0 pfn:0x4b5f6
[  399.474259][ T3966] memcg:f4f00000060ad000
[  399.474761][ T3966] aops:shmem_aops ino:1b
[  399.475235][ T3966] flags: 0x1ffc0000004000d(locked|referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  399.476215][ T3966] raw: 01ffc0000004000d 0000000000000000 dead000000000122 f1f0000003b85b10
[  399.477424][ T3966] raw: 0000000000000000 0000000000000000 0000000500000000 f4f00000060ad000
[  399.478632][ T3966] page dumped because: still mapped when deleted
[  399.479915][ T3966] CPU: 1 PID: 3966 Comm: syz.0.72 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  399.481323][ T3966] Hardware name: linux,dummy-virt (DT)
[  399.481982][ T3966] Call trace:
[  399.482532][ T3966]  dump_backtrace+0x94/0xec
[  399.483376][ T3966]  show_stack+0x18/0x24
[  399.484190][ T3966]  dump_stack_lvl+0x78/0x90
[  399.484914][ T3966]  dump_stack+0x18/0x24
[  399.485711][ T3966]  filemap_unaccount_folio+0x118/0x278
[  399.486450][ T3966]  __filemap_remove_folio+0x3c/0x178
[  399.487291][ T3966]  filemap_remove_folio+0x48/0xa8
[  399.488054][ T3966]  truncate_inode_folio+0x30/0x4c
[  399.488772][ T3966]  shmem_undo_range+0x208/0x620
[  399.489532][ T3966]  shmem_evict_inode+0x130/0x2dc
[  399.490713][ T3966]  evict+0xb4/0x198
[  399.491629][ T3966]  iput+0x100/0x1b8
[  399.492294][ T3966]  dentry_unlink_inode+0xc0/0x188
[  399.493018][ T3966]  __dentry_kill+0x7c/0x1d4
[  399.493749][ T3966]  dput.part.0+0x30/0xbc
[  399.494457][ T3966]  dput+0x4c/0x50
[  399.495126][ T3966]  __fput+0x110/0x2d4
[  399.495854][ T3966]  ____fput+0x10/0x1c
[  399.496556][ T3966]  task_work_run+0x78/0xd0
[  399.497303][ T3966]  do_notify_resume+0x134/0x164
[  399.498245][ T3966]  el0_svc+0xc8/0xf8
[  399.498925][ T3966]  el0t_64_sync_handler+0x100/0x12c
[  399.499765][ T3966]  el0t_64_sync+0x19c/0x1a0
[  399.512465][ T3966] BUG: Bad page cache in process syz.0.72  pfn:4b33e
[  399.513538][ T3966] page: refcount:5 mapcount:1 mapping:000000000983fcb3 index:0x1 pfn:0x4b33e
[  399.514671][ T3966] memcg:f4f00000060ad000
[  399.515359][ T3966] aops:shmem_aops ino:1b
[  399.516061][ T3966] flags: 0x1ffc0000004000d(locked|referenced|uptodate|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  399.517309][ T3966] raw: 01ffc0000004000d 0000000000000000 dead000000000122 f1f0000003b85b10
[  399.518358][ T3966] raw: 0000000000000001 0000000000000000 0000000500000000 f4f00000060ad000
[  399.519467][ T3966] page dumped because: still mapped when deleted
[  399.520687][ T3966] CPU: 1 PID: 3966 Comm: syz.0.72 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  399.522261][ T3966] Hardware name: linux,dummy-virt (DT)
[  399.523095][ T3966] Call trace:
[  399.523694][ T3966]  dump_backtrace+0x94/0xec
[  399.524460][ T3966]  show_stack+0x18/0x24
[  399.525172][ T3966]  dump_stack_lvl+0x78/0x90
[  399.525882][ T3966]  dump_stack+0x18/0x24
[  399.526542][ T3966]  filemap_unaccount_folio+0x118/0x278
[  399.527343][ T3966]  __filemap_remove_folio+0x3c/0x178
[  399.528070][ T3966]  filemap_remove_folio+0x48/0xa8
[  399.528815][ T3966]  truncate_inode_folio+0x30/0x4c
[  399.529533][ T3966]  shmem_undo_range+0x208/0x620
[  399.530534][ T3966]  shmem_evict_inode+0x130/0x2dc
[  399.531300][ T3966]  evict+0xb4/0x198
[  399.532160][ T3966]  iput+0x100/0x1b8
[  399.532844][ T3966]  dentry_unlink_inode+0xc0/0x188
[  399.533589][ T3966]  __dentry_kill+0x7c/0x1d4
[  399.534288][ T3966]  dput.part.0+0x30/0xbc
[  399.534975][ T3966]  dput+0x4c/0x50
[  399.535758][ T3966]  __fput+0x110/0x2d4
[  399.536458][ T3966]  ____fput+0x10/0x1c
[  399.537138][ T3966]  task_work_run+0x78/0xd0
[  399.537794][ T3966]  do_notify_resume+0x134/0x164
[  399.538569][ T3966]  el0_svc+0xc8/0xf8
[  399.539294][ T3966]  el0t_64_sync_handler+0x100/0x12c
[  399.540322][ T3966]  el0t_64_sync+0x19c/0x1a0
[  399.717070][ T3968] BUG: Bad page cache in process syz.0.73  pfn:4b62e
[  399.718114][ T3968] page: refcount:4 mapcount:1 mapping:00000000ecd8638f index:0x0 pfn:0x4b62e
[  399.719245][ T3968] memcg:f4f00000060ad000
[  399.721186][ T3968] aops:shmem_aops ino:1c
[  399.723070][ T3968] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  399.728041][ T3968] raw: 01ffc0000004002d ffffc1ffc02cce08 ffffc1ffc0004c08 fbf0000003b84b70
[  399.731245][ T3968] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  399.734682][ T3968] page dumped because: still mapped when deleted
[  399.736497][ T3968] CPU: 0 PID: 3968 Comm: syz.0.73 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  399.738711][ T3968] Hardware name: linux,dummy-virt (DT)
[  399.740802][ T3968] Call trace:
[  399.742687][ T3968]  dump_backtrace+0x94/0xec
[  399.744853][ T3968]  show_stack+0x18/0x24
[  399.746240][ T3968]  dump_stack_lvl+0x78/0x90
[  399.747653][ T3968]  dump_stack+0x18/0x24
[  399.749010][ T3968]  filemap_unaccount_folio+0x118/0x278
[  399.751181][ T3968]  __filemap_remove_folio+0x3c/0x178
[  399.753459][ T3968]  filemap_remove_folio+0x48/0xa8
[  399.754693][ T3968]  truncate_inode_folio+0x30/0x4c
[  399.756839][ T3968]  shmem_undo_range+0x208/0x620
[  399.758868][ T3968]  shmem_evict_inode+0x130/0x2dc
[  399.760896][ T3968]  evict+0xb4/0x198
[  399.762940][ T3968]  iput+0x100/0x1b8
[  399.764692][ T3968]  dentry_unlink_inode+0xc0/0x188
[  399.765750][ T3968]  __dentry_kill+0x7c/0x1d4
[  399.767122][ T3968]  dput.part.0+0x30/0xbc
[  399.768631][ T3968]  dput+0x4c/0x50
[  399.770024][ T3968]  __fput+0x110/0x2d4
[  399.771871][ T3968]  ____fput+0x10/0x1c
[  399.773706][ T3968]  task_work_run+0x78/0xd0
[  399.774699][ T3968]  do_notify_resume+0x134/0x164
[  399.775446][ T3968]  el0_svc+0xc8/0xf8
[  399.776947][ T3968]  el0t_64_sync_handler+0x100/0x12c
[  399.778482][ T3968]  el0t_64_sync+0x19c/0x1a0
[  399.786159][ T3968] BUG: Bad page cache in process syz.0.73  pfn:40130
[  399.788317][ T3968] page: refcount:4 mapcount:1 mapping:00000000ecd8638f index:0x1 pfn:0x40130
[  399.789128][ T3968] memcg:f4f00000060ad000
[  399.789592][ T3968] aops:shmem_aops ino:1c
[  399.790149][ T3968] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  399.792500][ T3968] raw: 01ffc0000004002d ffffc1ffc02d8b88 ffffc1ffc01f3308 fbf0000003b84b70
[  399.796062][ T3968] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  399.799441][ T3968] page dumped because: still mapped when deleted
[  399.801570][ T3968] CPU: 0 PID: 3968 Comm: syz.0.73 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  399.804341][ T3968] Hardware name: linux,dummy-virt (DT)
[  399.805270][ T3968] Call trace:
[  399.805873][ T3968]  dump_backtrace+0x94/0xec
[  399.806539][ T3968]  show_stack+0x18/0x24
[  399.807166][ T3968]  dump_stack_lvl+0x78/0x90
[  399.807777][ T3968]  dump_stack+0x18/0x24
[  399.808366][ T3968]  filemap_unaccount_folio+0x118/0x278
[  399.809001][ T3968]  __filemap_remove_folio+0x3c/0x178
[  399.809661][ T3968]  filemap_remove_folio+0x48/0xa8
[  399.810593][ T3968]  truncate_inode_folio+0x30/0x4c
[  399.811253][ T3968]  shmem_undo_range+0x208/0x620
[  399.811884][ T3968]  shmem_evict_inode+0x130/0x2dc
[  399.812510][ T3968]  evict+0xb4/0x198
[  399.813087][ T3968]  iput+0x100/0x1b8
[  399.813620][ T3968]  dentry_unlink_inode+0xc0/0x188
[  399.814167][ T3968]  __dentry_kill+0x7c/0x1d4
[  399.814871][ T3968]  dput.part.0+0x30/0xbc
[  399.815463][ T3968]  dput+0x4c/0x50
[  399.816061][ T3968]  __fput+0x110/0x2d4
[  399.816831][ T3968]  ____fput+0x10/0x1c
[  399.817659][ T3968]  task_work_run+0x78/0xd0
[  399.818353][ T3968]  do_notify_resume+0x134/0x164
[  399.819324][ T3968]  el0_svc+0xc8/0xf8
[  399.819913][ T3968]  el0t_64_sync_handler+0x100/0x12c
[  399.820726][ T3968]  el0t_64_sync+0x19c/0x1a0
[  400.019378][ T3970] BUG: Bad page cache in process syz.0.74  pfn:4bdf8
[  400.021187][ T3970] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x0 pfn:0x4bdf8
[  400.021685][ T3970] memcg:f4f00000060ad000
[  400.022034][ T3970] aops:shmem_aops ino:421
[  400.022417][ T3970] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  400.023330][ T3970] raw: 01ffc0000004002d ffffc1ffc02d8288 ffffc1ffc0309908 f1f00000070f2470
[  400.023876][ T3970] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  400.024369][ T3970] page dumped because: still mapped when deleted
[  400.024784][ T3970] CPU: 0 PID: 3970 Comm: syz.0.74 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  400.025638][ T3970] Hardware name: linux,dummy-virt (DT)
[  400.026301][ T3970] Call trace:
[  400.026847][ T3970]  dump_backtrace+0x94/0xec
[  400.027607][ T3970]  show_stack+0x18/0x24
[  400.028295][ T3970]  dump_stack_lvl+0x78/0x90
[  400.028743][ T3970]  dump_stack+0x18/0x24
[  400.029121][ T3970]  filemap_unaccount_folio+0x118/0x278
[  400.029535][ T3970]  __filemap_remove_folio+0x3c/0x178
[  400.030992][ T3970]  filemap_remove_folio+0x48/0xa8
[  400.031475][ T3970]  truncate_inode_folio+0x30/0x4c
[  400.031872][ T3970]  shmem_undo_range+0x208/0x620
[  400.032260][ T3970]  shmem_evict_inode+0x130/0x2dc
[  400.032652][ T3970]  evict+0xb4/0x198
[  400.033005][ T3970]  iput+0x100/0x1b8
[  400.033453][ T3970]  dentry_unlink_inode+0xc0/0x188
[  400.033919][ T3970]  __dentry_kill+0x7c/0x1d4
[  400.034332][ T3970]  dput.part.0+0x30/0xbc
[  400.034960][ T3970]  dput+0x4c/0x50
[  400.035722][ T3970]  __fput+0x110/0x2d4
[  400.036340][ T3970]  ____fput+0x10/0x1c
[  400.037019][ T3970]  task_work_run+0x78/0xd0
[  400.037789][ T3970]  do_notify_resume+0x134/0x164
[  400.038329][ T3970]  el0_svc+0xc8/0xf8
[  400.038699][ T3970]  el0t_64_sync_handler+0x100/0x12c
[  400.039094][ T3970]  el0t_64_sync+0x19c/0x1a0
[  400.043660][ T3970] BUG: Bad page cache in process syz.0.74  pfn:4c264
[  400.046094][ T3970] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x1 pfn:0x4c264
[  400.047234][ T3970] memcg:f4f00000060ad000
[  400.047832][ T3970] aops:shmem_aops ino:421
[  400.048541][ T3970] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  400.053489][ T3970] raw: 01ffc0000004002d ffffc1ffc02f7e08 ffffc1ffc02f26c8 f1f00000070f2470
[  400.055523][ T3970] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  400.056475][ T3970] page dumped because: still mapped when deleted
[  400.057233][ T3970] CPU: 0 PID: 3970 Comm: syz.0.74 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  400.061438][ T3970] Hardware name: linux,dummy-virt (DT)
[  400.062197][ T3970] Call trace:
[  400.062789][ T3970]  dump_backtrace+0x94/0xec
[  400.063677][ T3970]  show_stack+0x18/0x24
[  400.064377][ T3970]  dump_stack_lvl+0x78/0x90
[  400.065078][ T3970]  dump_stack+0x18/0x24
[  400.065732][ T3970]  filemap_unaccount_folio+0x118/0x278
[  400.066512][ T3970]  __filemap_remove_folio+0x3c/0x178
[  400.067350][ T3970]  filemap_remove_folio+0x48/0xa8
[  400.070473][ T3970]  truncate_inode_folio+0x30/0x4c
[  400.071422][ T3970]  shmem_undo_range+0x208/0x620
[  400.072153][ T3970]  shmem_evict_inode+0x130/0x2dc
[  400.073020][ T3970]  evict+0xb4/0x198
[  400.073748][ T3970]  iput+0x100/0x1b8
[  400.074496][ T3970]  dentry_unlink_inode+0xc0/0x188
[  400.075267][ T3970]  __dentry_kill+0x7c/0x1d4
[  400.075926][ T3970]  dput.part.0+0x30/0xbc
[  400.076570][ T3970]  dput+0x4c/0x50
[  400.077229][ T3970]  __fput+0x110/0x2d4
[  400.077868][ T3970]  ____fput+0x10/0x1c
[  400.078576][ T3970]  task_work_run+0x78/0xd0
[  400.079328][ T3970]  do_notify_resume+0x134/0x164
[  400.080203][ T3970]  el0_svc+0xc8/0xf8
[  400.080788][ T3970]  el0t_64_sync_handler+0x100/0x12c
[  400.081473][ T3970]  el0t_64_sync+0x19c/0x1a0
[  400.254351][ T3972] BUG: Bad page cache in process syz.0.75  pfn:4d5d1
[  400.255274][ T3972] page: refcount:4 mapcount:1 mapping:00000000a5c0f789 index:0x0 pfn:0x4d5d1
[  400.256101][ T3972] memcg:f4f00000060ad000
[  400.256642][ T3972] aops:shmem_aops ino:1d
[  400.257258][ T3972] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  400.258451][ T3972] raw: 01ffc0000004002d ffffc1ffc02f7c48 ffffc1ffc02f7d88 f2f0000003b84850
[  400.259304][ T3972] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  400.260518][ T3972] page dumped because: still mapped when deleted
[  400.261352][ T3972] CPU: 0 PID: 3972 Comm: syz.0.75 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  400.262596][ T3972] Hardware name: linux,dummy-virt (DT)
[  400.263362][ T3972] Call trace:
[  400.263899][ T3972]  dump_backtrace+0x94/0xec
[  400.264640][ T3972]  show_stack+0x18/0x24
[  400.265308][ T3972]  dump_stack_lvl+0x78/0x90
[  400.265975][ T3972]  dump_stack+0x18/0x24
[  400.266836][ T3972]  filemap_unaccount_folio+0x118/0x278
[  400.267956][ T3972]  __filemap_remove_folio+0x3c/0x178
[  400.268784][ T3972]  filemap_remove_folio+0x48/0xa8
[  400.269504][ T3972]  truncate_inode_folio+0x30/0x4c
[  400.270471][ T3972]  shmem_undo_range+0x208/0x620
[  400.271236][ T3972]  shmem_evict_inode+0x130/0x2dc
[  400.271988][ T3972]  evict+0xb4/0x198
[  400.272705][ T3972]  iput+0x100/0x1b8
[  400.273491][ T3972]  dentry_unlink_inode+0xc0/0x188
[  400.274262][ T3972]  __dentry_kill+0x7c/0x1d4
[  400.274945][ T3972]  dput.part.0+0x30/0xbc
[  400.275614][ T3972]  dput+0x4c/0x50
[  400.276235][ T3972]  __fput+0x110/0x2d4
[  400.276898][ T3972]  ____fput+0x10/0x1c
[  400.277585][ T3972]  task_work_run+0x78/0xd0
[  400.278500][ T3972]  do_notify_resume+0x134/0x164
[  400.279365][ T3972]  el0_svc+0xc8/0xf8
[  400.280227][ T3972]  el0t_64_sync_handler+0x100/0x12c
[  400.281016][ T3972]  el0t_64_sync+0x19c/0x1a0
[  400.283041][ T3972] BUG: Bad page cache in process syz.0.75  pfn:4bdf6
[  400.284310][ T3972] page: refcount:4 mapcount:1 mapping:00000000a5c0f789 index:0x1 pfn:0x4bdf6
[  400.285485][ T3972] memcg:f4f00000060ad000
[  400.286396][ T3972] aops:shmem_aops ino:1d
[  400.287546][ T3972] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  400.289524][ T3972] raw: 01ffc0000004002d ffffc1ffc0357448 ffffc1ffc01f3308 f2f0000003b84850
[  400.290689][ T3972] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  400.292101][ T3972] page dumped because: still mapped when deleted
[  400.293461][ T3972] CPU: 0 PID: 3972 Comm: syz.0.75 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  400.295721][ T3972] Hardware name: linux,dummy-virt (DT)
[  400.296994][ T3972] Call trace:
[  400.297834][ T3972]  dump_backtrace+0x94/0xec
[  400.298679][ T3972]  show_stack+0x18/0x24
[  400.299463][ T3972]  dump_stack_lvl+0x78/0x90
[  400.306097][ T3972]  dump_stack+0x18/0x24
[  400.306989][ T3972]  filemap_unaccount_folio+0x118/0x278
