[ 71.148280][ T1419] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.150451][ T1419] ieee802154 phy1 wpan1: encryption failed: -22
Warning: Permanently added '[localhost]:11159' (ED25519) to the list of known hosts.
2025/05/11 20:14:38 ignoring optional flag "sandboxArg"="0"
2025/05/11 20:14:39 parsed 1 programs
[ 76.014854][ T40] audit: type=1400 audit(1746994481.632:122): avc: denied { unlink } for pid=6196 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 76.959696][ T6196] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 79.472932][ T6272] chnl_net:caif_netlink_parms(): no params data found
[ 79.546869][ T6272] bridge0: port 1(bridge_slave_0) entered blocking state
[ 79.549893][ T6272] bridge0: port 1(bridge_slave_0) entered disabled state
[ 79.552960][ T6272] bridge_slave_0: entered allmulticast mode
[ 79.556994][ T6272] bridge_slave_0: entered promiscuous mode
[ 79.561781][ T6272] bridge0: port 2(bridge_slave_1) entered blocking state
[ 79.564661][ T6272] bridge0: port 2(bridge_slave_1) entered disabled state
[ 79.567254][ T6272] bridge_slave_1: entered allmulticast mode
[ 79.569898][ T6272] bridge_slave_1: entered promiscuous mode
[ 79.607905][ T6272] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 79.616920][ T6272] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 79.666830][ T6272] team0: Port device team_slave_0 added
[ 79.671924][ T6272] team0: Port device team_slave_1 added
[ 79.733451][ T6272] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 79.736657][ T6272] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 79.747378][ T6272] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 79.753408][ T6272] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 79.756528][ T6272] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 79.764944][ T6272] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 79.816458][ T6272] hsr_slave_0: entered promiscuous mode
[ 79.819687][ T6272] hsr_slave_1: entered promiscuous mode
[ 80.343784][ T6272] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 80.350102][ T6272] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 80.357042][ T6272] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 80.363119][ T6272] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 80.386966][ T6272] bridge0: port 2(bridge_slave_1) entered blocking state
[ 80.390161][ T6272] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 80.394017][ T6272] bridge0: port 1(bridge_slave_0) entered blocking state
[ 80.397211][ T6272] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 80.438229][ T6272] 8021q: adding VLAN 0 to HW filter on device bond0
[ 80.445525][ T1182] bridge0: port 1(bridge_slave_0) entered disabled state
[ 80.450615][ T1182] bridge0: port 2(bridge_slave_1) entered disabled state
[ 80.460573][ T6272] 8021q: adding VLAN 0 to HW filter on device team0
[ 80.471453][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 80.474511][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 80.486862][ T1182] bridge0: port 2(bridge_slave_1) entered blocking state
[ 80.489193][ T1182] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 80.598376][ T6272] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 80.620181][ T6272] veth0_vlan: entered promiscuous mode
[ 80.627110][ T6272] veth1_vlan: entered promiscuous mode
[ 80.646203][ T6272] veth0_macvtap: entered promiscuous mode
[ 80.651083][ T6272] veth1_macvtap: entered promiscuous mode
[ 80.660883][ T6272] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 80.668787][ T6272] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 80.673743][ T6272] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 80.679767][ T6272] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 80.683487][ T6272] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 80.687404][ T6272] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 80.770463][ T1144] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 80.827019][ T1182] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 80.830260][ T1182] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 80.848727][ T1144] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 80.862711][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 80.865782][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 80.917447][ T1144] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 80.968694][ T40] audit: type=1401 audit(1746994486.592:123): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 80.992335][ T1144] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 81.386071][ T998] cfg80211: failed to load regulatory.db
[ 81.620308][ T5290] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 81.624210][ T5290] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 81.628733][ T5290] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 81.632768][ T5290] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 81.637843][ T5290] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/05/11 20:14:47 executed programs: 0
[ 82.026366][ T5982] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 82.029427][ T5982] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 82.032227][ T5982] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 82.037316][ T5982] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 82.040522][ T5982] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 82.145909][ T6417] chnl_net:caif_netlink_parms(): no params data found
[ 82.241770][ T6417] bridge0: port 1(bridge_slave_0) entered blocking state
[ 82.244536][ T6417] bridge0: port 1(bridge_slave_0) entered disabled state
[ 82.247126][ T6417] bridge_slave_0: entered allmulticast mode
[ 82.249724][ T6417] bridge_slave_0: entered promiscuous mode
[ 82.252696][ T6417] bridge0: port 2(bridge_slave_1) entered blocking state
[ 82.255147][ T6417] bridge0: port 2(bridge_slave_1) entered disabled state
[ 82.258173][ T6417] bridge_slave_1: entered allmulticast mode
[ 82.261256][ T6417] bridge_slave_1: entered promiscuous mode
[ 82.308948][ T6417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 82.319949][ T6417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 82.354914][ T6417] team0: Port device team_slave_0 added
[ 82.359344][ T6417] team0: Port device team_slave_1 added
[ 82.407256][ T6417] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 82.409515][ T6417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 82.420706][ T6417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 82.426993][ T6417] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 82.429809][ T6417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 82.437831][ T6417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 82.479585][ T6417] hsr_slave_0: entered promiscuous mode
[ 82.482625][ T6417] hsr_slave_1: entered promiscuous mode
[ 82.485573][ T6417] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 82.488721][ T6417] Cannot create hsr debugfs directory
[ 84.104982][ T5290] Bluetooth: hci0: command tx timeout
[ 84.361219][ T1144] bridge_slave_1: left allmulticast mode
[ 84.363080][ T1144] bridge_slave_1: left promiscuous mode
[ 84.365226][ T1144] bridge0: port 2(bridge_slave_1) entered disabled state
[ 84.369380][ T1144] bridge_slave_0: left allmulticast mode
[ 84.371196][ T1144] bridge_slave_0: left promiscuous mode
[ 84.373079][ T1144] bridge0: port 1(bridge_slave_0) entered disabled state
[ 84.598707][ T1144] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 84.602609][ T1144] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 84.606643][ T1144] bond0 (unregistering): Released all slaves
[ 84.739106][ T1144] hsr_slave_0: left promiscuous mode
[ 84.741603][ T1144] hsr_slave_1: left promiscuous mode
[ 84.744304][ T1144] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 84.747710][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 84.751327][ T1144] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 84.753869][ T1144] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 84.779336][ T1144] veth1_macvtap: left promiscuous mode
[ 84.782075][ T1144] veth0_macvtap: left promiscuous mode
[ 84.784660][ T1144] veth1_vlan: left promiscuous mode
[ 84.789368][ T1144] veth0_vlan: left promiscuous mode
[ 85.217413][ T1144] team0 (unregistering): Port device team_slave_1 removed
[ 85.268469][ T1144] team0 (unregistering): Port device team_slave_0 removed
[ 85.996263][ T6417] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 86.002183][ T6417] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 86.008512][ T6417] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 86.017500][ T6417] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 86.066579][ T6417] 8021q: adding VLAN 0 to HW filter on device bond0
[ 86.076418][ T6417] 8021q: adding VLAN 0 to HW filter on device team0
[ 86.081527][ T1156] bridge0: port 1(bridge_slave_0) entered blocking state
[ 86.084523][ T1156] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 86.094389][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[ 86.097425][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 86.194862][ T5290] Bluetooth: hci0: command tx timeout
[ 86.431959][ T6417] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 86.463066][ T6417] veth0_vlan: entered promiscuous mode
[ 86.477276][ T6417] veth1_vlan: entered promiscuous mode
[ 86.492291][ T6417] veth0_macvtap: entered promiscuous mode
[ 86.497594][ T6417] veth1_macvtap: entered promiscuous mode
[ 86.516535][ T6417] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 86.526001][ T6417] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 86.531558][ T6417] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 86.534392][ T6417] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 86.538246][ T6417] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 86.540981][ T6417] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 86.620926][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 86.623560][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 86.643069][ T1182] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 86.645712][ T1182] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 86.684688][ T40] audit: type=1400 audit(1746994492.302:124): avc: denied { read write } for pid=6503 comm="syz.0.16" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 86.693043][ T40] audit: type=1400 audit(1746994492.302:125): avc: denied { open } for pid=6503 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 86.700918][ T40] audit: type=1400 audit(1746994492.312:126): avc: denied { map } for pid=6503 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 86.711044][ T40] audit: type=1400 audit(1746994492.312:127): avc: denied { execute } for pid=6503 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 86.722885][ T40] audit: type=1400 audit(1746994492.322:128): avc: denied { create } for pid=6503 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 86.731563][ T40] audit: type=1400 audit(1746994492.322:129): avc: denied { bind } for pid=6503 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 86.739761][ T40] audit: type=1400 audit(1746994492.332:130): avc: denied { write } for pid=6503 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 86.747999][ T40] audit: type=1400 audit(1746994492.332:131): avc: denied { create } for pid=6503 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 86.758284][ T6503] BUG: Bad page state in process syz.0.16 pfn:40801
[ 86.760571][ T6503] page does not match folio
[ 86.762742][ T6503] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x40801
[ 86.766997][ T6503] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 86.767449][ T40] audit: type=1400 audit(1746994492.392:132): avc: denied { read } for pid=5330 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 86.770061][ T6503] raw: 00fff00000000000 ffffea0001020000 00000000ffffffff ffffffffffffffff
[ 86.777596][ T40] audit: type=1400 audit(1746994492.392:133): avc: denied { search } for pid=5330 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 86.780284][ T6503] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 86.790763][ T6503] page dumped because: nonzero pincount
[ 86.792784][ T6503] page_owner tracks the page as allocated
[ 86.794941][ T6503] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6503, tgid 6503 (syz.0.16), ts 86697447698, free_ts 79422554712
[ 86.800808][ T6503] post_alloc_hook+0x181/0x1b0
[ 86.802271][ T6503] get_page_from_freelist+0x135c/0x3920
[ 86.803887][ T6503] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 86.805775][ T6503] alloc_pages_mpol+0x1fb/0x550
[ 86.807247][ T6503] folio_alloc_noprof+0x20/0x2d0
[ 86.808694][ T6503] filemap_alloc_folio_noprof+0x3a1/0x470
[ 86.810374][ T6503] page_cache_ra_order+0x4c0/0xd00
[ 86.811991][ T6503] filemap_fault+0x1a5e/0x2740
[ 86.813408][ T6503] __do_fault+0x10a/0x490
[ 86.814779][ T6503] do_pte_missing+0x1a6/0x3fb0
[ 86.816200][ T6503] __handle_mm_fault+0x103d/0x2a40
[ 86.817709][ T6503] handle_mm_fault+0x3fe/0xad0
[ 86.819196][ T6503] do_user_addr_fault+0x60c/0x1370
[ 86.820785][ T6503] exc_page_fault+0x5c/0xc0
[ 86.822317][ T6503] asm_exc_page_fault+0x26/0x30
[ 86.824103][ T6503] page last free pid 6267 tgid 6267 stack trace:
[ 86.826293][ T6503] __free_frozen_pages+0x69d/0xff0
[ 86.827984][ T6503] vfree+0x176/0x960
[ 86.829331][ T6503] kcov_close+0x34/0x60
[ 86.830622][ T6503] __fput+0x3ff/0xb70
[ 86.831865][ T6503] task_work_run+0x14d/0x240
[ 86.833240][ T6503] do_exit+0xafb/0x2c30
[ 86.834491][ T6503] do_group_exit+0xd3/0x2a0
[ 86.835926][ T6503] get_signal+0x2673/0x26d0
[ 86.837341][ T6503] arch_do_signal_or_restart+0x8f/0x7d0
[ 86.838966][ T6503] syscall_exit_to_user_mode+0x150/0x2a0
[ 86.840751][ T6503] do_syscall_64+0xda/0x260
[ 86.842149][ T6503] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.844598][ T6503] Modules linked in:
[ 86.845983][ T6503] CPU: 2 UID: 0 PID: 6503 Comm: syz.0.16 Not tainted 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 86.845996][ T6503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 86.846002][ T6503] Call Trace:
[ 86.846005][ T6503]
[ 86.846009][ T6503] dump_stack_lvl+0x16c/0x1f0
[ 86.846024][ T6503] bad_page+0xb3/0x1f0
[ 86.846035][ T6503] ? __pfx_bad_page+0x10/0x10
[ 86.846046][ T6503] ? __mem_cgroup_uncharge+0xda/0x130
[ 86.846059][ T6503] free_tail_page_prepare+0x44f/0x5b0
[ 86.846072][ T6503] __free_frozen_pages+0x96a/0xff0
[ 86.846087][ T6503] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 86.846101][ T6503] __folio_put+0x329/0x450
[ 86.846112][ T6503] ? __pfx___folio_put+0x10/0x10
[ 86.846123][ T6503] ? find_held_lock+0x2b/0x80
[ 86.846136][ T6503] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 86.846147][ T6503] ? mark_held_locks+0x49/0x80
[ 86.846167][ T6503] filemap_free_folio+0x132/0x170
[ 86.846183][ T6503] delete_from_page_cache_batch+0x741/0x9b0
[ 86.846206][ T6503] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 86.846234][ T6503] ? __pfx_workingset_update_node+0x10/0x10
[ 86.846260][ T6503] truncate_inode_pages_range+0x279/0xe30
[ 86.846283][ T6503] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 86.846320][ T6503] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 86.846335][ T6503] ? __pfx_has_bh_in_lru+0x10/0x10
[ 86.846350][ T6503] blkdev_flush_mapping+0xfb/0x290
[ 86.846364][ T6503] blkdev_put_whole+0xc4/0xf0
[ 86.846375][ T6503] bdev_release+0x47e/0x6d0
[ 86.846389][ T6503] ? __pfx_blkdev_release+0x10/0x10
[ 86.846402][ T6503] blkdev_release+0x15/0x20
[ 86.846413][ T6503] __fput+0x3ff/0xb70
[ 86.846427][ T6503] task_work_run+0x14d/0x240
[ 86.846438][ T6503] ? __pfx_task_work_run+0x10/0x10
[ 86.846449][ T6503] ? do_raw_spin_unlock+0x172/0x230
[ 86.846462][ T6503] do_exit+0xafb/0x2c30
[ 86.846480][ T6503] ? __pfx_do_exit+0x10/0x10
[ 86.846493][ T6503] ? preempt_schedule_thunk+0x16/0x30
[ 86.846506][ T6503] do_group_exit+0xd3/0x2a0
[ 86.846521][ T6503] __x64_sys_exit_group+0x3e/0x50
[ 86.846535][ T6503] x64_sys_call+0x1530/0x1730
[ 86.846552][ T6503] do_syscall_64+0xcd/0x260
[ 86.846571][ T6503] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 86.846583][ T6503] RIP: 0033:0x7fbf3cb8e969
[ 86.846591][ T6503] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 86.846596][ T6503] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 86.846605][ T6503] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 86.846611][ T6503] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 86.846616][ T6503] RBP: 0000000000000003 R08: 000000165c310b3f R09: 00007fbf3cd7d260
[ 86.846622][ T6503] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 86.846627][ T6503] R13: 00007fbf3cd7d260 R14: 0000000000000003 R15: 00007fff5c310b00
[ 86.846639][ T6503]
[ 86.846643][ T6503] Disabling lock debugging due to kernel taint
[ 86.942621][ T6503] BUG: Bad page state in process syz.0.16 pfn:40800
[ 86.945900][ T6503] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x40800
[ 86.949453][ T6503] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 86.952975][ T6503] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 86.956736][ T6503] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 86.960312][ T6503] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 86.963901][ T6503] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 86.967582][ T6503] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 86.971167][ T6503] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 86.974873][ T6503] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 86.978478][ T6503] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 86.981523][ T6503] page_owner tracks the page as allocated
[ 86.983911][ T6503] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6503, tgid 6503 (syz.0.16), ts 86697447698, free_ts 79422549294
[ 86.992068][ T6503] post_alloc_hook+0x181/0x1b0
[ 86.994150][ T6503] get_page_from_freelist+0x135c/0x3920
[ 86.996589][ T6503] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 86.999084][ T6503] alloc_pages_mpol+0x1fb/0x550
[ 87.001170][ T6503] folio_alloc_noprof+0x20/0x2d0
[ 87.003265][ T6503] filemap_alloc_folio_noprof+0x3a1/0x470
[ 87.005735][ T6503] page_cache_ra_order+0x4c0/0xd00
[ 87.007917][ T6503] filemap_fault+0x1a5e/0x2740
[ 87.009951][ T6503] __do_fault+0x10a/0x490
