Warning: Permanently added '[localhost]:59809' (ED25519) to the list of known hosts.
2025/08/02 20:52:25 ignoring optional flag "sandboxArg"="0"
2025/08/02 20:52:27 parsed 1 programs
[  137.245103][ T5642] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  137.995895][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[  137.998991][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  142.225418][ T5398] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  142.230072][ T5398] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  142.235244][ T5398] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  142.241019][ T5398] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  142.245404][ T5398] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  144.295557][ T5698] chnl_net:caif_netlink_parms(): no params data found
[  144.415444][ T5698] bridge0: port 1(bridge_slave_0) entered blocking state
[  144.418591][ T5698] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.421682][ T5698] bridge_slave_0: entered allmulticast mode
[  144.433378][ T5698] bridge_slave_0: entered promiscuous mode
[  144.444004][ T5698] bridge0: port 2(bridge_slave_1) entered blocking state
[  144.447536][ T5698] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.450647][ T5698] bridge_slave_1: entered allmulticast mode
[  144.463796][ T5698] bridge_slave_1: entered promiscuous mode
[  144.522681][ T5698] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  144.529280][ T5698] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  144.579983][ T5698] team0: Port device team_slave_0 added
[  144.595524][ T5698] team0: Port device team_slave_1 added
[  144.639484][ T5698] batman_adv: batadv0: Adding interface: batadv_slave_0
[  144.652027][ T5698] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.672004][ T5698] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  144.692053][ T5698] batman_adv: batadv0: Adding interface: batadv_slave_1
[  144.695181][ T5698] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.722568][ T5698] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  144.775063][ T5698] hsr_slave_0: entered promiscuous mode
[  144.778488][ T5698] hsr_slave_1: entered promiscuous mode
[  145.549867][ T5698] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  145.566366][ T5698] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  145.583559][ T5698] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  145.602474][ T5698] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  145.770599][ T5698] 8021q: adding VLAN 0 to HW filter on device bond0
[  145.808386][ T5698] 8021q: adding VLAN 0 to HW filter on device team0
[  145.828487][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.831701][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  145.863288][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.866556][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  146.260044][ T5698] 8021q: adding VLAN 0 to HW filter on device batadv0
[  146.335146][ T5698] veth0_vlan: entered promiscuous mode
[  146.360485][ T5698] veth1_vlan: entered promiscuous mode
[  146.401912][ T5698] veth0_macvtap: entered promiscuous mode
[  146.438145][ T5698] veth1_macvtap: entered promiscuous mode
[  146.479115][ T5698] batman_adv: batadv0: Interface activated: batadv_slave_0
[  146.505338][ T5698] batman_adv: batadv0: Interface activated: batadv_slave_1
[  146.535446][ T1092] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  146.539658][ T1092] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  146.553923][ T1092] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.557780][ T1092] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.823488][ T1092] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.924253][ T1092] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.015466][ T1092] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.839471][ T1045] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.856050][ T1045] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.903118][   T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.906667][   T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.947277][ T1092] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/08/02 20:52:43 executed programs: 0
[  148.977166][ T4701] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  148.981659][ T4701] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  148.992704][ T4701] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  148.997451][ T4701] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  149.001020][ T4701] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  149.393382][ T1092] bridge_slave_1: left allmulticast mode
[  149.395839][ T1092] bridge_slave_1: left promiscuous mode
[  149.398581][ T1092] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.438156][ T1092] bridge_slave_0: left allmulticast mode