[  400.308982][ T3972]  __filemap_remove_folio+0x3c/0x178
[  400.311139][ T3972]  filemap_remove_folio+0x48/0xa8
[  400.312011][ T3972]  truncate_inode_folio+0x30/0x4c
[  400.312805][ T3972]  shmem_undo_range+0x208/0x620
[  400.313605][ T3972]  shmem_evict_inode+0x130/0x2dc
[  400.316106][ T3972]  evict+0xb4/0x198
[  400.316833][ T3972]  iput+0x100/0x1b8
[  400.317458][ T3972]  dentry_unlink_inode+0xc0/0x188
[  400.319434][ T3972]  __dentry_kill+0x7c/0x1d4
[  400.321164][ T3972]  dput.part.0+0x30/0xbc
[  400.322052][ T3972]  dput+0x4c/0x50
[  400.323698][ T3972]  __fput+0x110/0x2d4
[  400.325337][ T3972]  ____fput+0x10/0x1c
[  400.326704][ T3972]  task_work_run+0x78/0xd0
[  400.328512][ T3972]  do_notify_resume+0x134/0x164
[  400.329332][ T3972]  el0_svc+0xc8/0xf8
[  400.330255][ T3972]  el0t_64_sync_handler+0x100/0x12c
[  400.331180][ T3972]  el0t_64_sync+0x19c/0x1a0
[  400.597437][ T3974] BUG: Bad page cache in process syz.0.76  pfn:4b569
[  400.599012][ T3974] page: refcount:4 mapcount:1 mapping:00000000529654b3 index:0x0 pfn:0x4b569
[  400.600987][ T3974] memcg:f4f00000060ad000
[  400.602947][ T3974] aops:shmem_aops ino:1e
[  400.605044][ T3974] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  400.607428][ T3974] raw: 01ffc0000004002d ffffc1ffc031e048 ffffc1ffc02dc648 f8f0000003b87a50
[  400.608641][ T3974] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  400.610029][ T3974] page dumped because: still mapped when deleted
[  400.611632][ T3974] CPU: 0 PID: 3974 Comm: syz.0.76 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  400.613122][ T3974] Hardware name: linux,dummy-virt (DT)
[  400.614059][ T3974] Call trace:
[  400.614570][ T3974]  dump_backtrace+0x94/0xec
[  400.615284][ T3974]  show_stack+0x18/0x24
[  400.615967][ T3974]  dump_stack_lvl+0x78/0x90
[  400.616881][ T3974]  dump_stack+0x18/0x24
[  400.617837][ T3974]  filemap_unaccount_folio+0x118/0x278
[  400.618702][ T3974]  __filemap_remove_folio+0x3c/0x178
[  400.619502][ T3974]  filemap_remove_folio+0x48/0xa8
[  400.620524][ T3974]  truncate_inode_folio+0x30/0x4c
[  400.621296][ T3974]  shmem_undo_range+0x208/0x620
[  400.622027][ T3974]  shmem_evict_inode+0x130/0x2dc
[  400.622862][ T3974]  evict+0xb4/0x198
[  400.623585][ T3974]  iput+0x100/0x1b8
[  400.624208][ T3974]  dentry_unlink_inode+0xc0/0x188
[  400.625077][ T3974]  __dentry_kill+0x7c/0x1d4
[  400.626020][ T3974]  dput.part.0+0x30/0xbc
[  400.626699][ T3974]  dput+0x4c/0x50
[  400.627406][ T3974]  __fput+0x110/0x2d4
[  400.628082][ T3974]  ____fput+0x10/0x1c
[  400.628813][ T3974]  task_work_run+0x78/0xd0
[  400.629494][ T3974]  do_notify_resume+0x134/0x164
[  400.630376][ T3974]  el0_svc+0xc8/0xf8
[  400.631108][ T3974]  el0t_64_sync_handler+0x100/0x12c
[  400.632838][ T3974]  el0t_64_sync+0x19c/0x1a0
[  400.641218][ T3974] BUG: Bad page cache in process syz.0.76  pfn:4b719
[  400.642209][ T3974] page: refcount:4 mapcount:1 mapping:00000000529654b3 index:0x1 pfn:0x4b719
[  400.643736][ T3974] memcg:f4f00000060ad000
[  400.644642][ T3974] aops:shmem_aops ino:1e
[  400.645622][ T3974] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  400.647405][ T3974] raw: 01ffc0000004002d ffffc1ffc02d5a48 ffffc1ffc02cb588 f8f0000003b87a50
[  400.648406][ T3974] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  400.649554][ T3974] page dumped because: still mapped when deleted
[  400.651154][ T3974] CPU: 0 PID: 3974 Comm: syz.0.76 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  400.652937][ T3974] Hardware name: linux,dummy-virt (DT)
[  400.653941][ T3974] Call trace:
[  400.654471][ T3974]  dump_backtrace+0x94/0xec
[  400.655261][ T3974]  show_stack+0x18/0x24
[  400.656099][ T3974]  dump_stack_lvl+0x78/0x90
[  400.656836][ T3974]  dump_stack+0x18/0x24
[  400.657608][ T3974]  filemap_unaccount_folio+0x118/0x278
[  400.658512][ T3974]  __filemap_remove_folio+0x3c/0x178
[  400.659369][ T3974]  filemap_remove_folio+0x48/0xa8
[  400.660289][ T3974]  truncate_inode_folio+0x30/0x4c
[  400.661038][ T3974]  shmem_undo_range+0x208/0x620
[  400.661737][ T3974]  shmem_evict_inode+0x130/0x2dc
[  400.662595][ T3974]  evict+0xb4/0x198
[  400.663304][ T3974]  iput+0x100/0x1b8
[  400.664259][ T3974]  dentry_unlink_inode+0xc0/0x188
[  400.665148][ T3974]  __dentry_kill+0x7c/0x1d4
[  400.666034][ T3974]  dput.part.0+0x30/0xbc
[  400.666696][ T3974]  dput+0x4c/0x50
[  400.667452][ T3974]  __fput+0x110/0x2d4
[  400.668178][ T3974]  ____fput+0x10/0x1c
[  400.668890][ T3974]  task_work_run+0x78/0xd0
[  400.669784][ T3974]  do_notify_resume+0x134/0x164
[  400.670711][ T3974]  el0_svc+0xc8/0xf8
[  400.671353][ T3974]  el0t_64_sync_handler+0x100/0x12c
[  400.672277][ T3974]  el0t_64_sync+0x19c/0x1a0
[  400.832814][ T3976] BUG: Bad page cache in process syz.0.77  pfn:4b355
[  400.833729][ T3976] page: refcount:4 mapcount:1 mapping:00000000be656574 index:0x0 pfn:0x4b355
[  400.834891][ T3976] memcg:f4f00000060ad000
[  400.835536][ T3976] aops:shmem_aops ino:1f
[  400.836265][ T3976] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  400.838667][ T3976] raw: 01ffc0000004002d ffffc1ffc039ce48 ffffc1ffc02d5908 faf0000003b84210
[  400.845265][ T3976] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  400.848549][ T3976] page dumped because: still mapped when deleted
[  400.849487][ T3976] CPU: 0 PID: 3976 Comm: syz.0.77 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  400.851909][ T3976] Hardware name: linux,dummy-virt (DT)
[  400.852630][ T3976] Call trace:
[  400.853383][ T3976]  dump_backtrace+0x94/0xec
[  400.854427][ T3976]  show_stack+0x18/0x24
[  400.855127][ T3976]  dump_stack_lvl+0x78/0x90
[  400.856245][ T3976]  dump_stack+0x18/0x24
[  400.858206][ T3976]  filemap_unaccount_folio+0x118/0x278
[  400.860318][ T3976]  __filemap_remove_folio+0x3c/0x178
[  400.861637][ T3976]  filemap_remove_folio+0x48/0xa8
[  400.863531][ T3976]  truncate_inode_folio+0x30/0x4c
[  400.864418][ T3976]  shmem_undo_range+0x208/0x620
[  400.865047][ T3976]  shmem_evict_inode+0x130/0x2dc
[  400.866648][ T3976]  evict+0xb4/0x198
[  400.868355][ T3976]  iput+0x100/0x1b8
[  400.869840][ T3976]  dentry_unlink_inode+0xc0/0x188
[  400.871276][ T3976]  __dentry_kill+0x7c/0x1d4
[  400.872087][ T3976]  dput.part.0+0x30/0xbc
[  400.872813][ T3976]  dput+0x4c/0x50
[  400.873399][ T3976]  __fput+0x110/0x2d4
[  400.874061][ T3976]  ____fput+0x10/0x1c
[  400.874681][ T3976]  task_work_run+0x78/0xd0
[  400.875358][ T3976]  do_notify_resume+0x134/0x164
[  400.876123][ T3976]  el0_svc+0xc8/0xf8
[  400.876776][ T3976]  el0t_64_sync_handler+0x100/0x12c
[  400.877589][ T3976]  el0t_64_sync+0x19c/0x1a0
[  400.909508][ T3976] BUG: Bad page cache in process syz.0.77  pfn:4b564
[  400.911457][ T3976] page: refcount:4 mapcount:1 mapping:00000000be656574 index:0x1 pfn:0x4b564
[  400.915040][ T3976] memcg:f4f00000060ad000
[  400.915924][ T3976] aops:shmem_aops ino:1f
[  400.917143][ T3976] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  400.922599][ T3976] raw: 01ffc0000004002d ffffc1ffc02cd548 ffffc1ffc031e048 faf0000003b84210
[  400.924586][ T3976] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  400.926259][ T3976] page dumped because: still mapped when deleted
[  400.927110][ T3976] CPU: 0 PID: 3976 Comm: syz.0.77 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  400.928397][ T3976] Hardware name: linux,dummy-virt (DT)
[  400.929351][ T3976] Call trace:
[  400.930012][ T3976]  dump_backtrace+0x94/0xec
[  400.930781][ T3976]  show_stack+0x18/0x24
[  400.931537][ T3976]  dump_stack_lvl+0x78/0x90
[  400.932083][ T3976]  dump_stack+0x18/0x24
[  400.933066][ T3976]  filemap_unaccount_folio+0x118/0x278
[  400.934059][ T3976]  __filemap_remove_folio+0x3c/0x178
[  400.934996][ T3976]  filemap_remove_folio+0x48/0xa8
[  400.935754][ T3976]  truncate_inode_folio+0x30/0x4c
[  400.936773][ T3976]  shmem_undo_range+0x208/0x620
[  400.937243][ T3976]  shmem_evict_inode+0x130/0x2dc
[  400.938003][ T3976]  evict+0xb4/0x198
[  400.938926][ T3976]  iput+0x100/0x1b8
[  400.939603][ T3976]  dentry_unlink_inode+0xc0/0x188
[  400.941054][ T3976]  __dentry_kill+0x7c/0x1d4
[  400.942572][ T3976]  dput.part.0+0x30/0xbc
[  400.943478][ T3976]  dput+0x4c/0x50
[  400.945104][ T3976]  __fput+0x110/0x2d4
[  400.947131][ T3976]  ____fput+0x10/0x1c
[  400.948732][ T3976]  task_work_run+0x78/0xd0
[  400.950000][ T3976]  do_notify_resume+0x134/0x164
[  400.950686][ T3976]  el0_svc+0xc8/0xf8
[  400.951271][ T3976]  el0t_64_sync_handler+0x100/0x12c
[  400.951995][ T3976]  el0t_64_sync+0x19c/0x1a0
[  401.167708][ T3978] BUG: Bad page cache in process syz.0.78  pfn:4c967
[  401.168736][ T3978] page: refcount:4 mapcount:1 mapping:00000000d2d38d84 index:0x0 pfn:0x4c967
[  401.169955][ T3978] memcg:f4f00000060ad000
[  401.170591][ T3978] aops:shmem_aops ino:20
[  401.171353][ T3978] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  401.174222][ T3978] raw: 01ffc0000004002d ffffc1ffc1e830c8 ffffc1ffc039ce48 f7f0000003b86790
[  401.175336][ T3978] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  401.176371][ T3978] page dumped because: still mapped when deleted
[  401.177205][ T3978] CPU: 0 PID: 3978 Comm: syz.0.78 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  401.178669][ T3978] Hardware name: linux,dummy-virt (DT)
[  401.179469][ T3978] Call trace:
[  401.180090][ T3978]  dump_backtrace+0x94/0xec
[  401.180928][ T3978]  show_stack+0x18/0x24
[  401.181651][ T3978]  dump_stack_lvl+0x78/0x90
[  401.182441][ T3978]  dump_stack+0x18/0x24
[  401.183178][ T3978]  filemap_unaccount_folio+0x118/0x278
[  401.184019][ T3978]  __filemap_remove_folio+0x3c/0x178
[  401.184816][ T3978]  filemap_remove_folio+0x48/0xa8
[  401.185641][ T3978]  truncate_inode_folio+0x30/0x4c
[  401.186485][ T3978]  shmem_undo_range+0x208/0x620
[  401.187339][ T3978]  shmem_evict_inode+0x130/0x2dc
[  401.188160][ T3978]  evict+0xb4/0x198
[  401.188850][ T3978]  iput+0x100/0x1b8
[  401.189572][ T3978]  dentry_unlink_inode+0xc0/0x188
[  401.190366][ T3978]  __dentry_kill+0x7c/0x1d4
[  401.191321][ T3978]  dput.part.0+0x30/0xbc
[  401.192286][ T3978]  dput+0x4c/0x50
[  401.192954][ T3978]  __fput+0x110/0x2d4
[  401.193693][ T3978]  ____fput+0x10/0x1c
[  401.194355][ T3978]  task_work_run+0x78/0xd0
[  401.195084][ T3978]  do_notify_resume+0x134/0x164
[  401.195834][ T3978]  el0_svc+0xc8/0xf8
[  401.196542][ T3978]  el0t_64_sync_handler+0x100/0x12c
[  401.197390][ T3978]  el0t_64_sync+0x19c/0x1a0
[  401.202089][ T3978] BUG: Bad page cache in process syz.0.78  pfn:4e739
[  401.203013][ T3978] page: refcount:4 mapcount:1 mapping:00000000d2d38d84 index:0x1 pfn:0x4e739
[  401.204069][ T3978] memcg:f4f00000060ad000
[  401.204750][ T3978] aops:shmem_aops ino:20
[  401.205430][ T3978] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  401.206804][ T3978] raw: 01ffc0000004002d ffffc1ffc03259c8 ffffc1ffc0357e88 f7f0000003b86790
[  401.207878][ T3978] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  401.208791][ T3978] page dumped because: still mapped when deleted
[  401.209668][ T3978] CPU: 0 PID: 3978 Comm: syz.0.78 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  401.211150][ T3978] Hardware name: linux,dummy-virt (DT)
[  401.212460][ T3978] Call trace:
[  401.213029][ T3978]  dump_backtrace+0x94/0xec
[  401.213768][ T3978]  show_stack+0x18/0x24
[  401.214484][ T3978]  dump_stack_lvl+0x78/0x90
[  401.215274][ T3978]  dump_stack+0x18/0x24
[  401.216007][ T3978]  filemap_unaccount_folio+0x118/0x278
[  401.216730][ T3978]  __filemap_remove_folio+0x3c/0x178
[  401.217539][ T3978]  filemap_remove_folio+0x48/0xa8
[  401.218328][ T3978]  truncate_inode_folio+0x30/0x4c
[  401.219178][ T3978]  shmem_undo_range+0x208/0x620
[  401.220003][ T3978]  shmem_evict_inode+0x130/0x2dc
[  401.221087][ T3978]  evict+0xb4/0x198
[  401.221972][ T3978]  iput+0x100/0x1b8
[  401.222736][ T3978]  dentry_unlink_inode+0xc0/0x188
[  401.223600][ T3978]  __dentry_kill+0x7c/0x1d4
[  401.224381][ T3978]  dput.part.0+0x30/0xbc
[  401.225098][ T3978]  dput+0x4c/0x50
[  401.225801][ T3978]  __fput+0x110/0x2d4
[  401.226596][ T3978]  ____fput+0x10/0x1c
[  401.227350][ T3978]  task_work_run+0x78/0xd0
[  401.228053][ T3978]  do_notify_resume+0x134/0x164
[  401.228928][ T3978]  el0_svc+0xc8/0xf8
[  401.229821][ T3978]  el0t_64_sync_handler+0x100/0x12c
[  401.230630][ T3978]  el0t_64_sync+0x19c/0x1a0
[  401.465433][ T3980] BUG: Bad page cache in process syz.0.79  pfn:4b65b
[  401.466458][ T3980] page: refcount:4 mapcount:1 mapping:000000002c8bebbb index:0x0 pfn:0x4b65b
[  401.467967][ T3980] memcg:f4f00000060ad000
[  401.468614][ T3980] aops:shmem_aops ino:422
[  401.469791][ T3980] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  401.473965][ T3980] raw: 01ffc0000004002d ffffc1ffc02daf08 ffffc1ffc02d6d88 f1f00000070f11b0
[  401.476008][ T3980] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  401.477186][ T3980] page dumped because: still mapped when deleted
[  401.478158][ T3980] CPU: 1 PID: 3980 Comm: syz.0.79 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  401.480337][ T3980] Hardware name: linux,dummy-virt (DT)
[  401.481368][ T3980] Call trace:
[  401.482633][ T3980]  dump_backtrace+0x94/0xec
[  401.483403][ T3980]  show_stack+0x18/0x24
[  401.484204][ T3980]  dump_stack_lvl+0x78/0x90
[  401.484916][ T3980]  dump_stack+0x18/0x24
[  401.485589][ T3980]  filemap_unaccount_folio+0x118/0x278
[  401.486863][ T3980]  __filemap_remove_folio+0x3c/0x178
[  401.490133][ T3980]  filemap_remove_folio+0x48/0xa8
[  401.490908][ T3980]  truncate_inode_folio+0x30/0x4c
[  401.492036][ T3980]  shmem_undo_range+0x208/0x620
[  401.493373][ T3980]  shmem_evict_inode+0x130/0x2dc
[  401.494780][ T3980]  evict+0xb4/0x198
[  401.495759][ T3980]  iput+0x100/0x1b8
[  401.497767][ T3980]  dentry_unlink_inode+0xc0/0x188
[  401.498898][ T3980]  __dentry_kill+0x7c/0x1d4
[  401.501264][ T3980]  dput.part.0+0x30/0xbc
[  401.503394][ T3980]  dput+0x4c/0x50
[  401.504858][ T3980]  __fput+0x110/0x2d4
[  401.505585][ T3980]  ____fput+0x10/0x1c
[  401.506351][ T3980]  task_work_run+0x78/0xd0
[  401.507598][ T3980]  do_notify_resume+0x134/0x164
[  401.509144][ T3980]  el0_svc+0xc8/0xf8
[  401.511046][ T3980]  el0t_64_sync_handler+0x100/0x12c
[  401.512403][ T3980]  el0t_64_sync+0x19c/0x1a0
[  401.517319][ T3980] BUG: Bad page cache in process syz.0.79  pfn:4b5b6
