last executing test programs:

31.139707307s ago: executing program 0 (id=22):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="dc010000210000000400000000000000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r1 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000580)={'veth1_virt_wifi\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000080)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000100)={@mcast1, @loopback, @ipv4={'\x00', '\xff\xff', @empty}, 0x3ff, 0x6, 0xfbff, 0x400, 0x5, 0x700042, r2})
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f00000000c0)='veno\x00', 0x48)

30.978960612s ago: executing program 0 (id=25):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='tlb_flush\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x16, 0x6, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000faffffff0000000000004000850000002c0000001800000004000000000000000700000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x16, 0x6, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000faffffff0000000000004000850000002c0000001800000004000000000000000700000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r2, 0x27, 0x0, 0x0, 0x0, 0x0, 0x1400, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r2, 0x27, 0x0, 0x0, 0x0, 0x0, 0x1400, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='hugetlbfs\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='hugetlbfs\x00', 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x3c1, 0x3, 0x460, 0x250, 0x12, 0x60d, 0x0, 0x202, 0x390, 0x2e8, 0x2e8, 0x390, 0x2c0, 0x4, 0x0, {[{{@uncond, 0x0, 0x208, 0x250, 0x0, {}, [@inet=@rpfilter={{0x28}}, @common=@rt={{0x138}, {0x0, [], 0x0, 0x30, 0x0, [@empty, @private0, @local, @private0, @dev, @empty, @empty, @mcast1, @private2, @mcast2, @local, @private0, @private2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4={'\x00', '\xff\xff', @empty}, @private1]}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0x110, 0x140, 0x0, {}, [@common=@inet=@iprange={{0x68}, {@ipv6=@remote, @ipv6=@private0, @ipv6=@private0, @ipv4=@loopback}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4c0)
fsopen(&(0x7f0000000340)='vxfs\x00', 0x0)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
pidfd_getfd(0xffffffffffffffff, r3, 0x0)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000340)=@gcm_256={{0x304}, '\x00', "376a31a11e8e279cec092f071cc80f218d360356a936a7e3971a8c35c47e5804", '\x00', "fffffffffffffffd"}, 0x38) (async)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000340)=@gcm_256={{0x304}, '\x00', "376a31a11e8e279cec092f071cc80f218d360356a936a7e3971a8c35c47e5804", '\x00', "fffffffffffffffd"}, 0x38)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
writev(r3, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1) (async)
writev(r3, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x820065, &(0x7f0000000040)={[{@grpquota_inode_hardlimit}]})
close_range(r3, r3, 0x0) (async)
close_range(r3, r3, 0x0)

30.337458306s ago: executing program 0 (id=35):
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newqdisc={0x44, 0x24, 0x0, 0x0, 0x0, {}, [@qdisc_kind_options=@q_codel={{0xa}, {0x14, 0x2, [@TCA_CODEL_TARGET={0x8}, @TCA_CODEL_ECN={0x8}]}}]}, 0x44}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="e4"], 0xe4}}, 0x0)
close(r1)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000180)={'ip6_vti0\x00', @link_local})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r5, &(0x7f0000000100), 0x208e2a4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
preadv(r5, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x5, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000068b893f34fbffaa6bf2a97cfa94eabdf00000000000000000000000095000000d3031a00"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_SET_CPUID2(r6, 0x4008ae90, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000000000007000000"])
ioctl$KVM_RUN(r6, 0xae80, 0x0)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x11}, 0x800)
write$tun(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="001c86dd0700100000004000000060ec97000fc83c00fe8000000000000000000000000000aaff02000000000000000000000000000106", @ANYBLOB='PY'], 0xffe)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r0, &(0x7f0000000000), 0xfffffecc)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)

29.309878179s ago: executing program 0 (id=48):
epoll_create1(0x80000)
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x6, 0x2)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f0000000040)={0x3, 0x7, 0x6, 0xc, '\x00', '\x00', '\x00', 0x25f, 0x4, 0xce04, 0xabbc, "a0fc335d7957164db9f35a0c3b7cb9c9"})
r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000180), 0x40402, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_HANDLE_TO_FD_SYNC_FILE(r1, 0xc01064c1, &(0x7f00000001c0))
sendmsg$unix(r1, &(0x7f0000001780)={&(0x7f0000000200)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000001700)=[{&(0x7f0000000280)="80156881c77487019606a56f4fbe3ecaabafa0a99f376ec10128064535b99e8ba845012b49b369975007f38b78e9d9f52570441c72f622c419994890b3ec166ada5ee1f3190f6c51e3866b17ce84df9b5ee1c6e1b7e9631a593c7954d2a6374a8e8851200e051efe1df5fb16dc1270484fdcc156e0a2c3c820ff16fc48579620b97722d26913f6fac8ba6b192c784721c656a8452ff8d23d059ebb24b7d788e882ebd3da07ae5fdcb2fc09b62d5cbd99ed2fc7caa9c69d3f23a464814500a75481c003926aa9abaa2f3bf2895a88b1ed595b87b6f4e9f6aa4bead25f23b70be4e41b114536acc82aa064", 0xea}, {&(0x7f0000000380)="59759a3893340e2beb7b66994e3c82faad15dd5b0dbc24d44581cd2baf676a54cd4ed74e1b995823a58346af5b78b22a828a141c3328a8cd70daba64df5a5df24f92bf47f7e1c8dc9ba031f8ff0f9890de0b5570c6b029", 0x57}, {&(0x7f0000000400)="4c6871bf1b016a4adc6b2d281ed19b5797916bff2ccdb5045b04006173bf4530ec1d63ca896974b47d38177df3c753d4ae79516cd29b8e843cd2a9ac72e6cb3de977e6275c19e2c5aab38d16ae1a17060accfc81f534d2ff3d4ddeef0313b1bf336b0d3946dec72196", 0x69}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)="ed2d6d488a511f1b33950813c88e0ac60bd5ef2361946e9bd78c1f178d03856734707aa6142ee8a253dd29e6e9a5c8276ae59c7046ad446742218fef9e880be340a9dce4ab1d255b834f9c28237e0fdeda13c84f2d1816b743e4ae6e942d239ca5993c3e7ecde25426b82e3a1ef1a1f66b8e10a9d45488f463743e6ac5f8d2403838ecea6ac324759b0e688d1fe85693983228bdc5ac90e5060ae206d6", 0x9d}, {&(0x7f0000001540)="e2a08da2903ba1bb051394cdfd58d653274c4a6f01403719c6db28e8395e5e84eaa0e4d4b638b57fa3c5fc26253de0ec47384eb291e1ca057e71dc7ef59791d180992b14b68ccc709269b6e3592feae7368d680a4027e62f3e396be23b14e2235c855be5c7a9d353e14d9a3a84e441e4adcd158b4cea87aa822d60c7bf2c9601e8fd3f3c14a45f559625fb69a1d8f92a1162cf2ee3dcf891ca3819ba", 0x9c}, {&(0x7f0000001600)="bc237c4a20b318b5cef0ca1a0124b96e3f29cad651b4b8f88aba5c9100582f0972fdc2451212f41719a791ec5abda40b46580b5d097fbc2bf58a4dd438c41ad3bd982b300277ca6c97ebff4dfd4b4ffb90c95b9616fe4809c1593314e15f0d8ab4d18297f6f2631c2ffc1e5f13f43825e78953eb8a178f67bdfb0a02b2291ebcc227efdef4b3b922e906fa7977d89eb9f18c8c03e6093e84fe53ff589b07e798901cb93663ffb4f152dc888f1432cbdff122de906f4b423056a13d8c431311d341f4e83e822bf854201a7de0cb9fdb7dfc0ff9b7c530be0e2699ae6bd1e9ee97f53a8bd997d6aac7d1d30489", 0xec}], 0x7, 0x0, 0x0, 0x4000000}, 0x20000800)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f00000017c0)={0x0, 0x1, r0})
read$FUSE(r1, &(0x7f0000001800)={0x2020, 0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
quotactl_fd$Q_QUOTAON(r1, 0xffffffff80000200, r3, &(0x7f0000003840)='./file0\x00')
ioctl$UI_END_FF_ERASE(r1, 0x400c55cb, &(0x7f0000003880)={0x7, 0x9ec, 0xffffffff})
syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r1, 0xc01064b5, &(0x7f0000003900)={&(0x7f00000038c0)=[<r4=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETENCODER(r1, 0xc01464a6, &(0x7f0000003940)={0x0, 0x0, <r5=>0x0})
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000003a80)={&(0x7f0000003980)=[<r6=>0x0], &(0x7f00000039c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000003a00)=[0x0], &(0x7f0000003a40)=[0x0, 0x0, 0x0], 0x1, 0x8, 0x1, 0x3})
ioctl$DRM_IOCTL_MODE_SETPLANE(r1, 0xc03064b7, &(0x7f0000003ac0)={r4, r5, r6, 0x2ca3, 0x8, 0x7, 0xffff7fff, 0x9, 0xfffffffd, 0x4c, 0x7fffffff, 0xffff})
openat$iommufd(0xffffffffffffff9c, &(0x7f0000003b00), 0x82, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000003b40)={0xc})
r7 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000003b80), 0x200, 0x0)
ioctl$UI_SET_KEYBIT(r7, 0x40045565, 0x20f)
epoll_create1(0x80000)
r8 = openat$uhid(0xffffffffffffff9c, &(0x7f0000003bc0), 0x802, 0x0)
write$UHID_INPUT(r8, &(0x7f0000003c00)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$DRM_IOCTL_ADD_MAP(r1, 0xc0286415, &(0x7f0000004c40)={&(0x7f0000ffd000/0x1000)=nil, 0x6})
ioctl$TUNSETIFF(r7, 0x400454ca, &(0x7f0000004c80)={'macsec0\x00', 0x4000})
ioctl$DRM_IOCTL_AGP_ENABLE(r7, 0x40086432, &(0x7f0000004cc0)=0x73f)
r9 = openat2(0xffffffffffffffff, &(0x7f0000004d00)='./file0/file0\x00', &(0x7f0000004d40)={0x0, 0x0, 0x18}, 0x18)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000004f40)={r9, &(0x7f0000004d80)="506cd99229432835cb1544fb8a5836d44b372ef38548b4b99b533a91234a45ea70067feaabeb617b6b18238222d593807067b7e58302d69591d1d620e3fae5f7d2d1df3afcc59524ee4b15e1f67260fdd7e7b5ae548201c4935685b43f728a5d8ee5dc5ced6fd5c6360031a5ee10aeb86227dc87a0c302fa31b58e1db3330a1161d123ea4038e2dcc2f359edb2a1f39521ad8079b381423b600883a5da8c57f6387576bd45aef6c267e28130b73072b264b1152558746e47a17d976fead09a138c83489370e67afb034c290f440b61e3e762e74a9e73bb362b527b68a0442ca5c3ea115e56c86a", &(0x7f0000004e80)=""/141}, 0x20)
r10 = syz_open_dev$dri(&(0x7f0000004f80), 0x6, 0x8400)
ioctl$DRM_IOCTL_WAIT_VBLANK(r10, 0xc018643a, &(0x7f0000004fc0)={0x10000000, 0x401, 0x100000001})
write$FUSE_GETXATTR(0xffffffffffffffff, &(0x7f0000005040)={0x18, 0x0, r2}, 0x18)

29.229936448s ago: executing program 0 (id=49):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, 0x800, 0x2, 0x3, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@loopback, 0x800, 0x0, 0x3, 0x0, 0x40, 0x8}, 0x20)
ioperm(0x6, 0x1, 0x95d)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000180)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x1101088, 0x0)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
recvfrom$inet6(r1, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="20000000000709000000080000000000000002000900010073797a31000082baf999b6f75f0000"], 0x20}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000001c0)={0x28, 0x1, 0x7, 0x101, 0x0, 0x0, {}, [@NFACCT_FILTER={0x14, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8}, @NFACCT_FILTER_VALUE={0x8}]}]}, 0x28}}, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00') (async)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0) (async)
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00') (async)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')
socket(0x10, 0x3, 0x0) (async)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c0000001a0001002dbd7000ffdbdf251c000000ff"], 0x1c}}, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000e3a000/0x2000)=nil, 0x2000, 0x17)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1) (async)
madvise(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
arch_prctl$ARCH_SHSTK_ENABLE(0x5001, 0x1) (async)
arch_prctl$ARCH_SHSTK_ENABLE(0x5001, 0x1)

29.150133485s ago: executing program 0 (id=50):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/217, 0xd9}], 0x1, 0x0)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f00009be000/0x4000)=nil)
r1 = syz_open_dev$vim2m(&(0x7f0000000180), 0x100006, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000040)={0x7, 0x1, 0x0, "093d4a3b5b7bc69a21cfb7f5eaac46dbe89b13471a0488a6679f9a2102249341"})
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000240)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x84, &(0x7f0000000140)={<r6=>r5, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f0000000200)=0x90)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f0000000280)={<r7=>r6, 0xe1, "36973391d0ffb0bfc710e26ca401c85e421bdcfbd8a59bb7c9d32eb034386afe793e4797bfdaea69c178a94c3297b65641d765bd7565124629c22de517f272a3c59649ce78e231968bdce36bf02003d819588ce670381f4b92707c33fe0f5df032bbc258608ae7e5749291c6fa8af13cfa819858e848b80e819b4ba8c53ccb2444bad01fcd8d114c16048e5b6f026c643465dc4a668ce80419ef8ddf36f8c6547ce74bb87cd2f39a81915a558e86d5aff6b0c61af1f4b3745ab0bca8025539cf3aa1eb56004467367aae45f4cd3624b381c363a038b41564b9e17f571f1c26595c"}, &(0x7f0000000380)=0xe9)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000080)={r7, 0xdb, "87c89c7abc6d2d277b926a857414e49f28ff48176d34a00543e538bafda866a5039ea24b0ff05a1cf452d3b28dad5331ccd1765282f34e4638ed221b93f91aefe80bf735111044a270a604b90af890f0292a5b9c62655548caf069bcb744e1b3dc97810a13f50b4d869bc259be53d77709033eab2c63cc2d400aa0001f818a25a74be22ba3ad064406c16e978dd143643575a6c7d9cc8935ccaf2d6118dc711e38407df595a36e1eb1cb5e599edafa276db996aa63656c873b4dc7c4e579661c82ac9cdb4ddabb955ae43238ff486512f1eb5fd3c52afa6a92a676"}, &(0x7f00000001c0)=0xe3)
getitimer(0x2, &(0x7f00000003c0))
mmap(&(0x7f00001e9000/0x3000)=nil, 0x3000, 0x5, 0x4002011, r2, 0xab1ff000)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) (async)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) (async)
gettid() (async)
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/217, 0xd9}], 0x1, 0x0) (async)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f00009be000/0x4000)=nil) (async)
syz_open_dev$vim2m(&(0x7f0000000180), 0x100006, 0x2) (async)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000040)={0x7, 0x1, 0x0, "093d4a3b5b7bc69a21cfb7f5eaac46dbe89b13471a0488a6679f9a2102249341"}) (async)
open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000240)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x84, &(0x7f0000000140)={r5, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f0000000200)=0x90) (async)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f0000000280)={r6, 0xe1, "36973391d0ffb0bfc710e26ca401c85e421bdcfbd8a59bb7c9d32eb034386afe793e4797bfdaea69c178a94c3297b65641d765bd7565124629c22de517f272a3c59649ce78e231968bdce36bf02003d819588ce670381f4b92707c33fe0f5df032bbc258608ae7e5749291c6fa8af13cfa819858e848b80e819b4ba8c53ccb2444bad01fcd8d114c16048e5b6f026c643465dc4a668ce80419ef8ddf36f8c6547ce74bb87cd2f39a81915a558e86d5aff6b0c61af1f4b3745ab0bca8025539cf3aa1eb56004467367aae45f4cd3624b381c363a038b41564b9e17f571f1c26595c"}, &(0x7f0000000380)=0xe9) (async)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000080)={r7, 0xdb, "87c89c7abc6d2d277b926a857414e49f28ff48176d34a00543e538bafda866a5039ea24b0ff05a1cf452d3b28dad5331ccd1765282f34e4638ed221b93f91aefe80bf735111044a270a604b90af890f0292a5b9c62655548caf069bcb744e1b3dc97810a13f50b4d869bc259be53d77709033eab2c63cc2d400aa0001f818a25a74be22ba3ad064406c16e978dd143643575a6c7d9cc8935ccaf2d6118dc711e38407df595a36e1eb1cb5e599edafa276db996aa63656c873b4dc7c4e579661c82ac9cdb4ddabb955ae43238ff486512f1eb5fd3c52afa6a92a676"}, &(0x7f00000001c0)=0xe3) (async)
getitimer(0x2, &(0x7f00000003c0)) (async)
mmap(&(0x7f00001e9000/0x3000)=nil, 0x3000, 0x5, 0x4002011, r2, 0xab1ff000) (async)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2) (async)

20.140290547s ago: executing program 1 (id=120):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={0x1c, 0x3b, 0x107, 0x0, 0x0, {0x4}, [@typed={0x8, 0x1, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0)
r2 = accept(r1, &(0x7f0000000280)=@nfc_llcp, &(0x7f0000000080)=0x80)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3, 0x0, 0x5}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f00000003c0)={0x1, &(0x7f0000000380)=[{0xf, 0x1, 0x0, 0xa0ec}]})
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, &(0x7f0000000340)=0x100000, 0x4)
ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r6, &(0x7f0000000480)={0xc, 0x8, 0xfa00, {&(0x7f0000000640)}}, 0x10)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$EVIOCGPROP(r7, 0x40047438, &(0x7f0000000180)=""/246)
socketpair(0x1, 0x100000005, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x0)
ioctl$PPPIOCSFLAGS1(r7, 0x4004743a, &(0x7f0000000300))
ioctl$PPPIOCGCHAN(r4, 0x80047437, &(0x7f0000001f00))
sendmmsg(r4, &(0x7f0000003900)=[{{&(0x7f0000000580)=@xdp={0x2c, 0x1, 0x0, 0x24}, 0x80, &(0x7f0000000600)=[{0x0}, {&(0x7f00000007c0)="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", 0x5b4}, {0x0}], 0x3, &(0x7f00000017c0)}}, {{0x0, 0x0, &(0x7f0000003300)}}], 0x2, 0x0)

19.220403713s ago: executing program 1 (id=126):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000003300)={0x50, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_NETMASK={0x5}]}]}, 0x50}}, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r1 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/oops_count', 0x180, 0x2)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000040)={0x1f, 0x89, 0x3, "2a813ca487a94e2ab73b257dfdf2fe6b4f33a0251fd8d9d1f627991741298f"})
syz_clone3(&(0x7f0000000300)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58)

19.214494417s ago: executing program 1 (id=127):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)=0xb463, 0x12)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'macvtap0\x00', 0x10})

19.130131456s ago: executing program 1 (id=128):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000280)='./file0/../file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1000, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x91905a, 0x0)
mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000dc0)='./file0/file0\x00', 0x0, 0x1145d10, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
read$FUSE(r1, &(0x7f00000029c0)={0x2020}, 0x2020)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000280)={0x53, 0x0, 0x5, 0x0, @scatter={0x5, 0x0, &(0x7f0000000380)=[{&(0x7f00000001c0)=""/122, 0x7a}, {&(0x7f0000000300)=""/81, 0x51}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000001440)=""/4096, 0x1000}, {&(0x7f0000000240)=""/29, 0x1d}]}, &(0x7f0000000100)="0dbab70eaa", 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = syz_open_dev$swradio(&(0x7f00000000c0), 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000040)={0xf0f045})
pread64(r3, &(0x7f0000000400)=""/42, 0x2a, 0x0)
ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000000))
poll(&(0x7f0000000040)=[{r2}], 0x1, 0x3)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_HYPERV_EVENTFD(r5, 0x4048aec9, &(0x7f0000000040)={0x4})
socket$packet(0x11, 0x3, 0x300)

19.000570719s ago: executing program 1 (id=129):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_OCB(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010028bd7000ffdbdf256c00000008000300", @ANYRES32=r1, @ANYBLOB="4582831cd47757b64d5779a7f231e528a1b555444ce91de8d5049072468b2fcfbc66ea6721fe7b224eff73925e362ecfc0b9c90381f77c20a670cd869ccf6821718c226c584acfeb2b56e11b6c614f76a1e654f9866bec90693f27d37e4cb6faf8362e259423da2779b8ae9b4d9131440b986e27440943603a9853002938000000009bc52e8574381f16292a3a0180fcb7d74fdf39b50eec56bea5be578a4e7fe534988d827f9f5c9b7e63749ae1ee8fc4727d8809b8e74cd06606a685807b538b5afb3ffe3c2d0408a76e7e890d9813364f57a106ad14a09054ef65c508690cb51f03c100000000"], 0x1c}, 0x1, 0x0, 0x0, 0x24004015}, 0x448d0)

18.747562164s ago: executing program 1 (id=130):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0xffffffff, [{0x0, 0x2, 0x1}]}, @restrict={0x0, 0x0, 0x0, 0x6, 0x2}]}}, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x20005, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000140)={'ip6_vti0\x00', <r2=>0x0, 0x29, 0x8, 0x8, 0x7, 0x54, @loopback, @remote, 0x7, 0x7800, 0xfff, 0x6}})
clock_gettime(0x0, &(0x7f0000000240)={<r3=>0x0, <r4=>0x0})
ioctl$SNDRV_TIMER_IOCTL_STOP(0xffffffffffffffff, 0x54a1)
sendmsg$can_bcm(r1, &(0x7f00000003c0)={&(0x7f0000000200)={0x1d, r2}, 0x10, &(0x7f0000000380)={&(0x7f00000002c0)={0x2, 0x32, 0x0, {r3, r4/1000+60000}, {}, {0x1, 0x1, 0x1, 0x1}, 0x1, @canfd={{0x2, 0x1, 0x1}, 0x28, 0x1, 0x0, 0x0, "2abbe02b5f58ecf48af03e5dc33520ca7a5dab5fe24f0b6d5fda44ce1abe8796dc13066d1b07d1334c445ac49e8917a518886e89e5a95882e484ef08549f96cd"}}, 0x80}, 0x1, 0x0, 0x0, 0x4008800}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0xffff}, 0x8)
ioctl(r0, 0x8b2b, &(0x7f0000000040))

18.707132257s ago: executing program 32 (id=130):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0xffffffff, [{0x0, 0x2, 0x1}]}, @restrict={0x0, 0x0, 0x0, 0x6, 0x2}]}}, 0x0, 0x3e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x20005, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000140)={'ip6_vti0\x00', <r2=>0x0, 0x29, 0x8, 0x8, 0x7, 0x54, @loopback, @remote, 0x7, 0x7800, 0xfff, 0x6}})
clock_gettime(0x0, &(0x7f0000000240)={<r3=>0x0, <r4=>0x0})
ioctl$SNDRV_TIMER_IOCTL_STOP(0xffffffffffffffff, 0x54a1)
sendmsg$can_bcm(r1, &(0x7f00000003c0)={&(0x7f0000000200)={0x1d, r2}, 0x10, &(0x7f0000000380)={&(0x7f00000002c0)={0x2, 0x32, 0x0, {r3, r4/1000+60000}, {}, {0x1, 0x1, 0x1, 0x1}, 0x1, @canfd={{0x2, 0x1, 0x1}, 0x28, 0x1, 0x0, 0x0, "2abbe02b5f58ecf48af03e5dc33520ca7a5dab5fe24f0b6d5fda44ce1abe8796dc13066d1b07d1334c445ac49e8917a518886e89e5a95882e484ef08549f96cd"}}, 0x80}, 0x1, 0x0, 0x0, 0x4008800}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0xffff}, 0x8)
ioctl(r0, 0x8b2b, &(0x7f0000000040))

13.98934543s ago: executing program 33 (id=50):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/217, 0xd9}], 0x1, 0x0)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f00009be000/0x4000)=nil)
r1 = syz_open_dev$vim2m(&(0x7f0000000180), 0x100006, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000040)={0x7, 0x1, 0x0, "093d4a3b5b7bc69a21cfb7f5eaac46dbe89b13471a0488a6679f9a2102249341"})
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000240)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x84, &(0x7f0000000140)={<r6=>r5, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f0000000200)=0x90)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f0000000280)={<r7=>r6, 0xe1, "36973391d0ffb0bfc710e26ca401c85e421bdcfbd8a59bb7c9d32eb034386afe793e4797bfdaea69c178a94c3297b65641d765bd7565124629c22de517f272a3c59649ce78e231968bdce36bf02003d819588ce670381f4b92707c33fe0f5df032bbc258608ae7e5749291c6fa8af13cfa819858e848b80e819b4ba8c53ccb2444bad01fcd8d114c16048e5b6f026c643465dc4a668ce80419ef8ddf36f8c6547ce74bb87cd2f39a81915a558e86d5aff6b0c61af1f4b3745ab0bca8025539cf3aa1eb56004467367aae45f4cd3624b381c363a038b41564b9e17f571f1c26595c"}, &(0x7f0000000380)=0xe9)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000080)={r7, 0xdb, "87c89c7abc6d2d277b926a857414e49f28ff48176d34a00543e538bafda866a5039ea24b0ff05a1cf452d3b28dad5331ccd1765282f34e4638ed221b93f91aefe80bf735111044a270a604b90af890f0292a5b9c62655548caf069bcb744e1b3dc97810a13f50b4d869bc259be53d77709033eab2c63cc2d400aa0001f818a25a74be22ba3ad064406c16e978dd143643575a6c7d9cc8935ccaf2d6118dc711e38407df595a36e1eb1cb5e599edafa276db996aa63656c873b4dc7c4e579661c82ac9cdb4ddabb955ae43238ff486512f1eb5fd3c52afa6a92a676"}, &(0x7f00000001c0)=0xe3)
getitimer(0x2, &(0x7f00000003c0))
mmap(&(0x7f00001e9000/0x3000)=nil, 0x3000, 0x5, 0x4002011, r2, 0xab1ff000)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) (async)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) (async)
gettid() (async)
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/217, 0xd9}], 0x1, 0x0) (async)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x4000, 0x3, &(0x7f00009be000/0x4000)=nil) (async)
syz_open_dev$vim2m(&(0x7f0000000180), 0x100006, 0x2) (async)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000040)={0x7, 0x1, 0x0, "093d4a3b5b7bc69a21cfb7f5eaac46dbe89b13471a0488a6679f9a2102249341"}) (async)
open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0) (async)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet(0x2, 0x80001, 0x84) (async)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000240)=@assoc_value, &(0x7f0000000040)=0x8) (async)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x84, &(0x7f0000000140)={r5, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f0000000200)=0x90) (async)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r3, 0x84, 0x1b, &(0x7f0000000280)={r6, 0xe1, "36973391d0ffb0bfc710e26ca401c85e421bdcfbd8a59bb7c9d32eb034386afe793e4797bfdaea69c178a94c3297b65641d765bd7565124629c22de517f272a3c59649ce78e231968bdce36bf02003d819588ce670381f4b92707c33fe0f5df032bbc258608ae7e5749291c6fa8af13cfa819858e848b80e819b4ba8c53ccb2444bad01fcd8d114c16048e5b6f026c643465dc4a668ce80419ef8ddf36f8c6547ce74bb87cd2f39a81915a558e86d5aff6b0c61af1f4b3745ab0bca8025539cf3aa1eb56004467367aae45f4cd3624b381c363a038b41564b9e17f571f1c26595c"}, &(0x7f0000000380)=0xe9) (async)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r2, 0x84, 0x1b, &(0x7f0000000080)={r7, 0xdb, "87c89c7abc6d2d277b926a857414e49f28ff48176d34a00543e538bafda866a5039ea24b0ff05a1cf452d3b28dad5331ccd1765282f34e4638ed221b93f91aefe80bf735111044a270a604b90af890f0292a5b9c62655548caf069bcb744e1b3dc97810a13f50b4d869bc259be53d77709033eab2c63cc2d400aa0001f818a25a74be22ba3ad064406c16e978dd143643575a6c7d9cc8935ccaf2d6118dc711e38407df595a36e1eb1cb5e599edafa276db996aa63656c873b4dc7c4e579661c82ac9cdb4ddabb955ae43238ff486512f1eb5fd3c52afa6a92a676"}, &(0x7f00000001c0)=0xe3) (async)
getitimer(0x2, &(0x7f00000003c0)) (async)
mmap(&(0x7f00001e9000/0x3000)=nil, 0x3000, 0x5, 0x4002011, r2, 0xab1ff000) (async)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2) (async)

2.269879527s ago: executing program 3 (id=257):
r0 = socket$netlink(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x80000) (async)
socket$inet6_sctp(0xa, 0x1, 0x84) (async)
prlimit64(0x0, 0x7, &(0x7f00000000c0)={0x3, 0x8}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYRES64=0x0, @ANYRESHEX=r1, @ANYBLOB="03fe000000000000140012800b0001006d616373656300000400028008000500", @ANYRESHEX=r0, @ANYRES64=r1], 0x44}}, 0x0)
r2 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="1400000035000b63d25a80643d66b7d808f2e2ff", 0x14}], 0x1}, 0x0) (async)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000004c0)={{0x8, 0x6, 0x10001, 0xffffffdf, '\x00', 0x4}, 0x3, 0x1, 0xffffffff, 0x0, 0x3, 0x0, 'syz1\x00', &(0x7f0000000140)=['\x00', '\\^{.(@-&+-$\x00', 'wlan0\x00'], 0x13}) (async)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1c8000"], 0x7c}}, 0x0) (async, rerun: 32)
r3 = socket$packet(0x11, 0x3, 0x300) (rerun: 32)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'wg0\x00'}) (async)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="03000000040000194a20a7c87dd63ba95900044000000a00000007000000a11692e5d7a1aa82c0b2c3666a36b6b605e62703ce550faba3bebf10f2360a44c578c8bd6c4ef8549df82fdf4c476e216bb8b2754b86e496f7da263cace6972d55bfe0fe242882044483997d2d79dca1a3c1b9e5d10b00"/130, @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000500"/28], 0x48) (async, rerun: 64)
unlink(&(0x7f0000000280)='.\x00') (async, rerun: 64)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000100)={'macvtap0\x00', 0x2}) (async)
r5 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000000)="05000806", 0x4, 0x0, &(0x7f0000000080)={0x11, 0x8100, r6}, 0x14) (async)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.208739829s ago: executing program 3 (id=259):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="141300001000010000000000000000000000000a44000000060a0b38dbacb0e67e65f49228aaf50400000000000000000200000018000480140001800a00010072616e6765000000040002800900010073797a30000000000900020073797a32000000060000000011000100"], 0x6c}}, 0x0) (async)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r2 = dup(r1)
ioctl$int_in(r2, 0x5452, &(0x7f0000000000)=0x5) (async)
r3 = syz_io_uring_setup(0x2ddd, &(0x7f00000006c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140)) (async)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x224}})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000080000000700000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000a6c9e0ea4919fa00b853a8eb46b27e2fe345b4c4e18025d6cae66aa0568b6e05d7694a8a9120b7d99ae7a4bca1d31421044ea75d90820ef5fdf931766d7d698863074be35a4187cfd886a7b4dabd9715ec24db1957df416ec3eeae53cc8bd998f6ecd85576feaa739b6753e42c99ff038f44f3cf1adaa52a9be446e61592b434590b"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002200000018010000202070250000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1500000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
close(0x3) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x12, 0x8, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
io_uring_enter(r3, 0x381b, 0x0, 0x0, 0x0, 0x0) (async)
ioctl$FS_IOC_READ_VERITY_METADATA(r2, 0xc0286687, &(0x7f0000000240)={0x3, 0x9, 0xc7, &(0x7f00000003c0)=""/199}) (async)
r5 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r5, &(0x7f0000000180)={0xa, 0x0, 0x0, @remote, 0x12}, 0x1c)
r6 = socket$netlink(0x10, 0x3, 0x8000000004)
socket$isdn_base(0x22, 0x3, 0x0) (async)
writev(r6, &(0x7f0000000040)=[{&(0x7f0000000300)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050080005a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)
syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2) (async)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) (async)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
landlock_add_rule$LANDLOCK_RULE_NET_PORT(0xffffffffffffffff, 0x2, &(0x7f00000000c0)={0x1}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="bbbbbbbbbbbb0180c200000008060001"], 0x0) (async)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000080))

2.139179723s ago: executing program 3 (id=261):
r0 = syz_open_pts(0xffffffffffffffff, 0x127e01)
ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f0000000300))
munmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000) (async)
munmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000)
mremap(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
inotify_init1(0x0) (async)
r1 = inotify_init1(0x0)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)
fcntl$getownex(r1, 0x10, &(0x7f0000000040)={0x0, <r2=>0x0})
move_pages(r2, 0x1, &(0x7f0000000740)=[&(0x7f00007c7000/0x3000)=nil], 0x0, 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0) (async)
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
r4 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x48000, @empty}, 0x1c)
setsockopt$inet6_mtu(r4, 0x29, 0x17, &(0x7f0000000240), 0x4) (async)
setsockopt$inet6_mtu(r4, 0x29, 0x17, &(0x7f0000000240), 0x4)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r3, 0xc4c85512, &(0x7f0000000780)={{0x2, 0x0, 0x0, 0x0, 'syz1\x00', 0x5}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4a53, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb9a2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]})
r5 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x14d802, 0x0)
dup(r5) (async)
r6 = dup(r5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r6, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r6, 0x0)
r7 = socket$pptp(0x18, 0x1, 0x2)
r8 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c)
close_range(r7, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[], 0x7)
readahead(r6, 0xfffffffffffffff8, 0x0) (async)
readahead(r6, 0xfffffffffffffff8, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000001e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r10 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_tables_matches\x00')
writev(r10, &(0x7f0000000100)=[{&(0x7f00000004c0)='4', 0x1}], 0x9) (async)
writev(r10, &(0x7f0000000100)=[{&(0x7f00000004c0)='4', 0x1}], 0x9)
r11 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_buf(r11, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d440fe0000000000002900000036000000", 0xfe60) (async)
setsockopt$inet6_buf(r11, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d440fe0000000000002900000036000000", 0xfe60)

2.047762496s ago: executing program 5 (id=265):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000070000100000000000000000007000000", @ANYRES32=r1, @ANYBLOB="2c0001"], 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="4400000070000100000000000000000007000000", @ANYRES32=r1, @ANYBLOB="2c0001"], 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

2.039195198s ago: executing program 5 (id=266):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
writev(r0, &(0x7f0000000040), 0x3)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x23)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r4 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000000100)={0x1, "fa02c8098000", <r5=>0xffffffffffffffff})
r6 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r6, 0xc0285700, &(0x7f0000000000)={0x2, "fa02c80a3a1e9d4b9aaf007638dd031dd75007e58096390000000000008000", <r7=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r7, 0xc0303e03, &(0x7f0000000080)={"6739669f274d13b691ebe45b00e4f5b53e0ca34dd02acecdc67c5e3126628168", r5, <r8=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r8, 0xc0303e03, &(0x7f0000000080)={"000800816800df00", r8, <r9=>0xffffffffffffffff})
ioctl$SYNC_IOC_FILE_INFO(r9, 0xc0383e04, &(0x7f0000000180)={""/32, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1e00000040000000fdffffff0080000002000000", @ANYRES32=r2, @ANYBLOB='\a\x00'/20, @ANYRES32=0x0, @ANYRESOCT=r4, @ANYBLOB="0500000001000000050000000500000000000000000000ad65b04a6ca1ceed7afebcf2245821a15caac7a568ca0029e9c2fa1c5c59e9aa2cc6964a9de89f4121c6134a466d872cc1a53b03c9e147addb5b4e9610b411790e331cdebe1043e7d5"], 0x50)
ioctl$FS_IOC_GETFSLABEL(r3, 0x800452d2, &(0x7f0000000100))
fchdir(r2)
r10 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000200)='proc\x00', 0x0, 0x0)
inotify_init1(0x0)
r11 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r12=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'lo\x00', <r13=>0x0})
sendmsg$nl_route_sched(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=@newqdisc={0x38, 0x24, 0x4, 0x0, 0x0, {0x60, 0x0, 0x0, r13, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pie={{0x8}, {0xc, 0x2, [@TCA_PIE_TUPDATE={0x8, 0x8, 0xffffffff}]}}]}, 0x38}}, 0x0)
r14 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000240)='/proc/thread-self/attr/exec\x00', 0x2, 0x0)
write$selinux_attr(r14, &(0x7f0000000100)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d)
socket$inet6_udplite(0xa, 0x2, 0x88)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff, <r15=>0xffffffffffffffff})
sendmmsg$unix(r15, &(0x7f00000bd000), 0x0, 0x4)

1.858870346s ago: executing program 3 (id=268):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff) (async)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, 0x0) (async)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0) (async)
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) (async)
r2 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r2, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r2, &(0x7f0000000040)={0x24, @short}, 0x14)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat$ocfs2_control(0xffffffffffffff9c, 0x0, 0x10000, 0x0)
mount_setattr(0xffffffffffffffff, 0x0, 0x9880, 0x0, 0x0)
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_usb_disconnect(r4)
syz_usb_connect(0x6, 0x24, &(0x7f0000000000)=ANY=[], 0x0)
ioctl$EVIOCRMFF(r4, 0x5509, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000180)={'macsec0\x00', 0x100}) (async)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000180)={'macsec0\x00', 0x100})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(0xffffffffffffffff, 0x3ba0, 0x0)
sendmsg$IPCTNL_MSG_EXP_DELETE(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x64, 0x2, 0x2, 0x801, 0x0, 0x0, {0x3, 0x0, 0x4}, [@CTA_EXPECT_NAT={0x50, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_TUPLE={0x4c, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @private2={0xfc, 0x2, '\x00', 0x1}}}}]}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x4c844}, 0x844)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000bc0)={'wpan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000bc0)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000040000080001eb008008000300", @ANYRES32=r5], 0x20}}, 0x0)

1.74022699s ago: executing program 5 (id=269):
r0 = syz_open_dev$I2C(&(0x7f00000002c0), 0x0, 0x2)
ioctl$I2C_TIMEOUT(r0, 0x702, 0x3)

1.739077586s ago: executing program 5 (id=270):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
connect$pptp(0xffffffffffffffff, &(0x7f0000000080)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)={0x2, 0x6, 0x4, 0x0, 0x2, 0x0, 0x70bd28}, 0x10}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/34, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000859000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000001c0))
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.483394821s ago: executing program 2 (id=272):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={0x0, 0x30}}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='rdma.current\x00', 0x0, 0x0)
r2 = syz_open_dev$mouse(&(0x7f0000000240), 0x38, 0x4c00)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x8004e500, &(0x7f0000000280)=r2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getrlimit(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
getsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, 0x0, &(0x7f00000003c0))
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000840)=0x2)
connect$unix(r4, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x90, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_USERDATA={0x4b, 0x7, 0x1, 0x0, "e61721b43cd2fd7f8d151101aec16b35a6f144d2926eb3bd533199298c0dd6bc47204e82fcb8cbcb4c7b9af8e3528c7fd6bf02517c618d4cd6a310fb0ef866180e19720226c116"}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @counter={{0xc}, @void}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}]}]}], {0x14}}, 0x118}}, 0x40)

1.088915111s ago: executing program 3 (id=274):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/route\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r1, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000080)}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1b, 0x9, &(0x7f0000000140)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0xc, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = syz_genetlink_get_family_id$fou(&(0x7f00000002c0), r0)
sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r3, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4044}, 0x0)
getsockopt$SO_J1939_SEND_PRIO(r0, 0x6b, 0x3, &(0x7f00000003c0), &(0x7f0000000400)=0x4)

929.916621ms ago: executing program 3 (id=276):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$inet(0xa, 0x801, 0x84)
fsopen(&(0x7f00000000c0)='gadgetfs\x00', 0x0) (async)
r4 = fsopen(&(0x7f00000000c0)='gadgetfs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x6, 0x0, 0x0, 0x0)
close(r4)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x13, &(0x7f0000000d00)=@framed={{}, [@printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20000000}, {0x85, 0x0, 0x0, 0x70}}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x13, &(0x7f0000000d00)=@framed={{}, [@printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20000000}, {0x85, 0x0, 0x0, 0x70}}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r5, 0x70000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) (async)
openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)
syz_open_dev$hidraw(&(0x7f0000000080), 0x5, 0x4044c0)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000040)=ANY=[], 0x0)
r6 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
ioctl$FBIOBLANK(r6, 0x4611, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0) (async)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_connect(0x0, 0x1cb, 0x0, 0x0) (async)
syz_usb_connect(0x0, 0x1cb, 0x0, 0x0)
eventfd(0x0) (async)
eventfd(0x0)

698.370071ms ago: executing program 5 (id=277):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f00000033c0)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000000c0)="91e5b8fec8115a372cc540a830", 0xd}, {&(0x7f0000000340)='\f', 0x1}], 0x2}}, {{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000000640)="d5345033e80d7ff02c718ac9f3a41106ebcb60fb407954da9f6076fc50cacb0e4e26c2a67200186552", 0x29}, {&(0x7f0000000540)="14f4b7f928ddec8eef19a645cbd1ca1c44f58174a7ce1f84169305564a7a3edd839d5bf8c69d582bdb", 0x29}, {&(0x7f0000001740)="1f127ffe2d7ca16aed89ab90f1d41b27469e22823dddfb5b31", 0x19}, {&(0x7f00000017c0)="46db3e19ce1a26b491cd83b959551e3e325c41657b62ef800a36f3fa8db2fcb2a887", 0x22}], 0x4}}, {{0x0, 0x0, &(0x7f0000002d00)=[{&(0x7f0000001c40)="aa1b895acae9510937460c4cea988e493bf436e400be4374bbe63e4116f8d3f6f5ec", 0x22}, {&(0x7f0000001c80)="d5bef22d20e418c1f7f7cd0010709b9e47303ff0fe6c5b8994fbb6d6ff8790d8fb5db6", 0xfffffdac}], 0x2}}], 0x3, 0x8010)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r2, 0x5452, &(0x7f0000000100)=0x8)
sendto$inet(r2, 0x0, 0x0, 0x801, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCFLSH(r3, 0x4b45, 0x2)
r4 = syz_open_dev$MSR(&(0x7f0000000100), 0x0, 0x0)
read$msr(r4, &(0x7f0000000a40)=""/4096, 0x1000)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r5 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x0)
r7 = openat$cgroup(r6, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0)
r8 = openat$cgroup_int(r7, &(0x7f0000000040)='cgroup.max.depth\x00', 0x2, 0x0)
sendfile(r8, r8, 0x0, 0x10000a006)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@index_off}]})
r9 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
r10 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file1/file0\x00', 0x0, 0x2)
linkat(r9, &(0x7f00000001c0)='./file1/file0\x00', r10, &(0x7f0000000240)='./file1\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r9, 0x89f2, &(0x7f0000000200)={'syztnl1\x00', &(0x7f0000000280)={'syztnl0\x00', <r11=>0x0, 0x2f, 0x2, 0x44, 0xe, 0x70, @local, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7800, 0x20, 0x6, 0x4}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000480)={'ip6gre0\x00', &(0x7f0000000400)={'ip6tnl0\x00', r11, 0x29, 0xd0, 0x5, 0x2, 0x0, @dev={0xfe, 0x80, '\x00', 0x1a}, @private1={0xfc, 0x1, '\x00', 0x1}, 0x80, 0x1, 0x7d7d, 0x6}})

619.605145ms ago: executing program 4 (id=278):
socket$unix(0x1, 0x2, 0x0)
r0 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
socket$netlink(0x10, 0x3, 0x15)
r1 = getpid()
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={0x0, r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000400)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb08004500001c000000020011907800000000005665eacdc01f6a0000000000000008907800ac092e5f3626ba186bea817d092ab66abad723a30eeb30e8f055c6676f6eea878a32608ed533e997bc10a0068cb8ede5d6d8eefb1e44fbc3ab32c0977025b24c0d29779837b3ebf18ec7cd9c9cd0b0f88916e3caddd7795ab18891af6e7197b836ff2dc284be73"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x12, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRESDEC=r1, @ANYBLOB, @ANYRES32=r2], &(0x7f0000000600)='syzkaller\x00', 0x0, 0xffffffffffffff61, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_emit_ethernet(0x32, &(0x7f0000000a80)=ANY=[@ANYBLOB="e90c630faca20180c20000000800450000240000e0000007000000000000000000000000000000009078cbe66f1099d3a415d7a4802d0c892b22359c"], 0x0)
r3 = socket$kcm(0xa, 0x6, 0x0)
setsockopt$sock_attach_bpf(r3, 0x10d, 0xa, &(0x7f0000000000), 0x4)
io_uring_setup(0x354a, &(0x7f0000000300))
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000080), 0x2, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r5, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r5, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000340)=[<r6=>0x0], 0x1})
sendmsg$AUDIT_SET_FEATURE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200), 0xc, 0x0}, 0x0)
ioctl$DRM_IOCTL_MODE_ATOMIC(r5, 0xc03864bc, &(0x7f0000000180)={0x1, 0x1, &(0x7f00000000c0)=[r6], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000040)})
ioctl$vim2m_VIDIOC_EXPBUF(r4, 0xc0405610, 0x0)
socket$alg(0x26, 0x5, 0x0)
syz_open_dev$video4linux(&(0x7f0000000040), 0x7f, 0x2000)
ioctl$VIDIOC_TRY_DECODER_CMD(r5, 0xc038563b, &(0x7f0000000080)={0x0, 0x1, @start})

