Warning: Permanently added '[localhost]:12735' (ED25519) to the list of known hosts.
2026/01/27 05:45:56 parsed 1 programs
syzkaller login: [   90.726228][ T5305] cgroup: Unknown subsys name 'net'
[   90.796244][ T5305] cgroup: Unknown subsys name 'cpuset'
[   90.800997][ T5305] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   92.716706][ T5305] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   96.997948][ T1240] cfg80211: failed to load regulatory.db
[   98.400663][ T5327] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   98.795306][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.798900][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.845075][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.848524][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.004122][ T5353] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  100.008398][ T5353] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  100.011975][ T5353] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  100.016353][ T5353] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  100.020035][ T5353] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  103.590494][ T5382] chnl_net:caif_netlink_parms(): no params data found
[  103.735053][ T5382] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.739102][ T5382] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.752989][ T5382] bridge_slave_0: entered allmulticast mode
[  103.757932][ T5382] bridge_slave_0: entered promiscuous mode
[  103.773912][ T5382] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.776720][ T5382] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.779566][ T5382] bridge_slave_1: entered allmulticast mode
[  103.793578][ T5382] bridge_slave_1: entered promiscuous mode
[  103.841074][ T5382] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.855652][ T5382] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.903481][ T5382] team0: Port device team_slave_0 added
[  103.908432][ T5382] team0: Port device team_slave_1 added
[  103.963483][ T5382] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.966588][ T5382] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  103.992367][ T5382] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.999538][ T5382] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.013036][ T5382] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  104.032939][ T5382] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.113365][ T5382] hsr_slave_0: entered promiscuous mode
[  104.133106][ T5382] hsr_slave_1: entered promiscuous mode
[  104.499592][ T5382] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  104.524855][ T5382] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  104.543722][ T5382] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  104.551211][ T5382] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  104.686615][ T5382] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.711005][ T5382] 8021q: adding VLAN 0 to HW filter on device team0
[  104.737500][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.740845][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.761392][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.764560][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  105.067913][ T5382] 8021q: adding VLAN 0 to HW filter on device batadv0
[  105.118329][ T5382] veth0_vlan: entered promiscuous mode
[  105.145263][ T5382] veth1_vlan: entered promiscuous mode
[  105.191262][ T5382] veth0_macvtap: entered promiscuous mode
[  105.204331][ T5382] veth1_macvtap: entered promiscuous mode
[  105.227667][ T5382] batman_adv: batadv0: Interface activated: batadv_slave_0
[  105.244402][ T5382] batman_adv: batadv0: Interface activated: batadv_slave_1
[  105.256638][ T1051] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  105.260361][ T1051] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  105.266001][ T1051] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  105.269227][ T1051] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  105.400161][   T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.444536][   T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.491884][   T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.549747][   T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2026/01/27 05:46:15 executed programs: 0
[  106.422044][ T5353] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  106.433798][ T5353] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  106.437343][ T5353] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  106.440596][ T5353] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  106.445022][ T5353] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  106.607477][ T5417] chnl_net:caif_netlink_parms(): no params data found
[  106.728228][ T5417] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.731471][ T5417] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.735415][ T5417] bridge_slave_0: entered allmulticast mode
[  106.738887][ T5417] bridge_slave_0: entered promiscuous mode
[  106.745534][ T5417] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.748718][ T5417] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.751724][ T5417] bridge_slave_1: entered allmulticast mode
[  106.756740][ T5417] bridge_slave_1: entered promiscuous mode
[  106.786820][ T5417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  106.808514][ T5417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  106.864018][ T5417] team0: Port device team_slave_0 added
[  106.869837][ T5417] team0: Port device team_slave_1 added
[  106.945661][ T5417] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.948641][ T5417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  106.981021][ T5417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.996472][ T5417] batman_adv: batadv0: Adding interface: batadv_slave_1
[  106.999546][ T5417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  107.042709][ T5417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  107.093530][ T5417] hsr_slave_0: entered promiscuous mode
[  107.097308][ T5417] hsr_slave_1: entered promiscuous mode
[  107.100436][ T5417] debugfs: 'hsr0' already exists in 'hsr'
[  107.103936][ T5417] Cannot create hsr debugfs directory
[  107.776702][   T13] bridge_slave_1: left allmulticast mode
[  107.779359][   T13] bridge_slave_1: left promiscuous mode
[  107.782878][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.804155][   T13] bridge_slave_0: left allmulticast mode
[  107.806526][   T13] bridge_slave_0: left promiscuous mode
[  107.809004][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.193914][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  108.198759][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  108.203450][   T13] bond0 (unregistering): Released all slaves
[  108.284251][   T13] hsr_slave_0: left promiscuous mode
[  108.286995][   T13] hsr_slave_1: left promiscuous mode
[  108.289473][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  108.297829][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  108.301772][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  108.305222][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  108.318787][   T13] veth1_macvtap: left promiscuous mode
[  108.321487][   T13] veth0_macvtap: left promiscuous mode
[  108.324449][   T13] veth1_vlan: left promiscuous mode
[  108.326909][   T13] veth0_vlan: left promiscuous mode
[  108.504320][ T5353] Bluetooth: hci0: command tx timeout
[  108.630483][   T13] team0 (unregistering): Port device team_slave_1 removed
[  108.651219][   T13] team0 (unregistering): Port device team_slave_0 removed
[  109.150138][ T5417] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  109.173493][ T5417] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  109.191354][ T5417] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  109.212889][ T5417] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  109.577535][ T5417] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.637860][ T5417] 8021q: adding VLAN 0 to HW filter on device team0
[  109.646771][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.649845][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.678818][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.682579][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  110.035086][ T5417] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.097640][ T5417] veth0_vlan: entered promiscuous mode
[  110.115219][ T5417] veth1_vlan: entered promiscuous mode
[  110.173455][ T5417] veth0_macvtap: entered promiscuous mode
[  110.184064][ T5417] veth1_macvtap: entered promiscuous mode
[  110.218840][ T5417] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.230291][ T5417] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.241092][   T31] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.254715][   T31] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.259205][   T31] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.285706][   T31] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.326663][   T31] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.330119][   T31] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.366454][ T1047] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.369807][ T1047] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.438715][ T5459] BUG: Bad page state in process syz.0.17  pfn:122d2
[  110.441407][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880122d2f00 pfn:0x122d2
[  110.446004][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  110.448973][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  110.452412][ T5459] raw: ffff8880122d2f00 3fffffffffffffff 00000000ffffffff 0000000000000000
[  110.455827][ T5459] page dumped because: page_pool leak
[  110.458077][ T5459] page_owner tracks the page as allocated
[  110.460675][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438635797, free_ts 110414153260
[  110.467202][ T5459]  post_alloc_hook+0x228/0x280