[  401.518240][ T3980] page: refcount:4 mapcount:1 mapping:000000002c8bebbb index:0x1 pfn:0x4b5b6
[  401.519357][ T3980] memcg:f4f00000060ad000
[  401.520643][ T3980] aops:shmem_aops ino:422
[  401.521450][ T3980] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  401.523432][ T3980] raw: 01ffc0000004002d ffffc1ffc02d96c8 ffffc1ffc039cd08 f1f00000070f11b0
[  401.525048][ T3980] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  401.527337][ T3980] page dumped because: still mapped when deleted
[  401.528107][ T3980] CPU: 1 PID: 3980 Comm: syz.0.79 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  401.529562][ T3980] Hardware name: linux,dummy-virt (DT)
[  401.531146][ T3980] Call trace:
[  401.531828][ T3980]  dump_backtrace+0x94/0xec
[  401.532712][ T3980]  show_stack+0x18/0x24
[  401.533626][ T3980]  dump_stack_lvl+0x78/0x90
[  401.534570][ T3980]  dump_stack+0x18/0x24
[  401.535580][ T3980]  filemap_unaccount_folio+0x118/0x278
[  401.536857][ T3980]  __filemap_remove_folio+0x3c/0x178
[  401.538235][ T3980]  filemap_remove_folio+0x48/0xa8
[  401.539029][ T3980]  truncate_inode_folio+0x30/0x4c
[  401.540110][ T3980]  shmem_undo_range+0x208/0x620
[  401.541066][ T3980]  shmem_evict_inode+0x130/0x2dc
[  401.541738][ T3980]  evict+0xb4/0x198
[  401.542344][ T3980]  iput+0x100/0x1b8
[  401.542965][ T3980]  dentry_unlink_inode+0xc0/0x188
[  401.543699][ T3980]  __dentry_kill+0x7c/0x1d4
[  401.545205][ T3980]  dput.part.0+0x30/0xbc
[  401.545996][ T3980]  dput+0x4c/0x50
[  401.546656][ T3980]  __fput+0x110/0x2d4
[  401.547788][ T3980]  ____fput+0x10/0x1c
[  401.549362][ T3980]  task_work_run+0x78/0xd0
[  401.550781][ T3980]  do_notify_resume+0x134/0x164
[  401.552114][ T3980]  el0_svc+0xc8/0xf8
[  401.552884][ T3980]  el0t_64_sync_handler+0x100/0x12c
[  401.553645][ T3980]  el0t_64_sync+0x19c/0x1a0
[  401.784691][ T3982] BUG: Bad page cache in process syz.0.80  pfn:4b70b
[  401.785787][ T3982] page: refcount:4 mapcount:1 mapping:000000001d2e0f35 index:0x0 pfn:0x4b70b
[  401.787942][ T3982] memcg:f4f00000060ad000
[  401.788636][ T3982] aops:shmem_aops ino:423
[  401.789387][ T3982] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  401.793688][ T3982] raw: 01ffc0000004002d ffffc1ffc039ce88 ffffc1ffc0226648 f9f00000070f17f0
[  401.794771][ T3982] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  401.795830][ T3982] page dumped because: still mapped when deleted
[  401.796665][ T3982] CPU: 0 PID: 3982 Comm: syz.0.80 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  401.802417][ T3982] Hardware name: linux,dummy-virt (DT)
[  401.803219][ T3982] Call trace:
[  401.803813][ T3982]  dump_backtrace+0x94/0xec
[  401.804624][ T3982]  show_stack+0x18/0x24
[  401.805374][ T3982]  dump_stack_lvl+0x78/0x90
[  401.806146][ T3982]  dump_stack+0x18/0x24
[  401.806897][ T3982]  filemap_unaccount_folio+0x118/0x278
[  401.807816][ T3982]  __filemap_remove_folio+0x3c/0x178
[  401.808597][ T3982]  filemap_remove_folio+0x48/0xa8
[  401.809350][ T3982]  truncate_inode_folio+0x30/0x4c
[  401.822472][ T3982]  shmem_undo_range+0x208/0x620
[  401.823303][ T3982]  shmem_evict_inode+0x130/0x2dc
[  401.824078][ T3982]  evict+0xb4/0x198
[  401.824782][ T3982]  iput+0x100/0x1b8
[  401.825540][ T3982]  dentry_unlink_inode+0xc0/0x188
[  401.826307][ T3982]  __dentry_kill+0x7c/0x1d4
[  401.827092][ T3982]  dput.part.0+0x30/0xbc
[  401.827882][ T3982]  dput+0x4c/0x50
[  401.828550][ T3982]  __fput+0x110/0x2d4
[  401.829312][ T3982]  ____fput+0x10/0x1c
[  401.830019][ T3982]  task_work_run+0x78/0xd0
[  401.830768][ T3982]  do_notify_resume+0x134/0x164
[  401.850671][ T3982]  el0_svc+0xc8/0xf8
[  401.851498][ T3982]  el0t_64_sync_handler+0x100/0x12c
[  401.852289][ T3982]  el0t_64_sync+0x19c/0x1a0
[  401.861231][ T3982] BUG: Bad page cache in process syz.0.80  pfn:48999
[  401.862171][ T3982] page: refcount:4 mapcount:1 mapping:000000001d2e0f35 index:0x1 pfn:0x48999
[  401.870037][ T3982] memcg:f4f00000060ad000
[  401.870693][ T3982] aops:shmem_aops ino:423
[  401.871377][ T3982] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  401.872763][ T3982] raw: 01ffc0000004002d ffffc1ffc02dc2c8 ffffc1ffc039cd48 f9f00000070f17f0
[  401.874152][ T3982] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  401.875134][ T3982] page dumped because: still mapped when deleted
[  401.875976][ T3982] CPU: 0 PID: 3982 Comm: syz.0.80 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  401.877327][ T3982] Hardware name: linux,dummy-virt (DT)
[  401.878059][ T3982] Call trace:
[  401.878642][ T3982]  dump_backtrace+0x94/0xec
[  401.879479][ T3982]  show_stack+0x18/0x24
[  401.880255][ T3982]  dump_stack_lvl+0x78/0x90
[  401.881027][ T3982]  dump_stack+0x18/0x24
[  401.881783][ T3982]  filemap_unaccount_folio+0x118/0x278
[  401.882613][ T3982]  __filemap_remove_folio+0x3c/0x178
[  401.883460][ T3982]  filemap_remove_folio+0x48/0xa8
[  401.884238][ T3982]  truncate_inode_folio+0x30/0x4c
[  401.884998][ T3982]  shmem_undo_range+0x208/0x620
[  401.885787][ T3982]  shmem_evict_inode+0x130/0x2dc
[  401.886528][ T3982]  evict+0xb4/0x198
[  401.905985][ T3982]  iput+0x100/0x1b8
[  401.906958][ T3982]  dentry_unlink_inode+0xc0/0x188
[  401.907858][ T3982]  __dentry_kill+0x7c/0x1d4
[  401.908616][ T3982]  dput.part.0+0x30/0xbc
[  401.909568][ T3982]  dput+0x4c/0x50
[  401.910231][ T3982]  __fput+0x110/0x2d4
[  401.910945][ T3982]  ____fput+0x10/0x1c
[  401.911671][ T3982]  task_work_run+0x78/0xd0
[  401.912427][ T3982]  do_notify_resume+0x134/0x164
[  401.913115][ T3982]  el0_svc+0xc8/0xf8
[  401.913858][ T3982]  el0t_64_sync_handler+0x100/0x12c
[  401.914740][ T3982]  el0t_64_sync+0x19c/0x1a0
[  402.159424][ T3984] BUG: Bad page cache in process syz.0.81  pfn:4d5e6
[  402.160941][ T3984] page: refcount:4 mapcount:1 mapping:00000000007eb9af index:0x0 pfn:0x4d5e6
[  402.161988][ T3984] memcg:f4f00000060ad000
[  402.162692][ T3984] aops:shmem_aops ino:424
[  402.163412][ T3984] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  402.164819][ T3984] raw: 01ffc0000004002d ffffc1ffc02f7c48 ffffc1ffc03578c8 f7f00000070f3d70
[  402.165999][ T3984] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  402.167733][ T3984] page dumped because: still mapped when deleted
[  402.168581][ T3984] CPU: 1 PID: 3984 Comm: syz.0.81 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  402.170068][ T3984] Hardware name: linux,dummy-virt (DT)
[  402.170859][ T3984] Call trace:
[  402.171370][ T3984]  dump_backtrace+0x94/0xec
[  402.171973][ T3984]  show_stack+0x18/0x24
[  402.172559][ T3984]  dump_stack_lvl+0x78/0x90
[  402.173438][ T3984]  dump_stack+0x18/0x24
[  402.174174][ T3984]  filemap_unaccount_folio+0x118/0x278
[  402.174866][ T3984]  __filemap_remove_folio+0x3c/0x178
[  402.175558][ T3984]  filemap_remove_folio+0x48/0xa8
[  402.176175][ T3984]  truncate_inode_folio+0x30/0x4c
[  402.176847][ T3984]  shmem_undo_range+0x208/0x620
[  402.177734][ T3984]  shmem_evict_inode+0x130/0x2dc
[  402.178424][ T3984]  evict+0xb4/0x198
[  402.179945][ T3984]  iput+0x100/0x1b8
[  402.180844][ T3984]  dentry_unlink_inode+0xc0/0x188
[  402.181691][ T3984]  __dentry_kill+0x7c/0x1d4
[  402.182423][ T3984]  dput.part.0+0x30/0xbc
[  402.183113][ T3984]  dput+0x4c/0x50
[  402.183800][ T3984]  __fput+0x110/0x2d4
[  402.184479][ T3984]  ____fput+0x10/0x1c
[  402.185211][ T3984]  task_work_run+0x78/0xd0
[  402.186094][ T3984]  do_notify_resume+0x134/0x164
[  402.186830][ T3984]  el0_svc+0xc8/0xf8
[  402.187523][ T3984]  el0t_64_sync_handler+0x100/0x12c
[  402.188310][ T3984]  el0t_64_sync+0x19c/0x1a0
[  402.191400][ T3984] BUG: Bad page cache in process syz.0.81  pfn:4d5e3
[  402.192810][ T3984] page: refcount:4 mapcount:1 mapping:00000000007eb9af index:0x1 pfn:0x4d5e3
[  402.193900][ T3984] memcg:f4f00000060ad000
[  402.194530][ T3984] aops:shmem_aops ino:424
[  402.195353][ T3984] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  402.196251][ T3984] raw: 01ffc0000004002d ffffc1ffc0357988 ffffc1ffc02dc248 f7f00000070f3d70
[  402.196949][ T3984] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  402.197595][ T3984] page dumped because: still mapped when deleted
[  402.198237][ T3984] CPU: 1 PID: 3984 Comm: syz.0.81 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  402.199270][ T3984] Hardware name: linux,dummy-virt (DT)
[  402.200250][ T3984] Call trace:
[  402.200912][ T3984]  dump_backtrace+0x94/0xec
[  402.201516][ T3984]  show_stack+0x18/0x24
[  402.202126][ T3984]  dump_stack_lvl+0x78/0x90
[  402.202826][ T3984]  dump_stack+0x18/0x24
[  402.203765][ T3984]  filemap_unaccount_folio+0x118/0x278
[  402.204660][ T3984]  __filemap_remove_folio+0x3c/0x178
[  402.205602][ T3984]  filemap_remove_folio+0x48/0xa8
[  402.206394][ T3984]  truncate_inode_folio+0x30/0x4c
[  402.207296][ T3984]  shmem_undo_range+0x208/0x620
[  402.207984][ T3984]  shmem_evict_inode+0x130/0x2dc
[  402.208606][ T3984]  evict+0xb4/0x198
[  402.209164][ T3984]  iput+0x100/0x1b8
[  402.210240][ T3984]  dentry_unlink_inode+0xc0/0x188
[  402.210813][ T3984]  __dentry_kill+0x7c/0x1d4
[  402.211387][ T3984]  dput.part.0+0x30/0xbc
[  402.211921][ T3984]  dput+0x4c/0x50
[  402.212431][ T3984]  __fput+0x110/0x2d4
[  402.212978][ T3984]  ____fput+0x10/0x1c
[  402.213580][ T3984]  task_work_run+0x78/0xd0
[  402.214271][ T3984]  do_notify_resume+0x134/0x164
[  402.214915][ T3984]  el0_svc+0xc8/0xf8
[  402.215492][ T3984]  el0t_64_sync_handler+0x100/0x12c
[  402.216129][ T3984]  el0t_64_sync+0x19c/0x1a0
[  402.363080][ T3986] BUG: Bad page cache in process syz.0.82  pfn:4d626
[  402.364208][ T3986] page: refcount:4 mapcount:1 mapping:000000002c8bebbb index:0x0 pfn:0x4d626
[  402.365349][ T3986] memcg:f4f00000060ad000
[  402.366014][ T3986] aops:shmem_aops ino:425
[  402.366721][ T3986] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  402.368405][ T3986] raw: 01ffc0000004002d ffffc1ffc039cc48 ffffc1ffc02f7c48 f1f00000070f11b0
[  402.369424][ T3986] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  402.370768][ T3986] page dumped because: still mapped when deleted
[  402.371982][ T3986] CPU: 1 PID: 3986 Comm: syz.0.82 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  402.373257][ T3986] Hardware name: linux,dummy-virt (DT)
[  402.373987][ T3986] Call trace:
[  402.374565][ T3986]  dump_backtrace+0x94/0xec
[  402.375359][ T3986]  show_stack+0x18/0x24
[  402.376040][ T3986]  dump_stack_lvl+0x78/0x90
[  402.376758][ T3986]  dump_stack+0x18/0x24
[  402.377466][ T3986]  filemap_unaccount_folio+0x118/0x278
[  402.378264][ T3986]  __filemap_remove_folio+0x3c/0x178
[  402.379036][ T3986]  filemap_remove_folio+0x48/0xa8
[  402.380039][ T3986]  truncate_inode_folio+0x30/0x4c
[  402.380885][ T3986]  shmem_undo_range+0x208/0x620
[  402.381772][ T3986]  shmem_evict_inode+0x130/0x2dc
[  402.382621][ T3986]  evict+0xb4/0x198
[  402.383348][ T3986]  iput+0x100/0x1b8
[  402.384054][ T3986]  dentry_unlink_inode+0xc0/0x188
[  402.384902][ T3986]  __dentry_kill+0x7c/0x1d4
[  402.385630][ T3986]  dput.part.0+0x30/0xbc
[  402.386334][ T3986]  dput+0x4c/0x50
[  402.386998][ T3986]  __fput+0x110/0x2d4
[  402.387822][ T3986]  ____fput+0x10/0x1c
[  402.388546][ T3986]  task_work_run+0x78/0xd0
[  402.389307][ T3986]  do_notify_resume+0x134/0x164
[  402.390297][ T3986]  el0_svc+0xc8/0xf8
[  402.391000][ T3986]  el0t_64_sync_handler+0x100/0x12c
[  402.391813][ T3986]  el0t_64_sync+0x19c/0x1a0
[  402.397004][ T3986] BUG: Bad page cache in process syz.0.82  pfn:4bdf1
[  402.397972][ T3986] page: refcount:4 mapcount:1 mapping:000000002c8bebbb index:0x1 pfn:0x4bdf1
[  402.399045][ T3986] memcg:f4f00000060ad000
[  402.399729][ T3986] aops:shmem_aops ino:425
[  402.400549][ T3986] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  402.401965][ T3986] raw: 01ffc0000004002d ffffc1ffc0358988 ffffc1ffc0357948 f1f00000070f11b0
[  402.402979][ T3986] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  402.403992][ T3986] page dumped because: still mapped when deleted
[  402.404834][ T3986] CPU: 1 PID: 3986 Comm: syz.0.82 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  402.406215][ T3986] Hardware name: linux,dummy-virt (DT)
[  402.406991][ T3986] Call trace:
[  402.407651][ T3986]  dump_backtrace+0x94/0xec
[  402.408374][ T3986]  show_stack+0x18/0x24
[  402.409061][ T3986]  dump_stack_lvl+0x78/0x90
[  402.410979][ T3986]  dump_stack+0x18/0x24
[  402.411858][ T3986]  filemap_unaccount_folio+0x118/0x278
[  402.412920][ T3986]  __filemap_remove_folio+0x3c/0x178
[  402.413948][ T3986]  filemap_remove_folio+0x48/0xa8
[  402.414995][ T3986]  truncate_inode_folio+0x30/0x4c
[  402.415852][ T3986]  shmem_undo_range+0x208/0x620
[  402.416851][ T3986]  shmem_evict_inode+0x130/0x2dc
[  402.417826][ T3986]  evict+0xb4/0x198
[  402.418564][ T3986]  iput+0x100/0x1b8
[  402.419312][ T3986]  dentry_unlink_inode+0xc0/0x188
[  402.420211][ T3986]  __dentry_kill+0x7c/0x1d4
[  402.420944][ T3986]  dput.part.0+0x30/0xbc
[  402.421712][ T3986]  dput+0x4c/0x50
[  402.422379][ T3986]  __fput+0x110/0x2d4
[  402.423076][ T3986]  ____fput+0x10/0x1c
[  402.423834][ T3986]  task_work_run+0x78/0xd0
[  402.424666][ T3986]  do_notify_resume+0x134/0x164
[  402.425448][ T3986]  el0_svc+0xc8/0xf8
[  402.426254][ T3986]  el0t_64_sync_handler+0x100/0x12c
[  402.427045][ T3986]  el0t_64_sync+0x19c/0x1a0
[  402.639545][ T3988] BUG: Bad page cache in process syz.0.83  pfn:4e73b
[  402.640857][ T3988] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x0 pfn:0x4e73b
[  402.641862][ T3988] memcg:f4f00000060ad000
[  402.642341][ T3988] aops:shmem_aops ino:426
[  402.642854][ T3988] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  402.644000][ T3988] raw: 01ffc0000004002d ffffc1ffc02dc248 ffffc1ffc039cc48 f1f00000070f2470
[  402.644778][ T3988] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  402.645614][ T3988] page dumped because: still mapped when deleted
[  402.646237][ T3988] CPU: 1 PID: 3988 Comm: syz.0.83 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  402.647772][ T3988] Hardware name: linux,dummy-virt (DT)
[  402.648535][ T3988] Call trace:
[  402.648897][ T3988]  dump_backtrace+0x94/0xec
[  402.649774][ T3988]  show_stack+0x18/0x24
[  402.650784][ T3988]  dump_stack_lvl+0x78/0x90
[  402.651697][ T3988]  dump_stack+0x18/0x24
[  402.652477][ T3988]  filemap_unaccount_folio+0x118/0x278