[ 87.011775][ T6503] do_pte_missing+0x1a6/0x3fb0
[ 87.013800][ T6503] __handle_mm_fault+0x103d/0x2a40
[ 87.016058][ T6503] handle_mm_fault+0x3fe/0xad0
[ 87.018109][ T6503] do_user_addr_fault+0x60c/0x1370
[ 87.020268][ T6503] exc_page_fault+0x5c/0xc0
[ 87.022229][ T6503] asm_exc_page_fault+0x26/0x30
[ 87.024279][ T6503] page last free pid 6267 tgid 6267 stack trace:
[ 87.027010][ T6503] __free_frozen_pages+0x69d/0xff0
[ 87.029177][ T6503] vfree+0x176/0x960
[ 87.030834][ T6503] kcov_close+0x34/0x60
[ 87.032643][ T6503] __fput+0x3ff/0xb70
[ 87.034382][ T6503] task_work_run+0x14d/0x240
[ 87.036465][ T6503] do_exit+0xafb/0x2c30
[ 87.038258][ T6503] do_group_exit+0xd3/0x2a0
[ 87.040187][ T6503] get_signal+0x2673/0x26d0
[ 87.042142][ T6503] arch_do_signal_or_restart+0x8f/0x7d0
[ 87.044487][ T6503] syscall_exit_to_user_mode+0x150/0x2a0
[ 87.046977][ T6503] do_syscall_64+0xda/0x260
[ 87.048862][ T6503] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.051266][ T6503] Modules linked in:
[ 87.052890][ T6503] CPU: 3 UID: 0 PID: 6503 Comm: syz.0.16 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 87.052913][ T6503] Tainted: [B]=BAD_PAGE
[ 87.052918][ T6503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 87.052928][ T6503] Call Trace:
[ 87.052956][ T6503]
[ 87.052964][ T6503] dump_stack_lvl+0x16c/0x1f0
[ 87.052987][ T6503] bad_page+0xb3/0x1f0
[ 87.053004][ T6503] ? __pfx_bad_page+0x10/0x10
[ 87.053021][ T6503] ? page_bad_reason+0x9d/0x1e0
[ 87.053037][ T6503] __free_frozen_pages+0x76e/0xff0
[ 87.053059][ T6503] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 87.053081][ T6503] __folio_put+0x329/0x450
[ 87.053097][ T6503] ? __pfx___folio_put+0x10/0x10
[ 87.053114][ T6503] ? find_held_lock+0x2b/0x80
[ 87.053132][ T6503] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 87.053150][ T6503] ? mark_held_locks+0x49/0x80
[ 87.053172][ T6503] filemap_free_folio+0x132/0x170
[ 87.053189][ T6503] delete_from_page_cache_batch+0x741/0x9b0
[ 87.053208][ T6503] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 87.053227][ T6503] ? __pfx_workingset_update_node+0x10/0x10
[ 87.053246][ T6503] truncate_inode_pages_range+0x279/0xe30
[ 87.053269][ T6503] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 87.053307][ T6503] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 87.053330][ T6503] ? __pfx_has_bh_in_lru+0x10/0x10
[ 87.053353][ T6503] blkdev_flush_mapping+0xfb/0x290
[ 87.053372][ T6503] blkdev_put_whole+0xc4/0xf0
[ 87.053388][ T6503] bdev_release+0x47e/0x6d0
[ 87.053407][ T6503] ? __pfx_blkdev_release+0x10/0x10
[ 87.053425][ T6503] blkdev_release+0x15/0x20
[ 87.053449][ T6503] __fput+0x3ff/0xb70
[ 87.053468][ T6503] task_work_run+0x14d/0x240
[ 87.053485][ T6503] ? __pfx_task_work_run+0x10/0x10
[ 87.053502][ T6503] ? do_raw_spin_unlock+0x172/0x230
[ 87.053519][ T6503] do_exit+0xafb/0x2c30
[ 87.053542][ T6503] ? __pfx_do_exit+0x10/0x10
[ 87.053564][ T6503] ? preempt_schedule_thunk+0x16/0x30
[ 87.053581][ T6503] do_group_exit+0xd3/0x2a0
[ 87.053604][ T6503] __x64_sys_exit_group+0x3e/0x50
[ 87.053626][ T6503] x64_sys_call+0x1530/0x1730
[ 87.053648][ T6503] do_syscall_64+0xcd/0x260
[ 87.053669][ T6503] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.053685][ T6503] RIP: 0033:0x7fbf3cb8e969
[ 87.053697][ T6503] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 87.053704][ T6503] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 87.053718][ T6503] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 87.053728][ T6503] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 87.053736][ T6503] RBP: 0000000000000003 R08: 000000165c310b3f R09: 00007fbf3cd7d260
[ 87.053746][ T6503] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 87.053754][ T6503] R13: 00007fbf3cd7d260 R14: 0000000000000003 R15: 00007fff5c310b00
[ 87.053768][ T6503]
[ 87.200015][ T6505] BUG: Bad page state in process syz.0.17 pfn:4f801
[ 87.202812][ T6505] page does not match folio
[ 87.204888][ T6505] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4f801
[ 87.208965][ T6505] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 87.212069][ T6505] raw: 00fff00000000000 ffffea00013e0000 00000000ffffffff ffffffffffffffff
[ 87.215755][ T6505] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 87.219298][ T6505] page dumped because: nonzero pincount
[ 87.221671][ T6505] page_owner tracks the page as allocated
2025/05/11 20:14:52 executed programs: 3
[ 87.224028][ T6505] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6505, tgid 6505 (syz.0.17), ts 87169446469, free_ts 79417059246
[ 87.232485][ T6505] post_alloc_hook+0x181/0x1b0
[ 87.234533][ T6505] get_page_from_freelist+0x135c/0x3920
[ 87.236848][ T6505] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 87.239355][ T6505] alloc_pages_mpol+0x1fb/0x550
[ 87.241435][ T6505] folio_alloc_noprof+0x20/0x2d0
[ 87.243553][ T6505] filemap_alloc_folio_noprof+0x3a1/0x470
[ 87.246032][ T6505] page_cache_ra_order+0x4c0/0xd00
[ 87.248176][ T6505] filemap_fault+0x1a5e/0x2740
[ 87.250212][ T6505] __do_fault+0x10a/0x490
[ 87.252069][ T6505] do_pte_missing+0x1a6/0x3fb0
[ 87.254110][ T6505] __handle_mm_fault+0x103d/0x2a40
[ 87.256325][ T6505] handle_mm_fault+0x3fe/0xad0
[ 87.258361][ T6505] do_user_addr_fault+0x60c/0x1370
[ 87.260522][ T6505] exc_page_fault+0x5c/0xc0
[ 87.262476][ T6505] asm_exc_page_fault+0x26/0x30
[ 87.264525][ T6505] page last free pid 6267 tgid 6267 stack trace:
[ 87.267270][ T6505] __free_frozen_pages+0x69d/0xff0
[ 87.269473][ T6505] vfree+0x176/0x960
[ 87.271172][ T6505] kcov_close+0x34/0x60
[ 87.272926][ T6505] __fput+0x3ff/0xb70
[ 87.274653][ T6505] task_work_run+0x14d/0x240
[ 87.276688][ T6505] do_exit+0xafb/0x2c30
[ 87.278490][ T6505] do_group_exit+0xd3/0x2a0
[ 87.280451][ T6505] get_signal+0x2673/0x26d0
[ 87.282399][ T6505] arch_do_signal_or_restart+0x8f/0x7d0
[ 87.284705][ T6505] syscall_exit_to_user_mode+0x150/0x2a0
[ 87.287144][ T6505] do_syscall_64+0xda/0x260
[ 87.289077][ T6505] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.291534][ T6505] Modules linked in:
[ 87.292925][ T6505] CPU: 0 UID: 0 PID: 6505 Comm: syz.0.17 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 87.292964][ T6505] Tainted: [B]=BAD_PAGE
[ 87.292969][ T6505] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 87.292977][ T6505] Call Trace:
[ 87.292982][ T6505]
[ 87.292986][ T6505] dump_stack_lvl+0x16c/0x1f0
[ 87.293002][ T6505] bad_page+0xb3/0x1f0
[ 87.293012][ T6505] ? __pfx_bad_page+0x10/0x10
[ 87.293022][ T6505] ? __mem_cgroup_uncharge+0xda/0x130
[ 87.293034][ T6505] free_tail_page_prepare+0x44f/0x5b0
[ 87.293047][ T6505] __free_frozen_pages+0x96a/0xff0
[ 87.293062][ T6505] __folio_put+0x329/0x450
[ 87.293072][ T6505] ? __pfx___folio_put+0x10/0x10
[ 87.293083][ T6505] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 87.293094][ T6505] ? rcu_is_watching+0x12/0xc0
[ 87.293105][ T6505] ? lock_release+0x201/0x2f0
[ 87.293119][ T6505] filemap_free_folio+0x132/0x170
[ 87.293129][ T6505] delete_from_page_cache_batch+0x741/0x9b0
[ 87.293141][ T6505] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 87.293152][ T6505] ? __pfx_workingset_update_node+0x10/0x10
[ 87.293163][ T6505] ? xas_move_index+0xb0/0x110
[ 87.293178][ T6505] truncate_inode_pages_range+0x279/0xe30
[ 87.293192][ T6505] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 87.293214][ T6505] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 87.293229][ T6505] ? __pfx_has_bh_in_lru+0x10/0x10
[ 87.293242][ T6505] blkdev_flush_mapping+0xfb/0x290
[ 87.293255][ T6505] blkdev_put_whole+0xc4/0xf0
[ 87.293265][ T6505] bdev_release+0x47e/0x6d0
[ 87.293278][ T6505] ? __pfx_blkdev_release+0x10/0x10
[ 87.293289][ T6505] blkdev_release+0x15/0x20
[ 87.293301][ T6505] __fput+0x3ff/0xb70
[ 87.293312][ T6505] task_work_run+0x14d/0x240
[ 87.293323][ T6505] ? __pfx_task_work_run+0x10/0x10
[ 87.293333][ T6505] ? do_raw_spin_unlock+0x172/0x230
[ 87.293343][ T6505] do_exit+0xafb/0x2c30
[ 87.293357][ T6505] ? __pfx_do_exit+0x10/0x10
[ 87.293370][ T6505] ? preempt_schedule_thunk+0x16/0x30
[ 87.293381][ T6505] do_group_exit+0xd3/0x2a0
[ 87.293395][ T6505] __x64_sys_exit_group+0x3e/0x50
[ 87.293409][ T6505] x64_sys_call+0x1530/0x1730
[ 87.293426][ T6505] do_syscall_64+0xcd/0x260
[ 87.293439][ T6505] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.293449][ T6505] RIP: 0033:0x7fbf3cb8e969
[ 87.293456][ T6505] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 87.293461][ T6505] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 87.293470][ T6505] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 87.293475][ T6505] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 87.293481][ T6505] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 87.293487][ T6505] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 87.293492][ T6505] R13: 00000000000927c0 R14: 0000000000015245 R15: 00007fff5c310b00
[ 87.293500][ T6505]
[ 87.293515][ T6505] BUG: Bad page state in process syz.0.17 pfn:4f800
[ 87.398505][ T6505] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4f800
[ 87.401625][ T6505] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 87.404508][ T6505] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 87.411114][ T6505] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 87.414958][ T6505] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 87.418567][ T6505] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 87.422184][ T6505] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 87.426120][ T6505] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 87.429721][ T6505] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 87.433238][ T6505] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 87.436487][ T6505] page_owner tracks the page as allocated
[ 87.438895][ T6505] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6505, tgid 6505 (syz.0.17), ts 87169446469, free_ts 79417053610
[ 87.447252][ T6505] post_alloc_hook+0x181/0x1b0
[ 87.449229][ T6505] get_page_from_freelist+0x135c/0x3920
[ 87.451497][ T6505] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 87.453923][ T6505] alloc_pages_mpol+0x1fb/0x550
[ 87.456081][ T6505] folio_alloc_noprof+0x20/0x2d0
[ 87.458156][ T6505] filemap_alloc_folio_noprof+0x3a1/0x470
[ 87.460524][ T6505] page_cache_ra_order+0x4c0/0xd00
[ 87.462534][ T6505] filemap_fault+0x1a5e/0x2740
[ 87.464540][ T6505] __do_fault+0x10a/0x490
[ 87.466498][ T6505] do_pte_missing+0x1a6/0x3fb0
[ 87.468516][ T6505] __handle_mm_fault+0x103d/0x2a40
[ 87.470660][ T6505] handle_mm_fault+0x3fe/0xad0
[ 87.472677][ T6505] do_user_addr_fault+0x60c/0x1370
[ 87.474945][ T6505] exc_page_fault+0x5c/0xc0
[ 87.476538][ T6505] asm_exc_page_fault+0x26/0x30
[ 87.478544][ T6505] page last free pid 6267 tgid 6267 stack trace:
[ 87.480651][ T6505] __free_frozen_pages+0x69d/0xff0
[ 87.482368][ T6505] vfree+0x176/0x960
[ 87.483651][ T6505] kcov_close+0x34/0x60
[ 87.485203][ T6505] __fput+0x3ff/0xb70
[ 87.486620][ T6505] task_work_run+0x14d/0x240
[ 87.488217][ T6505] do_exit+0xafb/0x2c30
[ 87.489593][ T6505] do_group_exit+0xd3/0x2a0
[ 87.491064][ T6505] get_signal+0x2673/0x26d0
[ 87.492560][ T6505] arch_do_signal_or_restart+0x8f/0x7d0
[ 87.494418][ T6505] syscall_exit_to_user_mode+0x150/0x2a0
[ 87.496257][ T6505] do_syscall_64+0xda/0x260
[ 87.497750][ T6505] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.499664][ T6505] Modules linked in:
[ 87.501151][ T6505] CPU: 0 UID: 0 PID: 6505 Comm: syz.0.17 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 87.501173][ T6505] Tainted: [B]=BAD_PAGE
[ 87.501178][ T6505] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 87.501187][ T6505] Call Trace:
[ 87.501192][ T6505]
[ 87.501196][ T6505] dump_stack_lvl+0x16c/0x1f0
[ 87.501210][ T6505] bad_page+0xb3/0x1f0
[ 87.501222][ T6505] ? __pfx_bad_page+0x10/0x10
[ 87.501232][ T6505] ? page_bad_reason+0x9d/0x1e0
[ 87.501242][ T6505] __free_frozen_pages+0x76e/0xff0
[ 87.501257][ T6505] __folio_put+0x329/0x450
[ 87.501267][ T6505] ? __pfx___folio_put+0x10/0x10
[ 87.501277][ T6505] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 87.501289][ T6505] ? rcu_is_watching+0x12/0xc0
[ 87.501300][ T6505] ? lock_release+0x201/0x2f0
[ 87.501314][ T6505] filemap_free_folio+0x132/0x170
[ 87.501325][ T6505] delete_from_page_cache_batch+0x741/0x9b0
[ 87.501336][ T6505] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 87.501348][ T6505] ? __pfx_workingset_update_node+0x10/0x10
[ 87.501358][ T6505] ? xas_move_index+0xb0/0x110
[ 87.501372][ T6505] truncate_inode_pages_range+0x279/0xe30
[ 87.501386][ T6505] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 87.501407][ T6505] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 87.501427][ T6505] ? __pfx_has_bh_in_lru+0x10/0x10
[ 87.501441][ T6505] blkdev_flush_mapping+0xfb/0x290
[ 87.501454][ T6505] blkdev_put_whole+0xc4/0xf0
[ 87.501464][ T6505] bdev_release+0x47e/0x6d0
[ 87.501476][ T6505] ? __pfx_blkdev_release+0x10/0x10
[ 87.501488][ T6505] blkdev_release+0x15/0x20
[ 87.501500][ T6505] __fput+0x3ff/0xb70
[ 87.501511][ T6505] task_work_run+0x14d/0x240
[ 87.501522][ T6505] ? __pfx_task_work_run+0x10/0x10
[ 87.501532][ T6505] ? do_raw_spin_unlock+0x172/0x230
[ 87.501542][ T6505] do_exit+0xafb/0x2c30
[ 87.501557][ T6505] ? __pfx_do_exit+0x10/0x10
[ 87.501570][ T6505] ? preempt_schedule_thunk+0x16/0x30
[ 87.501580][ T6505] do_group_exit+0xd3/0x2a0
[ 87.501595][ T6505] __x64_sys_exit_group+0x3e/0x50
[ 87.501609][ T6505] x64_sys_call+0x1530/0x1730
[ 87.501622][ T6505] do_syscall_64+0xcd/0x260
[ 87.501635][ T6505] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.501645][ T6505] RIP: 0033:0x7fbf3cb8e969
[ 87.501652][ T6505] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 87.501656][ T6505] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 87.501665][ T6505] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 87.501671][ T6505] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 87.501677][ T6505] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 87.501682][ T6505] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 87.501687][ T6505] R13: 00000000000927c0 R14: 0000000000015245 R15: 00007fff5c310b00
[ 87.501695][ T6505]
[ 87.535086][ T6508] BUG: Bad page state in process syz.0.18 pfn:4de01
[ 87.610710][ T6508] page does not match folio
[ 87.612512][ T6508] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4de01
[ 87.616534][ T6508] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 87.619613][ T6508] raw: 00fff00000000000 ffffea0001378000 00000000ffffffff ffffffffffffffff
[ 87.622939][ T6508] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 87.627893][ T6508] page dumped because: nonzero pincount
[ 87.629858][ T6508] page_owner tracks the page as allocated
[ 87.631750][ T6508] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6507, tgid 6507 (syz.0.18), ts 87512579921, free_ts 87053813013
[ 87.638268][ T6508] post_alloc_hook+0x181/0x1b0
[ 87.639758][ T6508] get_page_from_freelist+0x135c/0x3920
[ 87.641570][ T6508] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 87.643395][ T6508] alloc_pages_mpol+0x1fb/0x550
[ 87.644976][ T6508] folio_alloc_noprof+0x20/0x2d0
[ 87.646457][ T6508] filemap_alloc_folio_noprof+0x3a1/0x470
[ 87.648192][ T6508] page_cache_ra_order+0x4c0/0xd00
[ 87.649781][ T6508] filemap_fault+0x1a5e/0x2740
[ 87.651208][ T6508] __do_fault+0x10a/0x490
[ 87.652584][ T6508] do_pte_missing+0x1a6/0x3fb0
[ 87.654303][ T6508] __handle_mm_fault+0x103d/0x2a40
[ 87.656328][ T6508] handle_mm_fault+0x3fe/0xad0
[ 87.658087][ T6508] do_user_addr_fault+0x60c/0x1370
[ 87.659662][ T6508] exc_page_fault+0x5c/0xc0
[ 87.661356][ T6508] asm_exc_page_fault+0x26/0x30
[ 87.662999][ T6508] page last free pid 6503 tgid 6503 stack trace:
[ 87.665499][ T6508] free_unref_folios+0x999/0x1630
[ 87.667472][ T6508] folios_put_refs+0x56f/0x740
[ 87.669384][ T6508] truncate_inode_pages_range+0x311/0xe30
[ 87.671226][ T6508] blkdev_flush_mapping+0xfb/0x290
[ 87.673240][ T6508] blkdev_put_whole+0xc4/0xf0
[ 87.675245][ T6508] bdev_release+0x47e/0x6d0
[ 87.677129][ T6508] blkdev_release+0x15/0x20
[ 87.679022][ T6508] __fput+0x3ff/0xb70
[ 87.680664][ T6508] task_work_run+0x14d/0x240
[ 87.682290][ T6508] do_exit+0xafb/0x2c30
[ 87.683917][ T6508] do_group_exit+0xd3/0x2a0
[ 87.685921][ T6508] __x64_sys_exit_group+0x3e/0x50
[ 87.687956][ T6508] x64_sys_call+0x1530/0x1730
[ 87.689872][ T6508] do_syscall_64+0xcd/0x260
[ 87.691746][ T6508] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.694108][ T6508] Modules linked in:
[ 87.695732][ T6508] CPU: 3 UID: 0 PID: 6508 Comm: syz.0.18 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 87.695757][ T6508] Tainted: [B]=BAD_PAGE
[ 87.695762][ T6508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 87.695772][ T6508] Call Trace:
[ 87.695778][ T6508]
[ 87.695784][ T6508] dump_stack_lvl+0x16c/0x1f0
[ 87.695806][ T6508] bad_page+0xb3/0x1f0
[ 87.695824][ T6508] ? __pfx_bad_page+0x10/0x10
[ 87.695841][ T6508] ? __mem_cgroup_uncharge+0xda/0x130
[ 87.695860][ T6508] free_tail_page_prepare+0x44f/0x5b0
[ 87.695880][ T6508] __free_frozen_pages+0x96a/0xff0
[ 87.695903][ T6508] __folio_put+0x329/0x450
[ 87.695920][ T6508] ? __pfx___folio_put+0x10/0x10
[ 87.695938][ T6508] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 87.695956][ T6508] ? rcu_is_watching+0x12/0xc0
[ 87.695975][ T6508] ? lock_release+0x201/0x2f0
[ 87.695997][ T6508] filemap_free_folio+0x132/0x170
[ 87.696014][ T6508] delete_from_page_cache_batch+0x741/0x9b0
[ 87.696034][ T6508] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 87.696053][ T6508] ? __pfx_workingset_update_node+0x10/0x10
[ 87.696069][ T6508] ? xas_move_index+0xb0/0x110
[ 87.696092][ T6508] truncate_inode_pages_range+0x279/0xe30
[ 87.696115][ T6508] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 87.696151][ T6508] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 87.696176][ T6508] ? __pfx_has_bh_in_lru+0x10/0x10
[ 87.696198][ T6508] blkdev_flush_mapping+0xfb/0x290
[ 87.696215][ T6508] ? filemap_check_errors+0xa9/0x160
[ 87.696245][ T6508] blkdev_put_whole+0xc4/0xf0
[ 87.696263][ T6508] bdev_release+0x47e/0x6d0
[ 87.696289][ T6508] ? __pfx_blkdev_release+0x10/0x10
[ 87.696308][ T6508] blkdev_release+0x15/0x20
[ 87.696326][ T6508] __fput+0x3ff/0xb70