[  110.469391][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  110.471711][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  110.474421][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  110.476909][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  110.479643][ T5459]  page_pool_alloc_frag_netmem+0x421/0x9b0
[  110.482243][ T5459]  skb_pp_cow_data+0xc43/0x1680
[  110.484295][ T5459]  do_xdp_generic+0x715/0x1280
[  110.486498][ T5459]  tun_get_user+0x247d/0x3dd0
[  110.488539][ T5459]  tun_chr_write_iter+0x113/0x200
[  110.490698][ T5459]  vfs_write+0x61d/0xb90
[  110.492619][ T5459]  ksys_write+0x150/0x270
[  110.494513][ T5459]  do_syscall_64+0xe2/0xf80
[  110.496503][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.498678][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  110.501507][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  110.503678][ T5459]  __put_partials+0x146/0x170
[  110.505673][ T5459]  __slab_free+0x294/0x320
[  110.507398][ T5459]  qlist_free_all+0x97/0x100
[  110.509359][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  110.511754][ T5459]  __kasan_slab_alloc+0x22/0x80
[  110.514098][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  110.516514][ T5459]  getname_flags+0xb7/0x540
[  110.518447][ T5459]  do_readlinkat+0xcc/0x510
[  110.520440][ T5459]  __x64_sys_readlink+0x7f/0x90
[  110.522441][ T5459]  do_syscall_64+0xe2/0xf80
[  110.524404][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.526893][ T5459] Modules linked in:
[  110.528595][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[  110.528609][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  110.528635][ T5459] Call Trace:
[  110.528644][ T5459]  <TASK>
[  110.528666][ T5459]  dump_stack_lvl+0xe8/0x150
[  110.528683][ T5459]  bad_page+0x17f/0x1c0
[  110.528698][ T5459]  __free_frozen_pages+0xd28/0xd70
[  110.528719][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  110.528743][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  110.528759][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  110.528771][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  110.528801][ T5459]  do_xdp_generic+0xa6f/0x1280
[  110.528815][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  110.528836][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  110.528862][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  110.528887][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  110.528902][ T5459]  tun_get_user+0x247d/0x3dd0
[  110.528923][ T5459]  ? aa_file_perm+0x12d/0x1630
[  110.528938][ T5459]  ? aa_file_perm+0x440/0x1630
[  110.528949][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  110.528965][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  110.528985][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  110.528998][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  110.529010][ T5459]  ? tun_get+0x1c/0x2f0
[  110.529025][ T5459]  ? tun_get+0x1c/0x2f0
[  110.529043][ T5459]  ? tun_get+0x1c/0x2f0
[  110.529058][ T5459]  ? tun_get+0x1c/0x2f0
[  110.529074][ T5459]  tun_chr_write_iter+0x113/0x200
[  110.529091][ T5459]  vfs_write+0x61d/0xb90
[  110.529109][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  110.529123][ T5459]  ? __pfx_do_futex+0x10/0x10
[  110.529147][ T5459]  ksys_write+0x150/0x270
[  110.529162][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  110.529182][ T5459]  do_syscall_64+0xe2/0xf80
[  110.529193][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.529203][ T5459]  ? trace_irq_disable+0x37/0x100
[  110.529210][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  110.529219][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.529226][ T5459] RIP: 0033:0x7f125f75b78e
[  110.529235][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  110.529260][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  110.529272][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  110.529279][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  110.529286][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  110.529293][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  110.529299][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  110.529318][ T5459]  </TASK>
[  110.529322][ T5459] Disabling lock debugging due to kernel taint
[  110.644121][ T5459] BUG: Bad page state in process syz.0.17  pfn:122ce
[  110.646594][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880122ce4b0 pfn:0x122ce
[  110.650886][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  110.653759][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  110.656873][ T5459] raw: ffff8880122ce4b0 0000000000000001 00000000ffffffff 0000000000000000
[  110.660253][ T5459] page dumped because: page_pool leak
[  110.662522][ T5459] page_owner tracks the page as allocated
[  110.664897][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438624674, free_ts 110414162187
[  110.672080][ T5459]  post_alloc_hook+0x228/0x280
[  110.674150][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  110.676385][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  110.678833][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  110.681036][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  110.683593][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  110.685651][ T5459]  do_xdp_generic+0x715/0x1280
[  110.687732][ T5459]  tun_get_user+0x247d/0x3dd0
[  110.689785][ T5459]  tun_chr_write_iter+0x113/0x200
[  110.692055][ T5459]  vfs_write+0x61d/0xb90
[  110.694049][ T5459]  ksys_write+0x150/0x270
[  110.695972][ T5459]  do_syscall_64+0xe2/0xf80
[  110.697890][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.700321][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  110.702999][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  110.705161][ T5459]  __put_partials+0x146/0x170
[  110.706938][ T5459]  __slab_free+0x294/0x320
[  110.708911][ T5459]  qlist_free_all+0x97/0x100
[  110.711087][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  110.713563][ T5459]  __kasan_slab_alloc+0x22/0x80
[  110.715729][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  110.718144][ T5459]  getname_flags+0xb7/0x540
[  110.719986][ T5459]  do_readlinkat+0xcc/0x510
[  110.721904][ T5459]  __x64_sys_readlink+0x7f/0x90
[  110.724115][ T5459]  do_syscall_64+0xe2/0xf80
[  110.726236][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.728681][ T5459] Modules linked in:
[  110.730549][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  110.730568][ T5459] Tainted: [B]=BAD_PAGE
[  110.730571][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  110.730579][ T5459] Call Trace:
[  110.730587][ T5459]  <TASK>
[  110.730593][ T5459]  dump_stack_lvl+0xe8/0x150
[  110.730609][ T5459]  bad_page+0x17f/0x1c0
[  110.730622][ T5459]  __free_frozen_pages+0xd28/0xd70
[  110.730640][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  110.730661][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  110.730674][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  110.730684][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  110.730704][ T5459]  do_xdp_generic+0xa6f/0x1280
[  110.730717][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  110.730735][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  110.730749][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  110.730768][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  110.730783][ T5459]  tun_get_user+0x247d/0x3dd0
[  110.730800][ T5459]  ? aa_file_perm+0x12d/0x1630
[  110.730814][ T5459]  ? aa_file_perm+0x440/0x1630
[  110.730825][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  110.730847][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  110.730863][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  110.730875][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  110.730886][ T5459]  ? tun_get+0x1c/0x2f0
[  110.730900][ T5459]  ? tun_get+0x1c/0x2f0
[  110.730942][ T5459]  ? tun_get+0x1c/0x2f0
[  110.730956][ T5459]  ? tun_get+0x1c/0x2f0
[  110.730972][ T5459]  tun_chr_write_iter+0x113/0x200
[  110.730990][ T5459]  vfs_write+0x61d/0xb90
[  110.731005][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  110.731018][ T5459]  ? __pfx_do_futex+0x10/0x10
[  110.731037][ T5459]  ksys_write+0x150/0x270
[  110.731050][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  110.731064][ T5459]  do_syscall_64+0xe2/0xf80
[  110.731075][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.731085][ T5459]  ? trace_irq_disable+0x37/0x100
[  110.731095][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  110.731107][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.731118][ T5459] RIP: 0033:0x7f125f75b78e
[  110.731130][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  110.731138][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  110.731151][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  110.731158][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  110.731165][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  110.731172][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  110.731178][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  110.731188][ T5459]  </TASK>
[  110.731196][ T5459] BUG: Bad page state in process syz.0.17  pfn:1f9db
[  110.849702][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88801f9dbf00 pfn:0x1f9db
[  110.854114][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  110.857271][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  110.860765][ T5459] raw: ffff88801f9dbf00 0000000000000001 00000000ffffffff 0000000000000000
[  110.864291][ T5459] page dumped because: page_pool leak
[  110.866468][ T5459] page_owner tracks the page as allocated
[  110.868808][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438614300, free_ts 110414170726
[  110.875934][ T5459]  post_alloc_hook+0x228/0x280
[  110.878084][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  110.880484][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  110.882544][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  110.884353][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  110.886499][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  110.888315][ T5459]  do_xdp_generic+0x715/0x1280