550.162552ms ago: executing program 5 (id=279):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c000001020603000005000100070000000900020073797a310000000014000780050015000000000008001240000000000500050002000000050004000000000010000300686173683a69702c6d616300"/92], 0x5c}}, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000000)={<r2=>0x0, 0xffff, 0x5, [0x7ff, 0x7, 0x6a55, 0x6, 0xf530]}, &(0x7f0000000040)=0x12)
getsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000100), &(0x7f0000000140)=0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000080)={r2, 0xfe5}, &(0x7f00000000c0)=0x8)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000180)=@req3={0x8000, 0x7, 0x8000, 0x100}, 0x1c)
syz_emit_ethernet(0x72, &(0x7f0000000280)=ANY=[@ANYBLOB], 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000008c0)={'wlan0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)=@ipv4_newroute={0x3c, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x20, 0x0, 0x0, 0x4, 0xff, 0x9, 0x1200}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x2}, @RTA_ENCAP={0x18, 0x16, 0x0, 0x1, @LWTUNNEL_IP6_DST={0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}]}, 0x3c}}, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r3, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000200)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="33fafdffffff000000000700000008000300", @ANYRES32=r5, @ANYBLOB="08000700000014811f006e6963766630000000000000000000c8e7b3400000000000100000000754062518"], 0x44}}, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0))
timer_create(0x7, &(0x7f0000533fa0), 0x0)
futex(&(0x7f0000000000)=0x2, 0x0, 0x0, 0x0, 0x0, 0x100)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r7, 0x0, 0x20, &(0x7f0000000000), 0x4)
readv(0xffffffffffffffff, 0x0, 0x0)
poll(0x0, 0x0, 0x64)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
rt_sigreturn()
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x3000, 0x7, &(0x7f0000ff5000/0x3000)=nil)

549.816317ms ago: executing program 2 (id=280):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000040), 0x7f9f, 0x0)
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000100)={0x8, 0x7f, 0xb5c})
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000007, 0x12, r0, 0x100000000)

480.068301ms ago: executing program 2 (id=281):
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x48802, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000002740)={0x53, 0xfffffffffffffffc, 0x6, 0x2, @buffer={0x29, 0x0, 0x0}, &(0x7f00000025c0)="8536b60bfad6", 0x0, 0x8, 0x10000, 0x1, 0x0})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000a40)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000740)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000b00000008000300", @ANYRES32=r3, @ANYBLOB="20005080050002000500000009000100e59e75e84c000000080003000dac0f"], 0x3c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=@getneightbl={0x14, 0x42, 0x2, 0x70bd27, 0x25dfdbfd}, 0x14}}, 0x0)

479.517176ms ago: executing program 2 (id=282):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xe, &(0x7f0000000000)=ANY=[], 0x0, 0x200, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$kcm(0x11, 0x200000000000007, 0x300)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000640)='memory.swap.events\x00', 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000080)=@ethtool_eeprom={0x43}})
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$netlink(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000), 0x8)
socket$packet(0x11, 0x4000000000002, 0x300)
ioctl$vim2m_VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc0f8565c, &(0x7f0000000000)={0x0, 0xbd5, 0x2, {0x2, @raw_data="f91fd2868ba3d9189024fc40809db9e19479c0b5fce2c721330d5771dbf9dbfa9e2ad24622489141b4803cfeb0b70909e75715a13fada32fef53473eb9ce014fbe3929ea41fdeb0ff177dfb9d3227f213a6451b667d35b03b25618d20cea1f072990b86d463a0de7513744a2bb3bf4fb6049e30f7c533837beba9566c9fd8721c48fad424a5fb17bc1419fb85e5e7dce382ba5a1ce182b419becd67c18f0ba055b8d72225df5a5e7917f8a87a52b8c2516745c462e944b0c22a7e71ecf492a0ef916598abba0e732"}})
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000080)={@mcast2, 0x0, 0x0, 0x1, 0x3}, 0x20)
syz_open_procfs(0x0, &(0x7f00000004c0)='net/ip6_flowlabel\x00')
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/udp6\x00')
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x4c, &(0x7f0000000180)=0x7, 0x4)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private2}, 0x1c)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x4b, &(0x7f00000009c0)=0x8, 0x4)
bind$inet6(r4, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
preadv(r2, &(0x7f0000000280)=[{&(0x7f0000000380)=""/218, 0xda}, {&(0x7f0000000a00)=""/4096, 0x1000}], 0x2, 0x14a, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})

380.092517ms ago: executing program 4 (id=283):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) (async)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0) (async)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chroot(&(0x7f0000000040)='./file0\x00')
umount2(&(0x7f0000000000)='./file0\x00', 0x1) (async)
umount2(&(0x7f0000000000)='./file0\x00', 0x1)
r0 = openat$adsp1(0xffffff9c, &(0x7f00000002c0), 0x8082, 0x0)
ioctl$SOUND_PCM_READ_CHANNELS(r0, 0x80045006, 0x0)
mmap$dsp(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0xa, 0x11, r0, 0x0)
write$dsp(r0, &(0x7f0000000640)="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", 0x1000)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

379.831962ms ago: executing program 2 (id=284):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={0x4000000, {}, {0x2, 0x0, @dev}, {0x2, 0x0, @empty}, 0x2a0})
r1 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}}}, 0x108)
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000080)={0x0, {}, {0x2, 0x0, @multicast2}, {0x2, 0x0, @empty}, 0xab852ebbeefbd6b1})

329.673014ms ago: executing program 2 (id=285):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x400448ca, 0x0) (async)
ioctl$sock_bt_hci(r0, 0x800448d5, 0x0) (async)
syz_usb_connect$cdc_ncm(0x0, 0x72, 0x0, 0x0)

316.913158ms ago: executing program 4 (id=286):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x200000, 0x0)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) (async)
ioctl$BLKRRPART(0xffffffffffffffff, 0x125f, 0x0)
preadv2(0xffffffffffffffff, &(0x7f0000002380)=[{&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f00000012c0)=""/4096, 0x1000}], 0x2, 0xd, 0x7, 0x10) (async, rerun: 32)
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f00000003c0)={0x2}) (async, rerun: 32)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0x21, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000df00850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000100))
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}]}], {0x14}}, 0x54}}, 0x0) (async)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, 0x0) (async)
dup3(r5, r3, 0x0) (async)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000480)={0x20, 0x0, &(0x7f0000000000)=[@request_death, @clear_death], 0x0, 0x0, 0x0})
r6 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) (async)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r7, 0x402, 0xb) (async)
r8 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$nfc_llcp(r8, &(0x7f0000000000)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "0f03c8c7e8da000000000000ffffff017f000000cce67e1d0000e565aa9a9d32c7627ffe7a54cdbd77b3000000000000000000060000000000000000deff00", 0x1}, 0x60) (async)
getsockopt$nfc_llcp(r8, 0x118, 0x3, &(0x7f0000000140)=""/192, 0x20000057)
mkdir(&(0x7f0000000440)='./control\x00', 0x0) (async)
rmdir(&(0x7f0000000000)='./control\x00') (async)
lseek(r6, 0x851, 0x0) (async, rerun: 32)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r2, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) (async, rerun: 32)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) (async)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000100)={'vxcan1\x00', @local})
r9 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008108090f9becdb4cb92e264831371600000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)

180.217226ms ago: executing program 4 (id=287):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='gid_map\x00')
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {<r1=>r0}}, './file0\x00'})
ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f0000000080))
readv(r0, &(0x7f0000002300)=[{&(0x7f0000001080)=""/124, 0x7c}], 0x1)
socket$caif_stream(0x25, 0x1, 0x0)
pread64(r0, &(0x7f0000002240)=""/163, 0xa3, 0x1ff)

160.721548ms ago: executing program 4 (id=288):
r0 = socket$kcm(0x10, 0x3, 0x10)
readv(r0, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/154, 0x9a}], 0x1) (async)
readv(r0, &(0x7f0000000640)=[{&(0x7f00000003c0)=""/154, 0x9a}], 0x1)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000028000bff7f000000000000000024fc60", 0x14}], 0x1}, 0x0)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="040e04015b0c"], 0x7) (async)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="040e04015b0c"], 0x7)
r1 = syz_open_dev$sg(&(0x7f0000000140), 0x0, 0x1002)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETMODE(r3, 0x4b63, 0x4) (async)
ioctl$KDSETMODE(r3, 0x4b63, 0x4)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r2, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r4, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000000000000080001000300000005000200000000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x20000020}, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r5, 0x0, 0x19, 0x0, 0x0) (async)
setsockopt$inet_int(r5, 0x0, 0x19, 0x0, 0x0)
ioctl$SCSI_IOCTL_GET_PCI(r1, 0x5387, &(0x7f0000000180))

0s ago: executing program 4 (id=289):
socket$alg(0x26, 0x5, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
recvmsg$unix(r0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
r2 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r2, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x24, 0x12, 0xa01, 0x0, 0x0, {0xa}, [@generic="a4996fe033953ae729b7a43161"]}, 0x24}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffff, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

kernel console output (not intermixed with test programs):