[  402.653339][ T3988]  __filemap_remove_folio+0x3c/0x178
[  402.654180][ T3988]  filemap_remove_folio+0x48/0xa8
[  402.654947][ T3988]  truncate_inode_folio+0x30/0x4c
[  402.655779][ T3988]  shmem_undo_range+0x208/0x620
[  402.656554][ T3988]  shmem_evict_inode+0x130/0x2dc
[  402.657357][ T3988]  evict+0xb4/0x198
[  402.658061][ T3988]  iput+0x100/0x1b8
[  402.658599][ T3988]  dentry_unlink_inode+0xc0/0x188
[  402.659130][ T3988]  __dentry_kill+0x7c/0x1d4
[  402.659888][ T3988]  dput.part.0+0x30/0xbc
[  402.661051][ T3988]  dput+0x4c/0x50
[  402.661883][ T3988]  __fput+0x110/0x2d4
[  402.662861][ T3988]  ____fput+0x10/0x1c
[  402.663657][ T3988]  task_work_run+0x78/0xd0
[  402.664421][ T3988]  do_notify_resume+0x134/0x164
[  402.665207][ T3988]  el0_svc+0xc8/0xf8
[  402.665952][ T3988]  el0t_64_sync_handler+0x100/0x12c
[  402.666819][ T3988]  el0t_64_sync+0x19c/0x1a0
[  402.674792][ T3988] BUG: Bad page cache in process syz.0.83  pfn:4e731
[  402.675884][ T3988] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x1 pfn:0x4e731
[  402.676986][ T3988] memcg:f4f00000060ad000
[  402.677661][ T3988] aops:shmem_aops ino:426
[  402.678425][ T3988] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  402.679945][ T3988] raw: 01ffc0000004002d ffffc1ffc039cec8 ffffc1ffc0357608 f1f00000070f2470
[  402.681227][ T3988] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  402.682315][ T3988] page dumped because: still mapped when deleted
[  402.683250][ T3988] CPU: 1 PID: 3988 Comm: syz.0.83 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  402.684796][ T3988] Hardware name: linux,dummy-virt (DT)
[  402.685617][ T3988] Call trace:
[  402.686202][ T3988]  dump_backtrace+0x94/0xec
[  402.686991][ T3988]  show_stack+0x18/0x24
[  402.687801][ T3988]  dump_stack_lvl+0x78/0x90
[  402.688689][ T3988]  dump_stack+0x18/0x24
[  402.689479][ T3988]  filemap_unaccount_folio+0x118/0x278
[  402.690639][ T3988]  __filemap_remove_folio+0x3c/0x178
[  402.691443][ T3988]  filemap_remove_folio+0x48/0xa8
[  402.692248][ T3988]  truncate_inode_folio+0x30/0x4c
[  402.693049][ T3988]  shmem_undo_range+0x208/0x620
[  402.693852][ T3988]  shmem_evict_inode+0x130/0x2dc
[  402.694638][ T3988]  evict+0xb4/0x198
[  402.695458][ T3988]  iput+0x100/0x1b8
[  402.696171][ T3988]  dentry_unlink_inode+0xc0/0x188
[  402.696984][ T3988]  __dentry_kill+0x7c/0x1d4
[  402.697817][ T3988]  dput.part.0+0x30/0xbc
[  402.698674][ T3988]  dput+0x4c/0x50
[  402.699378][ T3988]  __fput+0x110/0x2d4
[  402.700342][ T3988]  ____fput+0x10/0x1c
[  402.701137][ T3988]  task_work_run+0x78/0xd0
[  402.701905][ T3988]  do_notify_resume+0x134/0x164
[  402.702699][ T3988]  el0_svc+0xc8/0xf8
[  402.703474][ T3988]  el0t_64_sync_handler+0x100/0x12c
[  402.704266][ T3988]  el0t_64_sync+0x19c/0x1a0
[  402.905677][ T3990] BUG: Bad page cache in process syz.0.84  pfn:4bc9f
[  402.907312][ T3990] page: refcount:4 mapcount:1 mapping:000000009fd99a07 index:0x0 pfn:0x4bc9f
[  402.908997][ T3990] memcg:f4f00000060ad000
[  402.909736][ T3990] aops:shmem_aops ino:427
[  402.910973][ T3990] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  402.912684][ T3990] raw: 01ffc0000004002d ffffc1ffc0357948 ffffc1ffc02dc248 f4f00000070f0850
[  402.913896][ T3990] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  402.914844][ T3990] page dumped because: still mapped when deleted
[  402.915629][ T3990] CPU: 1 PID: 3990 Comm: syz.0.84 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  402.917210][ T3990] Hardware name: linux,dummy-virt (DT)
[  402.918016][ T3990] Call trace:
[  402.918574][ T3990]  dump_backtrace+0x94/0xec
[  402.919561][ T3990]  show_stack+0x18/0x24
[  402.920801][ T3990]  dump_stack_lvl+0x78/0x90
[  402.921563][ T3990]  dump_stack+0x18/0x24
[  402.922361][ T3990]  filemap_unaccount_folio+0x118/0x278
[  402.923124][ T3990]  __filemap_remove_folio+0x3c/0x178
[  402.924062][ T3990]  filemap_remove_folio+0x48/0xa8
[  402.925011][ T3990]  truncate_inode_folio+0x30/0x4c
[  402.925883][ T3990]  shmem_undo_range+0x208/0x620
[  402.926671][ T3990]  shmem_evict_inode+0x130/0x2dc
[  402.927637][ T3990]  evict+0xb4/0x198
[  402.928487][ T3990]  iput+0x100/0x1b8
[  402.929359][ T3990]  dentry_unlink_inode+0xc0/0x188
[  402.930355][ T3990]  __dentry_kill+0x7c/0x1d4
[  402.931067][ T3990]  dput.part.0+0x30/0xbc
[  402.931833][ T3990]  dput+0x4c/0x50
[  402.932501][ T3990]  __fput+0x110/0x2d4
[  402.933325][ T3990]  ____fput+0x10/0x1c
[  402.934040][ T3990]  task_work_run+0x78/0xd0
[  402.934846][ T3990]  do_notify_resume+0x134/0x164
[  402.935596][ T3990]  el0_svc+0xc8/0xf8
[  402.936272][ T3990]  el0t_64_sync_handler+0x100/0x12c
[  402.937054][ T3990]  el0t_64_sync+0x19c/0x1a0
[  402.942203][ T3990] BUG: Bad page cache in process syz.0.84  pfn:4b709
[  402.943419][ T3990] page: refcount:4 mapcount:1 mapping:000000009fd99a07 index:0x1 pfn:0x4b709
[  402.944660][ T3990] memcg:f4f00000060ad000
[  402.945369][ T3990] aops:shmem_aops ino:427
[  402.946133][ T3990] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  402.947694][ T3990] raw: 01ffc0000004002d ffffc1ffc02f27c8 ffffc1ffc02d78c8 f4f00000070f0850
[  402.949013][ T3990] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  402.950459][ T3990] page dumped because: still mapped when deleted
[  402.951416][ T3990] CPU: 1 PID: 3990 Comm: syz.0.84 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  402.953144][ T3990] Hardware name: linux,dummy-virt (DT)
[  402.954145][ T3990] Call trace:
[  402.954832][ T3990]  dump_backtrace+0x94/0xec
[  402.955632][ T3990]  show_stack+0x18/0x24
[  402.956446][ T3990]  dump_stack_lvl+0x78/0x90
[  402.957278][ T3990]  dump_stack+0x18/0x24
[  402.957976][ T3990]  filemap_unaccount_folio+0x118/0x278
[  402.958805][ T3990]  __filemap_remove_folio+0x3c/0x178
[  402.960030][ T3990]  filemap_remove_folio+0x48/0xa8
[  402.961006][ T3990]  truncate_inode_folio+0x30/0x4c
[  402.961826][ T3990]  shmem_undo_range+0x208/0x620
[  402.962713][ T3990]  shmem_evict_inode+0x130/0x2dc
[  402.963556][ T3990]  evict+0xb4/0x198
[  402.964316][ T3990]  iput+0x100/0x1b8
[  402.965110][ T3990]  dentry_unlink_inode+0xc0/0x188
[  402.966377][ T3990]  __dentry_kill+0x7c/0x1d4
[  402.967139][ T3990]  dput.part.0+0x30/0xbc
[  402.967928][ T3990]  dput+0x4c/0x50
[  402.968607][ T3990]  __fput+0x110/0x2d4
[  402.969340][ T3990]  ____fput+0x10/0x1c
[  402.970500][ T3990]  task_work_run+0x78/0xd0
[  402.971344][ T3990]  do_notify_resume+0x134/0x164
[  402.972215][ T3990]  el0_svc+0xc8/0xf8
[  402.972971][ T3990]  el0t_64_sync_handler+0x100/0x12c
[  402.973845][ T3990]  el0t_64_sync+0x19c/0x1a0
[  403.119336][ T3992] BUG: Bad page cache in process syz.0.85  pfn:4d5d8
[  403.120583][ T3992] page: refcount:4 mapcount:1 mapping:00000000db2c476b index:0x0 pfn:0x4d5d8
[  403.121681][ T3992] memcg:f4f00000060ad000
[  403.122256][ T3992] aops:shmem_aops ino:428
[  403.123306][ T3992] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  403.125181][ T3992] raw: 01ffc0000004002d ffffc1ffc02d1fc8 ffffc1ffc039cd48 fdf00000070f14d0
[  403.126790][ T3992] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  403.127914][ T3992] page dumped because: still mapped when deleted
[  403.128792][ T3992] CPU: 1 PID: 3992 Comm: syz.0.85 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  403.130481][ T3992] Hardware name: linux,dummy-virt (DT)
[  403.131861][ T3992] Call trace:
[  403.132976][ T3992]  dump_backtrace+0x94/0xec
[  403.135620][ T3992]  show_stack+0x18/0x24
[  403.137623][ T3992]  dump_stack_lvl+0x78/0x90
[  403.139259][ T3992]  dump_stack+0x18/0x24
[  403.141222][ T3992]  filemap_unaccount_folio+0x118/0x278
[  403.143581][ T3992]  __filemap_remove_folio+0x3c/0x178
[  403.145243][ T3992]  filemap_remove_folio+0x48/0xa8
[  403.146571][ T3992]  truncate_inode_folio+0x30/0x4c
[  403.148759][ T3992]  shmem_undo_range+0x208/0x620
[  403.150997][ T3992]  shmem_evict_inode+0x130/0x2dc
[  403.153081][ T3992]  evict+0xb4/0x198
[  403.154324][ T3992]  iput+0x100/0x1b8
[  403.155315][ T3992]  dentry_unlink_inode+0xc0/0x188
[  403.156030][ T3992]  __dentry_kill+0x7c/0x1d4
[  403.157246][ T3992]  dput.part.0+0x30/0xbc
[  403.157925][ T3992]  dput+0x4c/0x50
[  403.158622][ T3992]  __fput+0x110/0x2d4
[  403.159336][ T3992]  ____fput+0x10/0x1c
[  403.160374][ T3992]  task_work_run+0x78/0xd0
[  403.161448][ T3992]  do_notify_resume+0x134/0x164
[  403.162192][ T3992]  el0_svc+0xc8/0xf8
[  403.162871][ T3992]  el0t_64_sync_handler+0x100/0x12c
[  403.163690][ T3992]  el0t_64_sync+0x19c/0x1a0
[  403.166268][ T3992] BUG: Bad page cache in process syz.0.85  pfn:4e735
[  403.167113][ T3992] page: refcount:4 mapcount:1 mapping:00000000db2c476b index:0x1 pfn:0x4e735
[  403.168057][ T3992] memcg:f4f00000060ad000
[  403.168632][ T3992] aops:shmem_aops ino:428
[  403.169585][ T3992] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  403.171048][ T3992] raw: 01ffc0000004002d ffffc1ffc0357608 ffffc1ffc0357948 fdf00000070f14d0
[  403.172049][ T3992] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  403.173100][ T3992] page dumped because: still mapped when deleted
[  403.174069][ T3992] CPU: 1 PID: 3992 Comm: syz.0.85 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  403.175489][ T3992] Hardware name: linux,dummy-virt (DT)
[  403.176351][ T3992] Call trace:
[  403.176925][ T3992]  dump_backtrace+0x94/0xec
[  403.177739][ T3992]  show_stack+0x18/0x24
[  403.178457][ T3992]  dump_stack_lvl+0x78/0x90
[  403.179287][ T3992]  dump_stack+0x18/0x24
[  403.180164][ T3992]  filemap_unaccount_folio+0x118/0x278
[  403.180933][ T3992]  __filemap_remove_folio+0x3c/0x178
[  403.181675][ T3992]  filemap_remove_folio+0x48/0xa8
[  403.182430][ T3992]  truncate_inode_folio+0x30/0x4c
[  403.183185][ T3992]  shmem_undo_range+0x208/0x620
[  403.184031][ T3992]  shmem_evict_inode+0x130/0x2dc
[  403.185049][ T3992]  evict+0xb4/0x198
[  403.185850][ T3992]  iput+0x100/0x1b8
[  403.186545][ T3992]  dentry_unlink_inode+0xc0/0x188
[  403.187514][ T3992]  __dentry_kill+0x7c/0x1d4
[  403.188595][ T3992]  dput.part.0+0x30/0xbc
[  403.189501][ T3992]  dput+0x4c/0x50
[  403.190313][ T3992]  __fput+0x110/0x2d4
[  403.191046][ T3992]  ____fput+0x10/0x1c
[  403.191790][ T3992]  task_work_run+0x78/0xd0
[  403.192551][ T3992]  do_notify_resume+0x134/0x164
[  403.193354][ T3992]  el0_svc+0xc8/0xf8
[  403.194036][ T3992]  el0t_64_sync_handler+0x100/0x12c
[  403.194855][ T3992]  el0t_64_sync+0x19c/0x1a0
[  403.397678][ T3994] BUG: Bad page cache in process syz.0.86  pfn:4b5c8
[  403.398572][ T3994] page: refcount:4 mapcount:1 mapping:00000000b1fef2fe index:0x0 pfn:0x4b5c8
[  403.400813][ T3994] memcg:f4f00000060ad000
[  403.401536][ T3994] aops:shmem_aops ino:429
[  403.402632][ T3994] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  403.404147][ T3994] raw: 01ffc0000004002d ffffc1ffc0357a08 ffffc1ffc039cf48 fbf00000070f0e90
[  403.406293][ T3994] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  403.407374][ T3994] page dumped because: still mapped when deleted
[  403.408233][ T3994] CPU: 0 PID: 3994 Comm: syz.0.86 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  403.411164][ T3994] Hardware name: linux,dummy-virt (DT)
[  403.411948][ T3994] Call trace:
[  403.412477][ T3994]  dump_backtrace+0x94/0xec
[  403.413169][ T3994]  show_stack+0x18/0x24
[  403.413825][ T3994]  dump_stack_lvl+0x78/0x90
[  403.414597][ T3994]  dump_stack+0x18/0x24
[  403.415335][ T3994]  filemap_unaccount_folio+0x118/0x278
[  403.416091][ T3994]  __filemap_remove_folio+0x3c/0x178
[  403.416876][ T3994]  filemap_remove_folio+0x48/0xa8
[  403.417583][ T3994]  truncate_inode_folio+0x30/0x4c
[  403.418296][ T3994]  shmem_undo_range+0x208/0x620
[  403.419034][ T3994]  shmem_evict_inode+0x130/0x2dc
[  403.419881][ T3994]  evict+0xb4/0x198
[  403.420680][ T3994]  iput+0x100/0x1b8
[  403.421366][ T3994]  dentry_unlink_inode+0xc0/0x188
[  403.422072][ T3994]  __dentry_kill+0x7c/0x1d4
[  403.423298][ T3994]  dput.part.0+0x30/0xbc
[  403.424155][ T3994]  dput+0x4c/0x50
[  403.425847][ T3994]  __fput+0x110/0x2d4
[  403.427248][ T3994]  ____fput+0x10/0x1c
[  403.427924][ T3994]  task_work_run+0x78/0xd0
[  403.428675][ T3994]  do_notify_resume+0x134/0x164
[  403.429424][ T3994]  el0_svc+0xc8/0xf8
[  403.430384][ T3994]  el0t_64_sync_handler+0x100/0x12c
[  403.431949][ T3994]  el0t_64_sync+0x19c/0x1a0
[  403.437749][ T3994] BUG: Bad page cache in process syz.0.86  pfn:4e73d
[  403.439130][ T3994] page: refcount:4 mapcount:1 mapping:00000000b1fef2fe index:0x1 pfn:0x4e73d
[  403.440141][ T3994] memcg:f4f00000060ad000
[  403.440664][ T3994] aops:shmem_aops ino:429
[  403.441421][ T3994] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  403.442813][ T3994] raw: 01ffc0000004002d ffffc1ffc02d7208 ffffc1ffc02f2388 fbf00000070f0e90
[  403.443597][ T3994] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  403.444158][ T3994] page dumped because: still mapped when deleted
[  403.444828][ T3994] CPU: 0 PID: 3994 Comm: syz.0.86 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  403.446291][ T3994] Hardware name: linux,dummy-virt (DT)
[  403.447048][ T3994] Call trace:
[  403.447588][ T3994]  dump_backtrace+0x94/0xec
[  403.448139][ T3994]  show_stack+0x18/0x24
[  403.448525][ T3994]  dump_stack_lvl+0x78/0x90
[  403.448929][ T3994]  dump_stack+0x18/0x24
[  403.449291][ T3994]  filemap_unaccount_folio+0x118/0x278
[  403.449801][ T3994]  __filemap_remove_folio+0x3c/0x178
[  403.450339][ T3994]  filemap_remove_folio+0x48/0xa8
[  403.451059][ T3994]  truncate_inode_folio+0x30/0x4c
[  403.451906][ T3994]  shmem_undo_range+0x208/0x620
[  403.452644][ T3994]  shmem_evict_inode+0x130/0x2dc
[  403.453705][ T3994]  evict+0xb4/0x198
[  403.454177][ T3994]  iput+0x100/0x1b8
[  403.454688][ T3994]  dentry_unlink_inode+0xc0/0x188
[  403.455325][ T3994]  __dentry_kill+0x7c/0x1d4
[  403.456012][ T3994]  dput.part.0+0x30/0xbc
[  403.456837][ T3994]  dput+0x4c/0x50
[  403.457486][ T3994]  __fput+0x110/0x2d4
[  403.458077][ T3994]  ____fput+0x10/0x1c
[  403.458624][ T3994]  task_work_run+0x78/0xd0
[  403.459344][ T3994]  do_notify_resume+0x134/0x164
[  403.460324][ T3994]  el0_svc+0xc8/0xf8
[  403.461129][ T3994]  el0t_64_sync_handler+0x100/0x12c
[  403.461899][ T3994]  el0t_64_sync+0x19c/0x1a0
[  403.633556][ T3996] BUG: Bad page cache in process syz.0.87  pfn:4b574