[  110.890216][ T5459]  tun_get_user+0x247d/0x3dd0
[  110.892281][ T5459]  tun_chr_write_iter+0x113/0x200
[  110.894379][ T5459]  vfs_write+0x61d/0xb90
[  110.896236][ T5459]  ksys_write+0x150/0x270
[  110.898186][ T5459]  do_syscall_64+0xe2/0xf80
[  110.900369][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.903056][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  110.905750][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  110.908088][ T5459]  __put_partials+0x146/0x170
[  110.910159][ T5459]  __slab_free+0x294/0x320
[  110.912260][ T5459]  qlist_free_all+0x97/0x100
[  110.914431][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  110.916871][ T5459]  __kasan_slab_alloc+0x22/0x80
[  110.918645][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  110.920702][ T5459]  getname_flags+0xb7/0x540
[  110.922473][ T5459]  do_readlinkat+0xcc/0x510
[  110.924395][ T5459]  __x64_sys_readlink+0x7f/0x90
[  110.926505][ T5459]  do_syscall_64+0xe2/0xf80
[  110.928300][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.930746][ T5459] Modules linked in:
[  110.932422][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  110.932435][ T5459] Tainted: [B]=BAD_PAGE
[  110.932437][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  110.932442][ T5459] Call Trace:
[  110.932447][ T5459]  <TASK>
[  110.932451][ T5459]  dump_stack_lvl+0xe8/0x150
[  110.932462][ T5459]  bad_page+0x17f/0x1c0
[  110.932470][ T5459]  __free_frozen_pages+0xd28/0xd70
[  110.932482][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  110.932494][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  110.932502][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  110.932510][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  110.932527][ T5459]  do_xdp_generic+0xa6f/0x1280
[  110.932540][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  110.932556][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  110.932570][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  110.932589][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  110.932602][ T5459]  tun_get_user+0x247d/0x3dd0
[  110.932620][ T5459]  ? aa_file_perm+0x12d/0x1630
[  110.932633][ T5459]  ? aa_file_perm+0x440/0x1630
[  110.932643][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  110.932653][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  110.932663][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  110.932671][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  110.932678][ T5459]  ? tun_get+0x1c/0x2f0
[  110.932687][ T5459]  ? tun_get+0x1c/0x2f0
[  110.932697][ T5459]  ? tun_get+0x1c/0x2f0
[  110.932706][ T5459]  ? tun_get+0x1c/0x2f0
[  110.932715][ T5459]  tun_chr_write_iter+0x113/0x200
[  110.932725][ T5459]  vfs_write+0x61d/0xb90
[  110.932735][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  110.932743][ T5459]  ? __pfx_do_futex+0x10/0x10
[  110.932756][ T5459]  ksys_write+0x150/0x270
[  110.932769][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  110.932782][ T5459]  do_syscall_64+0xe2/0xf80
[  110.932789][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.932795][ T5459]  ? trace_irq_disable+0x37/0x100
[  110.932803][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  110.932813][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.932823][ T5459] RIP: 0033:0x7f125f75b78e
[  110.932833][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  110.932848][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  110.932860][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  110.932868][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  110.932875][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  110.932881][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  110.932887][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  110.932899][ T5459]  </TASK>
[  110.932907][ T5459] BUG: Bad page state in process syz.0.17  pfn:1c8a5
[  111.048506][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88801c8a5d20 pfn:0x1c8a5
[  111.052523][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  111.055527][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  111.058962][ T5459] raw: ffff88801c8a5d20 0000000000000001 00000000ffffffff 0000000000000000
[  111.062477][ T5459] page dumped because: page_pool leak
[  111.064693][ T5459] page_owner tracks the page as allocated
[  111.067034][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438602779, free_ts 110414180639
[  111.074114][ T5459]  post_alloc_hook+0x228/0x280
[  111.076151][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  111.078408][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  111.080867][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  111.083182][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  111.085829][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  111.088025][ T5459]  do_xdp_generic+0x715/0x1280
[  111.090183][ T5459]  tun_get_user+0x247d/0x3dd0
[  111.092248][ T5459]  tun_chr_write_iter+0x113/0x200
[  111.094400][ T5459]  vfs_write+0x61d/0xb90
[  111.096169][ T5459]  ksys_write+0x150/0x270
[  111.097753][ T5459]  do_syscall_64+0xe2/0xf80
[  111.099635][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.101973][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  111.104596][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  111.106760][ T5459]  __put_partials+0x146/0x170
[  111.108764][ T5459]  __slab_free+0x294/0x320
[  111.110640][ T5459]  qlist_free_all+0x97/0x100
[  111.112642][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  111.114899][ T5459]  __kasan_slab_alloc+0x22/0x80
[  111.117018][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  111.119635][ T5459]  getname_flags+0xb7/0x540
[  111.121679][ T5459]  do_readlinkat+0xcc/0x510
[  111.123784][ T5459]  __x64_sys_readlink+0x7f/0x90
[  111.125976][ T5459]  do_syscall_64+0xe2/0xf80
[  111.128055][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.130672][ T5459] Modules linked in:
[  111.132433][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  111.132452][ T5459] Tainted: [B]=BAD_PAGE
[  111.132456][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  111.132463][ T5459] Call Trace:
[  111.132471][ T5459]  <TASK>
[  111.132477][ T5459]  dump_stack_lvl+0xe8/0x150
[  111.132495][ T5459]  bad_page+0x17f/0x1c0
[  111.132509][ T5459]  __free_frozen_pages+0xd28/0xd70
[  111.132528][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  111.132550][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  111.132565][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  111.132577][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  111.132599][ T5459]  do_xdp_generic+0xa6f/0x1280
[  111.132613][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  111.132633][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  111.132649][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  111.132670][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  111.132684][ T5459]  tun_get_user+0x247d/0x3dd0
[  111.132702][ T5459]  ? aa_file_perm+0x12d/0x1630
[  111.132717][ T5459]  ? aa_file_perm+0x440/0x1630
[  111.132729][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  111.132746][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  111.132764][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  111.132778][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  111.132788][ T5459]  ? tun_get+0x1c/0x2f0
[  111.132802][ T5459]  ? tun_get+0x1c/0x2f0
[  111.132818][ T5459]  ? tun_get+0x1c/0x2f0
[  111.132834][ T5459]  ? tun_get+0x1c/0x2f0
[  111.132849][ T5459]  tun_chr_write_iter+0x113/0x200
[  111.132865][ T5459]  vfs_write+0x61d/0xb90
[  111.132883][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  111.132896][ T5459]  ? __pfx_do_futex+0x10/0x10
[  111.132916][ T5459]  ksys_write+0x150/0x270
[  111.132931][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  111.132946][ T5459]  do_syscall_64+0xe2/0xf80
[  111.132958][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.132969][ T5459]  ? trace_irq_disable+0x37/0x100
[  111.132982][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  111.132995][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.133006][ T5459] RIP: 0033:0x7f125f75b78e
[  111.133019][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  111.133029][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  111.133043][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  111.133051][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  111.133059][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  111.133067][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.133073][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  111.133086][ T5459]  </TASK>
[  111.133095][ T5459] BUG: Bad page state in process syz.0.17  pfn:1226c
[  111.255228][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88801226cf00 pfn:0x1226c
[  111.259521][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  111.262588][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  111.266311][ T5459] raw: ffff88801226cf00 0000000000000001 00000000ffffffff 0000000000000000
[  111.269846][ T5459] page dumped because: page_pool leak
[  111.272248][ T5459] page_owner tracks the page as allocated
[  111.274778][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438593351, free_ts 110414189835
[  111.281524][ T5459]  post_alloc_hook+0x228/0x280
[  111.283730][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  111.286185][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  111.288691][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  111.290997][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  111.293656][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  111.295710][ T5459]  do_xdp_generic+0x715/0x1280
[  111.297749][ T5459]  tun_get_user+0x247d/0x3dd0
[  111.299767][ T5459]  tun_chr_write_iter+0x113/0x200
[  111.301882][ T5459]  vfs_write+0x61d/0xb90
