Warning: Permanently added '[localhost]:11779' (ED25519) to the list of known hosts. 1970/01/01 00:05:06 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:05:10 parsed 1 programs [ 322.770861][ T3520] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 334.555329][ T3527] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 334.585960][ T3527] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 336.674844][ T3527] hsr_slave_0: entered promiscuous mode [ 336.726292][ T3527] hsr_slave_1: entered promiscuous mode [ 338.461717][ T3527] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 338.519801][ T3527] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 338.559806][ T3527] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 338.590068][ T3527] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 340.562666][ T3527] 8021q: adding VLAN 0 to HW filter on device bond0 [ 347.204025][ T3527] veth0_vlan: entered promiscuous mode [ 347.281150][ T3527] veth1_vlan: entered promiscuous mode [ 347.525376][ T3527] veth0_macvtap: entered promiscuous mode [ 347.569972][ T3527] veth1_macvtap: entered promiscuous mode [ 347.808157][ T3527] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.811088][ T3527] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.812091][ T3527] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 347.813203][ T3527] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 349.572802][ T782] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 349.751856][ T782] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 349.925790][ T782] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 350.101241][ T782] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 352.172331][ T782] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 352.237575][ T782] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 352.308850][ T782] bond0 (unregistering): Released all slaves [ 352.546735][ T782] hsr_slave_0: left promiscuous mode [ 352.628718][ T782] hsr_slave_1: left promiscuous mode [ 352.760750][ T782] veth1_macvtap: left promiscuous mode [ 352.762360][ T782] veth0_macvtap: left promiscuous mode [ 352.765311][ T782] veth1_vlan: left promiscuous mode [ 352.766622][ T782] veth0_vlan: left promiscuous mode 1970/01/01 00:06:03 executed programs: 0 [ 368.077029][ T3716] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 368.149084][ T3716] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 370.671389][ T3716] hsr_slave_0: entered promiscuous mode [ 370.738581][ T3716] hsr_slave_1: entered promiscuous mode [ 372.954095][ T3716] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 373.008415][ T3716] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 373.041559][ T3716] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 373.071755][ T3716] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 374.899193][ T3716] 8021q: adding VLAN 0 to HW filter on device bond0 [ 381.660841][ T3716] veth0_vlan: entered promiscuous mode [ 381.790375][ T3716] veth1_vlan: entered promiscuous mode [ 382.011066][ T3716] veth0_macvtap: entered promiscuous mode [ 382.051261][ T3716] veth1_macvtap: entered promiscuous mode [ 382.272592][ T3716] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.275833][ T3716] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.277005][ T3716] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.278044][ T3716] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:06:22 executed programs: 2 [ 383.105309][ T3851] BUG: Bad page cache in process syz.0.15 pfn:4a961 [ 383.106336][ T3851] page: refcount:4 mapcount:1 mapping:000000007efdb730 index:0x0 pfn:0x4a961 [ 383.107758][ T3851] memcg:f8f00000073c6000 [ 383.109078][ T3851] aops:shmem_aops ino:401 [ 383.110579][ T3851] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0) [ 383.112808][ T3851] raw: 01ffc0000004002d ffffc1ffc01bf9c8 ffffc1ffc038adc8 f0f00000061e6ab0 [ 383.114012][ T3851] raw: 0000000000000000 0000000000000000 0000000400000000 f8f00000073c6000 [ 383.115039][ T3851] page dumped because: still mapped when deleted [ 383.116125][ T3851] CPU: 1 PID: 3851 Comm: syz.0.15 Not tainted 6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0 [ 383.117413][ T3851] Hardware name: linux,dummy-virt (DT) [ 383.118401][ T3851] Call trace: [ 383.118985][ T3851] dump_backtrace+0x94/0xec [ 383.120175][ T3851] show_stack+0x18/0x24 [ 383.121152][ T3851] dump_stack_lvl+0x78/0x90 [ 383.121797][ T3851] dump_stack+0x18/0x24 [ 383.122440][ T3851] filemap_unaccount_folio+0x118/0x278 [ 383.123586][ T3851] __filemap_remove_folio+0x3c/0x178 [ 383.124936][ T3851] filemap_remove_folio+0x48/0xa8 [ 383.126380][ T3851] truncate_inode_folio+0x30/0x4c [ 383.127258][ T3851] shmem_undo_range+0x208/0x620 [ 383.127959][ T3851] shmem_evict_inode+0x130/0x2dc [ 383.128903][ T3851] evict+0xb4/0x198 [ 383.129547][ T3851] iput+0x100/0x1b8 [ 383.130174][ T3851] dentry_unlink_inode+0xc0/0x188 [ 383.132003][ T3851] __dentry_kill+0x7c/0x1d4 [ 383.132757][ T3851] dput.part.0+0x30/0xbc [ 383.133433][ T3851] dput+0x4c/0x50 [ 383.134278][ T3851] __fput+0x110/0x2d4 [ 383.135906][ T3851] ____fput+0x10/0x1c [ 383.136832][ T3851] task_work_run+0x78/0xd0 [ 383.137481][ T3851] do_notify_resume+0x134/0x164 [ 383.138788][ T3851] el0_svc+0xc8/0xf8 [ 383.139517][ T3851] el0t_64_sync_handler+0x100/0x12c [ 383.140503][ T3851] el0t_64_sync+0x19c/0x1a0 [ 383.141346][ T3851] Disabling lock debugging due to kernel taint [ 383.182361][ T3851] BUG: Bad page cache in process syz.0.15 pfn:4e2b7 [ 383.184070][ T3851] page: refcount:4 mapcount:1 mapping:000000007efdb730 index:0x1 pfn:0x4e2b7 [ 383.186113][ T3851] memcg:f8f00000073c6000 [ 383.187529][ T3851] aops:shmem_aops ino:401 [ 383.188878][ T3851] flags: 0x1ffc0000004002d(locked|referenced|uptodate|lru|swapbacked|node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0) [ 383.190947][ T3851] raw: 01ffc0000004002d ffffc1ffc02a5848 ffffc1ffc02d1a88 f0f00000061e6ab0 [ 383.191946][ T3851] raw: 0000000000000001 0000000000000000 0000000400000000 f8f00000073c6000 [ 383.192843][ T3851] page dumped because: still mapped when deleted [ 383.194435][ T3851] CPU: 1 PID: 3851 Comm: syz.0.15 Tainted: G B 6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0 [ 383.195732][ T3851] Hardware name: linux,dummy-virt (DT) [ 383.196355][ T3851] Call trace: [ 383.197321][ T3851] dump_backtrace+0x94/0xec [ 383.198777][ T3851] show_stack+0x18/0x24 [ 383.199658][ T3851] dump_stack_lvl+0x78/0x90 [ 383.200299][ T3851] dump_stack+0x18/0x24 [ 383.200921][ T3851] filemap_unaccount_folio+0x118/0x278 [ 383.201590][ T3851] __filemap_remove_folio+0x3c/0x178 [ 383.202302][ T3851] filemap_remove_folio+0x48/0xa8 [ 383.203300][ T3851] truncate_inode_folio+0x30/0x4c [ 383.204128][ T3851] shmem_undo_range+0x208/0x620 [ 