[  403.634430][ T3996] page: refcount:4 mapcount:1 mapping:00000000b66da242 index:0x0 pfn:0x4b574
[  403.635361][ T3996] memcg:f4f00000060ad000
[  403.636195][ T3996] aops:shmem_aops ino:21
[  403.636910][ T3996] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  403.638456][ T3996] raw: 01ffc0000004002d ffffc1ffc02d5bc8 ffffc1ffc02d8c48 fcf0000003b84e90
[  403.639902][ T3996] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  403.641613][ T3996] page dumped because: still mapped when deleted
[  403.642403][ T3996] CPU: 0 PID: 3996 Comm: syz.0.87 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  403.643873][ T3996] Hardware name: linux,dummy-virt (DT)
[  403.644704][ T3996] Call trace:
[  403.645236][ T3996]  dump_backtrace+0x94/0xec
[  403.645948][ T3996]  show_stack+0x18/0x24
[  403.646656][ T3996]  dump_stack_lvl+0x78/0x90
[  403.647487][ T3996]  dump_stack+0x18/0x24
[  403.648270][ T3996]  filemap_unaccount_folio+0x118/0x278
[  403.649050][ T3996]  __filemap_remove_folio+0x3c/0x178
[  403.649971][ T3996]  filemap_remove_folio+0x48/0xa8
[  403.650835][ T3996]  truncate_inode_folio+0x30/0x4c
[  403.651634][ T3996]  shmem_undo_range+0x208/0x620
[  403.652490][ T3996]  shmem_evict_inode+0x130/0x2dc
[  403.653252][ T3996]  evict+0xb4/0x198
[  403.653921][ T3996]  iput+0x100/0x1b8
[  403.654636][ T3996]  dentry_unlink_inode+0xc0/0x188
[  403.655173][ T3996]  __dentry_kill+0x7c/0x1d4
[  403.656082][ T3996]  dput.part.0+0x30/0xbc
[  403.656521][ T3996]  dput+0x4c/0x50
[  403.656864][ T3996]  __fput+0x110/0x2d4
[  403.657235][ T3996]  ____fput+0x10/0x1c
[  403.657589][ T3996]  task_work_run+0x78/0xd0
[  403.658079][ T3996]  do_notify_resume+0x134/0x164
[  403.658473][ T3996]  el0_svc+0xc8/0xf8
[  403.658846][ T3996]  el0t_64_sync_handler+0x100/0x12c
[  403.659304][ T3996]  el0t_64_sync+0x19c/0x1a0
[  403.678784][ T3996] BUG: Bad page cache in process syz.0.87  pfn:4b631
[  403.681492][ T3996] page: refcount:4 mapcount:1 mapping:00000000b66da242 index:0x1 pfn:0x4b631
[  403.683663][ T3996] memcg:f4f00000060ad000
[  403.684647][ T3996] aops:shmem_aops ino:21
[  403.686131][ T3996] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  403.687837][ T3996] raw: 01ffc0000004002d ffffc1ffc02d5d08 ffffc1ffc02d8208 fcf0000003b84e90
[  403.690439][ T3996] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  403.691601][ T3996] page dumped because: still mapped when deleted
[  403.693131][ T3996] CPU: 0 PID: 3996 Comm: syz.0.87 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  403.695742][ T3996] Hardware name: linux,dummy-virt (DT)
[  403.697342][ T3996] Call trace:
[  403.698243][ T3996]  dump_backtrace+0x94/0xec
[  403.699106][ T3996]  show_stack+0x18/0x24
[  403.700950][ T3996]  dump_stack_lvl+0x78/0x90
[  403.702018][ T3996]  dump_stack+0x18/0x24
[  403.702922][ T3996]  filemap_unaccount_folio+0x118/0x278
[  403.704226][ T3996]  __filemap_remove_folio+0x3c/0x178
[  403.705618][ T3996]  filemap_remove_folio+0x48/0xa8
[  403.706604][ T3996]  truncate_inode_folio+0x30/0x4c
[  403.707719][ T3996]  shmem_undo_range+0x208/0x620
[  403.708749][ T3996]  shmem_evict_inode+0x130/0x2dc
[  403.709909][ T3996]  evict+0xb4/0x198
[  403.710690][ T3996]  iput+0x100/0x1b8
[  403.713144][ T3996]  dentry_unlink_inode+0xc0/0x188
[  403.713982][ T3996]  __dentry_kill+0x7c/0x1d4
[  403.714751][ T3996]  dput.part.0+0x30/0xbc
[  403.715435][ T3996]  dput+0x4c/0x50
[  403.716192][ T3996]  __fput+0x110/0x2d4
[  403.716959][ T3996]  ____fput+0x10/0x1c
[  403.717789][ T3996]  task_work_run+0x78/0xd0
[  403.718529][ T3996]  do_notify_resume+0x134/0x164
[  403.719273][ T3996]  el0_svc+0xc8/0xf8
[  403.720246][ T3996]  el0t_64_sync_handler+0x100/0x12c
[  403.721290][ T3996]  el0t_64_sync+0x19c/0x1a0
1970/01/01 00:06:43 executed programs: 75
[  403.906861][ T3998] BUG: Bad page cache in process syz.0.88  pfn:4b374
[  403.907857][ T3998] page: refcount:4 mapcount:1 mapping:00000000b66da242 index:0x0 pfn:0x4b374
[  403.909130][ T3998] memcg:f4f00000060ad000
[  403.909930][ T3998] aops:shmem_aops ino:22
[  403.910693][ T3998] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  403.912248][ T3998] raw: 01ffc0000004002d ffffc1ffc02cdd88 ffffc1ffc02d5bc8 fcf0000003b84e90
[  403.913947][ T3998] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  403.915290][ T3998] page dumped because: still mapped when deleted
[  403.916266][ T3998] CPU: 0 PID: 3998 Comm: syz.0.88 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  403.918142][ T3998] Hardware name: linux,dummy-virt (DT)
[  403.919165][ T3998] Call trace:
[  403.919787][ T3998]  dump_backtrace+0x94/0xec
[  403.920930][ T3998]  show_stack+0x18/0x24
[  403.921740][ T3998]  dump_stack_lvl+0x78/0x90
[  403.922677][ T3998]  dump_stack+0x18/0x24
[  403.923612][ T3998]  filemap_unaccount_folio+0x118/0x278
[  403.924554][ T3998]  __filemap_remove_folio+0x3c/0x178
[  403.925962][ T3998]  filemap_remove_folio+0x48/0xa8
[  403.927658][ T3998]  truncate_inode_folio+0x30/0x4c
[  403.928854][ T3998]  shmem_undo_range+0x208/0x620
[  403.929824][ T3998]  shmem_evict_inode+0x130/0x2dc
[  403.930662][ T3998]  evict+0xb4/0x198
[  403.931532][ T3998]  iput+0x100/0x1b8
[  403.932225][ T3998]  dentry_unlink_inode+0xc0/0x188
[  403.933030][ T3998]  __dentry_kill+0x7c/0x1d4
[  403.933756][ T3998]  dput.part.0+0x30/0xbc
[  403.934456][ T3998]  dput+0x4c/0x50
[  403.935065][ T3998]  __fput+0x110/0x2d4
[  403.935805][ T3998]  ____fput+0x10/0x1c
[  403.936461][ T3998]  task_work_run+0x78/0xd0
[  403.937157][ T3998]  do_notify_resume+0x134/0x164
[  403.937892][ T3998]  el0_svc+0xc8/0xf8
[  403.938606][ T3998]  el0t_64_sync_handler+0x100/0x12c
[  403.939529][ T3998]  el0t_64_sync+0x19c/0x1a0
[  403.953596][ T3998] BUG: Bad page cache in process syz.0.88  pfn:4b56f
[  403.954870][ T3998] page: refcount:4 mapcount:1 mapping:00000000b66da242 index:0x1 pfn:0x4b56f
[  403.956373][ T3998] memcg:f4f00000060ad000
[  403.957280][ T3998] aops:shmem_aops ino:22
[  403.957982][ T3998] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  403.959560][ T3998] raw: 01ffc0000004002d ffffc1ffc02cdd08 ffffc1ffc03ab008 fcf0000003b84e90
[  403.960822][ T3998] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  403.962249][ T3998] page dumped because: still mapped when deleted
[  403.963112][ T3998] CPU: 0 PID: 3998 Comm: syz.0.88 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  403.964934][ T3998] Hardware name: linux,dummy-virt (DT)
[  403.965716][ T3998] Call trace:
[  403.966657][ T3998]  dump_backtrace+0x94/0xec
[  403.968053][ T3998]  show_stack+0x18/0x24
[  403.968783][ T3998]  dump_stack_lvl+0x78/0x90
[  403.969558][ T3998]  dump_stack+0x18/0x24
[  403.970482][ T3998]  filemap_unaccount_folio+0x118/0x278
[  403.971325][ T3998]  __filemap_remove_folio+0x3c/0x178
[  403.972123][ T3998]  filemap_remove_folio+0x48/0xa8
[  403.972997][ T3998]  truncate_inode_folio+0x30/0x4c
[  403.973809][ T3998]  shmem_undo_range+0x208/0x620
[  403.974598][ T3998]  shmem_evict_inode+0x130/0x2dc
[  403.975348][ T3998]  evict+0xb4/0x198
[  403.976009][ T3998]  iput+0x100/0x1b8
[  403.976701][ T3998]  dentry_unlink_inode+0xc0/0x188
[  403.977531][ T3998]  __dentry_kill+0x7c/0x1d4
[  403.978279][ T3998]  dput.part.0+0x30/0xbc
[  403.979005][ T3998]  dput+0x4c/0x50
[  403.979707][ T3998]  __fput+0x110/0x2d4
[  403.980590][ T3998]  ____fput+0x10/0x1c
[  403.981299][ T3998]  task_work_run+0x78/0xd0
[  403.982090][ T3998]  do_notify_resume+0x134/0x164
[  403.982859][ T3998]  el0_svc+0xc8/0xf8
[  403.983645][ T3998]  el0t_64_sync_handler+0x100/0x12c
[  403.984465][ T3998]  el0t_64_sync+0x19c/0x1a0
[  404.185760][ T4000] BUG: Bad page cache in process syz.0.89  pfn:4c966
[  404.187228][ T4000] page: refcount:4 mapcount:1 mapping:00000000fc314c10 index:0x0 pfn:0x4c966
[  404.189290][ T4000] memcg:f4f00000060ad000
[  404.190840][ T4000] aops:shmem_aops ino:42a
[  404.191783][ T4000] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  404.194593][ T4000] raw: 01ffc0000004002d ffffc1ffc02ccc08 ffffc1ffc0325948 f5f00000070f0b70
[  404.198661][ T4000] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  404.201735][ T4000] page dumped because: still mapped when deleted
[  404.203701][ T4000] CPU: 1 PID: 4000 Comm: syz.0.89 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  404.207381][ T4000] Hardware name: linux,dummy-virt (DT)
[  404.209488][ T4000] Call trace:
[  404.210537][ T4000]  dump_backtrace+0x94/0xec
[  404.211537][ T4000]  show_stack+0x18/0x24
[  404.212373][ T4000]  dump_stack_lvl+0x78/0x90
[  404.213727][ T4000]  dump_stack+0x18/0x24
[  404.215648][ T4000]  filemap_unaccount_folio+0x118/0x278
[  404.218955][ T4000]  __filemap_remove_folio+0x3c/0x178
[  404.221082][ T4000]  filemap_remove_folio+0x48/0xa8
[  404.222732][ T4000]  truncate_inode_folio+0x30/0x4c
[  404.224688][ T4000]  shmem_undo_range+0x208/0x620
[  404.227730][ T4000]  shmem_evict_inode+0x130/0x2dc
[  404.230143][ T4000]  evict+0xb4/0x198
[  404.231915][ T4000]  iput+0x100/0x1b8
[  404.233041][ T4000]  dentry_unlink_inode+0xc0/0x188
[  404.234845][ T4000]  __dentry_kill+0x7c/0x1d4
[  404.236135][ T4000]  dput.part.0+0x30/0xbc
[  404.237921][ T4000]  dput+0x4c/0x50
[  404.239846][ T4000]  __fput+0x110/0x2d4
[  404.240873][ T4000]  ____fput+0x10/0x1c
[  404.241696][ T4000]  task_work_run+0x78/0xd0
[  404.242626][ T4000]  do_notify_resume+0x134/0x164
[  404.243937][ T4000]  el0_svc+0xc8/0xf8
[  404.244720][ T4000]  el0t_64_sync_handler+0x100/0x12c
[  404.245580][ T4000]  el0t_64_sync+0x19c/0x1a0
[  404.252084][ T4000] BUG: Bad page cache in process syz.0.89  pfn:4c965
[  404.253043][ T4000] page: refcount:4 mapcount:1 mapping:00000000fc314c10 index:0x1 pfn:0x4c965
[  404.254099][ T4000] memcg:f4f00000060ad000
[  404.254745][ T4000] aops:shmem_aops ino:42a
[  404.255546][ T4000] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  404.257221][ T4000] raw: 01ffc0000004002d ffffc1ffc0325988 ffffc1ffc03a7108 f5f00000070f0b70
[  404.258214][ T4000] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  404.260406][ T4000] page dumped because: still mapped when deleted
[  404.261390][ T4000] CPU: 1 PID: 4000 Comm: syz.0.89 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  404.262872][ T4000] Hardware name: linux,dummy-virt (DT)
[  404.263775][ T4000] Call trace:
[  404.264425][ T4000]  dump_backtrace+0x94/0xec
[  404.265211][ T4000]  show_stack+0x18/0x24
[  404.265959][ T4000]  dump_stack_lvl+0x78/0x90
[  404.266777][ T4000]  dump_stack+0x18/0x24
[  404.267594][ T4000]  filemap_unaccount_folio+0x118/0x278
[  404.268425][ T4000]  __filemap_remove_folio+0x3c/0x178
[  404.270853][ T4000]  filemap_remove_folio+0x48/0xa8
[  404.272910][ T4000]  truncate_inode_folio+0x30/0x4c
[  404.273857][ T4000]  shmem_undo_range+0x208/0x620
[  404.275975][ T4000]  shmem_evict_inode+0x130/0x2dc
[  404.277318][ T4000]  evict+0xb4/0x198
[  404.278908][ T4000]  iput+0x100/0x1b8
[  404.280843][ T4000]  dentry_unlink_inode+0xc0/0x188
[  404.282570][ T4000]  __dentry_kill+0x7c/0x1d4
[  404.284348][ T4000]  dput.part.0+0x30/0xbc
[  404.286008][ T4000]  dput+0x4c/0x50
[  404.287571][ T4000]  __fput+0x110/0x2d4
[  404.289284][ T4000]  ____fput+0x10/0x1c
[  404.291242][ T4000]  task_work_run+0x78/0xd0
[  404.292884][ T4000]  do_notify_resume+0x134/0x164
[  404.294514][ T4000]  el0_svc+0xc8/0xf8
[  404.296285][ T4000]  el0t_64_sync_handler+0x100/0x12c
[  404.297505][ T4000]  el0t_64_sync+0x19c/0x1a0
[  404.464127][ T4002] BUG: Bad page cache in process syz.0.90  pfn:4b677
[  404.465564][ T4002] page: refcount:4 mapcount:1 mapping:00000000034e59e8 index:0x0 pfn:0x4b677
[  404.466949][ T4002] memcg:f4f00000060ad000
[  404.467992][ T4002] aops:shmem_aops ino:42b
[  404.468741][ T4002] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  404.471956][ T4002] raw: 01ffc0000004002d ffffc1ffc02d9d48 ffffc1ffc02ccc08 f7f00000070f30f0
[  404.473430][ T4002] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  404.474465][ T4002] page dumped because: still mapped when deleted
[  404.475252][ T4002] CPU: 1 PID: 4002 Comm: syz.0.90 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  404.476691][ T4002] Hardware name: linux,dummy-virt (DT)
[  404.477499][ T4002] Call trace:
[  404.478088][ T4002]  dump_backtrace+0x94/0xec
[  404.479167][ T4002]  show_stack+0x18/0x24
[  404.480352][ T4002]  dump_stack_lvl+0x78/0x90
[  404.481209][ T4002]  dump_stack+0x18/0x24
[  404.482242][ T4002]  filemap_unaccount_folio+0x118/0x278
[  404.483376][ T4002]  __filemap_remove_folio+0x3c/0x178
[  404.484408][ T4002]  filemap_remove_folio+0x48/0xa8
[  404.485577][ T4002]  truncate_inode_folio+0x30/0x4c
[  404.486522][ T4002]  shmem_undo_range+0x208/0x620
[  404.488133][ T4002]  shmem_evict_inode+0x130/0x2dc
[  404.489741][ T4002]  evict+0xb4/0x198
[  404.491175][ T4002]  iput+0x100/0x1b8
[  404.492538][ T4002]  dentry_unlink_inode+0xc0/0x188
[  404.493332][ T4002]  __dentry_kill+0x7c/0x1d4
[  404.494725][ T4002]  dput.part.0+0x30/0xbc
[  404.496105][ T4002]  dput+0x4c/0x50
[  404.497916][ T4002]  __fput+0x110/0x2d4
[  404.498727][ T4002]  ____fput+0x10/0x1c
[  404.500416][ T4002]  task_work_run+0x78/0xd0
[  404.501590][ T4002]  do_notify_resume+0x134/0x164
[  404.503395][ T4002]  el0_svc+0xc8/0xf8
[  404.504171][ T4002]  el0t_64_sync_handler+0x100/0x12c
[  404.505427][ T4002]  el0t_64_sync+0x19c/0x1a0
[  404.517021][ T4002] BUG: Bad page cache in process syz.0.90  pfn:4b330
[  404.518295][ T4002] page: refcount:4 mapcount:1 mapping:00000000034e59e8 index:0x1 pfn:0x4b330
[  404.519814][ T4002] memcg:f4f00000060ad000
[  404.520679][ T4002] aops:shmem_aops ino:42b
[  404.521568][ T4002] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  404.523667][ T4002] raw: 01ffc0000004002d ffffc1ffc02d9dc8 ffffc1ffc02cd808 f7f00000070f30f0
[  404.525083][ T4002] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  404.526180][ T4002] page dumped because: still mapped when deleted
[  404.527127][ T4002] CPU: 1 PID: 4002 Comm: syz.0.90 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  404.528476][ T4002] Hardware name: linux,dummy-virt (DT)
[  404.529169][ T4002] Call trace:
[  404.530839][ T4002]  dump_backtrace+0x94/0xec
[  404.532616][ T4002]  show_stack+0x18/0x24
[  404.533540][ T4002]  dump_stack_lvl+0x78/0x90
[  404.534455][ T4002]  dump_stack+0x18/0x24
[  404.535379][ T4002]  filemap_unaccount_folio+0x118/0x278