[  111.303834][ T5459]  ksys_write+0x150/0x270
[  111.305539][ T5459]  do_syscall_64+0xe2/0xf80
[  111.307418][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.309993][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  111.312629][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  111.314866][ T5459]  __put_partials+0x146/0x170
[  111.316757][ T5459]  __slab_free+0x294/0x320
[  111.318583][ T5459]  qlist_free_all+0x97/0x100
[  111.320533][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  111.322939][ T5459]  __kasan_slab_alloc+0x22/0x80
[  111.325025][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  111.327428][ T5459]  getname_flags+0xb7/0x540
[  111.329405][ T5459]  do_readlinkat+0xcc/0x510
[  111.331471][ T5459]  __x64_sys_readlink+0x7f/0x90
[  111.333703][ T5459]  do_syscall_64+0xe2/0xf80
[  111.335688][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.338184][ T5459] Modules linked in:
[  111.340080][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  111.340098][ T5459] Tainted: [B]=BAD_PAGE
[  111.340102][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  111.340109][ T5459] Call Trace:
[  111.340118][ T5459]  <TASK>
[  111.340124][ T5459]  dump_stack_lvl+0xe8/0x150
[  111.340141][ T5459]  bad_page+0x17f/0x1c0
[  111.340153][ T5459]  __free_frozen_pages+0xd28/0xd70
[  111.340169][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  111.340188][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  111.340200][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  111.340211][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  111.340231][ T5459]  do_xdp_generic+0xa6f/0x1280
[  111.340245][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  111.340262][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  111.340278][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  111.340296][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  111.340311][ T5459]  tun_get_user+0x247d/0x3dd0
[  111.340329][ T5459]  ? aa_file_perm+0x12d/0x1630
[  111.340343][ T5459]  ? aa_file_perm+0x440/0x1630
[  111.340354][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  111.340369][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  111.340386][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  111.340398][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  111.340410][ T5459]  ? tun_get+0x1c/0x2f0
[  111.340424][ T5459]  ? tun_get+0x1c/0x2f0
[  111.340438][ T5459]  ? tun_get+0x1c/0x2f0
[  111.340452][ T5459]  ? tun_get+0x1c/0x2f0
[  111.340466][ T5459]  tun_chr_write_iter+0x113/0x200
[  111.340482][ T5459]  vfs_write+0x61d/0xb90
[  111.340498][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  111.340510][ T5459]  ? __pfx_do_futex+0x10/0x10
[  111.340527][ T5459]  ksys_write+0x150/0x270
[  111.340541][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  111.340556][ T5459]  do_syscall_64+0xe2/0xf80
[  111.340566][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.340576][ T5459]  ? trace_irq_disable+0x37/0x100
[  111.340586][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  111.340597][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.340614][ T5459] RIP: 0033:0x7f125f75b78e
[  111.340625][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  111.340634][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  111.340646][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  111.340653][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  111.340660][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  111.340667][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.340673][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  111.340683][ T5459]  </TASK>
[  111.340692][ T5459] BUG: Bad page state in process syz.0.17  pfn:11906
[  111.458947][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880119060f0 pfn:0x11906
[  111.463492][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  111.466304][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  111.469729][ T5459] raw: ffff8880119060f0 0000000000000001 00000000ffffffff 0000000000000000
[  111.473392][ T5459] page dumped because: page_pool leak
[  111.475796][ T5459] page_owner tracks the page as allocated
[  111.478364][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438583179, free_ts 110414199154
[  111.485491][ T5459]  post_alloc_hook+0x228/0x280
[  111.487484][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  111.489972][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  111.492392][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  111.494717][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  111.497202][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  111.499395][ T5459]  do_xdp_generic+0x715/0x1280
[  111.501623][ T5459]  tun_get_user+0x247d/0x3dd0
[  111.503830][ T5459]  tun_chr_write_iter+0x113/0x200
[  111.505912][ T5459]  vfs_write+0x61d/0xb90
[  111.507798][ T5459]  ksys_write+0x150/0x270
[  111.509600][ T5459]  do_syscall_64+0xe2/0xf80
[  111.511629][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.514296][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  111.517104][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  111.519398][ T5459]  __put_partials+0x146/0x170
[  111.521473][ T5459]  __slab_free+0x294/0x320
[  111.523618][ T5459]  qlist_free_all+0x97/0x100
[  111.525623][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  111.527935][ T5459]  __kasan_slab_alloc+0x22/0x80
[  111.530137][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  111.532772][ T5459]  getname_flags+0xb7/0x540
[  111.534813][ T5459]  do_readlinkat+0xcc/0x510
[  111.536910][ T5459]  __x64_sys_readlink+0x7f/0x90
[  111.539135][ T5459]  do_syscall_64+0xe2/0xf80
[  111.541153][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.543672][ T5459] Modules linked in:
[  111.545362][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  111.545379][ T5459] Tainted: [B]=BAD_PAGE
[  111.545383][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  111.545389][ T5459] Call Trace:
[  111.545397][ T5459]  <TASK>
[  111.545403][ T5459]  dump_stack_lvl+0xe8/0x150
[  111.545419][ T5459]  bad_page+0x17f/0x1c0
[  111.545432][ T5459]  __free_frozen_pages+0xd28/0xd70
[  111.545448][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  111.545467][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  111.545480][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  111.545490][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  111.545511][ T5459]  do_xdp_generic+0xa6f/0x1280
[  111.545521][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  111.545532][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  111.545542][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  111.545554][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  111.545564][ T5459]  tun_get_user+0x247d/0x3dd0
[  111.545575][ T5459]  ? aa_file_perm+0x12d/0x1630
[  111.545584][ T5459]  ? aa_file_perm+0x440/0x1630
[  111.545595][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  111.545608][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  111.545623][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  111.545635][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  111.545646][ T5459]  ? tun_get+0x1c/0x2f0
[  111.545660][ T5459]  ? tun_get+0x1c/0x2f0
[  111.545675][ T5459]  ? tun_get+0x1c/0x2f0
[  111.545688][ T5459]  ? tun_get+0x1c/0x2f0
[  111.545703][ T5459]  tun_chr_write_iter+0x113/0x200
[  111.545714][ T5459]  vfs_write+0x61d/0xb90
[  111.545724][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  111.545732][ T5459]  ? __pfx_do_futex+0x10/0x10
[  111.545744][ T5459]  ksys_write+0x150/0x270
[  111.545753][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  111.545762][ T5459]  do_syscall_64+0xe2/0xf80
[  111.545773][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.545782][ T5459]  ? trace_irq_disable+0x37/0x100
[  111.545793][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  111.545804][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.545815][ T5459] RIP: 0033:0x7f125f75b78e
[  111.545826][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  111.545835][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  111.545847][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  111.545855][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  111.545863][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  111.545870][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.545876][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  111.545888][ T5459]  </TASK>
[  111.545896][ T5459] BUG: Bad page state in process syz.0.17  pfn:11f9c
[  111.668784][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888011f9c690 pfn:0x11f9c
[  111.672835][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  111.675685][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  111.679690][ T5459] raw: ffff888011f9c690 0000000000000001 00000000ffffffff 0000000000000000
[  111.684498][ T5459] page dumped because: page_pool leak
[  111.686840][ T5459] page_owner tracks the page as allocated
[  111.689387][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438572660, free_ts 110414208502
[  111.696684][ T5459]  post_alloc_hook+0x228/0x280
[  111.698627][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  111.701007][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  111.703675][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  111.706113][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  111.708672][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  111.710773][ T5459]  do_xdp_generic+0x715/0x1280
[  111.712871][ T5459]  tun_get_user+0x247d/0x3dd0
[  111.714926][ T5459]  tun_chr_write_iter+0x113/0x200
[  111.717148][ T5459]  vfs_write+0x61d/0xb90
[  111.719064][ T5459]  ksys_write+0x150/0x270
[  111.720902][ T5459]  do_syscall_64+0xe2/0xf80
[  111.722972][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.725472][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  111.728214][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  111.730460][ T5459]  __put_partials+0x146/0x170