[   38.210752][   T39] audit: type=1400 audit(1730216754.368:80): avc:  denied  { write } for  pid=5858 comm="sh" path="pipe:[7260]" dev="pipefs" ino=7260 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   38.219667][   T39] audit: type=1400 audit(1730216754.368:81): avc:  denied  { rlimitinh } for  pid=5858 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   38.228365][   T39] audit: type=1400 audit(1730216754.368:82): avc:  denied  { siginh } for  pid=5858 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   38.953473][   T39] audit: type=1400 audit(1730216755.118:83): avc:  denied  { read } for  pid=5337 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   38.963508][   T39] audit: type=1400 audit(1730216755.118:84): avc:  denied  { append } for  pid=5337 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   38.970822][   T39] audit: type=1400 audit(1730216755.118:85): avc:  denied  { open } for  pid=5337 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   38.977662][   T39] audit: type=1400 audit(1730216755.118:86): avc:  denied  { getattr } for  pid=5337 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
Warning: Permanently added '[localhost]:54880' (ED25519) to the list of known hosts.
[   39.174025][   T39] audit: type=1400 audit(1730216755.338:87): avc:  denied  { name_bind } for  pid=5876 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   41.064154][ T5889] cgroup: Unknown subsys name 'net'
[   41.231339][ T5889] cgroup: Unknown subsys name 'cpuset'
[   41.235810][ T5889] cgroup: Unknown subsys name 'rlimit'
[   41.483814][ T5924] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   42.185742][ T5889] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.063744][   T39] kauditd_printk_skb: 17 callbacks suppressed
[   45.063756][   T39] audit: type=1400 audit(1730216761.228:105): avc:  denied  { execmem } for  pid=5934 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   45.252228][   T39] audit: type=1400 audit(1730216761.418:106): avc:  denied  { create } for  pid=5938 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   45.266277][   T39] audit: type=1400 audit(1730216761.418:107): avc:  denied  { read write } for  pid=5938 comm="syz-executor" name="vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   45.274209][   T39] audit: type=1400 audit(1730216761.418:108): avc:  denied  { open } for  pid=5938 comm="syz-executor" path="/dev/vhci" dev="devtmpfs" ino=1291 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[   45.281603][   T39] audit: type=1400 audit(1730216761.428:109): avc:  denied  { ioctl } for  pid=5938 comm="syz-executor" path="socket:[1828]" dev="sockfs" ino=1828 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   45.285155][ T5942] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   45.300074][ T5952] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   45.302314][ T5952] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   45.304782][ T5952] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   45.308464][ T5952] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   45.310345][ T5952] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   45.312558][ T5952] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   45.315495][ T5952] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   45.316770][ T5951] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   45.319658][ T5952] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   45.323414][ T5951] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   45.323656][ T5951] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   45.326441][ T5952] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   45.328185][ T5954] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   45.328803][ T5951] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   45.329064][ T5951] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   45.329291][ T5951] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   45.329577][ T5955] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   45.330202][ T5955] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   45.332399][   T39] audit: type=1400 audit(1730216761.498:110): avc:  denied  { read } for  pid=5941 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   45.336589][ T5955] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   45.338769][   T39] audit: type=1400 audit(1730216761.498:111): avc:  denied  { open } for  pid=5941 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   45.346444][ T5952] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   45.355336][   T39] audit: type=1400 audit(1730216761.498:112): avc:  denied  { mounton } for  pid=5941 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   45.358541][ T5954] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   45.378096][ T5954] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   45.388446][ T5954] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   45.509636][   T39] audit: type=1400 audit(1730216761.678:113): avc:  denied  { module_request } for  pid=5941 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   45.571086][ T5941] chnl_net:caif_netlink_parms(): no params data found
[   45.621477][ T5938] chnl_net:caif_netlink_parms(): no params data found
[   45.635333][ T5948] chnl_net:caif_netlink_parms(): no params data found
[   45.739331][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.742534][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.744892][ T5941] bridge_slave_0: entered allmulticast mode
[   45.747352][ T5941] bridge_slave_0: entered promiscuous mode
[   45.771165][ T5943] chnl_net:caif_netlink_parms(): no params data found
[   45.780793][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.783308][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.785263][ T5941] bridge_slave_1: entered allmulticast mode
[   45.787488][ T5941] bridge_slave_1: entered promiscuous mode
[   45.814311][ T5938] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.816479][ T5938] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.818958][ T5938] bridge_slave_0: entered allmulticast mode
[   45.821286][ T5938] bridge_slave_0: entered promiscuous mode
[   45.872372][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.875600][ T5938] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.877543][ T5938] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.879965][ T5938] bridge_slave_1: entered allmulticast mode
[   45.882536][ T5938] bridge_slave_1: entered promiscuous mode
[   45.910889][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.913183][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.915210][ T5948] bridge_slave_0: entered allmulticast mode
[   45.917328][ T5948] bridge_slave_0: entered promiscuous mode
[   45.921904][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.934629][ T5938] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.939370][ T5938] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.945881][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.948901][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.951689][ T5948] bridge_slave_1: entered allmulticast mode
[   45.954948][ T5948] bridge_slave_1: entered promiscuous mode
[   46.037718][ T5941] team0: Port device team_slave_0 added
[   46.044821][ T5941] team0: Port device team_slave_1 added
[   46.049536][ T5938] team0: Port device team_slave_0 added
[   46.051708][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.054555][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.056687][ T5943] bridge_slave_0: entered allmulticast mode
[   46.059543][ T5943] bridge_slave_0: entered promiscuous mode
[   46.093115][ T5938] team0: Port device team_slave_1 added
[   46.105519][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.107815][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.110088][ T5943] bridge_slave_1: entered allmulticast mode
[   46.112562][ T5943] bridge_slave_1: entered promiscuous mode
[   46.123806][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.128186][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.130151][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.137536][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.166689][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.170841][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.172940][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.182717][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.187378][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.189169][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.197131][ T5938] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.204393][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.235062][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.236982][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.244909][ T5938] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.249934][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.273680][ T5948] team0: Port device team_slave_0 added
[   46.310284][ T5948] team0: Port device team_slave_1 added
[   46.347140][ T5943] team0: Port device team_slave_0 added
[   46.381126][ T5941] hsr_slave_0: entered promiscuous mode
[   46.384337][ T5941] hsr_slave_1: entered promiscuous mode
[   46.388177][ T5943] team0: Port device team_slave_1 added
[   46.411320][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.413449][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.423645][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.428452][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.431130][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.439787][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.455422][ T5938] hsr_slave_0: entered promiscuous mode
[   46.458411][ T5938] hsr_slave_1: entered promiscuous mode
[   46.460892][ T5938] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.463354][ T5938] Cannot create hsr debugfs directory
[   46.483005][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.485204][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.494478][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.499475][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.501832][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.509913][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.601663][ T5948] hsr_slave_0: entered promiscuous mode
[   46.604438][ T5948] hsr_slave_1: entered promiscuous mode
[   46.606419][ T5948] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.609083][ T5948] Cannot create hsr debugfs directory
[   46.634386][ T5943] hsr_slave_0: entered promiscuous mode
[   46.636465][ T5943] hsr_slave_1: entered promiscuous mode
[   46.638960][ T5943] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.641696][ T5943] Cannot create hsr debugfs directory
[   46.854448][ T5941] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   46.860968][ T5941] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   46.865670][ T5941] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   46.869531][ T5941] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   46.908278][ T5938] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   46.911990][ T5938] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   46.917144][ T5938] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   46.924170][ T5938] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   46.963028][ T5943] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   46.970841][ T5943] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   46.974691][ T5943] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   46.989229][ T5943] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   47.019121][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.030769][ T5948] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   47.036627][ T5948] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   47.042279][ T5948] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   47.046130][ T5948] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   47.053443][ T5938] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.072446][ T5941] 8021q: adding VLAN 0 to HW filter on device team0
[   47.090202][ T1169] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.092528][ T1169] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.099031][ T5938] 8021q: adding VLAN 0 to HW filter on device team0
[   47.110851][ T1133] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.113495][ T1133] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.117407][ T1133] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.119336][ T1133] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.129378][ T1133] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.131265][ T1133] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.186808][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.201445][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.215189][ T5943] 8021q: adding VLAN 0 to HW filter on device team0
[   47.221182][   T39] audit: type=1400 audit(1730216763.388:114): avc:  denied  { sys_module } for  pid=5941 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   47.224093][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.230832][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.236203][ T5948] 8021q: adding VLAN 0 to HW filter on device team0
[   47.245086][ T1169] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.247556][ T1169] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.252491][ T1169] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.254495][ T1169] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.269466][ T1133] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.271771][ T1133] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.314828][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.330108][ T5938] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.360218][ T5941] veth0_vlan: entered promiscuous mode
[   47.377090][ T5941] veth1_vlan: entered promiscuous mode
[   47.380899][ T5946] Bluetooth: hci3: command tx timeout
[   47.381007][ T5954] Bluetooth: hci0: command tx timeout
[   47.381085][ T5952] Bluetooth: hci1: command tx timeout
[   47.390358][ T5938] veth0_vlan: entered promiscuous mode
[   47.399971][ T5941] veth0_macvtap: entered promiscuous mode
[   47.403784][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.413979][ T5941] veth1_macvtap: entered promiscuous mode
[   47.419468][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.424966][ T5938] veth1_vlan: entered promiscuous mode
[   47.439963][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.446453][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.458381][ T5954] Bluetooth: hci2: command tx timeout
[   47.465825][ T5941] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.469163][ T5941] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.471629][ T5941] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.474259][ T5941] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.486574][ T5938] veth0_macvtap: entered promiscuous mode
[   47.490432][ T5938] veth1_macvtap: entered promiscuous mode
[   47.520938][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.524781][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.528976][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.534219][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.537049][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.542121][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.552773][ T5943] veth0_vlan: entered promiscuous mode
[   47.555262][ T5948] veth0_vlan: entered promiscuous mode
[   47.566226][ T5938] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.569101][ T5938] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.571466][ T5938] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.574486][ T5938] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.579297][ T5948] veth1_vlan: entered promiscuous mode
[   47.590313][ T5943] veth1_vlan: entered promiscuous mode
[   47.595378][ T1133] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.599367][ T1133] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.632305][ T5948] veth0_macvtap: entered promiscuous mode
[   47.639410][ T1135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.640057][ T5948] veth1_macvtap: entered promiscuous mode
[   47.641540][ T1135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.653512][ T5943] veth0_macvtap: entered promiscuous mode
[   47.656147][ T1133] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.656717][ T5943] veth1_macvtap: entered promiscuous mode
[   47.658817][ T1133] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.668240][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.671064][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.673797][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.676672][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.682351][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.687428][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.691041][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.692580][ T5941] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   47.693801][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.701596][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.705346][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.708783][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.713518][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.719625][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.722422][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.725471][ T5943] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.730211][ T5943] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.733993][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.741569][ T5943] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.744782][ T5943] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.747002][ T5943] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.750364][ T5943] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.756510][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.756770][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.758712][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.761695][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.765781][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.768762][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.771299][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.771875][ T6005] ADFS-fs (nullb0): error: can't find an ADFS filesystem on dev nullb0.
[   47.774032][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.775141][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.784180][ T5948] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.786435][ T5948] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.789172][ T5948] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.791464][ T5948] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.853145][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.855488][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.879518][ T1076] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.882072][ T1076] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.888532][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   47.892539][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   47.898459][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   47.901760][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   47.906284][ T1135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.911438][ T1135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.942478][ T1135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.946445][ T1135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.096396][ T6024] MTD: Attempt to mount non-MTD device "/dev/nbd3"
[   48.100210][ T6024] cramfs: wrong magic
[   48.111129][ T6013] syz.1.2 (6013): drop_caches: 4
[   48.130963][ T6011] netlink: 'syz.0.6': attribute type 5 has an invalid length.
[   48.191556][ T6027] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   48.292429][ T6033] netlink: 'syz.2.10': attribute type 1 has an invalid length.
[   48.295880][ T6033] netlink: 9328 bytes leftover after parsing attributes in process `syz.2.10'.
[   48.299809][ T6033] netlink: 'syz.2.10': attribute type 1 has an invalid length.
[   48.302723][ T6033] netlink: 'syz.2.10': attribute type 2 has an invalid length.
[   48.345200][ T6037] warning: `syz.2.11' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   48.566370][ T6053] trusted_key: syz.1.16 sent an empty control message without MSG_MORE.
[   48.598120][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.698222][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.782429][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.798224][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   48.798279][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.800841][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   48.803033][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.872185][ T6060] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   48.891477][ T6060] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   49.108253][   T25] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   49.261246][   T25] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   49.263929][   T25] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   49.266901][   T25] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[   49.272654][   T25] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   49.281114][   T25] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   49.283697][   T25] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   49.287128][   T25] usb 8-1: Product: syz
[   49.288977][   T25] usb 8-1: Manufacturer: syz
[   49.297797][   T25] cdc_wdm 8-1:1.0: skipping garbage
[   49.300393][   T25] cdc_wdm 8-1:1.0: skipping garbage
[   49.305287][   T25] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[   49.306921][   T25] cdc_wdm 8-1:1.0: Unknown control protocol
[   49.436953][ T6063] syz.2.18 uses obsolete (PF_INET,SOCK_PACKET)
[   49.458357][ T5946] Bluetooth: hci0: command tx timeout
[   49.460237][ T5946] Bluetooth: hci3: command tx timeout
[   49.462103][ T5946] Bluetooth: hci1: command tx timeout
[   49.549889][ T5952] Bluetooth: hci2: command tx timeout
[   50.071348][   T39] kauditd_printk_skb: 77 callbacks suppressed
[   50.071360][   T39] audit: type=1400 audit(1730216766.238:192): avc:  denied  { read } for  pid=6068 comm="syz.3.19" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   50.081413][   T39] audit: type=1400 audit(1730216766.248:193): avc:  denied  { read } for  pid=6068 comm="syz.3.19" name="btrfs-control" dev="devtmpfs" ino=1335 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[   50.088924][   T39] audit: type=1400 audit(1730216766.248:194): avc:  denied  { open } for  pid=6068 comm="syz.3.19" path="/dev/btrfs-control" dev="devtmpfs" ino=1335 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[   50.097051][   T39] audit: type=1400 audit(1730216766.248:195): avc:  denied  { create } for  pid=6068 comm="syz.3.19" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   50.104845][   T39] audit: type=1400 audit(1730216766.248:196): avc:  denied  { ioctl } for  pid=6068 comm="syz.3.19" path="socket:[8760]" dev="sockfs" ino=8760 ioctlcmd=0x9410 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1
[   50.178161][ T5954] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   50.402268][   T39] audit: type=1400 audit(1730216766.568:197): avc:  denied  { name_bind } for  pid=6074 comm="syz.0.22" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[   50.417471][   T39] audit: type=1400 audit(1730216766.578:198): avc:  denied  { ioctl } for  pid=6074 comm="syz.0.22" path="socket:[8772]" dev="sockfs" ino=8772 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   50.427180][   T39] audit: type=1400 audit(1730216766.588:199): avc:  denied  { bind } for  pid=6074 comm="syz.0.22" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   50.457542][   T39] audit: type=1400 audit(1730216766.618:200): avc:  denied  { create } for  pid=6076 comm="syz.2.23" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   50.465473][   T39] audit: type=1400 audit(1730216766.628:201): avc:  denied  { write } for  pid=6076 comm="syz.2.23" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[   50.636898][ T6091] netlink: 3 bytes leftover after parsing attributes in process `syz.2.28'.
[   50.642173][ T6091] caif0: Master is either lo or non-ether device
[   50.713509][ T6086] =======================================================
[   50.713509][ T6086] WARNING: The mand mount option has been deprecated and
[   50.713509][ T6086]          and is ignored by this kernel. Remove the mand
[   50.713509][ T6086]          option from the mount to silence this warning.
[   50.713509][ T6086] =======================================================
[   50.726914][ T6086] hugetlbfs: Unknown parameter 'grpquota_inode_hardlimit'
[   50.759064][ T5982] usb 8-1: USB disconnect, device number 2
[   50.941312][ T6108] program syz.1.32 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   51.538329][ T5954] Bluetooth: hci0: command tx timeout
[   51.540574][ T5954] Bluetooth: hci1: command tx timeout
[   51.542476][ T5954] Bluetooth: hci3: command tx timeout
[   51.571530][ T6152] netlink: 'syz.2.42': attribute type 1 has an invalid length.
[   51.618244][ T5952] Bluetooth: hci2: command tx timeout
[   51.668288][ T5996] usb 8-1: new low-speed USB device number 3 using dummy_hcd
[   51.790252][ T6156] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   51.818955][ T5996] usb 8-1: Invalid ep0 maxpacket: 16
[   51.839131][ T6159] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   51.850655][ T6159] 9pnet_fd: Insufficient options for proto=fd
[   51.857459][ T6159] tipc: Started in network mode
[   51.862874][ T6159] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711
[   51.872786][ T6159] tipc: Enabled bearer <udp:syz0>, priority 10
[   51.948145][ T5996] usb 8-1: new low-speed USB device number 4 using dummy_hcd
[   52.005996][ T6163] evm: overlay not supported
[   52.108205][ T5996] usb 8-1: Invalid ep0 maxpacket: 16
[   52.115192][ T5996] usb usb8-port1: attempt power cycle
[   52.488829][ T5996] usb 8-1: new low-speed USB device number 5 using dummy_hcd
[   52.509018][ T5996] usb 8-1: Invalid ep0 maxpacket: 16
[   52.638693][ T5996] usb 8-1: new low-speed USB device number 6 using dummy_hcd
[   52.659330][ T5996] usb 8-1: Invalid ep0 maxpacket: 16
[   52.661823][ T5996] usb usb8-port1: unable to enumerate USB device
[   52.919974][ T6192] 8021q: adding VLAN 0 to HW filter on device bond0
[   52.961186][ T6192] bond0: (slave rose0): Enslaving as an active interface with an up link
[   52.989305][ T5949] tipc: Node number set to 4269801488
[   52.998137][ T6190] nbd2: detected capacity change from 0 to 12
[   53.001153][ T6189] block nbd2: shutting down sockets
[   53.009733][ T1253] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   53.012919][ T1253] Buffer I/O error on dev nbd2, logical block 0, async page read
[   53.016772][ T5956] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   53.019527][ T5956] Buffer I/O error on dev nbd2, logical block 0, async page read
[   53.024015][ T5956] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   53.026506][ T5956] Buffer I/O error on dev nbd2, logical block 0, async page read
[   53.030007][ T5956] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   53.033449][ T5956] Buffer I/O error on dev nbd2, logical block 0, async page read
[   53.033545][ T5956] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   53.033561][ T5956] Buffer I/O error on dev nbd2, logical block 0, async page read
[   53.033619][ T5956] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   53.033633][ T5956] Buffer I/O error on dev nbd2, logical block 0, async page read
[   53.033687][ T5956] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   53.033701][ T5956] Buffer I/O error on dev nbd2, logical block 0, async page read
[   53.033748][ T5956] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   53.033762][ T5956] Buffer I/O error on dev nbd2, logical block 0, async page read
[   53.033788][ T5956] ldm_validate_partition_table(): Disk read failed.
[   53.033826][ T5956] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   53.033846][ T5956] Buffer I/O error on dev nbd2, logical block 0, async page read
[   53.033893][ T5956] I/O error, dev nbd2, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   53.033907][ T5956] Buffer I/O error on dev nbd2, logical block 0, async page read
[   53.034022][ T5956] Dev nbd2: unable to read RDB block 0
[   53.034151][ T5956]  nbd2: unable to read partition table
[   53.034222][ T5956] nbd2: partition table beyond EOD, truncated
[   53.038248][ T5956] ldm_validate_partition_table(): Disk read failed.
[   53.083274][ T5956] Dev nbd2: unable to read RDB block 0
[   53.085503][ T5956]  nbd2: unable to read partition table
[   53.087087][ T5956] nbd2: partition table beyond EOD, truncated
[   53.618283][ T5954] Bluetooth: hci1: command tx timeout
[   53.620102][ T5952] Bluetooth: hci3: command tx timeout
[   53.698814][ T5952] Bluetooth: hci2: command tx timeout
[   54.211760][ T6237] Bluetooth: MGMT ver 1.23
[   54.317509][ T6239] Zero length message leads to an empty skb
[   54.353209][ T6241] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[   54.356136][ T6241] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   54.360677][ T6241] vhci_hcd vhci_hcd.0: Device attached
[   54.371002][ T6241] fuse: Unknown parameter '0x000000000000000d
[   54.371002][ T6241] '
[   54.377391][ T6242] vhci_hcd: connection closed
[   54.379330][ T6224] vhci_hcd: stop threads
[   54.385211][ T6224] vhci_hcd: release socket
[   54.386994][ T6224] vhci_hcd: disconnect device
[   54.685764][ T6250] netlink: 12 bytes leftover after parsing attributes in process `syz.3.63'.
[   54.944936][ T6258] ip6tnl0: entered promiscuous mode
[   54.946611][ T6258] ip6tnl0: entered allmulticast mode
[   54.962249][ T6258] netlink: 68 bytes leftover after parsing attributes in process `syz.2.65'.
[   55.016239][ T6261] Unsupported ieee802154 address type: 0
[   55.180431][   T35] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   55.328085][   T35] usb 6-1: Using ep0 maxpacket: 8
[   55.330763][   T35] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[   55.332870][   T35] usb 6-1: config 0 has no interface number 0
[   55.334834][   T35] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   55.339460][   T35] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[   55.342517][   T35] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   55.345599][   T35] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   55.349384][   T35] usb 6-1: config 0 descriptor??
[   55.354780][   T35] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   55.558470][   T39] kauditd_printk_skb: 106 callbacks suppressed
[   55.558482][   T39] audit: type=1400 audit(1730216771.728:308): avc:  denied  { write } for  pid=6255 comm="syz.1.66" name="iowarrior0" dev="devtmpfs" ino=2793 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[   55.558855][ T6256] iowarrior 6-1:0.1: Error -90 while submitting URB
[   55.639891][ T5982] usb 6-1: USB disconnect, device number 2
[   55.649675][ T5982] iowarrior 6-1:0.1: I/O-Warror #0 now disconnected
[   55.728582][   T39] audit: type=1400 audit(1730216771.898:309): avc:  denied  { unmount } for  pid=5948 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   55.763412][ T6267] netlink: 'syz.2.68': attribute type 10 has an invalid length.
[   55.775077][ T6267] team0: Device veth0_macvtap failed to register rx_handler
[   55.830550][ T6270] netlink: 16 bytes leftover after parsing attributes in process `syz.2.69'.
[   55.837208][   T39] audit: type=1400 audit(1730216771.998:310): avc:  denied  { watch watch_reads } for  pid=6269 comm="syz.2.69" path="/28/file1" dev="tmpfs" ino=181 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   55.837970][ T6270] process 'syz.2.69' launched './file1' with NULL argv: empty string added
[   55.846421][   T39] audit: type=1400 audit(1730216771.998:311): avc:  denied  { execute } for  pid=6269 comm="syz.2.69" name="file1" dev="tmpfs" ino=181 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   55.860005][   T39] audit: type=1400 audit(1730216772.028:312): avc:  denied  { execute_no_trans } for  pid=6269 comm="syz.2.69" path="/28/file1" dev="tmpfs" ino=181 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   55.928580][ T6270] netlink: 16 bytes leftover after parsing attributes in process `syz.2.69'.
[   56.015783][ T6282] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[   56.015783][ T6282] The task syz.2.72 (6282) triggered the difference, watch for misbehavior.
[   56.032481][   T39] audit: type=1400 audit(1730216772.198:313): avc:  denied  { block_suspend } for  pid=6277 comm="syz.3.71" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   56.412726][   T39] audit: type=1400 audit(1730216772.578:314): avc:  denied  { create } for  pid=6289 comm="syz.1.74" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   56.419904][   T39] audit: type=1400 audit(1730216772.578:315): avc:  denied  { getopt } for  pid=6289 comm="syz.1.74" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[   56.455695][   T39] audit: type=1400 audit(1730216772.618:316): avc:  denied  { mounton } for  pid=6292 comm="syz.1.75" path="/19/file0" dev="proc" ino=4026533453 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=dir permissive=1
[   56.476286][ T6293] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1005 sclass=netlink_route_socket pid=6293 comm=syz.1.75
[   56.482735][   T39] audit: type=1400 audit(1730216772.648:317): avc:  denied  { setopt } for  pid=6292 comm="syz.1.75" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[   56.863242][ T6302] netlink: 'syz.2.78': attribute type 21 has an invalid length.
[   57.089107][ T6309] xt_NFQUEUE: number of queues (65532) out of range (got 66665)
[   57.143140][ T6315] xt_limit: Overflow, try lower: 0/0
[   57.145543][ T6315] netlink: 23 bytes leftover after parsing attributes in process `syz.2.82'.
[   57.296924][ T6323] netlink: 'syz.3.84': attribute type 12 has an invalid length.
[   57.299639][ T6323] netlink: 248 bytes leftover after parsing attributes in process `syz.3.84'.
[   57.314126][ T5996] IPVS: starting estimator thread 0...
[   57.408846][ T6325] IPVS: using max 36 ests per chain, 86400 per kthread
[   57.616694][ T6333] netlink: 56 bytes leftover after parsing attributes in process `syz.3.87'.
[   57.745754][    C2] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   58.219951][ T6341] bridge0: port 3(erspan0) entered blocking state
[   58.221954][ T6341] bridge0: port 3(erspan0) entered disabled state
[   58.224172][ T6341] erspan0: entered allmulticast mode
[   58.226388][ T6341] erspan0: entered promiscuous mode
[   58.228350][ T6341] bridge0: port 3(erspan0) entered blocking state
[   58.231864][ T6341] bridge0: port 3(erspan0) entered forwarding state
[   58.241620][ T6341] xt_hashlimit: overflow, try lower: 3/0
[   58.463612][ T6349] netlink: 44 bytes leftover after parsing attributes in process `syz.3.91'.
[   59.270767][ T6365] netlink: 8 bytes leftover after parsing attributes in process `syz.2.95'.
[   59.301974][ T6365] o2cb: This node has not been configured.
[   59.303544][ T6365] o2cb: Cluster check failed. Fix errors before retrying.
[   59.307311][ T6365] (syz.2.95,6365,0):user_dlm_register:674 ERROR: status = -22
[   59.309768][ T6365] (syz.2.95,6365,0):dlmfs_mkdir:436 ERROR: Error -22 could not register domain "file0"
[   59.714708][ T6385] kvm: emulating exchange as write
[   59.778222][ T5952] Bluetooth: hci2: command 0x206a tx timeout
[   59.779832][ T5954] Bluetooth: hci2: Opcode 0x206a failed: -110
[   59.841304][ T6408] fuse: Bad value for 'fd'
[   59.986319][ T6422] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=6422 comm=syz.2.112
[   60.238908][ T5982] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   60.378315][  T828] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   60.398265][ T5982] usb 6-1: Using ep0 maxpacket: 16
[   60.402760][ T5982] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   60.406733][ T5982] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   60.410350][ T5982] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[   60.415217][ T5982] usb 6-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[   60.419227][ T5982] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   60.424929][ T5982] usb 6-1: config 0 descriptor??
[   60.436306][ T5982] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input6
[   60.452352][ T5340] pxrc 6-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[   60.465477][ T5340] pxrc 6-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[   60.470452][ T5340] pxrc 6-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[   60.474057][ T5956] pxrc 6-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[   60.481947][ T5340] pxrc 6-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[   60.489172][ T5340] pxrc 6-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[   60.501216][ T5340] pxrc 6-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[   60.538126][  T828] usb 7-1: Using ep0 maxpacket: 8
[   60.541028][  T828] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[   60.544417][  T828] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   60.547290][  T828] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   60.551777][  T828] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   60.555512][  T828] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   60.557981][  T828] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   60.635427][ T6426] pxrc 6-1:0.0: pxrc_open - usb_submit_urb failed, error: -90
[   60.646181][   T25] usb 6-1: USB disconnect, device number 3
[   60.771481][ T6433] netlink: 'syz.2.115': attribute type 2 has an invalid length.
[   60.774622][  T828] usb 7-1: GET_CAPABILITIES returned 0
[   60.776336][  T828] usbtmc 7-1:16.0: can't read capabilities
[   60.984505][ T6433] netlink: 'syz.2.115': attribute type 1 has an invalid length.
[   60.986893][ T6433] netlink: 216 bytes leftover after parsing attributes in process `syz.2.115'.
[   60.996597][    C1] usbtmc 7-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[   61.001026][ T6433] usbtmc 7-1:16.0: Unable to send data, error -71
[   61.004483][  T829] usb 7-1: USB disconnect, device number 2
[   61.078172][  T828] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[   61.209057][  T828] usb 8-1: device descriptor read/64, error -71
[   61.289999][ T6445] overlayfs: failed to resolve './file0': -2
[   61.348181][ T6451] netlink: 4 bytes leftover after parsing attributes in process `syz.1.120'.
[   61.350702][ T6451] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[   61.354244][   T39] kauditd_printk_skb: 44 callbacks suppressed
[   61.354253][   T39] audit: type=1400 audit(1730216777.518:362): avc:  denied  { accept } for  pid=6450 comm="syz.1.120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   61.361319][   T39] audit: type=1400 audit(1730216777.518:363): avc:  denied  { connect } for  pid=6450 comm="syz.1.120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   61.366498][   T39] audit: type=1400 audit(1730216777.518:364): avc:  denied  { read } for  pid=6450 comm="syz.1.120" name="ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   61.373046][   T39] audit: type=1400 audit(1730216777.518:365): avc:  denied  { open } for  pid=6450 comm="syz.1.120" path="/dev/ppp" dev="devtmpfs" ino=730 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   61.379325][   T39] audit: type=1400 audit(1730216777.518:366): avc:  denied  { ioctl } for  pid=6450 comm="syz.1.120" path="/dev/ppp" dev="devtmpfs" ino=730 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[   61.425815][   T39] audit: type=1400 audit(1730216777.588:367): avc:  denied  { write } for  pid=6450 comm="syz.1.120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   61.458121][  T828] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[   61.539186][   T39] audit: type=1400 audit(1730216777.708:368): avc:  denied  { setopt } for  pid=6453 comm="syz.2.121" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   61.588159][  T828] usb 8-1: device descriptor read/64, error -71
[   61.663194][ T6461] overlay: ./file0 is not a directory
[   61.666426][   T39] audit: type=1400 audit(1730216777.828:369): avc:  denied  { mounton } for  pid=6460 comm="syz.2.123" path="/53/file0" dev="tmpfs" ino=335 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[   61.699772][  T828] usb usb8-port1: attempt power cycle
[   61.835960][   T39] audit: type=1400 audit(1730216777.998:370): avc:  denied  { read write } for  pid=6462 comm="syz.2.124" name="file0" dev="9p" ino=36449036 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   61.843667][   T39] audit: type=1400 audit(1730216778.008:371): avc:  denied  { ioctl open } for  pid=6462 comm="syz.2.124" path="/54/file0/file0" dev="9p" ino=36449036 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   62.050746][ T6469] netlink: 148 bytes leftover after parsing attributes in process `syz.2.125'.
[   62.058265][  T828] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[   62.108172][  T828] usb 8-1: device descriptor read/8, error -71
[   62.358221][  T828] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[   62.389041][  T828] usb 8-1: device descriptor read/8, error -71
[   62.508896][  T828] usb usb8-port1: unable to enumerate USB device
[   62.659725][ T5954] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[   62.662464][ T5954] Bluetooth: hci0: Injecting HCI hardware error event
[   62.664932][ T5954] Bluetooth: hci0: hardware error 0x00
[   62.777145][ T6216] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.895498][ T6216] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.913663][ T6482] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[   62.927658][ T5946] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   62.935548][ T5946] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   62.949233][ T5946] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   62.958904][ T5946] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   62.962392][ T5946] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   62.971343][ T5946] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   62.985003][ T6216] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.152424][ T6216] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.198948][ T6483] chnl_net:caif_netlink_parms(): no params data found
[   63.308503][ T6483] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.311155][ T6483] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.314142][ T6483] bridge_slave_0: entered allmulticast mode
[   63.328208][ T6483] bridge_slave_0: entered promiscuous mode
[   63.332454][ T6483] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.335274][ T6483] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.341088][ T6483] bridge_slave_1: entered allmulticast mode
[   63.344901][ T6483] bridge_slave_1: entered promiscuous mode
[   63.412917][ T6483] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.416882][ T6483] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.474382][ T6483] team0: Port device team_slave_0 added
[   63.478338][ T6483] team0: Port device team_slave_1 added
[   63.520333][ T6483] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.523345][ T6483] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.531392][ T6483] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.534858][ T6216] bridge_slave_1: left allmulticast mode
[   63.537722][ T6216] bridge_slave_1: left promiscuous mode
[   63.543214][ T6216] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.553902][ T6216] bridge_slave_0: left allmulticast mode
[   63.556312][ T6216] bridge_slave_0: left promiscuous mode
[   63.560175][ T6216] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.957408][ T6216] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   63.970875][ T6216] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   63.978997][ T6216] bond0 (unregistering): Released all slaves
[   63.995247][ T6483] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.995259][ T6483] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.995272][ T6483] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.087560][ T6216] tipc: Disabling bearer <udp:syz0>
[   64.089491][ T6216] tipc: Left network mode
[   64.110228][ T6521] netlink: 'syz.3.136': attribute type 9 has an invalid length.
[   64.112324][ T6521] netlink: 399 bytes leftover after parsing attributes in process `syz.3.136'.
[   64.188968][ T6483] hsr_slave_0: entered promiscuous mode
[   64.192150][ T6483] hsr_slave_1: entered promiscuous mode
[   64.194439][ T6483] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.197311][ T6483] Cannot create hsr debugfs directory
[   64.220575][ T6524] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   64.223534][ T6524] IPv6: NLM_F_CREATE should be set when creating new route
[   64.226700][ T6524] IPv6: NLM_F_CREATE should be set when creating new route
[   64.275774][ T6535] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[   64.461522][ T6483] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   64.465907][ T6483] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   64.479168][ T6483] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   64.494910][ T6483] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   64.729049][ T6216] hsr_slave_0: left promiscuous mode
[   64.731163][ T6216] hsr_slave_1: left promiscuous mode
[   64.739660][ T6216] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.744620][ T6216] batman_adv: batadv0: Removing interface: batadv_slave_0
[   64.748240][ T5954] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[   64.754174][ T6216] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.756384][ T6216] batman_adv: batadv0: Removing interface: batadv_slave_1
[   64.774050][ T6216] veth1_macvtap: left promiscuous mode
[   64.776425][ T6216] veth0_macvtap: left promiscuous mode
[   64.778943][ T6216] veth1_vlan: left promiscuous mode
[   64.780576][ T6216] veth0_vlan: left promiscuous mode
[   65.058270][ T5954] Bluetooth: hci2: command tx timeout
[   65.229344][ T5982] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[   65.370451][ T5982] usb 8-1: device descriptor read/64, error -71
[   65.588294][ T6216] team0 (unregistering): Port device team_slave_1 removed
[   65.609238][ T5982] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[   65.672998][ T6216] team0 (unregistering): Port device team_slave_0 removed
[   65.740494][ T5982] usb 8-1: device descriptor read/64, error -71
[   65.851534][ T5982] usb usb8-port1: attempt power cycle
[   66.198158][ T5982] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[   66.224906][ T5982] usb 8-1: device descriptor read/8, error -71
[   66.312516][ T6540] netlink: 'syz.2.138': attribute type 21 has an invalid length.
[   66.315123][ T6540] netlink: 168 bytes leftover after parsing attributes in process `syz.2.138'.
[   66.432761][ T6483] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.456866][ T6483] 8021q: adding VLAN 0 to HW filter on device team0
[   66.464319][   T39] kauditd_printk_skb: 11 callbacks suppressed
[   66.464331][   T39] audit: type=1400 audit(1730216782.628:383): avc:  denied  { ioctl } for  pid=6551 comm="syz.2.141" path="/dev/binderfs/binder0" dev="binder" ino=13 ioctlcmd=0x620d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[   66.474745][ T6222] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.476660][ T6222] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.488705][ T6222] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.488712][   T39] audit: type=1400 audit(1730216782.628:384): avc:  denied  { set_context_mgr } for  pid=6551 comm="syz.2.141" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[   66.488757][   T39] audit: type=1400 audit(1730216782.648:385): avc:  denied  { write } for  pid=5337 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   66.491507][ T6222] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.498645][   T39] audit: type=1400 audit(1730216782.648:386): avc:  denied  { remove_name } for  pid=5337 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   66.505554][ T5982] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[   66.506718][   T39] audit: type=1400 audit(1730216782.648:387): avc:  denied  { rename } for  pid=5337 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   66.530777][   T39] audit: type=1400 audit(1730216782.648:388): avc:  denied  { add_name } for  pid=5337 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   66.553171][   T39] audit: type=1400 audit(1730216782.648:389): avc:  denied  { unlink } for  pid=5337 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   66.561411][   T39] audit: type=1400 audit(1730216782.648:390): avc:  denied  { create } for  pid=5337 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   66.568441][ T5982] usb 8-1: device descriptor read/8, error -71
[   66.678804][ T5982] usb usb8-port1: unable to enumerate USB device
[   66.698163][ T6483] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.856045][ T6483] veth0_vlan: entered promiscuous mode
[   66.865985][ T6483] veth1_vlan: entered promiscuous mode
[   66.878877][ T6483] veth0_macvtap: entered promiscuous mode
[   66.882092][ T6483] veth1_macvtap: entered promiscuous mode
[   66.894661][ T6483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.897374][ T6483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.900800][ T6483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.909687][ T6483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.912741][ T6483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.915472][ T6483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.920878][ T6483] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.934163][ T6483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.937054][ T6483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.940031][ T6483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.942897][ T6483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.946448][ T6483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.950832][ T6483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.956249][ T6483] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.966267][ T6483] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.969739][ T6483] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.973163][ T6483] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.977203][ T6483] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.013749][ T6216] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.020324][ T6216] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.034209][ T1135] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.036780][ T1135] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.047277][   T39] audit: type=1400 audit(1730216783.208:391): avc:  denied  { mounton } for  pid=6483 comm="syz-executor" path="/syzkaller.onslwm/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   67.140713][ T5954] Bluetooth: hci2: command tx timeout
[   67.398432][  T829] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   67.558333][  T829] usb 9-1: Using ep0 maxpacket: 8
[   67.560942][  T829] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   67.564215][  T829] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   67.566990][  T829] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   67.573947][  T829] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   67.577337][  T829] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   67.584177][  T829] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   67.675082][ T5946] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   67.691739][ T5946] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   67.695665][ T5946] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   67.700227][ T5946] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   67.703335][ T5946] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   67.705831][ T5946] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   67.796621][ T6615] chnl_net:caif_netlink_parms(): no params data found
[   67.798947][  T829] usb 9-1: GET_CAPABILITIES returned 0
[   67.800731][  T829] usbtmc 9-1:16.0: can't read capabilities
[   67.874913][ T6615] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.876977][ T6615] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.879383][ T6615] bridge_slave_0: entered allmulticast mode
[   67.881540][ T6615] bridge_slave_0: entered promiscuous mode
[   67.884887][ T6615] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.886954][ T6615] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.888957][ T6615] bridge_slave_1: entered allmulticast mode
[   67.891110][ T6615] bridge_slave_1: entered promiscuous mode
[   67.914527][ T6615] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.919182][ T6615] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.942631][ T6615] team0: Port device team_slave_0 added
[   67.946151][ T6615] team0: Port device team_slave_1 added
[   67.975758][ T6615] batman_adv: batadv0: Adding interface: batadv_slave_0
[   67.978154][ T6615] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.985439][ T6615] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.989651][ T6615] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.991521][ T6615] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.998487][ T6615] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.005390][    C1] usbtmc 9-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[   68.028719][ T6214] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.035496][ T6585] nvme_fabrics: missing parameter 'transport=%s'
[   68.037653][ T6585] nvme_fabrics: missing parameter 'nqn=%s'
[   68.051694][   T39] audit: type=1400 audit(1730216784.208:392): avc:  denied  { append } for  pid=6584 comm="syz.4.131" name="ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   68.082393][   T56] usb 9-1: USB disconnect, device number 2
[   68.100146][ T6214] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.107956][ T6615] hsr_slave_0: entered promiscuous mode
[   68.113398][ T6615] hsr_slave_1: entered promiscuous mode
[   68.116057][ T6615] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   68.120174][ T6615] Cannot create hsr debugfs directory
[   68.173292][ T6214] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.241944][ T6214] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.275411][ T6615] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   68.279332][ T6615] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   68.282564][ T6615] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   68.286057][ T6615] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   68.301907][ T6615] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.304197][ T6615] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.306472][ T6615] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.308547][ T6615] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.345016][ T6615] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.355225][ T1135] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.361560][ T1135] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.405096][ T6615] 8021q: adding VLAN 0 to HW filter on device team0
[   68.439251][ T6214] bridge_slave_1: left allmulticast mode
[   68.441422][ T6214] bridge_slave_1: left promiscuous mode
[   68.443926][ T6214] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.448665][ T6214] bridge_slave_0: left allmulticast mode
[   68.450905][ T6214] bridge_slave_0: left promiscuous mode
[   68.453064][ T6214] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.528121][ T6645] xt_CT: You must specify a L4 protocol and not use inversions on it
[   68.669901][ T6648] netlink: 165 bytes leftover after parsing attributes in process `syz.4.150'.
[   68.778124][ T6214] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   68.784578][ T6214] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   68.790015][ T6214] bond0 (unregistering): Released all slaves
[   68.815052][ T6222] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.817488][ T6222] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.826442][ T6222] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.828608][ T6222] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.847125][ T6655] overlayfs: failed to set uuid (67/file1, err=-1); falling back to uuid=null.
[   68.851293][ T6655] overlayfs: failed to verify upper root origin
[   68.942137][ T6664] libceph: resolve '
[   68.942137][ T6664] -&õÌ×fÍY¹Ç�²a×ïÅ2iˆ
[   68.942137][ T6664] .ÖúÕ?Çý&�*»§&' (ret=-3): failed
[   69.064217][ T6615] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.134404][ T6690] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   69.137745][ T6690] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   69.218257][ T5954] Bluetooth: hci2: command tx timeout
[   69.218335][ T1327] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[   69.275263][ T6214] hsr_slave_0: left promiscuous mode
[   69.277494][ T6214] hsr_slave_1: left promiscuous mode
[   69.287699][ T6214] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   69.303175][ T6214] batman_adv: batadv0: Removing interface: batadv_slave_0
[   69.308379][ T6214] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   69.312356][ T6214] batman_adv: batadv0: Removing interface: batadv_slave_1
[   69.340196][ T6214] veth1_macvtap: left promiscuous mode
[   69.342298][ T6214] veth0_macvtap: left promiscuous mode
[   69.344472][ T6214] veth1_vlan: left promiscuous mode
[   69.346071][ T6214] veth0_vlan: left promiscuous mode
[   69.368276][ T1327] usb 9-1: Using ep0 maxpacket: 8
[   69.373777][ T1327] usb 9-1: config 0 has an invalid interface number: 1 but max is 0
[   69.376187][ T1327] usb 9-1: config 0 has no interface number 0
[   69.377816][ T1327] usb 9-1: config 0 interface 1 altsetting 0 has an endpoint descriptor with address 0xFE, changing to 0x8E
[   69.381414][ T1327] usb 9-1: config 0 interface 1 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7
[   69.384342][ T1327] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   69.386692][ T1327] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.393112][ T1327] usb 9-1: config 0 descriptor??
[   69.399943][ T1327] iowarrior 9-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   69.778550][ T5954] Bluetooth: hci4: command tx timeout
[   69.786282][ T6434] usb 9-1: USB disconnect, device number 3
[   69.792835][ T6434] iowarrior 9-1:0.1: I/O-Warror #0 now disconnected
[   70.118231][  T829] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[   70.251218][ T6214] team0 (unregistering): Port device team_slave_1 removed
[   70.280999][  T829] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   70.285307][  T829] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   70.288937][  T829] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   70.292431][  T829] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   70.301786][ T6730] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[   70.330688][  T829] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[   70.377488][ T6732] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   70.389849][ T6214] team0 (unregistering): Port device team_slave_0 removed
[   70.542298][  T829] usb 8-1: USB disconnect, device number 15
[   70.626127][ T6218] Bluetooth: (null): Too short H5 packet
[   70.650894][ T6218] Bluetooth: (null): Invalid header checksum
[   70.652806][ T6218] Bluetooth: (null): Invalid header checksum
[   70.728921][ T6224] Bluetooth: (null): Too short H5 packet
[   70.731077][ T6224] Bluetooth: (null): Invalid header checksum
[   70.764960][ T6730] ip6t_REJECT: TCP_RESET illegal for non-tcp
[   71.139995][   T35] libceph: connect (1)[c::]:6789 error -101
[   71.142230][   T35] libceph: mon0 (1)[c::]:6789 connect error
[   71.156407][ T6750] ceph: No mds server is up or the cluster is laggy
[   71.223328][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[   71.230353][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[   71.302911][ T5954] Bluetooth: hci2: command tx timeout
[   71.378683][ T6711] bridge: RTM_NEWNEIGH with invalid state 0x0
[   71.456986][ T6615] veth0_vlan: entered promiscuous mode
[   71.472802][ T6615] veth1_vlan: entered promiscuous mode
[   71.476179][   T39] kauditd_printk_skb: 58 callbacks suppressed
[   71.476190][   T39] audit: type=1400 audit(1730216787.638:451): avc:  denied  { read write } for  pid=6766 comm="syz.2.174" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   71.489829][ T6767] fuse: Unknown parameter 'ÿÿÿÿÿÿÿÿ0x0000000000000004'
[   71.496448][   T39] audit: type=1400 audit(1730216787.638:452): avc:  denied  { open } for  pid=6766 comm="syz.2.174" path="/dev/fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   71.511317][   T39] audit: type=1400 audit(1730216787.638:453): avc:  denied  { setopt } for  pid=6764 comm="syz.4.173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   71.516741][ T6615] veth0_macvtap: entered promiscuous mode
[   71.517226][   T39] audit: type=1400 audit(1730216787.648:454): avc:  denied  { remount } for  pid=6766 comm="syz.2.174" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   71.532725][   T39] audit: type=1400 audit(1730216787.648:455): avc:  denied  { mounton } for  pid=6766 comm="syz.2.174" path="/73/file0" dev="tmpfs" ino=459 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[   71.535554][ T6615] veth1_macvtap: entered promiscuous mode
[   71.539445][   T39] audit: type=1400 audit(1730216787.668:456): avc:  denied  { bind } for  pid=6764 comm="syz.4.173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   71.547178][   T39] audit: type=1400 audit(1730216787.678:457): avc:  denied  { perfmon } for  pid=6764 comm="syz.4.173" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   71.557919][   T39] audit: type=1400 audit(1730216787.678:458): avc:  denied  { prog_run } for  pid=6764 comm="syz.4.173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   71.563079][   T39] audit: type=1400 audit(1730216787.688:459): avc:  denied  { read } for  pid=6773 comm="dhcpcd-run-hook" name="resolv.conf" dev="tmpfs" ino=1768 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   71.570225][   T39] audit: type=1400 audit(1730216787.688:460): avc:  denied  { open } for  pid=6773 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1768 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   71.571404][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.587571][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.590920][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.593964][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.596992][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.599901][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.605121][ T6615] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.611893][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.615058][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.616980][ T6778] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6778 comm=syz.4.173
[   71.618382][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.618395][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.618407][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.618414][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.619153][ T6615] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.640764][ T6615] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.644279][ T6615] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.647040][ T6615] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.649906][ T6615] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.714397][ T6218] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.716804][ T6218] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.746488][ T6218] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.751216][ T6218] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.858402][ T5954] Bluetooth: hci4: command tx timeout
[   71.929531][  T829] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   72.000043][ T6799] x_tables: duplicate underflow at hook 2
[   72.008155][ T6799] x_tables: duplicate underflow at hook 2
[   72.010878][ T6799] x_tables: duplicate underflow at hook 2
[   72.013781][ T6799] x_tables: duplicate underflow at hook 2
[   72.015979][ T6799] x_tables: duplicate underflow at hook 2
[   72.017754][ T6799] x_tables: duplicate underflow at hook 2
[   72.022697][ T6799] x_tables: duplicate underflow at hook 2
[   72.025354][ T6799] x_tables: duplicate underflow at hook 2
[   72.028925][ T6799] x_tables: duplicate underflow at hook 2
[   72.031391][ T6799] x_tables: duplicate underflow at hook 2
[   72.078262][    T8] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[   72.086008][  T829] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   72.093000][  T829] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   72.096533][  T829] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   72.101439][  T829] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   72.107784][ T6781] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   72.113631][  T829] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[   72.146733][ T6809] usb 7-1: USB disconnect, device number 3
[   72.258734][    T8] usb 10-1: Using ep0 maxpacket: 8
[   72.262993][    T8] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[   72.265682][    T8] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   72.269781][    T8] usb 10-1: config 168 interface 0 altsetting 0 has a duplicate endpoint with address 0x3, skipping
[   72.274157][    T8] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[   72.276556][    T8] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   72.280581][    T8] usb 10-1: config 168 interface 0 altsetting 0 has a duplicate endpoint with address 0x3, skipping
[   72.285426][    T8] usb 10-1: config 168 descriptor has 1 excess byte, ignoring
[   72.288216][    T8] usb 10-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   72.292645][    T8] usb 10-1: config 168 interface 0 altsetting 0 has a duplicate endpoint with address 0x3, skipping
[   72.300976][    T8] usb 10-1: string descriptor 0 read error: -22
[   72.303851][    T8] usb 10-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   72.307827][    T8] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   72.329811][    T8] adutux 10-1:168.0: interrupt endpoints not found
[   72.331102][ T6821] loop0: detected capacity change from 0 to 7
[   72.341376][ T6821] Dev loop0: unable to read RDB block 7
[   72.343043][ T6821]  loop0: AHDI p4
[   72.344080][ T6821] loop0: partition table partially beyond EOD, truncated
[   72.370975][ T6822] loop2: detected capacity change from 0 to 7
[   72.376323][ T6822] Dev loop2: unable to read RDB block 7
[   72.378386][ T6822]  loop2: unable to read partition table
[   72.380561][ T6822] loop2: partition table beyond EOD, truncated
[   72.382905][ T6822] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[   72.537028][    T8] usb 10-1: USB disconnect, device number 2
[   72.966240][ T6847] netlink: 'syz.2.183': attribute type 4 has an invalid length.
[   72.975248][ T6847] netlink: 17 bytes leftover after parsing attributes in process `syz.2.183'.
[   73.096555][ T6859] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=39687 sclass=netlink_route_socket pid=6859 comm=syz.2.185
[   73.103372][ T6862] pim6reg1: entered promiscuous mode
[   73.104941][ T6862] pim6reg1: entered allmulticast mode
[   73.302807][ T6876] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[   73.545070][ T6880] netlink: 'syz.4.189': attribute type 21 has an invalid length.
[   73.547296][ T6880] netlink: 168 bytes leftover after parsing attributes in process `syz.4.189'.
[   73.938242][ T5954] Bluetooth: hci4: command tx timeout
[   74.141608][ T6906] dccp_v4_rcv: dropped packet with invalid checksum
[   74.145656][ T6906] capability: warning: `syz.2.196' uses deprecated v2 capabilities in a way that may be insecure
[   74.197503][ T6906] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   74.201304][ T5954] Bluetooth: hci3: unexpected cc 0x1407 length: 100 > 9
[   74.265864][ T6898] overlayfs: unescaped trailing colons in lowerdir mount option.
[   74.654600][ T6936] netlink: 4 bytes leftover after parsing attributes in process `syz.2.203'.
[   74.661394][ T6936] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.731939][ T6936] bridge_slave_0 (unregistering): left allmulticast mode
[   74.734742][ T6936] bridge_slave_0 (unregistering): left promiscuous mode
[   74.737753][ T6936] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.741227][   T25] usb 10-1: new full-speed USB device number 3 using dummy_hcd
[   74.869728][   T25] usb 10-1: device descriptor read/64, error -71
[   75.108129][   T25] usb 10-1: new full-speed USB device number 4 using dummy_hcd
[   75.112466][ T6954] overlay: ./bus is not a directory
[   75.238179][   T25] usb 10-1: device descriptor read/64, error -71
[   75.348242][   T25] usb usb10-port1: attempt power cycle
[   75.688415][   T25] usb 10-1: new full-speed USB device number 5 using dummy_hcd
[   75.719104][   T25] usb 10-1: device descriptor read/8, error -71
[   75.824862][  T829] libceph: connect (1)[c::]:6789 error -101
[   75.827358][  T829] libceph: mon0 (1)[c::]:6789 connect error
[   75.831501][  T829] libceph: connect (1)[c::]:6789 error -101
[   75.833658][  T829] libceph: mon0 (1)[c::]:6789 connect error
[   75.906429][ T7019] program syz.2.218 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   75.906439][ T7020] program syz.2.218 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   75.907347][ T7020] syz.2.218[7020] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.912890][ T7020] syz.2.218[7020] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.916709][ T7020] syz.2.218[7020] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   75.940477][ T7019] SELinux:  policydb magic number 0x8b67aae0 does not match expected magic number 0xf97cff8c
[   75.949878][ T7019] SELinux: failed to load policy
[   75.958930][   T25] usb 10-1: new full-speed USB device number 6 using dummy_hcd
[   75.978599][   T25] usb 10-1: device descriptor read/8, error -71
[   76.018253][ T5954] Bluetooth: hci4: command tx timeout
[   76.088438][   T25] usb usb10-port1: unable to enumerate USB device
[   76.093547][    T8] libceph: connect (1)[c::]:6789 error -101
[   76.095961][    T8] libceph: mon0 (1)[c::]:6789 connect error
[   76.199464][ T7027] netlink: 60 bytes leftover after parsing attributes in process `syz.2.219'.
[   76.212631][ T7027] Êü: entered promiscuous mode
[   76.227878][ T7029] [U] 
[   76.229154][ T7029] [U] 
[   76.230178][ T7029] [U] 
[   76.231173][ T7029] [U] 
[   76.236141][ T7029] [U] 
[   76.237447][ T7029] [U] 
[   76.238503][ T7029] [U] 
[   76.239525][ T7029] [U] 
[   76.241236][ T7029] [U] 
[   76.242426][ T7029] [U] 
[   76.243809][ T7029] [U] 
[   76.244995][ T7029] [U] 
[   76.246181][ T7029] [U] 
[   76.247507][ T7029] [U] 
[   76.248714][ T7029] [U] 
[   76.249855][ T7029] [U] 
[   76.252929][ T7029] [U] 
[   76.254082][ T7029] [U] 
[   76.255138][ T7029] [U] 
[   76.256223][ T7029] [U] 
[   76.257392][ T7029] [U] 
[   76.258445][ T7029] [U] 
[   76.259660][ T7029] [U] 
[   76.260722][ T7029] [U] 
[   76.262329][ T7029] [U] 
[   76.263469][ T7029] [U] 
[   76.264478][ T7029] [U] 
[   76.265463][ T7029] [U] 
[   76.266593][ T7029] [U] 
[   76.267588][ T7029] [U] 
[   76.268603][ T7029] [U] 
[   76.269580][ T7029] [U] 
[   76.270903][ T7029] [U] 
[   76.272055][ T7029] [U] 
[   76.273168][ T7029] [U] 
[   76.274259][ T7029] [U] 
[   76.276376][ T7029] [U] 
[   76.277511][ T7029] [U] 
[   76.278663][ T7029] [U] 
[   76.279876][ T7029] [U] 
[   76.281242][ T7029] [U] 
[   76.282528][ T7029] [U] 
[   76.283898][ T7029] [U] 
[   76.284941][ T7029] [U] 
[   76.286130][ T7029] [U] 
[   76.287150][ T7029] [U] 
[   76.288177][ T7029] [U] 
[   76.289180][ T7029] [U] 
[   76.290427][ T7029] [U] 
[   76.291427][ T7029] [U] 
[   76.292437][ T7029] [U] 
[   76.293435][ T7029] [U] 
[   76.294417][ T7029] [U] 
[   76.295335][ T7029] [U] 
[   76.296154][ T7029] [U] 
[   76.296885][ T7029] [U] 
[   76.297744][ T7029] [U] 
[   76.298539][ T7029] [U] 
[   76.299283][ T7029] [U] 
[   76.300099][ T7029] [U] 
[   76.301032][ T7029] [U] 
[   76.301818][ T7029] [U] 
[   76.302574][ T7029] [U] 
[   76.303518][ T7029] [U] 
[   76.306051][ T7029] [U] 
[   76.307248][ T7029] [U] 
[   76.307293][ T7029] [U] 
[   76.307321][ T7029] [U] 
[   76.307462][ T7029] [U] 
[   76.312003][ T7029] [U] 
[   76.313102][ T7029] [U] 
[   76.314193][ T7029] [U] 
[   76.326594][ T7030] [U] 
[   76.556869][   T39] kauditd_printk_skb: 128 callbacks suppressed
[   76.556886][   T39] audit: type=1400 audit(1730216792.718:589): avc:  denied  { setopt } for  pid=7038 comm="syz.4.223" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[   76.563083][ T7039] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.223'.
[   76.568363][ T7039] openvswitch: netlink: VXLAN extension 45 out of range max 1
[   76.612070][  T829] libceph: connect (1)[c::]:6789 error -101
[   76.615681][  T829] libceph: mon0 (1)[c::]:6789 connect error
[   76.657724][   T39] audit: type=1400 audit(1730216792.818:590): avc:  denied  { connect } for  pid=7041 comm="syz.4.224" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   76.665334][   T39] audit: type=1400 audit(1730216792.828:591): avc:  denied  { write } for  pid=7041 comm="syz.4.224" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[   76.699282][ T7010] ceph: No mds server is up or the cluster is laggy
[   76.747138][   T39] audit: type=1400 audit(1730216792.908:592): avc:  denied  { write } for  pid=7041 comm="syz.4.224" name="wireless" dev="proc" ino=4026533790 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[   76.752813][ T7045] netlink: 4 bytes leftover after parsing attributes in process `syz.4.224'.
[   76.756214][   T39] audit: type=1400 audit(1730216792.918:593): avc:  denied  { write } for  pid=7041 comm="syz.4.224" path="socket:[17619]" dev="sockfs" ino=17619 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   76.758878][ T7047] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[   76.759753][ T7045] bridge_slave_1: left allmulticast mode
[   76.759768][ T7045] bridge_slave_1: left promiscuous mode
[   76.760005][ T7045] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.773145][ T7047] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   76.777017][ T7047] vhci_hcd vhci_hcd.0: Device attached
[   76.780126][ T7045] bridge_slave_0: left allmulticast mode
[   76.781821][ T7045] bridge_slave_0: left promiscuous mode
[   76.783950][ T7045] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.784893][ T7047] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(5)
[   76.787352][ T7047] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   76.791356][ T7047] vhci_hcd vhci_hcd.0: Device attached
[   76.794472][ T7051] vhci_hcd: connection closed
[   76.795841][ T6222] vhci_hcd: stop threads
[   76.795921][ T7048] vhci_hcd: connection closed
[   76.797147][ T6222] vhci_hcd: release socket
[   76.806392][ T6222] vhci_hcd: disconnect device
[   76.812990][ T6222] vhci_hcd: stop threads
[   76.822193][ T6222] vhci_hcd: release socket
[   76.824048][ T6222] vhci_hcd: disconnect device
[   77.081232][   T39] audit: type=1400 audit(1730216793.248:594): avc:  denied  { read } for  pid=7053 comm="syz.4.226" name="ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   77.090631][   T39] audit: type=1400 audit(1730216793.248:595): avc:  denied  { open } for  pid=7053 comm="syz.4.226" path="/dev/ndctl0" dev="devtmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1
[   77.099488][   T39] audit: type=1400 audit(1730216793.258:596): avc:  denied  { sys_module } for  pid=7053 comm="syz.4.226" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   77.113067][   T39] audit: type=1400 audit(1730216793.278:597): avc:  denied  { read append } for  pid=7053 comm="syz.4.226" name="ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   77.119538][   T39] audit: type=1400 audit(1730216793.278:598): avc:  denied  { open } for  pid=7053 comm="syz.4.226" path="/dev/ptp0" dev="devtmpfs" ino=729 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[   77.682966][ T7080] netlink: 12 bytes leftover after parsing attributes in process `syz.5.232'.
[   78.261254][ T5954] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[   78.264194][ T5954] Bluetooth: hci3: Injecting HCI hardware error event
[   78.268104][ T5954] Bluetooth: hci3: hardware error 0x00
[   78.459064][ T7123] tmpfs: Bad value for 'mpol'
[   78.748800][ T7138] block device autoloading is deprecated and will be removed.
[   78.754753][ T7141] netlink: 'syz.5.248': attribute type 10 has an invalid length.
[   78.768578][ T7141] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.772743][ T7141] team0: Port device bond0 added
[   78.775150][ T7142] netlink: 'syz.5.248': attribute type 10 has an invalid length.
[   78.844262][ T7149] syz.5.250: attempt to access beyond end of device
[   78.844262][ T7149] loop5: rw=0, sector=2, nr_sectors = 2 limit=0
[   78.852852][ T7149] MINIX-fs: unable to read superblock
[   78.927167][ T7158] pimreg: entered allmulticast mode
[   79.107251][ T7170] tipc: Started in network mode
[   79.108860][ T7170] tipc: Node identity 9, cluster identity 4711
[   79.110563][ T7170] tipc: Node number set to 9
[   79.315464][ T7191] netlink: 12 bytes leftover after parsing attributes in process `syz.3.259'.
[   79.645094][ T7218] tmpfs: Bad value for 'mpol'
[   79.890369][ T7221] netlink: 4 bytes leftover after parsing attributes in process `syz.3.268'.
[   79.960796][ T7236] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   79.963689][ T7236] IPv6: NLM_F_CREATE should be set when creating new route
[   80.061522][ T7230] kvm: kvm [7226]: vcpu2, guest rIP: 0x1be Unhandled WRMSR(0x11e) = 0x0
[   80.358182][ T5954] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[   80.508759][ T7261] xt_check_table_hooks: 55 callbacks suppressed
[   80.508772][ T7261] x_tables: unsorted underflow at hook 3
[   80.707074][ T7267] Illegal XDP return value 4294967274 on prog  (id 53) dev N/A, expect packet loss!
[   80.910178][ T7273] overlayfs: missing 'workdir'
[   80.948310][ T6434] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[   80.987091][ T7279] netlink: 'syz.5.279': attribute type 2 has an invalid length.
[   81.078144][ T6434] usb 8-1: device descriptor read/64, error -71
[   81.137012][ T7292] 9pnet_virtio: no channels available for device syz
[   81.257193][ T7299] binder: 7298:7299 ioctl c0306201 0 returned -14
[   81.349149][ T6434] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[   81.393950][ T7306] netlink: 168 bytes leftover after parsing attributes in process `syz.4.288'.
[   81.462700][   T30] cfg80211: failed to load regulatory.db
[   81.529111][ T6434] usb 8-1: device descriptor read/64, error -71
[   81.572084][ T7318] BUG: Bad page state in process syz.4.289  pfn:3fd08
[   81.574720][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xb1 pfn:0x3fd08
[   81.576329][   T39] kauditd_printk_skb: 58 callbacks suppressed
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   81.576343][   T39] audit: type=1400 audit(1730216797.738:657): avc:  denied  { write } for  pid=5889 comm="syz-executor" path="pipe:[7277]" dev="pipefs" ino=7277 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   81.578064][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   81.578086][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   81.578097][ T7318] raw: 00000000000000b1 0000000000000001 00000000ffffffff 0000000000000000
[   81.578104][ T7318] page dumped because: page_pool leak
[   81.578110][ T7318] page_owner tracks the page as allocated
[   81.578115][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562408370, free_ts 79594577996
[   81.578132][ T7318]  post_alloc_hook+0x2d1/0x350
[   81.604963][ T7318]  get_page_from_freelist+0x101e/0x3070
[   81.606469][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   81.607908][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   81.609434][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   81.611008][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   81.612467][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   81.613800][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   81.615493][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   81.616952][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   81.618579][ T7318]  __sys_bpf+0xfc6/0x49a0
[   81.619720][ T7318]  __x64_sys_bpf+0x78/0xc0
[   81.620899][ T7318]  do_syscall_64+0xcd/0x250
[   81.622094][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.623692][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   81.625356][ T7318]  free_unref_folios+0x956/0x1310
[   81.626714][ T7318]  folios_put_refs+0x551/0x750
[   81.628061][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   81.629570][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   81.630944][ T7318]  blkdev_put_whole+0xc4/0xf0
[   81.632227][ T7318]  bdev_release+0x47e/0x6d0
[   81.633631][ T7318]  blkdev_release+0x15/0x20
[   81.634865][ T7318]  __fput+0x3f6/0xb60
[   81.635970][ T7318]  task_work_run+0x14e/0x250
[   81.637262][ T7318]  do_exit+0xadd/0x2d70
[   81.638452][ T7318]  do_group_exit+0xd3/0x2a0
[   81.639756][ T7318]  get_signal+0x25fb/0x2770
[   81.640976][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   81.642477][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   81.643995][ T7318]  do_syscall_64+0xda/0x250
[   81.645229][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.646810][ T7318] Modules linked in:
[   81.647938][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Not tainted 6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   81.650396][ T6434] usb usb8-port1: attempt power cycle
[   81.650765][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.655489][ T7318] Call Trace:
[   81.656423][ T7318]  <TASK>
[   81.657230][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   81.658648][ T7318]  bad_page+0xb3/0x1f0
[   81.660004][ T7318]  ? __pfx_bad_page+0x10/0x10
[   81.661261][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   81.662582][ T7318]  free_unref_page+0x657/0xdc0
[   81.663870][ T7318]  ? rcu_is_watching+0x12/0xc0
[   81.665183][ T7318]  ? __phys_addr+0xc6/0x150
[   81.666399][ T7318]  skb_free_head+0xa0/0x1d0
[   81.667646][ T7318]  skb_release_data+0x560/0x730
[   81.668949][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   81.670305][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   81.672094][ T7318]  ? kernel_text_address+0x8d/0x100
[   81.673841][ T7318]  ? hlock_class+0x4e/0x130
[   81.675129][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   81.676532][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   81.678607][ T7318]  ? hlock_class+0x4e/0x130