[ 87.696345][ T6508] task_work_run+0x14d/0x240
[ 87.696361][ T6508] ? __pfx_task_work_run+0x10/0x10
[ 87.696378][ T6508] ? do_raw_spin_unlock+0x172/0x230
[ 87.696394][ T6508] do_exit+0xafb/0x2c30
[ 87.696415][ T6508] ? __pfx_futex_wake_mark+0x10/0x10
[ 87.696440][ T6508] ? __pfx_do_exit+0x10/0x10
[ 87.696461][ T6508] ? do_raw_spin_lock+0x12c/0x2b0
[ 87.696476][ T6508] ? get_signal+0x8f5/0x26d0
[ 87.696492][ T6508] ? rcu_is_watching+0x12/0xc0
[ 87.696510][ T6508] do_group_exit+0xd3/0x2a0
[ 87.696532][ T6508] get_signal+0x2673/0x26d0
[ 87.696553][ T6508] ? __pfx_get_signal+0x10/0x10
[ 87.696571][ T6508] ? do_futex+0x122/0x350
[ 87.696590][ T6508] ? __pfx_do_futex+0x10/0x10
[ 87.696609][ T6508] arch_do_signal_or_restart+0x8f/0x7d0
[ 87.696632][ T6508] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 87.696654][ T6508] ? __pfx_do_preadv+0x10/0x10
[ 87.696673][ T6508] ? madvise_unlock+0xc6/0x190
[ 87.696690][ T6508] syscall_exit_to_user_mode+0x150/0x2a0
[ 87.696710][ T6508] do_syscall_64+0xda/0x260
[ 87.696730][ T6508] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.696745][ T6508] RIP: 0033:0x7fbf3cb8e969
[ 87.696757][ T6508] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 87.696764][ T6508] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 87.696779][ T6508] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 87.696788][ T6508] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 87.696796][ T6508] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 87.696805][ T6508] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 87.696814][ T6508] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 87.696827][ T6508]
[ 87.696855][ T6508] BUG: Bad page state in process syz.0.18 pfn:4de00
[ 87.823956][ T6508] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4de00
[ 87.827555][ T6508] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 87.830649][ T6508] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 87.833802][ T6508] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 87.837710][ T6508] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 87.841138][ T6508] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 87.844642][ T6508] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 87.848431][ T6508] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 87.851902][ T6508] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 87.855616][ T6508] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 87.858608][ T6508] page_owner tracks the page as allocated
[ 87.860758][ T6508] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6507, tgid 6507 (syz.0.18), ts 87512579921, free_ts 87053813013
[ 87.868594][ T6508] post_alloc_hook+0x181/0x1b0
[ 87.870553][ T6508] get_page_from_freelist+0x135c/0x3920
[ 87.872720][ T6508] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 87.875561][ T6508] alloc_pages_mpol+0x1fb/0x550
[ 87.877683][ T6508] folio_alloc_noprof+0x20/0x2d0
[ 87.879738][ T6508] filemap_alloc_folio_noprof+0x3a1/0x470
[ 87.882099][ T6508] page_cache_ra_order+0x4c0/0xd00
[ 87.884065][ T6508] filemap_fault+0x1a5e/0x2740
[ 87.886580][ T6508] __do_fault+0x10a/0x490
[ 87.888395][ T6508] do_pte_missing+0x1a6/0x3fb0
[ 87.890336][ T6508] __handle_mm_fault+0x103d/0x2a40
[ 87.892425][ T6508] handle_mm_fault+0x3fe/0xad0
[ 87.894499][ T6508] do_user_addr_fault+0x60c/0x1370
[ 87.896992][ T6508] exc_page_fault+0x5c/0xc0
[ 87.898578][ T6508] asm_exc_page_fault+0x26/0x30
[ 87.900187][ T6508] page last free pid 6503 tgid 6503 stack trace:
[ 87.902780][ T6508] free_unref_folios+0x999/0x1630
[ 87.904996][ T6508] folios_put_refs+0x56f/0x740
[ 87.907073][ T6508] truncate_inode_pages_range+0x311/0xe30
[ 87.909384][ T6508] blkdev_flush_mapping+0xfb/0x290
[ 87.911446][ T6508] blkdev_put_whole+0xc4/0xf0
[ 87.913384][ T6508] bdev_release+0x47e/0x6d0
[ 87.915356][ T6508] blkdev_release+0x15/0x20
[ 87.917168][ T6508] __fput+0x3ff/0xb70
[ 87.918762][ T6508] task_work_run+0x14d/0x240
[ 87.920560][ T6508] do_exit+0xafb/0x2c30
[ 87.922231][ T6508] do_group_exit+0xd3/0x2a0
[ 87.924053][ T6508] __x64_sys_exit_group+0x3e/0x50
[ 87.926204][ T6508] x64_sys_call+0x1530/0x1730
[ 87.928133][ T6508] do_syscall_64+0xcd/0x260
[ 87.929966][ T6508] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.932311][ T6508] Modules linked in:
[ 87.933920][ T6508] CPU: 0 UID: 0 PID: 6508 Comm: syz.0.18 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 87.933943][ T6508] Tainted: [B]=BAD_PAGE
[ 87.933948][ T6508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 87.933957][ T6508] Call Trace:
[ 87.933963][ T6508]
[ 87.933970][ T6508] dump_stack_lvl+0x16c/0x1f0
[ 87.934009][ T6508] bad_page+0xb3/0x1f0
[ 87.934027][ T6508] ? __pfx_bad_page+0x10/0x10
[ 87.934043][ T6508] ? page_bad_reason+0x9d/0x1e0
[ 87.934060][ T6508] __free_frozen_pages+0x76e/0xff0
[ 87.934083][ T6508] __folio_put+0x329/0x450
[ 87.934101][ T6508] ? __pfx___folio_put+0x10/0x10
[ 87.934118][ T6508] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 87.934136][ T6508] ? rcu_is_watching+0x12/0xc0
[ 87.934154][ T6508] ? lock_release+0x201/0x2f0
[ 87.934176][ T6508] filemap_free_folio+0x132/0x170
[ 87.934192][ T6508] delete_from_page_cache_batch+0x741/0x9b0
[ 87.934207][ T6508] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 87.934224][ T6508] ? __pfx_workingset_update_node+0x10/0x10
[ 87.934240][ T6508] ? xas_move_index+0xb0/0x110
[ 87.934261][ T6508] truncate_inode_pages_range+0x279/0xe30
[ 87.934282][ T6508] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 87.934317][ T6508] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 87.934342][ T6508] ? __pfx_has_bh_in_lru+0x10/0x10
[ 87.934364][ T6508] blkdev_flush_mapping+0xfb/0x290
[ 87.934382][ T6508] ? filemap_check_errors+0xa9/0x160
[ 87.934411][ T6508] blkdev_put_whole+0xc4/0xf0
[ 87.934428][ T6508] bdev_release+0x47e/0x6d0
[ 87.934449][ T6508] ? __pfx_blkdev_release+0x10/0x10
[ 87.934468][ T6508] blkdev_release+0x15/0x20
[ 87.934487][ T6508] __fput+0x3ff/0xb70
[ 87.934506][ T6508] task_work_run+0x14d/0x240
[ 87.934523][ T6508] ? __pfx_task_work_run+0x10/0x10
[ 87.934539][ T6508] ? do_raw_spin_unlock+0x172/0x230
[ 87.934557][ T6508] do_exit+0xafb/0x2c30
[ 87.934578][ T6508] ? __pfx_futex_wake_mark+0x10/0x10
[ 87.934604][ T6508] ? __pfx_do_exit+0x10/0x10
[ 87.934625][ T6508] ? do_raw_spin_lock+0x12c/0x2b0
[ 87.934641][ T6508] ? get_signal+0x8f5/0x26d0
[ 87.934659][ T6508] ? rcu_is_watching+0x12/0xc0
[ 87.934678][ T6508] do_group_exit+0xd3/0x2a0
[ 87.934701][ T6508] get_signal+0x2673/0x26d0
[ 87.934738][ T6508] ? __pfx_get_signal+0x10/0x10
[ 87.934758][ T6508] ? do_futex+0x122/0x350
[ 87.934778][ T6508] ? __pfx_do_futex+0x10/0x10
[ 87.934799][ T6508] arch_do_signal_or_restart+0x8f/0x7d0
[ 87.934822][ T6508] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 87.934846][ T6508] ? __pfx_do_preadv+0x10/0x10
[ 87.934866][ T6508] ? madvise_unlock+0xc6/0x190
[ 87.934884][ T6508] syscall_exit_to_user_mode+0x150/0x2a0
[ 87.934906][ T6508] do_syscall_64+0xda/0x260
[ 87.934926][ T6508] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 87.934941][ T6508] RIP: 0033:0x7fbf3cb8e969
[ 87.934956][ T6508] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 87.934963][ T6508] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 87.934977][ T6508] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 87.934987][ T6508] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 87.934996][ T6508] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 87.935006][ T6508] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 87.935014][ T6508] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 87.935028][ T6508]
[ 88.088775][ T6509] BUG: Bad page state in process syz.0.19 pfn:4be01
[ 88.090876][ T6509] page does not match folio
[ 88.092361][ T6509] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4be01
[ 88.095629][ T6509] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 88.098484][ T6509] raw: 00fff00000000000 ffffea00012f8000 00000000ffffffff ffffffffffffffff
[ 88.101857][ T6509] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 88.105130][ T6509] page dumped because: nonzero pincount
[ 88.107247][ T6509] page_owner tracks the page as allocated
[ 88.109180][ T6509] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6509, tgid 6509 (syz.0.19), ts 88072807636, free_ts 77404609623
[ 88.115496][ T6509] post_alloc_hook+0x181/0x1b0
[ 88.117236][ T6509] get_page_from_freelist+0x135c/0x3920
[ 88.119342][ T6509] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 88.121348][ T6509] alloc_pages_mpol+0x1fb/0x550
[ 88.123173][ T6509] folio_alloc_noprof+0x20/0x2d0
[ 88.129183][ T6509] filemap_alloc_folio_noprof+0x3a1/0x470
[ 88.130934][ T6509] page_cache_ra_order+0x4c0/0xd00
[ 88.132578][ T6509] filemap_fault+0x1a5e/0x2740
[ 88.134064][ T6509] __do_fault+0x10a/0x490
[ 88.135446][ T6509] do_pte_missing+0x1a6/0x3fb0
[ 88.136890][ T6509] __handle_mm_fault+0x103d/0x2a40
[ 88.138472][ T6509] handle_mm_fault+0x3fe/0xad0
[ 88.139933][ T6509] do_user_addr_fault+0x60c/0x1370
[ 88.141624][ T6509] exc_page_fault+0x5c/0xc0
[ 88.143029][ T6509] asm_exc_page_fault+0x26/0x30
[ 88.144553][ T6509] page last free pid 6196 tgid 6196 stack trace:
[ 88.146583][ T6509] free_unref_folios+0x999/0x1630
[ 88.148555][ T6509] folios_put_refs+0x56f/0x740
[ 88.150031][ T6509] free_pages_and_swap_cache+0x245/0x4a0
[ 88.151726][ T6509] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 88.153560][ T6509] tlb_finish_mmu+0x168/0x7b0
[ 88.155164][ T6509] vms_clear_ptes+0x55e/0x770
[ 88.156600][ T6509] vms_complete_munmap_vmas+0x1ca/0x970
[ 88.158286][ T6509] do_vmi_align_munmap+0x43b/0x7d0
[ 88.159823][ T6509] do_vmi_munmap+0x208/0x3e0
[ 88.161247][ T6509] __vm_munmap+0x19a/0x390
[ 88.162614][ T6509] __x64_sys_munmap+0x59/0x80
[ 88.164050][ T6509] do_syscall_64+0xcd/0x260
[ 88.165583][ T6509] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.167465][ T6509] Modules linked in:
[ 88.168686][ T6509] CPU: 3 UID: 0 PID: 6509 Comm: syz.0.19 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 88.168701][ T6509] Tainted: [B]=BAD_PAGE
[ 88.168704][ T6509] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 88.168709][ T6509] Call Trace:
[ 88.168714][ T6509]
[ 88.168717][ T6509] dump_stack_lvl+0x16c/0x1f0
[ 88.168733][ T6509] bad_page+0xb3/0x1f0
[ 88.168743][ T6509] ? __pfx_bad_page+0x10/0x10
[ 88.168753][ T6509] ? __mem_cgroup_uncharge+0xda/0x130
[ 88.168765][ T6509] free_tail_page_prepare+0x44f/0x5b0
[ 88.168778][ T6509] __free_frozen_pages+0x96a/0xff0
[ 88.168793][ T6509] __folio_put+0x329/0x450
[ 88.168804][ T6509] ? __pfx___folio_put+0x10/0x10
[ 88.168814][ T6509] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 88.168825][ T6509] ? rcu_is_watching+0x12/0xc0
[ 88.168836][ T6509] ? lock_release+0x201/0x2f0
[ 88.168851][ T6509] filemap_free_folio+0x132/0x170
[ 88.168861][ T6509] delete_from_page_cache_batch+0x741/0x9b0
[ 88.168873][ T6509] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 88.168885][ T6509] ? __pfx_workingset_update_node+0x10/0x10
[ 88.168895][ T6509] ? xas_move_index+0xb0/0x110
[ 88.168910][ T6509] truncate_inode_pages_range+0x279/0xe30
[ 88.168941][ T6509] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 88.168970][ T6509] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 88.168986][ T6509] ? __pfx_has_bh_in_lru+0x10/0x10
[ 88.169000][ T6509] blkdev_flush_mapping+0xfb/0x290
[ 88.169013][ T6509] blkdev_put_whole+0xc4/0xf0
[ 88.169023][ T6509] bdev_release+0x47e/0x6d0
[ 88.169036][ T6509] ? __pfx_blkdev_release+0x10/0x10
[ 88.169048][ T6509] blkdev_release+0x15/0x20
[ 88.169060][ T6509] __fput+0x3ff/0xb70
[ 88.169071][ T6509] task_work_run+0x14d/0x240
[ 88.169081][ T6509] ? __pfx_task_work_run+0x10/0x10
[ 88.169091][ T6509] ? do_raw_spin_unlock+0x172/0x230
[ 88.169102][ T6509] do_exit+0xafb/0x2c30
[ 88.169117][ T6509] ? __pfx_do_exit+0x10/0x10
[ 88.169134][ T6509] ? preempt_schedule_thunk+0x16/0x30
[ 88.169145][ T6509] do_group_exit+0xd3/0x2a0
[ 88.169159][ T6509] __x64_sys_exit_group+0x3e/0x50
[ 88.169173][ T6509] x64_sys_call+0x1530/0x1730
[ 88.169187][ T6509] do_syscall_64+0xcd/0x260
[ 88.169200][ T6509] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.169210][ T6509] RIP: 0033:0x7fbf3cb8e969
[ 88.169217][ T6509] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 88.169221][ T6509] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 88.169230][ T6509] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 88.169236][ T6509] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 88.169241][ T6509] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 88.169247][ T6509] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000003
[ 88.169252][ T6509] R13: 00000000000927c0 R14: 0000000000015568 R15: 00007fff5c310b00
[ 88.169260][ T6509]
[ 88.169275][ T6509] BUG: Bad page state in process syz.0.19 pfn:4be00
[ 88.264917][ T5290] Bluetooth: hci0: command tx timeout
[ 88.265334][ T6509] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4be00
[ 88.270236][ T6509] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 88.273014][ T6509] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 88.275875][ T6509] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 88.278469][ T6509] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 88.281071][ T6509] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 88.283693][ T6509] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 88.286394][ T6509] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 88.289073][ T6509] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 88.292011][ T6509] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 88.294610][ T6509] page_owner tracks the page as allocated
[ 88.296380][ T6509] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6509, tgid 6509 (syz.0.19), ts 88072807636, free_ts 77404604443
[ 88.302313][ T6509] post_alloc_hook+0x181/0x1b0
[ 88.303741][ T6509] get_page_from_freelist+0x135c/0x3920
[ 88.305519][ T6509] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 88.307300][ T6509] alloc_pages_mpol+0x1fb/0x550
[ 88.309022][ T6509] folio_alloc_noprof+0x20/0x2d0
[ 88.311015][ T6509] filemap_alloc_folio_noprof+0x3a1/0x470
[ 88.313337][ T6509] page_cache_ra_order+0x4c0/0xd00
[ 88.314998][ T6509] filemap_fault+0x1a5e/0x2740
[ 88.316463][ T6509] __do_fault+0x10a/0x490
[ 88.317784][ T6509] do_pte_missing+0x1a6/0x3fb0
[ 88.319249][ T6509] __handle_mm_fault+0x103d/0x2a40
[ 88.320862][ T6509] handle_mm_fault+0x3fe/0xad0
[ 88.322801][ T6509] do_user_addr_fault+0x60c/0x1370
[ 88.324383][ T6509] exc_page_fault+0x5c/0xc0
[ 88.325947][ T6509] asm_exc_page_fault+0x26/0x30
[ 88.327502][ T6509] page last free pid 6196 tgid 6196 stack trace:
[ 88.329391][ T6509] free_unref_folios+0x999/0x1630
[ 88.330994][ T6509] folios_put_refs+0x56f/0x740
[ 88.332491][ T6509] free_pages_and_swap_cache+0x245/0x4a0
[ 88.334214][ T6509] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 88.336115][ T6509] tlb_finish_mmu+0x168/0x7b0
[ 88.337578][ T6509] vms_clear_ptes+0x55e/0x770
[ 88.339063][ T6509] vms_complete_munmap_vmas+0x1ca/0x970
[ 88.340756][ T6509] do_vmi_align_munmap+0x43b/0x7d0
[ 88.342384][ T6509] do_vmi_munmap+0x208/0x3e0
[ 88.343805][ T6509] __vm_munmap+0x19a/0x390
[ 88.345489][ T6509] __x64_sys_munmap+0x59/0x80
[ 88.346967][ T6509] do_syscall_64+0xcd/0x260
[ 88.348349][ T6509] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.350186][ T6509] Modules linked in:
[ 88.351438][ T6509] CPU: 1 UID: 0 PID: 6509 Comm: syz.0.19 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 88.351453][ T6509] Tainted: [B]=BAD_PAGE
[ 88.351456][ T6509] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 88.351462][ T6509] Call Trace:
[ 88.351466][ T6509]
[ 88.351470][ T6509] dump_stack_lvl+0x16c/0x1f0
[ 88.351485][ T6509] bad_page+0xb3/0x1f0
[ 88.351496][ T6509] ? __pfx_bad_page+0x10/0x10
[ 88.351506][ T6509] ? page_bad_reason+0x9d/0x1e0
[ 88.351516][ T6509] __free_frozen_pages+0x76e/0xff0
[ 88.351530][ T6509] __folio_put+0x329/0x450
[ 88.351541][ T6509] ? __pfx___folio_put+0x10/0x10
[ 88.351551][ T6509] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 88.351563][ T6509] ? rcu_is_watching+0x12/0xc0
[ 88.351575][ T6509] ? lock_release+0x201/0x2f0
[ 88.351589][ T6509] filemap_free_folio+0x132/0x170
[ 88.351600][ T6509] delete_from_page_cache_batch+0x741/0x9b0
[ 88.351611][ T6509] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 88.351623][ T6509] ? __pfx_workingset_update_node+0x10/0x10
[ 88.351633][ T6509] ? xas_move_index+0xb0/0x110
[ 88.351647][ T6509] truncate_inode_pages_range+0x279/0xe30
[ 88.351661][ T6509] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 88.351683][ T6509] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 88.351698][ T6509] ? __pfx_has_bh_in_lru+0x10/0x10
[ 88.351712][ T6509] blkdev_flush_mapping+0xfb/0x290
[ 88.351725][ T6509] blkdev_put_whole+0xc4/0xf0
[ 88.351735][ T6509] bdev_release+0x47e/0x6d0
[ 88.351748][ T6509] ? __pfx_blkdev_release+0x10/0x10
[ 88.351760][ T6509] blkdev_release+0x15/0x20
[ 88.351772][ T6509] __fput+0x3ff/0xb70
[ 88.351783][ T6509] task_work_run+0x14d/0x240
[ 88.351794][ T6509] ? __pfx_task_work_run+0x10/0x10
[ 88.351804][ T6509] ? do_raw_spin_unlock+0x172/0x230
[ 88.351814][ T6509] do_exit+0xafb/0x2c30
[ 88.351829][ T6509] ? __pfx_do_exit+0x10/0x10
[ 88.351842][ T6509] ? preempt_schedule_thunk+0x16/0x30
[ 88.351852][ T6509] do_group_exit+0xd3/0x2a0
[ 88.351867][ T6509] __x64_sys_exit_group+0x3e/0x50
[ 88.351881][ T6509] x64_sys_call+0x1530/0x1730
[ 88.351895][ T6509] do_syscall_64+0xcd/0x260
[ 88.351908][ T6509] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.351918][ T6509] RIP: 0033:0x7fbf3cb8e969
[ 88.351925][ T6509] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 88.351929][ T6509] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 88.351938][ T6509] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 88.351944][ T6509] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 88.351950][ T6509] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 88.351955][ T6509] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000003
[ 88.351961][ T6509] R13: 00000000000927c0 R14: 0000000000015568 R15: 00007fff5c310b00
[ 88.351969][ T6509]
[ 88.380836][ T6512] BUG: Bad page state in process syz.0.20 pfn:4bc01