[  111.732607][ T5459]  __slab_free+0x294/0x320
[  111.734503][ T5459]  qlist_free_all+0x97/0x100
[  111.736446][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  111.738760][ T5459]  __kasan_slab_alloc+0x22/0x80
[  111.740986][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  111.743441][ T5459]  getname_flags+0xb7/0x540
[  111.745318][ T5459]  do_readlinkat+0xcc/0x510
[  111.747339][ T5459]  __x64_sys_readlink+0x7f/0x90
[  111.749505][ T5459]  do_syscall_64+0xe2/0xf80
[  111.751415][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.753915][ T5459] Modules linked in:
[  111.755648][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  111.755665][ T5459] Tainted: [B]=BAD_PAGE
[  111.755669][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  111.755676][ T5459] Call Trace:
[  111.755683][ T5459]  <TASK>
[  111.755688][ T5459]  dump_stack_lvl+0xe8/0x150
[  111.755705][ T5459]  bad_page+0x17f/0x1c0
[  111.755718][ T5459]  __free_frozen_pages+0xd28/0xd70
[  111.755737][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  111.755758][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  111.755771][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  111.755783][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  111.755804][ T5459]  do_xdp_generic+0xa6f/0x1280
[  111.755819][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  111.755836][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  111.755851][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  111.755870][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  111.755883][ T5459]  tun_get_user+0x247d/0x3dd0
[  111.755901][ T5459]  ? aa_file_perm+0x12d/0x1630
[  111.755913][ T5459]  ? aa_file_perm+0x440/0x1630
[  111.755930][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  111.755944][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  111.755961][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  111.755972][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  111.755982][ T5459]  ? tun_get+0x1c/0x2f0
[  111.755995][ T5459]  ? tun_get+0x1c/0x2f0
[  111.756009][ T5459]  ? tun_get+0x1c/0x2f0
[  111.756022][ T5459]  ? tun_get+0x1c/0x2f0
[  111.756037][ T5459]  tun_chr_write_iter+0x113/0x200
[  111.756052][ T5459]  vfs_write+0x61d/0xb90
[  111.756067][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  111.756080][ T5459]  ? __pfx_do_futex+0x10/0x10
[  111.756097][ T5459]  ksys_write+0x150/0x270
[  111.756110][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  111.756129][ T5459]  do_syscall_64+0xe2/0xf80
[  111.756146][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.756156][ T5459]  ? trace_irq_disable+0x37/0x100
[  111.756166][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  111.756177][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.756188][ T5459] RIP: 0033:0x7f125f75b78e
[  111.756199][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  111.756207][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  111.756218][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  111.756226][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  111.756233][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  111.756239][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.756245][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  111.756256][ T5459]  </TASK>
[  111.756265][ T5459] BUG: Bad page state in process syz.0.17  pfn:119c1
[  111.875482][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880119c1000 pfn:0x119c1
[  111.879794][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  111.882874][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  111.886494][ T5459] raw: ffff8880119c1000 0000000000000001 00000000ffffffff 0000000000000000
[  111.890103][ T5459] page dumped because: page_pool leak
[  111.892501][ T5459] page_owner tracks the page as allocated
[  111.895014][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438562331, free_ts 110414217951
[  111.902027][ T5459]  post_alloc_hook+0x228/0x280
[  111.904093][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  111.906269][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  111.908583][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  111.910625][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  111.913254][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  111.915237][ T5459]  do_xdp_generic+0x715/0x1280
[  111.917278][ T5459]  tun_get_user+0x247d/0x3dd0
[  111.919467][ T5459]  tun_chr_write_iter+0x113/0x200
[  111.921394][ T5459]  vfs_write+0x61d/0xb90
[  111.923060][ T5459]  ksys_write+0x150/0x270
[  111.924708][ T5459]  do_syscall_64+0xe2/0xf80
[  111.926569][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.928785][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  111.931463][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  111.933649][ T5459]  __put_partials+0x146/0x170
[  111.935583][ T5459]  __slab_free+0x294/0x320
[  111.937408][ T5459]  qlist_free_all+0x97/0x100
[  111.939320][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  111.941474][ T5459]  __kasan_slab_alloc+0x22/0x80
[  111.943714][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  111.946005][ T5459]  getname_flags+0xb7/0x540
[  111.947860][ T5459]  do_readlinkat+0xcc/0x510
[  111.949870][ T5459]  __x64_sys_readlink+0x7f/0x90
[  111.951712][ T5459]  do_syscall_64+0xe2/0xf80
[  111.953793][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.956142][ T5459] Modules linked in:
[  111.957720][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  111.957733][ T5459] Tainted: [B]=BAD_PAGE
[  111.957737][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  111.957743][ T5459] Call Trace:
[  111.957751][ T5459]  <TASK>
[  111.957757][ T5459]  dump_stack_lvl+0xe8/0x150
[  111.957772][ T5459]  bad_page+0x17f/0x1c0
[  111.957785][ T5459]  __free_frozen_pages+0xd28/0xd70
[  111.957802][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  111.957821][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  111.957830][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  111.957837][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  111.957855][ T5459]  do_xdp_generic+0xa6f/0x1280
[  111.957868][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  111.957885][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  111.957901][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  111.957920][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  111.957933][ T5459]  tun_get_user+0x247d/0x3dd0
[  111.957950][ T5459]  ? aa_file_perm+0x12d/0x1630
[  111.957963][ T5459]  ? aa_file_perm+0x440/0x1630
[  111.957974][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  111.957988][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  111.958005][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  111.958016][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  111.958023][ T5459]  ? tun_get+0x1c/0x2f0
[  111.958032][ T5459]  ? tun_get+0x1c/0x2f0
[  111.958041][ T5459]  ? tun_get+0x1c/0x2f0
[  111.958050][ T5459]  ? tun_get+0x1c/0x2f0
[  111.958060][ T5459]  tun_chr_write_iter+0x113/0x200
[  111.958070][ T5459]  vfs_write+0x61d/0xb90
[  111.958085][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  111.958104][ T5459]  ? __pfx_do_futex+0x10/0x10
[  111.958122][ T5459]  ksys_write+0x150/0x270
[  111.958135][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  111.958149][ T5459]  do_syscall_64+0xe2/0xf80
[  111.958160][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.958167][ T5459]  ? trace_irq_disable+0x37/0x100
[  111.958174][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  111.958181][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.958190][ T5459] RIP: 0033:0x7f125f75b78e
[  111.958200][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  111.958209][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  111.958245][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  111.958254][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  111.958261][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  111.958267][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.958274][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  111.958281][ T5459]  </TASK>
[  111.958287][ T5459] BUG: Bad page state in process syz.0.17  pfn:11f49
[  112.076215][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888011f490f0 pfn:0x11f49
[  112.080440][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  112.083550][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  112.087374][ T5459] raw: ffff888011f490f0 0000000000000001 00000000ffffffff 0000000000000000
[  112.091189][ T5459] page dumped because: page_pool leak
[  112.093635][ T5459] page_owner tracks the page as allocated
[  112.096162][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438556393, free_ts 110414229962
[  112.103521][ T5459]  post_alloc_hook+0x228/0x280
[  112.105683][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  112.108141][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  112.110770][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  112.113241][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  112.115848][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  112.117960][ T5459]  do_xdp_generic+0x715/0x1280
[  112.120234][ T5459]  tun_get_user+0x247d/0x3dd0
[  112.122377][ T5459]  tun_chr_write_iter+0x113/0x200
[  112.124674][ T5459]  vfs_write+0x61d/0xb90
[  112.126616][ T5459]  ksys_write+0x150/0x270
[  112.128497][ T5459]  do_syscall_64+0xe2/0xf80
[  112.130532][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.133137][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  112.135484][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  112.137780][ T5459]  __slab_free+0x2ce/0x320
[  112.139881][ T5459]  qlist_free_all+0x97/0x100
[  112.141853][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  112.144344][ T5459]  __kasan_slab_alloc+0x22/0x80