[   81.680152][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   81.681637][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   81.683237][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   81.685071][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   81.686807][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   81.688230][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   81.689933][ T7318]  ? lock_acquire+0x2f/0xb0
[   81.691134][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   81.693219][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   81.695018][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   81.697108][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   81.698637][ T7318]  ? __build_skb_around+0x278/0x3b0
[   81.700246][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   81.701746][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   81.703661][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   81.705737][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   81.707300][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   81.708754][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   81.710321][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   81.711948][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   81.713667][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   81.715336][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   81.716848][ T7318]  ? 0xffffffffa0004340
[   81.718008][ T7318]  ? 0xffffffffa0004340
[   81.719351][ T7318]  ? 0xffffffffa0004340
[   81.720523][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   81.722093][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   81.723597][ T7318]  ? lock_acquire+0x2f/0xb0
[   81.725006][ T7318]  ? __fget_files+0x40/0x3f0
[   81.726378][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   81.728103][ T7318]  ? fput+0x30/0x390
[   81.729329][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   81.730718][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   81.732346][ T7318]  __sys_bpf+0xfc6/0x49a0
[   81.733823][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   81.735149][ T7318]  ? __schedule+0xe5d/0x5730
[   81.736423][ T7318]  ? do_futex+0x123/0x350
[   81.737600][ T7318]  ? __pfx_do_futex+0x10/0x10
[   81.738884][ T7318]  ? xfd_validate_state+0x5d/0x180
[   81.740270][ T7318]  ? rcu_is_watching+0x12/0xc0
[   81.741564][ T7318]  __x64_sys_bpf+0x78/0xc0
[   81.742743][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   81.744064][ T7318]  do_syscall_64+0xcd/0x250
[   81.745392][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.746932][ T7318] RIP: 0033:0x7f38a8f7e719
[   81.748147][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.753224][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   81.755569][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   81.757853][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   81.760291][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   81.762469][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   81.764654][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   81.766800][ T7318]  </TASK>
[   81.767746][ T7318] Disabling lock debugging due to kernel taint
[   81.769384][ T7318] BUG: Bad page state in process syz.4.289  pfn:44c19
[   81.771153][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xb2 pfn:0x44c19
[   81.773808][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   81.775811][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   81.778129][ T7318] raw: 00000000000000b2 0000000000000001 00000000ffffffff 0000000000000000
[   81.780441][ T7318] page dumped because: page_pool leak
[   81.781844][ T7318] page_owner tracks the page as allocated
[   81.783489][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562404068, free_ts 79594583601
[   81.788061][ T7318]  post_alloc_hook+0x2d1/0x350
[   81.789352][ T7318]  get_page_from_freelist+0x101e/0x3070
[   81.790834][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   81.792620][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   81.794166][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   81.795822][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   81.797218][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   81.798676][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   81.800366][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   81.801797][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   81.803435][ T7318]  __sys_bpf+0xfc6/0x49a0
[   81.804677][ T7318]  __x64_sys_bpf+0x78/0xc0
[   81.805939][ T7318]  do_syscall_64+0xcd/0x250
[   81.807210][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.808881][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   81.810592][ T7318]  free_unref_folios+0x956/0x1310
[   81.811999][ T7318]  folios_put_refs+0x551/0x750
[   81.813489][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   81.815010][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   81.816375][ T7318]  blkdev_put_whole+0xc4/0xf0
[   81.817665][ T7318]  bdev_release+0x47e/0x6d0
[   81.819050][ T7318]  blkdev_release+0x15/0x20
[   81.820391][ T7318]  __fput+0x3f6/0xb60
[   81.821670][ T7318]  task_work_run+0x14e/0x250
[   81.823080][ T7318]  do_exit+0xadd/0x2d70
[   81.824302][ T7318]  do_group_exit+0xd3/0x2a0
[   81.825496][ T7318]  get_signal+0x25fb/0x2770
[   81.826723][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   81.828282][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   81.829762][ T7318]  do_syscall_64+0xda/0x250
[   81.831001][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.832705][ T7318] Modules linked in:
[   81.833968][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   81.837314][ T7318] Tainted: [B]=BAD_PAGE
[   81.838470][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.841574][ T7318] Call Trace:
[   81.842571][ T7318]  <TASK>
[   81.843560][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   81.844945][ T7318]  bad_page+0xb3/0x1f0
[   81.846126][ T7318]  ? __pfx_bad_page+0x10/0x10
[   81.847477][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   81.848806][ T7318]  free_unref_page+0x657/0xdc0
[   81.850067][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   81.851657][ T7318]  ? __phys_addr+0xc6/0x150
[   81.853017][ T7318]  skb_free_head+0xa0/0x1d0
[   81.854306][ T7318]  skb_release_data+0x560/0x730
[   81.855870][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   81.857336][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   81.859205][ T7318]  ? kernel_text_address+0x8d/0x100
[   81.860742][ T7318]  ? hlock_class+0x4e/0x130
[   81.862186][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   81.863972][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   81.866750][ T7318]  ? hlock_class+0x4e/0x130
[   81.868059][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   81.869441][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   81.870879][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   81.872862][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   81.874994][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   81.876451][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   81.878468][ T7318]  ? lock_acquire+0x2f/0xb0
[   81.879879][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   81.881652][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   81.883304][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   81.885115][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   81.886517][ T7318]  ? __build_skb_around+0x278/0x3b0
[   81.887998][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   81.889446][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   81.891161][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   81.892944][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   81.894517][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   81.896231][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   81.898068][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   81.900063][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   81.902279][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   81.904570][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   81.906252][ T7318]  ? 0xffffffffa0004340
[   81.907452][ T7318]  ? 0xffffffffa0004340
[   81.908795][ T7318]  ? 0xffffffffa0004340
[   81.909987][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   81.911595][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   81.913077][ T7318]  ? lock_acquire+0x2f/0xb0
[   81.914338][ T7318]  ? __fget_files+0x40/0x3f0
[   81.915548][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   81.917293][ T7318]  ? fput+0x30/0x390
[   81.918441][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   81.919980][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   81.921607][ T7318]  __sys_bpf+0xfc6/0x49a0
[   81.922811][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   81.924137][ T7318]  ? __schedule+0xe5d/0x5730
[   81.925417][ T7318]  ? do_futex+0x123/0x350
[   81.926591][ T7318]  ? __pfx_do_futex+0x10/0x10
[   81.927891][ T7318]  ? xfd_validate_state+0x5d/0x180
[   81.929272][ T7318]  ? rcu_is_watching+0x12/0xc0
[   81.930577][ T7318]  __x64_sys_bpf+0x78/0xc0
[   81.931809][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   81.933380][ T7318]  do_syscall_64+0xcd/0x250
[   81.934611][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.936280][ T7318] RIP: 0033:0x7f38a8f7e719
[   81.937588][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.943908][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   81.946585][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   81.948721][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   81.950849][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   81.953506][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   81.955792][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   81.958146][ T7318]  </TASK>
[   81.959193][ T7318] BUG: Bad page state in process syz.4.289  pfn:2fa12
[   81.961320][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xb3 pfn:0x2fa12
[   81.963900][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   81.965832][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   81.968296][ T7318] raw: 00000000000000b3 0000000000000001 00000000ffffffff 0000000000000000
[   81.970694][ T7318] page dumped because: page_pool leak
[   81.972215][ T7318] page_owner tracks the page as allocated
[   81.974101][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562391496, free_ts 79594589287
[   81.978603][ T7318]  post_alloc_hook+0x2d1/0x350
[   81.979906][ T7318]  get_page_from_freelist+0x101e/0x3070
[   81.981409][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   81.982814][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   81.984319][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   81.985898][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   81.987357][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   81.988277][ T6434] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[   81.988935][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   81.993408][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   81.994998][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   81.996736][ T7318]  __sys_bpf+0xfc6/0x49a0
[   81.998640][ T7318]  __x64_sys_bpf+0x78/0xc0
[   81.999881][ T7318]  do_syscall_64+0xcd/0x250
[   82.001141][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.002990][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   82.005137][ T7318]  free_unref_folios+0x956/0x1310
[   82.006714][ T7318]  folios_put_refs+0x551/0x750
[   82.008096][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   82.009655][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   82.011031][ T7318]  blkdev_put_whole+0xc4/0xf0
[   82.012828][ T7318]  bdev_release+0x47e/0x6d0
[   82.014086][ T7318]  blkdev_release+0x15/0x20
[   82.015301][ T7318]  __fput+0x3f6/0xb60
[   82.016407][ T7318]  task_work_run+0x14e/0x250
[   82.017607][ T7318]  do_exit+0xadd/0x2d70
[   82.018727][ T7318]  do_group_exit+0xd3/0x2a0
[   82.019983][ T7318]  get_signal+0x25fb/0x2770
[   82.021255][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   82.023067][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   82.024652][ T7318]  do_syscall_64+0xda/0x250
[   82.025881][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.027481][ T7318] Modules linked in:
[   82.028621][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   82.031876][ T7318] Tainted: [B]=BAD_PAGE
[   82.033054][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.036264][ T7318] Call Trace:
[   82.037166][ T7318]  <TASK>
[   82.037958][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   82.039363][ T7318]  bad_page+0xb3/0x1f0
[   82.040820][ T7318]  ? __pfx_bad_page+0x10/0x10
[   82.042054][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   82.043495][ T7318]  free_unref_page+0x657/0xdc0
[   82.044770][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   82.046239][ T7318]  ? __phys_addr+0xc6/0x150
[   82.047425][ T7318]  skb_free_head+0xa0/0x1d0
[   82.048729][ T7318]  skb_release_data+0x560/0x730
[   82.050066][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   82.051441][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   82.054124][ T7318]  ? kernel_text_address+0x8d/0x100
[   82.055783][ T7318]  ? hlock_class+0x4e/0x130
[   82.057257][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   82.058849][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   82.061060][ T7318]  ? hlock_class+0x4e/0x130
[   82.062391][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   82.064008][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   82.065520][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   82.067211][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   82.068892][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   82.070290][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   82.072111][ T7318]  ? lock_acquire+0x2f/0xb0
[   82.073416][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   82.074999][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   82.076554][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   82.078434][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   82.080036][ T7318]  ? __build_skb_around+0x278/0x3b0
[   82.081601][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   82.083050][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   82.084866][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   82.086888][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   82.088398][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   82.089976][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   82.091639][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   82.093586][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   82.095726][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   82.097447][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   82.099001][ T7318]  ? 0xffffffffa0004340
[   82.100186][ T7318]  ? 0xffffffffa0004340
[   82.101316][ T7318]  ? 0xffffffffa0004340
[   82.102440][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   82.104026][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   82.105544][ T7318]  ? lock_acquire+0x2f/0xb0
[   82.106789][ T7318]  ? __fget_files+0x40/0x3f0
[   82.108033][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   82.109657][ T7318]  ? fput+0x30/0x390
[   82.110699][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   82.111984][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   82.113644][ T7318]  __sys_bpf+0xfc6/0x49a0
[   82.114866][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   82.116188][ T7318]  ? __schedule+0xe5d/0x5730
[   82.117467][ T7318]  ? do_futex+0x123/0x350
[   82.118659][ T7318]  ? __pfx_do_futex+0x10/0x10
[   82.119983][ T7318]  ? xfd_validate_state+0x5d/0x180
[   82.121378][ T7318]  ? rcu_is_watching+0x12/0xc0
[   82.122798][ T7318]  __x64_sys_bpf+0x78/0xc0
[   82.124140][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   82.125594][ T7318]  do_syscall_64+0xcd/0x250
[   82.126905][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.128618][ T7318] RIP: 0033:0x7f38a8f7e719
[   82.129854][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.135232][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   82.137500][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   82.139836][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   82.142265][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   82.144631][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   82.146823][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   82.148943][ T7318]  </TASK>
[   82.149881][ T7318] BUG: Bad page state in process syz.4.289  pfn:30f73
[   82.151677][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xb4 pfn:0x30f73
[   82.154401][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   82.156539][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   82.159072][ T7318] raw: 00000000000000b4 0000000000000001 00000000ffffffff 0000000000000000
[   82.161465][ T7318] page dumped because: page_pool leak
[   82.162913][ T7318] page_owner tracks the page as allocated
[   82.164457][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562387144, free_ts 79594594910
[   82.169097][ T7318]  post_alloc_hook+0x2d1/0x350
[   82.170678][ T7318]  get_page_from_freelist+0x101e/0x3070
[   82.172500][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   82.174456][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   82.176509][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   82.178631][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   82.180577][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   82.182242][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   82.183865][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   82.185308][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   82.186865][ T7318]  __sys_bpf+0xfc6/0x49a0
[   82.188120][ T7318]  __x64_sys_bpf+0x78/0xc0
[   82.189256][ T7318]  do_syscall_64+0xcd/0x250
[   82.190526][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.192197][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   82.194079][ T7318]  free_unref_folios+0x956/0x1310
[   82.195441][ T7318]  folios_put_refs+0x551/0x750
[   82.196757][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   82.198580][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   82.199910][ T7318]  blkdev_put_whole+0xc4/0xf0
[   82.201168][ T7318]  bdev_release+0x47e/0x6d0
[   82.202357][ T7318]  blkdev_release+0x15/0x20
[   82.203559][ T7318]  __fput+0x3f6/0xb60
[   82.204612][ T7318]  task_work_run+0x14e/0x250
[   82.205849][ T7318]  do_exit+0xadd/0x2d70
[   82.207068][ T7318]  do_group_exit+0xd3/0x2a0
[   82.208387][ T7318]  get_signal+0x25fb/0x2770
[   82.209576][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   82.211073][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   82.212579][ T7318]  do_syscall_64+0xda/0x250
[   82.213796][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.215410][ T7318] Modules linked in:
[   82.216512][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   82.220125][ T7318] Tainted: [B]=BAD_PAGE
[   82.221388][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.224720][ T7318] Call Trace:
[   82.225672][ T7318]  <TASK>
[   82.226508][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   82.227920][ T7318]  bad_page+0xb3/0x1f0
[   82.229093][ T7318]  ? __pfx_bad_page+0x10/0x10
[   82.230452][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   82.231998][ T7318]  free_unref_page+0x657/0xdc0
[   82.233522][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   82.235097][ T7318]  ? __phys_addr+0xc6/0x150
[   82.236410][ T7318]  skb_free_head+0xa0/0x1d0
[   82.237659][ T7318]  skb_release_data+0x560/0x730
[   82.239081][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   82.240422][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   82.242129][ T7318]  ? kernel_text_address+0x8d/0x100
[   82.243521][ T7318]  ? hlock_class+0x4e/0x130
[   82.244820][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   82.246173][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   82.248011][ T7318]  ? hlock_class+0x4e/0x130
[   82.249235][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   82.250522][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   82.251854][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   82.253409][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   82.255133][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   82.256610][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   82.258535][ T7318]  ? lock_acquire+0x2f/0xb0
[   82.259980][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   82.261903][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   82.263831][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   82.265717][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   82.267015][ T7318]  ? __build_skb_around+0x278/0x3b0
[   82.268345][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   82.269800][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   82.271518][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   82.273293][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   82.274764][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   82.276266][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   82.277837][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   82.279451][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   82.281062][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   82.282577][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   82.284076][ T7318]  ? 0xffffffffa0004340
[   82.285314][ T7318]  ? 0xffffffffa0004340
[   82.286948][ T7318]  ? 0xffffffffa0004340
[   82.288391][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   82.290598][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   82.292674][ T7318]  ? lock_acquire+0x2f/0xb0
[   82.294322][ T7318]  ? __fget_files+0x40/0x3f0
[   82.295933][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   82.298170][ T7318]  ? fput+0x30/0x390
[   82.299407][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   82.301024][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   82.303005][ T7318]  __sys_bpf+0xfc6/0x49a0
[   82.304253][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   82.305554][ T7318]  ? __schedule+0xe5d/0x5730
[   82.307101][ T7318]  ? do_futex+0x123/0x350
[   82.308815][ T7318]  ? __pfx_do_futex+0x10/0x10
[   82.310534][ T7318]  ? xfd_validate_state+0x5d/0x180
[   82.312345][ T7318]  ? rcu_is_watching+0x12/0xc0
[   82.314097][ T7318]  __x64_sys_bpf+0x78/0xc0
[   82.315548][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   82.317096][ T7318]  do_syscall_64+0xcd/0x250
[   82.318748][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.320694][ T7318] RIP: 0033:0x7f38a8f7e719
[   82.322012][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.327381][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   82.329620][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   82.331695][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   82.333791][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   82.336258][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   82.338282][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   82.340664][ T7318]  </TASK>
[   82.341793][ T7318] BUG: Bad page state in process syz.4.289  pfn:323b9
[   82.343733][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xb5 pfn:0x323b9
[   82.346599][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   82.349068][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   82.351865][ T7318] raw: 00000000000000b5 0000000000000001 00000000ffffffff 0000000000000000
[   82.354260][ T7318] page dumped because: page_pool leak
[   82.355672][ T7318] page_owner tracks the page as allocated
[   82.357163][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562382695, free_ts 79594600637
[   82.362234][ T7318]  post_alloc_hook+0x2d1/0x350
[   82.363669][ T7318]  get_page_from_freelist+0x101e/0x3070
[   82.365240][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   82.366643][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   82.368186][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   82.369747][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   82.371153][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   82.372619][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   82.374517][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   82.376174][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   82.377866][ T7318]  __sys_bpf+0xfc6/0x49a0
[   82.379142][ T7318]  __x64_sys_bpf+0x78/0xc0
[   82.380430][ T7318]  do_syscall_64+0xcd/0x250
[   82.381626][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.383342][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   82.385097][ T7318]  free_unref_folios+0x956/0x1310
[   82.386451][ T7318]  folios_put_refs+0x551/0x750
[   82.387807][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   82.389389][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   82.390842][ T7318]  blkdev_put_whole+0xc4/0xf0
[   82.392217][ T7318]  bdev_release+0x47e/0x6d0
[   82.393490][ T7318]  blkdev_release+0x15/0x20
[   82.394708][ T7318]  __fput+0x3f6/0xb60
[   82.395802][ T7318]  task_work_run+0x14e/0x250
[   82.397025][ T7318]  do_exit+0xadd/0x2d70
[   82.398191][ T7318]  do_group_exit+0xd3/0x2a0
[   82.399462][ T7318]  get_signal+0x25fb/0x2770
[   82.400670][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   82.402141][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   82.403675][ T7318]  do_syscall_64+0xda/0x250
[   82.404907][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.406580][ T7318] Modules linked in:
[   82.407673][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   82.410876][ T7318] Tainted: [B]=BAD_PAGE
[   82.412013][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.414921][ T7318] Call Trace:
[   82.415967][ T7318]  <TASK>
[   82.416762][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   82.418117][ T7318]  bad_page+0xb3/0x1f0
[   82.419234][ T7318]  ? __pfx_bad_page+0x10/0x10
[   82.420597][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   82.421930][ T7318]  free_unref_page+0x657/0xdc0
[   82.423317][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   82.425074][ T7318]  ? __phys_addr+0xc6/0x150
[   82.426483][ T7318]  skb_free_head+0xa0/0x1d0
[   82.427828][ T7318]  skb_release_data+0x560/0x730
[   82.429206][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   82.430772][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   82.432644][ T7318]  ? kernel_text_address+0x8d/0x100
[   82.434088][ T7318]  ? hlock_class+0x4e/0x130
[   82.435406][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   82.436779][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   82.438690][ T7318]  ? hlock_class+0x4e/0x130
[   82.439917][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   82.441244][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   82.442746][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   82.444354][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   82.446131][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   82.447587][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   82.449352][ T7318]  ? lock_acquire+0x2f/0xb0
[   82.450635][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   82.452412][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   82.454369][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   82.456591][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   82.458423][ T7318]  ? __build_skb_around+0x278/0x3b0
[   82.459877][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   82.461399][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   82.463195][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   82.464970][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   82.466530][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   82.467977][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   82.469532][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   82.471126][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   82.472853][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   82.474540][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   82.476330][ T7318]  ? 0xffffffffa0004340
[   82.477510][ T7318]  ? 0xffffffffa0004340
[   82.478631][ T7318]  ? 0xffffffffa0004340
[   82.479831][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   82.481685][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   82.483183][ T7318]  ? lock_acquire+0x2f/0xb0
[   82.484510][ T7318]  ? __fget_files+0x40/0x3f0
[   82.485756][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   82.487438][ T7318]  ? fput+0x30/0x390
[   82.488641][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   82.490177][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   82.492036][ T7318]  __sys_bpf+0xfc6/0x49a0
[   82.493558][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   82.495246][ T7318]  ? __schedule+0xe5d/0x5730
[   82.496653][ T7318]  ? do_futex+0x123/0x350
[   82.497857][ T7318]  ? __pfx_do_futex+0x10/0x10
[   82.499105][ T7318]  ? xfd_validate_state+0x5d/0x180
[   82.500507][ T7318]  ? rcu_is_watching+0x12/0xc0
[   82.501806][ T7318]  __x64_sys_bpf+0x78/0xc0
[   82.503016][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   82.504432][ T7318]  do_syscall_64+0xcd/0x250
[   82.505670][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.507265][ T7318] RIP: 0033:0x7f38a8f7e719
[   82.508488][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.513662][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   82.515890][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   82.517990][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   82.520137][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   82.522205][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   82.524661][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   82.526917][ T7318]  </TASK>
[   82.528019][ T7318] BUG: Bad page state in process syz.4.289  pfn:324a5
[   82.530220][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xb6 pfn:0x324a5
[   82.532886][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   82.534812][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   82.537250][ T7318] raw: 00000000000000b6 0000000000000001 00000000ffffffff 0000000000000000
[   82.539615][ T7318] page dumped because: page_pool leak
[   82.541070][ T7318] page_owner tracks the page as allocated
[   82.542741][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562377805, free_ts 79594607487
[   82.547940][ T7318]  post_alloc_hook+0x2d1/0x350
[   82.549755][ T7318]  get_page_from_freelist+0x101e/0x3070
[   82.551320][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   82.552843][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   82.554310][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   82.555908][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   82.557375][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   82.558856][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   82.560549][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   82.561986][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   82.563468][ T7318]  __sys_bpf+0xfc6/0x49a0
[   82.564669][ T7318]  __x64_sys_bpf+0x78/0xc0
[   82.565864][ T7318]  do_syscall_64+0xcd/0x250
[   82.567106][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.568892][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   82.571134][ T7318]  free_unref_folios+0x956/0x1310
[   82.572853][ T7318]  folios_put_refs+0x551/0x750
[   82.574392][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   82.576169][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   82.577645][ T7318]  blkdev_put_whole+0xc4/0xf0
[   82.578996][ T7318]  bdev_release+0x47e/0x6d0
[   82.580429][ T7318]  blkdev_release+0x15/0x20
[   82.581635][ T7318]  __fput+0x3f6/0xb60
[   82.582705][ T7318]  task_work_run+0x14e/0x250
[   82.584264][ T7318]  do_exit+0xadd/0x2d70
[   82.585437][ T7318]  do_group_exit+0xd3/0x2a0
[   82.586910][ T7318]  get_signal+0x25fb/0x2770
[   82.588731][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   82.590430][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   82.591983][ T7318]  do_syscall_64+0xda/0x250
[   82.593271][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.594817][ T7318] Modules linked in:
[   82.595856][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   82.598995][ T7318] Tainted: [B]=BAD_PAGE
[   82.600113][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.602913][ T7318] Call Trace:
[   82.603820][ T7318]  <TASK>
[   82.604595][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   82.605851][ T7318]  bad_page+0xb3/0x1f0
[   82.606934][ T7318]  ? __pfx_bad_page+0x10/0x10
[   82.608203][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   82.609480][ T7318]  free_unref_page+0x657/0xdc0
[   82.610733][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   82.612339][ T7318]  ? __phys_addr+0xc6/0x150
[   82.613646][ T7318]  skb_free_head+0xa0/0x1d0
[   82.614960][ T7318]  skb_release_data+0x560/0x730
[   82.616337][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   82.617745][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   82.619678][ T7318]  ? kernel_text_address+0x8d/0x100
[   82.621079][ T7318]  ? hlock_class+0x4e/0x130
[   82.622288][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   82.623634][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   82.625643][ T7318]  ? hlock_class+0x4e/0x130
[   82.626869][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   82.628235][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   82.629643][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   82.631239][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   82.632975][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   82.634343][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   82.636046][ T7318]  ? lock_acquire+0x2f/0xb0
[   82.637249][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   82.638950][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   82.640569][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   82.642423][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   82.643829][ T7318]  ? __build_skb_around+0x278/0x3b0
[   82.645281][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   82.646662][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   82.648331][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   82.650132][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   82.651699][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   82.653127][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   82.654649][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   82.656233][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   82.657824][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   82.659418][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   82.660862][ T7318]  ? 0xffffffffa0004340
[   82.662004][ T7318]  ? 0xffffffffa0004340
[   82.663130][ T7318]  ? 0xffffffffa0004340
[   82.664238][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   82.665801][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   82.667331][ T7318]  ? lock_acquire+0x2f/0xb0
[   82.668805][ T7318]  ? __fget_files+0x40/0x3f0
[   82.670289][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   82.672187][ T7318]  ? fput+0x30/0x390
[   82.673544][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   82.675177][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   82.676902][ T7318]  __sys_bpf+0xfc6/0x49a0
[   82.678071][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   82.679362][ T7318]  ? __schedule+0xe5d/0x5730
[   82.680610][ T7318]  ? do_futex+0x123/0x350
[   82.681788][ T7318]  ? __pfx_do_futex+0x10/0x10
[   82.683256][ T7318]  ? xfd_validate_state+0x5d/0x180
[   82.685053][ T7318]  ? rcu_is_watching+0x12/0xc0
[   82.686925][ T7318]  __x64_sys_bpf+0x78/0xc0
[   82.688372][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   82.690170][ T7318]  do_syscall_64+0xcd/0x250
[   82.691567][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.693271][ T7318] RIP: 0033:0x7f38a8f7e719
[   82.694435][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.699623][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   82.701800][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   82.704254][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   82.706524][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   82.709080][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   82.711236][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   82.713448][ T7318]  </TASK>
[   82.714494][ T7318] BUG: Bad page state in process syz.4.289  pfn:48c90
[   82.716441][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xb7 pfn:0x48c90
[   82.718847][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   82.720914][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   82.723420][ T7318] raw: 00000000000000b7 0000000000000001 00000000ffffffff 0000000000000000
[   82.726068][ T7318] page dumped because: page_pool leak
[   82.727587][ T7318] page_owner tracks the page as allocated
[   82.729203][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562373552, free_ts 79594613053
[   82.734017][ T7318]  post_alloc_hook+0x2d1/0x350
[   82.735318][ T7318]  get_page_from_freelist+0x101e/0x3070
[   82.736851][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   82.738400][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   82.740224][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   82.742134][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   82.743919][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   82.745634][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   82.747615][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   82.749199][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   82.750828][ T7318]  __sys_bpf+0xfc6/0x49a0
[   82.752070][ T7318]  __x64_sys_bpf+0x78/0xc0
[   82.753340][ T7318]  do_syscall_64+0xcd/0x250
[   82.754636][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.756271][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   82.758050][ T7318]  free_unref_folios+0x956/0x1310
[   82.759525][ T7318]  folios_put_refs+0x551/0x750
[   82.760831][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   82.762425][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   82.763806][ T7318]  blkdev_put_whole+0xc4/0xf0
[   82.765069][ T7318]  bdev_release+0x47e/0x6d0
[   82.766320][ T7318]  blkdev_release+0x15/0x20
[   82.767560][ T7318]  __fput+0x3f6/0xb60
[   82.768892][ T7318]  task_work_run+0x14e/0x250
[   82.770289][ T7318]  do_exit+0xadd/0x2d70
[   82.771651][ T7318]  do_group_exit+0xd3/0x2a0
[   82.772914][ T7318]  get_signal+0x25fb/0x2770
[   82.774215][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   82.775866][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   82.777365][ T7318]  do_syscall_64+0xda/0x250
[   82.778636][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.780390][ T7318] Modules linked in:
[   82.781567][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   82.785310][ T7318] Tainted: [B]=BAD_PAGE
[   82.786469][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.789335][ T7318] Call Trace:
[   82.790216][ T7318]  <TASK>
[   82.791094][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   82.792610][ T7318]  bad_page+0xb3/0x1f0
[   82.793696][ T7318]  ? __pfx_bad_page+0x10/0x10
[   82.794966][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   82.796282][ T7318]  free_unref_page+0x657/0xdc0
[   82.797635][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   82.799304][ T7318]  ? __phys_addr+0xc6/0x150
[   82.800537][ T7318]  skb_free_head+0xa0/0x1d0
[   82.801751][ T7318]  skb_release_data+0x560/0x730
[   82.803218][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   82.804800][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   82.806804][ T7318]  ? kernel_text_address+0x8d/0x100
[   82.808523][ T7318]  ? hlock_class+0x4e/0x130
[   82.810940][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   82.812482][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   82.814516][ T7318]  ? hlock_class+0x4e/0x130
[   82.815833][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   82.817233][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   82.818622][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   82.820248][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   82.822009][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   82.823803][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   82.825773][ T7318]  ? lock_acquire+0x2f/0xb0
[   82.827156][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   82.829113][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   82.830938][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   82.833056][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   82.834379][ T7318]  ? __build_skb_around+0x278/0x3b0
[   82.835778][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   82.837164][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   82.838850][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   82.840864][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   82.842392][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   82.844091][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   82.845901][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   82.847828][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   82.849487][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   82.851253][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   82.852879][ T7318]  ? 0xffffffffa0004340
[   82.854154][ T7318]  ? 0xffffffffa0004340
[   82.855441][ T7318]  ? 0xffffffffa0004340
[   82.856717][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   82.858479][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   82.860100][ T7318]  ? lock_acquire+0x2f/0xb0
[   82.861318][ T7318]  ? __fget_files+0x40/0x3f0
[   82.862550][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   82.864166][ T7318]  ? fput+0x30/0x390
[   82.865200][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   82.866506][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   82.868050][ T7318]  __sys_bpf+0xfc6/0x49a0
[   82.869348][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   82.870721][ T7318]  ? __schedule+0xe5d/0x5730
[   82.872066][ T7318]  ? do_futex+0x123/0x350
[   82.873246][ T7318]  ? __pfx_do_futex+0x10/0x10
[   82.874543][ T7318]  ? xfd_validate_state+0x5d/0x180
[   82.875938][ T7318]  ? rcu_is_watching+0x12/0xc0
[   82.877202][ T7318]  __x64_sys_bpf+0x78/0xc0
[   82.878595][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   82.880092][ T7318]  do_syscall_64+0xcd/0x250
[   82.881421][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.883031][ T7318] RIP: 0033:0x7f38a8f7e719
[   82.884604][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   82.890385][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   82.893715][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   82.896124][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   82.898196][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   82.900298][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   82.902214][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   82.904302][ T7318]  </TASK>
[   82.905188][ T7318] BUG: Bad page state in process syz.4.289  pfn:25163
[   82.907135][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xb8 pfn:0x25163
[   82.909412][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   82.911211][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   82.913434][ T7318] raw: 00000000000000b8 0000000000000001 00000000ffffffff 0000000000000000
[   82.915718][ T7318] page dumped because: page_pool leak
[   82.917112][ T7318] page_owner tracks the page as allocated
[   82.918572][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562368841, free_ts 79594618744
[   82.923025][ T7318]  post_alloc_hook+0x2d1/0x350
[   82.924222][ T7318]  get_page_from_freelist+0x101e/0x3070
[   82.925578][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   82.926923][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   82.928384][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   82.930100][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   82.931427][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   82.932827][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   82.934448][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   82.935860][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   82.937328][ T7318]  __sys_bpf+0xfc6/0x49a0
[   82.938660][ T7318]  __x64_sys_bpf+0x78/0xc0
[   82.939956][ T7318]  do_syscall_64+0xcd/0x250
[   82.941272][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.943023][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   82.945218][ T7318]  free_unref_folios+0x956/0x1310
[   82.946623][ T7318]  folios_put_refs+0x551/0x750
[   82.947902][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   82.949463][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   82.951000][ T7318]  blkdev_put_whole+0xc4/0xf0
[   82.952402][ T7318]  bdev_release+0x47e/0x6d0
[   82.953598][ T7318]  blkdev_release+0x15/0x20
[   82.954880][ T7318]  __fput+0x3f6/0xb60
[   82.955993][ T7318]  task_work_run+0x14e/0x250
[   82.957256][ T7318]  do_exit+0xadd/0x2d70
[   82.958438][ T7318]  do_group_exit+0xd3/0x2a0
[   82.959697][ T7318]  get_signal+0x25fb/0x2770
[   82.960938][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   82.962412][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   82.964820][ T7318]  do_syscall_64+0xda/0x250
[   82.966040][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.967692][ T7318] Modules linked in:
[   82.969020][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   82.972280][ T7318] Tainted: [B]=BAD_PAGE
[   82.973600][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.976798][ T7318] Call Trace:
[   82.977809][ T7318]  <TASK>
[   82.978688][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   82.980050][ T7318]  bad_page+0xb3/0x1f0
[   82.981251][ T7318]  ? __pfx_bad_page+0x10/0x10
[   82.982760][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   82.984547][ T7318]  free_unref_page+0x657/0xdc0
[   82.986489][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   82.988278][ T7318]  ? __phys_addr+0xc6/0x150
[   82.989564][ T7318]  skb_free_head+0xa0/0x1d0
[   82.990833][ T7318]  skb_release_data+0x560/0x730
[   82.992146][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   82.993622][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   82.995410][ T7318]  ? kernel_text_address+0x8d/0x100
[   82.996827][ T7318]  ? hlock_class+0x4e/0x130
[   82.998086][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   82.999510][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   83.001442][ T7318]  ? hlock_class+0x4e/0x130
[   83.002656][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   83.003962][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   83.005562][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   83.007240][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   83.009550][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   83.011296][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   83.013267][ T7318]  ? lock_acquire+0x2f/0xb0
[   83.014479][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   83.016235][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   83.017996][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   83.019905][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   83.021353][ T7318]  ? __build_skb_around+0x278/0x3b0
[   83.022834][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   83.024347][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   83.026181][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   83.028300][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   83.030019][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   83.031465][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   83.033156][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   83.034731][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   83.036388][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   83.037869][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   83.039206][ T7318]  ? 0xffffffffa0004340
[   83.040306][ T7318]  ? 0xffffffffa0004340
[   83.041391][ T7318]  ? 0xffffffffa0004340
[   83.042545][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   83.044186][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   83.045726][ T7318]  ? lock_acquire+0x2f/0xb0
[   83.047210][ T7318]  ? __fget_files+0x40/0x3f0
[   83.048589][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   83.050295][ T7318]  ? fput+0x30/0x390
[   83.051782][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   83.053442][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   83.055330][ T7318]  __sys_bpf+0xfc6/0x49a0
[   83.056905][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   83.058271][ T7318]  ? __schedule+0xe5d/0x5730
[   83.059536][ T7318]  ? do_futex+0x123/0x350
[   83.060758][ T7318]  ? __pfx_do_futex+0x10/0x10
[   83.062085][ T7318]  ? xfd_validate_state+0x5d/0x180
[   83.063477][ T7318]  ? rcu_is_watching+0x12/0xc0
[   83.064971][ T7318]  __x64_sys_bpf+0x78/0xc0
[   83.066206][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   83.067580][ T7318]  do_syscall_64+0xcd/0x250
[   83.068780][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.070309][ T7318] RIP: 0033:0x7f38a8f7e719
[   83.071463][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.076667][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   83.078957][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   83.081077][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   83.083261][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   83.085979][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   83.088170][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   83.090384][ T7318]  </TASK>
[   83.091636][ T7318] BUG: Bad page state in process syz.4.289  pfn:4d4db
[   83.093547][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xb9 pfn:0x4d4db
[   83.096138][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   83.098266][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   83.100605][ T7318] raw: 00000000000000b9 0000000000000001 00000000ffffffff 0000000000000000
[   83.102863][ T7318] page dumped because: page_pool leak
[   83.104549][ T7318] page_owner tracks the page as allocated
[   83.106153][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562362846, free_ts 79594625021
[   83.111232][ T7318]  post_alloc_hook+0x2d1/0x350
[   83.113375][ T7318]  get_page_from_freelist+0x101e/0x3070
[   83.115255][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   83.116788][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   83.118391][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   83.120092][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   83.121490][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   83.122869][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   83.124726][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   83.126123][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   83.127572][ T7318]  __sys_bpf+0xfc6/0x49a0
[   83.128918][ T7318]  __x64_sys_bpf+0x78/0xc0
[   83.130867][ T7318]  do_syscall_64+0xcd/0x250
[   83.132137][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.133680][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   83.135337][ T7318]  free_unref_folios+0x956/0x1310
[   83.136667][ T7318]  folios_put_refs+0x551/0x750
[   83.137944][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   83.139572][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   83.140932][ T7318]  blkdev_put_whole+0xc4/0xf0
[   83.142175][ T7318]  bdev_release+0x47e/0x6d0
[   83.143468][ T7318]  blkdev_release+0x15/0x20
[   83.144753][ T7318]  __fput+0x3f6/0xb60
[   83.145820][ T7318]  task_work_run+0x14e/0x250
[   83.147061][ T7318]  do_exit+0xadd/0x2d70
[   83.148298][ T7318]  do_group_exit+0xd3/0x2a0
[   83.149582][ T7318]  get_signal+0x25fb/0x2770
[   83.150849][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   83.152821][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   83.154415][ T7318]  do_syscall_64+0xda/0x250
[   83.155808][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.157577][ T7318] Modules linked in:
[   83.158738][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   83.161969][ T7318] Tainted: [B]=BAD_PAGE
[   83.163194][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.166781][ T7318] Call Trace:
[   83.167742][ T7318]  <TASK>
[   83.168596][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   83.169965][ T7318]  bad_page+0xb3/0x1f0
[   83.171071][ T7318]  ? __pfx_bad_page+0x10/0x10
[   83.172540][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   83.173897][ T7318]  free_unref_page+0x657/0xdc0
[   83.175219][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   83.176897][ T7318]  ? __phys_addr+0xc6/0x150
[   83.178129][ T7318]  skb_free_head+0xa0/0x1d0
[   83.179353][ T7318]  skb_release_data+0x560/0x730
[   83.180673][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   83.182034][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   83.183980][ T7318]  ? kernel_text_address+0x8d/0x100
[   83.185596][ T7318]  ? hlock_class+0x4e/0x130
[   83.187052][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   83.188514][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   83.191437][ T7318]  ? hlock_class+0x4e/0x130
[   83.193025][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   83.194449][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   83.195939][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   83.197717][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   83.199566][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   83.201091][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   83.202955][ T7318]  ? lock_acquire+0x2f/0xb0
[   83.204151][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   83.205760][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   83.207396][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   83.209094][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   83.210795][ T7318]  ? __build_skb_around+0x278/0x3b0
[   83.212148][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   83.213714][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   83.215589][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   83.217590][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   83.219430][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   83.221218][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   83.223046][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   83.224738][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   83.226594][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   83.228240][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   83.229683][ T7318]  ? 0xffffffffa0004340
[   83.230986][ T7318]  ? 0xffffffffa0004340
[   83.232439][ T7318]  ? 0xffffffffa0004340
[   83.233559][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   83.235136][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   83.236580][ T7318]  ? lock_acquire+0x2f/0xb0
[   83.237798][ T7318]  ? __fget_files+0x40/0x3f0
[   83.239036][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   83.240602][ T7318]  ? fput+0x30/0x390
[   83.241663][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   83.242922][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   83.245073][ T7318]  __sys_bpf+0xfc6/0x49a0
[   83.246758][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   83.248168][ T7318]  ? __schedule+0xe5d/0x5730
[   83.249524][ T7318]  ? do_futex+0x123/0x350
[   83.250853][ T7318]  ? __pfx_do_futex+0x10/0x10
[   83.252274][ T7318]  ? xfd_validate_state+0x5d/0x180
[   83.253745][ T7318]  ? rcu_is_watching+0x12/0xc0
[   83.255152][ T7318]  __x64_sys_bpf+0x78/0xc0
[   83.256820][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   83.258599][ T7318]  do_syscall_64+0xcd/0x250
[   83.259968][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.261602][ T7318] RIP: 0033:0x7f38a8f7e719
[   83.263140][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.268615][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   83.270811][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   83.273080][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   83.275172][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   83.277340][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   83.279511][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   83.281585][ T7318]  </TASK>
[   83.282519][ T7318] BUG: Bad page state in process syz.4.289  pfn:31560
[   83.284279][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xba pfn:0x31560
[   83.286678][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   83.288616][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   83.290909][ T7318] raw: 00000000000000ba 0000000000000001 00000000ffffffff 0000000000000000
[   83.293206][ T7318] page dumped because: page_pool leak
[   83.294578][ T7318] page_owner tracks the page as allocated
[   83.296089][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562356954, free_ts 79594807350
[   83.300463][ T7318]  post_alloc_hook+0x2d1/0x350
[   83.301751][ T7318]  get_page_from_freelist+0x101e/0x3070
[   83.303617][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   83.305093][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   83.306764][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   83.308757][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   83.310251][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   83.311872][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   83.313806][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   83.315406][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   83.316983][ T7318]  __sys_bpf+0xfc6/0x49a0
[   83.318434][ T7318]  __x64_sys_bpf+0x78/0xc0
[   83.319730][ T7318]  do_syscall_64+0xcd/0x250
[   83.321033][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.322568][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   83.324448][ T7318]  free_unref_folios+0x956/0x1310
[   83.326022][ T7318]  folios_put_refs+0x551/0x750
[   83.327642][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   83.329379][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   83.330743][ T7318]  blkdev_put_whole+0xc4/0xf0
[   83.332309][ T7318]  bdev_release+0x47e/0x6d0
[   83.333738][ T7318]  blkdev_release+0x15/0x20
[   83.335024][ T7318]  __fput+0x3f6/0xb60
[   83.336140][ T7318]  task_work_run+0x14e/0x250
[   83.337501][ T7318]  do_exit+0xadd/0x2d70
[   83.338743][ T7318]  do_group_exit+0xd3/0x2a0
[   83.340023][ T7318]  get_signal+0x25fb/0x2770
[   83.341228][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   83.342702][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   83.344369][ T7318]  do_syscall_64+0xda/0x250
[   83.345708][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.347507][ T7318] Modules linked in:
[   83.348813][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   83.352423][ T7318] Tainted: [B]=BAD_PAGE
[   83.353557][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.356355][ T7318] Call Trace:
[   83.357239][ T7318]  <TASK>
[   83.358039][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   83.359415][ T7318]  bad_page+0xb3/0x1f0
[   83.360566][ T7318]  ? __pfx_bad_page+0x10/0x10
[   83.361827][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   83.363118][ T7318]  free_unref_page+0x657/0xdc0
[   83.364524][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   83.366574][ T7318]  ? __phys_addr+0xc6/0x150
[   83.367869][ T7318]  skb_free_head+0xa0/0x1d0
[   83.369288][ T7318]  skb_release_data+0x560/0x730
[   83.370788][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   83.372301][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   83.374050][ T7318]  ? kernel_text_address+0x8d/0x100
[   83.375659][ T7318]  ? hlock_class+0x4e/0x130
[   83.376967][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   83.378450][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   83.380476][ T7318]  ? hlock_class+0x4e/0x130
[   83.381808][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   83.383687][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   83.385210][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   83.387135][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   83.389442][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   83.390997][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   83.392775][ T7318]  ? lock_acquire+0x2f/0xb0
[   83.394028][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   83.395853][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   83.397583][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   83.399549][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   83.400990][ T7318]  ? __build_skb_around+0x278/0x3b0
[   83.402422][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   83.404235][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   83.405995][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   83.407794][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   83.409373][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   83.410989][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   83.412671][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   83.414333][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   83.415976][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   83.417571][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   83.419037][ T7318]  ? 0xffffffffa0004340
[   83.420231][ T7318]  ? 0xffffffffa0004340
[   83.421407][ T7318]  ? 0xffffffffa0004340
[   83.422769][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   83.424644][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   83.426370][ T7318]  ? lock_acquire+0x2f/0xb0
[   83.427778][ T7318]  ? __fget_files+0x40/0x3f0
[   83.429108][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   83.430750][ T7318]  ? fput+0x30/0x390
[   83.431850][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   83.433175][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   83.434800][ T7318]  __sys_bpf+0xfc6/0x49a0
[   83.436041][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   83.437401][ T7318]  ? __schedule+0xe5d/0x5730
[   83.438736][ T7318]  ? do_futex+0x123/0x350
[   83.439948][ T7318]  ? __pfx_do_futex+0x10/0x10
[   83.441248][ T7318]  ? xfd_validate_state+0x5d/0x180
[   83.442712][ T7318]  ? rcu_is_watching+0x12/0xc0
[   83.444088][ T7318]  __x64_sys_bpf+0x78/0xc0
[   83.445390][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   83.446837][ T7318]  do_syscall_64+0xcd/0x250
[   83.448120][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.449824][ T7318] RIP: 0033:0x7f38a8f7e719
[   83.451162][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.456338][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   83.458667][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   83.460893][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   83.463025][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   83.465249][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   83.467503][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   83.469859][ T7318]  </TASK>
[   83.470844][ T7318] BUG: Bad page state in process syz.4.289  pfn:2cd17
[   83.472903][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xbb pfn:0x2cd17
[   83.475565][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   83.477504][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   83.479974][ T7318] raw: 00000000000000bb 0000000000000001 00000000ffffffff 0000000000000000
[   83.482295][ T7318] page dumped because: page_pool leak
[   83.483761][ T7318] page_owner tracks the page as allocated
[   83.485825][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562352659, free_ts 79594813231
[   83.491316][ T7318]  post_alloc_hook+0x2d1/0x350
[   83.492862][ T7318]  get_page_from_freelist+0x101e/0x3070
[   83.494520][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   83.496070][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   83.497666][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   83.499454][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   83.501073][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   83.503003][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   83.505022][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   83.507211][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   83.509162][ T7318]  __sys_bpf+0xfc6/0x49a0
[   83.510375][ T7318]  __x64_sys_bpf+0x78/0xc0
[   83.511632][ T7318]  do_syscall_64+0xcd/0x250
[   83.512963][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.514609][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   83.516355][ T7318]  free_unref_folios+0x956/0x1310
[   83.517759][ T7318]  folios_put_refs+0x551/0x750
[   83.519294][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   83.520928][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   83.522380][ T7318]  blkdev_put_whole+0xc4/0xf0
[   83.523982][ T7318]  bdev_release+0x47e/0x6d0
[   83.525490][ T7318]  blkdev_release+0x15/0x20
[   83.527004][ T7318]  __fput+0x3f6/0xb60
[   83.528500][ T7318]  task_work_run+0x14e/0x250
[   83.529759][ T7318]  do_exit+0xadd/0x2d70
[   83.530929][ T7318]  do_group_exit+0xd3/0x2a0
[   83.532209][ T7318]  get_signal+0x25fb/0x2770
[   83.533537][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   83.535065][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   83.536682][ T7318]  do_syscall_64+0xda/0x250
[   83.537970][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.539783][ T7318] Modules linked in:
[   83.540869][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   83.544253][ T7318] Tainted: [B]=BAD_PAGE
[   83.545393][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.548342][ T7318] Call Trace:
[   83.549364][ T7318]  <TASK>
[   83.550241][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   83.551675][ T7318]  bad_page+0xb3/0x1f0
[   83.552890][ T7318]  ? __pfx_bad_page+0x10/0x10
[   83.554290][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   83.555736][ T7318]  free_unref_page+0x657/0xdc0
[   83.557082][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   83.558802][ T7318]  ? __phys_addr+0xc6/0x150
[   83.560177][ T7318]  skb_free_head+0xa0/0x1d0
[   83.561547][ T7318]  skb_release_data+0x560/0x730
[   83.562992][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   83.564507][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   83.566566][ T7318]  ? kernel_text_address+0x8d/0x100
[   83.568501][ T7318]  ? hlock_class+0x4e/0x130
[   83.570166][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   83.571575][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   83.573424][ T7318]  ? hlock_class+0x4e/0x130
[   83.574668][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   83.576033][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   83.577475][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   83.579184][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   83.581009][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   83.582537][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   83.584600][ T7318]  ? lock_acquire+0x2f/0xb0
[   83.585939][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   83.587861][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   83.590062][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   83.592842][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   83.594426][ T7318]  ? __build_skb_around+0x278/0x3b0
[   83.595859][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   83.597409][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   83.599152][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   83.601017][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   83.602635][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   83.604287][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   83.606228][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   83.608366][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   83.610026][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   83.612014][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   83.613533][ T7318]  ? 0xffffffffa0004340
[   83.614837][ T7318]  ? 0xffffffffa0004340
[   83.616032][ T7318]  ? 0xffffffffa0004340
[   83.617198][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   83.618872][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   83.620414][ T7318]  ? lock_acquire+0x2f/0xb0
[   83.621738][ T7318]  ? __fget_files+0x40/0x3f0
[   83.623051][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   83.625048][ T7318]  ? fput+0x30/0x390
[   83.626290][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   83.627683][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   83.629418][ T7318]  __sys_bpf+0xfc6/0x49a0
[   83.630615][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   83.631949][ T7318]  ? __schedule+0xe5d/0x5730
[   83.633401][ T7318]  ? do_futex+0x123/0x350
[   83.634604][ T7318]  ? __pfx_do_futex+0x10/0x10
[   83.635911][ T7318]  ? xfd_validate_state+0x5d/0x180
[   83.637311][ T7318]  ? rcu_is_watching+0x12/0xc0
[   83.638650][ T7318]  __x64_sys_bpf+0x78/0xc0
[   83.639905][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   83.641348][ T7318]  do_syscall_64+0xcd/0x250
[   83.642689][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.644504][ T7318] RIP: 0033:0x7f38a8f7e719
[   83.645846][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.651070][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   83.653448][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   83.655622][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   83.657786][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   83.659966][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   83.662117][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   83.664362][ T7318]  </TASK>
[   83.665437][ T7318] BUG: Bad page state in process syz.4.289  pfn:4c6f6
[   83.666629][   T39] audit: type=1400 audit(1730216799.828:658): avc:  denied  { write } for  pid=5337 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   83.667305][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xbc pfn:0x4c6f6
[   83.674754][   T39] audit: type=1400 audit(1730216799.828:659): avc:  denied  { remove_name } for  pid=5337 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   83.677292][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   83.677317][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   83.677327][ T7318] raw: 00000000000000bc 0000000000000001 00000000ffffffff 0000000000000000
[   83.677333][ T7318] page dumped because: page_pool leak
[   83.677338][ T7318] page_owner tracks the page as allocated
[   83.677342][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562348453, free_ts 79594819278
[   83.677361][ T7318]  post_alloc_hook+0x2d1/0x350
[   83.677376][ T7318]  get_page_from_freelist+0x101e/0x3070
[   83.677388][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   83.677400][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   83.677412][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   83.677425][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   83.677435][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   83.677445][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   83.677461][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   83.677473][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   83.677487][ T7318]  __sys_bpf+0xfc6/0x49a0
[   83.677497][ T7318]  __x64_sys_bpf+0x78/0xc0
[   83.677508][ T7318]  do_syscall_64+0xcd/0x250
[   83.677524][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.677539][ T7318] page last free pid 7206 tgid 7197 stack trace:
[   83.684647][   T39] audit: type=1400 audit(1730216799.828:660): avc:  denied  { rename } for  pid=5337 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   83.686714][ T7318]  free_unref_folios+0x956/0x1310
[   83.690128][   T39] audit: type=1400 audit(1730216799.828:661): avc:  denied  { add_name } for  pid=5337 comm="syslogd" name="messages.0" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   83.692661][ T7318]  folios_put_refs+0x551/0x750
[   83.694782][   T39] audit: type=1400 audit(1730216799.828:662): avc:  denied  { unlink } for  pid=5337 comm="syslogd" name="messages.0" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   83.696448][ T7318]  truncate_inode_pages_range+0x334/0xe80
[   83.703018][   T39] audit: type=1400 audit(1730216799.828:663): avc:  denied  { create } for  pid=5337 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   83.704493][ T7318]  blkdev_flush_mapping+0xfb/0x290
[   83.758260][ T7318]  blkdev_put_whole+0xc4/0xf0
[   83.759688][ T7318]  bdev_release+0x47e/0x6d0
[   83.761103][ T7318]  blkdev_release+0x15/0x20
[   83.762548][ T7318]  __fput+0x3f6/0xb60
[   83.763899][ T7318]  task_work_run+0x14e/0x250
[   83.765351][ T7318]  do_exit+0xadd/0x2d70
[   83.766627][ T7318]  do_group_exit+0xd3/0x2a0
[   83.768116][ T7318]  get_signal+0x25fb/0x2770
[   83.769507][ T7318]  arch_do_signal_or_restart+0x90/0x7e0
[   83.771164][ T7318]  syscall_exit_to_user_mode+0x150/0x2a0
[   83.773000][ T7318]  do_syscall_64+0xda/0x250
[   83.774292][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.775963][ T7318] Modules linked in:
[   83.777086][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   83.780539][ T7318] Tainted: [B]=BAD_PAGE
[   83.781715][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.785173][ T7318] Call Trace:
[   83.786189][ T7318]  <TASK>
[   83.787031][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   83.788315][ T7318]  bad_page+0xb3/0x1f0
[   83.789518][ T7318]  ? __pfx_bad_page+0x10/0x10
[   83.790861][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   83.792204][ T7318]  free_unref_page+0x657/0xdc0
[   83.793639][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   83.795284][ T7318]  ? __phys_addr+0xc6/0x150
[   83.796563][ T7318]  skb_free_head+0xa0/0x1d0
[   83.797844][ T7318]  skb_release_data+0x560/0x730
[   83.799223][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   83.800672][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   83.802641][ T7318]  ? kernel_text_address+0x8d/0x100
[   83.804282][ T7318]  ? hlock_class+0x4e/0x130
[   83.805577][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   83.806986][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   83.809221][ T7318]  ? hlock_class+0x4e/0x130
[   83.810528][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   83.812112][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   83.813600][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   83.815396][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   83.817294][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   83.818839][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   83.820781][ T7318]  ? lock_acquire+0x2f/0xb0
[   83.822083][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   83.823769][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   83.825568][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   83.827725][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   83.829246][ T7318]  ? __build_skb_around+0x278/0x3b0
[   83.830796][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   83.832307][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   83.834047][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   83.835962][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   83.837529][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   83.839013][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   83.840782][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   83.842437][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   83.844280][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   83.845909][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   83.848095][ T7318]  ? 0xffffffffa0004340
[   83.849495][ T7318]  ? 0xffffffffa0004340
[   83.850696][ T7318]  ? 0xffffffffa0004340
[   83.851950][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   83.853915][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   83.855632][ T7318]  ? lock_acquire+0x2f/0xb0
[   83.856876][ T7318]  ? __fget_files+0x40/0x3f0
[   83.858261][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   83.859924][ T7318]  ? fput+0x30/0x390
[   83.861025][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   83.862345][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   83.864287][ T7318]  __sys_bpf+0xfc6/0x49a0
[   83.865619][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   83.867132][ T7318]  ? __schedule+0xe5d/0x5730
[   83.868761][ T7318]  ? do_futex+0x123/0x350
[   83.869960][ T7318]  ? __pfx_do_futex+0x10/0x10
[   83.871357][ T7318]  ? xfd_validate_state+0x5d/0x180
[   83.872966][ T7318]  ? rcu_is_watching+0x12/0xc0
[   83.874363][ T7318]  __x64_sys_bpf+0x78/0xc0
[   83.875675][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   83.877195][ T7318]  do_syscall_64+0xcd/0x250
[   83.878493][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.880153][ T7318] RIP: 0033:0x7f38a8f7e719
[   83.881395][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.887024][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   83.889451][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   83.891687][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   83.894028][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   83.896448][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   83.899080][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   83.901447][ T7318]  </TASK>
[   83.902680][ T7318] BUG: Bad page state in process syz.4.289  pfn:3213f
[   83.904842][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x351 pfn:0x3213f
[   83.907917][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   83.910457][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   83.913183][ T7318] raw: 0000000000000351 0000000000000001 00000000ffffffff 0000000000000000
[   83.915824][ T7318] page dumped because: page_pool leak
[   83.917447][ T7318] page_owner tracks the page as allocated
[   83.919234][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562344019, free_ts 81349110156
[   83.924471][ T7318]  post_alloc_hook+0x2d1/0x350
[   83.925904][ T7318]  get_page_from_freelist+0x101e/0x3070
[   83.927654][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   83.929228][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   83.930943][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   83.932710][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   83.934214][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   83.935699][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   83.937423][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   83.938959][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   83.940636][ T7318]  __sys_bpf+0xfc6/0x49a0
[   83.941859][ T7318]  __x64_sys_bpf+0x78/0xc0
[   83.943105][ T7318]  do_syscall_64+0xcd/0x250
[   83.944912][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.946936][ T7318] page last free pid 25 tgid 25 stack trace:
[   83.948952][ T7318]  free_unref_page+0x5f4/0xdc0
[   83.950424][ T7318]  vfree+0x17a/0x890
[   83.951672][ T7318]  bpf_prog_free_deferred+0x53f/0x6f0
[   83.953701][ T7318]  process_one_work+0x9c5/0x1ba0
[   83.955790][ T7318]  worker_thread+0x6c8/0xf00
[   83.957485][ T7318]  kthread+0x2c1/0x3a0
[   83.958802][ T7318]  ret_from_fork+0x45/0x80
[   83.960105][ T7318]  ret_from_fork_asm+0x1a/0x30
[   83.961466][ T7318] Modules linked in:
[   83.962827][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   83.966297][ T7318] Tainted: [B]=BAD_PAGE
[   83.967656][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.970748][ T7318] Call Trace:
[   83.971685][ T7318]  <TASK>
[   83.972648][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   83.974331][ T7318]  bad_page+0xb3/0x1f0
[   83.975633][ T7318]  ? __pfx_bad_page+0x10/0x10
[   83.977340][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   83.978868][ T7318]  free_unref_page+0x657/0xdc0
[   83.980188][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   83.981792][ T7318]  ? __phys_addr+0xc6/0x150
[   83.984024][ T7318]  skb_free_head+0xa0/0x1d0
[   83.985754][ T7318]  skb_release_data+0x560/0x730
[   83.987820][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   83.989215][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   83.991256][ T7318]  ? kernel_text_address+0x8d/0x100
[   83.992820][ T7318]  ? hlock_class+0x4e/0x130
[   83.994018][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   83.995634][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   83.997687][ T7318]  ? hlock_class+0x4e/0x130
[   83.998979][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   84.000379][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   84.001851][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   84.003751][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   84.006080][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   84.007590][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.009333][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.010491][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.012952][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   84.014954][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   84.017310][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   84.019157][ T7318]  ? __build_skb_around+0x278/0x3b0
[   84.021222][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   84.023566][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   84.026371][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   84.029287][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   84.031672][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.033669][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   84.035965][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.038201][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   84.040461][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   84.042754][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   84.045085][ T7318]  ? 0xffffffffa0004340
[   84.046590][ T7318]  ? 0xffffffffa0004340
[   84.048576][ T7318]  ? 0xffffffffa0004340
[   84.050380][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.052441][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   84.054523][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.056330][ T7318]  ? __fget_files+0x40/0x3f0
[   84.058071][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   84.060232][ T7318]  ? fput+0x30/0x390