[  404.536365][ T4002]  __filemap_remove_folio+0x3c/0x178
[  404.537178][ T4002]  filemap_remove_folio+0x48/0xa8
[  404.538051][ T4002]  truncate_inode_folio+0x30/0x4c
[  404.538879][ T4002]  shmem_undo_range+0x208/0x620
[  404.540719][ T4002]  shmem_evict_inode+0x130/0x2dc
[  404.541654][ T4002]  evict+0xb4/0x198
[  404.542570][ T4002]  iput+0x100/0x1b8
[  404.543621][ T4002]  dentry_unlink_inode+0xc0/0x188
[  404.544517][ T4002]  __dentry_kill+0x7c/0x1d4
[  404.545351][ T4002]  dput.part.0+0x30/0xbc
[  404.546881][ T4002]  dput+0x4c/0x50
[  404.547589][ T4002]  __fput+0x110/0x2d4
[  404.548243][ T4002]  ____fput+0x10/0x1c
[  404.551687][ T4002]  task_work_run+0x78/0xd0
[  404.553708][ T4002]  do_notify_resume+0x134/0x164
[  404.554552][ T4002]  el0_svc+0xc8/0xf8
[  404.555872][ T4002]  el0t_64_sync_handler+0x100/0x12c
[  404.557120][ T4002]  el0t_64_sync+0x19c/0x1a0
[  404.747547][ T4004] BUG: Bad page cache in process syz.0.91  pfn:4e9bb
[  404.749140][ T4004] page: refcount:4 mapcount:1 mapping:0000000042e9daf4 index:0x0 pfn:0x4e9bb
[  404.750433][ T4004] memcg:f4f00000060ad000
[  404.751442][ T4004] aops:shmem_aops ino:23
[  404.752197][ T4004] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  404.756010][ T4004] raw: 01ffc0000004002d ffffc1ffc02d6cc8 ffffc1ffc02cb088 f2f0000003b84530
[  404.757016][ T4004] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  404.759256][ T4004] page dumped because: still mapped when deleted
[  404.760380][ T4004] CPU: 0 PID: 4004 Comm: syz.0.91 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  404.763005][ T4004] Hardware name: linux,dummy-virt (DT)
[  404.764705][ T4004] Call trace:
[  404.765271][ T4004]  dump_backtrace+0x94/0xec
[  404.766003][ T4004]  show_stack+0x18/0x24
[  404.767522][ T4004]  dump_stack_lvl+0x78/0x90
[  404.769266][ T4004]  dump_stack+0x18/0x24
[  404.771290][ T4004]  filemap_unaccount_folio+0x118/0x278
[  404.772098][ T4004]  __filemap_remove_folio+0x3c/0x178
[  404.774499][ T4004]  filemap_remove_folio+0x48/0xa8
[  404.775783][ T4004]  truncate_inode_folio+0x30/0x4c
[  404.777414][ T4004]  shmem_undo_range+0x208/0x620
[  404.778154][ T4004]  shmem_evict_inode+0x130/0x2dc
[  404.778918][ T4004]  evict+0xb4/0x198
[  404.779725][ T4004]  iput+0x100/0x1b8
[  404.780541][ T4004]  dentry_unlink_inode+0xc0/0x188
[  404.782104][ T4004]  __dentry_kill+0x7c/0x1d4
[  404.782997][ T4004]  dput.part.0+0x30/0xbc
[  404.784226][ T4004]  dput+0x4c/0x50
[  404.785643][ T4004]  __fput+0x110/0x2d4
[  404.786642][ T4004]  ____fput+0x10/0x1c
[  404.787601][ T4004]  task_work_run+0x78/0xd0
[  404.789368][ T4004]  do_notify_resume+0x134/0x164
[  404.791509][ T4004]  el0_svc+0xc8/0xf8
[  404.793276][ T4004]  el0t_64_sync_handler+0x100/0x12c
[  404.794351][ T4004]  el0t_64_sync+0x19c/0x1a0
[  404.828381][ T4004] BUG: Bad page cache in process syz.0.91  pfn:4b2c2
[  404.829337][ T4004] page: refcount:4 mapcount:1 mapping:0000000042e9daf4 index:0x1 pfn:0x4b2c2
[  404.830880][ T4004] memcg:f4f00000060ad000
[  404.831621][ T4004] aops:shmem_aops ino:23
[  404.832324][ T4004] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  404.833833][ T4004] raw: 01ffc0000004002d ffffc1ffc03a6ec8 ffffc1ffc02f3f88 f2f0000003b84530
[  404.834845][ T4004] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  404.835852][ T4004] page dumped because: still mapped when deleted
[  404.836647][ T4004] CPU: 0 PID: 4004 Comm: syz.0.91 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  404.838059][ T4004] Hardware name: linux,dummy-virt (DT)
[  404.838786][ T4004] Call trace:
[  404.839371][ T4004]  dump_backtrace+0x94/0xec
[  404.840454][ T4004]  show_stack+0x18/0x24
[  404.841148][ T4004]  dump_stack_lvl+0x78/0x90
[  404.841873][ T4004]  dump_stack+0x18/0x24
[  404.842621][ T4004]  filemap_unaccount_folio+0x118/0x278
[  404.843434][ T4004]  __filemap_remove_folio+0x3c/0x178
[  404.844206][ T4004]  filemap_remove_folio+0x48/0xa8
[  404.844979][ T4004]  truncate_inode_folio+0x30/0x4c
[  404.845706][ T4004]  shmem_undo_range+0x208/0x620
[  404.846424][ T4004]  shmem_evict_inode+0x130/0x2dc
[  404.847241][ T4004]  evict+0xb4/0x198
[  404.847924][ T4004]  iput+0x100/0x1b8
[  404.848622][ T4004]  dentry_unlink_inode+0xc0/0x188
[  404.849399][ T4004]  __dentry_kill+0x7c/0x1d4
[  404.850363][ T4004]  dput.part.0+0x30/0xbc
[  404.851079][ T4004]  dput+0x4c/0x50
[  404.851785][ T4004]  __fput+0x110/0x2d4
[  404.852543][ T4004]  ____fput+0x10/0x1c
[  404.853203][ T4004]  task_work_run+0x78/0xd0
[  404.854039][ T4004]  do_notify_resume+0x134/0x164
[  404.854775][ T4004]  el0_svc+0xc8/0xf8
[  404.855604][ T4004]  el0t_64_sync_handler+0x100/0x12c
[  404.856340][ T4004]  el0t_64_sync+0x19c/0x1a0
[  405.017661][ T4006] BUG: Bad page cache in process syz.0.92  pfn:4b6ca
[  405.018628][ T4006] page: refcount:4 mapcount:1 mapping:00000000e748ea1d index:0x0 pfn:0x4b6ca
[  405.020466][ T4006] memcg:f4f00000060ad000
[  405.021111][ T4006] aops:shmem_aops ino:42c
[  405.022411][ T4006] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  405.025180][ T4006] raw: 01ffc0000004002d ffffc1ffc02da088 ffffc1ffc02cd3c8 f8f00000070f0530
[  405.026916][ T4006] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  405.029880][ T4006] page dumped because: still mapped when deleted
[  405.032716][ T4006] CPU: 1 PID: 4006 Comm: syz.0.92 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  405.036362][ T4006] Hardware name: linux,dummy-virt (DT)
[  405.037840][ T4006] Call trace:
[  405.039122][ T4006]  dump_backtrace+0x94/0xec
[  405.041331][ T4006]  show_stack+0x18/0x24
[  405.043112][ T4006]  dump_stack_lvl+0x78/0x90
[  405.044695][ T4006]  dump_stack+0x18/0x24
[  405.046572][ T4006]  filemap_unaccount_folio+0x118/0x278
[  405.047822][ T4006]  __filemap_remove_folio+0x3c/0x178
[  405.050471][ T4006]  filemap_remove_folio+0x48/0xa8
[  405.052866][ T4006]  truncate_inode_folio+0x30/0x4c
[  405.053833][ T4006]  shmem_undo_range+0x208/0x620
[  405.054655][ T4006]  shmem_evict_inode+0x130/0x2dc
[  405.055738][ T4006]  evict+0xb4/0x198
[  405.056807][ T4006]  iput+0x100/0x1b8
[  405.057641][ T4006]  dentry_unlink_inode+0xc0/0x188
[  405.058454][ T4006]  __dentry_kill+0x7c/0x1d4
[  405.059231][ T4006]  dput.part.0+0x30/0xbc
[  405.060638][ T4006]  dput+0x4c/0x50
[  405.061496][ T4006]  __fput+0x110/0x2d4
[  405.062788][ T4006]  ____fput+0x10/0x1c
[  405.063639][ T4006]  task_work_run+0x78/0xd0
[  405.064433][ T4006]  do_notify_resume+0x134/0x164
[  405.065271][ T4006]  el0_svc+0xc8/0xf8
[  405.065968][ T4006]  el0t_64_sync_handler+0x100/0x12c
[  405.066836][ T4006]  el0t_64_sync+0x19c/0x1a0
[  405.073440][ T4006] BUG: Bad page cache in process syz.0.92  pfn:4b34f
[  405.074355][ T4006] page: refcount:4 mapcount:1 mapping:00000000e748ea1d index:0x1 pfn:0x4b34f
[  405.075401][ T4006] memcg:f4f00000060ad000
[  405.076048][ T4006] aops:shmem_aops ino:42c
[  405.077071][ T4006] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  405.078440][ T4006] raw: 01ffc0000004002d ffffc1ffc02db288 ffffc1ffc0357ec8 f8f00000070f0530
[  405.080071][ T4006] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  405.081070][ T4006] page dumped because: still mapped when deleted
[  405.081938][ T4006] CPU: 1 PID: 4006 Comm: syz.0.92 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  405.083769][ T4006] Hardware name: linux,dummy-virt (DT)
[  405.084715][ T4006] Call trace:
[  405.085386][ T4006]  dump_backtrace+0x94/0xec
[  405.086304][ T4006]  show_stack+0x18/0x24
[  405.087404][ T4006]  dump_stack_lvl+0x78/0x90
[  405.088200][ T4006]  dump_stack+0x18/0x24
[  405.089595][ T4006]  filemap_unaccount_folio+0x118/0x278
[  405.092026][ T4006]  __filemap_remove_folio+0x3c/0x178
[  405.094068][ T4006]  filemap_remove_folio+0x48/0xa8
[  405.096129][ T4006]  truncate_inode_folio+0x30/0x4c
[  405.097376][ T4006]  shmem_undo_range+0x208/0x620
[  405.098692][ T4006]  shmem_evict_inode+0x130/0x2dc
[  405.100956][ T4006]  evict+0xb4/0x198
[  405.102303][ T4006]  iput+0x100/0x1b8
[  405.103805][ T4006]  dentry_unlink_inode+0xc0/0x188
[  405.105492][ T4006]  __dentry_kill+0x7c/0x1d4
[  405.107079][ T4006]  dput.part.0+0x30/0xbc
[  405.108561][ T4006]  dput+0x4c/0x50
[  405.110148][ T4006]  __fput+0x110/0x2d4
[  405.111756][ T4006]  ____fput+0x10/0x1c
[  405.113168][ T4006]  task_work_run+0x78/0xd0
[  405.114828][ T4006]  do_notify_resume+0x134/0x164
[  405.116441][ T4006]  el0_svc+0xc8/0xf8
[  405.118302][ T4006]  el0t_64_sync_handler+0x100/0x12c
[  405.120558][ T4006]  el0t_64_sync+0x19c/0x1a0
[  405.308796][ T4008] BUG: Bad page cache in process syz.0.93  pfn:4b682
[  405.309812][ T4008] page: refcount:4 mapcount:1 mapping:000000009925be35 index:0x0 pfn:0x4b682
[  405.311255][ T4008] memcg:f4f00000060ad000
[  405.311868][ T4008] aops:shmem_aops ino:42d
[  405.312648][ T4008] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  405.313989][ T4008] raw: 01ffc0000004002d ffffc1ffc039cd08 ffffc1ffc02d5008 f9f00000070f2790
[  405.315158][ T4008] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  405.316605][ T4008] page dumped because: still mapped when deleted
[  405.317567][ T4008] CPU: 1 PID: 4008 Comm: syz.0.93 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  405.318834][ T4008] Hardware name: linux,dummy-virt (DT)
[  405.319721][ T4008] Call trace:
[  405.320777][ T4008]  dump_backtrace+0x94/0xec
[  405.321706][ T4008]  show_stack+0x18/0x24
[  405.322545][ T4008]  dump_stack_lvl+0x78/0x90
[  405.323453][ T4008]  dump_stack+0x18/0x24
[  405.324166][ T4008]  filemap_unaccount_folio+0x118/0x278
[  405.325040][ T4008]  __filemap_remove_folio+0x3c/0x178
[  405.325956][ T4008]  filemap_remove_folio+0x48/0xa8
[  405.326910][ T4008]  truncate_inode_folio+0x30/0x4c
[  405.327776][ T4008]  shmem_undo_range+0x208/0x620
[  405.328582][ T4008]  shmem_evict_inode+0x130/0x2dc
[  405.329286][ T4008]  evict+0xb4/0x198
[  405.330253][ T4008]  iput+0x100/0x1b8
[  405.330984][ T4008]  dentry_unlink_inode+0xc0/0x188
[  405.331883][ T4008]  __dentry_kill+0x7c/0x1d4
[  405.332685][ T4008]  dput.part.0+0x30/0xbc
[  405.333445][ T4008]  dput+0x4c/0x50
[  405.334099][ T4008]  __fput+0x110/0x2d4
[  405.334683][ T4008]  ____fput+0x10/0x1c
[  405.335309][ T4008]  task_work_run+0x78/0xd0
[  405.335940][ T4008]  do_notify_resume+0x134/0x164
[  405.336611][ T4008]  el0_svc+0xc8/0xf8
[  405.337216][ T4008]  el0t_64_sync_handler+0x100/0x12c
[  405.337947][ T4008]  el0t_64_sync+0x19c/0x1a0
[  405.344217][ T4008] BUG: Bad page cache in process syz.0.93  pfn:4b540
[  405.346720][ T4008] page: refcount:4 mapcount:1 mapping:000000009925be35 index:0x1 pfn:0x4b540
[  405.349601][ T4008] memcg:f4f00000060ad000
[  405.351454][ T4008] aops:shmem_aops ino:42d
[  405.353132][ T4008] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  405.356918][ T4008] raw: 01ffc0000004002d ffffc1ffc02da088 ffffc1ffc02cd5c8 f9f00000070f2790
[  405.358983][ T4008] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  405.362002][ T4008] page dumped because: still mapped when deleted
[  405.362889][ T4008] CPU: 1 PID: 4008 Comm: syz.0.93 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  405.366997][ T4008] Hardware name: linux,dummy-virt (DT)
[  405.367961][ T4008] Call trace:
[  405.369295][ T4008]  dump_backtrace+0x94/0xec
[  405.371433][ T4008]  show_stack+0x18/0x24
[  405.372826][ T4008]  dump_stack_lvl+0x78/0x90
[  405.374560][ T4008]  dump_stack+0x18/0x24
[  405.376376][ T4008]  filemap_unaccount_folio+0x118/0x278
[  405.378397][ T4008]  __filemap_remove_folio+0x3c/0x178
[  405.380882][ T4008]  filemap_remove_folio+0x48/0xa8
[  405.382151][ T4008]  truncate_inode_folio+0x30/0x4c
[  405.383246][ T4008]  shmem_undo_range+0x208/0x620
[  405.384223][ T4008]  shmem_evict_inode+0x130/0x2dc
[  405.386102][ T4008]  evict+0xb4/0x198
[  405.387677][ T4008]  iput+0x100/0x1b8
[  405.389082][ T4008]  dentry_unlink_inode+0xc0/0x188
[  405.400120][ T4008]  __dentry_kill+0x7c/0x1d4
[  405.400821][ T4008]  dput.part.0+0x30/0xbc
[  405.401510][ T4008]  dput+0x4c/0x50
[  405.402121][ T4008]  __fput+0x110/0x2d4
[  405.402770][ T4008]  ____fput+0x10/0x1c
[  405.403445][ T4008]  task_work_run+0x78/0xd0
[  405.404092][ T4008]  do_notify_resume+0x134/0x164
[  405.404809][ T4008]  el0_svc+0xc8/0xf8
[  405.405447][ T4008]  el0t_64_sync_handler+0x100/0x12c
[  405.406129][ T4008]  el0t_64_sync+0x19c/0x1a0
[  405.593070][ T4010] BUG: Bad page cache in process syz.0.94  pfn:4b32e
[  405.594091][ T4010] page: refcount:4 mapcount:1 mapping:00000000529654b3 index:0x0 pfn:0x4b32e
[  405.595147][ T4010] memcg:f4f00000060ad000
[  405.595912][ T4010] aops:shmem_aops ino:24
[  405.596700][ T4010] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  405.598150][ T4010] raw: 01ffc0000004002d ffffc1ffc02d6cc8 ffffc1ffc0357e08 f8f0000003b87a50
[  405.599145][ T4010] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  405.600641][ T4010] page dumped because: still mapped when deleted
[  405.601574][ T4010] CPU: 0 PID: 4010 Comm: syz.0.94 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  405.603113][ T4010] Hardware name: linux,dummy-virt (DT)
[  405.603904][ T4010] Call trace:
[  405.605405][ T4010]  dump_backtrace+0x94/0xec
[  405.607115][ T4010]  show_stack+0x18/0x24
[  405.608395][ T4010]  dump_stack_lvl+0x78/0x90
[  405.609160][ T4010]  dump_stack+0x18/0x24
[  405.610373][ T4010]  filemap_unaccount_folio+0x118/0x278
[  405.612368][ T4010]  __filemap_remove_folio+0x3c/0x178
[  405.614069][ T4010]  filemap_remove_folio+0x48/0xa8
[  405.616194][ T4010]  truncate_inode_folio+0x30/0x4c
[  405.617474][ T4010]  shmem_undo_range+0x208/0x620
[  405.618273][ T4010]  shmem_evict_inode+0x130/0x2dc
[  405.620386][ T4010]  evict+0xb4/0x198
[  405.622182][ T4010]  iput+0x100/0x1b8
[  405.623862][ T4010]  dentry_unlink_inode+0xc0/0x188
[  405.625067][ T4010]  __dentry_kill+0x7c/0x1d4
[  405.626632][ T4010]  dput.part.0+0x30/0xbc
[  405.628316][ T4010]  dput+0x4c/0x50
[  405.629707][ T4010]  __fput+0x110/0x2d4
[  405.631374][ T4010]  ____fput+0x10/0x1c
[  405.633168][ T4010]  task_work_run+0x78/0xd0
[  405.634735][ T4010]  do_notify_resume+0x134/0x164
[  405.635644][ T4010]  el0_svc+0xc8/0xf8
[  405.636404][ T4010]  el0t_64_sync_handler+0x100/0x12c
[  405.637300][ T4010]  el0t_64_sync+0x19c/0x1a0
[  405.680758][ T4010] BUG: Bad page cache in process syz.0.94  pfn:4d5f8