[ 88.463916][ T6512] page does not match folio
[ 88.466882][ T6512] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4bc01
[ 88.470872][ T6512] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 88.474025][ T6512] raw: 00fff00000000000 ffffea00012f0000 00000000ffffffff ffffffffffffffff
[ 88.477634][ T6512] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 88.481167][ T6512] page dumped because: nonzero pincount
[ 88.483446][ T6512] page_owner tracks the page as allocated
[ 88.485999][ T6512] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6511, tgid 6511 (syz.0.20), ts 88360297876, free_ts 88063822242
[ 88.494028][ T6512] post_alloc_hook+0x181/0x1b0
[ 88.496057][ T6512] get_page_from_freelist+0x135c/0x3920
[ 88.498325][ T6512] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 88.500699][ T6512] alloc_pages_mpol+0x1fb/0x550
[ 88.502711][ T6512] folio_alloc_noprof+0x20/0x2d0
[ 88.504818][ T6512] filemap_alloc_folio_noprof+0x3a1/0x470
[ 88.507145][ T6512] page_cache_ra_order+0x4c0/0xd00
[ 88.509255][ T6512] filemap_fault+0x1a5e/0x2740
[ 88.511229][ T6512] __do_fault+0x10a/0x490
[ 88.512989][ T6512] do_pte_missing+0x1a6/0x3fb0
[ 88.515339][ T6512] __handle_mm_fault+0x103d/0x2a40
[ 88.517023][ T6512] handle_mm_fault+0x3fe/0xad0
[ 88.518570][ T6512] do_user_addr_fault+0x60c/0x1370
[ 88.520219][ T6512] exc_page_fault+0x5c/0xc0
[ 88.522381][ T6512] asm_exc_page_fault+0x26/0x30
[ 88.523912][ T6512] page last free pid 6508 tgid 6507 stack trace:
[ 88.525972][ T6512] free_unref_folios+0x999/0x1630
[ 88.527535][ T6512] folios_put_refs+0x56f/0x740
[ 88.529070][ T6512] truncate_inode_pages_range+0x311/0xe30
[ 88.530792][ T6512] blkdev_flush_mapping+0xfb/0x290
[ 88.532847][ T6512] blkdev_put_whole+0xc4/0xf0
[ 88.534663][ T6512] bdev_release+0x47e/0x6d0
[ 88.536249][ T6512] blkdev_release+0x15/0x20
[ 88.537622][ T6512] __fput+0x3ff/0xb70
[ 88.538816][ T6512] task_work_run+0x14d/0x240
[ 88.540184][ T6512] do_exit+0xafb/0x2c30
[ 88.541647][ T6512] do_group_exit+0xd3/0x2a0
[ 88.543329][ T6512] get_signal+0x2673/0x26d0
[ 88.545204][ T6512] arch_do_signal_or_restart+0x8f/0x7d0
[ 88.547308][ T6512] syscall_exit_to_user_mode+0x150/0x2a0
[ 88.549466][ T6512] do_syscall_64+0xda/0x260
[ 88.550870][ T6512] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.553209][ T6512] Modules linked in:
[ 88.554409][ T6512] CPU: 2 UID: 0 PID: 6512 Comm: syz.0.20 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 88.554424][ T6512] Tainted: [B]=BAD_PAGE
[ 88.554427][ T6512] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 88.554433][ T6512] Call Trace:
[ 88.554437][ T6512]
[ 88.554441][ T6512] dump_stack_lvl+0x16c/0x1f0
[ 88.554457][ T6512] bad_page+0xb3/0x1f0
[ 88.554468][ T6512] ? __pfx_bad_page+0x10/0x10
[ 88.554478][ T6512] ? __mem_cgroup_uncharge+0xda/0x130
[ 88.554490][ T6512] free_tail_page_prepare+0x44f/0x5b0
[ 88.554503][ T6512] __free_frozen_pages+0x96a/0xff0
[ 88.554518][ T6512] __folio_put+0x329/0x450
[ 88.554529][ T6512] ? __pfx___folio_put+0x10/0x10
[ 88.554539][ T6512] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 88.554550][ T6512] ? rcu_is_watching+0x12/0xc0
[ 88.554561][ T6512] ? lock_release+0x201/0x2f0
[ 88.554576][ T6512] filemap_free_folio+0x132/0x170
[ 88.554586][ T6512] delete_from_page_cache_batch+0x741/0x9b0
[ 88.554598][ T6512] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 88.554609][ T6512] ? __pfx_workingset_update_node+0x10/0x10
[ 88.554620][ T6512] ? xas_move_index+0xb0/0x110
[ 88.554634][ T6512] truncate_inode_pages_range+0x279/0xe30
[ 88.554648][ T6512] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 88.554669][ T6512] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 88.554685][ T6512] ? __pfx_has_bh_in_lru+0x10/0x10
[ 88.554698][ T6512] blkdev_flush_mapping+0xfb/0x290
[ 88.554710][ T6512] ? filemap_check_errors+0xa9/0x160
[ 88.554737][ T6512] blkdev_put_whole+0xc4/0xf0
[ 88.554748][ T6512] bdev_release+0x47e/0x6d0
[ 88.554760][ T6512] ? __pfx_blkdev_release+0x10/0x10
[ 88.554772][ T6512] blkdev_release+0x15/0x20
[ 88.554784][ T6512] __fput+0x3ff/0xb70
[ 88.554796][ T6512] task_work_run+0x14d/0x240
[ 88.554807][ T6512] ? __pfx_task_work_run+0x10/0x10
[ 88.554816][ T6512] ? do_raw_spin_unlock+0x172/0x230
[ 88.554827][ T6512] do_exit+0xafb/0x2c30
[ 88.554844][ T6512] ? __pfx_try_to_wake_up+0x10/0x10
[ 88.554860][ T6512] ? futex_wake+0x432/0x4e0
[ 88.554881][ T6512] ? __pfx_do_exit+0x10/0x10
[ 88.554900][ T6512] ? do_raw_spin_lock+0x12c/0x2b0
[ 88.554915][ T6512] ? get_signal+0x8f5/0x26d0
[ 88.554932][ T6512] ? rcu_is_watching+0x12/0xc0
[ 88.554960][ T6512] do_group_exit+0xd3/0x2a0
[ 88.554986][ T6512] get_signal+0x2673/0x26d0
[ 88.555005][ T6512] ? rcu_is_watching+0x12/0xc0
[ 88.555025][ T6512] ? __pfx_get_signal+0x10/0x10
[ 88.555044][ T6512] ? do_futex+0x122/0x350
[ 88.555063][ T6512] ? __pfx_do_futex+0x10/0x10
[ 88.555084][ T6512] arch_do_signal_or_restart+0x8f/0x7d0
[ 88.555107][ T6512] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 88.555131][ T6512] ? rcu_is_watching+0x12/0xc0
[ 88.555150][ T6512] syscall_exit_to_user_mode+0x150/0x2a0
[ 88.555173][ T6512] do_syscall_64+0xda/0x260
[ 88.555195][ T6512] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.555218][ T6512] RIP: 0033:0x7fbf3cb8e969
[ 88.555230][ T6512] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 88.555236][ T6512] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 88.555251][ T6512] RAX: 0000000000000001 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 88.555261][ T6512] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbf3cdb5fac
[ 88.555271][ T6512] RBP: 00007fbf3cdb5fa0 R08: 00007fbf3d958000 R09: 0000000000000000
[ 88.555281][ T6512] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 88.555290][ T6512] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 88.555304][ T6512]
[ 88.676873][ T6512] BUG: Bad page state in process syz.0.20 pfn:4bc00
[ 88.678954][ T6512] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4bc00
[ 88.681640][ T6512] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 88.684160][ T6512] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 88.686965][ T6512] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 88.689528][ T6512] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 88.692165][ T6512] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 88.694856][ T6512] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 88.697489][ T6512] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 88.700107][ T6512] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 88.702923][ T6512] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 88.705214][ T6512] page_owner tracks the page as allocated
[ 88.706939][ T6512] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6511, tgid 6511 (syz.0.20), ts 88360297876, free_ts 88063822242
[ 88.713006][ T6512] post_alloc_hook+0x181/0x1b0
[ 88.714521][ T6512] get_page_from_freelist+0x135c/0x3920
[ 88.716255][ T6512] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 88.718090][ T6512] alloc_pages_mpol+0x1fb/0x550
[ 88.719603][ T6512] folio_alloc_noprof+0x20/0x2d0
[ 88.721249][ T6512] filemap_alloc_folio_noprof+0x3a1/0x470
[ 88.723096][ T6512] page_cache_ra_order+0x4c0/0xd00
[ 88.724681][ T6512] filemap_fault+0x1a5e/0x2740
[ 88.726470][ T6512] __do_fault+0x10a/0x490
[ 88.727807][ T6512] do_pte_missing+0x1a6/0x3fb0
[ 88.729297][ T6512] __handle_mm_fault+0x103d/0x2a40
[ 88.730884][ T6512] handle_mm_fault+0x3fe/0xad0
[ 88.732406][ T6512] do_user_addr_fault+0x60c/0x1370
[ 88.734033][ T6512] exc_page_fault+0x5c/0xc0
[ 88.735517][ T6512] asm_exc_page_fault+0x26/0x30
[ 88.737011][ T6512] page last free pid 6508 tgid 6507 stack trace:
[ 88.738922][ T6512] free_unref_folios+0x999/0x1630
[ 88.740480][ T6512] folios_put_refs+0x56f/0x740
[ 88.741982][ T6512] truncate_inode_pages_range+0x311/0xe30
[ 88.743696][ T6512] blkdev_flush_mapping+0xfb/0x290
[ 88.745534][ T6512] blkdev_put_whole+0xc4/0xf0
[ 88.747087][ T6512] bdev_release+0x47e/0x6d0
[ 88.748996][ T6512] blkdev_release+0x15/0x20
[ 88.750869][ T6512] __fput+0x3ff/0xb70
[ 88.752645][ T6512] task_work_run+0x14d/0x240
[ 88.754563][ T6512] do_exit+0xafb/0x2c30
[ 88.756523][ T6512] do_group_exit+0xd3/0x2a0
[ 88.758387][ T6512] get_signal+0x2673/0x26d0
[ 88.760248][ T6512] arch_do_signal_or_restart+0x8f/0x7d0
[ 88.762550][ T6512] syscall_exit_to_user_mode+0x150/0x2a0
[ 88.765241][ T6512] do_syscall_64+0xda/0x260
[ 88.767176][ T6512] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.769710][ T6512] Modules linked in:
[ 88.771379][ T6512] CPU: 3 UID: 0 PID: 6512 Comm: syz.0.20 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 88.771404][ T6512] Tainted: [B]=BAD_PAGE
[ 88.771409][ T6512] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 88.771418][ T6512] Call Trace:
[ 88.771425][ T6512]
[ 88.771432][ T6512] dump_stack_lvl+0x16c/0x1f0
[ 88.771456][ T6512] bad_page+0xb3/0x1f0
[ 88.771474][ T6512] ? __pfx_bad_page+0x10/0x10
[ 88.771490][ T6512] ? page_bad_reason+0x9d/0x1e0
[ 88.771507][ T6512] __free_frozen_pages+0x76e/0xff0
[ 88.771531][ T6512] __folio_put+0x329/0x450
[ 88.771548][ T6512] ? __pfx___folio_put+0x10/0x10
[ 88.771565][ T6512] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 88.771583][ T6512] ? rcu_is_watching+0x12/0xc0
[ 88.771601][ T6512] ? lock_release+0x201/0x2f0
[ 88.771625][ T6512] filemap_free_folio+0x132/0x170
[ 88.771642][ T6512] delete_from_page_cache_batch+0x741/0x9b0
[ 88.771662][ T6512] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 88.771681][ T6512] ? __pfx_workingset_update_node+0x10/0x10
[ 88.771699][ T6512] ? xas_move_index+0xb0/0x110
[ 88.771722][ T6512] truncate_inode_pages_range+0x279/0xe30
[ 88.771745][ T6512] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 88.771783][ T6512] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 88.771808][ T6512] ? __pfx_has_bh_in_lru+0x10/0x10
[ 88.771831][ T6512] blkdev_flush_mapping+0xfb/0x290
[ 88.771849][ T6512] ? filemap_check_errors+0xa9/0x160
[ 88.771873][ T6512] blkdev_put_whole+0xc4/0xf0
[ 88.771890][ T6512] bdev_release+0x47e/0x6d0
[ 88.771910][ T6512] ? __pfx_blkdev_release+0x10/0x10
[ 88.771930][ T6512] blkdev_release+0x15/0x20
[ 88.771950][ T6512] __fput+0x3ff/0xb70
[ 88.771971][ T6512] task_work_run+0x14d/0x240
[ 88.771988][ T6512] ? __pfx_task_work_run+0x10/0x10
[ 88.772005][ T6512] ? do_raw_spin_unlock+0x172/0x230
[ 88.772023][ T6512] do_exit+0xafb/0x2c30
[ 88.772045][ T6512] ? __pfx_try_to_wake_up+0x10/0x10
[ 88.772065][ T6512] ? futex_wake+0x432/0x4e0
[ 88.772088][ T6512] ? __pfx_do_exit+0x10/0x10
[ 88.772110][ T6512] ? do_raw_spin_lock+0x12c/0x2b0
[ 88.772125][ T6512] ? get_signal+0x8f5/0x26d0
[ 88.772143][ T6512] ? rcu_is_watching+0x12/0xc0
[ 88.772162][ T6512] do_group_exit+0xd3/0x2a0
[ 88.772186][ T6512] get_signal+0x2673/0x26d0
[ 88.772205][ T6512] ? rcu_is_watching+0x12/0xc0
[ 88.772231][ T6512] ? __pfx_get_signal+0x10/0x10
[ 88.772250][ T6512] ? do_futex+0x122/0x350
[ 88.772270][ T6512] ? __pfx_do_futex+0x10/0x10
[ 88.772291][ T6512] arch_do_signal_or_restart+0x8f/0x7d0
[ 88.772314][ T6512] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 88.772339][ T6512] ? rcu_is_watching+0x12/0xc0
[ 88.772358][ T6512] syscall_exit_to_user_mode+0x150/0x2a0
[ 88.772380][ T6512] do_syscall_64+0xda/0x260
[ 88.772402][ T6512] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.772418][ T6512] RIP: 0033:0x7fbf3cb8e969
[ 88.772430][ T6512] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 88.772437][ T6512] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 88.772452][ T6512] RAX: 0000000000000001 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 88.772461][ T6512] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbf3cdb5fac
[ 88.772471][ T6512] RBP: 00007fbf3cdb5fa0 R08: 00007fbf3d958000 R09: 0000000000000000
[ 88.772480][ T6512] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 88.772490][ T6512] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 88.772504][ T6512]
[ 88.808217][ T6514] BUG: Bad page state in process syz.0.21 pfn:4b001
[ 88.889158][ T6514] page does not match folio
[ 88.890566][ T6514] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4b001
[ 88.893638][ T6514] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 88.896050][ T6514] raw: 00fff00000000000 ffffea00012c0000 00000000ffffffff ffffffffffffffff
[ 88.898724][ T6514] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 88.901312][ T6514] page dumped because: nonzero pincount
[ 88.903032][ T6514] page_owner tracks the page as allocated
[ 88.905646][ T6514] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6513, tgid 6513 (syz.0.21), ts 88781765294, free_ts 88352000722
[ 88.911910][ T6514] post_alloc_hook+0x181/0x1b0
[ 88.913441][ T6514] get_page_from_freelist+0x135c/0x3920
[ 88.915289][ T6514] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 88.917189][ T6514] alloc_pages_mpol+0x1fb/0x550
[ 88.918754][ T6514] folio_alloc_noprof+0x20/0x2d0
[ 88.920363][ T6514] filemap_alloc_folio_noprof+0x3a1/0x470
[ 88.922230][ T6514] page_cache_ra_order+0x4c0/0xd00
[ 88.923858][ T6514] filemap_fault+0x1a5e/0x2740
[ 88.925505][ T6514] __do_fault+0x10a/0x490
[ 88.926881][ T6514] do_pte_missing+0x1a6/0x3fb0
[ 88.928420][ T6514] __handle_mm_fault+0x103d/0x2a40
[ 88.930061][ T6514] handle_mm_fault+0x3fe/0xad0
[ 88.931604][ T6514] do_user_addr_fault+0x60c/0x1370
[ 88.933233][ T6514] exc_page_fault+0x5c/0xc0
[ 88.934691][ T6514] asm_exc_page_fault+0x26/0x30
[ 88.936425][ T6514] page last free pid 6509 tgid 6509 stack trace:
[ 88.938481][ T6514] free_unref_folios+0x999/0x1630
[ 88.940109][ T6514] folios_put_refs+0x56f/0x740
[ 88.941700][ T6514] truncate_inode_pages_range+0x311/0xe30
[ 88.943524][ T6514] blkdev_flush_mapping+0xfb/0x290
[ 88.945255][ T6514] blkdev_put_whole+0xc4/0xf0
[ 88.946753][ T6514] bdev_release+0x47e/0x6d0
[ 88.948164][ T6514] blkdev_release+0x15/0x20
[ 88.949602][ T6514] __fput+0x3ff/0xb70
[ 88.950841][ T6514] task_work_run+0x14d/0x240
[ 88.952309][ T6514] do_exit+0xafb/0x2c30
[ 88.953620][ T6514] do_group_exit+0xd3/0x2a0
[ 88.955124][ T6514] __x64_sys_exit_group+0x3e/0x50
[ 88.956674][ T6514] x64_sys_call+0x1530/0x1730
[ 88.958158][ T6514] do_syscall_64+0xcd/0x260
[ 88.959564][ T6514] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.961359][ T6514] Modules linked in:
[ 88.962613][ T6514] CPU: 0 UID: 0 PID: 6514 Comm: syz.0.21 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 88.962628][ T6514] Tainted: [B]=BAD_PAGE
[ 88.962632][ T6514] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 88.962637][ T6514] Call Trace:
[ 88.962642][ T6514]
[ 88.962646][ T6514] dump_stack_lvl+0x16c/0x1f0
[ 88.962660][ T6514] bad_page+0xb3/0x1f0
[ 88.962671][ T6514] ? __pfx_bad_page+0x10/0x10
[ 88.962681][ T6514] ? __mem_cgroup_uncharge+0xda/0x130
[ 88.962693][ T6514] free_tail_page_prepare+0x44f/0x5b0
[ 88.962705][ T6514] __free_frozen_pages+0x96a/0xff0
[ 88.962720][ T6514] __folio_put+0x329/0x450
[ 88.962730][ T6514] ? __pfx___folio_put+0x10/0x10
[ 88.962741][ T6514] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 88.962752][ T6514] ? rcu_is_watching+0x12/0xc0
[ 88.962763][ T6514] ? lock_release+0x201/0x2f0
[ 88.962778][ T6514] filemap_free_folio+0x132/0x170
[ 88.962788][ T6514] delete_from_page_cache_batch+0x741/0x9b0
[ 88.962800][ T6514] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 88.962812][ T6514] ? __pfx_workingset_update_node+0x10/0x10
[ 88.962822][ T6514] ? xas_move_index+0xb0/0x110
[ 88.962835][ T6514] truncate_inode_pages_range+0x279/0xe30
[ 88.962849][ T6514] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 88.962871][ T6514] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 88.962886][ T6514] ? __pfx_has_bh_in_lru+0x10/0x10
[ 88.962899][ T6514] blkdev_flush_mapping+0xfb/0x290
[ 88.962911][ T6514] ? filemap_check_errors+0xa9/0x160
[ 88.962924][ T6514] blkdev_put_whole+0xc4/0xf0
[ 88.962935][ T6514] bdev_release+0x47e/0x6d0
[ 88.962947][ T6514] ? __pfx_blkdev_release+0x10/0x10
[ 88.962959][ T6514] blkdev_release+0x15/0x20
[ 88.962971][ T6514] __fput+0x3ff/0xb70
[ 88.962982][ T6514] task_work_run+0x14d/0x240
[ 88.962993][ T6514] ? __pfx_task_work_run+0x10/0x10
[ 88.963003][ T6514] ? do_raw_spin_unlock+0x172/0x230
[ 88.963013][ T6514] do_exit+0xafb/0x2c30
[ 88.963026][ T6514] ? __pfx_futex_wake_mark+0x10/0x10
[ 88.963042][ T6514] ? __pfx_do_exit+0x10/0x10
[ 88.963056][ T6514] ? do_raw_spin_lock+0x12c/0x2b0
[ 88.963065][ T6514] ? get_signal+0x8f5/0x26d0
[ 88.963076][ T6514] ? rcu_is_watching+0x12/0xc0
[ 88.963087][ T6514] do_group_exit+0xd3/0x2a0
[ 88.963101][ T6514] get_signal+0x2673/0x26d0
[ 88.963114][ T6514] ? __pfx_get_signal+0x10/0x10
[ 88.963126][ T6514] ? do_futex+0x122/0x350
[ 88.963138][ T6514] ? __pfx_do_futex+0x10/0x10
[ 88.963151][ T6514] arch_do_signal_or_restart+0x8f/0x7d0
[ 88.963165][ T6514] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 88.963180][ T6514] ? __pfx_do_preadv+0x10/0x10
[ 88.963192][ T6514] ? madvise_unlock+0xc6/0x190
[ 88.963203][ T6514] syscall_exit_to_user_mode+0x150/0x2a0
[ 88.963217][ T6514] do_syscall_64+0xda/0x260
[ 88.963230][ T6514] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 88.963240][ T6514] RIP: 0033:0x7fbf3cb8e969
[ 88.963247][ T6514] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 88.963251][ T6514] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 88.963260][ T6514] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 88.963265][ T6514] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 88.963271][ T6514] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 88.963276][ T6514] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 88.963282][ T6514] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 88.963290][ T6514]
[ 88.963304][ T6514] BUG: Bad page state in process syz.0.21 pfn:4b000
[ 89.072172][ T6514] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4b000
[ 89.074966][ T6514] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 89.077569][ T6514] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 89.080270][ T6514] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 89.082914][ T6514] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.088567][ T6514] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 89.091190][ T6514] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.093873][ T6514] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.096833][ T6514] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 89.099532][ T6514] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 89.101805][ T6514] page_owner tracks the page as allocated