[  112.146455][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  112.148770][ T5459]  getname_flags+0xb7/0x540
[  112.150807][ T5459]  do_readlinkat+0xcc/0x510
[  112.153005][ T5459]  __x64_sys_readlink+0x7f/0x90
[  112.155227][ T5459]  do_syscall_64+0xe2/0xf80
[  112.157287][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.159988][ T5459] Modules linked in:
[  112.161769][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  112.161786][ T5459] Tainted: [B]=BAD_PAGE
[  112.161790][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  112.161797][ T5459] Call Trace:
[  112.161805][ T5459]  <TASK>
[  112.161812][ T5459]  dump_stack_lvl+0xe8/0x150
[  112.161827][ T5459]  bad_page+0x17f/0x1c0
[  112.161841][ T5459]  __free_frozen_pages+0xd28/0xd70
[  112.161857][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  112.161884][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  112.161896][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  112.161907][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  112.161928][ T5459]  do_xdp_generic+0xa6f/0x1280
[  112.161941][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  112.161957][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  112.161970][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  112.161988][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  112.162002][ T5459]  tun_get_user+0x247d/0x3dd0
[  112.162020][ T5459]  ? aa_file_perm+0x12d/0x1630
[  112.162034][ T5459]  ? aa_file_perm+0x440/0x1630
[  112.162045][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  112.162061][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  112.162077][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  112.162090][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  112.162101][ T5459]  ? tun_get+0x1c/0x2f0
[  112.162135][ T5459]  ? tun_get+0x1c/0x2f0
[  112.162153][ T5459]  ? tun_get+0x1c/0x2f0
[  112.162166][ T5459]  ? tun_get+0x1c/0x2f0
[  112.162181][ T5459]  tun_chr_write_iter+0x113/0x200
[  112.162197][ T5459]  vfs_write+0x61d/0xb90
[  112.162214][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  112.162227][ T5459]  ? __pfx_do_futex+0x10/0x10
[  112.162245][ T5459]  ksys_write+0x150/0x270
[  112.162259][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  112.162274][ T5459]  do_syscall_64+0xe2/0xf80
[  112.162285][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.162296][ T5459]  ? trace_irq_disable+0x37/0x100
[  112.162307][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  112.162319][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.162328][ T5459] RIP: 0033:0x7f125f75b78e
[  112.162339][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  112.162349][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  112.162361][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  112.162370][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  112.162376][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  112.162383][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  112.162389][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  112.162400][ T5459]  </TASK>
[  112.278288][ T5459] BUG: Bad page state in process syz.0.17  pfn:12aad
[  112.281129][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888012aad1e0 pfn:0x12aad
[  112.285568][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  112.288689][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  112.292444][ T5459] raw: ffff888012aad1e0 0000000000000001 00000000ffffffff 0000000000000000
[  112.295952][ T5459] page dumped because: page_pool leak
[  112.298096][ T5459] page_owner tracks the page as allocated
[  112.300475][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438549951, free_ts 110414338168
[  112.307178][ T5459]  post_alloc_hook+0x228/0x280
[  112.309404][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  112.312111][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  112.314285][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  112.316336][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  112.318785][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  112.320913][ T5459]  do_xdp_generic+0x715/0x1280
[  112.323152][ T5459]  tun_get_user+0x247d/0x3dd0
[  112.325299][ T5459]  tun_chr_write_iter+0x113/0x200
[  112.327610][ T5459]  vfs_write+0x61d/0xb90
[  112.329552][ T5459]  ksys_write+0x150/0x270
[  112.331494][ T5459]  do_syscall_64+0xe2/0xf80
[  112.333595][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.336092][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  112.338789][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  112.341109][ T5459]  __put_partials+0x146/0x170
[  112.343800][ T5459]  __slab_free+0x294/0x320
[  112.346121][ T5459]  qlist_free_all+0x97/0x100
[  112.348087][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  112.350387][ T5459]  __kasan_slab_alloc+0x22/0x80
[  112.352654][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  112.355073][ T5459]  getname_flags+0xb7/0x540
[  112.356889][ T5459]  do_readlinkat+0xcc/0x510
[  112.358778][ T5459]  __x64_sys_readlink+0x7f/0x90
[  112.360991][ T5459]  do_syscall_64+0xe2/0xf80
[  112.363085][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.365679][ T5459] Modules linked in:
[  112.367435][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  112.367451][ T5459] Tainted: [B]=BAD_PAGE
[  112.367455][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  112.367461][ T5459] Call Trace:
[  112.367468][ T5459]  <TASK>
[  112.367475][ T5459]  dump_stack_lvl+0xe8/0x150
[  112.367490][ T5459]  bad_page+0x17f/0x1c0
[  112.367503][ T5459]  __free_frozen_pages+0xd28/0xd70
[  112.367521][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  112.367540][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  112.367552][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  112.367561][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  112.367582][ T5459]  do_xdp_generic+0xa6f/0x1280
[  112.367595][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  112.367610][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  112.367626][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  112.367644][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  112.367658][ T5459]  tun_get_user+0x247d/0x3dd0
[  112.367675][ T5459]  ? aa_file_perm+0x12d/0x1630
[  112.367687][ T5459]  ? aa_file_perm+0x440/0x1630
[  112.367698][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  112.367712][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  112.367734][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  112.367746][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  112.367757][ T5459]  ? tun_get+0x1c/0x2f0
[  112.367771][ T5459]  ? tun_get+0x1c/0x2f0
[  112.367786][ T5459]  ? tun_get+0x1c/0x2f0
[  112.367799][ T5459]  ? tun_get+0x1c/0x2f0
[  112.367813][ T5459]  tun_chr_write_iter+0x113/0x200
[  112.367828][ T5459]  vfs_write+0x61d/0xb90
[  112.367848][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  112.367860][ T5459]  ? __pfx_do_futex+0x10/0x10
[  112.367882][ T5459]  ksys_write+0x150/0x270
[  112.367896][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  112.367917][ T5459]  do_syscall_64+0xe2/0xf80
[  112.367927][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.367936][ T5459]  ? trace_irq_disable+0x37/0x100
[  112.367947][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  112.367958][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.367968][ T5459] RIP: 0033:0x7f125f75b78e
[  112.367980][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  112.367988][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  112.368000][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  112.368008][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  112.368015][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  112.368022][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  112.368028][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  112.368038][ T5459]  </TASK>
[  112.368047][ T5459] BUG: Bad page state in process syz.0.17  pfn:1f349
[  112.490195][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88801f349a50 pfn:0x1f349
[  112.494945][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  112.498158][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  112.502298][ T5459] raw: ffff88801f349a50 0000000000000001 00000000ffffffff 0000000000000000
[  112.506162][ T5459] page dumped because: page_pool leak
[  112.508434][ T5459] page_owner tracks the page as allocated
[  112.510871][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438541124, free_ts 110414372839
[  112.517947][ T5459]  post_alloc_hook+0x228/0x280
[  112.520053][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  112.522434][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  112.524950][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  112.527439][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  112.530139][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  112.532329][ T5459]  do_xdp_generic+0x715/0x1280
[  112.534409][ T5459]  tun_get_user+0x247d/0x3dd0
[  112.536426][ T5459]  tun_chr_write_iter+0x113/0x200
[  112.538658][ T5459]  vfs_write+0x61d/0xb90
[  112.540699][ T5459]  ksys_write+0x150/0x270
[  112.542714][ T5459]  do_syscall_64+0xe2/0xf80
[  112.544612][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.547169][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  112.549879][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  112.552039][ T5459]  __put_partials+0x146/0x170
[  112.554130][ T5459]  __slab_free+0x294/0x320
[  112.556011][ T5459]  qlist_free_all+0x97/0x100
[  112.557925][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  112.560235][ T5459]  __kasan_slab_alloc+0x22/0x80
[  112.562346][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  112.564594][ T5459]  getname_flags+0xb7/0x540
[  112.566551][ T5459]  do_readlinkat+0xcc/0x510
[  112.568452][ T5459]  __x64_sys_readlink+0x7f/0x90
[  112.570574][ T5459]  do_syscall_64+0xe2/0xf80