383.204850][ T3851] shmem_evict_inode+0x130/0x2dc [ 383.205537][ T3851] evict+0xb4/0x198 [ 383.206163][ T3851] iput+0x100/0x1b8 [ 383.207074][ T3851] dentry_unlink_inode+0xc0/0x188 [ 383.208617][ T3851] __dentry_kill+0x7c/0x1d4 [ 383.210268][ T3851] dput.part.0+0x30/0xbc [ 383.211182][ T3851] dput+0x4c/0x50 [ 383.212801][ T3851] __fput+0x110/0x2d4 [ 383.214139][ T3851] ____fput+0x10/0x1c [ 383.215557][ T3851] task_work_run+0x78/0xd0 [ 383.217253][ T3851] do_notify_resume+0x134/0x164 [ 383.218366][ T3851] el0_svc+0xc8/0xf8 [ 383.219323][ T3851] el0t_64_sync_handler+0x100/0x12c [ 383.219873][ T3851] el0t_64_sync+0x19c/0x1a0 [ 383.258157][ T3852] ------------[ cut here ]------------ [ 383.265888][ T3852] kernel BUG at mm/rmap.c:1507! [ 383.266906][ T3852] Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP [ 383.268076][ T3852] Modules linked in: [ 383.269714][ T3852] CPU: 0 PID: 3852 Comm: syz.0.15 Tainted: G B 6.10.0-rc7-syzkaller-00266-g4d145e3f830b-dirty #0 [ 383.270915][ T3852] Hardware name: linux,dummy-virt (DT) [ 383.271780][ T3852] pstate: a0400009 (NzCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 383.272765][ T3852] pc : folio_remove_rmap_ptes+0x1b8/0x1c8 [ 383.276829][ T3852] lr : unmap_page_range+0x8c4/0x1190 [ 383.278080][ T3852] sp : ffff800089473840 [ 383.279498][ T3852] x29: ffff800089473840 x28: 00000000209a2000 x27: 006000004a9618c3 [ 383.282391][ T3852] x26: ffff800089473ae8 x25: fff0000006202d00 x24: ffff800089473a10 [ 383.285411][ T3852] x23: 00000000209a0000 x22: 00000000209a1000 x21: 0000000000000000 [ 383.286521][ T3852] x20: ffff800089473988 x19: ffffc1ffc02a5840 x18: ffff800089473aa8 [ 383.287652][ T3852] x17: 0000000000000000 x16: 1efe000000e5a6a1 x15: 0000000000000001 [ 383.288659][ T3852] x14: ffffffffffffffff x13: 0000000000000000 x12: 0000000000000000 [ 383.289760][ T3852] x11: ffffc1ffc02a5840 x10: ffffc1ffc02a5840 x9 : 00000000609a0000 [ 383.292846][ T3852] x8 : 0000000000000070 x7 : f3f0000005ff3700 x6 : 000000004a961000 [ 383.296516][ T3852] x5 : 00000000209a0000 x4 : fcf000000637f180 x3 : fcf000000637f180 [ 383.300061][ T3852] x2 : 0000000000000001 x1 : ffffc1ffc02a5840 x0 : 00000000ffffffff [ 383.302904][ T3852] Call trace: [ 383.304447][ T3852] folio_remove_rmap_ptes+0x1b8/0x1c8 [ 383.307019][ T3852] unmap_page_range+0x8c4/0x1190 [ 383.307722][ T3852] unmap_single_vma.constprop.0+0x4c/0x84 [ 383.308411][ T3852] unmap_vmas+0x7c/0x170 [ 383.309022][ T3852] exit_mmap+0xc0/0x288 [ 383.309607][ T3852] __mmput+0x3c/0x170 [ 383.310159][ T3852] mmput+0x50/0x5c [ 383.311162][ T3852] do_exit+0x270/0x98c [ 383.311795][ T3852] do_group_exit+0x34/0x90 [ 383.312417][ T3852] copy_siginfo_to_user+0x0/0xec [ 383.313120][ T3852] do_signal+0x94/0x1450 [ 383.313814][ T3852] do_notify_resume+0xd8/0x164 [ 383.314331][ T3852] el0_svc+0xc8/0xf8 [ 383.314874][ T3852] el0t_64_sync_handler+0x100/0x12c [ 383.315472][ T3852] el0t_64_sync+0x19c/0x1a0 [ 383.316576][ T3852] Code: 940196b2 f94013f5 17ffffc1 f90013f5 (d4210000) [ 383.317776][ T3852] ---[ end trace 0000000000000000 ]--- [ 383.318713][ T3852] Kernel panic - not syncing: Oops - BUG: Fatal exception [ 383.319702][ T3852] SMP: stopping secondary CPUs [ 383.320999][ T3852] Kernel Offset: disabled [ 383.321558][ T3852] CPU features: 0x00,00000006,8f17bd7c,1767f6bf [ 383.322638][ T3852] Memory Limit: none [ 383.323516][ T3852] Rebooting in 86400 seconds..