[  405.683417][ T4010] page: refcount:4 mapcount:1 mapping:00000000529654b3 index:0x1 pfn:0x4d5f8
[  405.686349][ T4010] memcg:f4f00000060ad000
[  405.688304][ T4010] aops:shmem_aops ino:24
[  405.690016][ T4010] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  405.692953][ T4010] raw: 01ffc0000004002d ffffc1ffc02ccb88 ffffc1ffc03ab108 f8f0000003b87a50
[  405.695477][ T4010] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  405.696672][ T4010] page dumped because: still mapped when deleted
[  405.698133][ T4010] CPU: 0 PID: 4010 Comm: syz.0.94 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  405.703120][ T4010] Hardware name: linux,dummy-virt (DT)
[  405.706667][ T4010] Call trace:
[  405.709093][ T4010]  dump_backtrace+0x94/0xec
[  405.711654][ T4010]  show_stack+0x18/0x24
[  405.714664][ T4010]  dump_stack_lvl+0x78/0x90
[  405.715913][ T4010]  dump_stack+0x18/0x24
[  405.719752][ T4010]  filemap_unaccount_folio+0x118/0x278
[  405.721298][ T4010]  __filemap_remove_folio+0x3c/0x178
[  405.723681][ T4010]  filemap_remove_folio+0x48/0xa8
[  405.726137][ T4010]  truncate_inode_folio+0x30/0x4c
[  405.728636][ T4010]  shmem_undo_range+0x208/0x620
[  405.729543][ T4010]  shmem_evict_inode+0x130/0x2dc
[  405.730796][ T4010]  evict+0xb4/0x198
[  405.731834][ T4010]  iput+0x100/0x1b8
[  405.733530][ T4010]  dentry_unlink_inode+0xc0/0x188
[  405.735816][ T4010]  __dentry_kill+0x7c/0x1d4
[  405.737759][ T4010]  dput.part.0+0x30/0xbc
[  405.739691][ T4010]  dput+0x4c/0x50
[  405.741688][ T4010]  __fput+0x110/0x2d4
[  405.743604][ T4010]  ____fput+0x10/0x1c
[  405.744610][ T4010]  task_work_run+0x78/0xd0
[  405.745471][ T4010]  do_notify_resume+0x134/0x164
[  405.746501][ T4010]  el0_svc+0xc8/0xf8
[  405.748034][ T4010]  el0t_64_sync_handler+0x100/0x12c
[  405.748859][ T4010]  el0t_64_sync+0x19c/0x1a0
[  405.927866][ T4012] BUG: Bad page cache in process syz.0.95  pfn:4b2c7
[  405.929966][ T4012] page: refcount:4 mapcount:1 mapping:00000000d23aff0c index:0x0 pfn:0x4b2c7
[  405.933403][ T4012] memcg:f4f00000060ad000
[  405.935068][ T4012] aops:shmem_aops ino:25
[  405.936893][ T4012] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  405.940932][ T4012] raw: 01ffc0000004002d ffffc1ffc01a0988 ffffc1ffc02db188 fdf0000003b87410
[  405.943336][ T4012] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  405.946308][ T4012] page dumped because: still mapped when deleted
[  405.948671][ T4012] CPU: 0 PID: 4012 Comm: syz.0.95 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  405.952891][ T4012] Hardware name: linux,dummy-virt (DT)
[  405.955048][ T4012] Call trace:
[  405.955703][ T4012]  dump_backtrace+0x94/0xec
[  405.956534][ T4012]  show_stack+0x18/0x24
[  405.957257][ T4012]  dump_stack_lvl+0x78/0x90
[  405.958053][ T4012]  dump_stack+0x18/0x24
[  405.958760][ T4012]  filemap_unaccount_folio+0x118/0x278
[  405.959620][ T4012]  __filemap_remove_folio+0x3c/0x178
[  405.960663][ T4012]  filemap_remove_folio+0x48/0xa8
[  405.961450][ T4012]  truncate_inode_folio+0x30/0x4c
[  405.962257][ T4012]  shmem_undo_range+0x208/0x620
[  405.962991][ T4012]  shmem_evict_inode+0x130/0x2dc
[  405.963798][ T4012]  evict+0xb4/0x198
[  405.964498][ T4012]  iput+0x100/0x1b8
[  405.965196][ T4012]  dentry_unlink_inode+0xc0/0x188
[  405.965985][ T4012]  __dentry_kill+0x7c/0x1d4
[  405.966792][ T4012]  dput.part.0+0x30/0xbc
[  405.967548][ T4012]  dput+0x4c/0x50
[  405.968635][ T4012]  __fput+0x110/0x2d4
[  405.970390][ T4012]  ____fput+0x10/0x1c
[  405.971605][ T4012]  task_work_run+0x78/0xd0
[  405.972385][ T4012]  do_notify_resume+0x134/0x164
[  405.973536][ T4012]  el0_svc+0xc8/0xf8
[  405.974368][ T4012]  el0t_64_sync_handler+0x100/0x12c
[  405.975162][ T4012]  el0t_64_sync+0x19c/0x1a0
[  405.978405][ T4012] BUG: Bad page cache in process syz.0.95  pfn:4b6c6
[  405.979564][ T4012] page: refcount:4 mapcount:1 mapping:00000000d23aff0c index:0x1 pfn:0x4b6c6
[  405.980950][ T4012] memcg:f4f00000060ad000
[  405.981568][ T4012] aops:shmem_aops ino:25
[  405.982346][ T4012] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  405.983679][ T4012] raw: 01ffc0000004002d ffffc1ffc02cb1c8 ffffc1ffc02cce08 fdf0000003b87410
[  405.984659][ T4012] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  405.985674][ T4012] page dumped because: still mapped when deleted
[  405.986520][ T4012] CPU: 0 PID: 4012 Comm: syz.0.95 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  405.987850][ T4012] Hardware name: linux,dummy-virt (DT)
[  405.988818][ T4012] Call trace:
[  405.989583][ T4012]  dump_backtrace+0x94/0xec
[  405.990883][ T4012]  show_stack+0x18/0x24
[  405.991961][ T4012]  dump_stack_lvl+0x78/0x90
[  405.992786][ T4012]  dump_stack+0x18/0x24
[  405.993548][ T4012]  filemap_unaccount_folio+0x118/0x278
[  405.994631][ T4012]  __filemap_remove_folio+0x3c/0x178
[  405.995496][ T4012]  filemap_remove_folio+0x48/0xa8
[  405.996502][ T4012]  truncate_inode_folio+0x30/0x4c
[  405.997311][ T4012]  shmem_undo_range+0x208/0x620
[  405.998069][ T4012]  shmem_evict_inode+0x130/0x2dc
[  405.998912][ T4012]  evict+0xb4/0x198
[  405.999628][ T4012]  iput+0x100/0x1b8
[  406.000568][ T4012]  dentry_unlink_inode+0xc0/0x188
[  406.001355][ T4012]  __dentry_kill+0x7c/0x1d4
[  406.002174][ T4012]  dput.part.0+0x30/0xbc
[  406.002865][ T4012]  dput+0x4c/0x50
[  406.003603][ T4012]  __fput+0x110/0x2d4
[  406.004354][ T4012]  ____fput+0x10/0x1c
[  406.005050][ T4012]  task_work_run+0x78/0xd0
[  406.006002][ T4012]  do_notify_resume+0x134/0x164
[  406.006805][ T4012]  el0_svc+0xc8/0xf8
[  406.007697][ T4012]  el0t_64_sync_handler+0x100/0x12c
[  406.008478][ T4012]  el0t_64_sync+0x19c/0x1a0
[  406.223906][ T4014] BUG: Bad page cache in process syz.0.96  pfn:4b57d
[  406.225016][ T4014] page: refcount:4 mapcount:1 mapping:00000000529654b3 index:0x0 pfn:0x4b57d
[  406.226912][ T4014] memcg:f4f00000060ad000
[  406.228509][ T4014] aops:shmem_aops ino:26
[  406.229409][ T4014] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  406.231872][ T4014] raw: 01ffc0000004002d ffffc1ffc02d5a08 ffffc1ffc01a0988 f8f0000003b87a50
[  406.232782][ T4014] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  406.233782][ T4014] page dumped because: still mapped when deleted
[  406.235104][ T4014] CPU: 0 PID: 4014 Comm: syz.0.96 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  406.238373][ T4014] Hardware name: linux,dummy-virt (DT)
[  406.239854][ T4014] Call trace:
[  406.240715][ T4014]  dump_backtrace+0x94/0xec
[  406.241397][ T4014]  show_stack+0x18/0x24
[  406.242153][ T4014]  dump_stack_lvl+0x78/0x90
[  406.242903][ T4014]  dump_stack+0x18/0x24
[  406.243614][ T4014]  filemap_unaccount_folio+0x118/0x278
[  406.244448][ T4014]  __filemap_remove_folio+0x3c/0x178
[  406.245307][ T4014]  filemap_remove_folio+0x48/0xa8
[  406.246019][ T4014]  truncate_inode_folio+0x30/0x4c
[  406.246893][ T4014]  shmem_undo_range+0x208/0x620
[  406.247701][ T4014]  shmem_evict_inode+0x130/0x2dc
[  406.248484][ T4014]  evict+0xb4/0x198
[  406.249229][ T4014]  iput+0x100/0x1b8
[  406.250143][ T4014]  dentry_unlink_inode+0xc0/0x188
[  406.251381][ T4014]  __dentry_kill+0x7c/0x1d4
[  406.252210][ T4014]  dput.part.0+0x30/0xbc
[  406.253038][ T4014]  dput+0x4c/0x50
[  406.253778][ T4014]  __fput+0x110/0x2d4
[  406.254544][ T4014]  ____fput+0x10/0x1c
[  406.255290][ T4014]  task_work_run+0x78/0xd0
[  406.256036][ T4014]  do_notify_resume+0x134/0x164
[  406.256773][ T4014]  el0_svc+0xc8/0xf8
[  406.257402][ T4014]  el0t_64_sync_handler+0x100/0x12c
[  406.258158][ T4014]  el0t_64_sync+0x19c/0x1a0
[  406.271875][ T4014] BUG: Bad page cache in process syz.0.96  pfn:46826
[  406.272884][ T4014] page: refcount:4 mapcount:1 mapping:00000000529654b3 index:0x1 pfn:0x46826
[  406.273884][ T4014] memcg:f4f00000060ad000
[  406.274494][ T4014] aops:shmem_aops ino:26
[  406.275224][ T4014] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  406.276413][ T4014] raw: 01ffc0000004002d ffffc1ffc02d5f48 ffffc1ffc02f2188 f8f0000003b87a50
[  406.277391][ T4014] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  406.278368][ T4014] page dumped because: still mapped when deleted
[  406.279239][ T4014] CPU: 0 PID: 4014 Comm: syz.0.96 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  406.281066][ T4014] Hardware name: linux,dummy-virt (DT)
[  406.281837][ T4014] Call trace:
[  406.282365][ T4014]  dump_backtrace+0x94/0xec
[  406.283157][ T4014]  show_stack+0x18/0x24
[  406.284019][ T4014]  dump_stack_lvl+0x78/0x90
[  406.285099][ T4014]  dump_stack+0x18/0x24
[  406.285682][ T4014]  filemap_unaccount_folio+0x118/0x278
[  406.286598][ T4014]  __filemap_remove_folio+0x3c/0x178
[  406.287531][ T4014]  filemap_remove_folio+0x48/0xa8
[  406.288303][ T4014]  truncate_inode_folio+0x30/0x4c
[  406.289076][ T4014]  shmem_undo_range+0x208/0x620
[  406.290026][ T4014]  shmem_evict_inode+0x130/0x2dc
[  406.291090][ T4014]  evict+0xb4/0x198
[  406.291826][ T4014]  iput+0x100/0x1b8
[  406.292484][ T4014]  dentry_unlink_inode+0xc0/0x188
[  406.293208][ T4014]  __dentry_kill+0x7c/0x1d4
[  406.293902][ T4014]  dput.part.0+0x30/0xbc
[  406.294593][ T4014]  dput+0x4c/0x50
[  406.295238][ T4014]  __fput+0x110/0x2d4
[  406.295813][ T4014]  ____fput+0x10/0x1c
[  406.296439][ T4014]  task_work_run+0x78/0xd0
[  406.297108][ T4014]  do_notify_resume+0x134/0x164
[  406.298661][ T4014]  el0_svc+0xc8/0xf8
[  406.300200][ T4014]  el0t_64_sync_handler+0x100/0x12c
[  406.302074][ T4014]  el0t_64_sync+0x19c/0x1a0
[  406.498570][ T4016] BUG: Bad page cache in process syz.0.97  pfn:4b2d2
[  406.501988][ T4016] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x0 pfn:0x4b2d2
[  406.503611][ T4016] memcg:f4f00000060ad000
[  406.504578][ T4016] aops:shmem_aops ino:42e
[  406.505678][ T4016] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  406.510703][ T4016] raw: 01ffc0000004002d ffffc1ffc02cb208 ffffc1ffc02d6cc8 f1f00000070f2470
[  406.512165][ T4016] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  406.513638][ T4016] page dumped because: still mapped when deleted
[  406.514762][ T4016] CPU: 1 PID: 4016 Comm: syz.0.97 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  406.516766][ T4016] Hardware name: linux,dummy-virt (DT)
[  406.517760][ T4016] Call trace:
[  406.518359][ T4016]  dump_backtrace+0x94/0xec
[  406.519065][ T4016]  show_stack+0x18/0x24
[  406.519882][ T4016]  dump_stack_lvl+0x78/0x90
[  406.520627][ T4016]  dump_stack+0x18/0x24
[  406.521284][ T4016]  filemap_unaccount_folio+0x118/0x278
[  406.522023][ T4016]  __filemap_remove_folio+0x3c/0x178
[  406.522815][ T4016]  filemap_remove_folio+0x48/0xa8
[  406.523602][ T4016]  truncate_inode_folio+0x30/0x4c
[  406.524328][ T4016]  shmem_undo_range+0x208/0x620
[  406.525087][ T4016]  shmem_evict_inode+0x130/0x2dc
[  406.525778][ T4016]  evict+0xb4/0x198
[  406.526448][ T4016]  iput+0x100/0x1b8
[  406.527190][ T4016]  dentry_unlink_inode+0xc0/0x188
[  406.529105][ T4016]  __dentry_kill+0x7c/0x1d4
[  406.531423][ T4016]  dput.part.0+0x30/0xbc
[  406.533146][ T4016]  dput+0x4c/0x50
[  406.534455][ T4016]  __fput+0x110/0x2d4
[  406.536058][ T4016]  ____fput+0x10/0x1c
[  406.537425][ T4016]  task_work_run+0x78/0xd0
[  406.538911][ T4016]  do_notify_resume+0x134/0x164
[  406.540645][ T4016]  el0_svc+0xc8/0xf8
[  406.542035][ T4016]  el0t_64_sync_handler+0x100/0x12c
[  406.542780][ T4016]  el0t_64_sync+0x19c/0x1a0
[  406.548058][ T4016] BUG: Bad page cache in process syz.0.97  pfn:4b5b3
[  406.549355][ T4016] page: refcount:4 mapcount:1 mapping:000000003ee7caca index:0x1 pfn:0x4b5b3
[  406.550813][ T4016] memcg:f4f00000060ad000
[  406.551474][ T4016] aops:shmem_aops ino:42e
[  406.552253][ T4016] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  406.553812][ T4016] raw: 01ffc0000004002d ffffc1ffc02cb488 ffffc1ffc02d50c8 f1f00000070f2470
[  406.554915][ T4016] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  406.556034][ T4016] page dumped because: still mapped when deleted
[  406.556878][ T4016] CPU: 1 PID: 4016 Comm: syz.0.97 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  406.557916][ T4016] Hardware name: linux,dummy-virt (DT)
[  406.559511][ T4016] Call trace:
[  406.561999][ T4016]  dump_backtrace+0x94/0xec
[  406.563147][ T4016]  show_stack+0x18/0x24
[  406.563886][ T4016]  dump_stack_lvl+0x78/0x90
[  406.564632][ T4016]  dump_stack+0x18/0x24
[  406.565375][ T4016]  filemap_unaccount_folio+0x118/0x278
[  406.566304][ T4016]  __filemap_remove_folio+0x3c/0x178
[  406.567111][ T4016]  filemap_remove_folio+0x48/0xa8
[  406.567857][ T4016]  truncate_inode_folio+0x30/0x4c
[  406.568719][ T4016]  shmem_undo_range+0x208/0x620
[  406.569458][ T4016]  shmem_evict_inode+0x130/0x2dc
[  406.570443][ T4016]  evict+0xb4/0x198
[  406.571181][ T4016]  iput+0x100/0x1b8
[  406.571908][ T4016]  dentry_unlink_inode+0xc0/0x188
[  406.572772][ T4016]  __dentry_kill+0x7c/0x1d4
[  406.573645][ T4016]  dput.part.0+0x30/0xbc
[  406.574415][ T4016]  dput+0x4c/0x50
[  406.575134][ T4016]  __fput+0x110/0x2d4
[  406.576241][ T4016]  ____fput+0x10/0x1c
[  406.577183][ T4016]  task_work_run+0x78/0xd0
[  406.578247][ T4016]  do_notify_resume+0x134/0x164
[  406.579002][ T4016]  el0_svc+0xc8/0xf8
[  406.581031][ T4016]  el0t_64_sync_handler+0x100/0x12c
[  406.583420][ T4016]  el0t_64_sync+0x19c/0x1a0
[  406.754483][ T4018] BUG: Bad page cache in process syz.0.98  pfn:4eac4
[  406.755429][ T4018] page: refcount:4 mapcount:1 mapping:00000000007eb9af index:0x0 pfn:0x4eac4
[  406.758323][ T4018] memcg:f4f00000060ad000
[  406.759964][ T4018] aops:shmem_aops ino:42f
[  406.761891][ T4018] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  406.765354][ T4018] raw: 01ffc0000004002d ffffc1ffc02d8208 ffffc1ffc02cb508 f7f00000070f3d70
[  406.768273][ T4018] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  406.771505][ T4018] page dumped because: still mapped when deleted
[  406.776157][ T4018] CPU: 1 PID: 4018 Comm: syz.0.98 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  406.781606][ T4018] Hardware name: linux,dummy-virt (DT)
[  406.782571][ T4018] Call trace:
[  406.783170][ T4018]  dump_backtrace+0x94/0xec
[  406.784049][ T4018]  show_stack+0x18/0x24
[  406.785269][ T4018]  dump_stack_lvl+0x78/0x90
[  406.786230][ T4018]  dump_stack+0x18/0x24
[  406.787006][ T4018]  filemap_unaccount_folio+0x118/0x278