[   84.061621][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   84.063757][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   84.066048][ T7318]  __sys_bpf+0xfc6/0x49a0
[   84.067774][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   84.069579][ T7318]  ? __schedule+0xe5d/0x5730
[   84.071711][ T7318]  ? do_futex+0x123/0x350
[   84.073329][ T7318]  ? __pfx_do_futex+0x10/0x10
[   84.075150][ T7318]  ? xfd_validate_state+0x5d/0x180
[   84.077076][ T7318]  ? rcu_is_watching+0x12/0xc0
[   84.079140][ T7318]  __x64_sys_bpf+0x78/0xc0
[   84.080970][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   84.083134][ T7318]  do_syscall_64+0xcd/0x250
[   84.085617][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.088011][ T7318] RIP: 0033:0x7f38a8f7e719
[   84.089662][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.096729][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   84.098894][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   84.101190][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   84.104337][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   84.107777][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   84.111131][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   84.114008][ T7318]  </TASK>
[   84.114976][ T7318] BUG: Bad page state in process syz.4.289  pfn:21e97
[   84.116881][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x315 pfn:0x21e97
[   84.120272][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   84.123180][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   84.127014][ T7318] raw: 0000000000000315 0000000000000001 00000000ffffffff 0000000000000000
[   84.130553][ T7318] page dumped because: page_pool leak
[   84.132506][ T7318] page_owner tracks the page as allocated
[   84.134636][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562339696, free_ts 81368199386
[   84.140816][ T7318]  post_alloc_hook+0x2d1/0x350
[   84.142595][ T7318]  get_page_from_freelist+0x101e/0x3070
[   84.144603][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   84.146498][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   84.148721][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   84.150597][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   84.152283][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   84.154144][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   84.156159][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.157966][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   84.159669][ T7318]  __sys_bpf+0xfc6/0x49a0
[   84.160837][ T7318]  __x64_sys_bpf+0x78/0xc0
[   84.162121][ T7318]  do_syscall_64+0xcd/0x250
[   84.163657][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.165320][ T7318] page last free pid 0 tgid 0 stack trace:
[   84.166882][ T7318]  free_unref_page+0x5f4/0xdc0
[   84.168280][ T7318]  __folio_put+0x30d/0x3d0
[   84.170069][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   84.172269][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   84.174185][ T7318]  rcu_core+0x79d/0x14d0
[   84.176009][ T7318]  handle_softirqs+0x213/0x8f0
[   84.177419][ T7318]  irq_exit_rcu+0xbb/0x120
[   84.179069][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   84.180749][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   84.182551][ T7318] Modules linked in:
[   84.183643][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   84.187106][ T7318] Tainted: [B]=BAD_PAGE
[   84.188720][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.192137][ T7318] Call Trace:
[   84.193503][ T7318]  <TASK>
[   84.194568][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   84.196226][ T7318]  bad_page+0xb3/0x1f0
[   84.197541][ T7318]  ? __pfx_bad_page+0x10/0x10
[   84.198850][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   84.200796][ T7318]  free_unref_page+0x657/0xdc0
[   84.202254][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   84.204045][ T7318]  ? __phys_addr+0xc6/0x150
[   84.205221][ T7318]  skb_free_head+0xa0/0x1d0
[   84.206446][ T7318]  skb_release_data+0x560/0x730
[   84.207833][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   84.209242][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   84.211027][ T7318]  ? kernel_text_address+0x8d/0x100
[   84.212865][ T7318]  ? hlock_class+0x4e/0x130
[   84.214248][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   84.215606][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   84.217605][ T7318]  ? hlock_class+0x4e/0x130
[   84.218874][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   84.220476][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   84.222064][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   84.223693][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   84.225670][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   84.227255][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.229167][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.230418][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.232084][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   84.234547][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   84.237179][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   84.238930][ T7318]  ? __build_skb_around+0x278/0x3b0
[   84.240508][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   84.241971][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   84.243701][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   84.245412][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   84.246868][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.248273][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   84.249802][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.251367][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   84.253894][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   84.256047][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   84.257785][ T7318]  ? 0xffffffffa0004340
[   84.259156][ T7318]  ? 0xffffffffa0004340
[   84.260378][ T7318]  ? 0xffffffffa0004340
[   84.261549][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.263426][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   84.264951][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.266183][ T7318]  ? __fget_files+0x40/0x3f0
[   84.267944][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   84.270252][ T7318]  ? fput+0x30/0x390
[   84.271528][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   84.273183][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   84.274854][ T7318]  __sys_bpf+0xfc6/0x49a0
[   84.276109][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   84.277783][ T7318]  ? __schedule+0xe5d/0x5730
[   84.279098][ T7318]  ? do_futex+0x123/0x350
[   84.280388][ T7318]  ? __pfx_do_futex+0x10/0x10
[   84.281739][ T7318]  ? xfd_validate_state+0x5d/0x180
[   84.283826][ T7318]  ? rcu_is_watching+0x12/0xc0
[   84.285674][ T7318]  __x64_sys_bpf+0x78/0xc0
[   84.287332][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   84.288790][ T7318]  do_syscall_64+0xcd/0x250
[   84.290031][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.291600][ T7318] RIP: 0033:0x7f38a8f7e719
[   84.292915][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.298684][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   84.301108][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   84.303873][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   84.306074][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   84.308111][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   84.310129][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   84.312248][ T7318]  </TASK>
[   84.313564][ T7318] BUG: Bad page state in process syz.4.289  pfn:30c9a
[   84.315697][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x31a pfn:0x30c9a
[   84.318718][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   84.320987][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   84.323645][ T7318] raw: 000000000000031a 0000000000000001 00000000ffffffff 0000000000000000
[   84.326007][ T7318] page dumped because: page_pool leak
[   84.327417][ T7318] page_owner tracks the page as allocated
[   84.329013][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562335395, free_ts 81368210790
[   84.333326][ T7318]  post_alloc_hook+0x2d1/0x350
[   84.334710][ T7318]  get_page_from_freelist+0x101e/0x3070
[   84.336189][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   84.337577][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   84.339408][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   84.341368][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   84.342793][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   84.344299][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   84.345971][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.347416][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   84.349122][ T7318]  __sys_bpf+0xfc6/0x49a0
[   84.350512][ T7318]  __x64_sys_bpf+0x78/0xc0
[   84.351784][ T7318]  do_syscall_64+0xcd/0x250
[   84.353339][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.355167][ T7318] page last free pid 0 tgid 0 stack trace:
[   84.357277][ T7318]  free_unref_page+0x5f4/0xdc0
[   84.359131][ T7318]  __folio_put+0x30d/0x3d0
[   84.361073][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   84.362853][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   84.364693][ T7318]  rcu_core+0x79d/0x14d0
[   84.366152][ T7318]  handle_softirqs+0x213/0x8f0
[   84.367840][ T7318]  irq_exit_rcu+0xbb/0x120
[   84.369569][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   84.371110][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   84.372815][ T7318] Modules linked in:
[   84.374778][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   84.378365][ T7318] Tainted: [B]=BAD_PAGE
[   84.379748][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.383217][ T7318] Call Trace:
[   84.384178][ T7318]  <TASK>
[   84.384989][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   84.386255][ T7318]  bad_page+0xb3/0x1f0
[   84.387339][ T7318]  ? __pfx_bad_page+0x10/0x10
[   84.388584][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   84.389855][ T7318]  free_unref_page+0x657/0xdc0
[   84.391124][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   84.393361][ T7318]  ? __phys_addr+0xc6/0x150
[   84.394763][ T7318]  skb_free_head+0xa0/0x1d0
[   84.396206][ T7318]  skb_release_data+0x560/0x730
[   84.397686][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   84.399176][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   84.400968][ T7318]  ? kernel_text_address+0x8d/0x100
[   84.402369][ T7318]  ? hlock_class+0x4e/0x130
[   84.403608][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   84.405088][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   84.406853][ T7318]  ? hlock_class+0x4e/0x130
[   84.408071][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   84.409365][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   84.410749][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   84.412779][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   84.414631][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   84.416301][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.417932][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.419202][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.420879][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   84.422622][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   84.424527][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   84.425987][ T7318]  ? __build_skb_around+0x278/0x3b0
[   84.427367][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   84.428819][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   84.430464][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   84.432153][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   84.434026][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.435527][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   84.437738][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.440144][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   84.442500][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   84.444736][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   84.446622][ T7318]  ? 0xffffffffa0004340
[   84.448064][ T7318]  ? 0xffffffffa0004340
[   84.449513][ T7318]  ? 0xffffffffa0004340
[   84.450895][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.452995][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   84.454928][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.456214][ T7318]  ? __fget_files+0x40/0x3f0
[   84.457426][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   84.458960][ T7318]  ? fput+0x30/0x390
[   84.460316][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   84.461882][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   84.464024][ T7318]  __sys_bpf+0xfc6/0x49a0
[   84.465298][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   84.466793][ T7318]  ? __schedule+0xe5d/0x5730
[   84.468082][ T7318]  ? do_futex+0x123/0x350
[   84.469256][ T7318]  ? __pfx_do_futex+0x10/0x10
[   84.470518][ T7318]  ? xfd_validate_state+0x5d/0x180
[   84.471875][ T7318]  ? rcu_is_watching+0x12/0xc0
[   84.473186][ T7318]  __x64_sys_bpf+0x78/0xc0
[   84.474362][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   84.475752][ T7318]  do_syscall_64+0xcd/0x250
[   84.476957][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.478498][ T7318] RIP: 0033:0x7f38a8f7e719
[   84.479693][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.485108][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   84.487396][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   84.489453][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   84.491584][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   84.494295][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   84.496537][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   84.498646][ T7318]  </TASK>
[   84.499724][ T7318] BUG: Bad page state in process syz.4.289  pfn:24e39
[   84.501498][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x311 pfn:0x24e39
[   84.504038][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   84.505923][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   84.508382][ T7318] raw: 0000000000000311 0000000000000001 00000000ffffffff 0000000000000000
[   84.510600][ T7318] page dumped because: page_pool leak
[   84.512022][ T7318] page_owner tracks the page as allocated
[   84.514321][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562331035, free_ts 81368217295
[   84.519509][ T7318]  post_alloc_hook+0x2d1/0x350
[   84.520901][ T7318]  get_page_from_freelist+0x101e/0x3070
[   84.522604][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   84.524171][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   84.525781][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   84.527352][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   84.528811][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   84.530202][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   84.531817][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.533267][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   84.534671][ T7318]  __sys_bpf+0xfc6/0x49a0
[   84.536082][ T7318]  __x64_sys_bpf+0x78/0xc0
[   84.537293][ T7318]  do_syscall_64+0xcd/0x250
[   84.539087][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.541784][ T7318] page last free pid 0 tgid 0 stack trace:
[   84.543945][ T7318]  free_unref_page+0x5f4/0xdc0
[   84.545299][ T7318]  __folio_put+0x30d/0x3d0
[   84.546683][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   84.548290][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   84.549779][ T7318]  rcu_core+0x79d/0x14d0
[   84.550974][ T7318]  handle_softirqs+0x213/0x8f0
[   84.552556][ T7318]  irq_exit_rcu+0xbb/0x120
[   84.554000][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   84.555530][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   84.557151][ T7318] Modules linked in:
[   84.558253][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   84.561412][ T7318] Tainted: [B]=BAD_PAGE
[   84.562533][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.565334][ T7318] Call Trace:
[   84.566216][ T7318]  <TASK>
[   84.566998][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   84.568285][ T7318]  bad_page+0xb3/0x1f0
[   84.569385][ T7318]  ? __pfx_bad_page+0x10/0x10
[   84.570737][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   84.572137][ T7318]  free_unref_page+0x657/0xdc0
[   84.573543][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   84.575182][ T7318]  ? __phys_addr+0xc6/0x150
[   84.576437][ T7318]  skb_free_head+0xa0/0x1d0
[   84.577595][ T7318]  skb_release_data+0x560/0x730
[   84.578847][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   84.580170][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   84.581887][ T7318]  ? kernel_text_address+0x8d/0x100
[   84.583388][ T7318]  ? hlock_class+0x4e/0x130
[   84.584826][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   84.586238][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   84.588661][ T7318]  ? hlock_class+0x4e/0x130
[   84.589935][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   84.591425][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   84.593020][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   84.594832][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   84.597046][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   84.598835][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.601036][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.602283][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.603937][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   84.605526][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   84.607267][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   84.608702][ T7318]  ? __build_skb_around+0x278/0x3b0
[   84.610186][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   84.611836][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   84.613558][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   84.615287][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   84.616776][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.618170][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   84.619669][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.621150][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   84.622925][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   84.624723][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   84.626252][ T7318]  ? 0xffffffffa0004340
[   84.627393][ T7318]  ? 0xffffffffa0004340
[   84.628553][ T7318]  ? 0xffffffffa0004340
[   84.629639][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.631216][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   84.632847][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.634353][ T7318]  ? __fget_files+0x40/0x3f0
[   84.635964][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   84.637697][ T7318]  ? fput+0x30/0x390
[   84.638889][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   84.640318][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   84.641953][ T7318]  __sys_bpf+0xfc6/0x49a0
[   84.643573][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   84.645480][ T7318]  ? __schedule+0xe5d/0x5730
[   84.647320][ T7318]  ? do_futex+0x123/0x350
[   84.648593][ T7318]  ? __pfx_do_futex+0x10/0x10
[   84.649919][ T7318]  ? xfd_validate_state+0x5d/0x180
[   84.651285][ T7318]  ? rcu_is_watching+0x12/0xc0
[   84.652711][ T7318]  __x64_sys_bpf+0x78/0xc0
[   84.653905][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   84.655274][ T7318]  do_syscall_64+0xcd/0x250
[   84.656482][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.658046][ T7318] RIP: 0033:0x7f38a8f7e719
[   84.659227][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.664269][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   84.666681][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   84.669115][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   84.671547][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   84.673886][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   84.676070][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   84.678127][ T7318]  </TASK>
[   84.678998][ T7318] BUG: Bad page state in process syz.4.289  pfn:21f60
[   84.680676][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x310 pfn:0x21f60
[   84.683441][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   84.686469][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   84.689186][ T7318] raw: 0000000000000310 0000000000000001 00000000ffffffff 0000000000000000
[   84.691744][ T7318] page dumped because: page_pool leak
[   84.693242][ T7318] page_owner tracks the page as allocated
[   84.694966][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562326806, free_ts 81368223493
[   84.699401][ T7318]  post_alloc_hook+0x2d1/0x350
[   84.700693][ T7318]  get_page_from_freelist+0x101e/0x3070
[   84.702188][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   84.704523][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   84.706662][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   84.708891][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   84.710643][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   84.712460][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   84.714332][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.716224][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   84.717701][ T7318]  __sys_bpf+0xfc6/0x49a0
[   84.718999][ T7318]  __x64_sys_bpf+0x78/0xc0
[   84.720231][ T7318]  do_syscall_64+0xcd/0x250
[   84.721460][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.723446][ T7318] page last free pid 0 tgid 0 stack trace:
[   84.725153][ T7318]  free_unref_page+0x5f4/0xdc0
[   84.726579][ T7318]  __folio_put+0x30d/0x3d0
[   84.727853][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   84.729825][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   84.731170][ T7318]  rcu_core+0x79d/0x14d0
[   84.732411][ T7318]  handle_softirqs+0x213/0x8f0
[   84.733715][ T7318]  irq_exit_rcu+0xbb/0x120
[   84.735085][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   84.736617][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   84.738351][ T7318] Modules linked in:
[   84.739446][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   84.743057][ T7318] Tainted: [B]=BAD_PAGE
[   84.744236][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.747024][ T7318] Call Trace:
[   84.747931][ T7318]  <TASK>
[   84.748715][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   84.749970][ T7318]  bad_page+0xb3/0x1f0
[   84.751084][ T7318]  ? __pfx_bad_page+0x10/0x10
[   84.752439][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   84.753726][ T7318]  free_unref_page+0x657/0xdc0
[   84.754989][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   84.756665][ T7318]  ? __phys_addr+0xc6/0x150
[   84.757870][ T7318]  skb_free_head+0xa0/0x1d0
[   84.759067][ T7318]  skb_release_data+0x560/0x730
[   84.760366][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   84.761684][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   84.763811][ T7318]  ? kernel_text_address+0x8d/0x100
[   84.765235][ T7318]  ? hlock_class+0x4e/0x130
[   84.766732][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   84.768305][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   84.770376][ T7318]  ? hlock_class+0x4e/0x130
[   84.771883][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   84.773454][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   84.774893][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   84.776543][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   84.778219][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   84.779622][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.781262][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.782692][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.784566][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   84.786434][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   84.788183][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   84.789552][ T7318]  ? __build_skb_around+0x278/0x3b0
[   84.791027][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   84.792720][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   84.794382][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   84.796109][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   84.797583][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.798974][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   84.800567][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.802272][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   84.804278][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   84.806308][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   84.808183][ T7318]  ? 0xffffffffa0004340
[   84.809659][ T7318]  ? 0xffffffffa0004340
[   84.810916][ T7318]  ? 0xffffffffa0004340
[   84.812252][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.814090][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   84.815878][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.817105][ T7318]  ? __fget_files+0x40/0x3f0
[   84.818354][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   84.819910][ T7318]  ? fput+0x30/0x390
[   84.820912][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   84.822180][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   84.824688][ T7318]  __sys_bpf+0xfc6/0x49a0
[   84.826619][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   84.828360][ T7318]  ? __schedule+0xe5d/0x5730
[   84.831024][ T7318]  ? do_futex+0x123/0x350
[   84.832203][ T7318]  ? __pfx_do_futex+0x10/0x10
[   84.833380][ T7318]  ? xfd_validate_state+0x5d/0x180
[   84.834659][ T7318]  ? rcu_is_watching+0x12/0xc0
[   84.835916][ T7318]  __x64_sys_bpf+0x78/0xc0
[   84.837329][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   84.838715][ T7318]  do_syscall_64+0xcd/0x250
[   84.839958][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.841526][ T7318] RIP: 0033:0x7f38a8f7e719
[   84.842952][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   84.849384][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   84.851770][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   84.854274][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   84.856592][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   84.858946][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   84.861165][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   84.863796][ T7318]  </TASK>
[   84.865504][ T7318] BUG: Bad page state in process syz.4.289  pfn:23c5a
[   84.867683][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x31f pfn:0x23c5a
[   84.870353][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   84.872286][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   84.874854][ T7318] raw: 000000000000031f 0000000000000001 00000000ffffffff 0000000000000000
[   84.877135][ T7318] page dumped because: page_pool leak
[   84.878750][ T7318] page_owner tracks the page as allocated
[   84.880293][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562322318, free_ts 81368231646
[   84.886015][ T7318]  post_alloc_hook+0x2d1/0x350
[   84.887743][ T7318]  get_page_from_freelist+0x101e/0x3070
[   84.889394][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   84.890878][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   84.892468][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   84.894004][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   84.895365][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   84.896953][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   84.898712][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.900180][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   84.901701][ T7318]  __sys_bpf+0xfc6/0x49a0
[   84.903552][ T7318]  __x64_sys_bpf+0x78/0xc0
[   84.905199][ T7318]  do_syscall_64+0xcd/0x250
[   84.906869][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   84.908611][ T7318] page last free pid 0 tgid 0 stack trace:
[   84.910149][ T7318]  free_unref_page+0x5f4/0xdc0
[   84.912044][ T7318]  __folio_put+0x30d/0x3d0
[   84.913357][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   84.915002][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   84.916656][ T7318]  rcu_core+0x79d/0x14d0
[   84.917925][ T7318]  handle_softirqs+0x213/0x8f0
[   84.919260][ T7318]  irq_exit_rcu+0xbb/0x120
[   84.920446][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   84.921918][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   84.923898][ T7318] Modules linked in:
[   84.925279][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   84.928758][ T7318] Tainted: [B]=BAD_PAGE
[   84.929844][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.932924][ T7318] Call Trace:
[   84.933967][ T7318]  <TASK>
[   84.934828][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   84.936095][ T7318]  bad_page+0xb3/0x1f0
[   84.937165][ T7318]  ? __pfx_bad_page+0x10/0x10
[   84.938406][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   84.939728][ T7318]  free_unref_page+0x657/0xdc0
[   84.940975][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   84.942630][ T7318]  ? __phys_addr+0xc6/0x150
[   84.943837][ T7318]  skb_free_head+0xa0/0x1d0
[   84.945342][ T7318]  skb_release_data+0x560/0x730
[   84.946854][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   84.948377][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   84.950444][ T7318]  ? kernel_text_address+0x8d/0x100
[   84.951838][ T7318]  ? hlock_class+0x4e/0x130
[   84.953116][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   84.954615][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   84.956736][ T7318]  ? hlock_class+0x4e/0x130
[   84.957941][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   84.959289][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   84.960649][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   84.962362][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   84.964276][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   84.965758][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.967926][ T7318]  ? lock_acquire+0x2f/0xb0
[   84.969224][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   84.971028][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   84.972937][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   84.974739][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   84.976154][ T7318]  ? __build_skb_around+0x278/0x3b0
[   84.977504][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   84.978907][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   84.980566][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   84.982548][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   84.984374][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   84.985932][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   84.988252][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.989994][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   84.991763][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   84.993485][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   84.994878][ T7318]  ? 0xffffffffa0004340
[   84.995974][ T7318]  ? 0xffffffffa0004340
[   84.997078][ T7318]  ? 0xffffffffa0004340
[   84.998206][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   84.999790][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.001245][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.002539][ T7318]  ? __fget_files+0x40/0x3f0
[   85.003851][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.005558][ T7318]  ? fput+0x30/0x390
[   85.006802][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   85.008179][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.009876][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.011274][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   85.012832][ T7318]  ? __schedule+0xe5d/0x5730
[   85.014148][ T7318]  ? do_futex+0x123/0x350
[   85.015424][ T7318]  ? __pfx_do_futex+0x10/0x10
[   85.016941][ T7318]  ? xfd_validate_state+0x5d/0x180
[   85.018504][ T7318]  ? rcu_is_watching+0x12/0xc0
[   85.019921][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.021129][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   85.022559][ T7318]  do_syscall_64+0xcd/0x250
[   85.023741][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.025255][ T7318] RIP: 0033:0x7f38a8f7e719
[   85.026439][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.031706][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.034669][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   85.036776][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   85.038787][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   85.040828][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.043245][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   85.046468][ T7318]  </TASK>
[   85.047551][ T7318] BUG: Bad page state in process syz.4.289  pfn:21a59
[   85.049429][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x31c pfn:0x21a59
[   85.052022][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   85.054175][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   85.056469][ T7318] raw: 000000000000031c 0000000000000001 00000000ffffffff 0000000000000000
[   85.058796][ T7318] page dumped because: page_pool leak
[   85.060194][ T7318] page_owner tracks the page as allocated
[   85.061663][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562318079, free_ts 81368238037
[   85.067195][ T7318]  post_alloc_hook+0x2d1/0x350
[   85.068709][ T7318]  get_page_from_freelist+0x101e/0x3070
[   85.070317][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   85.071898][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   85.073518][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   85.075127][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   85.076685][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   85.078275][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   85.080157][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   85.081684][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.083508][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.084732][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.086761][ T7318]  do_syscall_64+0xcd/0x250
[   85.088241][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.090279][ T7318] page last free pid 0 tgid 0 stack trace:
[   85.092044][ T7318]  free_unref_page+0x5f4/0xdc0
[   85.093478][ T7318]  __folio_put+0x30d/0x3d0
[   85.094759][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   85.096356][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   85.097719][ T7318]  rcu_core+0x79d/0x14d0
[   85.099020][ T7318]  handle_softirqs+0x213/0x8f0
[   85.100405][ T7318]  irq_exit_rcu+0xbb/0x120
[   85.101696][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   85.103737][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   85.105538][ T7318] Modules linked in:
[   85.106702][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   85.110259][ T7318] Tainted: [B]=BAD_PAGE
[   85.111431][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.114824][ T7318] Call Trace:
[   85.115936][ T7318]  <TASK>
[   85.116854][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   85.118114][ T7318]  bad_page+0xb3/0x1f0
[   85.119204][ T7318]  ? __pfx_bad_page+0x10/0x10
[   85.120555][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   85.122125][ T7318]  free_unref_page+0x657/0xdc0
[   85.123723][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   85.125677][ T7318]  ? __phys_addr+0xc6/0x150
[   85.127089][ T7318]  skb_free_head+0xa0/0x1d0
[   85.128453][ T7318]  skb_release_data+0x560/0x730
[   85.130119][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   85.131823][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   85.133783][ T7318]  ? kernel_text_address+0x8d/0x100
[   85.135155][ T7318]  ? hlock_class+0x4e/0x130
[   85.136408][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   85.137756][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   85.139708][ T7318]  ? hlock_class+0x4e/0x130
[   85.140926][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   85.142229][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   85.143886][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   85.145459][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   85.147576][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   85.149055][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   85.150822][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.152224][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   85.153877][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   85.155460][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   85.157170][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   85.158555][ T7318]  ? __build_skb_around+0x278/0x3b0
[   85.159967][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   85.161368][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   85.163436][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   85.165408][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   85.167044][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   85.168550][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   85.170328][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   85.171770][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   85.173432][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   85.175126][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   85.176832][ T7318]  ? 0xffffffffa0004340
[   85.178087][ T7318]  ? 0xffffffffa0004340
[   85.179395][ T7318]  ? 0xffffffffa0004340
[   85.180603][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   85.182324][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.183780][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.185194][ T7318]  ? __fget_files+0x40/0x3f0
[   85.186709][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.188921][ T7318]  ? fput+0x30/0x390
[   85.190163][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   85.191507][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.193221][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.194489][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   85.195817][ T7318]  ? __schedule+0xe5d/0x5730
[   85.197062][ T7318]  ? do_futex+0x123/0x350
[   85.198234][ T7318]  ? __pfx_do_futex+0x10/0x10
[   85.199521][ T7318]  ? xfd_validate_state+0x5d/0x180
[   85.200905][ T7318]  ? rcu_is_watching+0x12/0xc0
[   85.202189][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.203589][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   85.205377][ T7318]  do_syscall_64+0xcd/0x250
[   85.206937][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.208572][ T7318] RIP: 0033:0x7f38a8f7e719
[   85.209898][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.216251][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.220100][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   85.223033][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   85.225959][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   85.229440][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.232469][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   85.235498][ T7318]  </TASK>
[   85.236890][ T7318] BUG: Bad page state in process syz.4.289  pfn:2f840
[   85.239545][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x31e pfn:0x2f840
[   85.243147][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   85.246034][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   85.249368][ T7318] raw: 000000000000031e 0000000000000001 00000000ffffffff 0000000000000000
[   85.253068][ T7318] page dumped because: page_pool leak
[   85.255163][ T7318] page_owner tracks the page as allocated
[   85.257271][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562313813, free_ts 81368247607
[   85.263462][ T7318]  post_alloc_hook+0x2d1/0x350
[   85.265286][ T7318]  get_page_from_freelist+0x101e/0x3070
[   85.267396][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   85.269737][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   85.272154][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   85.274845][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   85.277051][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   85.279203][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   85.281395][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   85.283253][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.285071][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.286504][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.288201][ T7318]  do_syscall_64+0xcd/0x250
[   85.289828][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.291404][ T7318] page last free pid 0 tgid 0 stack trace:
[   85.293037][ T7318]  free_unref_page+0x5f4/0xdc0
[   85.294394][ T7318]  __folio_put+0x30d/0x3d0
[   85.295656][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   85.297287][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   85.299309][ T7318]  rcu_core+0x79d/0x14d0
[   85.301105][ T7318]  handle_softirqs+0x213/0x8f0
[   85.302822][ T7318]  irq_exit_rcu+0xbb/0x120
[   85.304571][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   85.306995][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   85.309895][ T7318] Modules linked in:
[   85.311362][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   85.314986][ T7318] Tainted: [B]=BAD_PAGE
[   85.316122][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.318863][ T7318] Call Trace:
[   85.319792][ T7318]  <TASK>
[   85.320564][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   85.321880][ T7318]  bad_page+0xb3/0x1f0
[   85.323156][ T7318]  ? __pfx_bad_page+0x10/0x10
[   85.324423][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   85.326199][ T7318]  free_unref_page+0x657/0xdc0
[   85.327520][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   85.329201][ T7318]  ? __phys_addr+0xc6/0x150
[   85.330498][ T7318]  skb_free_head+0xa0/0x1d0
[   85.331915][ T7318]  skb_release_data+0x560/0x730
[   85.333371][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   85.334844][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   85.336853][ T7318]  ? kernel_text_address+0x8d/0x100
[   85.338273][ T7318]  ? hlock_class+0x4e/0x130
[   85.339534][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   85.340841][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   85.343093][ T7318]  ? hlock_class+0x4e/0x130
[   85.344551][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   85.345928][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   85.347642][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   85.349361][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   85.351286][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   85.352769][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   85.354484][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.355739][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   85.357441][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   85.359095][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   85.361001][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   85.362619][ T7318]  ? __build_skb_around+0x278/0x3b0
[   85.364302][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   85.365955][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   85.367824][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   85.369577][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   85.370988][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   85.372420][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   85.373919][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   85.375461][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   85.377003][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   85.378561][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   85.379961][ T7318]  ? 0xffffffffa0004340
[   85.381105][ T7318]  ? 0xffffffffa0004340
[   85.382340][ T7318]  ? 0xffffffffa0004340
[   85.383743][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   85.385407][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.386880][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.388138][ T7318]  ? __fget_files+0x40/0x3f0
[   85.389515][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.392293][ T7318]  ? fput+0x30/0x390
[   85.393562][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   85.394917][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.396951][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.398581][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   85.400559][ T7318]  ? __schedule+0xe5d/0x5730
[   85.402362][ T7318]  ? do_futex+0x123/0x350
[   85.404151][ T7318]  ? __pfx_do_futex+0x10/0x10
[   85.405950][ T7318]  ? xfd_validate_state+0x5d/0x180
[   85.407874][ T7318]  ? rcu_is_watching+0x12/0xc0
[   85.410411][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.412244][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   85.414234][ T7318]  do_syscall_64+0xcd/0x250
[   85.415936][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.418069][ T7318] RIP: 0033:0x7f38a8f7e719
[   85.419812][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.426126][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.428367][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   85.430408][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   85.432808][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   85.435689][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.437852][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   85.440286][ T7318]  </TASK>
[   85.441340][ T7318] BUG: Bad page state in process syz.4.289  pfn:23473
[   85.444297][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x341 pfn:0x23473
[   85.447778][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   85.450163][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   85.452767][ T7318] raw: 0000000000000341 0000000000000001 00000000ffffffff 0000000000000000
[   85.455823][ T7318] page dumped because: page_pool leak
[   85.457280][ T7318] page_owner tracks the page as allocated
[   85.458888][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562309138, free_ts 81368256853
[   85.463664][ T7318]  post_alloc_hook+0x2d1/0x350
[   85.464948][ T7318]  get_page_from_freelist+0x101e/0x3070
[   85.466374][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   85.467852][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   85.469493][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   85.471211][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   85.473053][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   85.475045][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   85.476770][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   85.478255][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.479761][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.480936][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.482148][ T7318]  do_syscall_64+0xcd/0x250
[   85.483350][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.484899][ T7318] page last free pid 0 tgid 0 stack trace:
[   85.486478][ T7318]  free_unref_page+0x5f4/0xdc0
[   85.487787][ T7318]  __folio_put+0x30d/0x3d0
[   85.489347][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   85.490909][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   85.492676][ T7318]  rcu_core+0x79d/0x14d0
[   85.494347][ T7318]  handle_softirqs+0x213/0x8f0
[   85.496417][ T7318]  irq_exit_rcu+0xbb/0x120
[   85.497790][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   85.499650][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   85.501510][ T7318] Modules linked in:
[   85.502745][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   85.506283][ T7318] Tainted: [B]=BAD_PAGE
[   85.507597][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.510897][ T7318] Call Trace:
[   85.512023][ T7318]  <TASK>
[   85.513157][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   85.514577][ T7318]  bad_page+0xb3/0x1f0
[   85.515928][ T7318]  ? __pfx_bad_page+0x10/0x10
[   85.517256][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   85.519348][ T7318]  free_unref_page+0x657/0xdc0
[   85.521258][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   85.523460][ T7318]  ? __phys_addr+0xc6/0x150
[   85.525326][ T7318]  skb_free_head+0xa0/0x1d0
[   85.527152][ T7318]  skb_release_data+0x560/0x730
[   85.529042][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   85.531256][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   85.533467][ T7318]  ? kernel_text_address+0x8d/0x100
[   85.535077][ T7318]  ? hlock_class+0x4e/0x130
[   85.536663][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   85.538520][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   85.541123][ T7318]  ? hlock_class+0x4e/0x130
[   85.542891][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   85.544868][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   85.547000][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   85.550346][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   85.553145][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   85.554511][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   85.556880][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.558769][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   85.560985][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   85.562945][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   85.564940][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   85.566442][ T7318]  ? __build_skb_around+0x278/0x3b0
[   85.567938][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   85.569645][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   85.571662][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   85.574072][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   85.575779][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   85.577109][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   85.578629][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   85.580689][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   85.582539][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   85.584285][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   85.585915][ T7318]  ? 0xffffffffa0004340
[   85.587123][ T7318]  ? 0xffffffffa0004340
[   85.588407][ T7318]  ? 0xffffffffa0004340
[   85.589601][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   85.591337][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.593053][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.594498][ T7318]  ? __fget_files+0x40/0x3f0
[   85.596027][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.597949][ T7318]  ? fput+0x30/0x390
[   85.599755][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   85.601191][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.602761][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.604041][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   85.605316][ T7318]  ? __schedule+0xe5d/0x5730
[   85.606568][ T7318]  ? do_futex+0x123/0x350
[   85.607742][ T7318]  ? __pfx_do_futex+0x10/0x10
[   85.609072][ T7318]  ? xfd_validate_state+0x5d/0x180
[   85.610454][ T7318]  ? rcu_is_watching+0x12/0xc0
[   85.611736][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.612948][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   85.614535][ T7318]  do_syscall_64+0xcd/0x250
[   85.615889][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.617616][ T7318] RIP: 0033:0x7f38a8f7e719
[   85.619103][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.624795][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.627098][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   85.629467][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   85.631714][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   85.634049][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.636335][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   85.639061][ T7318]  </TASK>
[   85.640345][ T7318] BUG: Bad page state in process syz.4.289  pfn:2a809
[   85.642309][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x3a2 pfn:0x2a809
[   85.644898][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   85.647232][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   85.649889][ T7318] raw: 00000000000003a2 0000000000000001 00000000ffffffff 0000000000000000
[   85.652385][ T7318] page dumped because: page_pool leak
[   85.653971][ T7318] page_owner tracks the page as allocated
[   85.655505][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562304730, free_ts 81368265453
[   85.660184][ T7318]  post_alloc_hook+0x2d1/0x350
[   85.661404][ T7318]  get_page_from_freelist+0x101e/0x3070
[   85.662761][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   85.664207][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   85.665798][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   85.667362][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   85.669090][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   85.670881][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   85.672565][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   85.673957][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.675689][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.676849][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.678142][ T7318]  do_syscall_64+0xcd/0x250
[   85.679557][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.681140][ T7318] page last free pid 0 tgid 0 stack trace:
[   85.682679][ T7318]  free_unref_page+0x5f4/0xdc0
[   85.683998][ T7318]  __folio_put+0x30d/0x3d0
[   85.685319][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   85.687153][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   85.688796][ T7318]  rcu_core+0x79d/0x14d0
[   85.690075][ T7318]  handle_softirqs+0x213/0x8f0
[   85.691303][ T7318]  irq_exit_rcu+0xbb/0x120
[   85.692750][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   85.694690][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   85.696729][ T7318] Modules linked in:
[   85.697973][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   85.702168][ T7318] Tainted: [B]=BAD_PAGE
[   85.703371][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.706521][ T7318] Call Trace:
[   85.707427][ T7318]  <TASK>
[   85.708246][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   85.709852][ T7318]  bad_page+0xb3/0x1f0
[   85.711062][ T7318]  ? __pfx_bad_page+0x10/0x10
[   85.712382][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   85.713910][ T7318]  free_unref_page+0x657/0xdc0
[   85.715352][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   85.717227][ T7318]  ? __phys_addr+0xc6/0x150
[   85.718902][ T7318]  skb_free_head+0xa0/0x1d0
[   85.720471][ T7318]  skb_release_data+0x560/0x730
[   85.721961][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   85.723408][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   85.725466][ T7318]  ? kernel_text_address+0x8d/0x100
[   85.726967][ T7318]  ? hlock_class+0x4e/0x130
[   85.728347][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   85.729846][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   85.731856][ T7318]  ? hlock_class+0x4e/0x130
[   85.733077][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   85.734411][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   85.735813][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   85.737582][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   85.739890][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   85.741424][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   85.743900][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.745535][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   85.747580][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   85.749385][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   85.751187][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   85.752598][ T7318]  ? __build_skb_around+0x278/0x3b0
[   85.754215][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   85.755774][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   85.757551][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   85.759493][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   85.761368][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   85.762908][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   85.764725][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   85.766337][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   85.767885][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   85.769412][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   85.770761][ T7318]  ? 0xffffffffa0004340
[   85.771962][ T7318]  ? 0xffffffffa0004340
[   85.773370][ T7318]  ? 0xffffffffa0004340
[   85.774672][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   85.776378][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.777977][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.779788][ T7318]  ? __fget_files+0x40/0x3f0
[   85.781234][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.783011][ T7318]  ? fput+0x30/0x390
[   85.784286][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   85.785845][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.787561][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.788867][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   85.790111][ T7318]  ? __schedule+0xe5d/0x5730
[   85.791329][ T7318]  ? do_futex+0x123/0x350
[   85.792927][ T7318]  ? __pfx_do_futex+0x10/0x10
[   85.794467][ T7318]  ? xfd_validate_state+0x5d/0x180
[   85.796028][ T7318]  ? rcu_is_watching+0x12/0xc0
[   85.797576][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.799064][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   85.800597][ T7318]  do_syscall_64+0xcd/0x250
[   85.801812][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.803565][ T7318] RIP: 0033:0x7f38a8f7e719
[   85.804837][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.810080][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.812702][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   85.814881][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   85.817257][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   85.819933][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   85.822742][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   85.825439][ T7318]  </TASK>
[   85.826552][ T7318] BUG: Bad page state in process syz.4.289  pfn:2fa08
[   85.828836][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x551 pfn:0x2fa08
[   85.831170][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   85.833033][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   85.835272][ T7318] raw: 0000000000000551 0000000000000001 00000000ffffffff 0000000000000000
[   85.837494][ T7318] page dumped because: page_pool leak
[   85.839747][ T7318] page_owner tracks the page as allocated
[   85.841445][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562300611, free_ts 81368275224
[   85.845883][ T7318]  post_alloc_hook+0x2d1/0x350
[   85.847251][ T7318]  get_page_from_freelist+0x101e/0x3070
[   85.848946][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   85.850390][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   85.851895][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   85.853822][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   85.855642][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   85.857228][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   85.859323][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   85.860900][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.862515][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.863726][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.865077][ T7318]  do_syscall_64+0xcd/0x250
[   85.866341][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.868247][ T7318] page last free pid 0 tgid 0 stack trace:
[   85.870384][ T7318]  free_unref_page+0x5f4/0xdc0
[   85.871806][ T7318]  __folio_put+0x30d/0x3d0
[   85.873079][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   85.874753][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   85.876180][ T7318]  rcu_core+0x79d/0x14d0
[   85.877550][ T7318]  handle_softirqs+0x213/0x8f0
[   85.879219][ T7318]  irq_exit_rcu+0xbb/0x120
[   85.880583][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   85.882203][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   85.883944][ T7318] Modules linked in:
[   85.885018][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   85.888371][ T7318] Tainted: [B]=BAD_PAGE
[   85.889614][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.892778][ T7318] Call Trace:
[   85.893914][ T7318]  <TASK>
[   85.894910][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   85.896479][ T7318]  bad_page+0xb3/0x1f0
[   85.897633][ T7318]  ? __pfx_bad_page+0x10/0x10
[   85.899138][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   85.900486][ T7318]  free_unref_page+0x657/0xdc0
[   85.901790][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   85.903516][ T7318]  ? __phys_addr+0xc6/0x150
[   85.904878][ T7318]  skb_free_head+0xa0/0x1d0
[   85.906312][ T7318]  skb_release_data+0x560/0x730
[   85.907865][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   85.909361][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   85.911255][ T7318]  ? kernel_text_address+0x8d/0x100
[   85.913228][ T7318]  ? hlock_class+0x4e/0x130
[   85.914550][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   85.916096][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   85.918039][ T7318]  ? hlock_class+0x4e/0x130
[   85.919754][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   85.921228][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   85.923046][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   85.925195][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   85.927262][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   85.928958][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   85.930764][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.931988][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   85.933840][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   85.935686][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   85.937707][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   85.939751][ T7318]  ? __build_skb_around+0x278/0x3b0
[   85.941602][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   85.943014][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   85.944840][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   85.946773][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   85.948448][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   85.949985][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   85.951561][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   85.953338][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   85.954938][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   85.956834][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   85.958682][ T7318]  ? 0xffffffffa0004340
[   85.960019][ T7318]  ? 0xffffffffa0004340
[   85.961498][ T7318]  ? 0xffffffffa0004340
[   85.962909][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   85.964895][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   85.966694][ T7318]  ? lock_acquire+0x2f/0xb0
[   85.968065][ T7318]  ? __fget_files+0x40/0x3f0
[   85.969598][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.971234][ T7318]  ? fput+0x30/0x390
[   85.972285][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   85.973670][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   85.975264][ T7318]  __sys_bpf+0xfc6/0x49a0
[   85.976463][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   85.977747][ T7318]  ? __schedule+0xe5d/0x5730
[   85.979042][ T7318]  ? do_futex+0x123/0x350
[   85.980250][ T7318]  ? __pfx_do_futex+0x10/0x10
[   85.981555][ T7318]  ? xfd_validate_state+0x5d/0x180
[   85.982939][ T7318]  ? rcu_is_watching+0x12/0xc0
[   85.984236][ T7318]  __x64_sys_bpf+0x78/0xc0
[   85.985431][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   85.986806][ T7318]  do_syscall_64+0xcd/0x250
[   85.988085][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   85.989840][ T7318] RIP: 0033:0x7f38a8f7e719
[   85.991038][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   85.996317][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   85.998978][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   86.001418][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   86.004044][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   86.006399][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.008598][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   86.010678][ T7318]  </TASK>
[   86.011651][ T7318] BUG: Bad page state in process syz.4.289  pfn:3304c
[   86.013497][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88803304c4d8 pfn:0x3304c
[   86.016637][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   86.018789][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   86.021176][ T7318] raw: ffff88803304c4d8 0000000000000001 00000000ffffffff 0000000000000000
[   86.023583][ T7318] page dumped because: page_pool leak
[   86.025218][ T7318] page_owner tracks the page as allocated
[   86.026830][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562296312, free_ts 81368284962
[   86.031672][ T7318]  post_alloc_hook+0x2d1/0x350
[   86.033178][ T7318]  get_page_from_freelist+0x101e/0x3070
[   86.034782][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   86.036519][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   86.038249][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   86.039904][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   86.041364][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   86.042814][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   86.044494][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   86.045902][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   86.047535][ T7318]  __sys_bpf+0xfc6/0x49a0
[   86.048905][ T7318]  __x64_sys_bpf+0x78/0xc0
[   86.050185][ T7318]  do_syscall_64+0xcd/0x250
[   86.051559][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.053276][ T7318] page last free pid 0 tgid 0 stack trace:
[   86.054973][ T7318]  free_unref_page+0x5f4/0xdc0
[   86.056336][ T7318]  __folio_put+0x30d/0x3d0
[   86.057729][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   86.059432][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   86.060836][ T7318]  rcu_core+0x79d/0x14d0
[   86.061971][ T7318]  handle_softirqs+0x213/0x8f0
[   86.063396][ T7318]  irq_exit_rcu+0xbb/0x120
[   86.064683][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   86.066267][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   86.068316][ T7318] Modules linked in:
[   86.070070][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   86.073591][ T7318] Tainted: [B]=BAD_PAGE
[   86.074797][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.078042][ T7318] Call Trace:
[   86.078982][ T7318]  <TASK>
[   86.079825][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   86.081114][ T7318]  bad_page+0xb3/0x1f0
[   86.082180][ T7318]  ? __pfx_bad_page+0x10/0x10
[   86.083402][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   86.084764][ T7318]  free_unref_page+0x657/0xdc0
[   86.086008][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   86.087610][ T7318]  ? __phys_addr+0xc6/0x150
[   86.089126][ T7318]  skb_free_head+0xa0/0x1d0
[   86.090350][ T7318]  skb_release_data+0x560/0x730
[   86.091878][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   86.093648][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   86.095571][ T7318]  ? kernel_text_address+0x8d/0x100
[   86.097084][ T7318]  ? hlock_class+0x4e/0x130
[   86.098510][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   86.099926][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   86.101926][ T7318]  ? hlock_class+0x4e/0x130
[   86.103370][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   86.104859][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   86.106344][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   86.108338][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   86.110632][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   86.112126][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   86.113794][ T7318]  ? lock_acquire+0x2f/0xb0
[   86.115274][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   86.117252][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   86.118995][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   86.120722][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   86.122199][ T7318]  ? __build_skb_around+0x278/0x3b0
[   86.123717][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   86.125237][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   86.126853][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   86.128622][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   86.130182][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   86.131555][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   86.133480][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   86.135260][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   86.136991][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   86.139156][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   86.141233][ T7318]  ? 0xffffffffa0004340
[   86.142692][ T7318]  ? 0xffffffffa0004340
[   86.143911][ T7318]  ? 0xffffffffa0004340
[   86.145093][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   86.146774][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   86.148294][ T7318]  ? lock_acquire+0x2f/0xb0
[   86.149610][ T7318]  ? __fget_files+0x40/0x3f0
[   86.151009][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   86.153211][ T7318]  ? fput+0x30/0x390
[   86.154422][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   86.155785][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   86.157427][ T7318]  __sys_bpf+0xfc6/0x49a0
[   86.158810][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   86.160228][ T7318]  ? __schedule+0xe5d/0x5730
[   86.161480][ T7318]  ? do_futex+0x123/0x350
[   86.162669][ T7318]  ? __pfx_do_futex+0x10/0x10
[   86.163958][ T7318]  ? xfd_validate_state+0x5d/0x180
[   86.165334][ T7318]  ? rcu_is_watching+0x12/0xc0
[   86.166615][ T7318]  __x64_sys_bpf+0x78/0xc0
[   86.167858][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   86.169367][ T7318]  do_syscall_64+0xcd/0x250
[   86.170587][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.172193][ T7318] RIP: 0033:0x7f38a8f7e719
[   86.173651][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.179032][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   86.181250][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   86.183324][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   86.185652][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   86.187787][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.189975][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   86.192222][ T7318]  </TASK>
[   86.193351][ T7318] BUG: Bad page state in process syz.4.289  pfn:321d5
[   86.195652][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880321d5ca8 pfn:0x321d5
[   86.199300][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   86.201864][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   86.204950][ T7318] raw: ffff8880321d5ca8 0000000000000001 00000000ffffffff 0000000000000000
[   86.207388][ T7318] page dumped because: page_pool leak
[   86.208959][ T7318] page_owner tracks the page as allocated
[   86.210824][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562291476, free_ts 81368295148
[   86.216848][ T7318]  post_alloc_hook+0x2d1/0x350
[   86.218645][ T7318]  get_page_from_freelist+0x101e/0x3070
[   86.220977][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   86.222718][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   86.224461][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   86.226641][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   86.228704][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   86.230500][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   86.232218][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   86.233830][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   86.235717][ T7318]  __sys_bpf+0xfc6/0x49a0
[   86.237649][ T7318]  __x64_sys_bpf+0x78/0xc0
[   86.238957][ T7318]  do_syscall_64+0xcd/0x250
[   86.240568][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.242518][ T7318] page last free pid 0 tgid 0 stack trace:
[   86.244321][ T7318]  free_unref_page+0x5f4/0xdc0
[   86.245615][ T7318]  __folio_put+0x30d/0x3d0
[   86.246923][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   86.248616][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   86.250037][ T7318]  rcu_core+0x79d/0x14d0
[   86.251422][ T7318]  handle_softirqs+0x213/0x8f0
[   86.253530][ T7318]  irq_exit_rcu+0xbb/0x120
[   86.254717][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   86.256215][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   86.257905][ T7318] Modules linked in:
[   86.258997][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   86.262156][ T7318] Tainted: [B]=BAD_PAGE
[   86.263797][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.266761][ T7318] Call Trace:
[   86.267665][ T7318]  <TASK>
[   86.268490][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   86.269655][ T7318]  bad_page+0xb3/0x1f0
[   86.270737][ T7318]  ? __pfx_bad_page+0x10/0x10
[   86.271992][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   86.273280][ T7318]  free_unref_page+0x657/0xdc0
[   86.274597][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   86.276222][ T7318]  ? __phys_addr+0xc6/0x150
[   86.277426][ T7318]  skb_free_head+0xa0/0x1d0
[   86.278635][ T7318]  skb_release_data+0x560/0x730
[   86.279954][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   86.281275][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   86.283042][ T7318]  ? kernel_text_address+0x8d/0x100
[   86.284523][ T7318]  ? hlock_class+0x4e/0x130
[   86.285772][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   86.287241][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   86.289096][ T7318]  ? hlock_class+0x4e/0x130
[   86.290319][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   86.291636][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   86.293002][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   86.294690][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   86.296455][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   86.297840][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   86.299496][ T7318]  ? lock_acquire+0x2f/0xb0
[   86.300671][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   86.302318][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   86.303898][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   86.305700][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   86.307180][ T7318]  ? __build_skb_around+0x278/0x3b0
[   86.308634][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   86.310346][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   86.312637][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   86.314979][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   86.317149][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   86.319174][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   86.321372][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   86.323599][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   86.325727][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   86.327549][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   86.329004][ T7318]  ? 0xffffffffa0004340
[   86.330090][ T7318]  ? 0xffffffffa0004340
[   86.331523][ T7318]  ? 0xffffffffa0004340
[   86.332935][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   86.335015][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   86.337024][ T7318]  ? lock_acquire+0x2f/0xb0
[   86.338240][ T7318]  ? __fget_files+0x40/0x3f0
[   86.339802][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   86.341405][ T7318]  ? fput+0x30/0x390
[   86.342557][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   86.344302][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   86.345897][ T7318]  __sys_bpf+0xfc6/0x49a0
[   86.347051][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   86.348528][ T7318]  ? __schedule+0xe5d/0x5730
[   86.349867][ T7318]  ? do_futex+0x123/0x350
[   86.351206][ T7318]  ? __pfx_do_futex+0x10/0x10
[   86.352930][ T7318]  ? xfd_validate_state+0x5d/0x180
[   86.354795][ T7318]  ? rcu_is_watching+0x12/0xc0
[   86.356622][ T7318]  __x64_sys_bpf+0x78/0xc0
[   86.358167][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   86.360025][ T7318]  do_syscall_64+0xcd/0x250
[   86.362004][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.364447][ T7318] RIP: 0033:0x7f38a8f7e719
[   86.366316][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.371968][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   86.374472][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   86.376594][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   86.378691][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   86.380777][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.382836][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   86.385340][ T7318]  </TASK>
[   86.386651][ T7318] BUG: Bad page state in process syz.4.289  pfn:47604
[   86.388518][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x3bc pfn:0x47604
[   86.391150][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   86.393163][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   86.395608][ T7318] raw: 00000000000003bc 0000000000000001 00000000ffffffff 0000000000000000
[   86.398138][ T7318] page dumped because: page_pool leak
[   86.399557][ T7318] page_owner tracks the page as allocated
[   86.401062][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562287305, free_ts 81368304215
[   86.405554][ T7318]  post_alloc_hook+0x2d1/0x350
[   86.407370][ T7318]  get_page_from_freelist+0x101e/0x3070
[   86.409573][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   86.411086][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   86.412718][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   86.414563][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   86.416547][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   86.418522][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   86.420724][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   86.422692][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   86.424706][ T7318]  __sys_bpf+0xfc6/0x49a0
[   86.426426][ T7318]  __x64_sys_bpf+0x78/0xc0
[   86.428284][ T7318]  do_syscall_64+0xcd/0x250
[   86.429949][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.432326][ T7318] page last free pid 0 tgid 0 stack trace:
[   86.434472][ T7318]  free_unref_page+0x5f4/0xdc0
[   86.436182][ T7318]  __folio_put+0x30d/0x3d0
[   86.437768][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   86.439970][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   86.441830][ T7318]  rcu_core+0x79d/0x14d0
[   86.443440][ T7318]  handle_softirqs+0x213/0x8f0
[   86.445376][ T7318]  irq_exit_rcu+0xbb/0x120
[   86.447117][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   86.448707][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   86.450304][ T7318] Modules linked in:
[   86.451351][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   86.454610][ T7318] Tainted: [B]=BAD_PAGE
[   86.455874][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.458985][ T7318] Call Trace:
[   86.460004][ T7318]  <TASK>
[   86.460955][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   86.462532][ T7318]  bad_page+0xb3/0x1f0
[   86.463984][ T7318]  ? __pfx_bad_page+0x10/0x10
[   86.465825][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   86.467560][ T7318]  free_unref_page+0x657/0xdc0
[   86.468898][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   86.470465][ T7318]  ? __phys_addr+0xc6/0x150
[   86.471722][ T7318]  skb_free_head+0xa0/0x1d0
[   86.472908][ T7318]  skb_release_data+0x560/0x730
[   86.474199][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   86.475529][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   86.477404][ T7318]  ? kernel_text_address+0x8d/0x100
[   86.478760][ T7318]  ? hlock_class+0x4e/0x130
[   86.479982][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   86.481314][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   86.483166][ T7318]  ? hlock_class+0x4e/0x130
[   86.484637][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   86.486049][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   86.487558][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   86.489254][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   86.491056][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   86.492532][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   86.494386][ T7318]  ? lock_acquire+0x2f/0xb0
[   86.495695][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   86.497506][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   86.499102][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   86.500965][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   86.502663][ T7318]  ? __build_skb_around+0x278/0x3b0
[   86.504359][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   86.505763][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   86.507417][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   86.509246][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   86.510757][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   86.512160][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   86.513996][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   86.516126][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   86.517869][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   86.519431][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   86.520838][ T7318]  ? 0xffffffffa0004340
[   86.521953][ T7318]  ? 0xffffffffa0004340
[   86.523174][ T7318]  ? 0xffffffffa0004340
[   86.524469][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   86.526053][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   86.527634][ T7318]  ? lock_acquire+0x2f/0xb0
[   86.529245][ T7318]  ? __fget_files+0x40/0x3f0
[   86.530602][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   86.532357][ T7318]  ? fput+0x30/0x390
[   86.533659][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   86.535405][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   86.537472][ T7318]  __sys_bpf+0xfc6/0x49a0