[ 89.103550][ T6514] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6513, tgid 6513 (syz.0.21), ts 88781765294, free_ts 88352000722
[ 89.109658][ T6514] post_alloc_hook+0x181/0x1b0
[ 89.111135][ T6514] get_page_from_freelist+0x135c/0x3920
[ 89.112855][ T6514] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 89.114681][ T6514] alloc_pages_mpol+0x1fb/0x550
[ 89.116321][ T6514] folio_alloc_noprof+0x20/0x2d0
[ 89.117884][ T6514] filemap_alloc_folio_noprof+0x3a1/0x470
[ 89.119641][ T6514] page_cache_ra_order+0x4c0/0xd00
[ 89.121232][ T6514] filemap_fault+0x1a5e/0x2740
[ 89.122725][ T6514] __do_fault+0x10a/0x490
[ 89.124066][ T6514] do_pte_missing+0x1a6/0x3fb0
[ 89.125724][ T6514] __handle_mm_fault+0x103d/0x2a40
[ 89.127300][ T6514] handle_mm_fault+0x3fe/0xad0
[ 89.128796][ T6514] do_user_addr_fault+0x60c/0x1370
[ 89.130429][ T6514] exc_page_fault+0x5c/0xc0
[ 89.131857][ T6514] asm_exc_page_fault+0x26/0x30
[ 89.133381][ T6514] page last free pid 6509 tgid 6509 stack trace:
[ 89.135374][ T6514] free_unref_folios+0x999/0x1630
[ 89.137004][ T6514] folios_put_refs+0x56f/0x740
[ 89.138499][ T6514] truncate_inode_pages_range+0x311/0xe30
[ 89.140097][ T6514] blkdev_flush_mapping+0xfb/0x290
[ 89.141687][ T6514] blkdev_put_whole+0xc4/0xf0
[ 89.143137][ T6514] bdev_release+0x47e/0x6d0
[ 89.144514][ T6514] blkdev_release+0x15/0x20
[ 89.146000][ T6514] __fput+0x3ff/0xb70
[ 89.147349][ T6514] task_work_run+0x14d/0x240
[ 89.148792][ T6514] do_exit+0xafb/0x2c30
[ 89.150095][ T6514] do_group_exit+0xd3/0x2a0
[ 89.151512][ T6514] __x64_sys_exit_group+0x3e/0x50
[ 89.153080][ T6514] x64_sys_call+0x1530/0x1730
[ 89.154506][ T6514] do_syscall_64+0xcd/0x260
[ 89.156036][ T6514] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.157938][ T6514] Modules linked in:
[ 89.159175][ T6514] CPU: 0 UID: 0 PID: 6514 Comm: syz.0.21 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 89.159193][ T6514] Tainted: [B]=BAD_PAGE
[ 89.159197][ T6514] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 89.159202][ T6514] Call Trace:
[ 89.159206][ T6514]
[ 89.159209][ T6514] dump_stack_lvl+0x16c/0x1f0
[ 89.159224][ T6514] bad_page+0xb3/0x1f0
[ 89.159235][ T6514] ? __pfx_bad_page+0x10/0x10
[ 89.159245][ T6514] ? page_bad_reason+0x9d/0x1e0
[ 89.159255][ T6514] __free_frozen_pages+0x76e/0xff0
[ 89.159270][ T6514] __folio_put+0x329/0x450
[ 89.159281][ T6514] ? __pfx___folio_put+0x10/0x10
[ 89.159291][ T6514] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 89.159302][ T6514] ? rcu_is_watching+0x12/0xc0
[ 89.159314][ T6514] ? lock_release+0x201/0x2f0
[ 89.159329][ T6514] filemap_free_folio+0x132/0x170
[ 89.159339][ T6514] delete_from_page_cache_batch+0x741/0x9b0
[ 89.159352][ T6514] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 89.159363][ T6514] ? __pfx_workingset_update_node+0x10/0x10
[ 89.159374][ T6514] ? xas_move_index+0xb0/0x110
[ 89.159388][ T6514] truncate_inode_pages_range+0x279/0xe30
[ 89.159402][ T6514] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 89.159423][ T6514] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 89.159440][ T6514] ? __pfx_has_bh_in_lru+0x10/0x10
[ 89.159454][ T6514] blkdev_flush_mapping+0xfb/0x290
[ 89.159465][ T6514] ? filemap_check_errors+0xa9/0x160
[ 89.159479][ T6514] blkdev_put_whole+0xc4/0xf0
[ 89.159490][ T6514] bdev_release+0x47e/0x6d0
[ 89.159502][ T6514] ? __pfx_blkdev_release+0x10/0x10
[ 89.159514][ T6514] blkdev_release+0x15/0x20
[ 89.159526][ T6514] __fput+0x3ff/0xb70
[ 89.159538][ T6514] task_work_run+0x14d/0x240
[ 89.159548][ T6514] ? __pfx_task_work_run+0x10/0x10
[ 89.159558][ T6514] ? do_raw_spin_unlock+0x172/0x230
[ 89.159569][ T6514] do_exit+0xafb/0x2c30
[ 89.159583][ T6514] ? __pfx_futex_wake_mark+0x10/0x10
[ 89.159599][ T6514] ? __pfx_do_exit+0x10/0x10
[ 89.159612][ T6514] ? do_raw_spin_lock+0x12c/0x2b0
[ 89.159622][ T6514] ? get_signal+0x8f5/0x26d0
[ 89.159633][ T6514] ? rcu_is_watching+0x12/0xc0
[ 89.159644][ T6514] do_group_exit+0xd3/0x2a0
[ 89.159658][ T6514] get_signal+0x2673/0x26d0
[ 89.159671][ T6514] ? __pfx_get_signal+0x10/0x10
[ 89.159683][ T6514] ? do_futex+0x122/0x350
[ 89.159695][ T6514] ? __pfx_do_futex+0x10/0x10
[ 89.159708][ T6514] arch_do_signal_or_restart+0x8f/0x7d0
[ 89.159722][ T6514] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 89.159737][ T6514] ? __pfx_do_preadv+0x10/0x10
[ 89.159749][ T6514] ? madvise_unlock+0xc6/0x190
[ 89.159760][ T6514] syscall_exit_to_user_mode+0x150/0x2a0
[ 89.159775][ T6514] do_syscall_64+0xda/0x260
[ 89.159788][ T6514] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.159798][ T6514] RIP: 0033:0x7fbf3cb8e969
[ 89.159805][ T6514] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 89.159809][ T6514] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 89.159818][ T6514] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 89.159824][ T6514] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 89.159830][ T6514] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 89.159836][ T6514] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 89.159841][ T6514] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 89.159849][ T6514]
[ 89.201781][ T6516] BUG: Bad page state in process syz.0.22 pfn:49201
[ 89.278414][ T6516] page does not match folio
[ 89.279816][ T6516] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x49201
[ 89.282891][ T6516] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 89.285302][ T6516] raw: 00fff00000000000 ffffea0001248000 00000000ffffffff ffffffffffffffff
[ 89.287988][ T6516] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 89.290605][ T6516] page dumped because: nonzero pincount
[ 89.292331][ T6516] page_owner tracks the page as allocated
[ 89.294102][ T6516] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6515, tgid 6515 (syz.0.22), ts 89171326638, free_ts 88772550709
[ 89.300161][ T6516] post_alloc_hook+0x181/0x1b0
[ 89.301782][ T6516] get_page_from_freelist+0x135c/0x3920
[ 89.303460][ T6516] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 89.305371][ T6516] alloc_pages_mpol+0x1fb/0x550
[ 89.306922][ T6516] folio_alloc_noprof+0x20/0x2d0
[ 89.308479][ T6516] filemap_alloc_folio_noprof+0x3a1/0x470
[ 89.310250][ T6516] page_cache_ra_order+0x4c0/0xd00
[ 89.311833][ T6516] filemap_fault+0x1a5e/0x2740
[ 89.313330][ T6516] __do_fault+0x10a/0x490
[ 89.314701][ T6516] do_pte_missing+0x1a6/0x3fb0
[ 89.316429][ T6516] __handle_mm_fault+0x103d/0x2a40
[ 89.318028][ T6516] handle_mm_fault+0x3fe/0xad0
[ 89.319524][ T6516] do_user_addr_fault+0x60c/0x1370
[ 89.321137][ T6516] exc_page_fault+0x5c/0xc0
[ 89.322566][ T6516] asm_exc_page_fault+0x26/0x30
[ 89.324111][ T6516] page last free pid 6512 tgid 6511 stack trace:
[ 89.326188][ T6516] free_unref_folios+0x999/0x1630
[ 89.327836][ T6516] folios_put_refs+0x56f/0x740
[ 89.329334][ T6516] truncate_inode_pages_range+0x311/0xe30
[ 89.331089][ T6516] blkdev_flush_mapping+0xfb/0x290
[ 89.332713][ T6516] blkdev_put_whole+0xc4/0xf0
[ 89.334087][ T6516] bdev_release+0x47e/0x6d0
[ 89.335469][ T6516] blkdev_release+0x15/0x20
[ 89.336960][ T6516] __fput+0x3ff/0xb70
[ 89.338191][ T6516] task_work_run+0x14d/0x240
[ 89.339640][ T6516] do_exit+0xafb/0x2c30
[ 89.340933][ T6516] do_group_exit+0xd3/0x2a0
[ 89.342333][ T6516] get_signal+0x2673/0x26d0
[ 89.343727][ T6516] arch_do_signal_or_restart+0x8f/0x7d0
[ 89.345546][ T6516] syscall_exit_to_user_mode+0x150/0x2a0
[ 89.347360][ T6516] do_syscall_64+0xda/0x260
[ 89.348766][ T6516] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.350571][ T6516] Modules linked in:
[ 89.351862][ T6516] CPU: 3 UID: 0 PID: 6516 Comm: syz.0.22 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 89.351878][ T6516] Tainted: [B]=BAD_PAGE
[ 89.351881][ T6516] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 89.351887][ T6516] Call Trace:
[ 89.351891][ T6516]
[ 89.351895][ T6516] dump_stack_lvl+0x16c/0x1f0
[ 89.351909][ T6516] bad_page+0xb3/0x1f0
[ 89.351920][ T6516] ? __pfx_bad_page+0x10/0x10
[ 89.351930][ T6516] ? __mem_cgroup_uncharge+0xda/0x130
[ 89.351942][ T6516] free_tail_page_prepare+0x44f/0x5b0
[ 89.351956][ T6516] __free_frozen_pages+0x96a/0xff0
[ 89.351970][ T6516] __folio_put+0x329/0x450
[ 89.351981][ T6516] ? __pfx___folio_put+0x10/0x10
[ 89.351992][ T6516] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 89.352007][ T6516] ? rcu_is_watching+0x12/0xc0
[ 89.352019][ T6516] ? lock_release+0x201/0x2f0
[ 89.352033][ T6516] filemap_free_folio+0x132/0x170
[ 89.352044][ T6516] delete_from_page_cache_batch+0x741/0x9b0
[ 89.352056][ T6516] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 89.352068][ T6516] ? __pfx_workingset_update_node+0x10/0x10
[ 89.352078][ T6516] ? xas_move_index+0xb0/0x110
[ 89.352092][ T6516] truncate_inode_pages_range+0x279/0xe30
[ 89.352106][ T6516] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 89.352127][ T6516] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 89.352143][ T6516] ? __pfx_has_bh_in_lru+0x10/0x10
[ 89.352157][ T6516] blkdev_flush_mapping+0xfb/0x290
[ 89.352170][ T6516] ? filemap_check_errors+0xa9/0x160
[ 89.352184][ T6516] blkdev_put_whole+0xc4/0xf0
[ 89.352194][ T6516] bdev_release+0x47e/0x6d0
[ 89.352207][ T6516] ? __pfx_blkdev_release+0x10/0x10
[ 89.352218][ T6516] blkdev_release+0x15/0x20
[ 89.352230][ T6516] __fput+0x3ff/0xb70
[ 89.352242][ T6516] task_work_run+0x14d/0x240
[ 89.352253][ T6516] ? __pfx_task_work_run+0x10/0x10
[ 89.352262][ T6516] ? do_raw_spin_unlock+0x172/0x230
[ 89.352273][ T6516] do_exit+0xafb/0x2c30
[ 89.352287][ T6516] ? __pfx_futex_wake_mark+0x10/0x10
[ 89.352303][ T6516] ? __pfx_do_exit+0x10/0x10
[ 89.352316][ T6516] ? do_raw_spin_lock+0x12c/0x2b0
[ 89.352326][ T6516] ? get_signal+0x8f5/0x26d0
[ 89.352337][ T6516] ? rcu_is_watching+0x12/0xc0
[ 89.352348][ T6516] do_group_exit+0xd3/0x2a0
[ 89.352362][ T6516] get_signal+0x2673/0x26d0
[ 89.352375][ T6516] ? __pfx_get_signal+0x10/0x10
[ 89.352387][ T6516] ? do_futex+0x122/0x350
[ 89.352399][ T6516] ? __pfx_do_futex+0x10/0x10
[ 89.352412][ T6516] arch_do_signal_or_restart+0x8f/0x7d0
[ 89.352426][ T6516] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 89.352441][ T6516] ? __pfx_do_preadv+0x10/0x10
[ 89.352457][ T6516] ? madvise_unlock+0xc6/0x190
[ 89.352468][ T6516] syscall_exit_to_user_mode+0x150/0x2a0
[ 89.352482][ T6516] do_syscall_64+0xda/0x260
[ 89.352495][ T6516] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.352505][ T6516] RIP: 0033:0x7fbf3cb8e969
[ 89.352513][ T6516] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 89.352517][ T6516] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 89.352526][ T6516] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 89.352532][ T6516] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 89.352538][ T6516] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 89.352544][ T6516] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 89.352549][ T6516] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 89.352557][ T6516]
[ 89.352572][ T6516] BUG: Bad page state in process syz.0.22 pfn:49200
[ 89.461355][ T6516] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x49200
[ 89.464026][ T6516] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 89.466657][ T6516] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 89.469384][ T6516] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 89.471974][ T6516] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.474524][ T6516] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 89.477227][ T6516] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.479942][ T6516] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.482647][ T6516] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 89.487962][ T6516] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 89.490247][ T6516] page_owner tracks the page as allocated
[ 89.492385][ T6516] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6515, tgid 6515 (syz.0.22), ts 89171326638, free_ts 88772550709
[ 89.498547][ T6516] post_alloc_hook+0x181/0x1b0
[ 89.500034][ T6516] get_page_from_freelist+0x135c/0x3920
[ 89.501753][ T6516] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 89.503538][ T6516] alloc_pages_mpol+0x1fb/0x550
[ 89.505151][ T6516] folio_alloc_noprof+0x20/0x2d0
[ 89.506664][ T6516] filemap_alloc_folio_noprof+0x3a1/0x470
[ 89.508387][ T6516] page_cache_ra_order+0x4c0/0xd00
[ 89.509947][ T6516] filemap_fault+0x1a5e/0x2740
[ 89.511433][ T6516] __do_fault+0x10a/0x490
[ 89.512771][ T6516] do_pte_missing+0x1a6/0x3fb0
[ 89.514267][ T6516] __handle_mm_fault+0x103d/0x2a40
[ 89.515896][ T6516] handle_mm_fault+0x3fe/0xad0
[ 89.517334][ T6516] do_user_addr_fault+0x60c/0x1370
[ 89.518853][ T6516] exc_page_fault+0x5c/0xc0
[ 89.520217][ T6516] asm_exc_page_fault+0x26/0x30
[ 89.521748][ T6516] page last free pid 6512 tgid 6511 stack trace:
[ 89.523649][ T6516] free_unref_folios+0x999/0x1630
[ 89.525249][ T6516] folios_put_refs+0x56f/0x740
[ 89.526687][ T6516] truncate_inode_pages_range+0x311/0xe30
[ 89.528387][ T6516] blkdev_flush_mapping+0xfb/0x290
[ 89.529977][ T6516] blkdev_put_whole+0xc4/0xf0
[ 89.531456][ T6516] bdev_release+0x47e/0x6d0
[ 89.532910][ T6516] blkdev_release+0x15/0x20
[ 89.534365][ T6516] __fput+0x3ff/0xb70
[ 89.535664][ T6516] task_work_run+0x14d/0x240
[ 89.537091][ T6516] do_exit+0xafb/0x2c30
[ 89.538353][ T6516] do_group_exit+0xd3/0x2a0
[ 89.539760][ T6516] get_signal+0x2673/0x26d0
[ 89.541184][ T6516] arch_do_signal_or_restart+0x8f/0x7d0
[ 89.542883][ T6516] syscall_exit_to_user_mode+0x150/0x2a0
[ 89.544599][ T6516] do_syscall_64+0xda/0x260
[ 89.546303][ T6516] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.548155][ T6516] Modules linked in:
[ 89.549365][ T6516] CPU: 2 UID: 0 PID: 6516 Comm: syz.0.22 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 89.549385][ T6516] Tainted: [B]=BAD_PAGE
[ 89.549388][ T6516] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 89.549394][ T6516] Call Trace:
[ 89.549397][ T6516]
[ 89.549401][ T6516] dump_stack_lvl+0x16c/0x1f0
[ 89.549416][ T6516] bad_page+0xb3/0x1f0
[ 89.549426][ T6516] ? __pfx_bad_page+0x10/0x10
[ 89.549437][ T6516] ? page_bad_reason+0x9d/0x1e0
[ 89.549447][ T6516] __free_frozen_pages+0x76e/0xff0
[ 89.549462][ T6516] __folio_put+0x329/0x450
[ 89.549473][ T6516] ? __pfx___folio_put+0x10/0x10
[ 89.549484][ T6516] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 89.549495][ T6516] ? rcu_is_watching+0x12/0xc0
[ 89.549506][ T6516] ? lock_release+0x201/0x2f0
[ 89.549521][ T6516] filemap_free_folio+0x132/0x170
[ 89.549531][ T6516] delete_from_page_cache_batch+0x741/0x9b0
[ 89.549543][ T6516] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 89.549555][ T6516] ? __pfx_workingset_update_node+0x10/0x10
[ 89.549565][ T6516] ? xas_move_index+0xb0/0x110
[ 89.549579][ T6516] truncate_inode_pages_range+0x279/0xe30
[ 89.549593][ T6516] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 89.549615][ T6516] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 89.549631][ T6516] ? __pfx_has_bh_in_lru+0x10/0x10
[ 89.549645][ T6516] blkdev_flush_mapping+0xfb/0x290
[ 89.549657][ T6516] ? filemap_check_errors+0xa9/0x160
[ 89.549671][ T6516] blkdev_put_whole+0xc4/0xf0
[ 89.549681][ T6516] bdev_release+0x47e/0x6d0
[ 89.549694][ T6516] ? __pfx_blkdev_release+0x10/0x10
[ 89.549706][ T6516] blkdev_release+0x15/0x20
[ 89.549718][ T6516] __fput+0x3ff/0xb70
[ 89.549729][ T6516] task_work_run+0x14d/0x240
[ 89.549740][ T6516] ? __pfx_task_work_run+0x10/0x10
[ 89.549750][ T6516] ? do_raw_spin_unlock+0x172/0x230
[ 89.549760][ T6516] do_exit+0xafb/0x2c30
[ 89.549774][ T6516] ? __pfx_futex_wake_mark+0x10/0x10
[ 89.549790][ T6516] ? __pfx_do_exit+0x10/0x10
[ 89.549803][ T6516] ? do_raw_spin_lock+0x12c/0x2b0
[ 89.549813][ T6516] ? get_signal+0x8f5/0x26d0
[ 89.549824][ T6516] ? rcu_is_watching+0x12/0xc0
[ 89.549835][ T6516] do_group_exit+0xd3/0x2a0
[ 89.549849][ T6516] get_signal+0x2673/0x26d0
[ 89.549862][ T6516] ? __pfx_get_signal+0x10/0x10
[ 89.549874][ T6516] ? do_futex+0x122/0x350
[ 89.549886][ T6516] ? __pfx_do_futex+0x10/0x10
[ 89.549899][ T6516] arch_do_signal_or_restart+0x8f/0x7d0
[ 89.549913][ T6516] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 89.549927][ T6516] ? __pfx_do_preadv+0x10/0x10
[ 89.549940][ T6516] ? madvise_unlock+0xc6/0x190
[ 89.549951][ T6516] syscall_exit_to_user_mode+0x150/0x2a0
[ 89.549965][ T6516] do_syscall_64+0xda/0x260
[ 89.549979][ T6516] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.549989][ T6516] RIP: 0033:0x7fbf3cb8e969
[ 89.549996][ T6516] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 89.550001][ T6516] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 89.550010][ T6516] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 89.550016][ T6516] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 89.550021][ T6516] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 89.550027][ T6516] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 89.550032][ T6516] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 89.550040][ T6516]
[ 89.695559][ T6517] BUG: Bad page state in process syz.0.23 pfn:4a601
[ 89.697760][ T6517] page does not match folio
[ 89.699176][ T6517] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4a601
[ 89.702358][ T6517] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 89.705091][ T6517] raw: 00fff00000000000 ffffea0001298000 00000000ffffffff ffffffffffffffff
[ 89.707906][ T6517] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 89.710575][ T6517] page dumped because: nonzero pincount
[ 89.712377][ T6517] page_owner tracks the page as allocated
[ 89.714161][ T6517] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6517, tgid 6517 (syz.0.23), ts 89669083869, free_ts 77391188540
[ 89.720322][ T6517] post_alloc_hook+0x181/0x1b0
[ 89.721819][ T6517] get_page_from_freelist+0x135c/0x3920
[ 89.723551][ T6517] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 89.727438][ T6517] alloc_pages_mpol+0x1fb/0x550
[ 89.728869][ T6517] folio_alloc_noprof+0x20/0x2d0