[  406.787920][ T4018]  __filemap_remove_folio+0x3c/0x178
[  406.788792][ T4018]  filemap_remove_folio+0x48/0xa8
[  406.789675][ T4018]  truncate_inode_folio+0x30/0x4c
[  406.790880][ T4018]  shmem_undo_range+0x208/0x620
[  406.791683][ T4018]  shmem_evict_inode+0x130/0x2dc
[  406.792508][ T4018]  evict+0xb4/0x198
[  406.793177][ T4018]  iput+0x100/0x1b8
[  406.794258][ T4018]  dentry_unlink_inode+0xc0/0x188
[  406.795139][ T4018]  __dentry_kill+0x7c/0x1d4
[  406.796174][ T4018]  dput.part.0+0x30/0xbc
[  406.797415][ T4018]  dput+0x4c/0x50
[  406.798206][ T4018]  __fput+0x110/0x2d4
[  406.799066][ T4018]  ____fput+0x10/0x1c
[  406.799932][ T4018]  task_work_run+0x78/0xd0
[  406.800918][ T4018]  do_notify_resume+0x134/0x164
[  406.801814][ T4018]  el0_svc+0xc8/0xf8
[  406.802873][ T4018]  el0t_64_sync_handler+0x100/0x12c
[  406.803863][ T4018]  el0t_64_sync+0x19c/0x1a0
[  406.807172][ T4018] BUG: Bad page cache in process syz.0.98  pfn:4b2d4
[  406.808107][ T4018] page: refcount:4 mapcount:1 mapping:00000000007eb9af index:0x1 pfn:0x4b2d4
[  406.809182][ T4018] memcg:f4f00000060ad000
[  406.810042][ T4018] aops:shmem_aops ino:42f
[  406.810877][ T4018] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  406.812381][ T4018] raw: 01ffc0000004002d ffffc1ffc03ab108 ffffc1ffc02cb208 f7f00000070f3d70
[  406.813358][ T4018] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  406.814258][ T4018] page dumped because: still mapped when deleted
[  406.815118][ T4018] CPU: 1 PID: 4018 Comm: syz.0.98 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  406.817662][ T4018] Hardware name: linux,dummy-virt (DT)
[  406.818383][ T4018] Call trace:
[  406.819041][ T4018]  dump_backtrace+0x94/0xec
[  406.820044][ T4018]  show_stack+0x18/0x24
[  406.820755][ T4018]  dump_stack_lvl+0x78/0x90
[  406.821466][ T4018]  dump_stack+0x18/0x24
[  406.822251][ T4018]  filemap_unaccount_folio+0x118/0x278
[  406.823082][ T4018]  __filemap_remove_folio+0x3c/0x178
[  406.823993][ T4018]  filemap_remove_folio+0x48/0xa8
[  406.824852][ T4018]  truncate_inode_folio+0x30/0x4c
[  406.825688][ T4018]  shmem_undo_range+0x208/0x620
[  406.826471][ T4018]  shmem_evict_inode+0x130/0x2dc
[  406.827376][ T4018]  evict+0xb4/0x198
[  406.828341][ T4018]  iput+0x100/0x1b8
[  406.829133][ T4018]  dentry_unlink_inode+0xc0/0x188
[  406.831304][ T4018]  __dentry_kill+0x7c/0x1d4
[  406.832133][ T4018]  dput.part.0+0x30/0xbc
[  406.832958][ T4018]  dput+0x4c/0x50
[  406.833709][ T4018]  __fput+0x110/0x2d4
[  406.834541][ T4018]  ____fput+0x10/0x1c
[  406.835525][ T4018]  task_work_run+0x78/0xd0
[  406.836266][ T4018]  do_notify_resume+0x134/0x164
[  406.837218][ T4018]  el0_svc+0xc8/0xf8
[  406.838799][ T4018]  el0t_64_sync_handler+0x100/0x12c
[  406.839771][ T4018]  el0t_64_sync+0x19c/0x1a0
[  407.035250][ T4020] BUG: Bad page cache in process syz.0.99  pfn:4b357
[  407.036306][ T4020] page: refcount:4 mapcount:1 mapping:00000000db2c476b index:0x0 pfn:0x4b357
[  407.038620][ T4020] memcg:f4f00000060ad000
[  407.039454][ T4020] aops:shmem_aops ino:430
[  407.041465][ T4020] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  407.043081][ T4020] raw: 01ffc0000004002d ffffc1ffc02d6888 ffffc1ffc0357788 fdf00000070f14d0
[  407.044328][ T4020] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  407.045508][ T4020] page dumped because: still mapped when deleted
[  407.046601][ T4020] CPU: 1 PID: 4020 Comm: syz.0.99 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  407.048331][ T4020] Hardware name: linux,dummy-virt (DT)
[  407.049222][ T4020] Call trace:
[  407.050073][ T4020]  dump_backtrace+0x94/0xec
[  407.050958][ T4020]  show_stack+0x18/0x24
[  407.051755][ T4020]  dump_stack_lvl+0x78/0x90
[  407.052833][ T4020]  dump_stack+0x18/0x24
[  407.053829][ T4020]  filemap_unaccount_folio+0x118/0x278
[  407.054740][ T4020]  __filemap_remove_folio+0x3c/0x178
[  407.055742][ T4020]  filemap_remove_folio+0x48/0xa8
[  407.056660][ T4020]  truncate_inode_folio+0x30/0x4c
[  407.057577][ T4020]  shmem_undo_range+0x208/0x620
[  407.058450][ T4020]  shmem_evict_inode+0x130/0x2dc
[  407.059377][ T4020]  evict+0xb4/0x198
[  407.060422][ T4020]  iput+0x100/0x1b8
[  407.061279][ T4020]  dentry_unlink_inode+0xc0/0x188
[  407.062068][ T4020]  __dentry_kill+0x7c/0x1d4
[  407.062856][ T4020]  dput.part.0+0x30/0xbc
[  407.063825][ T4020]  dput+0x4c/0x50
[  407.064574][ T4020]  __fput+0x110/0x2d4
[  407.065393][ T4020]  ____fput+0x10/0x1c
[  407.066308][ T4020]  task_work_run+0x78/0xd0
[  407.067264][ T4020]  do_notify_resume+0x134/0x164
[  407.068163][ T4020]  el0_svc+0xc8/0xf8
[  407.068960][ T4020]  el0t_64_sync_handler+0x100/0x12c
[  407.069842][ T4020]  el0t_64_sync+0x19c/0x1a0
[  407.072604][ T4020] BUG: Bad page cache in process syz.0.99  pfn:4d5de
[  407.073630][ T4020] page: refcount:4 mapcount:1 mapping:00000000db2c476b index:0x1 pfn:0x4d5de
[  407.074841][ T4020] memcg:f4f00000060ad000
[  407.075793][ T4020] aops:shmem_aops ino:430
[  407.076569][ T4020] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  407.078165][ T4020] raw: 01ffc0000004002d ffffc1ffc02cd5c8 ffffc1ffc02d8208 fdf00000070f14d0
[  407.083506][ T4020] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  407.087098][ T4020] page dumped because: still mapped when deleted
[  407.091380][ T4020] CPU: 1 PID: 4020 Comm: syz.0.99 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  407.102383][ T4020] Hardware name: linux,dummy-virt (DT)
[  407.102994][ T4020] Call trace:
[  407.103509][ T4020]  dump_backtrace+0x94/0xec
[  407.104303][ T4020]  show_stack+0x18/0x24
[  407.104922][ T4020]  dump_stack_lvl+0x78/0x90
[  407.105620][ T4020]  dump_stack+0x18/0x24
[  407.106299][ T4020]  filemap_unaccount_folio+0x118/0x278
[  407.107099][ T4020]  __filemap_remove_folio+0x3c/0x178
[  407.107855][ T4020]  filemap_remove_folio+0x48/0xa8
[  407.108481][ T4020]  truncate_inode_folio+0x30/0x4c
[  407.109165][ T4020]  shmem_undo_range+0x208/0x620
[  407.109998][ T4020]  shmem_evict_inode+0x130/0x2dc
[  407.110689][ T4020]  evict+0xb4/0x198
[  407.111365][ T4020]  iput+0x100/0x1b8
[  407.111950][ T4020]  dentry_unlink_inode+0xc0/0x188
[  407.112563][ T4020]  __dentry_kill+0x7c/0x1d4
[  407.113330][ T4020]  dput.part.0+0x30/0xbc
[  407.114049][ T4020]  dput+0x4c/0x50
[  407.114562][ T4020]  __fput+0x110/0x2d4
[  407.115325][ T4020]  ____fput+0x10/0x1c
[  407.115817][ T4020]  task_work_run+0x78/0xd0
[  407.116338][ T4020]  do_notify_resume+0x134/0x164
[  407.116961][ T4020]  el0_svc+0xc8/0xf8
[  407.117669][ T4020]  el0t_64_sync_handler+0x100/0x12c
[  407.118396][ T4020]  el0t_64_sync+0x19c/0x1a0
[  407.334054][ T4022] BUG: Bad page cache in process syz.0.100  pfn:4b70e
[  407.335583][ T4022] page: refcount:4 mapcount:1 mapping:000000006ce384c7 index:0x0 pfn:0x4b70e
[  407.336653][ T4022] memcg:f4f00000060ad000
[  407.339245][ T4022] aops:shmem_aops ino:27
[  407.340063][ T4022] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  407.341362][ T4022] raw: 01ffc0000004002d ffffc1ffc02d9b48 ffffc1ffc02dadc8 f7f0000003b87730
[  407.342339][ T4022] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  407.343294][ T4022] page dumped because: still mapped when deleted
[  407.344063][ T4022] CPU: 1 PID: 4022 Comm: syz.0.100 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  407.345251][ T4022] Hardware name: linux,dummy-virt (DT)
[  407.346014][ T4022] Call trace:
[  407.346564][ T4022]  dump_backtrace+0x94/0xec
[  407.347400][ T4022]  show_stack+0x18/0x24
[  407.348099][ T4022]  dump_stack_lvl+0x78/0x90
[  407.350738][ T4022]  dump_stack+0x18/0x24
[  407.351493][ T4022]  filemap_unaccount_folio+0x118/0x278
[  407.352410][ T4022]  __filemap_remove_folio+0x3c/0x178
[  407.353253][ T4022]  filemap_remove_folio+0x48/0xa8
[  407.354077][ T4022]  truncate_inode_folio+0x30/0x4c
[  407.354916][ T4022]  shmem_undo_range+0x208/0x620
[  407.355748][ T4022]  shmem_evict_inode+0x130/0x2dc
[  407.356516][ T4022]  evict+0xb4/0x198
[  407.357205][ T4022]  iput+0x100/0x1b8
[  407.357879][ T4022]  dentry_unlink_inode+0xc0/0x188
[  407.358657][ T4022]  __dentry_kill+0x7c/0x1d4
[  407.359523][ T4022]  dput.part.0+0x30/0xbc
[  407.361895][ T4022]  dput+0x4c/0x50
[  407.362653][ T4022]  __fput+0x110/0x2d4
[  407.363488][ T4022]  ____fput+0x10/0x1c
[  407.364214][ T4022]  task_work_run+0x78/0xd0
[  407.365018][ T4022]  do_notify_resume+0x134/0x164
[  407.365951][ T4022]  el0_svc+0xc8/0xf8
[  407.366784][ T4022]  el0t_64_sync_handler+0x100/0x12c
[  407.367708][ T4022]  el0t_64_sync+0x19c/0x1a0
[  407.372104][ T4022] BUG: Bad page cache in process syz.0.100  pfn:4b6b7
[  407.374095][ T4022] page: refcount:4 mapcount:1 mapping:000000006ce384c7 index:0x1 pfn:0x4b6b7
[  407.375317][ T4022] memcg:f4f00000060ad000
[  407.377951][ T4022] aops:shmem_aops ino:27
[  407.378735][ T4022] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  407.380731][ T4022] raw: 01ffc0000004002d ffffc1ffc02dc388 ffffc1ffc02d6888 f7f0000003b87730
[  407.381958][ T4022] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  407.383387][ T4022] page dumped because: still mapped when deleted
[  407.384281][ T4022] CPU: 1 PID: 4022 Comm: syz.0.100 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  407.385936][ T4022] Hardware name: linux,dummy-virt (DT)
[  407.386786][ T4022] Call trace:
[  407.387393][ T4022]  dump_backtrace+0x94/0xec
[  407.388187][ T4022]  show_stack+0x18/0x24
[  407.388966][ T4022]  dump_stack_lvl+0x78/0x90
[  407.389880][ T4022]  dump_stack+0x18/0x24
[  407.390737][ T4022]  filemap_unaccount_folio+0x118/0x278
[  407.391681][ T4022]  __filemap_remove_folio+0x3c/0x178
[  407.392632][ T4022]  filemap_remove_folio+0x48/0xa8
[  407.393607][ T4022]  truncate_inode_folio+0x30/0x4c
[  407.394644][ T4022]  shmem_undo_range+0x208/0x620
[  407.395533][ T4022]  shmem_evict_inode+0x130/0x2dc
[  407.396325][ T4022]  evict+0xb4/0x198
[  407.397047][ T4022]  iput+0x100/0x1b8
[  407.397796][ T4022]  dentry_unlink_inode+0xc0/0x188
[  407.398803][ T4022]  __dentry_kill+0x7c/0x1d4
[  407.399784][ T4022]  dput.part.0+0x30/0xbc
[  407.400787][ T4022]  dput+0x4c/0x50
[  407.401553][ T4022]  __fput+0x110/0x2d4
[  407.402227][ T4022]  ____fput+0x10/0x1c
[  407.403044][ T4022]  task_work_run+0x78/0xd0
[  407.404854][ T4022]  do_notify_resume+0x134/0x164
[  407.405842][ T4022]  el0_svc+0xc8/0xf8
[  407.407317][ T4022]  el0t_64_sync_handler+0x100/0x12c
[  407.408485][ T4022]  el0t_64_sync+0x19c/0x1a0
[  407.589441][ T4024] BUG: Bad page cache in process syz.0.101  pfn:4b66d
[  407.590938][ T4024] page: refcount:4 mapcount:1 mapping:00000000007eb9af index:0x0 pfn:0x4b66d
[  407.592819][ T4024] memcg:f4f00000060ad000
[  407.593872][ T4024] aops:shmem_aops ino:431
[  407.595102][ T4024] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  407.597670][ T4024] raw: 01ffc0000004002d ffffc1ffc02cb208 ffffc1ffc02d78c8 f7f00000070f3d70
[  407.598845][ T4024] raw: 0000000000000000 0000000000000000 0000000400000000 f4f00000060ad000
[  407.600242][ T4024] page dumped because: still mapped when deleted
[  407.601457][ T4024] CPU: 1 PID: 4024 Comm: syz.0.101 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  407.604314][ T4024] Hardware name: linux,dummy-virt (DT)
[  407.606439][ T4024] Call trace:
[  407.608245][ T4024]  dump_backtrace+0x94/0xec
[  407.610051][ T4024]  show_stack+0x18/0x24
[  407.612836][ T4024]  dump_stack_lvl+0x78/0x90
[  407.616273][ T4024]  dump_stack+0x18/0x24
[  407.618607][ T4024]  filemap_unaccount_folio+0x118/0x278
[  407.622015][ T4024]  __filemap_remove_folio+0x3c/0x178
[  407.624480][ T4024]  filemap_remove_folio+0x48/0xa8
[  407.625253][ T4024]  truncate_inode_folio+0x30/0x4c
[  407.626076][ T4024]  shmem_undo_range+0x208/0x620
[  407.626887][ T4024]  shmem_evict_inode+0x130/0x2dc
[  407.627924][ T4024]  evict+0xb4/0x198
[  407.628701][ T4024]  iput+0x100/0x1b8
[  407.629585][ T4024]  dentry_unlink_inode+0xc0/0x188
[  407.631424][ T4024]  __dentry_kill+0x7c/0x1d4
[  407.632980][ T4024]  dput.part.0+0x30/0xbc
[  407.634555][ T4024]  dput+0x4c/0x50
[  407.636108][ T4024]  __fput+0x110/0x2d4
[  407.637691][ T4024]  ____fput+0x10/0x1c
[  407.639335][ T4024]  task_work_run+0x78/0xd0
[  407.641124][ T4024]  do_notify_resume+0x134/0x164
[  407.642955][ T4024]  el0_svc+0xc8/0xf8
[  407.644865][ T4024]  el0t_64_sync_handler+0x100/0x12c
[  407.646794][ T4024]  el0t_64_sync+0x19c/0x1a0
[  407.651920][ T4024] BUG: Bad page cache in process syz.0.101  pfn:4b5e3
[  407.654460][ T4024] page: refcount:4 mapcount:1 mapping:00000000007eb9af index:0x1 pfn:0x4b5e3
[  407.657691][ T4024] memcg:f4f00000060ad000
[  407.659154][ T4024] aops:shmem_aops ino:431
[  407.661433][ T4024] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0)
[  407.665834][ T4024] raw: 01ffc0000004002d ffffc1ffc02d9b48 ffffc1ffc02f7ac8 f7f00000070f3d70
[  407.668920][ T4024] raw: 0000000000000001 0000000000000000 0000000400000000 f4f00000060ad000
[  407.672428][ T4024] page dumped because: still mapped when deleted
[  407.675912][ T4024] CPU: 1 PID: 4024 Comm: syz.0.101 Tainted: G    B              6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0
[  407.683759][ T4024] Hardware name: linux,dummy-virt (DT)
[  407.684758][ T4024] Call trace:
[  407.685358][ T4024]  dump_backtrace+0x94/0xec
[  407.686195][ T4024]  show_stack+0x18/0x24
[  407.686986][ T4024]  dump_stack_lvl+0x78/0x90
[  407.687887][ T4024]  dump_stack+0x18/0x24
[  407.688672][ T4024]  filemap_unaccount_folio+0x118/0x278
[  407.689555][ T4024]  __filemap_remove_folio+0x3c/0x178
[  407.695649][ T4024]  filemap_remove_folio+0x48/0xa8
[  407.696878][ T4024]  truncate_inode_folio+0x30/0x4c
[  407.698329][ T4024]  shmem_undo_range+0x208/0x620
[  407.699294][ T4024]  shmem_evict_inode+0x130/0x2dc
[  407.702467][ T4024]  evict+0xb4/0x198
[  407.703263][ T4024]  iput+0x100/0x1b8
[  407.703935][ T4024]  dentry_unlink_inode+0xc0/0x188
[  407.704684][ T4024]  __dentry_kill+0x7c/0x1d4
[  407.705551][ T4024]  dput.part.0+0x30/0xbc
[  407.706233][ T4024]  dput+0x4c/0x50
[  407.706903][ T4024]  __fput+0x110/0x2d4
[  407.707609][ T4024]  ____fput+0x10/0x1c
[  407.711356][ T4024]  task_work_run+0x78/0xd0
[  407.712248][ T4024]  do_notify_resume+0x134/0x164
[  407.713735][ T4024]  el0_svc+0xc8/0xf8
[  407.714499][ T4024]  el0t_64_sync_handler+0x100/0x12c
[  407.715436][ T4024]  el0t_64_sync+0x19c/0x1a0