[  149.440660][ T1092] bridge_slave_0: left promiscuous mode
[  149.449901][ T1092] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.704701][ T1092] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  149.711307][ T1092] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  149.718086][ T1092] bond0 (unregistering): Released all slaves
[  149.743522][ T5788] chnl_net:caif_netlink_parms(): no params data found
[  149.857466][ T1092] hsr_slave_0: left promiscuous mode
[  149.888099][ T1092] hsr_slave_1: left promiscuous mode
[  149.892704][ T1092] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  149.896102][ T1092] batman_adv: batadv0: Removing interface: batadv_slave_0
[  149.913566][ T1092] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  149.916975][ T1092] batman_adv: batadv0: Removing interface: batadv_slave_1
[  149.939264][ T1092] veth1_macvtap: left promiscuous mode
[  149.942816][ T1092] veth0_macvtap: left promiscuous mode
[  149.945432][ T1092] veth1_vlan: left promiscuous mode
[  149.947862][ T1092] veth0_vlan: left promiscuous mode
[  150.634686][ T1092] team0 (unregistering): Port device team_slave_1 removed
[  150.682623][ T1092] team0 (unregistering): Port device team_slave_0 removed
[  151.034128][ T4701] Bluetooth: hci0: command tx timeout
[  151.134464][ T5788] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.152926][ T5788] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.156583][ T5788] bridge_slave_0: entered allmulticast mode
[  151.184569][ T5788] bridge_slave_0: entered promiscuous mode
[  151.193351][ T5788] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.197253][ T5788] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.200753][ T5788] bridge_slave_1: entered allmulticast mode
[  151.223835][ T5788] bridge_slave_1: entered promiscuous mode
[  151.321150][ T5788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  151.344519][ T5788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  151.666283][ T5788] team0: Port device team_slave_0 added
[  151.670940][ T5788] team0: Port device team_slave_1 added
[  151.869499][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_0
[  151.874474][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.923651][ T5788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  151.956522][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_1
[  151.959585][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.992175][ T5788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  152.127429][ T5788] hsr_slave_0: entered promiscuous mode
[  152.136551][ T5788] hsr_slave_1: entered promiscuous mode
[  152.756722][ T5788] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  152.785063][ T5788] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  152.794082][ T5788] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  152.814297][ T5788] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  152.968305][ T5788] 8021q: adding VLAN 0 to HW filter on device bond0
[  153.000590][ T5788] 8021q: adding VLAN 0 to HW filter on device team0
[  153.048277][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.052286][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  153.073694][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.077561][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  153.116338][ T4701] Bluetooth: hci0: command tx timeout
[  153.464640][ T5788] 8021q: adding VLAN 0 to HW filter on device batadv0
[  153.538932][ T5788] veth0_vlan: entered promiscuous mode
[  153.561409][ T5788] veth1_vlan: entered promiscuous mode
[  153.607969][ T5788] veth0_macvtap: entered promiscuous mode
[  153.638029][ T5788] veth1_macvtap: entered promiscuous mode
[  153.678516][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_0
[  153.693584][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_1
[  153.727608][ T1037] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  153.731780][ T1037] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  153.740999][ T1037] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  153.754704][ T1037] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  153.860671][ T1037] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.874875][ T1037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.911782][ T1037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.920689][ T1037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/08/02 20:52:48 executed programs: 2
[  154.470748][ T5865] loop0: detected capacity change from 0 to 32768
[  154.489680][ T5865] XFS: ikeep mount option is deprecated.
[  154.556588][ T5865] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  154.673267][ T5865] XFS (loop0): Ending clean mount
[  154.680114][ T5865] XFS (loop0): Quotacheck needed: Please wait.
[  154.738260][ T5865] XFS (loop0): Quotacheck: Done.