[ 89.730408][ T6517] filemap_alloc_folio_noprof+0x3a1/0x470
[ 89.732212][ T6517] page_cache_ra_order+0x4c0/0xd00
[ 89.733724][ T6517] filemap_fault+0x1a5e/0x2740
[ 89.735271][ T6517] __do_fault+0x10a/0x490
[ 89.736536][ T6517] do_pte_missing+0x1a6/0x3fb0
[ 89.737993][ T6517] __handle_mm_fault+0x103d/0x2a40
[ 89.739470][ T6517] handle_mm_fault+0x3fe/0xad0
[ 89.740983][ T6517] do_user_addr_fault+0x60c/0x1370
[ 89.742592][ T6517] exc_page_fault+0x5c/0xc0
[ 89.743990][ T6517] asm_exc_page_fault+0x26/0x30
[ 89.745573][ T6517] page last free pid 6196 tgid 6196 stack trace:
[ 89.747471][ T6517] free_unref_folios+0x999/0x1630
[ 89.749004][ T6517] folios_put_refs+0x56f/0x740
[ 89.750729][ T6517] free_pages_and_swap_cache+0x245/0x4a0
[ 89.752985][ T6517] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 89.755521][ T6517] tlb_finish_mmu+0x168/0x7b0
[ 89.757476][ T6517] vms_clear_ptes+0x55e/0x770
[ 89.759392][ T6517] vms_complete_munmap_vmas+0x1ca/0x970
[ 89.761625][ T6517] do_vmi_align_munmap+0x43b/0x7d0
[ 89.763675][ T6517] do_vmi_munmap+0x208/0x3e0
[ 89.765665][ T6517] __vm_munmap+0x19a/0x390
[ 89.767458][ T6517] __x64_sys_munmap+0x59/0x80
[ 89.769359][ T6517] do_syscall_64+0xcd/0x260
[ 89.771166][ T6517] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.773629][ T6517] Modules linked in:
[ 89.778637][ T6517] CPU: 3 UID: 0 PID: 6517 Comm: syz.0.23 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 89.778661][ T6517] Tainted: [B]=BAD_PAGE
[ 89.778666][ T6517] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 89.778675][ T6517] Call Trace:
[ 89.778679][ T6517]
[ 89.778684][ T6517] dump_stack_lvl+0x16c/0x1f0
[ 89.778705][ T6517] bad_page+0xb3/0x1f0
[ 89.778722][ T6517] ? __pfx_bad_page+0x10/0x10
[ 89.778736][ T6517] ? __mem_cgroup_uncharge+0xda/0x130
[ 89.778750][ T6517] free_tail_page_prepare+0x44f/0x5b0
[ 89.778764][ T6517] __free_frozen_pages+0x96a/0xff0
[ 89.778778][ T6517] __folio_put+0x329/0x450
[ 89.778789][ T6517] ? __pfx___folio_put+0x10/0x10
[ 89.778799][ T6517] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 89.778811][ T6517] ? rcu_is_watching+0x12/0xc0
[ 89.778822][ T6517] ? lock_release+0x201/0x2f0
[ 89.778837][ T6517] filemap_free_folio+0x132/0x170
[ 89.778848][ T6517] delete_from_page_cache_batch+0x741/0x9b0
[ 89.778859][ T6517] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 89.778871][ T6517] ? __pfx_workingset_update_node+0x10/0x10
[ 89.778882][ T6517] ? xas_move_index+0xb0/0x110
[ 89.778896][ T6517] truncate_inode_pages_range+0x279/0xe30
[ 89.778910][ T6517] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 89.778932][ T6517] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 89.778947][ T6517] ? __pfx_has_bh_in_lru+0x10/0x10
[ 89.778961][ T6517] blkdev_flush_mapping+0xfb/0x290
[ 89.778974][ T6517] blkdev_put_whole+0xc4/0xf0
[ 89.778984][ T6517] bdev_release+0x47e/0x6d0
[ 89.778997][ T6517] ? __pfx_blkdev_release+0x10/0x10
[ 89.779009][ T6517] blkdev_release+0x15/0x20
[ 89.779023][ T6517] __fput+0x3ff/0xb70
[ 89.779034][ T6517] task_work_run+0x14d/0x240
[ 89.779045][ T6517] ? __pfx_task_work_run+0x10/0x10
[ 89.779055][ T6517] ? do_raw_spin_unlock+0x172/0x230
[ 89.779066][ T6517] do_exit+0xafb/0x2c30
[ 89.779080][ T6517] ? __pfx_do_exit+0x10/0x10
[ 89.779094][ T6517] ? preempt_schedule_thunk+0x16/0x30
[ 89.779104][ T6517] do_group_exit+0xd3/0x2a0
[ 89.779119][ T6517] __x64_sys_exit_group+0x3e/0x50
[ 89.779133][ T6517] x64_sys_call+0x1530/0x1730
[ 89.779146][ T6517] do_syscall_64+0xcd/0x260
[ 89.779160][ T6517] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.779170][ T6517] RIP: 0033:0x7fbf3cb8e969
[ 89.779177][ T6517] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 89.779185][ T6517] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 89.779195][ T6517] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 89.779201][ T6517] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 89.779207][ T6517] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 89.779213][ T6517] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000007
[ 89.779218][ T6517] R13: 00000000000927c0 R14: 0000000000015be3 R15: 00007fff5c310b00
[ 89.779226][ T6517]
[ 89.779242][ T6517] BUG: Bad page state in process syz.0.23 pfn:4a600
[ 89.876065][ T6517] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4a600
[ 89.878649][ T6517] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 89.881167][ T6517] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 89.884579][ T6517] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 89.887264][ T6517] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.890374][ T6517] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 89.893041][ T6517] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.895698][ T6517] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.898312][ T6517] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 89.900945][ T6517] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 89.903159][ T6517] page_owner tracks the page as allocated
[ 89.904954][ T6517] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6517, tgid 6517 (syz.0.23), ts 89669083869, free_ts 77391183489
[ 89.910703][ T6517] post_alloc_hook+0x181/0x1b0
[ 89.912197][ T6517] get_page_from_freelist+0x135c/0x3920
[ 89.913821][ T6517] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 89.915641][ T6517] alloc_pages_mpol+0x1fb/0x550
[ 89.917095][ T6517] folio_alloc_noprof+0x20/0x2d0
[ 89.918601][ T6517] filemap_alloc_folio_noprof+0x3a1/0x470
[ 89.920290][ T6517] page_cache_ra_order+0x4c0/0xd00
[ 89.921848][ T6517] filemap_fault+0x1a5e/0x2740
[ 89.923236][ T6517] __do_fault+0x10a/0x490
[ 89.924477][ T6517] do_pte_missing+0x1a6/0x3fb0
[ 89.925945][ T6517] __handle_mm_fault+0x103d/0x2a40
[ 89.927493][ T6517] handle_mm_fault+0x3fe/0xad0
[ 89.928952][ T6517] do_user_addr_fault+0x60c/0x1370
[ 89.930429][ T6517] exc_page_fault+0x5c/0xc0
[ 89.931814][ T6517] asm_exc_page_fault+0x26/0x30
[ 89.933244][ T6517] page last free pid 6196 tgid 6196 stack trace:
[ 89.935199][ T6517] free_unref_folios+0x999/0x1630
[ 89.936700][ T6517] folios_put_refs+0x56f/0x740
[ 89.938176][ T6517] free_pages_and_swap_cache+0x245/0x4a0
[ 89.939835][ T6517] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 89.941735][ T6517] tlb_finish_mmu+0x168/0x7b0
[ 89.943136][ T6517] vms_clear_ptes+0x55e/0x770
[ 89.944524][ T6517] vms_complete_munmap_vmas+0x1ca/0x970
[ 89.946852][ T6517] do_vmi_align_munmap+0x43b/0x7d0
[ 89.948368][ T6517] do_vmi_munmap+0x208/0x3e0
[ 89.949769][ T6517] __vm_munmap+0x19a/0x390
[ 89.951121][ T6517] __x64_sys_munmap+0x59/0x80
[ 89.952528][ T6517] do_syscall_64+0xcd/0x260
[ 89.953867][ T6517] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.955710][ T6517] Modules linked in:
[ 89.956923][ T6517] CPU: 3 UID: 0 PID: 6517 Comm: syz.0.23 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 89.956939][ T6517] Tainted: [B]=BAD_PAGE
[ 89.956942][ T6517] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 89.956948][ T6517] Call Trace:
[ 89.956952][ T6517]
[ 89.956955][ T6517] dump_stack_lvl+0x16c/0x1f0
[ 89.956969][ T6517] bad_page+0xb3/0x1f0
[ 89.956980][ T6517] ? __pfx_bad_page+0x10/0x10
[ 89.956990][ T6517] ? page_bad_reason+0x9d/0x1e0
[ 89.957000][ T6517] __free_frozen_pages+0x76e/0xff0
[ 89.957015][ T6517] __folio_put+0x329/0x450
[ 89.957026][ T6517] ? __pfx___folio_put+0x10/0x10
[ 89.957036][ T6517] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 89.957047][ T6517] ? rcu_is_watching+0x12/0xc0
[ 89.957059][ T6517] ? lock_release+0x201/0x2f0
[ 89.957073][ T6517] filemap_free_folio+0x132/0x170
[ 89.957083][ T6517] delete_from_page_cache_batch+0x741/0x9b0
[ 89.957095][ T6517] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 89.957107][ T6517] ? __pfx_workingset_update_node+0x10/0x10
[ 89.957117][ T6517] ? xas_move_index+0xb0/0x110
[ 89.957131][ T6517] truncate_inode_pages_range+0x279/0xe30
[ 89.957145][ T6517] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 89.957167][ T6517] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 89.957186][ T6517] ? __pfx_has_bh_in_lru+0x10/0x10
[ 89.957200][ T6517] blkdev_flush_mapping+0xfb/0x290
[ 89.957213][ T6517] blkdev_put_whole+0xc4/0xf0
[ 89.957223][ T6517] bdev_release+0x47e/0x6d0
[ 89.957236][ T6517] ? __pfx_blkdev_release+0x10/0x10
[ 89.957248][ T6517] blkdev_release+0x15/0x20
[ 89.957260][ T6517] __fput+0x3ff/0xb70
[ 89.957271][ T6517] task_work_run+0x14d/0x240
[ 89.957282][ T6517] ? __pfx_task_work_run+0x10/0x10
[ 89.957292][ T6517] ? do_raw_spin_unlock+0x172/0x230
[ 89.957303][ T6517] do_exit+0xafb/0x2c30
[ 89.957318][ T6517] ? __pfx_do_exit+0x10/0x10
[ 89.957331][ T6517] ? preempt_schedule_thunk+0x16/0x30
[ 89.957342][ T6517] do_group_exit+0xd3/0x2a0
[ 89.957356][ T6517] __x64_sys_exit_group+0x3e/0x50
[ 89.957370][ T6517] x64_sys_call+0x1530/0x1730
[ 89.957383][ T6517] do_syscall_64+0xcd/0x260
[ 89.957397][ T6517] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.957406][ T6517] RIP: 0033:0x7fbf3cb8e969
[ 89.957414][ T6517] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 89.957418][ T6517] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 89.957427][ T6517] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 89.957433][ T6517] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 89.957439][ T6517] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 89.957444][ T6517] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000007
[ 89.957450][ T6517] R13: 00000000000927c0 R14: 0000000000015be3 R15: 00007fff5c310b00
[ 89.957458][ T6517]
[ 89.999248][ T6520] BUG: Bad page state in process syz.0.24 pfn:3e001
[ 90.066509][ T6520] page does not match folio
[ 90.068472][ T6520] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3e001
[ 90.072519][ T6520] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 90.076314][ T6520] raw: 00fff00000000000 ffffea0000f80000 00000000ffffffff ffffffffffffffff
[ 90.079822][ T6520] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 90.083255][ T6520] page dumped because: nonzero pincount
[ 90.085633][ T6520] page_owner tracks the page as allocated
[ 90.087871][ T6520] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6519, tgid 6519 (syz.0.24), ts 89967111612, free_ts 89957484943
[ 90.095842][ T6520] post_alloc_hook+0x181/0x1b0
[ 90.097828][ T6520] get_page_from_freelist+0x135c/0x3920
[ 90.100099][ T6520] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 90.102595][ T6520] alloc_pages_mpol+0x1fb/0x550
[ 90.104523][ T6520] folio_alloc_noprof+0x20/0x2d0
[ 90.106919][ T6520] filemap_alloc_folio_noprof+0x3a1/0x470
[ 90.109030][ T6520] page_cache_ra_order+0x4c0/0xd00
[ 90.111172][ T6520] filemap_fault+0x1a5e/0x2740
[ 90.113209][ T6520] __do_fault+0x10a/0x490
[ 90.115195][ T6520] do_pte_missing+0x1a6/0x3fb0
[ 90.117247][ T6520] __handle_mm_fault+0x103d/0x2a40
[ 90.119432][ T6520] handle_mm_fault+0x3fe/0xad0
[ 90.121463][ T6520] do_user_addr_fault+0x60c/0x1370
[ 90.123651][ T6520] exc_page_fault+0x5c/0xc0
[ 90.125761][ T6520] asm_exc_page_fault+0x26/0x30
[ 90.127819][ T6520] page last free pid 6517 tgid 6517 stack trace:
[ 90.130396][ T6520] free_unref_folios+0x999/0x1630
[ 90.132472][ T6520] folios_put_refs+0x56f/0x740
[ 90.134495][ T6520] truncate_inode_pages_range+0x311/0xe30
[ 90.136899][ T6520] blkdev_flush_mapping+0xfb/0x290
[ 90.139040][ T6520] blkdev_put_whole+0xc4/0xf0
[ 90.140948][ T6520] bdev_release+0x47e/0x6d0
[ 90.142787][ T6520] blkdev_release+0x15/0x20
[ 90.144591][ T6520] __fput+0x3ff/0xb70
[ 90.146303][ T6520] task_work_run+0x14d/0x240
[ 90.148152][ T6520] do_exit+0xafb/0x2c30
[ 90.149875][ T6520] do_group_exit+0xd3/0x2a0
[ 90.151742][ T6520] __x64_sys_exit_group+0x3e/0x50
[ 90.153813][ T6520] x64_sys_call+0x1530/0x1730
[ 90.155845][ T6520] do_syscall_64+0xcd/0x260
[ 90.157791][ T6520] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.160248][ T6520] Modules linked in:
[ 90.161904][ T6520] CPU: 1 UID: 0 PID: 6520 Comm: syz.0.24 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 90.161928][ T6520] Tainted: [B]=BAD_PAGE
[ 90.161934][ T6520] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 90.161944][ T6520] Call Trace:
[ 90.161950][ T6520]
[ 90.161956][ T6520] dump_stack_lvl+0x16c/0x1f0
[ 90.161979][ T6520] bad_page+0xb3/0x1f0
[ 90.161997][ T6520] ? __pfx_bad_page+0x10/0x10
[ 90.162013][ T6520] ? __mem_cgroup_uncharge+0xda/0x130
[ 90.162033][ T6520] free_tail_page_prepare+0x44f/0x5b0
[ 90.162054][ T6520] __free_frozen_pages+0x96a/0xff0
[ 90.162078][ T6520] __folio_put+0x329/0x450
[ 90.162095][ T6520] ? __pfx___folio_put+0x10/0x10
[ 90.162112][ T6520] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 90.162131][ T6520] ? rcu_is_watching+0x12/0xc0
[ 90.162149][ T6520] ? lock_release+0x201/0x2f0
[ 90.162173][ T6520] filemap_free_folio+0x132/0x170
[ 90.162190][ T6520] delete_from_page_cache_batch+0x741/0x9b0
[ 90.162210][ T6520] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 90.162229][ T6520] ? __pfx_workingset_update_node+0x10/0x10
[ 90.162247][ T6520] ? xas_move_index+0xb0/0x110
[ 90.162270][ T6520] truncate_inode_pages_range+0x279/0xe30
[ 90.162293][ T6520] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 90.162332][ T6520] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 90.162362][ T6520] ? __pfx_has_bh_in_lru+0x10/0x10
[ 90.162385][ T6520] blkdev_flush_mapping+0xfb/0x290
[ 90.162404][ T6520] ? filemap_check_errors+0xa9/0x160
[ 90.162428][ T6520] blkdev_put_whole+0xc4/0xf0
[ 90.162445][ T6520] bdev_release+0x47e/0x6d0
[ 90.162465][ T6520] ? __pfx_blkdev_release+0x10/0x10
[ 90.162485][ T6520] blkdev_release+0x15/0x20
[ 90.162504][ T6520] __fput+0x3ff/0xb70
[ 90.162523][ T6520] task_work_run+0x14d/0x240
[ 90.162539][ T6520] ? __pfx_task_work_run+0x10/0x10
[ 90.162554][ T6520] ? do_raw_spin_unlock+0x172/0x230
[ 90.162572][ T6520] do_exit+0xafb/0x2c30
[ 90.162593][ T6520] ? __pfx_futex_wake_mark+0x10/0x10
[ 90.162617][ T6520] ? __pfx_do_exit+0x10/0x10
[ 90.162636][ T6520] ? do_raw_spin_lock+0x12c/0x2b0
[ 90.162652][ T6520] ? get_signal+0x8f5/0x26d0
[ 90.162668][ T6520] ? rcu_is_watching+0x12/0xc0
[ 90.162685][ T6520] do_group_exit+0xd3/0x2a0
[ 90.162708][ T6520] get_signal+0x2673/0x26d0
[ 90.162728][ T6520] ? __pfx_get_signal+0x10/0x10
[ 90.162745][ T6520] ? do_futex+0x122/0x350
[ 90.162764][ T6520] ? __pfx_do_futex+0x10/0x10
[ 90.162784][ T6520] arch_do_signal_or_restart+0x8f/0x7d0
[ 90.162806][ T6520] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 90.162830][ T6520] ? __pfx_do_preadv+0x10/0x10
[ 90.162849][ T6520] ? madvise_unlock+0xc6/0x190
[ 90.162867][ T6520] syscall_exit_to_user_mode+0x150/0x2a0
[ 90.162889][ T6520] do_syscall_64+0xda/0x260
[ 90.162911][ T6520] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.162928][ T6520] RIP: 0033:0x7fbf3cb8e969
[ 90.162940][ T6520] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 90.162947][ T6520] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 90.162962][ T6520] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 90.162972][ T6520] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 90.162981][ T6520] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 90.162991][ T6520] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 90.163000][ T6520] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 90.163014][ T6520]
[ 90.163042][ T6520] BUG: Bad page state in process syz.0.24 pfn:3e000
[ 90.303450][ T6520] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3e000
[ 90.306362][ T6520] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 90.309297][ T6520] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 90.312901][ T6520] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 90.316496][ T6520] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.319879][ T6520] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 90.323366][ T6520] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.327066][ T6520] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.330564][ T6520] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 90.334082][ T6520] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 90.336963][ T6520] page_owner tracks the page as allocated
[ 90.338910][ T6520] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6519, tgid 6519 (syz.0.24), ts 89967111612, free_ts 89957484943
[ 90.344931][ T5290] Bluetooth: hci0: command tx timeout
[ 90.346906][ T6520] post_alloc_hook+0x181/0x1b0
[ 90.350755][ T6520] get_page_from_freelist+0x135c/0x3920
[ 90.352824][ T6520] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 90.354678][ T6520] alloc_pages_mpol+0x1fb/0x550
[ 90.356252][ T6520] folio_alloc_noprof+0x20/0x2d0
[ 90.357778][ T6520] filemap_alloc_folio_noprof+0x3a1/0x470
[ 90.359507][ T6520] page_cache_ra_order+0x4c0/0xd00
[ 90.361095][ T6520] filemap_fault+0x1a5e/0x2740
[ 90.362791][ T6520] __do_fault+0x10a/0x490
[ 90.364388][ T6520] do_pte_missing+0x1a6/0x3fb0
[ 90.365931][ T6520] __handle_mm_fault+0x103d/0x2a40
[ 90.367799][ T6520] handle_mm_fault+0x3fe/0xad0
[ 90.369379][ T6520] do_user_addr_fault+0x60c/0x1370
[ 90.370928][ T6520] exc_page_fault+0x5c/0xc0
[ 90.372328][ T6520] asm_exc_page_fault+0x26/0x30
[ 90.374320][ T6520] page last free pid 6517 tgid 6517 stack trace:
[ 90.376750][ T6520] free_unref_folios+0x999/0x1630
[ 90.378344][ T6520] folios_put_refs+0x56f/0x740
[ 90.379847][ T6520] truncate_inode_pages_range+0x311/0xe30
[ 90.381693][ T6520] blkdev_flush_mapping+0xfb/0x290
[ 90.383378][ T6520] blkdev_put_whole+0xc4/0xf0
[ 90.384937][ T6520] bdev_release+0x47e/0x6d0
[ 90.386332][ T6520] blkdev_release+0x15/0x20
[ 90.387729][ T6520] __fput+0x3ff/0xb70
[ 90.388976][ T6520] task_work_run+0x14d/0x240
[ 90.390429][ T6520] do_exit+0xafb/0x2c30
[ 90.391747][ T6520] do_group_exit+0xd3/0x2a0
[ 90.393171][ T6520] __x64_sys_exit_group+0x3e/0x50
[ 90.395157][ T6520] x64_sys_call+0x1530/0x1730
[ 90.396903][ T6520] do_syscall_64+0xcd/0x260
[ 90.398339][ T6520] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.400157][ T6520] Modules linked in:
[ 90.401397][ T6520] CPU: 2 UID: 0 PID: 6520 Comm: syz.0.24 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 90.401416][ T6520] Tainted: [B]=BAD_PAGE
[ 90.401419][ T6520] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 90.401425][ T6520] Call Trace:
[ 90.401429][ T6520]
[ 90.401434][ T6520] dump_stack_lvl+0x16c/0x1f0