[   86.538987][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   86.540739][ T7318]  ? __schedule+0xe5d/0x5730
[   86.542403][ T7318]  ? do_futex+0x123/0x350
[   86.543905][ T7318]  ? __pfx_do_futex+0x10/0x10
[   86.545255][ T7318]  ? xfd_validate_state+0x5d/0x180
[   86.546707][ T7318]  ? rcu_is_watching+0x12/0xc0
[   86.548088][ T7318]  __x64_sys_bpf+0x78/0xc0
[   86.549385][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   86.551005][ T7318]  do_syscall_64+0xcd/0x250
[   86.552454][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.554492][ T7318] RIP: 0033:0x7f38a8f7e719
[   86.556055][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.562824][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   86.565217][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   86.567407][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   86.569492][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   86.571563][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.573808][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   86.576152][ T7318]  </TASK>
[   86.577112][ T7318] BUG: Bad page state in process syz.4.289  pfn:274f7
[   86.578941][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x3b8 pfn:0x274f7
[   86.581320][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   86.583156][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   86.585509][ T7318] raw: 00000000000003b8 0000000000000001 00000000ffffffff 0000000000000000
[   86.589150][ T7318] page dumped because: page_pool leak
[   86.591614][ T7318] page_owner tracks the page as allocated
[   86.593985][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562283036, free_ts 81431646110
[   86.599292][ T7318]  post_alloc_hook+0x2d1/0x350
[   86.600963][ T7318]  get_page_from_freelist+0x101e/0x3070
[   86.603181][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   86.604673][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   86.606243][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   86.609040][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   86.611293][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   86.612986][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   86.615257][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   86.617297][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   86.619059][ T7318]  __sys_bpf+0xfc6/0x49a0
[   86.620255][ T7318]  __x64_sys_bpf+0x78/0xc0
[   86.621603][ T7318]  do_syscall_64+0xcd/0x250
[   86.623683][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.626242][ T7318] page last free pid 7310 tgid 7310 stack trace:
[   86.629072][ T7318]  free_unref_page+0x5f4/0xdc0
[   86.630784][ T7318]  tlb_finish_mmu+0x237/0x7b0
[   86.632532][ T7318]  exit_mmap+0x3df/0xb30
[   86.633987][ T7318]  __mmput+0x12a/0x480
[   86.635521][ T7318]  mmput+0x62/0x70
[   86.636579][ T7318]  do_exit+0x9bf/0x2d70
[   86.637901][ T7318]  do_group_exit+0xd3/0x2a0
[   86.639566][ T7318]  __x64_sys_exit_group+0x3e/0x50
[   86.641305][ T7318]  x64_sys_call+0x14a9/0x16a0
[   86.642847][ T7318]  do_syscall_64+0xcd/0x250
[   86.644044][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.645541][ T7318] Modules linked in:
[   86.646502][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   86.649682][ T7318] Tainted: [B]=BAD_PAGE
[   86.650774][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.654338][ T7318] Call Trace:
[   86.655263][ T7318]  <TASK>
[   86.656120][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   86.657451][ T7318]  bad_page+0xb3/0x1f0
[   86.658589][ T7318]  ? __pfx_bad_page+0x10/0x10
[   86.659963][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   86.661280][ T7318]  free_unref_page+0x657/0xdc0
[   86.662548][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   86.664478][ T7318]  ? __phys_addr+0xc6/0x150
[   86.666080][ T7318]  skb_free_head+0xa0/0x1d0
[   86.667652][ T7318]  skb_release_data+0x560/0x730
[   86.669353][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   86.671202][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   86.673495][ T7318]  ? kernel_text_address+0x8d/0x100
[   86.675236][ T7318]  ? hlock_class+0x4e/0x130
[   86.676852][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   86.678756][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   86.680914][ T7318]  ? hlock_class+0x4e/0x130
[   86.682219][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   86.683735][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   86.685631][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   86.687708][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   86.690055][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   86.691924][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   86.694259][ T7318]  ? lock_acquire+0x2f/0xb0
[   86.695907][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   86.698138][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   86.700355][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   86.702571][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   86.704484][ T7318]  ? __build_skb_around+0x278/0x3b0
[   86.706333][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   86.708328][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   86.710473][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   86.712658][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   86.714696][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   86.716683][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   86.718589][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   86.720234][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   86.722652][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   86.724821][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   86.726921][ T7318]  ? 0xffffffffa0004340
[   86.728172][ T7318]  ? 0xffffffffa0004340
[   86.729312][ T7318]  ? 0xffffffffa0004340
[   86.730597][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   86.733088][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   86.735237][ T7318]  ? lock_acquire+0x2f/0xb0
[   86.736900][ T7318]  ? __fget_files+0x40/0x3f0
[   86.738610][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   86.740763][ T7318]  ? fput+0x30/0x390
[   86.742228][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   86.743991][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   86.746093][ T7318]  __sys_bpf+0xfc6/0x49a0
[   86.747658][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   86.749461][ T7318]  ? __schedule+0xe5d/0x5730
[   86.751151][ T7318]  ? do_futex+0x123/0x350
[   86.752685][ T7318]  ? __pfx_do_futex+0x10/0x10
[   86.754594][ T7318]  ? xfd_validate_state+0x5d/0x180
[   86.756510][ T7318]  ? rcu_is_watching+0x12/0xc0
[   86.758146][ T7318]  __x64_sys_bpf+0x78/0xc0
[   86.759837][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   86.761711][ T7318]  do_syscall_64+0xcd/0x250
[   86.763265][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.765582][ T7318] RIP: 0033:0x7f38a8f7e719
[   86.767389][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.774766][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   86.778346][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   86.782001][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   86.784318][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   86.786899][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.789410][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   86.791537][ T7318]  </TASK>
[   86.792420][ T7318] BUG: Bad page state in process syz.4.289  pfn:50aef
[   86.794273][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x3b9 pfn:0x50aef
[   86.796795][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   86.798728][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   86.801039][ T7318] raw: 00000000000003b9 0000000000000001 00000000ffffffff 0000000000000000
[   86.803971][ T7318] page dumped because: page_pool leak
[   86.805870][ T7318] page_owner tracks the page as allocated
[   86.808121][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562278304, free_ts 81431650247
[   86.815167][ T7318]  post_alloc_hook+0x2d1/0x350
[   86.816960][ T7318]  get_page_from_freelist+0x101e/0x3070
[   86.819062][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   86.821076][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   86.823130][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   86.825316][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   86.827205][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   86.829167][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   86.831675][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   86.833623][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   86.835634][ T7318]  __sys_bpf+0xfc6/0x49a0
[   86.837152][ T7318]  __x64_sys_bpf+0x78/0xc0
[   86.839086][ T7318]  do_syscall_64+0xcd/0x250
[   86.840938][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.843624][ T7318] page last free pid 7310 tgid 7310 stack trace:
[   86.846726][ T7318]  free_unref_page+0x5f4/0xdc0
[   86.849003][ T7318]  tlb_finish_mmu+0x237/0x7b0
[   86.850996][ T7318]  exit_mmap+0x3df/0xb30
[   86.852355][ T7318]  __mmput+0x12a/0x480
[   86.853609][ T7318]  mmput+0x62/0x70
[   86.854741][ T7318]  do_exit+0x9bf/0x2d70
[   86.855875][ T7318]  do_group_exit+0xd3/0x2a0
[   86.857071][ T7318]  __x64_sys_exit_group+0x3e/0x50
[   86.858417][ T7318]  x64_sys_call+0x14a9/0x16a0
[   86.859652][ T7318]  do_syscall_64+0xcd/0x250
[   86.860818][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.862386][ T7318] Modules linked in:
[   86.863867][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   86.867238][ T7318] Tainted: [B]=BAD_PAGE
[   86.868572][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.871511][ T7318] Call Trace:
[   86.872452][ T7318]  <TASK>
[   86.873370][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   86.874850][ T7318]  bad_page+0xb3/0x1f0
[   86.876044][ T7318]  ? __pfx_bad_page+0x10/0x10
[   86.877434][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   86.878872][ T7318]  free_unref_page+0x657/0xdc0
[   86.880291][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   86.882237][ T7318]  ? __phys_addr+0xc6/0x150
[   86.883863][ T7318]  skb_free_head+0xa0/0x1d0
[   86.885267][ T7318]  skb_release_data+0x560/0x730
[   86.886547][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   86.887934][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   86.889923][ T7318]  ? kernel_text_address+0x8d/0x100
[   86.891372][ T7318]  ? hlock_class+0x4e/0x130
[   86.892570][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   86.894026][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   86.896090][ T7318]  ? hlock_class+0x4e/0x130
[   86.897380][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   86.898711][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   86.900104][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   86.902128][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   86.904811][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   86.906578][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   86.908589][ T7318]  ? lock_acquire+0x2f/0xb0
[   86.910099][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   86.912313][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   86.914298][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   86.916126][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   86.917456][ T7318]  ? __build_skb_around+0x278/0x3b0
[   86.918802][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   86.920175][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   86.921797][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   86.923730][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   86.925190][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   86.926886][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   86.928441][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   86.930031][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   86.932082][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   86.933874][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   86.935367][ T7318]  ? 0xffffffffa0004340
[   86.936556][ T7318]  ? 0xffffffffa0004340
[   86.937772][ T7318]  ? 0xffffffffa0004340
[   86.938908][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   86.940655][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   86.942279][ T7318]  ? lock_acquire+0x2f/0xb0
[   86.943861][ T7318]  ? __fget_files+0x40/0x3f0
[   86.945122][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   86.947029][ T7318]  ? fput+0x30/0x390
[   86.948195][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   86.949789][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   86.951826][ T7318]  __sys_bpf+0xfc6/0x49a0
[   86.953270][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   86.954655][ T7318]  ? __schedule+0xe5d/0x5730
[   86.956280][ T7318]  ? do_futex+0x123/0x350
[   86.957616][ T7318]  ? __pfx_do_futex+0x10/0x10
[   86.958934][ T7318]  ? xfd_validate_state+0x5d/0x180
[   86.960430][ T7318]  ? rcu_is_watching+0x12/0xc0
[   86.961744][ T7318]  __x64_sys_bpf+0x78/0xc0
[   86.963259][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   86.964705][ T7318]  do_syscall_64+0xcd/0x250
[   86.966038][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.968204][ T7318] RIP: 0033:0x7f38a8f7e719
[   86.969697][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.975700][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   86.978286][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   86.980800][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   86.983431][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   86.985765][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.988188][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   86.990758][ T7318]  </TASK>
[   86.991924][ T7318] BUG: Bad page state in process syz.4.289  pfn:30e28
[   86.994194][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x300 pfn:0x30e28
[   86.996683][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   86.998746][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   87.001157][ T7318] raw: 0000000000000300 0000000000000001 00000000ffffffff 0000000000000000
[   87.003874][ T7318] page dumped because: page_pool leak
[   87.005421][ T7318] page_owner tracks the page as allocated
[   87.006907][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562273930, free_ts 81476815953
[   87.011483][ T7318]  post_alloc_hook+0x2d1/0x350
[   87.013005][ T7318]  get_page_from_freelist+0x101e/0x3070
[   87.014667][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   87.016390][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   87.018168][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   87.019843][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   87.021282][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   87.022713][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   87.024906][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   87.026469][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   87.028104][ T7318]  __sys_bpf+0xfc6/0x49a0
[   87.030162][ T7318]  __x64_sys_bpf+0x78/0xc0
[   87.031714][ T7318]  do_syscall_64+0xcd/0x250
[   87.033062][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.034698][ T7318] page last free pid 7305 tgid 7305 stack trace:
[   87.036606][ T7318]  free_unref_page+0x5f4/0xdc0
[   87.038126][ T7318]  vfree+0x17a/0x890
[   87.039482][ T7318]  n_tty_close+0xd3/0x1f0
[   87.040845][ T7318]  tty_ldisc_close+0x111/0x1a0
[   87.042451][ T7318]  tty_ldisc_kill+0x8e/0x150
[   87.044183][ T7318]  tty_ldisc_release+0x17b/0x2a0
[   87.045792][ T7318]  tty_release_struct+0x23/0xe0
[   87.047406][ T7318]  tty_release+0xe25/0x1410
[   87.048873][ T7318]  __fput+0x3f6/0xb60
[   87.049939][ T7318]  task_work_run+0x14e/0x250
[   87.051840][ T7318]  syscall_exit_to_user_mode+0x27b/0x2a0
[   87.053641][ T7318]  do_syscall_64+0xda/0x250
[   87.054879][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.056491][ T7318] Modules linked in:
[   87.057541][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   87.060851][ T7318] Tainted: [B]=BAD_PAGE
[   87.062009][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.064905][ T7318] Call Trace:
[   87.065817][ T7318]  <TASK>
[   87.066595][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   87.067859][ T7318]  bad_page+0xb3/0x1f0
[   87.068318][ T6434] usb 8-1: device descriptor read/8, error -110
[   87.069123][ T7318]  ? __pfx_bad_page+0x10/0x10
[   87.072287][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   87.073873][ T7318]  free_unref_page+0x657/0xdc0
[   87.075178][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   87.076829][ T7318]  ? __phys_addr+0xc6/0x150
[   87.078119][ T7318]  skb_free_head+0xa0/0x1d0
[   87.079430][ T7318]  skb_release_data+0x560/0x730
[   87.080817][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   87.082409][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   87.084357][ T7318]  ? kernel_text_address+0x8d/0x100
[   87.085714][ T7318]  ? hlock_class+0x4e/0x130
[   87.086904][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   87.088235][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   87.090113][ T7318]  ? hlock_class+0x4e/0x130
[   87.091340][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   87.092880][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   87.094439][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   87.096064][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   87.097841][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   87.099284][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   87.101199][ T7318]  ? lock_acquire+0x2f/0xb0
[   87.102745][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   87.105016][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   87.107074][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   87.110096][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   87.111625][ T7318]  ? __build_skb_around+0x278/0x3b0
[   87.113255][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   87.114857][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   87.116513][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   87.118236][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   87.119927][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   87.121833][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   87.123997][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   87.125568][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   87.127145][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   87.129478][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   87.130945][ T7318]  ? 0xffffffffa0004340
[   87.132255][ T7318]  ? 0xffffffffa0004340
[   87.133775][ T7318]  ? 0xffffffffa0004340
[   87.134905][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   87.136810][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   87.138358][ T7318]  ? lock_acquire+0x2f/0xb0
[   87.139735][ T7318]  ? __fget_files+0x40/0x3f0
[   87.141114][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   87.142969][ T7318]  ? fput+0x30/0x390
[   87.144151][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   87.145547][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   87.147356][ T7318]  __sys_bpf+0xfc6/0x49a0
[   87.148674][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   87.149971][ T7318]  ? __schedule+0xe5d/0x5730
[   87.151168][ T7318]  ? do_futex+0x123/0x350
[   87.152507][ T7318]  ? __pfx_do_futex+0x10/0x10
[   87.153790][ T7318]  ? xfd_validate_state+0x5d/0x180
[   87.155234][ T7318]  ? rcu_is_watching+0x12/0xc0
[   87.156583][ T7318]  __x64_sys_bpf+0x78/0xc0
[   87.157775][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   87.159125][ T7318]  do_syscall_64+0xcd/0x250
[   87.160335][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.161903][ T7318] RIP: 0033:0x7f38a8f7e719
[   87.164068][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.169458][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   87.171845][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   87.174049][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   87.176255][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   87.178517][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.180751][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   87.183105][ T7318]  </TASK>
[   87.184307][ T7318] BUG: Bad page state in process syz.4.289  pfn:31604
[   87.186239][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x55f pfn:0x31604
[   87.188744][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   87.190826][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   87.193302][ T7318] raw: 000000000000055f 0000000000000001 00000000ffffffff 0000000000000000
[   87.195616][ T7318] page dumped because: page_pool leak
[   87.197048][ T7318] page_owner tracks the page as allocated
[   87.198661][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562269354, free_ts 81478104571
[   87.203424][ T7318]  post_alloc_hook+0x2d1/0x350
[   87.204797][ T7318]  get_page_from_freelist+0x101e/0x3070
[   87.206331][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   87.207883][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   87.209605][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   87.211517][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   87.213227][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   87.214698][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   87.216661][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   87.218136][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   87.219627][ T7318]  __sys_bpf+0xfc6/0x49a0
[   87.220795][ T7318]  __x64_sys_bpf+0x78/0xc0
[   87.222203][ T7318]  do_syscall_64+0xcd/0x250
[   87.223913][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.225506][ T7318] page last free pid 7305 tgid 7305 stack trace:
[   87.227106][ T7318]  free_unref_page+0x5f4/0xdc0
[   87.228469][ T7318]  __folio_put+0x30d/0x3d0
[   87.229689][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   87.231186][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   87.232815][ T7318]  rcu_core+0x79d/0x14d0
[   87.234439][ T7318]  handle_softirqs+0x213/0x8f0
[   87.236164][ T7318]  irq_exit_rcu+0xbb/0x120
[   87.237965][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   87.240253][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   87.242007][ T7318] Modules linked in:
[   87.243571][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   87.247036][ T7318] Tainted: [B]=BAD_PAGE
[   87.248281][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.252263][ T7318] Call Trace:
[   87.253630][ T7318]  <TASK>
[   87.254838][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   87.256683][ T7318]  bad_page+0xb3/0x1f0
[   87.258261][ T7318]  ? __pfx_bad_page+0x10/0x10
[   87.260115][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   87.262025][ T7318]  free_unref_page+0x657/0xdc0
[   87.264004][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   87.266504][ T7318]  ? __phys_addr+0xc6/0x150
[   87.268406][ T7318]  skb_free_head+0xa0/0x1d0
[   87.270133][ T7318]  skb_release_data+0x560/0x730
[   87.271871][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   87.273755][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   87.276366][ T7318]  ? kernel_text_address+0x8d/0x100
[   87.278311][ T7318]  ? hlock_class+0x4e/0x130
[   87.280056][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   87.281933][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   87.284885][ T7318]  ? hlock_class+0x4e/0x130
[   87.286584][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   87.288656][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   87.290843][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   87.293409][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   87.296196][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   87.298434][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   87.301014][ T7318]  ? lock_acquire+0x2f/0xb0
[   87.302836][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   87.305367][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   87.307865][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   87.310272][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   87.312136][ T7318]  ? __build_skb_around+0x278/0x3b0
[   87.314201][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   87.316170][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   87.318193][ T6434] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[   87.318486][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   87.323263][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   87.325559][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   87.327771][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   87.330512][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   87.332957][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   87.335500][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   87.338237][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   87.340457][ T7318]  ? 0xffffffffa0004340
[   87.341645][ T7318]  ? 0xffffffffa0004340
[   87.343187][ T7318]  ? 0xffffffffa0004340
[   87.344381][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   87.345970][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   87.347387][ T7318]  ? lock_acquire+0x2f/0xb0
[   87.348338][ T6434] usb 8-1: device descriptor read/8, error -32
[   87.348617][ T7318]  ? __fget_files+0x40/0x3f0
[   87.351725][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   87.353408][ T7318]  ? fput+0x30/0x390
[   87.354480][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   87.355859][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   87.357406][ T7318]  __sys_bpf+0xfc6/0x49a0
[   87.358583][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   87.359894][ T7318]  ? __schedule+0xe5d/0x5730
[   87.361153][ T7318]  ? do_futex+0x123/0x350
[   87.362354][ T7318]  ? __pfx_do_futex+0x10/0x10
[   87.363816][ T7318]  ? xfd_validate_state+0x5d/0x180
[   87.365144][ T7318]  ? rcu_is_watching+0x12/0xc0
[   87.366399][ T7318]  __x64_sys_bpf+0x78/0xc0
[   87.367614][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   87.368994][ T7318]  do_syscall_64+0xcd/0x250
[   87.370249][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.372068][ T7318] RIP: 0033:0x7f38a8f7e719
[   87.373688][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.378875][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   87.381231][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   87.383371][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   87.385853][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   87.388209][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.390661][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   87.393021][ T7318]  </TASK>
[   87.393967][ T7318] BUG: Bad page state in process syz.4.289  pfn:25959
[   87.395938][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x555 pfn:0x25959
[   87.398559][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   87.400582][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   87.403154][ T7318] raw: 0000000000000555 0000000000000001 00000000ffffffff 0000000000000000
[   87.405487][ T7318] page dumped because: page_pool leak
[   87.406946][ T7318] page_owner tracks the page as allocated
[   87.408811][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562264913, free_ts 81478109895
[   87.413849][ T7318]  post_alloc_hook+0x2d1/0x350
[   87.415226][ T7318]  get_page_from_freelist+0x101e/0x3070
[   87.416936][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   87.418536][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   87.420123][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   87.421985][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   87.423746][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   87.425597][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   87.427323][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   87.428932][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   87.430419][ T7318]  __sys_bpf+0xfc6/0x49a0
[   87.431664][ T7318]  __x64_sys_bpf+0x78/0xc0
[   87.432933][ T7318]  do_syscall_64+0xcd/0x250
[   87.434171][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.435936][ T7318] page last free pid 7305 tgid 7305 stack trace:
[   87.437605][ T7318]  free_unref_page+0x5f4/0xdc0
[   87.438948][ T7318]  __folio_put+0x30d/0x3d0
[   87.440166][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   87.441652][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   87.443064][ T7318]  rcu_core+0x79d/0x14d0
[   87.444312][ T7318]  handle_softirqs+0x213/0x8f0
[   87.445841][ T7318]  irq_exit_rcu+0xbb/0x120
[   87.447102][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   87.448784][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   87.450401][ T7318] Modules linked in:
[   87.451461][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   87.454693][ T7318] Tainted: [B]=BAD_PAGE
[   87.455944][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.458275][ T6434] usb usb8-port1: unable to enumerate USB device
[   87.458799][ T7318] Call Trace:
[   87.461465][ T7318]  <TASK>
[   87.462271][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   87.463723][ T7318]  bad_page+0xb3/0x1f0
[   87.464818][ T7318]  ? __pfx_bad_page+0x10/0x10
[   87.466085][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   87.467398][ T7318]  free_unref_page+0x657/0xdc0
[   87.468694][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   87.470292][ T7318]  ? __phys_addr+0xc6/0x150
[   87.471546][ T7318]  skb_free_head+0xa0/0x1d0
[   87.472773][ T7318]  skb_release_data+0x560/0x730
[   87.474152][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   87.475758][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   87.477651][ T7318]  ? kernel_text_address+0x8d/0x100
[   87.479184][ T7318]  ? hlock_class+0x4e/0x130
[   87.480611][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   87.482197][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   87.484915][ T7318]  ? hlock_class+0x4e/0x130
[   87.486241][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   87.487664][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   87.489195][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   87.490898][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   87.492851][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   87.494306][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   87.496081][ T7318]  ? lock_acquire+0x2f/0xb0
[   87.497300][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   87.498994][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   87.500693][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   87.502635][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   87.504124][ T7318]  ? __build_skb_around+0x278/0x3b0
[   87.505625][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   87.507113][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   87.508834][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   87.510865][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   87.512490][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   87.513968][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   87.515546][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   87.517146][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   87.518738][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   87.520332][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   87.521749][ T7318]  ? 0xffffffffa0004340
[   87.522919][ T7318]  ? 0xffffffffa0004340
[   87.524047][ T7318]  ? 0xffffffffa0004340
[   87.525152][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   87.527200][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   87.528980][ T7318]  ? lock_acquire+0x2f/0xb0
[   87.530718][ T7318]  ? __fget_files+0x40/0x3f0
[   87.531962][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   87.533629][ T7318]  ? fput+0x30/0x390
[   87.534693][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   87.536006][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   87.537545][ T7318]  __sys_bpf+0xfc6/0x49a0
[   87.538731][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   87.540118][ T7318]  ? __schedule+0xe5d/0x5730
[   87.541498][ T7318]  ? do_futex+0x123/0x350
[   87.543051][ T7318]  ? __pfx_do_futex+0x10/0x10
[   87.544785][ T7318]  ? xfd_validate_state+0x5d/0x180
[   87.546385][ T7318]  ? rcu_is_watching+0x12/0xc0
[   87.547908][ T7318]  __x64_sys_bpf+0x78/0xc0
[   87.549332][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   87.550933][ T7318]  do_syscall_64+0xcd/0x250
[   87.552214][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.553871][ T7318] RIP: 0033:0x7f38a8f7e719
[   87.555070][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.560318][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   87.562751][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   87.566113][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   87.568928][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   87.571137][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.573405][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   87.575562][ T7318]  </TASK>
[   87.576508][ T7318] BUG: Bad page state in process syz.4.289  pfn:235f8
[   87.578285][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x31b pfn:0x235f8
[   87.580974][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   87.583007][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   87.585414][ T7318] raw: 000000000000031b 0000000000000001 00000000ffffffff 0000000000000000
[   87.588216][ T7318] page dumped because: page_pool leak
[   87.589761][ T7318] page_owner tracks the page as allocated
[   87.591529][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562260686, free_ts 81478113971
[   87.596358][ T7318]  post_alloc_hook+0x2d1/0x350
[   87.597581][ T7318]  get_page_from_freelist+0x101e/0x3070
[   87.599075][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   87.600488][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   87.602170][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   87.603785][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   87.605271][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   87.606636][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   87.608364][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   87.610031][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   87.611477][ T7318]  __sys_bpf+0xfc6/0x49a0
[   87.612902][ T7318]  __x64_sys_bpf+0x78/0xc0
[   87.614175][ T7318]  do_syscall_64+0xcd/0x250
[   87.615399][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.616980][ T7318] page last free pid 7305 tgid 7305 stack trace:
[   87.618737][ T7318]  free_unref_page+0x5f4/0xdc0
[   87.620010][ T7318]  rcu_core+0x79d/0x14d0
[   87.621158][ T7318]  handle_softirqs+0x213/0x8f0
[   87.622443][ T7318]  irq_exit_rcu+0xbb/0x120
[   87.623713][ T7318]  sysvec_apic_timer_interrupt+0xa4/0xc0
[   87.625202][ T7318]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   87.626803][ T7318] Modules linked in:
[   87.627879][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   87.631006][ T7318] Tainted: [B]=BAD_PAGE
[   87.632111][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.635016][ T7318] Call Trace:
[   87.635904][ T7318]  <TASK>
[   87.636702][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   87.637963][ T7318]  bad_page+0xb3/0x1f0
[   87.639048][ T7318]  ? __pfx_bad_page+0x10/0x10
[   87.640336][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   87.641643][ T7318]  free_unref_page+0x657/0xdc0
[   87.642941][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   87.644580][ T7318]  ? __phys_addr+0xc6/0x150
[   87.645790][ T7318]  skb_free_head+0xa0/0x1d0
[   87.647080][ T7318]  skb_release_data+0x560/0x730
[   87.648406][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   87.649877][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   87.651701][ T7318]  ? kernel_text_address+0x8d/0x100
[   87.653221][ T7318]  ? hlock_class+0x4e/0x130
[   87.654437][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   87.655729][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   87.657647][ T7318]  ? hlock_class+0x4e/0x130
[   87.658832][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   87.660267][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   87.661787][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   87.663947][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   87.665664][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   87.667033][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   87.668760][ T7318]  ? lock_acquire+0x2f/0xb0
[   87.670025][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   87.671881][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   87.673769][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   87.675779][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   87.677260][ T7318]  ? __build_skb_around+0x278/0x3b0
[   87.678757][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   87.680288][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   87.682106][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   87.684653][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   87.686811][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   87.688882][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   87.691152][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   87.693554][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   87.695704][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   87.697912][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   87.700201][ T7318]  ? 0xffffffffa0004340
[   87.702206][ T7318]  ? 0xffffffffa0004340
[   87.704173][ T7318]  ? 0xffffffffa0004340
[   87.705996][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   87.708191][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   87.710170][ T7318]  ? lock_acquire+0x2f/0xb0
[   87.711847][ T7318]  ? __fget_files+0x40/0x3f0
[   87.713527][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   87.715837][ T7318]  ? fput+0x30/0x390
[   87.717329][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   87.719115][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   87.721291][ T7318]  __sys_bpf+0xfc6/0x49a0
[   87.722886][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   87.724658][ T7318]  ? __schedule+0xe5d/0x5730
[   87.726365][ T7318]  ? do_futex+0x123/0x350
[   87.728034][ T7318]  ? __pfx_do_futex+0x10/0x10
[   87.729810][ T7318]  ? xfd_validate_state+0x5d/0x180
[   87.731949][ T7318]  ? rcu_is_watching+0x12/0xc0
[   87.733876][ T7318]  __x64_sys_bpf+0x78/0xc0
[   87.735556][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   87.737489][ T7318]  do_syscall_64+0xcd/0x250
[   87.739333][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.741557][ T7318] RIP: 0033:0x7f38a8f7e719
[   87.743214][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.750271][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   87.753776][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   87.756984][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   87.760301][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   87.763619][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.766711][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   87.769601][ T7318]  </TASK>
[   87.770584][ T7318] BUG: Bad page state in process syz.4.289  pfn:2437d
[   87.772735][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x3ee pfn:0x2437d
[   87.775210][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   87.777093][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   87.779414][ T7318] raw: 00000000000003ee 0000000000000001 00000000ffffffff 0000000000000000
[   87.781681][ T7318] page dumped because: page_pool leak
[   87.783178][ T7318] page_owner tracks the page as allocated
[   87.784733][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562256172, free_ts 81478845030
[   87.789170][ T7318]  post_alloc_hook+0x2d1/0x350
[   87.790499][ T7318]  get_page_from_freelist+0x101e/0x3070
[   87.792557][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   87.794183][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   87.795764][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   87.797447][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   87.798922][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   87.800331][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   87.802022][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   87.803794][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   87.805796][ T7318]  __sys_bpf+0xfc6/0x49a0
[   87.807438][ T7318]  __x64_sys_bpf+0x78/0xc0
[   87.809232][ T7318]  do_syscall_64+0xcd/0x250
[   87.810873][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.813093][ T7318] page last free pid 24 tgid 24 stack trace:
[   87.815396][ T7318]  free_unref_page+0x5f4/0xdc0
[   87.817281][ T7318]  __folio_put+0x30d/0x3d0
[   87.819115][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   87.821305][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   87.823316][ T7318]  rcu_core+0x79d/0x14d0
[   87.825819][ T7318]  handle_softirqs+0x213/0x8f0
[   87.828664][ T7318]  run_ksoftirqd+0x3a/0x60
[   87.830495][ T7318]  smpboot_thread_fn+0x661/0xa30
[   87.832259][ T7318]  kthread+0x2c1/0x3a0
[   87.833737][ T7318]  ret_from_fork+0x45/0x80
[   87.835459][ T7318]  ret_from_fork_asm+0x1a/0x30
[   87.837329][ T7318] Modules linked in:
[   87.838920][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   87.843437][ T7318] Tainted: [B]=BAD_PAGE
[   87.845046][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.849182][ T7318] Call Trace:
[   87.851113][ T7318]  <TASK>
[   87.852505][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   87.854713][ T7318]  bad_page+0xb3/0x1f0
[   87.856674][ T7318]  ? __pfx_bad_page+0x10/0x10
[   87.858520][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   87.860383][ T7318]  free_unref_page+0x657/0xdc0
[   87.862181][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   87.864395][ T7318]  ? __phys_addr+0xc6/0x150
[   87.866098][ T7318]  skb_free_head+0xa0/0x1d0
[   87.867811][ T7318]  skb_release_data+0x560/0x730
[   87.869642][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   87.871473][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   87.874115][ T7318]  ? kernel_text_address+0x8d/0x100
[   87.875983][ T7318]  ? hlock_class+0x4e/0x130
[   87.877663][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   87.879563][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   87.882262][ T7318]  ? hlock_class+0x4e/0x130
[   87.884017][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   87.885873][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   87.887994][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   87.890494][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   87.893327][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   87.895375][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   87.897824][ T7318]  ? lock_acquire+0x2f/0xb0
[   87.899468][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   87.901313][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   87.903527][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   87.905410][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   87.906805][ T7318]  ? __build_skb_around+0x278/0x3b0
[   87.908253][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   87.910004][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   87.912084][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   87.914111][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   87.915916][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   87.917831][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   87.920064][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   87.922200][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   87.924344][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   87.926464][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   87.928454][ T7318]  ? 0xffffffffa0004340
[   87.930090][ T7318]  ? 0xffffffffa0004340
[   87.932367][ T7318]  ? 0xffffffffa0004340
[   87.933861][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   87.935744][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   87.937543][ T7318]  ? lock_acquire+0x2f/0xb0
[   87.939338][ T7318]  ? __fget_files+0x40/0x3f0
[   87.941110][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   87.943271][ T7318]  ? fput+0x30/0x390
[   87.944756][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   87.946566][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   87.948723][ T7318]  __sys_bpf+0xfc6/0x49a0
[   87.950151][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   87.951921][ T7318]  ? __schedule+0xe5d/0x5730
[   87.953624][ T7318]  ? do_futex+0x123/0x350
[   87.955216][ T7318]  ? __pfx_do_futex+0x10/0x10
[   87.956963][ T7318]  ? xfd_validate_state+0x5d/0x180
[   87.958840][ T7318]  ? rcu_is_watching+0x12/0xc0
[   87.960704][ T7318]  __x64_sys_bpf+0x78/0xc0
[   87.962376][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   87.964311][ T7318]  do_syscall_64+0xcd/0x250
[   87.965993][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.968177][ T7318] RIP: 0033:0x7f38a8f7e719
[   87.969420][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.975574][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   87.978470][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   87.981165][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   87.983886][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   87.986979][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.989667][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   87.991892][ T7318]  </TASK>
[   87.992922][ T7318] BUG: Bad page state in process syz.4.289  pfn:30a91
[   87.994857][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x3f7 pfn:0x30a91
[   87.997398][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   87.999715][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   88.002253][ T7318] raw: 00000000000003f7 0000000000000001 00000000ffffffff 0000000000000000
[   88.004550][ T7318] page dumped because: page_pool leak
[   88.006035][ T7318] page_owner tracks the page as allocated
[   88.007600][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562251659, free_ts 81478848926
[   88.012258][ T7318]  post_alloc_hook+0x2d1/0x350
[   88.013570][ T7318]  get_page_from_freelist+0x101e/0x3070
[   88.015048][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   88.016463][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   88.017944][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   88.019595][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   88.020965][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   88.022299][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   88.023865][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.025561][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.027184][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.028753][ T7318]  __x64_sys_bpf+0x78/0xc0
[   88.030168][ T7318]  do_syscall_64+0xcd/0x250
[   88.031837][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.033694][ T7318] page last free pid 24 tgid 24 stack trace:
[   88.035467][ T7318]  free_unref_page+0x5f4/0xdc0
[   88.036784][ T7318]  __folio_put+0x30d/0x3d0
[   88.038069][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   88.039830][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   88.041581][ T7318]  rcu_core+0x79d/0x14d0
[   88.043138][ T7318]  handle_softirqs+0x213/0x8f0
[   88.044868][ T7318]  run_ksoftirqd+0x3a/0x60
[   88.046666][ T7318]  smpboot_thread_fn+0x661/0xa30
[   88.048830][ T7318]  kthread+0x2c1/0x3a0
[   88.050521][ T7318]  ret_from_fork+0x45/0x80
[   88.052325][ T7318]  ret_from_fork_asm+0x1a/0x30
[   88.054279][ T7318] Modules linked in:
[   88.055699][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   88.059420][ T7318] Tainted: [B]=BAD_PAGE
[   88.060599][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.063395][ T7318] Call Trace:
[   88.064335][ T7318]  <TASK>
[   88.065135][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   88.066410][ T7318]  bad_page+0xb3/0x1f0
[   88.067558][ T7318]  ? __pfx_bad_page+0x10/0x10
[   88.068993][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   88.070484][ T7318]  free_unref_page+0x657/0xdc0
[   88.071947][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   88.073943][ T7318]  ? __phys_addr+0xc6/0x150
[   88.075405][ T7318]  skb_free_head+0xa0/0x1d0
[   88.076844][ T7318]  skb_release_data+0x560/0x730
[   88.078337][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   88.079816][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   88.081621][ T7318]  ? kernel_text_address+0x8d/0x100
[   88.083080][ T7318]  ? hlock_class+0x4e/0x130
[   88.084391][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   88.085764][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   88.087715][ T7318]  ? hlock_class+0x4e/0x130
[   88.089032][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   88.090414][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   88.091842][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   88.093579][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   88.095335][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   88.096728][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   88.098420][ T7318]  ? lock_acquire+0x2f/0xb0
[   88.099693][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   88.101534][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   88.103469][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   88.106041][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   88.107719][ T7318]  ? __build_skb_around+0x278/0x3b0
[   88.109592][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   88.111085][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   88.113070][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   88.114889][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   88.116390][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.117819][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   88.119394][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   88.121048][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   88.122596][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   88.124129][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   88.125710][ T7318]  ? 0xffffffffa0004340
[   88.126850][ T7318]  ? 0xffffffffa0004340
[   88.127993][ T7318]  ? 0xffffffffa0004340
[   88.129280][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   88.130897][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.132432][ T7318]  ? lock_acquire+0x2f/0xb0
[   88.133847][ T7318]  ? __fget_files+0x40/0x3f0
[   88.135483][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   88.137544][ T7318]  ? fput+0x30/0x390
[   88.138964][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   88.140726][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   88.142689][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.144279][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   88.145937][ T7318]  ? __schedule+0xe5d/0x5730
[   88.147537][ T7318]  ? do_futex+0x123/0x350
[   88.148722][ T7318]  ? __pfx_do_futex+0x10/0x10
[   88.150222][ T7318]  ? xfd_validate_state+0x5d/0x180
[   88.151696][ T7318]  ? rcu_is_watching+0x12/0xc0
[   88.153208][ T7318]  __x64_sys_bpf+0x78/0xc0
[   88.154422][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   88.155825][ T7318]  do_syscall_64+0xcd/0x250
[   88.157192][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.158897][ T7318] RIP: 0033:0x7f38a8f7e719
[   88.160130][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.165438][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   88.168500][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   88.170624][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   88.172855][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   88.175171][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   88.178183][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   88.181127][ T7318]  </TASK>
[   88.182169][ T7318] BUG: Bad page state in process syz.4.289  pfn:2375f
[   88.184239][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xc6 pfn:0x2375f
[   88.186827][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   88.188894][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   88.191276][ T7318] raw: 00000000000000c6 0000000000000001 00000000ffffffff 0000000000000000
[   88.193866][ T7318] page dumped because: page_pool leak
[   88.195854][ T7318] page_owner tracks the page as allocated
[   88.197576][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562247340, free_ts 81548311042
[   88.203333][ T7318]  post_alloc_hook+0x2d1/0x350
[   88.205040][ T7318]  get_page_from_freelist+0x101e/0x3070
[   88.206935][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   88.208901][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   88.210824][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   88.213554][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   88.216013][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   88.218428][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   88.220561][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.222380][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.224260][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.225781][ T7318]  __x64_sys_bpf+0x78/0xc0
[   88.227324][ T7318]  do_syscall_64+0xcd/0x250
[   88.229015][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.231369][ T7318] page last free pid 24 tgid 24 stack trace:
[   88.233534][ T7318]  free_unref_page+0x5f4/0xdc0
[   88.235195][ T7318]  __folio_put+0x30d/0x3d0
[   88.236773][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   88.238639][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   88.240423][ T7318]  rcu_core+0x79d/0x14d0
[   88.241975][ T7318]  handle_softirqs+0x213/0x8f0
[   88.243787][ T7318]  run_ksoftirqd+0x3a/0x60
[   88.245561][ T7318]  smpboot_thread_fn+0x661/0xa30
[   88.247641][ T7318]  kthread+0x2c1/0x3a0
[   88.249396][ T7318]  ret_from_fork+0x45/0x80
[   88.251154][ T7318]  ret_from_fork_asm+0x1a/0x30
[   88.252881][ T7318] Modules linked in:
[   88.254245][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   88.258414][ T7318] Tainted: [B]=BAD_PAGE
[   88.259853][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.263544][ T7318] Call Trace:
[   88.264735][ T7318]  <TASK>
[   88.265773][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   88.267487][ T7318]  bad_page+0xb3/0x1f0
[   88.268911][ T7318]  ? __pfx_bad_page+0x10/0x10
[   88.270542][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   88.272614][ T7318]  free_unref_page+0x657/0xdc0
[   88.274598][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   88.277137][ T7318]  ? __phys_addr+0xc6/0x150
[   88.279063][ T7318]  skb_free_head+0xa0/0x1d0
[   88.281028][ T7318]  skb_release_data+0x560/0x730
[   88.284015][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   88.285909][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   88.288224][ T7318]  ? kernel_text_address+0x8d/0x100
[   88.290045][ T7318]  ? hlock_class+0x4e/0x130
[   88.291636][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   88.293715][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   88.296179][ T7318]  ? hlock_class+0x4e/0x130
[   88.297740][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   88.299467][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   88.301247][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   88.303418][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   88.305885][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   88.307889][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   88.310093][ T7318]  ? lock_acquire+0x2f/0xb0
[   88.311667][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   88.314099][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   88.316352][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   88.318764][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   88.320669][ T7318]  ? __build_skb_around+0x278/0x3b0
[   88.322464][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   88.324529][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   88.327012][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   88.329366][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   88.331367][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.333261][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   88.335198][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   88.337148][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   88.339161][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   88.341093][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   88.342786][ T7318]  ? 0xffffffffa0004340
[   88.344404][ T7318]  ? 0xffffffffa0004340
[   88.345858][ T7318]  ? 0xffffffffa0004340
[   88.347054][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   88.348790][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.350493][ T7318]  ? lock_acquire+0x2f/0xb0
[   88.351933][ T7318]  ? __fget_files+0x40/0x3f0
[   88.353202][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   88.354769][ T7318]  ? fput+0x30/0x390
[   88.355832][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   88.357154][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   88.358709][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.359892][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   88.361156][ T7318]  ? __schedule+0xe5d/0x5730
[   88.362402][ T7318]  ? do_futex+0x123/0x350
[   88.363568][ T7318]  ? __pfx_do_futex+0x10/0x10
[   88.365140][ T7318]  ? xfd_validate_state+0x5d/0x180
[   88.366681][ T7318]  ? rcu_is_watching+0x12/0xc0
[   88.368075][ T7318]  __x64_sys_bpf+0x78/0xc0
[   88.369271][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   88.370678][ T7318]  do_syscall_64+0xcd/0x250
[   88.371910][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.373492][ T7318] RIP: 0033:0x7f38a8f7e719
[   88.374689][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.379807][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   88.382201][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   88.384759][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   88.387227][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   88.389796][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   88.392410][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   88.394633][ T7318]  </TASK>
[   88.395605][ T7318] BUG: Bad page state in process syz.4.289  pfn:35a4f
[   88.397602][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xc7 pfn:0x35a4f
[   88.400531][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   88.402576][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   88.404845][ T7318] raw: 00000000000000c7 0000000000000001 00000000ffffffff 0000000000000000
[   88.407144][ T7318] page dumped because: page_pool leak
[   88.408720][ T7318] page_owner tracks the page as allocated
[   88.410228][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562239564, free_ts 81548321192
[   88.414658][ T7318]  post_alloc_hook+0x2d1/0x350
[   88.415933][ T7318]  get_page_from_freelist+0x101e/0x3070
[   88.417432][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   88.418868][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   88.420511][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   88.422521][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   88.424369][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   88.426178][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   88.428510][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.430866][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.432967][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.434730][ T7318]  __x64_sys_bpf+0x78/0xc0
[   88.436300][ T7318]  do_syscall_64+0xcd/0x250
[   88.437905][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.440045][ T7318] page last free pid 24 tgid 24 stack trace:
[   88.442092][ T7318]  free_unref_page+0x5f4/0xdc0
[   88.443761][ T7318]  __folio_put+0x30d/0x3d0
[   88.445606][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   88.447674][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   88.449692][ T7318]  rcu_core+0x79d/0x14d0
[   88.451622][ T7318]  handle_softirqs+0x213/0x8f0
[   88.453313][ T7318]  run_ksoftirqd+0x3a/0x60
[   88.454897][ T7318]  smpboot_thread_fn+0x661/0xa30
[   88.456814][ T7318]  kthread+0x2c1/0x3a0
[   88.458480][ T7318]  ret_from_fork+0x45/0x80
[   88.460252][ T7318]  ret_from_fork_asm+0x1a/0x30
[   88.462135][ T7318] Modules linked in:
[   88.463692][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   88.468178][ T7318] Tainted: [B]=BAD_PAGE
[   88.469605][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.473234][ T7318] Call Trace:
[   88.474156][ T7318]  <TASK>
[   88.474965][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   88.476302][ T7318]  bad_page+0xb3/0x1f0
[   88.477564][ T7318]  ? __pfx_bad_page+0x10/0x10
[   88.479376][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   88.481090][ T7318]  free_unref_page+0x657/0xdc0
[   88.482754][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   88.484863][ T7318]  ? __phys_addr+0xc6/0x150
[   88.486451][ T7318]  skb_free_head+0xa0/0x1d0
[   88.488055][ T7318]  skb_release_data+0x560/0x730
[   88.489749][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   88.491869][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   88.493854][ T7318]  ? kernel_text_address+0x8d/0x100
[   88.495428][ T7318]  ? hlock_class+0x4e/0x130
[   88.496939][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   88.498560][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   88.500456][ T7318]  ? hlock_class+0x4e/0x130
[   88.501696][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   88.503064][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   88.504625][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   88.506448][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   88.508752][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   88.510364][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   88.512709][ T7318]  ? lock_acquire+0x2f/0xb0
[   88.513929][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   88.515730][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   88.517686][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   88.519529][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   88.520924][ T7318]  ? __build_skb_around+0x278/0x3b0
[   88.522347][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   88.523791][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   88.525455][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   88.527786][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   88.529316][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.530737][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   88.532438][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   88.534284][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   88.535894][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   88.537460][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   88.538876][ T7318]  ? 0xffffffffa0004340
[   88.540012][ T7318]  ? 0xffffffffa0004340
[   88.541110][ T7318]  ? 0xffffffffa0004340
[   88.542242][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   88.543827][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.545262][ T7318]  ? lock_acquire+0x2f/0xb0
[   88.546849][ T7318]  ? __fget_files+0x40/0x3f0
[   88.548210][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   88.550104][ T7318]  ? fput+0x30/0x390
[   88.551172][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   88.552490][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   88.554123][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.555528][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   88.556961][ T7318]  ? __schedule+0xe5d/0x5730
[   88.558222][ T7318]  ? do_futex+0x123/0x350
[   88.559387][ T7318]  ? __pfx_do_futex+0x10/0x10
[   88.560679][ T7318]  ? xfd_validate_state+0x5d/0x180
[   88.562132][ T7318]  ? rcu_is_watching+0x12/0xc0
[   88.563552][ T7318]  __x64_sys_bpf+0x78/0xc0
[   88.564844][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   88.566277][ T7318]  do_syscall_64+0xcd/0x250
[   88.567549][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.569323][ T7318] RIP: 0033:0x7f38a8f7e719
[   88.570860][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.576002][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   88.578193][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   88.580371][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   88.582494][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   88.584602][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   88.586690][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   88.589076][ T7318]  </TASK>
[   88.590007][ T7318] BUG: Bad page state in process syz.4.289  pfn:29efe
[   88.591929][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xc9 pfn:0x29efe
[   88.594370][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   88.596551][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   88.598890][ T7318] raw: 00000000000000c9 0000000000000001 00000000ffffffff 0000000000000000
[   88.601250][ T7318] page dumped because: page_pool leak
[   88.602685][ T7318] page_owner tracks the page as allocated
[   88.604287][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562231851, free_ts 81548327442
[   88.609171][ T7318]  post_alloc_hook+0x2d1/0x350
[   88.610687][ T7318]  get_page_from_freelist+0x101e/0x3070
[   88.612274][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   88.613724][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   88.615187][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   88.616906][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   88.618413][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   88.619753][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   88.621449][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.622995][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.624651][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.625868][ T7318]  __x64_sys_bpf+0x78/0xc0
[   88.627233][ T7318]  do_syscall_64+0xcd/0x250
[   88.628692][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.630545][ T7318] page last free pid 24 tgid 24 stack trace:
[   88.632201][ T7318]  free_unref_page+0x5f4/0xdc0
[   88.633496][ T7318]  __folio_put+0x30d/0x3d0
[   88.634723][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   88.636210][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   88.637558][ T7318]  rcu_core+0x79d/0x14d0
[   88.638741][ T7318]  handle_softirqs+0x213/0x8f0
[   88.640055][ T7318]  run_ksoftirqd+0x3a/0x60
[   88.641242][ T7318]  smpboot_thread_fn+0x661/0xa30
[   88.642681][ T7318]  kthread+0x2c1/0x3a0
[   88.643966][ T7318]  ret_from_fork+0x45/0x80
[   88.645201][ T7318]  ret_from_fork_asm+0x1a/0x30
[   88.646488][ T7318] Modules linked in:
[   88.647585][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   88.650691][ T7318] Tainted: [B]=BAD_PAGE
[   88.651835][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.654667][ T7318] Call Trace:
[   88.655586][ T7318]  <TASK>
[   88.656453][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   88.657786][ T7318]  bad_page+0xb3/0x1f0
[   88.658961][ T7318]  ? __pfx_bad_page+0x10/0x10
[   88.660311][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   88.661698][ T7318]  free_unref_page+0x657/0xdc0
[   88.663064][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   88.665003][ T7318]  ? __phys_addr+0xc6/0x150
[   88.666271][ T7318]  skb_free_head+0xa0/0x1d0
[   88.667560][ T7318]  skb_release_data+0x560/0x730
[   88.668898][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   88.670246][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   88.672029][ T7318]  ? kernel_text_address+0x8d/0x100
[   88.673410][ T7318]  ? hlock_class+0x4e/0x130
[   88.674639][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   88.675955][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   88.677815][ T7318]  ? hlock_class+0x4e/0x130
[   88.679041][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   88.680373][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   88.681740][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   88.683269][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   88.684953][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   88.686327][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   88.688018][ T7318]  ? lock_acquire+0x2f/0xb0
[   88.689205][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   88.690875][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   88.692620][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   88.694307][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   88.695738][ T7318]  ? __build_skb_around+0x278/0x3b0
[   88.697155][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   88.698605][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   88.700335][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   88.702104][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   88.703730][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.705303][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   88.707790][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   88.709576][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   88.711293][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   88.713057][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   88.714515][ T7318]  ? 0xffffffffa0004340
[   88.715728][ T7318]  ? 0xffffffffa0004340
[   88.716940][ T7318]  ? 0xffffffffa0004340
[   88.718093][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   88.719931][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.721632][ T7318]  ? lock_acquire+0x2f/0xb0
[   88.722945][ T7318]  ? __fget_files+0x40/0x3f0
[   88.724518][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   88.726238][ T7318]  ? fput+0x30/0x390
[   88.727635][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   88.729035][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   88.730721][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.732161][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   88.733571][ T7318]  ? __schedule+0xe5d/0x5730
[   88.735038][ T7318]  ? do_futex+0x123/0x350
[   88.736269][ T7318]  ? __pfx_do_futex+0x10/0x10
[   88.737530][ T7318]  ? xfd_validate_state+0x5d/0x180
[   88.738930][ T7318]  ? rcu_is_watching+0x12/0xc0
[   88.740272][ T7318]  __x64_sys_bpf+0x78/0xc0
[   88.741485][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   88.742910][ T7318]  do_syscall_64+0xcd/0x250
[   88.744317][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.745887][ T7318] RIP: 0033:0x7f38a8f7e719
[   88.747084][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.753307][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   88.755680][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   88.757884][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   88.760038][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   88.762132][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   88.764543][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   88.767212][ T7318]  </TASK>
[   88.768449][ T7318] BUG: Bad page state in process syz.4.289  pfn:30b57
[   88.770289][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xca pfn:0x30b57
[   88.772712][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   88.774702][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   88.777115][ T7318] raw: 00000000000000ca 0000000000000001 00000000ffffffff 0000000000000000
[   88.779687][ T7318] page dumped because: page_pool leak
[   88.781223][ T7318] page_owner tracks the page as allocated
[   88.782759][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562227152, free_ts 81548332878
[   88.787128][ T7318]  post_alloc_hook+0x2d1/0x350
[   88.788486][ T7318]  get_page_from_freelist+0x101e/0x3070
[   88.789963][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   88.791299][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   88.792855][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   88.794443][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   88.795881][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   88.797264][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   88.798960][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.800414][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.801865][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.803043][ T7318]  __x64_sys_bpf+0x78/0xc0
[   88.804224][ T7318]  do_syscall_64+0xcd/0x250
[   88.805448][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.807072][ T7318] page last free pid 24 tgid 24 stack trace:
[   88.808808][ T7318]  free_unref_page+0x5f4/0xdc0
[   88.810100][ T7318]  __folio_put+0x30d/0x3d0
[   88.811375][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   88.812937][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   88.814289][ T7318]  rcu_core+0x79d/0x14d0
[   88.815459][ T7318]  handle_softirqs+0x213/0x8f0
[   88.816740][ T7318]  run_ksoftirqd+0x3a/0x60
[   88.817967][ T7318]  smpboot_thread_fn+0x661/0xa30
[   88.819405][ T7318]  kthread+0x2c1/0x3a0
[   88.820534][ T7318]  ret_from_fork+0x45/0x80
[   88.821678][ T7318]  ret_from_fork_asm+0x1a/0x30
[   88.822907][ T7318] Modules linked in:
[   88.824001][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   88.828210][ T7318] Tainted: [B]=BAD_PAGE
[   88.829830][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   88.833926][ T7318] Call Trace:
[   88.834855][ T7318]  <TASK>
[   88.835705][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   88.837098][ T7318]  bad_page+0xb3/0x1f0
[   88.838731][ T7318]  ? __pfx_bad_page+0x10/0x10
[   88.840172][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   88.842009][ T7318]  free_unref_page+0x657/0xdc0
[   88.843810][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   88.845701][ T7318]  ? __phys_addr+0xc6/0x150
[   88.847411][ T7318]  skb_free_head+0xa0/0x1d0
[   88.849224][ T7318]  skb_release_data+0x560/0x730
[   88.851070][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   88.852854][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   88.855194][ T7318]  ? kernel_text_address+0x8d/0x100
[   88.856867][ T7318]  ? hlock_class+0x4e/0x130
[   88.858367][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   88.860164][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   88.863156][ T7318]  ? hlock_class+0x4e/0x130
[   88.864845][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   88.866416][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   88.867873][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   88.869583][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   88.871462][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   88.873088][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   88.875061][ T7318]  ? lock_acquire+0x2f/0xb0
[   88.876322][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   88.878057][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   88.879947][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   88.882320][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   88.883799][ T7318]  ? __build_skb_around+0x278/0x3b0
[   88.885395][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   88.886916][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   88.888888][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   88.890974][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   88.893214][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.895496][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   88.897696][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   88.900320][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   88.901907][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   88.903410][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   88.904832][ T7318]  ? 0xffffffffa0004340
[   88.905961][ T7318]  ? 0xffffffffa0004340
[   88.907070][ T7318]  ? 0xffffffffa0004340
[   88.908612][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   88.910625][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.912244][ T7318]  ? lock_acquire+0x2f/0xb0
[   88.913571][ T7318]  ? __fget_files+0x40/0x3f0
[   88.914816][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   88.916371][ T7318]  ? fput+0x30/0x390
[   88.917410][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   88.919029][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   88.921187][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.922734][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   88.924515][ T7318]  ? __schedule+0xe5d/0x5730
[   88.926184][ T7318]  ? do_futex+0x123/0x350
[   88.927906][ T7318]  ? __pfx_do_futex+0x10/0x10
[   88.929430][ T7318]  ? xfd_validate_state+0x5d/0x180
[   88.930811][ T7318]  ? rcu_is_watching+0x12/0xc0
[   88.932115][ T7318]  __x64_sys_bpf+0x78/0xc0
[   88.933674][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   88.935163][ T7318]  do_syscall_64+0xcd/0x250
[   88.936393][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.938016][ T7318] RIP: 0033:0x7f38a8f7e719
[   88.939750][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.945902][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   88.948271][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   88.950386][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   88.952756][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   88.955073][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   88.957765][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   88.960561][ T7318]  </TASK>
[   88.961551][ T7318] BUG: Bad page state in process syz.4.289  pfn:30b62
[   88.963368][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xcb pfn:0x30b62
[   88.965743][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   88.967627][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   88.970303][ T7318] raw: 00000000000000cb 0000000000000001 00000000ffffffff 0000000000000000
[   88.973145][ T7318] page dumped because: page_pool leak
[   88.974680][ T7318] page_owner tracks the page as allocated
[   88.976243][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562222831, free_ts 81548338035
[   88.980856][ T7318]  post_alloc_hook+0x2d1/0x350
[   88.982199][ T7318]  get_page_from_freelist+0x101e/0x3070
[   88.983852][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   88.985279][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   88.986776][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   88.988591][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   88.990265][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   88.991818][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   88.993728][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   88.995685][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   88.997192][ T7318]  __sys_bpf+0xfc6/0x49a0
[   88.998551][ T7318]  __x64_sys_bpf+0x78/0xc0
[   89.000031][ T7318]  do_syscall_64+0xcd/0x250
[   89.001422][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.003117][ T7318] page last free pid 24 tgid 24 stack trace:
[   89.004981][ T7318]  free_unref_page+0x5f4/0xdc0
[   89.006270][ T7318]  __folio_put+0x30d/0x3d0
[   89.007499][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   89.009078][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   89.010464][ T7318]  rcu_core+0x79d/0x14d0
[   89.011622][ T7318]  handle_softirqs+0x213/0x8f0
[   89.012884][ T7318]  run_ksoftirqd+0x3a/0x60
[   89.014464][ T7318]  smpboot_thread_fn+0x661/0xa30
[   89.016147][ T7318]  kthread+0x2c1/0x3a0
[   89.017439][ T7318]  ret_from_fork+0x45/0x80
[   89.019110][ T7318]  ret_from_fork_asm+0x1a/0x30
[   89.020639][ T7318] Modules linked in:
[   89.021752][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   89.025439][ T7318] Tainted: [B]=BAD_PAGE
[   89.026619][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.029790][ T7318] Call Trace:
[   89.030842][ T7318]  <TASK>
[   89.031819][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   89.034176][ T7318]  bad_page+0xb3/0x1f0
[   89.035577][ T7318]  ? __pfx_bad_page+0x10/0x10
[   89.037051][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   89.038530][ T7318]  free_unref_page+0x657/0xdc0
[   89.039998][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   89.042144][ T7318]  ? __phys_addr+0xc6/0x150
[   89.043476][ T7318]  skb_free_head+0xa0/0x1d0
[   89.045052][ T7318]  skb_release_data+0x560/0x730
[   89.046809][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   89.048638][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   89.051061][ T7318]  ? kernel_text_address+0x8d/0x100
[   89.053106][ T7318]  ? hlock_class+0x4e/0x130
[   89.054995][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   89.056681][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   89.059247][ T7318]  ? hlock_class+0x4e/0x130
[   89.060933][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   89.062310][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   89.063687][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   89.065220][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   89.066895][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   89.068598][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   89.070659][ T7318]  ? lock_acquire+0x2f/0xb0
[   89.072207][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   89.074245][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   89.076218][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   89.078305][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   89.080141][ T7318]  ? __build_skb_around+0x278/0x3b0
[   89.081975][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   89.083845][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   89.085769][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   89.087758][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   89.089789][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   89.091522][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   89.093456][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   89.095626][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   89.097447][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   89.099126][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   89.100741][ T7318]  ? 0xffffffffa0004340
[   89.101916][ T7318]  ? 0xffffffffa0004340
[   89.103131][ T7318]  ? 0xffffffffa0004340