[  154.893174][ T5788] BUG: Bad page state in process syz-executor  pfn:54801
[  154.897418][ T5788] page does not match folio
[  154.900482][ T5788] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x54801
[  154.906611][ T1037] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x54800
[  154.911408][ T1037] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  154.942007][ T1037] flags: 0x4fff0800000004c(referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  154.946218][ T1037] raw: 04fff0800000004c dead000000000100 dead000000000122 0000000000000000
[  154.949973][ T1037] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  154.963891][ T5788] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  154.967332][ T5788] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[  154.971601][ T5788] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[  155.001692][ T1037] head: 04fff0800000004c dead000000000100 dead000000000122 0000000000000000
[  155.010933][ T5788] page dumped because: nonzero pincount
[  155.015051][ T1037] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  155.019148][ T1037] head: 04fff00000000000 ffffea0001520001 00000000ffffffff ffffffffffffffff
[  155.038863][ T5788] page_owner tracks the page as allocated
[  155.041728][ T5788] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5865, tgid 5864 (syz.0.16), ts 154761306814, free_ts 143299858148
[  155.063737][ T1037] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[  155.067766][ T1037] page dumped because: VM_BUG_ON_PAGE(page_ref_count(page) == 0)
[  155.071749][ T1037] page_owner tracks the page as allocated
[  155.102378][ T5788]  post_alloc_hook+0x240/0x2a0
[  155.105036][ T5788]  get_page_from_freelist+0x21e4/0x22c0
[  155.107552][ T5788]  __alloc_frozen_pages_noprof+0x181/0x370
[  155.110161][ T5788]  alloc_pages_mpol+0x232/0x4a0
[  155.113583][ T1037] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5865, tgid 5864 (syz.0.16), ts 154761306814, free_ts 143299865555
[  155.141942][ T5788]  alloc_pages_noprof+0xa9/0x190
[  155.144402][ T5788]  folio_alloc_noprof+0x1e/0x30
[  155.146604][ T5788]  filemap_alloc_folio_noprof+0xdf/0x470
[  155.149265][ T5788]  __filemap_get_folio+0x3f2/0xaf0
[  155.151593][ T5788]  iomap_write_begin+0x5d7/0x1c70
[  155.155390][ T1037]  post_alloc_hook+0x240/0x2a0
[  155.159268][ T1037]  get_page_from_freelist+0x21e4/0x22c0
[  155.173599][ T1037]  __alloc_frozen_pages_noprof+0x181/0x370
[  155.176611][ T1037]  alloc_pages_mpol+0x232/0x4a0
[  155.179283][ T1037]  alloc_pages_noprof+0xa9/0x190
[  155.184493][ T5788]  iomap_file_buffered_write+0x441/0x9b0
[  155.187014][ T5788]  xfs_file_buffered_write+0x209/0x8a0
[  155.189493][ T5788]  vfs_write+0x54b/0xa90
[  155.191401][ T5788]  ksys_write+0x145/0x250
[  155.195864][ T4701] Bluetooth: hci0: command tx timeout
[  155.201925][ T1037]  folio_alloc_noprof+0x1e/0x30
[  155.204300][ T1037]  filemap_alloc_folio_noprof+0xdf/0x470
[  155.207330][ T1037]  __filemap_get_folio+0x3f2/0xaf0
[  155.209844][ T1037]  iomap_write_begin+0x5d7/0x1c70
[  155.221977][ T5788]  do_syscall_64+0xfa/0x3b0
[  155.224654][ T5788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.227487][ T5788] page last free pid 77 tgid 77 stack trace:
[  155.230239][ T5788]  free_unref_folios+0xdbd/0x1520
[  155.242372][ T1037]  iomap_file_buffered_write+0x441/0x9b0
[  155.246018][ T1037]  xfs_file_buffered_write+0x209/0x8a0
[  155.249517][ T1037]  vfs_write+0x54b/0xa90
[  155.252838][ T5788]  shrink_folio_list+0x2977/0x4cd0
[  155.255537][ T5788]  evict_folios+0x47f2/0x58b0
[  155.258068][ T5788]  try_to_shrink_lruvec+0x8a3/0xb50
[  155.260567][ T5788]  shrink_one+0x21b/0x7c0
[  155.273987][ T1037]  ksys_write+0x145/0x250
[  155.276265][ T1037]  do_syscall_64+0xfa/0x3b0
[  155.278465][ T1037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.281112][ T1037] page last free pid 77 tgid 77 stack trace:
[  155.284594][ T5788]  shrink_node+0x314e/0x3760
[  155.287404][ T5788]  kswapd+0x147c/0x2830
[  155.289726][ T5788]  kthread+0x711/0x8a0
[  155.291749][ T5788]  ret_from_fork+0x3f9/0x770
[  155.301918][ T1037]  free_unref_folios+0xdbd/0x1520
[  155.304502][ T1037]  shrink_folio_list+0x2977/0x4cd0
[  155.307176][ T1037]  evict_folios+0x47f2/0x58b0
[  155.309754][ T1037]  try_to_shrink_lruvec+0x8a3/0xb50
[  155.313192][ T5788]  ret_from_fork_asm+0x1a/0x30
[  155.315306][ T5788] Modules linked in:
[  155.323385][ T5788] CPU: 0 UID: 0 PID: 5788 Comm: syz-executor Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) 
[  155.323405][ T5788] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.323412][ T5788] Call Trace:
[  155.323417][ T5788]  <TASK>
[  155.323422][ T5788]  dump_stack_lvl+0x189/0x250
[  155.323443][ T5788]  ? __pfx_dump_stack_lvl+0x10/0x10
[  155.323456][ T5788]  ? __pfx_print_modules+0x10/0x10
[  155.323473][ T5788]  ? percpu_ref_put+0x19/0x180
[  155.323488][ T5788]  ? percpu_ref_put+0x19/0x180
[  155.323502][ T5788]  bad_page+0x180/0x1c0
[  155.323515][ T5788]  free_tail_page_prepare+0x2c3/0x4f0
[  155.323536][ T5788]  free_unref_folios+0x7e9/0x1520
[  155.323560][ T5788]  folios_put_refs+0x559/0x640
[  155.323582][ T5788]  ? __pfx_folios_put_refs+0x10/0x10
[  155.323598][ T5788]  ? mlock_drain_local+0x79/0x490
[  155.323611][ T5788]  ? mlock_drain_local+0x28e/0x490
[  155.323629][ T5788]  truncate_inode_pages_range+0x346/0xda0
[  155.323647][ T5788]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  155.323657][ T5788]  ? lockdep_unlock+0x89/0x120
[  155.323694][ T5788]  ? __lock_acquire+0xab9/0xd20
[  155.323721][ T5788]  ? __pfx_xfs_fs_evict_inode+0x10/0x10
[  155.323739][ T5788]  ? _raw_spin_unlock_irq+0x23/0x50
[  155.323752][ T5788]  ? __pfx_xfs_fs_evict_inode+0x10/0x10
[  155.323765][ T5788]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.323782][ T5788]  ? __pfx_xfs_fs_evict_inode+0x10/0x10
[  155.323794][ T5788]  xfs_fs_evict_inode+0x67/0x90
[  155.323808][ T5788]  evict+0x501/0x9c0
[  155.323825][ T5788]  ? __pfx_evict+0x10/0x10
[  155.323841][ T5788]  ? do_raw_spin_unlock+0x4d/0x240
[  155.323857][ T5788]  evict_inodes+0x64c/0x6d0
[  155.323873][ T5788]  ? __pfx_evict_inodes+0x10/0x10
[  155.323886][ T5788]  ? xfs_fs_sync_fs+0x1cf/0x380
[  155.323903][ T5788]  generic_shutdown_super+0x9a/0x2c0
[  155.323915][ T5788]  kill_block_super+0x44/0x90
[  155.323928][ T5788]  xfs_kill_sb+0x15/0x50
[  155.323940][ T5788]  deactivate_locked_super+0xbc/0x130
[  155.323956][ T5788]  cleanup_mnt+0x425/0x4c0