[  112.572646][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.575225][ T5459] Modules linked in:
[  112.576905][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  112.576918][ T5459] Tainted: [B]=BAD_PAGE
[  112.576920][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  112.576925][ T5459] Call Trace:
[  112.576931][ T5459]  <TASK>
[  112.576937][ T5459]  dump_stack_lvl+0xe8/0x150
[  112.576953][ T5459]  bad_page+0x17f/0x1c0
[  112.576967][ T5459]  __free_frozen_pages+0xd28/0xd70
[  112.576985][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  112.577004][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  112.577018][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  112.577027][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  112.577049][ T5459]  do_xdp_generic+0xa6f/0x1280
[  112.577063][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  112.577079][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  112.577094][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  112.577119][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  112.577133][ T5459]  tun_get_user+0x247d/0x3dd0
[  112.577152][ T5459]  ? aa_file_perm+0x12d/0x1630
[  112.577165][ T5459]  ? aa_file_perm+0x440/0x1630
[  112.577176][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  112.577191][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  112.577212][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  112.577225][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  112.577236][ T5459]  ? tun_get+0x1c/0x2f0
[  112.577255][ T5459]  ? tun_get+0x1c/0x2f0
[  112.577274][ T5459]  ? tun_get+0x1c/0x2f0
[  112.577288][ T5459]  ? tun_get+0x1c/0x2f0
[  112.577303][ T5459]  tun_chr_write_iter+0x113/0x200
[  112.577323][ T5459]  vfs_write+0x61d/0xb90
[  112.577338][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  112.577352][ T5459]  ? __pfx_do_futex+0x10/0x10
[  112.577370][ T5459]  ksys_write+0x150/0x270
[  112.577384][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  112.577398][ T5459]  do_syscall_64+0xe2/0xf80
[  112.577409][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.577419][ T5459]  ? trace_irq_disable+0x37/0x100
[  112.577430][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  112.577441][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.577452][ T5459] RIP: 0033:0x7f125f75b78e
[  112.577463][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  112.577472][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  112.577485][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  112.577492][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  112.577499][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  112.577506][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  112.577513][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  112.577524][ T5459]  </TASK>
[  112.577532][ T5459] BUG: Bad page state in process syz.0.17  pfn:11f3e
[  112.701600][ T5459] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888011f3ef00 pfn:0x11f3e
[  112.706064][ T5459] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  112.709101][ T5459] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  112.712695][ T5459] raw: ffff888011f3ef00 0000000000000001 00000000ffffffff 0000000000000000
[  112.716475][ T5459] page dumped because: page_pool leak
[  112.718718][ T5459] page_owner tracks the page as allocated
[  112.721179][ T5459] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438530450, free_ts 110414382543
[  112.728606][ T5459]  post_alloc_hook+0x228/0x280
[  112.731094][ T5459]  get_page_from_freelist+0x24dc/0x2580
[  112.734182][ T5459]  __alloc_frozen_pages_noprof+0x18d/0x380
[  112.737423][ T5459]  alloc_pages_bulk_noprof+0x558/0x700
[  112.740560][ T5459]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  112.743912][ T5459]  skb_pp_cow_data+0xc21/0x1680
[  112.746175][ T5459]  do_xdp_generic+0x715/0x1280
[  112.748310][ T5459]  tun_get_user+0x247d/0x3dd0
[  112.750538][ T5459]  tun_chr_write_iter+0x113/0x200
[  112.752944][ T5459]  vfs_write+0x61d/0xb90
[  112.754864][ T5459]  ksys_write+0x150/0x270
[  112.756862][ T5459]  do_syscall_64+0xe2/0xf80
[  112.758779][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.761201][ T5459] page last free pid 4715 tgid 4715 stack trace:
[  112.764011][ T5459]  __free_frozen_pages+0xbf8/0xd70
[  112.766396][ T5459]  __put_partials+0x146/0x170
[  112.768544][ T5459]  __slab_free+0x294/0x320
[  112.770641][ T5459]  qlist_free_all+0x97/0x100
[  112.772806][ T5459]  kasan_quarantine_reduce+0x148/0x160
[  112.775229][ T5459]  __kasan_slab_alloc+0x22/0x80
[  112.777452][ T5459]  kmem_cache_alloc_noprof+0x370/0x6e0
[  112.780040][ T5459]  getname_flags+0xb7/0x540
[  112.782230][ T5459]  do_readlinkat+0xcc/0x510
[  112.784435][ T5459]  __x64_sys_readlink+0x7f/0x90
[  112.786527][ T5459]  do_syscall_64+0xe2/0xf80
[  112.788567][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.791211][ T5459] Modules linked in:
[  112.793070][ T5459] CPU: 0 UID: 0 PID: 5459 Comm: syz.0.17 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  112.793087][ T5459] Tainted: [B]=BAD_PAGE
[  112.793090][ T5459] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  112.793097][ T5459] Call Trace:
[  112.793104][ T5459]  <TASK>
[  112.793110][ T5459]  dump_stack_lvl+0xe8/0x150
[  112.793127][ T5459]  bad_page+0x17f/0x1c0
[  112.793140][ T5459]  __free_frozen_pages+0xd28/0xd70
[  112.793163][ T5459]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  112.793181][ T5459]  bpf_xdp_adjust_tail+0x1d6/0x220
[  112.793190][ T5459]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  112.793197][ T5459]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  112.793215][ T5459]  do_xdp_generic+0xa6f/0x1280
[  112.793227][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  112.793244][ T5459]  ? __pfx_do_xdp_generic+0x10/0x10
[  112.793259][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  112.793279][ T5459]  ? tun_get_user+0x2354/0x3dd0
[  112.793293][ T5459]  tun_get_user+0x247d/0x3dd0
[  112.793310][ T5459]  ? aa_file_perm+0x12d/0x1630
[  112.793322][ T5459]  ? aa_file_perm+0x440/0x1630
[  112.793333][ T5459]  ? __pfx_tun_get_user+0x10/0x10
[  112.793348][ T5459]  ? __lock_acquire+0x6b5/0x2cf0
[  112.793364][ T5459]  ? ref_tracker_alloc+0x363/0x4d0
[  112.793377][ T5459]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  112.793388][ T5459]  ? tun_get+0x1c/0x2f0
[  112.793401][ T5459]  ? tun_get+0x1c/0x2f0
[  112.793415][ T5459]  ? tun_get+0x1c/0x2f0
[  112.793429][ T5459]  ? tun_get+0x1c/0x2f0
[  112.793442][ T5459]  tun_chr_write_iter+0x113/0x200
[  112.793456][ T5459]  vfs_write+0x61d/0xb90
[  112.793471][ T5459]  ? __pfx_vfs_write+0x10/0x10
[  112.793484][ T5459]  ? __pfx_do_futex+0x10/0x10
[  112.793503][ T5459]  ksys_write+0x150/0x270
[  112.793516][ T5459]  ? __pfx_ksys_write+0x10/0x10
[  112.793529][ T5459]  do_syscall_64+0xe2/0xf80
[  112.793540][ T5459]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.793550][ T5459]  ? trace_irq_disable+0x37/0x100
[  112.793561][ T5459]  ? clear_bhb_loop+0x60/0xb0
[  112.793572][ T5459]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.793583][ T5459] RIP: 0033:0x7f125f75b78e
[  112.793593][ T5459] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  112.793604][ T5459] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  112.793616][ T5459] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  112.793624][ T5459] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  112.793630][ T5459] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  112.793636][ T5459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  112.793642][ T5459] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  112.793654][ T5459]  </TASK>
[  112.797758][ T5353] Bluetooth: hci0: command tx timeout
[  113.023286][ T5460] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880122d2f00 pfn:0x122d2
[  113.027633][ T5460] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  113.030983][ T5460] raw: 00fff00000000000 dead000000000040 ffff88801fa11000 0000000000000000
[  113.034874][ T5460] raw: ffff8880122d2f00 3fffffffffffffff 00000000ffffffff 0000000000000000
[  113.038664][ T5460] page dumped because: VM_BUG_ON_PAGE(page_ref_count(page) == 0)
[  113.042107][ T5460] page_owner tracks the page as allocated
[  113.044719][ T5460] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 5459, tgid 5459 (syz.0.17), ts 110438635797, free_ts 110414153260
[  113.052536][ T5460]  post_alloc_hook+0x228/0x280
[  113.054662][ T5460]  get_page_from_freelist+0x24dc/0x2580
[  113.057098][ T5460]  __alloc_frozen_pages_noprof+0x18d/0x380
[  113.059682][ T5460]  alloc_pages_bulk_noprof+0x558/0x700
[  113.062057][ T5460]  __page_pool_alloc_netmems_slow+0x14c/0x710
[  113.064853][ T5460]  page_pool_alloc_frag_netmem+0x421/0x9b0
[  113.067535][ T5460]  skb_pp_cow_data+0xc43/0x1680
[  113.069825][ T5460]  do_xdp_generic+0x715/0x1280
[  113.072013][ T5460]  tun_get_user+0x247d/0x3dd0
[  113.074217][ T5460]  tun_chr_write_iter+0x113/0x200
[  113.076236][ T5460]  vfs_write+0x61d/0xb90
[  113.078070][ T5460]  ksys_write+0x150/0x270
[  113.080004][ T5460]  do_syscall_64+0xe2/0xf80
[  113.081935][ T5460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.084600][ T5460] page last free pid 4715 tgid 4715 stack trace:
[  113.087503][ T5460]  __free_frozen_pages+0xbf8/0xd70
[  113.089861][ T5460]  __put_partials+0x146/0x170
[  113.092025][ T5460]  __slab_free+0x294/0x320
[  113.094127][ T5460]  qlist_free_all+0x97/0x100
[  113.096149][ T5460]  kasan_quarantine_reduce+0x148/0x160
[  113.098606][ T5460]  __kasan_slab_alloc+0x22/0x80
[  113.100918][ T5460]  kmem_cache_alloc_noprof+0x370/0x6e0
[  113.104332][ T5460]  getname_flags+0xb7/0x540
[  113.106420][ T5460]  do_readlinkat+0xcc/0x510
[  113.108515][ T5460]  __x64_sys_readlink+0x7f/0x90
[  113.110704][ T5460]  do_syscall_64+0xe2/0xf80
[  113.112908][ T5460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.116020][ T5460] ------------[ cut here ]------------
[  113.118386][ T5460] kernel BUG at ./include/linux/mm.h:1292!