[   89.104508][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   89.106176][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   89.107662][ T7318]  ? lock_acquire+0x2f/0xb0
[   89.108976][ T7318]  ? __fget_files+0x40/0x3f0
[   89.110412][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   89.112116][ T7318]  ? fput+0x30/0x390
[   89.113364][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   89.114952][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   89.116756][ T7318]  __sys_bpf+0xfc6/0x49a0
[   89.118327][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   89.120154][ T7318]  ? __schedule+0xe5d/0x5730
[   89.121676][ T7318]  ? do_futex+0x123/0x350
[   89.123618][ T7318]  ? __pfx_do_futex+0x10/0x10
[   89.125573][ T7318]  ? xfd_validate_state+0x5d/0x180
[   89.127524][ T7318]  ? rcu_is_watching+0x12/0xc0
[   89.129108][ T7318]  __x64_sys_bpf+0x78/0xc0
[   89.130471][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   89.132060][ T7318]  do_syscall_64+0xcd/0x250
[   89.133541][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.135294][ T7318] RIP: 0033:0x7f38a8f7e719
[   89.136531][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.142170][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   89.144712][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   89.146878][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   89.149516][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   89.152293][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   89.154851][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   89.158046][ T7318]  </TASK>
[   89.159289][ T7318] BUG: Bad page state in process syz.4.289  pfn:3194b
[   89.161538][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2b3 pfn:0x3194b
[   89.164272][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   89.166220][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   89.169007][ T7318] raw: 00000000000002b3 0000000000000001 00000000ffffffff 0000000000000000
[   89.171984][ T7318] page dumped because: page_pool leak
[   89.173956][ T7318] page_owner tracks the page as allocated
[   89.175782][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562218315, free_ts 81548343480
[   89.181081][ T7318]  post_alloc_hook+0x2d1/0x350
[   89.182582][ T7318]  get_page_from_freelist+0x101e/0x3070
[   89.184095][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   89.185581][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   89.187599][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   89.190080][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   89.192477][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   89.194118][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   89.196383][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   89.198077][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   89.199560][ T7318]  __sys_bpf+0xfc6/0x49a0
[   89.200827][ T7318]  __x64_sys_bpf+0x78/0xc0
[   89.202175][ T7318]  do_syscall_64+0xcd/0x250
[   89.203336][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.205087][ T7318] page last free pid 24 tgid 24 stack trace:
[   89.206886][ T7318]  free_unref_page+0x5f4/0xdc0
[   89.208283][ T7318]  __folio_put+0x30d/0x3d0
[   89.209574][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   89.211137][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   89.212707][ T7318]  rcu_core+0x79d/0x14d0
[   89.213994][ T7318]  handle_softirqs+0x213/0x8f0
[   89.215388][ T7318]  run_ksoftirqd+0x3a/0x60
[   89.216791][ T7318]  smpboot_thread_fn+0x661/0xa30
[   89.218468][ T7318]  kthread+0x2c1/0x3a0
[   89.219830][ T7318]  ret_from_fork+0x45/0x80
[   89.221631][ T7318]  ret_from_fork_asm+0x1a/0x30
[   89.223588][ T7318] Modules linked in:
[   89.225400][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   89.230323][ T7318] Tainted: [B]=BAD_PAGE
[   89.231893][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.235764][ T7318] Call Trace:
[   89.236733][ T7318]  <TASK>
[   89.237551][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   89.239337][ T7318]  bad_page+0xb3/0x1f0
[   89.240978][ T7318]  ? __pfx_bad_page+0x10/0x10
[   89.242610][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   89.243936][ T7318]  free_unref_page+0x657/0xdc0
[   89.245269][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   89.246989][ T7318]  ? __phys_addr+0xc6/0x150
[   89.248433][ T7318]  skb_free_head+0xa0/0x1d0
[   89.249798][ T7318]  skb_release_data+0x560/0x730
[   89.251226][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   89.252678][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   89.254496][ T7318]  ? kernel_text_address+0x8d/0x100
[   89.256367][ T7318]  ? hlock_class+0x4e/0x130
[   89.259182][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   89.262016][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   89.264493][ T7318]  ? hlock_class+0x4e/0x130
[   89.265720][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   89.267056][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   89.268732][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   89.271043][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   89.273228][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   89.274722][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   89.276516][ T7318]  ? lock_acquire+0x2f/0xb0
[   89.278166][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   89.280156][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   89.281792][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   89.283655][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   89.285042][ T7318]  ? __build_skb_around+0x278/0x3b0
[   89.286596][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   89.288099][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   89.289952][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   89.291763][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   89.293554][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   89.295170][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   89.297096][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   89.299072][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   89.300864][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   89.302743][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   89.304356][ T7318]  ? 0xffffffffa0004340
[   89.305534][ T7318]  ? 0xffffffffa0004340
[   89.306717][ T7318]  ? 0xffffffffa0004340
[   89.307923][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   89.310011][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   89.311553][ T7318]  ? lock_acquire+0x2f/0xb0
[   89.313013][ T7318]  ? __fget_files+0x40/0x3f0
[   89.314497][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   89.316134][ T7318]  ? fput+0x30/0x390
[   89.317234][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   89.318589][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   89.320291][ T7318]  __sys_bpf+0xfc6/0x49a0
[   89.321537][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   89.322985][ T7318]  ? __schedule+0xe5d/0x5730
[   89.324472][ T7318]  ? do_futex+0x123/0x350
[   89.325775][ T7318]  ? __pfx_do_futex+0x10/0x10
[   89.327149][ T7318]  ? xfd_validate_state+0x5d/0x180
[   89.328618][ T7318]  ? rcu_is_watching+0x12/0xc0
[   89.330001][ T7318]  __x64_sys_bpf+0x78/0xc0
[   89.331302][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   89.333344][ T7318]  do_syscall_64+0xcd/0x250
[   89.335063][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.337081][ T7318] RIP: 0033:0x7f38a8f7e719
[   89.338598][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.344952][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   89.347632][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   89.350185][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   89.352770][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   89.355125][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   89.357343][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   89.359556][ T7318]  </TASK>
[   89.360507][ T7318] BUG: Bad page state in process syz.4.289  pfn:31939
[   89.362369][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2b2 pfn:0x31939
[   89.365187][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   89.367272][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   89.369755][ T7318] raw: 00000000000002b2 0000000000000001 00000000ffffffff 0000000000000000
[   89.372131][ T7318] page dumped because: page_pool leak
[   89.373686][ T7318] page_owner tracks the page as allocated
[   89.375964][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562212862, free_ts 81548348530
[   89.381849][ T7318]  post_alloc_hook+0x2d1/0x350
[   89.383394][ T7318]  get_page_from_freelist+0x101e/0x3070
[   89.384989][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   89.386472][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   89.388129][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   89.389891][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   89.391394][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   89.392894][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   89.394882][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   89.396602][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   89.398336][ T7318]  __sys_bpf+0xfc6/0x49a0
[   89.399746][ T7318]  __x64_sys_bpf+0x78/0xc0
[   89.401099][ T7318]  do_syscall_64+0xcd/0x250
[   89.402465][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.404303][ T7318] page last free pid 24 tgid 24 stack trace:
[   89.406018][ T7318]  free_unref_page+0x5f4/0xdc0
[   89.407348][ T7318]  __folio_put+0x30d/0x3d0
[   89.408892][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   89.410471][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   89.411916][ T7318]  rcu_core+0x79d/0x14d0
[   89.413509][ T7318]  handle_softirqs+0x213/0x8f0
[   89.415017][ T7318]  run_ksoftirqd+0x3a/0x60
[   89.416369][ T7318]  smpboot_thread_fn+0x661/0xa30
[   89.417839][ T7318]  kthread+0x2c1/0x3a0
[   89.419364][ T7318]  ret_from_fork+0x45/0x80
[   89.420623][ T7318]  ret_from_fork_asm+0x1a/0x30
[   89.421980][ T7318] Modules linked in:
[   89.423177][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   89.426685][ T7318] Tainted: [B]=BAD_PAGE
[   89.427833][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.430852][ T7318] Call Trace:
[   89.431784][ T7318]  <TASK>
[   89.432604][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   89.434275][ T7318]  bad_page+0xb3/0x1f0
[   89.436212][ T7318]  ? __pfx_bad_page+0x10/0x10
[   89.439011][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   89.440996][ T7318]  free_unref_page+0x657/0xdc0
[   89.442749][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   89.444945][ T7318]  ? __phys_addr+0xc6/0x150
[   89.446764][ T7318]  skb_free_head+0xa0/0x1d0
[   89.448718][ T7318]  skb_release_data+0x560/0x730
[   89.450768][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   89.452869][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   89.455845][ T7318]  ? kernel_text_address+0x8d/0x100
[   89.457898][ T7318]  ? hlock_class+0x4e/0x130
[   89.459320][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   89.460769][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   89.462955][ T7318]  ? hlock_class+0x4e/0x130
[   89.464636][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   89.466426][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   89.468308][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   89.470438][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   89.472664][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   89.474621][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   89.477012][ T7318]  ? lock_acquire+0x2f/0xb0
[   89.478600][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   89.480376][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   89.482484][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   89.484921][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   89.486768][ T7318]  ? __build_skb_around+0x278/0x3b0
[   89.488789][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   89.490700][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   89.493359][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   89.496246][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   89.498586][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   89.500657][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   89.502546][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   89.504827][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   89.506740][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   89.508744][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   89.510116][ T7318]  ? 0xffffffffa0004340
[   89.511220][ T7318]  ? 0xffffffffa0004340
[   89.512449][ T7318]  ? 0xffffffffa0004340
[   89.513639][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   89.516102][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   89.517748][ T7318]  ? lock_acquire+0x2f/0xb0
[   89.519326][ T7318]  ? __fget_files+0x40/0x3f0
[   89.520612][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   89.522164][ T7318]  ? fput+0x30/0x390
[   89.523526][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   89.525018][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   89.526845][ T7318]  __sys_bpf+0xfc6/0x49a0
[   89.528161][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   89.529762][ T7318]  ? __schedule+0xe5d/0x5730
[   89.531059][ T7318]  ? do_futex+0x123/0x350
[   89.532325][ T7318]  ? __pfx_do_futex+0x10/0x10
[   89.533475][ T7318]  ? xfd_validate_state+0x5d/0x180
[   89.534700][ T7318]  ? rcu_is_watching+0x12/0xc0
[   89.536028][ T7318]  __x64_sys_bpf+0x78/0xc0
[   89.537413][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   89.539311][ T7318]  do_syscall_64+0xcd/0x250
[   89.540891][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.542653][ T7318] RIP: 0033:0x7f38a8f7e719
[   89.544044][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.550087][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   89.552797][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   89.555536][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   89.557932][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   89.560496][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   89.562670][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   89.565501][ T7318]  </TASK>
[   89.566933][ T7318] BUG: Bad page state in process syz.4.289  pfn:21aa2
[   89.569381][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2b1 pfn:0x21aa2
[   89.572939][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   89.575751][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   89.579220][ T7318] raw: 00000000000002b1 0000000000000001 00000000ffffffff 0000000000000000
[   89.582858][ T7318] page dumped because: page_pool leak
[   89.585183][ T7318] page_owner tracks the page as allocated
[   89.587312][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562208382, free_ts 81548353539
[   89.593482][ T7318]  post_alloc_hook+0x2d1/0x350
[   89.595683][ T7318]  get_page_from_freelist+0x101e/0x3070
[   89.597966][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   89.600335][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   89.602631][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   89.604879][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   89.606857][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   89.609054][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   89.611366][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   89.613577][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   89.616029][ T7318]  __sys_bpf+0xfc6/0x49a0
[   89.617810][ T7318]  __x64_sys_bpf+0x78/0xc0
[   89.619871][ T7318]  do_syscall_64+0xcd/0x250
[   89.621684][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.623510][ T7318] page last free pid 24 tgid 24 stack trace:
[   89.625439][ T7318]  free_unref_page+0x5f4/0xdc0
[   89.626688][ T7318]  __folio_put+0x30d/0x3d0
[   89.627919][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   89.629965][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   89.631881][ T7318]  rcu_core+0x79d/0x14d0
[   89.633663][ T7318]  handle_softirqs+0x213/0x8f0
[   89.635654][ T7318]  run_ksoftirqd+0x3a/0x60
[   89.637349][ T7318]  smpboot_thread_fn+0x661/0xa30
[   89.639424][ T7318]  kthread+0x2c1/0x3a0
[   89.641036][ T7318]  ret_from_fork+0x45/0x80
[   89.642802][ T7318]  ret_from_fork_asm+0x1a/0x30
[   89.644679][ T7318] Modules linked in:
[   89.646125][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   89.650127][ T7318] Tainted: [B]=BAD_PAGE
[   89.651263][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.654487][ T7318] Call Trace:
[   89.655465][ T7318]  <TASK>
[   89.656373][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   89.657894][ T7318]  bad_page+0xb3/0x1f0
[   89.659249][ T7318]  ? __pfx_bad_page+0x10/0x10
[   89.660681][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   89.662116][ T7318]  free_unref_page+0x657/0xdc0
[   89.663777][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   89.665456][ T7318]  ? __phys_addr+0xc6/0x150
[   89.666774][ T7318]  skb_free_head+0xa0/0x1d0
[   89.668401][ T7318]  skb_release_data+0x560/0x730
[   89.670251][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   89.672136][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   89.674181][ T7318]  ? kernel_text_address+0x8d/0x100
[   89.675551][ T7318]  ? hlock_class+0x4e/0x130
[   89.676736][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   89.678114][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   89.680133][ T7318]  ? hlock_class+0x4e/0x130
[   89.681660][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   89.683009][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   89.684477][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   89.686865][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   89.689405][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   89.690901][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   89.692691][ T7318]  ? lock_acquire+0x2f/0xb0
[   89.693941][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   89.695608][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   89.697363][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   89.699979][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   89.701824][ T7318]  ? __build_skb_around+0x278/0x3b0
[   89.704424][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   89.705979][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   89.707841][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   89.710133][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   89.711776][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   89.713537][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   89.715466][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   89.717377][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   89.718968][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   89.720549][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   89.721956][ T7318]  ? 0xffffffffa0004340
[   89.723088][ T7318]  ? 0xffffffffa0004340
[   89.724568][ T7318]  ? 0xffffffffa0004340
[   89.725703][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   89.727876][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   89.729687][ T7318]  ? lock_acquire+0x2f/0xb0
[   89.731032][ T7318]  ? __fget_files+0x40/0x3f0
[   89.732279][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   89.733953][ T7318]  ? fput+0x30/0x390
[   89.735012][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   89.736315][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   89.738154][ T7318]  __sys_bpf+0xfc6/0x49a0
[   89.739731][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   89.741419][ T7318]  ? __schedule+0xe5d/0x5730
[   89.743196][ T7318]  ? do_futex+0x123/0x350
[   89.745015][ T7318]  ? __pfx_do_futex+0x10/0x10
[   89.747185][ T7318]  ? xfd_validate_state+0x5d/0x180
[   89.749584][ T7318]  ? rcu_is_watching+0x12/0xc0
[   89.751790][ T7318]  __x64_sys_bpf+0x78/0xc0
[   89.753735][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   89.755447][ T7318]  do_syscall_64+0xcd/0x250
[   89.757099][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.759179][ T7318] RIP: 0033:0x7f38a8f7e719
[   89.760679][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.767008][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   89.770068][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   89.772566][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   89.774815][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   89.777119][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   89.779521][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   89.781645][ T7318]  </TASK>
[   89.782570][ T7318] BUG: Bad page state in process syz.4.289  pfn:31f5d
[   89.784375][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2ac pfn:0x31f5d
[   89.786819][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   89.789263][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   89.791567][ T7318] raw: 00000000000002ac 0000000000000001 00000000ffffffff 0000000000000000
[   89.793924][ T7318] page dumped because: page_pool leak
[   89.795381][ T7318] page_owner tracks the page as allocated
[   89.796971][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562204119, free_ts 81548358512
[   89.801558][ T7318]  post_alloc_hook+0x2d1/0x350
[   89.802937][ T7318]  get_page_from_freelist+0x101e/0x3070
[   89.804443][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   89.806082][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   89.807814][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   89.809762][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   89.811222][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   89.813016][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   89.814642][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   89.815955][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   89.817531][ T7318]  __sys_bpf+0xfc6/0x49a0
[   89.818938][ T7318]  __x64_sys_bpf+0x78/0xc0
[   89.820514][ T7318]  do_syscall_64+0xcd/0x250
[   89.821811][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.823719][ T7318] page last free pid 24 tgid 24 stack trace:
[   89.825586][ T7318]  free_unref_page+0x5f4/0xdc0
[   89.827114][ T7318]  __folio_put+0x30d/0x3d0
[   89.828521][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   89.830271][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   89.831939][ T7318]  rcu_core+0x79d/0x14d0
[   89.833361][ T7318]  handle_softirqs+0x213/0x8f0
[   89.834679][ T7318]  run_ksoftirqd+0x3a/0x60
[   89.836644][ T7318]  smpboot_thread_fn+0x661/0xa30
[   89.837950][ T7318]  kthread+0x2c1/0x3a0
[   89.839103][ T7318]  ret_from_fork+0x45/0x80
[   89.840488][ T7318]  ret_from_fork_asm+0x1a/0x30
[   89.841971][ T7318] Modules linked in:
[   89.843265][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   89.846797][ T7318] Tainted: [B]=BAD_PAGE
[   89.847913][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   89.850814][ T7318] Call Trace:
[   89.851766][ T7318]  <TASK>
[   89.852875][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   89.854236][ T7318]  bad_page+0xb3/0x1f0
[   89.855380][ T7318]  ? __pfx_bad_page+0x10/0x10
[   89.856687][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   89.858142][ T7318]  free_unref_page+0x657/0xdc0
[   89.860083][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   89.861887][ T7318]  ? __phys_addr+0xc6/0x150
[   89.863254][ T7318]  skb_free_head+0xa0/0x1d0
[   89.864725][ T7318]  skb_release_data+0x560/0x730
[   89.866261][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   89.868108][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   89.870423][ T7318]  ? kernel_text_address+0x8d/0x100
[   89.871816][ T7318]  ? hlock_class+0x4e/0x130
[   89.873102][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   89.874495][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   89.876766][ T7318]  ? hlock_class+0x4e/0x130
[   89.878014][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   89.879345][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   89.881009][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   89.882921][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   89.884701][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   89.886056][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   89.887818][ T7318]  ? lock_acquire+0x2f/0xb0
[   89.889001][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   89.890653][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   89.892558][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   89.894399][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   89.895785][ T7318]  ? __build_skb_around+0x278/0x3b0
[   89.897145][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   89.898524][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   89.900163][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   89.901912][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   89.903514][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   89.904986][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   89.906551][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   89.908137][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   89.909744][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   89.911278][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   89.912949][ T7318]  ? 0xffffffffa0004340
[   89.914395][ T7318]  ? 0xffffffffa0004340
[   89.915552][ T7318]  ? 0xffffffffa0004340
[   89.916688][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   89.918404][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   89.920213][ T7318]  ? lock_acquire+0x2f/0xb0
[   89.921747][ T7318]  ? __fget_files+0x40/0x3f0
[   89.923313][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   89.925186][ T7318]  ? fput+0x30/0x390
[   89.926290][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   89.927721][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   89.929462][ T7318]  __sys_bpf+0xfc6/0x49a0
[   89.930749][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   89.932144][ T7318]  ? __schedule+0xe5d/0x5730
[   89.933777][ T7318]  ? do_futex+0x123/0x350
[   89.935344][ T7318]  ? __pfx_do_futex+0x10/0x10
[   89.937202][ T7318]  ? xfd_validate_state+0x5d/0x180
[   89.939066][ T7318]  ? rcu_is_watching+0x12/0xc0
[   89.940831][ T7318]  __x64_sys_bpf+0x78/0xc0
[   89.942668][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   89.944610][ T7318]  do_syscall_64+0xcd/0x250
[   89.946281][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.948327][ T7318] RIP: 0033:0x7f38a8f7e719
[   89.949915][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.957758][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   89.961436][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   89.964545][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   89.967988][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   89.970261][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   89.973182][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   89.976208][ T7318]  </TASK>
[   89.977471][ T7318] BUG: Bad page state in process syz.4.289  pfn:3206d
[   89.980203][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2ab pfn:0x3206d
[   89.983461][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   89.985685][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   89.988234][ T7318] raw: 00000000000002ab 0000000000000001 00000000ffffffff 0000000000000000
[   89.990497][ T7318] page dumped because: page_pool leak
[   89.992060][ T7318] page_owner tracks the page as allocated
[   89.993712][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562199940, free_ts 81548363501
[   89.999369][ T7318]  post_alloc_hook+0x2d1/0x350
[   90.000685][ T7318]  get_page_from_freelist+0x101e/0x3070
[   90.002328][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   90.003747][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   90.005191][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   90.006765][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   90.008432][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   90.009888][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   90.011489][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.012927][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.014277][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.015562][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.016757][ T7318]  do_syscall_64+0xcd/0x250
[   90.018224][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.020334][ T7318] page last free pid 24 tgid 24 stack trace:
[   90.022164][ T7318]  free_unref_page+0x5f4/0xdc0
[   90.023638][ T7318]  __folio_put+0x30d/0x3d0
[   90.024991][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   90.026513][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   90.028080][ T7318]  rcu_core+0x79d/0x14d0
[   90.029275][ T7318]  handle_softirqs+0x213/0x8f0
[   90.030562][ T7318]  run_ksoftirqd+0x3a/0x60
[   90.031801][ T7318]  smpboot_thread_fn+0x661/0xa30
[   90.033284][ T7318]  kthread+0x2c1/0x3a0
[   90.034343][ T7318]  ret_from_fork+0x45/0x80
[   90.035766][ T7318]  ret_from_fork_asm+0x1a/0x30
[   90.037075][ T7318] Modules linked in:
[   90.038281][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   90.041698][ T7318] Tainted: [B]=BAD_PAGE
[   90.042779][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.045744][ T7318] Call Trace:
[   90.046811][ T7318]  <TASK>
[   90.047661][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   90.048955][ T7318]  bad_page+0xb3/0x1f0
[   90.050216][ T7318]  ? __pfx_bad_page+0x10/0x10
[   90.051551][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   90.052904][ T7318]  free_unref_page+0x657/0xdc0
[   90.054199][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   90.056819][ T7318]  ? __phys_addr+0xc6/0x150
[   90.058522][ T7318]  skb_free_head+0xa0/0x1d0
[   90.059910][ T7318]  skb_release_data+0x560/0x730
[   90.061282][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   90.062650][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   90.064607][ T7318]  ? kernel_text_address+0x8d/0x100
[   90.066504][ T7318]  ? hlock_class+0x4e/0x130
[   90.067817][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   90.069208][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   90.071254][ T7318]  ? hlock_class+0x4e/0x130
[   90.072800][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   90.074353][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   90.076315][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   90.078689][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   90.080445][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   90.081959][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   90.083849][ T7318]  ? lock_acquire+0x2f/0xb0
[   90.085204][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   90.086896][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   90.088622][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   90.090580][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   90.092337][ T7318]  ? __build_skb_around+0x278/0x3b0
[   90.093942][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   90.095803][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   90.097520][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   90.099550][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   90.101100][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.102625][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   90.104207][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   90.105805][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   90.107364][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   90.108947][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   90.110329][ T7318]  ? 0xffffffffa0004340
[   90.111435][ T7318]  ? 0xffffffffa0004340
[   90.113713][ T7318]  ? 0xffffffffa0004340
[   90.115056][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   90.116855][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.118312][ T7318]  ? lock_acquire+0x2f/0xb0
[   90.119549][ T7318]  ? __fget_files+0x40/0x3f0
[   90.120858][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   90.122487][ T7318]  ? fput+0x30/0x390
[   90.123573][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   90.124853][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   90.126387][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.127550][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   90.128856][ T7318]  ? __schedule+0xe5d/0x5730
[   90.130072][ T7318]  ? do_futex+0x123/0x350
[   90.131310][ T7318]  ? __pfx_do_futex+0x10/0x10
[   90.132847][ T7318]  ? xfd_validate_state+0x5d/0x180
[   90.134227][ T7318]  ? rcu_is_watching+0x12/0xc0
[   90.135541][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.136907][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   90.138603][ T7318]  do_syscall_64+0xcd/0x250
[   90.140213][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.142101][ T7318] RIP: 0033:0x7f38a8f7e719
[   90.143277][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.148322][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   90.150547][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   90.152792][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   90.155467][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   90.157649][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.159804][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   90.161908][ T7318]  </TASK>
[   90.162957][ T7318] BUG: Bad page state in process syz.4.289  pfn:44e3c
[   90.164811][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x2a0 pfn:0x44e3c
[   90.167166][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   90.169150][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   90.171409][ T7318] raw: 00000000000002a0 0000000000000001 00000000ffffffff 0000000000000000
[   90.174392][ T7318] page dumped because: page_pool leak
[   90.175851][ T7318] page_owner tracks the page as allocated
[   90.177373][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562195095, free_ts 81548368649
[   90.182002][ T7318]  post_alloc_hook+0x2d1/0x350
[   90.183321][ T7318]  get_page_from_freelist+0x101e/0x3070
[   90.184943][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   90.186504][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   90.188358][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   90.190236][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   90.191972][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   90.193400][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   90.195089][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.196807][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.198358][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.199597][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.200728][ T7318]  do_syscall_64+0xcd/0x250
[   90.201895][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.203471][ T7318] page last free pid 24 tgid 24 stack trace:
[   90.205033][ T7318]  free_unref_page+0x5f4/0xdc0
[   90.206349][ T7318]  __folio_put+0x30d/0x3d0
[   90.207587][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   90.209371][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   90.210740][ T7318]  rcu_core+0x79d/0x14d0
[   90.211939][ T7318]  handle_softirqs+0x213/0x8f0
[   90.214090][ T7318]  run_ksoftirqd+0x3a/0x60
[   90.216074][ T7318]  smpboot_thread_fn+0x661/0xa30
[   90.218123][ T7318]  kthread+0x2c1/0x3a0
[   90.219833][ T7318]  ret_from_fork+0x45/0x80
[   90.221514][ T7318]  ret_from_fork_asm+0x1a/0x30
[   90.223408][ T7318] Modules linked in:
[   90.224933][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   90.229020][ T7318] Tainted: [B]=BAD_PAGE
[   90.230603][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.234365][ T7318] Call Trace:
[   90.235664][ T7318]  <TASK>
[   90.236709][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   90.238432][ T7318]  bad_page+0xb3/0x1f0
[   90.239935][ T7318]  ? __pfx_bad_page+0x10/0x10
[   90.241638][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   90.243364][ T7318]  free_unref_page+0x657/0xdc0
[   90.245081][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   90.247162][ T7318]  ? __phys_addr+0xc6/0x150
[   90.248747][ T7318]  skb_free_head+0xa0/0x1d0
[   90.250345][ T7318]  skb_release_data+0x560/0x730
[   90.252062][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   90.253857][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   90.256153][ T7318]  ? kernel_text_address+0x8d/0x100
[   90.257883][ T7318]  ? hlock_class+0x4e/0x130
[   90.259725][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   90.261653][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   90.264470][ T7318]  ? hlock_class+0x4e/0x130
[   90.265745][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   90.267048][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   90.268652][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   90.270815][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   90.273071][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   90.275009][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   90.277279][ T7318]  ? lock_acquire+0x2f/0xb0
[   90.279163][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   90.281115][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   90.283124][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   90.285213][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   90.286770][ T7318]  ? __build_skb_around+0x278/0x3b0
[   90.288150][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   90.289595][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   90.291256][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   90.293976][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   90.295527][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.297064][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   90.298706][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   90.300434][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   90.302199][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   90.303986][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   90.305552][ T7318]  ? 0xffffffffa0004340
[   90.306820][ T7318]  ? 0xffffffffa0004340
[   90.308175][ T7318]  ? 0xffffffffa0004340
[   90.309539][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   90.311257][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.312797][ T7318]  ? lock_acquire+0x2f/0xb0
[   90.314043][ T7318]  ? __fget_files+0x40/0x3f0
[   90.315339][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   90.317453][ T7318]  ? fput+0x30/0x390
[   90.318847][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   90.320338][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   90.322416][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.323802][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   90.325137][ T7318]  ? __schedule+0xe5d/0x5730
[   90.326660][ T7318]  ? do_futex+0x123/0x350
[   90.327988][ T7318]  ? __pfx_do_futex+0x10/0x10
[   90.329612][ T7318]  ? xfd_validate_state+0x5d/0x180
[   90.331238][ T7318]  ? rcu_is_watching+0x12/0xc0
[   90.333077][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.334315][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   90.335730][ T7318]  do_syscall_64+0xcd/0x250
[   90.337057][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.338621][ T7318] RIP: 0033:0x7f38a8f7e719
[   90.339841][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.345095][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   90.347379][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   90.349470][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   90.351621][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   90.354459][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.356980][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   90.359301][ T7318]  </TASK>
[   90.360327][ T7318] BUG: Bad page state in process syz.4.289  pfn:318f4
[   90.362364][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x29f pfn:0x318f4
[   90.364854][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   90.366954][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   90.369420][ T7318] raw: 000000000000029f 0000000000000001 00000000ffffffff 0000000000000000
[   90.371820][ T7318] page dumped because: page_pool leak
[   90.373874][ T7318] page_owner tracks the page as allocated
[   90.375818][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562190461, free_ts 81548373712
[   90.381483][ T7318]  post_alloc_hook+0x2d1/0x350
[   90.382797][ T7318]  get_page_from_freelist+0x101e/0x3070
[   90.384240][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   90.385625][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   90.387077][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   90.388770][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   90.390187][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   90.391620][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   90.393272][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.394880][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.396476][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.397875][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.399499][ T7318]  do_syscall_64+0xcd/0x250
[   90.401018][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.402930][ T7318] page last free pid 24 tgid 24 stack trace:
[   90.405174][ T7318]  free_unref_page+0x5f4/0xdc0
[   90.407185][ T7318]  __folio_put+0x30d/0x3d0
[   90.408944][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   90.410984][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   90.413021][ T7318]  rcu_core+0x79d/0x14d0
[   90.414879][ T7318]  handle_softirqs+0x213/0x8f0
[   90.417313][ T7318]  run_ksoftirqd+0x3a/0x60
[   90.419405][ T7318]  smpboot_thread_fn+0x661/0xa30
[   90.421592][ T7318]  kthread+0x2c1/0x3a0
[   90.423146][ T7318]  ret_from_fork+0x45/0x80
[   90.424797][ T7318]  ret_from_fork_asm+0x1a/0x30
[   90.426166][ T7318] Modules linked in:
[   90.427283][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   90.430553][ T7318] Tainted: [B]=BAD_PAGE
[   90.431783][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.434669][ T7318] Call Trace:
[   90.435659][ T7318]  <TASK>
[   90.436452][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   90.437754][ T7318]  bad_page+0xb3/0x1f0
[   90.438874][ T7318]  ? __pfx_bad_page+0x10/0x10
[   90.440303][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   90.441737][ T7318]  free_unref_page+0x657/0xdc0
[   90.443205][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   90.445005][ T7318]  ? __phys_addr+0xc6/0x150
[   90.446453][ T7318]  skb_free_head+0xa0/0x1d0
[   90.447897][ T7318]  skb_release_data+0x560/0x730
[   90.449609][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   90.451340][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   90.453628][ T7318]  ? kernel_text_address+0x8d/0x100
[   90.455394][ T7318]  ? hlock_class+0x4e/0x130
[   90.456622][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   90.457962][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   90.459882][ T7318]  ? hlock_class+0x4e/0x130
[   90.461100][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   90.462638][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   90.464100][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   90.465824][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   90.467580][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   90.469009][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   90.470709][ T7318]  ? lock_acquire+0x2f/0xb0
[   90.472027][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   90.474163][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   90.476576][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   90.478807][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   90.480853][ T7318]  ? __build_skb_around+0x278/0x3b0
[   90.482648][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   90.484236][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   90.486093][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   90.487913][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   90.489415][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.490829][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   90.492439][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   90.494010][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   90.495623][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   90.497210][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   90.498630][ T7318]  ? 0xffffffffa0004340
[   90.499883][ T7318]  ? 0xffffffffa0004340
[   90.501642][ T7318]  ? 0xffffffffa0004340
[   90.502965][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   90.504561][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.506126][ T7318]  ? lock_acquire+0x2f/0xb0
[   90.507299][ T7318]  ? __fget_files+0x40/0x3f0
[   90.508522][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   90.510152][ T7318]  ? fput+0x30/0x390
[   90.511254][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   90.512661][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   90.514265][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.515830][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   90.517465][ T7318]  ? __schedule+0xe5d/0x5730
[   90.518931][ T7318]  ? do_futex+0x123/0x350
[   90.520468][ T7318]  ? __pfx_do_futex+0x10/0x10
[   90.522188][ T7318]  ? xfd_validate_state+0x5d/0x180
[   90.524426][ T7318]  ? rcu_is_watching+0x12/0xc0
[   90.526285][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.527781][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   90.529461][ T7318]  do_syscall_64+0xcd/0x250
[   90.530904][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.532984][ T7318] RIP: 0033:0x7f38a8f7e719
[   90.534677][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.542090][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   90.545335][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   90.548246][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   90.551209][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   90.554315][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.557485][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   90.560444][ T7318]  </TASK>
[   90.561758][ T7318] BUG: Bad page state in process syz.4.289  pfn:320bf
[   90.564081][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x180 pfn:0x320bf
[   90.567375][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   90.570144][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   90.573081][ T7318] raw: 0000000000000180 0000000000000001 00000000ffffffff 0000000000000000
[   90.575326][ T7318] page dumped because: page_pool leak
[   90.576781][ T7318] page_owner tracks the page as allocated
[   90.578458][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562186112, free_ts 81548378700
[   90.582884][ T7318]  post_alloc_hook+0x2d1/0x350
[   90.584165][ T7318]  get_page_from_freelist+0x101e/0x3070
[   90.585814][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   90.587324][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   90.588940][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   90.590831][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   90.592407][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   90.593969][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   90.595851][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.597307][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.598850][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.600049][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.601533][ T7318]  do_syscall_64+0xcd/0x250
[   90.602832][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.604383][ T7318] page last free pid 24 tgid 24 stack trace:
[   90.605967][ T7318]  free_unref_page+0x5f4/0xdc0
[   90.607257][ T7318]  __folio_put+0x30d/0x3d0
[   90.608537][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   90.609979][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   90.611327][ T7318]  rcu_core+0x79d/0x14d0
[   90.612488][ T7318]  handle_softirqs+0x213/0x8f0
[   90.613771][ T7318]  run_ksoftirqd+0x3a/0x60
[   90.614943][ T7318]  smpboot_thread_fn+0x661/0xa30
[   90.616271][ T7318]  kthread+0x2c1/0x3a0
[   90.617347][ T7318]  ret_from_fork+0x45/0x80
[   90.618623][ T7318]  ret_from_fork_asm+0x1a/0x30
[   90.619878][ T7318] Modules linked in:
[   90.620940][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   90.624661][ T7318] Tainted: [B]=BAD_PAGE
[   90.625830][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.629057][ T7318] Call Trace:
[   90.630167][ T7318]  <TASK>
[   90.631056][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   90.632342][ T7318]  bad_page+0xb3/0x1f0
[   90.633666][ T7318]  ? __pfx_bad_page+0x10/0x10
[   90.634982][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   90.636379][ T7318]  free_unref_page+0x657/0xdc0
[   90.637731][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   90.639627][ T7318]  ? __phys_addr+0xc6/0x150
[   90.641029][ T7318]  skb_free_head+0xa0/0x1d0
[   90.642488][ T7318]  skb_release_data+0x560/0x730
[   90.644381][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   90.645862][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   90.647810][ T7318]  ? kernel_text_address+0x8d/0x100
[   90.649257][ T7318]  ? hlock_class+0x4e/0x130
[   90.650520][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   90.651885][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   90.653947][ T7318]  ? hlock_class+0x4e/0x130
[   90.655159][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   90.656459][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   90.657832][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   90.659493][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   90.661206][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   90.662661][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   90.664256][ T7318]  ? lock_acquire+0x2f/0xb0
[   90.665445][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   90.667303][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   90.669071][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   90.671808][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   90.673372][ T7318]  ? __build_skb_around+0x278/0x3b0
[   90.674848][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   90.676296][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   90.678121][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   90.680617][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   90.682270][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.683907][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   90.685845][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   90.687488][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   90.689101][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   90.690726][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   90.692241][ T7318]  ? 0xffffffffa0004340
[   90.693600][ T7318]  ? 0xffffffffa0004340
[   90.694846][ T7318]  ? 0xffffffffa0004340
[   90.696136][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   90.697990][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.699723][ T7318]  ? lock_acquire+0x2f/0xb0
[   90.701163][ T7318]  ? __fget_files+0x40/0x3f0
[   90.702498][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   90.704174][ T7318]  ? fput+0x30/0x390
[   90.705307][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   90.706612][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   90.708197][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.709480][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   90.710745][ T7318]  ? __schedule+0xe5d/0x5730
[   90.711962][ T7318]  ? do_futex+0x123/0x350
[   90.713105][ T7318]  ? __pfx_do_futex+0x10/0x10
[   90.714353][ T7318]  ? xfd_validate_state+0x5d/0x180
[   90.715710][ T7318]  ? rcu_is_watching+0x12/0xc0
[   90.717010][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.718215][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   90.719620][ T7318]  do_syscall_64+0xcd/0x250
[   90.720813][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.722422][ T7318] RIP: 0033:0x7f38a8f7e719
[   90.723610][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.728687][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   90.731012][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   90.733153][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   90.735200][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   90.737504][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.739661][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   90.741836][ T7318]  </TASK>
[   90.743171][ T7318] BUG: Bad page state in process syz.4.289  pfn:260e2
[   90.745130][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x16e pfn:0x260e2
[   90.747524][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   90.749820][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   90.752324][ T7318] raw: 000000000000016e 0000000000000001 00000000ffffffff 0000000000000000
[   90.754834][ T7318] page dumped because: page_pool leak
[   90.756376][ T7318] page_owner tracks the page as allocated
[   90.757950][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562181662, free_ts 81548384200
[   90.762738][ T7318]  post_alloc_hook+0x2d1/0x350
[   90.764152][ T7318]  get_page_from_freelist+0x101e/0x3070
[   90.765959][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   90.767566][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   90.769306][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   90.770947][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   90.772360][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   90.773705][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   90.775517][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.777077][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.778730][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.779984][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.781355][ T7318]  do_syscall_64+0xcd/0x250
[   90.782823][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.785032][ T7318] page last free pid 24 tgid 24 stack trace:
[   90.786881][ T7318]  free_unref_page+0x5f4/0xdc0
[   90.788530][ T7318]  __folio_put+0x30d/0x3d0
[   90.790174][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   90.792207][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   90.793799][ T7318]  rcu_core+0x79d/0x14d0
[   90.794989][ T7318]  handle_softirqs+0x213/0x8f0
[   90.796296][ T7318]  run_ksoftirqd+0x3a/0x60
[   90.797519][ T7318]  smpboot_thread_fn+0x661/0xa30
[   90.798977][ T7318]  kthread+0x2c1/0x3a0
[   90.800118][ T7318]  ret_from_fork+0x45/0x80
[   90.801331][ T7318]  ret_from_fork_asm+0x1a/0x30
[   90.802849][ T7318] Modules linked in:
[   90.803934][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   90.807488][ T7318] Tainted: [B]=BAD_PAGE
[   90.809170][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.812285][ T7318] Call Trace:
[   90.813251][ T7318]  <TASK>
[   90.814118][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   90.815411][ T7318]  bad_page+0xb3/0x1f0
[   90.816497][ T7318]  ? __pfx_bad_page+0x10/0x10
[   90.817734][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   90.819042][ T7318]  free_unref_page+0x657/0xdc0
[   90.820304][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   90.821881][ T7318]  ? __phys_addr+0xc6/0x150
[   90.824561][ T7318]  skb_free_head+0xa0/0x1d0
[   90.825816][ T7318]  skb_release_data+0x560/0x730
[   90.827113][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   90.828916][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   90.830828][ T7318]  ? kernel_text_address+0x8d/0x100
[   90.832179][ T7318]  ? hlock_class+0x4e/0x130
[   90.833498][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   90.834812][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   90.836653][ T7318]  ? hlock_class+0x4e/0x130
[   90.837844][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   90.839147][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   90.840504][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   90.842061][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   90.843746][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   90.845440][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   90.847239][ T7318]  ? lock_acquire+0x2f/0xb0
[   90.849009][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   90.851258][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   90.853001][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   90.854812][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   90.856391][ T7318]  ? __build_skb_around+0x278/0x3b0
[   90.857918][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   90.859543][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   90.861207][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   90.863266][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   90.864899][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.866453][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   90.868060][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   90.869723][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   90.871270][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   90.872907][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   90.874377][ T7318]  ? 0xffffffffa0004340
[   90.875712][ T7318]  ? 0xffffffffa0004340
[   90.877173][ T7318]  ? 0xffffffffa0004340
[   90.878598][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   90.880537][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.881977][ T7318]  ? lock_acquire+0x2f/0xb0
[   90.883220][ T7318]  ? __fget_files+0x40/0x3f0
[   90.884599][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   90.886283][ T7318]  ? fput+0x30/0x390
[   90.887348][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   90.888709][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   90.890269][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.891445][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   90.892820][ T7318]  ? __schedule+0xe5d/0x5730
[   90.894173][ T7318]  ? do_futex+0x123/0x350
[   90.895279][ T7318]  ? __pfx_do_futex+0x10/0x10
[   90.896536][ T7318]  ? xfd_validate_state+0x5d/0x180
[   90.897907][ T7318]  ? rcu_is_watching+0x12/0xc0
[   90.899151][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.900381][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   90.901771][ T7318]  do_syscall_64+0xcd/0x250
[   90.903021][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.904733][ T7318] RIP: 0033:0x7f38a8f7e719
[   90.906093][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.911445][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   90.914138][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   90.916611][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   90.919087][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   90.921207][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.923520][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   90.926047][ T7318]  </TASK>
[   90.926977][ T7318] BUG: Bad page state in process syz.4.289  pfn:318a7
[   90.928877][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x16d pfn:0x318a7
[   90.931226][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   90.933045][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   90.935294][ T7318] raw: 000000000000016d 0000000000000001 00000000ffffffff 0000000000000000
[   90.937504][ T7318] page dumped because: page_pool leak
[   90.938974][ T7318] page_owner tracks the page as allocated
[   90.940502][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562177265, free_ts 81548389712
[   90.945279][ T7318]  post_alloc_hook+0x2d1/0x350
[   90.946525][ T7318]  get_page_from_freelist+0x101e/0x3070
[   90.948168][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   90.949727][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   90.951308][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   90.952998][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   90.954498][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   90.956050][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   90.957729][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   90.959356][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   90.960873][ T7318]  __sys_bpf+0xfc6/0x49a0
[   90.962101][ T7318]  __x64_sys_bpf+0x78/0xc0
[   90.963331][ T7318]  do_syscall_64+0xcd/0x250
[   90.964535][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.966087][ T7318] page last free pid 24 tgid 24 stack trace:
[   90.967705][ T7318]  free_unref_page+0x5f4/0xdc0
[   90.969120][ T7318]  __folio_put+0x30d/0x3d0
[   90.970875][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   90.972578][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   90.974096][ T7318]  rcu_core+0x79d/0x14d0
[   90.975352][ T7318]  handle_softirqs+0x213/0x8f0
[   90.976650][ T7318]  run_ksoftirqd+0x3a/0x60
[   90.978131][ T7318]  smpboot_thread_fn+0x661/0xa30
[   90.979566][ T7318]  kthread+0x2c1/0x3a0
[   90.980713][ T7318]  ret_from_fork+0x45/0x80
[   90.981936][ T7318]  ret_from_fork_asm+0x1a/0x30
[   90.983688][ T7318] Modules linked in:
[   90.984936][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   90.988768][ T7318] Tainted: [B]=BAD_PAGE
[   90.990481][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   90.993611][ T7318] Call Trace:
[   90.994520][ T7318]  <TASK>
[   90.995301][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   90.996716][ T7318]  bad_page+0xb3/0x1f0
[   90.997849][ T7318]  ? __pfx_bad_page+0x10/0x10
[   90.999149][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   91.000503][ T7318]  free_unref_page+0x657/0xdc0
[   91.001840][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   91.003464][ T7318]  ? __phys_addr+0xc6/0x150
[   91.004685][ T7318]  skb_free_head+0xa0/0x1d0
[   91.006039][ T7318]  skb_release_data+0x560/0x730
[   91.007511][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   91.008820][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   91.010770][ T7318]  ? kernel_text_address+0x8d/0x100
[   91.012178][ T7318]  ? hlock_class+0x4e/0x130
[   91.013405][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   91.014776][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   91.016719][ T7318]  ? hlock_class+0x4e/0x130
[   91.017917][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   91.019355][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   91.020820][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   91.022443][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   91.024263][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   91.026008][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   91.028000][ T7318]  ? lock_acquire+0x2f/0xb0
[   91.029433][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   91.031394][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   91.033271][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   91.035502][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   91.036992][ T7318]  ? __build_skb_around+0x278/0x3b0
[   91.038384][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   91.039859][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   91.041480][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   91.043385][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   91.044896][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   91.046278][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   91.047798][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   91.049431][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   91.051070][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   91.052662][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   91.054332][ T7318]  ? 0xffffffffa0004340
[   91.055482][ T7318]  ? 0xffffffffa0004340
[   91.056693][ T7318]  ? 0xffffffffa0004340
[   91.057908][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   91.059555][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   91.060997][ T7318]  ? lock_acquire+0x2f/0xb0
[   91.062338][ T7318]  ? __fget_files+0x40/0x3f0
[   91.063710][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   91.065423][ T7318]  ? fput+0x30/0x390
[   91.066564][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   91.068016][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   91.070007][ T7318]  __sys_bpf+0xfc6/0x49a0
[   91.071377][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   91.072866][ T7318]  ? __schedule+0xe5d/0x5730
[   91.074216][ T7318]  ? do_futex+0x123/0x350
[   91.075385][ T7318]  ? __pfx_do_futex+0x10/0x10
[   91.076699][ T7318]  ? xfd_validate_state+0x5d/0x180
[   91.078239][ T7318]  ? rcu_is_watching+0x12/0xc0
[   91.079594][ T7318]  __x64_sys_bpf+0x78/0xc0
[   91.080730][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   91.082070][ T7318]  do_syscall_64+0xcd/0x250
[   91.083231][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.084813][ T7318] RIP: 0033:0x7f38a8f7e719
[   91.086073][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.091199][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   91.093231][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   91.095209][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   91.097334][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   91.099551][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   91.101716][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   91.103725][ T7318]  </TASK>
[   91.104629][ T7318] BUG: Bad page state in process syz.4.289  pfn:31dbe
[   91.106471][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x16c pfn:0x31dbe
[   91.108959][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   91.110907][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   91.113292][ T7318] raw: 000000000000016c 0000000000000001 00000000ffffffff 0000000000000000
[   91.115799][ T7318] page dumped because: page_pool leak
[   91.117297][ T7318] page_owner tracks the page as allocated
[   91.118954][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562173026, free_ts 81548394584
[   91.123513][ T7318]  post_alloc_hook+0x2d1/0x350
[   91.124998][ T7318]  get_page_from_freelist+0x101e/0x3070
[   91.126645][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   91.128146][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   91.129726][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   91.131264][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   91.132930][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   91.134604][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   91.136599][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   91.138434][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   91.140109][ T7318]  __sys_bpf+0xfc6/0x49a0
[   91.141265][ T7318]  __x64_sys_bpf+0x78/0xc0
[   91.142587][ T7318]  do_syscall_64+0xcd/0x250
[   91.144080][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.145830][ T7318] page last free pid 24 tgid 24 stack trace:
[   91.147609][ T7318]  free_unref_page+0x5f4/0xdc0
[   91.149129][ T7318]  __folio_put+0x30d/0x3d0
[   91.150305][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   91.151771][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   91.153219][ T7318]  rcu_core+0x79d/0x14d0
[   91.154424][ T7318]  handle_softirqs+0x213/0x8f0
[   91.155703][ T7318]  run_ksoftirqd+0x3a/0x60
[   91.156900][ T7318]  smpboot_thread_fn+0x661/0xa30
[   91.158266][ T7318]  kthread+0x2c1/0x3a0
[   91.159367][ T7318]  ret_from_fork+0x45/0x80
[   91.160673][ T7318]  ret_from_fork_asm+0x1a/0x30
[   91.161939][ T7318] Modules linked in:
[   91.163045][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   91.166522][ T7318] Tainted: [B]=BAD_PAGE
[   91.167679][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.171284][ T7318] Call Trace:
[   91.172201][ T7318]  <TASK>
[   91.173011][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   91.174507][ T7318]  bad_page+0xb3/0x1f0
[   91.175684][ T7318]  ? __pfx_bad_page+0x10/0x10
[   91.177031][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   91.178359][ T7318]  free_unref_page+0x657/0xdc0
[   91.179655][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   91.181283][ T7318]  ? __phys_addr+0xc6/0x150
[   91.182626][ T7318]  skb_free_head+0xa0/0x1d0
[   91.184054][ T7318]  skb_release_data+0x560/0x730
[   91.185601][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   91.187083][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   91.189380][ T7318]  ? kernel_text_address+0x8d/0x100
[   91.191004][ T7318]  ? hlock_class+0x4e/0x130
[   91.192575][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   91.194112][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   91.196062][ T7318]  ? hlock_class+0x4e/0x130
[   91.197589][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   91.198969][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   91.200467][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   91.202087][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   91.203883][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   91.205272][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   91.207138][ T7318]  ? lock_acquire+0x2f/0xb0
[   91.208395][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   91.210105][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   91.212083][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   91.214184][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   91.215941][ T7318]  ? __build_skb_around+0x278/0x3b0
[   91.217413][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   91.218918][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   91.220654][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   91.222374][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   91.223961][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   91.225415][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   91.227002][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   91.228596][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   91.230205][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   91.231844][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   91.233326][ T7318]  ? 0xffffffffa0004340
[   91.234470][ T7318]  ? 0xffffffffa0004340
[   91.235701][ T7318]  ? 0xffffffffa0004340
[   91.236953][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   91.238644][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   91.240095][ T7318]  ? lock_acquire+0x2f/0xb0
[   91.241336][ T7318]  ? __fget_files+0x40/0x3f0
[   91.242561][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   91.244119][ T7318]  ? fput+0x30/0x390
[   91.245176][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   91.246447][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   91.247995][ T7318]  __sys_bpf+0xfc6/0x49a0
[   91.249170][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   91.250403][ T7318]  ? __schedule+0xe5d/0x5730
[   91.251652][ T7318]  ? do_futex+0x123/0x350
[   91.252799][ T7318]  ? __pfx_do_futex+0x10/0x10
[   91.254042][ T7318]  ? xfd_validate_state+0x5d/0x180
[   91.255442][ T7318]  ? rcu_is_watching+0x12/0xc0
[   91.256748][ T7318]  __x64_sys_bpf+0x78/0xc0
[   91.257951][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   91.259467][ T7318]  do_syscall_64+0xcd/0x250
[   91.260780][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.262660][ T7318] RIP: 0033:0x7f38a8f7e719
[   91.264267][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.270129][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   91.272600][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   91.274690][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   91.276788][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   91.278927][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   91.281070][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   91.283190][ T7318]  </TASK>
[   91.284110][ T7318] BUG: Bad page state in process syz.4.289  pfn:323d9
[   91.285895][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x16b pfn:0x323d9
[   91.288405][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   91.290410][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   91.292944][ T7318] raw: 000000000000016b 0000000000000001 00000000ffffffff 0000000000000000
[   91.295535][ T7318] page dumped because: page_pool leak
[   91.296960][ T7318] page_owner tracks the page as allocated
[   91.298557][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562168637, free_ts 81548399521
[   91.302946][ T7318]  post_alloc_hook+0x2d1/0x350
[   91.304938][ T7318]  get_page_from_freelist+0x101e/0x3070
[   91.306776][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   91.308787][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   91.310891][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   91.312994][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   91.314405][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   91.315889][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   91.317593][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   91.319282][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   91.320764][ T7318]  __sys_bpf+0xfc6/0x49a0
[   91.321967][ T7318]  __x64_sys_bpf+0x78/0xc0
[   91.323435][ T7318]  do_syscall_64+0xcd/0x250
[   91.324801][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.326770][ T7318] page last free pid 24 tgid 24 stack trace:
[   91.328747][ T7318]  free_unref_page+0x5f4/0xdc0
[   91.330209][ T7318]  __folio_put+0x30d/0x3d0
[   91.331826][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   91.333617][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   91.335135][ T7318]  rcu_core+0x79d/0x14d0
[   91.336339][ T7318]  handle_softirqs+0x213/0x8f0
[   91.337614][ T7318]  run_ksoftirqd+0x3a/0x60
[   91.338906][ T7318]  smpboot_thread_fn+0x661/0xa30
[   91.340510][ T7318]  kthread+0x2c1/0x3a0
[   91.341622][ T7318]  ret_from_fork+0x45/0x80
[   91.342929][ T7318]  ret_from_fork_asm+0x1a/0x30
[   91.344823][ T7318] Modules linked in:
[   91.346002][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   91.349904][ T7318] Tainted: [B]=BAD_PAGE
[   91.351044][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.354012][ T7318] Call Trace:
[   91.354949][ T7318]  <TASK>
[   91.355799][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   91.357166][ T7318]  bad_page+0xb3/0x1f0
[   91.358311][ T7318]  ? __pfx_bad_page+0x10/0x10
[   91.359580][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   91.360838][ T7318]  free_unref_page+0x657/0xdc0
[   91.362110][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   91.363739][ T7318]  ? __phys_addr+0xc6/0x150
[   91.364957][ T7318]  skb_free_head+0xa0/0x1d0
[   91.366327][ T7318]  skb_release_data+0x560/0x730
[   91.367715][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   91.369181][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   91.371025][ T7318]  ? kernel_text_address+0x8d/0x100
[   91.372520][ T7318]  ? hlock_class+0x4e/0x130
[   91.373966][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   91.375491][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   91.377526][ T7318]  ? hlock_class+0x4e/0x130
[   91.378857][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   91.380300][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   91.381750][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   91.383365][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   91.385189][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   91.386539][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   91.388242][ T7318]  ? lock_acquire+0x2f/0xb0
[   91.389464][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   91.391255][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   91.393009][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   91.395068][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   91.396723][ T7318]  ? __build_skb_around+0x278/0x3b0
[   91.398268][ T7318]  netif_receive_skb_list+0x4f/0x4a0
[   91.399798][ T7318]  xdp_test_run_batch.constprop.0+0x138d/0x1960
[   91.401486][ T7318]  ? __pfx_xdp_test_run_batch.constprop.0+0x10/0x10
[   91.403235][ T7318]  ? bpf_test_timer_continue+0x150/0x3d0
[   91.404776][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   91.406187][ T7318]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[   91.407792][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   91.409388][ T7318]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[   91.410972][ T7318]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[   91.412557][ T7318]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[   91.413952][ T7318]  ? 0xffffffffa0004340
[   91.415083][ T7318]  ? 0xffffffffa0004340
[   91.416292][ T7318]  ? 0xffffffffa0004340
[   91.417492][ T7318]  ? bpf_dispatcher_change_prog+0x54d/0xa80
[   91.419265][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   91.420856][ T7318]  ? lock_acquire+0x2f/0xb0
[   91.422234][ T7318]  ? __fget_files+0x40/0x3f0
[   91.423703][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   91.425703][ T7318]  ? fput+0x30/0x390
[   91.426832][ T7318]  ? __bpf_prog_get+0xa0/0x290
[   91.428187][ T7318]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   91.429967][ T7318]  __sys_bpf+0xfc6/0x49a0
[   91.431033][ T7318]  ? __pfx___sys_bpf+0x10/0x10
[   91.432485][ T7318]  ? __schedule+0xe5d/0x5730
[   91.433870][ T7318]  ? do_futex+0x123/0x350
[   91.435040][ T7318]  ? __pfx_do_futex+0x10/0x10
[   91.436308][ T7318]  ? xfd_validate_state+0x5d/0x180
[   91.437664][ T7318]  ? rcu_is_watching+0x12/0xc0
[   91.438979][ T7318]  __x64_sys_bpf+0x78/0xc0
[   91.440194][ T7318]  ? lockdep_hardirqs_on+0x7c/0x110
[   91.441598][ T7318]  do_syscall_64+0xcd/0x250
[   91.442936][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.444581][ T7318] RIP: 0033:0x7f38a8f7e719
[   91.446152][ T7318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   91.452133][ T7318] RSP: 002b:00007f38a9dc0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   91.454470][ T7318] RAX: ffffffffffffffda RBX: 00007f38a9136058 RCX: 00007f38a8f7e719
[   91.456658][ T7318] RDX: 0000000000000048 RSI: 0000000020000600 RDI: 000000000000000a
[   91.458859][ T7318] RBP: 00007f38a8ff132e R08: 0000000000000000 R09: 0000000000000000
[   91.460988][ T7318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   91.463078][ T7318] R13: 0000000000000000 R14: 00007f38a9136058 R15: 00007fff18b009d8
[   91.465204][ T7318]  </TASK>
[   91.466111][ T7318] BUG: Bad page state in process syz.4.289  pfn:22690
[   91.467899][ T7318] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x16a pfn:0x22690
[   91.470341][ T7318] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   91.472246][ T7318] raw: 00fff00000000000 dead000000000040 ffff888029814000 0000000000000000
[   91.474498][ T7318] raw: 000000000000016a 0000000000000001 00000000ffffffff 0000000000000000
[   91.476772][ T7318] page dumped because: page_pool leak
[   91.478268][ T7318] page_owner tracks the page as allocated
[   91.479817][ T7318] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 7318, tgid 7315 (syz.4.289), ts 81562164293, free_ts 81548404847
[   91.484262][ T7318]  post_alloc_hook+0x2d1/0x350
[   91.485565][ T7318]  get_page_from_freelist+0x101e/0x3070
[   91.487045][ T7318]  __alloc_pages_noprof+0x223/0x25a0
[   91.488587][ T7318]  alloc_pages_bulk_noprof+0x77c/0x1110
[   91.490057][ T7318]  __page_pool_alloc_pages_slow+0x18f/0x770
[   91.491652][ T7318]  page_pool_alloc_netmem+0xc4/0x160
[   91.493188][ T7318]  page_pool_alloc_pages+0x1a/0x60
[   91.494606][ T7318]  xdp_test_run_batch.constprop.0+0x3a8/0x1960
[   91.496293][ T7318]  bpf_test_run_xdp_live+0x365/0x500
[   91.497724][ T7318]  bpf_prog_test_run_xdp+0x827/0x1580
[   91.499371][ T7318]  __sys_bpf+0xfc6/0x49a0
[   91.500537][ T7318]  __x64_sys_bpf+0x78/0xc0
[   91.501757][ T7318]  do_syscall_64+0xcd/0x250
[   91.503050][ T7318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.504670][ T7318] page last free pid 24 tgid 24 stack trace:
[   91.506299][ T7318]  free_unref_page+0x5f4/0xdc0
[   91.507624][ T7318]  __folio_put+0x30d/0x3d0
[   91.508903][ T7318]  free_page_and_swap_cache+0x249/0x2c0
[   91.510465][ T7318]  tlb_remove_table_rcu+0x89/0xe0
[   91.512310][ T7318]  rcu_core+0x79d/0x14d0
[   91.513485][ T7318]  handle_softirqs+0x213/0x8f0
[   91.514793][ T7318]  run_ksoftirqd+0x3a/0x60
[   91.515992][ T7318]  smpboot_thread_fn+0x661/0xa30
[   91.517325][ T7318]  kthread+0x2c1/0x3a0
[   91.518489][ T7318]  ret_from_fork+0x45/0x80
[   91.519746][ T7318]  ret_from_fork_asm+0x1a/0x30
[   91.521149][ T7318] Modules linked in:
[   91.522346][ T7318] CPU: 2 UID: 0 PID: 7318 Comm: syz.4.289 Tainted: G    B              6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0
[   91.526408][ T7318] Tainted: [B]=BAD_PAGE
[   91.527848][ T7318] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.530941][ T7318] Call Trace:
[   91.531871][ T7318]  <TASK>
[   91.532659][ T7318]  dump_stack_lvl+0x16c/0x1f0
[   91.533929][ T7318]  bad_page+0xb3/0x1f0
[   91.535042][ T7318]  ? __pfx_bad_page+0x10/0x10
[   91.536324][ T7318]  ? page_bad_reason+0x9d/0x1e0
[   91.537624][ T7318]  free_unref_page+0x657/0xdc0
[   91.538924][ T7318]  ? trace_irq_enable.constprop.0+0xe4/0x130
[   91.540555][ T7318]  ? __phys_addr+0xc6/0x150
[   91.541819][ T7318]  skb_free_head+0xa0/0x1d0
[   91.543052][ T7318]  skb_release_data+0x560/0x730
[   91.544409][ T7318]  sk_skb_reason_drop+0x129/0x1a0
[   91.545750][ T7318]  __netif_receive_skb_core.constprop.0+0x592/0x4330
[   91.547640][ T7318]  ? kernel_text_address+0x8d/0x100
[   91.549498][ T7318]  ? hlock_class+0x4e/0x130
[   91.550875][ T7318]  ? __lock_acquire+0x163e/0x3ce0
[   91.552441][ T7318]  ? __pfx___netif_receive_skb_core.constprop.0+0x10/0x10
[   91.554399][ T7318]  ? hlock_class+0x4e/0x130
[   91.555653][ T7318]  ? __lock_acquire+0xbdd/0x3ce0
[   91.557008][ T7318]  ? __pfx___lock_acquire+0x10/0x10
[   91.558464][ T7318]  __netif_receive_skb_list_core+0x357/0x950
[   91.560107][ T7318]  ? __pfx___netif_receive_skb_list_core+0x10/0x10
[   91.561852][ T7318]  ? trace_lock_acquire+0x14a/0x1d0
[   91.563350][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   91.565158][ T7318]  ? lock_acquire+0x2f/0xb0
[   91.566367][ T7318]  ? netif_receive_skb_list_internal+0x359/0xdb0
[   91.568594][ T7318]  netif_receive_skb_list_internal+0x753/0xdb0
[   91.570494][ T7318]  ? __pfx_netif_receive_skb_list_internal+0x10/0x10
[   91.572639][ T7318]  ? __pfx_eth_type_trans+0x10/0x10
[   91.574431][ T7318]  ? __build_skb_around+0x278/0x3b0
[   91.576115][ T7318]  netif_receive_skb_list+0x4f/0x4a0