[  155.323975][ T5788]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.323991][ T5788]  task_work_run+0x1d1/0x260
[  155.324008][ T5788]  ? __pfx_task_work_run+0x10/0x10
[  155.324019][ T5788]  ? __x64_sys_umount+0x122/0x160
[  155.324034][ T5788]  ? exit_to_user_mode_loop+0x40/0x110
[  155.324052][ T5788]  exit_to_user_mode_loop+0xec/0x110
[  155.324067][ T5788]  do_syscall_64+0x2bd/0x3b0
[  155.324076][ T5788]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.324090][ T5788]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.324101][ T5788]  ? clear_bhb_loop+0x60/0xb0
[  155.324115][ T5788]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.324125][ T5788] RIP: 0033:0x7f751098e117
[  155.324136][ T5788] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  155.324145][ T5788] RSP: 002b:00007fffe71ade48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  155.324156][ T5788] RAX: 0000000000000000 RBX: 00007f7510a0e08c RCX: 00007f751098e117
[  155.324161][ T5788] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffe71adf00
[  155.324165][ T5788] RBP: 00007fffe71adf00 R08: 0000000000000000 R09: 0000000000000000
[  155.324169][ T5788] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffe71aef90
[  155.324175][ T5788] R13: 00007f7510a0e08c R14: 0000000000025c42 R15: 00007fffe71aefd0
[  155.324192][ T5788]  </TASK>
[  155.324197][ T5788] Disabling lock debugging due to kernel taint
[  155.492873][ T1037]  shrink_one+0x21b/0x7c0
[  155.494848][ T1037]  shrink_node+0x314e/0x3760
[  155.496945][ T1037]  kswapd+0x147c/0x2830
[  155.498935][ T1037]  kthread+0x711/0x8a0
[  155.501088][ T1037]  ret_from_fork+0x3f9/0x770
[  155.504207][ T1037]  ret_from_fork_asm+0x1a/0x30
[  155.506542][ T1037] ------------[ cut here ]------------
[  155.508989][ T1037] kernel BUG at ./include/linux/mm.h:1034!
[  155.511602][ T1037] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[  155.514387][ T1037] CPU: 0 UID: 0 PID: 1037 Comm: kworker/u4:5 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full) 
[  155.519918][ T1037] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  155.524681][ T1037] Workqueue: loop0 loop_rootcg_workfn
[  155.527127][ T1037] RIP: 0010:folio_end_writeback+0x530/0x560
[  155.529686][ T1037] Code: ac c7 ff 48 89 df 48 c7 c6 a0 4f 94 8b e8 f8 f8 2f ff 90 0f 0b e8 90 ac c7 ff 48 89 df 48 c7 c6 40 4e 94 8b e8 e1 f8 2f ff 90 <0f> 0b e8 79 ac c7 ff 48 89 df 48 c7 c6 80 4b 94 8b e8 ca f8 2f ff
[  155.539088][ T1037] RSP: 0018:ffffc9000254f440 EFLAGS: 00010246
[  155.541815][ T1037] RAX: 6fff180b5e52d800 RBX: ffffea0001520000 RCX: 0000000000000000
[  155.545203][ T1037] RDX: 0000000000000000 RSI: ffffffff8be30ee0 RDI: 00000000ffffffff
[  155.548842][ T1037] RBP: 0000000000000000 R08: ffffffff8fa34537 R09: 1ffffffff1f468a6
[  155.552307][ T1037] R10: dffffc0000000000 R11: fffffbfff1f468a7 R12: ffff88805ffdb3e8
[  155.556604][ T1037] R13: dffffc0000000000 R14: ffffea0001520034 R15: ffff88805ffd6400
[  155.561241][ T1037] FS:  0000000000000000(0000) GS:ffff88808d21f000(0000) knlGS:0000000000000000
[  155.565287][ T1037] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  155.568260][ T1037] CR2: 00007fffc707d3c8 CR3: 000000003f3da000 CR4: 0000000000352ef0