[ 90.401447][ T6520] bad_page+0xb3/0x1f0
[ 90.401458][ T6520] ? __pfx_bad_page+0x10/0x10
[ 90.401469][ T6520] ? page_bad_reason+0x9d/0x1e0
[ 90.401479][ T6520] __free_frozen_pages+0x76e/0xff0
[ 90.401493][ T6520] __folio_put+0x329/0x450
[ 90.401504][ T6520] ? __pfx___folio_put+0x10/0x10
[ 90.401515][ T6520] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 90.401526][ T6520] ? rcu_is_watching+0x12/0xc0
[ 90.401537][ T6520] ? lock_release+0x201/0x2f0
[ 90.401552][ T6520] filemap_free_folio+0x132/0x170
[ 90.401562][ T6520] delete_from_page_cache_batch+0x741/0x9b0
[ 90.401574][ T6520] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 90.401586][ T6520] ? __pfx_workingset_update_node+0x10/0x10
[ 90.401597][ T6520] ? xas_move_index+0xb0/0x110
[ 90.401610][ T6520] truncate_inode_pages_range+0x279/0xe30
[ 90.401625][ T6520] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 90.401646][ T6520] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 90.401662][ T6520] ? __pfx_has_bh_in_lru+0x10/0x10
[ 90.401676][ T6520] blkdev_flush_mapping+0xfb/0x290
[ 90.401688][ T6520] ? filemap_check_errors+0xa9/0x160
[ 90.401702][ T6520] blkdev_put_whole+0xc4/0xf0
[ 90.401713][ T6520] bdev_release+0x47e/0x6d0
[ 90.401725][ T6520] ? __pfx_blkdev_release+0x10/0x10
[ 90.401737][ T6520] blkdev_release+0x15/0x20
[ 90.401749][ T6520] __fput+0x3ff/0xb70
[ 90.401761][ T6520] task_work_run+0x14d/0x240
[ 90.401772][ T6520] ? __pfx_task_work_run+0x10/0x10
[ 90.401781][ T6520] ? do_raw_spin_unlock+0x172/0x230
[ 90.401792][ T6520] do_exit+0xafb/0x2c30
[ 90.401806][ T6520] ? __pfx_futex_wake_mark+0x10/0x10
[ 90.401821][ T6520] ? __pfx_do_exit+0x10/0x10
[ 90.401835][ T6520] ? do_raw_spin_lock+0x12c/0x2b0
[ 90.401844][ T6520] ? get_signal+0x8f5/0x26d0
[ 90.401856][ T6520] ? rcu_is_watching+0x12/0xc0
[ 90.401867][ T6520] do_group_exit+0xd3/0x2a0
[ 90.401881][ T6520] get_signal+0x2673/0x26d0
[ 90.401895][ T6520] ? __pfx_get_signal+0x10/0x10
[ 90.401906][ T6520] ? do_futex+0x122/0x350
[ 90.401919][ T6520] ? __pfx_do_futex+0x10/0x10
[ 90.401931][ T6520] arch_do_signal_or_restart+0x8f/0x7d0
[ 90.401946][ T6520] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 90.401961][ T6520] ? __pfx_do_preadv+0x10/0x10
[ 90.401973][ T6520] ? madvise_unlock+0xc6/0x190
[ 90.401984][ T6520] syscall_exit_to_user_mode+0x150/0x2a0
[ 90.401998][ T6520] do_syscall_64+0xda/0x260
[ 90.402011][ T6520] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.402021][ T6520] RIP: 0033:0x7fbf3cb8e969
[ 90.402028][ T6520] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 90.402032][ T6520] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 90.402042][ T6520] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 90.402048][ T6520] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 90.402053][ T6520] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 90.402059][ T6520] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 90.402065][ T6520] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 90.402072][ T6520]
[ 90.428892][ T6521] BUG: Bad page state in process syz.0.25 pfn:4c001
[ 90.515319][ T6521] page does not match folio
[ 90.516719][ T6521] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4c001
[ 90.519771][ T6521] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 90.522097][ T6521] raw: 00fff00000000000 ffffea0001300000 00000000ffffffff ffffffffffffffff
[ 90.524703][ T6521] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 90.527398][ T6521] page dumped because: nonzero pincount
[ 90.529077][ T6521] page_owner tracks the page as allocated
[ 90.530828][ T6521] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6521, tgid 6521 (syz.0.25), ts 90409905971, free_ts 77176075739
[ 90.536966][ T6521] post_alloc_hook+0x181/0x1b0
[ 90.538471][ T6521] get_page_from_freelist+0x135c/0x3920
[ 90.540126][ T6521] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 90.541961][ T6521] alloc_pages_mpol+0x1fb/0x550
[ 90.543469][ T6521] folio_alloc_noprof+0x20/0x2d0
[ 90.545118][ T6521] filemap_alloc_folio_noprof+0x3a1/0x470
[ 90.546865][ T6521] page_cache_ra_order+0x4c0/0xd00
[ 90.548475][ T6521] filemap_fault+0x1a5e/0x2740
[ 90.549975][ T6521] __do_fault+0x10a/0x490
[ 90.551323][ T6521] do_pte_missing+0x1a6/0x3fb0
[ 90.552822][ T6521] __handle_mm_fault+0x103d/0x2a40
[ 90.554454][ T6521] handle_mm_fault+0x3fe/0xad0
[ 90.556227][ T6521] do_user_addr_fault+0x60c/0x1370
[ 90.557964][ T6521] exc_page_fault+0x5c/0xc0
[ 90.559718][ T6521] asm_exc_page_fault+0x26/0x30
[ 90.561340][ T6521] page last free pid 6196 tgid 6196 stack trace:
[ 90.563694][ T6521] free_unref_folios+0x999/0x1630
[ 90.565785][ T6521] folios_put_refs+0x56f/0x740
[ 90.567387][ T6521] free_pages_and_swap_cache+0x245/0x4a0
[ 90.569204][ T6521] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 90.571405][ T6521] tlb_finish_mmu+0x168/0x7b0
[ 90.573000][ T6521] vms_clear_ptes+0x55e/0x770
[ 90.574527][ T6521] vms_complete_munmap_vmas+0x1ca/0x970
[ 90.576346][ T6521] do_vmi_align_munmap+0x43b/0x7d0
[ 90.577994][ T6521] do_vmi_munmap+0x208/0x3e0
[ 90.579469][ T6521] __vm_munmap+0x19a/0x390
[ 90.580896][ T6521] __x64_sys_munmap+0x59/0x80
[ 90.582450][ T6521] do_syscall_64+0xcd/0x260
[ 90.583902][ T6521] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.587575][ T6521] Modules linked in:
[ 90.588874][ T6521] CPU: 3 UID: 0 PID: 6521 Comm: syz.0.25 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 90.588889][ T6521] Tainted: [B]=BAD_PAGE
[ 90.588893][ T6521] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 90.588899][ T6521] Call Trace:
[ 90.588920][ T6521]
[ 90.588927][ T6521] dump_stack_lvl+0x16c/0x1f0
[ 90.588945][ T6521] bad_page+0xb3/0x1f0
[ 90.588955][ T6521] ? __pfx_bad_page+0x10/0x10
[ 90.588966][ T6521] ? __mem_cgroup_uncharge+0xda/0x130
[ 90.588978][ T6521] free_tail_page_prepare+0x44f/0x5b0
[ 90.588990][ T6521] __free_frozen_pages+0x96a/0xff0
[ 90.589005][ T6521] __folio_put+0x329/0x450
[ 90.589016][ T6521] ? __pfx___folio_put+0x10/0x10
[ 90.589027][ T6521] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 90.589038][ T6521] ? rcu_is_watching+0x12/0xc0
[ 90.589049][ T6521] ? lock_release+0x201/0x2f0
[ 90.589064][ T6521] filemap_free_folio+0x132/0x170
[ 90.589074][ T6521] delete_from_page_cache_batch+0x741/0x9b0
[ 90.589086][ T6521] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 90.589098][ T6521] ? __pfx_workingset_update_node+0x10/0x10
[ 90.589109][ T6521] ? xas_move_index+0xb0/0x110
[ 90.589123][ T6521] truncate_inode_pages_range+0x279/0xe30
[ 90.589137][ T6521] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 90.589159][ T6521] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 90.589179][ T6521] ? __pfx_has_bh_in_lru+0x10/0x10
[ 90.589193][ T6521] blkdev_flush_mapping+0xfb/0x290
[ 90.589206][ T6521] blkdev_put_whole+0xc4/0xf0
[ 90.589216][ T6521] bdev_release+0x47e/0x6d0
[ 90.589229][ T6521] ? __pfx_blkdev_release+0x10/0x10
[ 90.589241][ T6521] blkdev_release+0x15/0x20
[ 90.589253][ T6521] __fput+0x3ff/0xb70
[ 90.589265][ T6521] task_work_run+0x14d/0x240
[ 90.589275][ T6521] ? __pfx_task_work_run+0x10/0x10
[ 90.589285][ T6521] ? do_raw_spin_unlock+0x172/0x230
[ 90.589296][ T6521] do_exit+0xafb/0x2c30
[ 90.589310][ T6521] ? __pfx_do_exit+0x10/0x10
[ 90.589323][ T6521] ? preempt_schedule_thunk+0x16/0x30
[ 90.589334][ T6521] do_group_exit+0xd3/0x2a0
[ 90.589350][ T6521] __x64_sys_exit_group+0x3e/0x50
[ 90.589364][ T6521] x64_sys_call+0x1530/0x1730
[ 90.589377][ T6521] do_syscall_64+0xcd/0x260
[ 90.589391][ T6521] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.589401][ T6521] RIP: 0033:0x7fbf3cb8e969
[ 90.589408][ T6521] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 90.589413][ T6521] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 90.589424][ T6521] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 90.589430][ T6521] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 90.589436][ T6521] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 90.589442][ T6521] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000009
[ 90.589447][ T6521] R13: 00000000000927c0 R14: 0000000000015ef8 R15: 00007fff5c310b00
[ 90.589455][ T6521]
[ 90.589470][ T6521] BUG: Bad page state in process syz.0.25 pfn:4c000
[ 90.685040][ T6521] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4c000
[ 90.687921][ T6521] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 90.691394][ T6521] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 90.695213][ T6521] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 90.698269][ T6521] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.700983][ T6521] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 90.703680][ T6521] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.706700][ T6521] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.709449][ T6521] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 90.712248][ T6521] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 90.715311][ T6521] page_owner tracks the page as allocated
[ 90.717110][ T6521] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6521, tgid 6521 (syz.0.25), ts 90409905971, free_ts 77176070407
[ 90.723069][ T6521] post_alloc_hook+0x181/0x1b0
[ 90.724547][ T6521] get_page_from_freelist+0x135c/0x3920
[ 90.726312][ T6521] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 90.728111][ T6521] alloc_pages_mpol+0x1fb/0x550
[ 90.729622][ T6521] folio_alloc_noprof+0x20/0x2d0
[ 90.731130][ T6521] filemap_alloc_folio_noprof+0x3a1/0x470
[ 90.732894][ T6521] page_cache_ra_order+0x4c0/0xd00
[ 90.734484][ T6521] filemap_fault+0x1a5e/0x2740
[ 90.736024][ T6521] __do_fault+0x10a/0x490
[ 90.737349][ T6521] do_pte_missing+0x1a6/0x3fb0
[ 90.738793][ T6521] __handle_mm_fault+0x103d/0x2a40
[ 90.740345][ T6521] handle_mm_fault+0x3fe/0xad0
[ 90.741853][ T6521] do_user_addr_fault+0x60c/0x1370
[ 90.743420][ T6521] exc_page_fault+0x5c/0xc0
[ 90.745008][ T6521] asm_exc_page_fault+0x26/0x30
[ 90.746524][ T6521] page last free pid 6196 tgid 6196 stack trace:
[ 90.748432][ T6521] free_unref_folios+0x999/0x1630
[ 90.750009][ T6521] folios_put_refs+0x56f/0x740
[ 90.751484][ T6521] free_pages_and_swap_cache+0x245/0x4a0
[ 90.753457][ T6521] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 90.755844][ T6521] tlb_finish_mmu+0x168/0x7b0
[ 90.757571][ T6521] vms_clear_ptes+0x55e/0x770
[ 90.759241][ T6521] vms_complete_munmap_vmas+0x1ca/0x970
[ 90.761349][ T6521] do_vmi_align_munmap+0x43b/0x7d0
[ 90.763270][ T6521] do_vmi_munmap+0x208/0x3e0
[ 90.764867][ T6521] __vm_munmap+0x19a/0x390
[ 90.766472][ T6521] __x64_sys_munmap+0x59/0x80
[ 90.767901][ T6521] do_syscall_64+0xcd/0x260
[ 90.769332][ T6521] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.771106][ T6521] Modules linked in:
[ 90.772375][ T6521] CPU: 1 UID: 0 PID: 6521 Comm: syz.0.25 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 90.772391][ T6521] Tainted: [B]=BAD_PAGE
[ 90.772394][ T6521] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 90.772401][ T6521] Call Trace:
[ 90.772405][ T6521]
[ 90.772409][ T6521] dump_stack_lvl+0x16c/0x1f0
[ 90.772424][ T6521] bad_page+0xb3/0x1f0
[ 90.772435][ T6521] ? __pfx_bad_page+0x10/0x10
[ 90.772445][ T6521] ? page_bad_reason+0x9d/0x1e0
[ 90.772455][ T6521] __free_frozen_pages+0x76e/0xff0
[ 90.772470][ T6521] __folio_put+0x329/0x450
[ 90.772481][ T6521] ? __pfx___folio_put+0x10/0x10
[ 90.772492][ T6521] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 90.772503][ T6521] ? rcu_is_watching+0x12/0xc0
[ 90.772515][ T6521] ? lock_release+0x201/0x2f0
[ 90.772529][ T6521] filemap_free_folio+0x132/0x170
[ 90.772539][ T6521] delete_from_page_cache_batch+0x741/0x9b0
[ 90.772551][ T6521] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 90.772563][ T6521] ? __pfx_workingset_update_node+0x10/0x10
[ 90.772574][ T6521] ? xas_move_index+0xb0/0x110
[ 90.772587][ T6521] truncate_inode_pages_range+0x279/0xe30
[ 90.772601][ T6521] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 90.772623][ T6521] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 90.772639][ T6521] ? __pfx_has_bh_in_lru+0x10/0x10
[ 90.772653][ T6521] blkdev_flush_mapping+0xfb/0x290
[ 90.772666][ T6521] blkdev_put_whole+0xc4/0xf0
[ 90.772676][ T6521] bdev_release+0x47e/0x6d0
[ 90.772689][ T6521] ? __pfx_blkdev_release+0x10/0x10
[ 90.772701][ T6521] blkdev_release+0x15/0x20
[ 90.772713][ T6521] __fput+0x3ff/0xb70
[ 90.772724][ T6521] task_work_run+0x14d/0x240
[ 90.772735][ T6521] ? __pfx_task_work_run+0x10/0x10
[ 90.772745][ T6521] ? do_raw_spin_unlock+0x172/0x230
[ 90.772755][ T6521] do_exit+0xafb/0x2c30
[ 90.772770][ T6521] ? __pfx_do_exit+0x10/0x10
[ 90.772783][ T6521] ? preempt_schedule_thunk+0x16/0x30
[ 90.772793][ T6521] do_group_exit+0xd3/0x2a0
[ 90.772808][ T6521] __x64_sys_exit_group+0x3e/0x50
[ 90.772822][ T6521] x64_sys_call+0x1530/0x1730
[ 90.772836][ T6521] do_syscall_64+0xcd/0x260
[ 90.772849][ T6521] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.772859][ T6521] RIP: 0033:0x7fbf3cb8e969
[ 90.772866][ T6521] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 90.772870][ T6521] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 90.772880][ T6521] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 90.772886][ T6521] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 90.772891][ T6521] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 90.772897][ T6521] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000009
[ 90.772921][ T6521] R13: 00000000000927c0 R14: 0000000000015ef8 R15: 00007fff5c310b00
[ 90.772934][ T6521]
[ 90.911555][ T6524] BUG: Bad page state in process syz.0.26 pfn:4b201
[ 90.914327][ T6524] page does not match folio
[ 90.916319][ T6524] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4b201
[ 90.920626][ T6524] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 90.924305][ T6524] raw: 00fff00000000000 ffffea00012c8000 00000000ffffffff ffffffffffffffff
[ 90.928551][ T6524] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 90.932040][ T6524] page dumped because: nonzero pincount
[ 90.934605][ T6524] page_owner tracks the page as allocated
[ 90.937852][ T6524] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6523, tgid 6523 (syz.0.26), ts 90877332129, free_ts 89159877402
[ 90.946577][ T6524] post_alloc_hook+0x181/0x1b0
[ 90.948017][ T6524] get_page_from_freelist+0x135c/0x3920
[ 90.949725][ T6524] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 90.951683][ T6524] alloc_pages_mpol+0x1fb/0x550
[ 90.953206][ T6524] folio_alloc_noprof+0x20/0x2d0
[ 90.954833][ T6524] filemap_alloc_folio_noprof+0x3a1/0x470
[ 90.957075][ T6524] page_cache_ra_order+0x4c0/0xd00
[ 90.958644][ T6524] filemap_fault+0x1a5e/0x2740
[ 90.960298][ T6524] __do_fault+0x10a/0x490
[ 90.962098][ T6524] do_pte_missing+0x1a6/0x3fb0
[ 90.963966][ T6524] __handle_mm_fault+0x103d/0x2a40
[ 90.966141][ T6524] handle_mm_fault+0x3fe/0xad0
[ 90.968070][ T6524] do_user_addr_fault+0x60c/0x1370
[ 90.970182][ T6524] exc_page_fault+0x5c/0xc0
[ 90.972034][ T6524] asm_exc_page_fault+0x26/0x30
[ 90.974015][ T6524] page last free pid 6514 tgid 6513 stack trace:
[ 90.976618][ T6524] free_unref_folios+0x999/0x1630
[ 90.978702][ T6524] folios_put_refs+0x56f/0x740
[ 90.980679][ T6524] truncate_inode_pages_range+0x311/0xe30
[ 90.983013][ T6524] blkdev_flush_mapping+0xfb/0x290
[ 90.985136][ T6524] blkdev_put_whole+0xc4/0xf0
[ 90.987083][ T6524] bdev_release+0x47e/0x6d0
[ 90.988938][ T6524] blkdev_release+0x15/0x20
[ 90.990784][ T6524] __fput+0x3ff/0xb70
[ 90.992443][ T6524] task_work_run+0x14d/0x240
[ 90.994315][ T6524] do_exit+0xafb/0x2c30
[ 90.996164][ T6524] do_group_exit+0xd3/0x2a0
[ 90.998098][ T6524] get_signal+0x2673/0x26d0
[ 90.999932][ T6524] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.002150][ T6524] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.004415][ T6524] do_syscall_64+0xda/0x260
[ 91.006403][ T6524] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.008833][ T6524] Modules linked in:
[ 91.010461][ T6524] CPU: 0 UID: 0 PID: 6524 Comm: syz.0.26 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 91.010486][ T6524] Tainted: [B]=BAD_PAGE
[ 91.010491][ T6524] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 91.010501][ T6524] Call Trace:
[ 91.010507][ T6524]
[ 91.010514][ T6524] dump_stack_lvl+0x16c/0x1f0
[ 91.010537][ T6524] bad_page+0xb3/0x1f0
[ 91.010554][ T6524] ? __pfx_bad_page+0x10/0x10
[ 91.010570][ T6524] ? __mem_cgroup_uncharge+0xda/0x130
[ 91.010589][ T6524] free_tail_page_prepare+0x44f/0x5b0
[ 91.010609][ T6524] __free_frozen_pages+0x96a/0xff0
[ 91.010633][ T6524] __folio_put+0x329/0x450
[ 91.010649][ T6524] ? __pfx___folio_put+0x10/0x10
[ 91.010667][ T6524] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 91.010685][ T6524] ? rcu_is_watching+0x12/0xc0
[ 91.010703][ T6524] ? lock_release+0x201/0x2f0
[ 91.010726][ T6524] filemap_free_folio+0x132/0x170
[ 91.010743][ T6524] delete_from_page_cache_batch+0x741/0x9b0
[ 91.010763][ T6524] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 91.010782][ T6524] ? __pfx_workingset_update_node+0x10/0x10
[ 91.010799][ T6524] ? xas_move_index+0xb0/0x110
[ 91.010822][ T6524] truncate_inode_pages_range+0x279/0xe30
[ 91.010846][ T6524] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 91.010884][ T6524] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 91.010909][ T6524] ? __pfx_has_bh_in_lru+0x10/0x10
[ 91.010932][ T6524] blkdev_flush_mapping+0xfb/0x290
[ 91.010951][ T6524] ? filemap_check_errors+0xa9/0x160
[ 91.010975][ T6524] blkdev_put_whole+0xc4/0xf0
[ 91.010992][ T6524] bdev_release+0x47e/0x6d0
[ 91.011011][ T6524] ? __pfx_blkdev_release+0x10/0x10
[ 91.011030][ T6524] blkdev_release+0x15/0x20
[ 91.011048][ T6524] __fput+0x3ff/0xb70
[ 91.011065][ T6524] task_work_run+0x14d/0x240
[ 91.011081][ T6524] ? __pfx_task_work_run+0x10/0x10
[ 91.011096][ T6524] ? do_raw_spin_unlock+0x172/0x230
[ 91.011114][ T6524] do_exit+0xafb/0x2c30
[ 91.011132][ T6524] ? __pfx_futex_wake_mark+0x10/0x10
[ 91.011156][ T6524] ? __pfx_do_exit+0x10/0x10
[ 91.011176][ T6524] ? do_raw_spin_lock+0x12c/0x2b0
[ 91.011191][ T6524] ? get_signal+0x8f5/0x26d0
[ 91.011209][ T6524] ? rcu_is_watching+0x12/0xc0
[ 91.011226][ T6524] do_group_exit+0xd3/0x2a0
[ 91.011248][ T6524] get_signal+0x2673/0x26d0