VM DIAGNOSIS:
15:46:37  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff888031d67398 RCX=0000000000000001 RDX=0000000000000000
RSI=00000000ffffffff RDI=ffff888031d67398 RBP=ffff888031d67398 RSP=ffffc90003407270
R8 =0000000000000005 R9 =0000000000000300 R10=0000000000000300 R11=0000000000000000
R12=ffff88802a8b0000 R13=00000000ffffffff R14=00000000ffffffff R15=0000000000000000
RIP=ffffffff8b22f777 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055a918ab8008 CR3=0000000027422000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000084000 Opmask01=0000000000000001 Opmask02=00000000ffff3f01 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff41620070 0000003000000008
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff41620070 0000003000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c5f5f0045544156 4952505f4342494c
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000042494c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6362696c5f5f0045 5441564952505f43
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3261396131623234 65672d3530303030 2d72656c6c616b7a 79732d3563722d30
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 20726f20656c6966 2068637573206f4e
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0079726f74636572 696420726f20656c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff90fc0710 RBX=ffffffff9076c55c RCX=dffffc0000000000 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff9076c55c RBP=ffffffff9076c55c RSP=ffffc900053e7088
R8 =ffffffff90fc0746 R9 =ffffffff90fde25e R10=ffffc900053e7138 R11=000000000000c6d3
R12=ffffffff9076c55c R13=ffffffff81c6d300 R14=ffffffff9076c55c R15=ffffffff9076c55c
RIP=ffffffff813d4425 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f1ef2a67d60 CR3=000000000df7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000002020004 Opmask01=0000000000000054 Opmask02=00000000000000ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1ef1f0c6a3 00007f1ef1f0c6a3
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fffa4559090 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558a8c74a8
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055558a8d22c6 000055558a8d1b80
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000039313935 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 474553474953006c 616e676973206e77 6f6e6b6e75000a29
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 5355424749530056 4745534749530049 444b424c56054b52 4a4b4e4b50000a0c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0043800401000004 080606013ae60480 8080c0080043e003 00100043d0030010
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0106800402ce8e08 0001000002080606 011da600100003ff ffffff0432080000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 08000100000a0806 0a0147c800100003 ffffffff04320800 0008000100000a08
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 060a0147c8000200 0700080004100004 1000060a4b880010 0043800401000004
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 080606013ae60480 8080c0080043e003 00100043d0030010 0043c00302100043
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000003a4d1 RBX=000000000000001c RCX=ffffffff816da43a RDX=0000000000040000
RSI=0000000000000001 RDI=0000000000000000 RBP=1ffff92000698dc0 RSP=ffffc900034c6de8
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000001 R13=0000000000000200 R14=ffff88801f2fa440 R15=ffffc900034c6ed8
RIP=ffffffff818d7e28 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f38a9dc06c0 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055d9cbc2dc40 CR3=0000000028fcc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff6c3597d0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f667e1f21cb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f667e1f21d8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f667e1f21d2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f667e1f21e6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f667e1f226c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f667e1f234a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000030
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000030
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000005f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff850b46e5 RDI=ffffffff9aae7bc0 RBP=ffffffff9aae7b80 RSP=ffffc900009778d0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000005f R14=ffffffff850b4680 R15=0000000000000000
RIP=ffffffff850b470f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f5a872d6ff8 CR3=0000000028fcc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000001000000 Opmask01=0000000001000001 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffd7fb700d0 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb0c8bf21cb
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb0c8bf21d8
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb0c8bf21d2
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb0c8bf21e6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb0c8bf226c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fb0c8bf234a
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000048
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001 0000000000000000 0000000000000000 0000000000000048
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000