[  155.572126][ T1037] Call Trace:
[  155.573662][ T1037]  <TASK>
[  155.575198][ T1037]  iomap_finish_ioend_buffered+0x223/0x5e0
[  155.577885][ T1037]  ? blkg_put+0x18d/0x240
[  155.579832][ T1037]  blk_update_request+0x57e/0xe60
[  155.582260][ T1037]  blk_mq_end_request+0x3e/0x70
[  155.584854][ T1037]  lo_rw_aio+0xd75/0xfa0
[  155.587163][ T1037]  ? __pfx_lo_rw_aio+0x10/0x10
[  155.589503][ T1037]  ? kthread_associate_blkcg+0x35a/0x600
[  155.592070][ T1037]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.594361][ T1037]  loop_process_work+0x835/0xf90
[  155.596577][ T1037]  ? __pfx_loop_process_work+0x10/0x10
[  155.599232][ T1037]  ? enqueue_task+0x343/0x420
[  155.601320][ T1037]  ? look_up_lock_class+0x74/0x170
[  155.603646][ T1037]  ? register_lock_class+0x51/0x320
[  155.605963][ T1037]  ? __lock_acquire+0xab9/0xd20
[  155.608703][ T1037]  ? process_scheduled_works+0x9ef/0x17b0
[  155.612962][ T1037]  ? _raw_spin_unlock_irq+0x23/0x50
[  155.615761][ T1037]  ? process_scheduled_works+0x9ef/0x17b0
[  155.618278][ T1037]  ? process_scheduled_works+0x9ef/0x17b0
[  155.620882][ T1037]  process_scheduled_works+0xade/0x17b0
[  155.623378][ T1037]  ? __pfx_process_scheduled_works+0x10/0x10
[  155.626123][ T1037]  worker_thread+0x8a0/0xda0
[  155.628499][ T1037]  kthread+0x711/0x8a0
[  155.630640][ T1037]  ? __pfx_worker_thread+0x10/0x10
[  155.632823][ T1037]  ? __pfx_kthread+0x10/0x10
[  155.634953][ T1037]  ? _raw_spin_unlock_irq+0x23/0x50
[  155.637340][ T1037]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.639603][ T1037]  ? __pfx_kthread+0x10/0x10
[  155.641689][ T1037]  ret_from_fork+0x3f9/0x770
[  155.643843][ T1037]  ? __pfx_ret_from_fork+0x10/0x10
[  155.646809][ T1037]  ? __pfx_kthread+0x10/0x10
[  155.649229][ T1037]  ret_from_fork_asm+0x1a/0x30
[  155.651632][ T1037]  </TASK>
[  155.653055][ T1037] Modules linked in:
[  155.655199][ T1037] ---[ end trace 0000000000000000 ]---
[  155.736544][ T5788] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  155.763681][ T1037] RIP: 0010:folio_end_writeback+0x530/0x560
[  155.766356][ T1037] Code: ac c7 ff 48 89 df 48 c7 c6 a0 4f 94 8b e8 f8 f8 2f ff 90 0f 0b e8 90 ac c7 ff 48 89 df 48 c7 c6 40 4e 94 8b e8 e1 f8 2f ff 90 <0f> 0b e8 79 ac c7 ff 48 89 df 48 c7 c6 80 4b 94 8b e8 ca f8 2f ff
[  155.791343][ T1037] RSP: 0018:ffffc9000254f440 EFLAGS: 00010246
[  155.805243][ T1037] RAX: 6fff180b5e52d800 RBX: ffffea0001520000 RCX: 0000000000000000
[  155.808837][ T1037] RDX: 0000000000000000 RSI: ffffffff8be30ee0 RDI: 00000000ffffffff
[  155.822261][ T1037] RBP: 0000000000000000 R08: ffffffff8fa34537 R09: 1ffffffff1f468a6
[  155.825808][ T1037] R10: dffffc0000000000 R11: fffffbfff1f468a7 R12: ffff88805ffdb3e8
[  155.843311][ T1037] R13: dffffc0000000000 R14: ffffea0001520034 R15: ffff88805ffd6400
[  155.846903][ T1037] FS:  0000000000000000(0000) GS:ffff88808d21f000(0000) knlGS:0000000000000000
[  155.851468][ T1037] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  155.863065][ T1037] CR2: 00007f2baf9eb6b0 CR3: 000000000df36000 CR4: 0000000000352ef0
[  155.866649][ T1037] Kernel panic - not syncing: Fatal exception
[  155.869688][ T1037] Kernel Offset: disabled
[  155.871575][ T1037] Rebooting in 86400 seconds..