[  113.121126][ T5460] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[  113.124106][ T5460] CPU: 0 UID: 0 PID: 5460 Comm: syz.0.18 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  113.128678][ T5460] Tainted: [B]=BAD_PAGE
[  113.130651][ T5460] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  113.135002][ T5460] RIP: 0010:page_frag_free+0x182/0x240
[  113.137464][ T5460] Code: 38 c1 0f 8c 64 ff ff ff 4c 89 f7 e8 88 07 0d 00 e9 57 ff ff ff e8 ae 2d a3 ff 48 89 df 48 c7 c6 e0 ca ba 8b e8 ef b6 06 ff 90 <0f> 0b 48 89 de 48 81 e6 ff 0f 00 00 31 ff e8 6b 32 a3 ff 48 89 d8
[  113.145948][ T5460] RSP: 0018:ffffc9000198f490 EFLAGS: 00010246
[  113.148640][ T5460] RAX: 8815a5c574702d00 RBX: ffffea000048b480 RCX: 0000000000000201
[  113.152162][ T5460] RDX: 0000000000000000 RSI: ffffffff8c074fe0 RDI: ffff88803ac50000
[  113.155723][ T5460] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000004
[  113.159340][ T5460] R10: dffffc0000000000 R11: fffffbfff1c7ce48 R12: dffffc0000000000
[  113.162691][ T5460] R13: 000000000000bcdd R14: ffffea000048b4b4 R15: dead000000000040
[  113.166048][ T5460] FS:  000055555f127500(0000) GS:ffff88808ccea000(0000) knlGS:0000000000000000
[  113.169804][ T5460] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  113.172702][ T5460] CR2: 0000200000010000 CR3: 0000000037ab4000 CR4: 0000000000352ef0
[  113.176159][ T5460] Call Trace:
[  113.177649][ T5460]  <TASK>
[  113.179023][ T5460]  bpf_xdp_frags_shrink_tail+0x4f7/0x7f0
[  113.181475][ T5460]  bpf_xdp_adjust_tail+0x1d6/0x220
[  113.183726][ T5460]  bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[  113.186079][ T5460]  bpf_prog_run_generic_xdp+0x623/0x13f0
[  113.188502][ T5460]  ? lock_release+0x4b/0x3a0
[  113.190814][ T5460]  do_xdp_generic+0xa6f/0x1280
[  113.192897][ T5460]  ? __pfx_do_xdp_generic+0x10/0x10
[  113.195157][ T5460]  ? tun_get_user+0x2354/0x3dd0
[  113.197295][ T5460]  tun_get_user+0x247d/0x3dd0
[  113.199445][ T5460]  ? aa_file_perm+0x440/0x1630
[  113.201496][ T5460]  ? __pfx_tun_get_user+0x10/0x10
[  113.203626][ T5460]  ? get_futex_key+0x8cd/0x1690
[  113.205730][ T5460]  ? ref_tracker_alloc+0x363/0x4d0
[  113.207865][ T5460]  ? rcu_is_watching+0x15/0xb0
[  113.210004][ T5460]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  113.212333][ T5460]  ? __futex_hash+0x33b/0x760
[  113.214337][ T5460]  ? tun_get+0x1c/0x2f0
[  113.216181][ T5460]  ? tun_get+0x1c/0x2f0
[  113.217911][ T5460]  ? rcu_is_watching+0x15/0xb0
[  113.220008][ T5460]  ? tun_get+0x1c/0x2f0
[  113.221757][ T5460]  ? lock_release+0x4b/0x3a0
[  113.223760][ T5460]  ? apparmor_file_permission+0x17f/0x1f0
[  113.226256][ T5460]  ? tun_get+0x1c/0x2f0
[  113.228056][ T5460]  tun_chr_write_iter+0x113/0x200
[  113.230385][ T5460]  vfs_write+0x61d/0xb90
[  113.232242][ T5460]  ? __pfx_vfs_write+0x10/0x10
[  113.234159][ T5460]  ? __pfx_do_futex+0x10/0x10
[  113.235994][ T5460]  ksys_write+0x150/0x270
[  113.237619][ T5460]  ? __pfx_ksys_write+0x10/0x10
[  113.239599][ T5460]  ? rcu_is_watching+0x15/0xb0
[  113.241508][ T5460]  do_syscall_64+0xe2/0xf80
[  113.243391][ T5460]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.245795][ T5460]  ? trace_irq_disable+0x37/0x100
[  113.247887][ T5460]  ? clear_bhb_loop+0x60/0xb0
[  113.249774][ T5460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.252177][ T5460] RIP: 0033:0x7f125f75b78e
[  113.254139][ T5460] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  113.261764][ T5460] RSP: 002b:00007fff786bbd58 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  113.265430][ T5460] RAX: ffffffffffffffda RBX: 000055555f127500 RCX: 00007f125f75b78e
[  113.268917][ T5460] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[  113.272264][ T5460] RBP: 00007f125f808c1f R08: 0000000000000000 R09: 0000000000000000
[  113.275698][ T5460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  113.279118][ T5460] R13: 00007f125fa15fac R14: 00007f125fa15fa0 R15: 00007f125fa15fa0
[  113.282458][ T5460]  </TASK>
[  113.283820][ T5460] Modules linked in:
[  113.285628][ T5460] ---[ end trace 0000000000000000 ]---
[  113.287985][ T5460] RIP: 0010:page_frag_free+0x182/0x240
[  113.290484][ T5460] Code: 38 c1 0f 8c 64 ff ff ff 4c 89 f7 e8 88 07 0d 00 e9 57 ff ff ff e8 ae 2d a3 ff 48 89 df 48 c7 c6 e0 ca ba 8b e8 ef b6 06 ff 90 <0f> 0b 48 89 de 48 81 e6 ff 0f 00 00 31 ff e8 6b 32 a3 ff 48 89 d8
[  113.298927][ T5460] RSP: 0018:ffffc9000198f490 EFLAGS: 00010246
[  113.301529][ T5460] RAX: 8815a5c574702d00 RBX: ffffea000048b480 RCX: 0000000000000201
[  113.305062][ T5460] RDX: 0000000000000000 RSI: ffffffff8c074fe0 RDI: ffff88803ac50000
[  113.308590][ T5460] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000004
[  113.312013][ T5460] R10: dffffc0000000000 R11: fffffbfff1c7ce48 R12: dffffc0000000000
[  113.315508][ T5460] R13: 000000000000bcdd R14: ffffea000048b4b4 R15: dead000000000040
[  113.318934][ T5460] FS:  000055555f127500(0000) GS:ffff88808ccea000(0000) knlGS:0000000000000000
[  113.322918][ T5460] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  113.325838][ T5460] CR2: 0000200000010000 CR3: 0000000037ab4000 CR4: 0000000000352ef0
[  113.329566][ T5460] Kernel panic - not syncing: Fatal exception in interrupt
[  113.333028][ T5460] Kernel Offset: disabled
[  113.334705][ T5460] Rebooting in 86400 seconds..

VM DIAGNOSIS:
05:46:19  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000030 RBX=0000000000000030 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900031a6c70
R8 =ffff888035010237 R9 =1ffff11006a02046 R10=dffffc0000000000 R11=ffffffff85335ee0
R12=dffffc0000000000 R13=ffffffff9a02ca22 R14=ffffffff9a3416a0 R15=0000000000000000
RIP=ffffffff85335f5c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055555f127500 ffffffff 00c00000
GS =0000 ffff88808ccea000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000010000 CR3=000000005649d000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=000000000000003f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 006e75745f7a7973
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff786bc216
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff786bc216 00007fff786bc21c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f125f808704
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f125f808750
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f125f8086c4
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f125f808742
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c667265766f20 6772612061746164 000a747261745374 6f687370616e5300
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000700080006
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000094
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000094
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000