[ 91.011270][ T6524] ? __pfx_get_signal+0x10/0x10
[ 91.011289][ T6524] ? do_futex+0x122/0x350
[ 91.011309][ T6524] ? __pfx_do_futex+0x10/0x10
[ 91.011330][ T6524] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.011353][ T6524] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 91.011381][ T6524] ? __pfx_do_preadv+0x10/0x10
[ 91.011401][ T6524] ? madvise_unlock+0xc6/0x190
[ 91.011419][ T6524] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.011442][ T6524] do_syscall_64+0xda/0x260
[ 91.011464][ T6524] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.011480][ T6524] RIP: 0033:0x7fbf3cb8e969
[ 91.011492][ T6524] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 91.011499][ T6524] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 91.011514][ T6524] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 91.011525][ T6524] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 91.011535][ T6524] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 91.011545][ T6524] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 91.011554][ T6524] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 91.011569][ T6524]
[ 91.011597][ T6524] BUG: Bad page state in process syz.0.26 pfn:4b200
[ 91.141435][ T6524] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4b200
[ 91.144666][ T6524] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 91.148118][ T6524] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 91.151040][ T6524] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 91.153938][ T6524] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.156724][ T6524] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 91.159630][ T6524] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.162574][ T6524] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.168002][ T6524] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 91.170962][ T6524] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 91.173364][ T6524] page_owner tracks the page as allocated
[ 91.175343][ T6524] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6523, tgid 6523 (syz.0.26), ts 90877332129, free_ts 89159877402
[ 91.181561][ T6524] post_alloc_hook+0x181/0x1b0
[ 91.183194][ T6524] get_page_from_freelist+0x135c/0x3920
[ 91.185196][ T6524] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 91.187164][ T6524] alloc_pages_mpol+0x1fb/0x550
[ 91.188858][ T6524] folio_alloc_noprof+0x20/0x2d0
[ 91.190620][ T6524] filemap_alloc_folio_noprof+0x3a1/0x470
[ 91.192452][ T6524] page_cache_ra_order+0x4c0/0xd00
[ 91.194257][ T6524] filemap_fault+0x1a5e/0x2740
[ 91.196060][ T6524] __do_fault+0x10a/0x490
[ 91.197576][ T6524] do_pte_missing+0x1a6/0x3fb0
[ 91.199340][ T6524] __handle_mm_fault+0x103d/0x2a40
[ 91.201143][ T6524] handle_mm_fault+0x3fe/0xad0
[ 91.202867][ T6524] do_user_addr_fault+0x60c/0x1370
[ 91.204575][ T6524] exc_page_fault+0x5c/0xc0
[ 91.206062][ T6524] asm_exc_page_fault+0x26/0x30
[ 91.207695][ T6524] page last free pid 6514 tgid 6513 stack trace:
[ 91.209970][ T6524] free_unref_folios+0x999/0x1630
[ 91.211606][ T6524] folios_put_refs+0x56f/0x740
[ 91.213236][ T6524] truncate_inode_pages_range+0x311/0xe30
[ 91.215285][ T6524] blkdev_flush_mapping+0xfb/0x290
[ 91.216972][ T6524] blkdev_put_whole+0xc4/0xf0
[ 91.218556][ T6524] bdev_release+0x47e/0x6d0
[ 91.220139][ T6524] blkdev_release+0x15/0x20
[ 91.221729][ T6524] __fput+0x3ff/0xb70
[ 91.222924][ T6524] task_work_run+0x14d/0x240
[ 91.224458][ T6524] do_exit+0xafb/0x2c30
[ 91.225898][ T6524] do_group_exit+0xd3/0x2a0
[ 91.227506][ T6524] get_signal+0x2673/0x26d0
[ 91.229055][ T6524] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.230929][ T6524] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.232873][ T6524] do_syscall_64+0xda/0x260
[ 91.234381][ T6524] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.236517][ T6524] Modules linked in:
[ 91.237746][ T6524] CPU: 0 UID: 0 PID: 6524 Comm: syz.0.26 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 91.237762][ T6524] Tainted: [B]=BAD_PAGE
[ 91.237765][ T6524] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 91.237771][ T6524] Call Trace:
[ 91.237774][ T6524]
[ 91.237778][ T6524] dump_stack_lvl+0x16c/0x1f0
[ 91.237793][ T6524] bad_page+0xb3/0x1f0
[ 91.237804][ T6524] ? __pfx_bad_page+0x10/0x10
[ 91.237814][ T6524] ? page_bad_reason+0x9d/0x1e0
[ 91.237824][ T6524] __free_frozen_pages+0x76e/0xff0
[ 91.237839][ T6524] __folio_put+0x329/0x450
[ 91.237850][ T6524] ? __pfx___folio_put+0x10/0x10
[ 91.237861][ T6524] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 91.237872][ T6524] ? rcu_is_watching+0x12/0xc0
[ 91.237883][ T6524] ? lock_release+0x201/0x2f0
[ 91.237898][ T6524] filemap_free_folio+0x132/0x170
[ 91.237909][ T6524] delete_from_page_cache_batch+0x741/0x9b0
[ 91.237921][ T6524] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 91.237932][ T6524] ? __pfx_workingset_update_node+0x10/0x10
[ 91.237943][ T6524] ? xas_move_index+0xb0/0x110
[ 91.237957][ T6524] truncate_inode_pages_range+0x279/0xe30
[ 91.237971][ T6524] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 91.237993][ T6524] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 91.238008][ T6524] ? __pfx_has_bh_in_lru+0x10/0x10
[ 91.238022][ T6524] blkdev_flush_mapping+0xfb/0x290
[ 91.238033][ T6524] ? filemap_check_errors+0xa9/0x160
[ 91.238047][ T6524] blkdev_put_whole+0xc4/0xf0
[ 91.238058][ T6524] bdev_release+0x47e/0x6d0
[ 91.238070][ T6524] ? __pfx_blkdev_release+0x10/0x10
[ 91.238082][ T6524] blkdev_release+0x15/0x20
[ 91.238094][ T6524] __fput+0x3ff/0xb70
[ 91.238106][ T6524] task_work_run+0x14d/0x240
[ 91.238116][ T6524] ? __pfx_task_work_run+0x10/0x10
[ 91.238126][ T6524] ? do_raw_spin_unlock+0x172/0x230
[ 91.238137][ T6524] do_exit+0xafb/0x2c30
[ 91.238150][ T6524] ? __pfx_futex_wake_mark+0x10/0x10
[ 91.238166][ T6524] ? __pfx_do_exit+0x10/0x10
[ 91.238179][ T6524] ? do_raw_spin_lock+0x12c/0x2b0
[ 91.238189][ T6524] ? get_signal+0x8f5/0x26d0
[ 91.238200][ T6524] ? rcu_is_watching+0x12/0xc0
[ 91.238211][ T6524] do_group_exit+0xd3/0x2a0
[ 91.238226][ T6524] get_signal+0x2673/0x26d0
[ 91.238238][ T6524] ? __pfx_get_signal+0x10/0x10
[ 91.238250][ T6524] ? do_futex+0x122/0x350
[ 91.238263][ T6524] ? __pfx_do_futex+0x10/0x10
[ 91.238275][ T6524] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.238290][ T6524] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 91.238305][ T6524] ? __pfx_do_preadv+0x10/0x10
[ 91.238317][ T6524] ? madvise_unlock+0xc6/0x190
[ 91.238328][ T6524] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.238342][ T6524] do_syscall_64+0xda/0x260
[ 91.238355][ T6524] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.238365][ T6524] RIP: 0033:0x7fbf3cb8e969
[ 91.238377][ T6524] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 91.238381][ T6524] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 91.238391][ T6524] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 91.238397][ T6524] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 91.238402][ T6524] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 91.238408][ T6524] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 91.238413][ T6524] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 91.238421][ T6524]
[ 91.381421][ T6526] BUG: Bad page state in process syz.0.27 pfn:4ac01
[ 91.383507][ T6526] page does not match folio
[ 91.385849][ T6526] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4ac01
[ 91.389634][ T6526] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 91.392522][ T6526] raw: 00fff00000000000 ffffea00012b0000 00000000ffffffff ffffffffffffffff
[ 91.396039][ T6526] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 91.399563][ T6526] page dumped because: nonzero pincount
[ 91.401894][ T6526] page_owner tracks the page as allocated
[ 91.404281][ T6526] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6525, tgid 6525 (syz.0.27), ts 91358515837, free_ts 91238448362
[ 91.414901][ T6526] post_alloc_hook+0x181/0x1b0
[ 91.416393][ T6526] get_page_from_freelist+0x135c/0x3920
[ 91.418063][ T6526] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 91.419842][ T6526] alloc_pages_mpol+0x1fb/0x550
[ 91.421321][ T6526] folio_alloc_noprof+0x20/0x2d0
[ 91.422848][ T6526] filemap_alloc_folio_noprof+0x3a1/0x470
[ 91.424572][ T6526] page_cache_ra_order+0x4c0/0xd00
[ 91.426291][ T6526] filemap_fault+0x1a5e/0x2740
[ 91.427749][ T6526] __do_fault+0x10a/0x490
[ 91.429081][ T6526] do_pte_missing+0x1a6/0x3fb0
[ 91.430555][ T6526] __handle_mm_fault+0x103d/0x2a40
[ 91.432112][ T6526] handle_mm_fault+0x3fe/0xad0
[ 91.433547][ T6526] do_user_addr_fault+0x60c/0x1370
[ 91.435289][ T6526] exc_page_fault+0x5c/0xc0
[ 91.437221][ T6526] asm_exc_page_fault+0x26/0x30
[ 91.438727][ T6526] page last free pid 6524 tgid 6523 stack trace:
[ 91.440585][ T6526] free_unref_folios+0x999/0x1630
[ 91.442171][ T6526] folios_put_refs+0x56f/0x740
[ 91.443655][ T6526] truncate_inode_pages_range+0x311/0xe30
[ 91.445572][ T6526] blkdev_flush_mapping+0xfb/0x290
[ 91.447285][ T6526] blkdev_put_whole+0xc4/0xf0
[ 91.448836][ T6526] bdev_release+0x47e/0x6d0
[ 91.450261][ T6526] blkdev_release+0x15/0x20
[ 91.451687][ T6526] __fput+0x3ff/0xb70
[ 91.452950][ T6526] task_work_run+0x14d/0x240
[ 91.454360][ T6526] do_exit+0xafb/0x2c30
[ 91.455701][ T6526] do_group_exit+0xd3/0x2a0
[ 91.457112][ T6526] get_signal+0x2673/0x26d0
[ 91.458692][ T6526] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.460737][ T6526] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.462861][ T6526] do_syscall_64+0xda/0x260
[ 91.464584][ T6526] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.467427][ T6526] Modules linked in:
[ 91.468962][ T6526] CPU: 1 UID: 0 PID: 6526 Comm: syz.0.27 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 91.468986][ T6526] Tainted: [B]=BAD_PAGE
[ 91.468991][ T6526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 91.469000][ T6526] Call Trace:
[ 91.469004][ T6526]
[ 91.469008][ T6526] dump_stack_lvl+0x16c/0x1f0
[ 91.469030][ T6526] bad_page+0xb3/0x1f0
[ 91.469046][ T6526] ? __pfx_bad_page+0x10/0x10
[ 91.469061][ T6526] ? __mem_cgroup_uncharge+0xda/0x130
[ 91.469080][ T6526] free_tail_page_prepare+0x44f/0x5b0
[ 91.469096][ T6526] __free_frozen_pages+0x96a/0xff0
[ 91.469128][ T6526] __folio_put+0x329/0x450
[ 91.469144][ T6526] ? __pfx___folio_put+0x10/0x10
[ 91.469159][ T6526] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 91.469174][ T6526] ? rcu_is_watching+0x12/0xc0
[ 91.469185][ T6526] ? lock_release+0x201/0x2f0
[ 91.469200][ T6526] filemap_free_folio+0x132/0x170
[ 91.469210][ T6526] delete_from_page_cache_batch+0x741/0x9b0
[ 91.469222][ T6526] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 91.469234][ T6526] ? __pfx_workingset_update_node+0x10/0x10
[ 91.469245][ T6526] ? xas_move_index+0xb0/0x110
[ 91.469259][ T6526] truncate_inode_pages_range+0x279/0xe30
[ 91.469273][ T6526] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 91.469291][ T6526] ? __pfx___send_ipi_mask+0x10/0x10
[ 91.469308][ T6526] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 91.469324][ T6526] ? __pfx_has_bh_in_lru+0x10/0x10
[ 91.469338][ T6526] blkdev_flush_mapping+0xfb/0x290
[ 91.469354][ T6526] ? filemap_check_errors+0xa9/0x160
[ 91.469368][ T6526] blkdev_put_whole+0xc4/0xf0
[ 91.469378][ T6526] bdev_release+0x47e/0x6d0
[ 91.469391][ T6526] ? __pfx_blkdev_release+0x10/0x10
[ 91.469403][ T6526] blkdev_release+0x15/0x20
[ 91.469415][ T6526] __fput+0x3ff/0xb70
[ 91.469426][ T6526] task_work_run+0x14d/0x240
[ 91.469437][ T6526] ? __pfx_task_work_run+0x10/0x10
[ 91.469447][ T6526] ? do_raw_spin_unlock+0x172/0x230
[ 91.469458][ T6526] do_exit+0xafb/0x2c30
[ 91.469471][ T6526] ? __pfx_futex_wake_mark+0x10/0x10
[ 91.469487][ T6526] ? __pfx_do_exit+0x10/0x10
[ 91.469500][ T6526] ? do_raw_spin_lock+0x12c/0x2b0
[ 91.469509][ T6526] ? get_signal+0x8f5/0x26d0
[ 91.469521][ T6526] ? rcu_is_watching+0x12/0xc0
[ 91.469532][ T6526] do_group_exit+0xd3/0x2a0
[ 91.469546][ T6526] get_signal+0x2673/0x26d0
[ 91.469559][ T6526] ? __pfx_get_signal+0x10/0x10
[ 91.469570][ T6526] ? do_futex+0x122/0x350
[ 91.469583][ T6526] ? __pfx_do_futex+0x10/0x10
[ 91.469595][ T6526] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.469609][ T6526] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 91.469624][ T6526] ? __pfx_do_preadv+0x10/0x10
[ 91.469636][ T6526] ? rcu_is_watching+0x12/0xc0
[ 91.469648][ T6526] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.469661][ T6526] do_syscall_64+0xda/0x260
[ 91.469675][ T6526] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.469684][ T6526] RIP: 0033:0x7fbf3cb8e969
[ 91.469692][ T6526] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 91.469696][ T6526] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 91.469706][ T6526] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 91.469712][ T6526] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 91.469718][ T6526] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 91.469723][ T6526] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 91.469729][ T6526] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 91.469737][ T6526]
[ 91.469752][ T6526] BUG: Bad page state in process syz.0.27 pfn:4ac00
[ 91.593774][ T6526] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4ac00
[ 91.597351][ T6526] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 91.600576][ T6526] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 91.604075][ T6526] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 91.607456][ T6526] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.610806][ T6526] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 91.614219][ T6526] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.617703][ T6526] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.620980][ T6526] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 91.624387][ T6526] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 91.627524][ T6526] page_owner tracks the page as allocated
[ 91.629789][ T6526] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6525, tgid 6525 (syz.0.27), ts 91358515837, free_ts 91238448362
[ 91.637496][ T6526] post_alloc_hook+0x181/0x1b0
[ 91.639388][ T6526] get_page_from_freelist+0x135c/0x3920
[ 91.641583][ T6526] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 91.643976][ T6526] alloc_pages_mpol+0x1fb/0x550
[ 91.646083][ T6526] folio_alloc_noprof+0x20/0x2d0
[ 91.647985][ T6526] filemap_alloc_folio_noprof+0x3a1/0x470
[ 91.650177][ T6526] page_cache_ra_order+0x4c0/0xd00
[ 91.652124][ T6526] filemap_fault+0x1a5e/0x2740
[ 91.654033][ T6526] __do_fault+0x10a/0x490
[ 91.655870][ T6526] do_pte_missing+0x1a6/0x3fb0
[ 91.657789][ T6526] __handle_mm_fault+0x103d/0x2a40
[ 91.659794][ T6526] handle_mm_fault+0x3fe/0xad0
[ 91.661672][ T6526] do_user_addr_fault+0x60c/0x1370
[ 91.663587][ T6526] exc_page_fault+0x5c/0xc0
[ 91.665031][ T6526] asm_exc_page_fault+0x26/0x30
[ 91.666645][ T6526] page last free pid 6524 tgid 6523 stack trace:
[ 91.669143][ T6526] free_unref_folios+0x999/0x1630
[ 91.671156][ T6526] folios_put_refs+0x56f/0x740
[ 91.673093][ T6526] truncate_inode_pages_range+0x311/0xe30
[ 91.675286][ T6526] blkdev_flush_mapping+0xfb/0x290
[ 91.677134][ T6526] blkdev_put_whole+0xc4/0xf0
[ 91.678866][ T6526] bdev_release+0x47e/0x6d0
[ 91.680736][ T6526] blkdev_release+0x15/0x20
[ 91.682375][ T6526] __fput+0x3ff/0xb70
[ 91.683604][ T6526] task_work_run+0x14d/0x240
[ 91.685091][ T6526] do_exit+0xafb/0x2c30
[ 91.686431][ T6526] do_group_exit+0xd3/0x2a0
[ 91.687925][ T6526] get_signal+0x2673/0x26d0
[ 91.689554][ T6526] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.691192][ T6526] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.692922][ T6526] do_syscall_64+0xda/0x260
[ 91.694455][ T6526] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.696469][ T6526] Modules linked in:
[ 91.697854][ T6526] CPU: 0 UID: 0 PID: 6526 Comm: syz.0.27 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 91.697879][ T6526] Tainted: [B]=BAD_PAGE
[ 91.697885][ T6526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 91.697893][ T6526] Call Trace:
[ 91.697900][ T6526]
[ 91.697907][ T6526] dump_stack_lvl+0x16c/0x1f0
[ 91.697928][ T6526] bad_page+0xb3/0x1f0
[ 91.697945][ T6526] ? __pfx_bad_page+0x10/0x10
[ 91.697960][ T6526] ? page_bad_reason+0x9d/0x1e0
[ 91.697976][ T6526] __free_frozen_pages+0x76e/0xff0
[ 91.697997][ T6526] __folio_put+0x329/0x450
[ 91.698009][ T6526] ? __pfx___folio_put+0x10/0x10
[ 91.698020][ T6526] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 91.698032][ T6526] ? rcu_is_watching+0x12/0xc0
[ 91.698043][ T6526] ? lock_release+0x201/0x2f0
[ 91.698058][ T6526] filemap_free_folio+0x132/0x170
[ 91.698068][ T6526] delete_from_page_cache_batch+0x741/0x9b0
[ 91.698080][ T6526] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 91.698092][ T6526] ? __pfx_workingset_update_node+0x10/0x10
[ 91.698103][ T6526] ? xas_move_index+0xb0/0x110
[ 91.698118][ T6526] truncate_inode_pages_range+0x279/0xe30
[ 91.698138][ T6526] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 91.698166][ T6526] ? __pfx___send_ipi_mask+0x10/0x10
[ 91.698193][ T6526] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 91.698215][ T6526] ? __pfx_has_bh_in_lru+0x10/0x10
[ 91.698235][ T6526] blkdev_flush_mapping+0xfb/0x290
[ 91.698251][ T6526] ? filemap_check_errors+0xa9/0x160
[ 91.698274][ T6526] blkdev_put_whole+0xc4/0xf0
[ 91.698289][ T6526] bdev_release+0x47e/0x6d0
[ 91.698308][ T6526] ? __pfx_blkdev_release+0x10/0x10
[ 91.698327][ T6526] blkdev_release+0x15/0x20
[ 91.698342][ T6526] __fput+0x3ff/0xb70
[ 91.698356][ T6526] task_work_run+0x14d/0x240
[ 91.698375][ T6526] ? __pfx_task_work_run+0x10/0x10
[ 91.698387][ T6526] ? do_raw_spin_unlock+0x172/0x230
[ 91.698401][ T6526] do_exit+0xafb/0x2c30
[ 91.698418][ T6526] ? __pfx_futex_wake_mark+0x10/0x10
[ 91.698437][ T6526] ? __pfx_do_exit+0x10/0x10
[ 91.698453][ T6526] ? do_raw_spin_lock+0x12c/0x2b0
[ 91.698465][ T6526] ? get_signal+0x8f5/0x26d0
[ 91.698478][ T6526] ? rcu_is_watching+0x12/0xc0
[ 91.698492][ T6526] do_group_exit+0xd3/0x2a0
[ 91.698509][ T6526] get_signal+0x2673/0x26d0
[ 91.698525][ T6526] ? __pfx_get_signal+0x10/0x10
[ 91.698540][ T6526] ? do_futex+0x122/0x350
[ 91.698554][ T6526] ? __pfx_do_futex+0x10/0x10
[ 91.698570][ T6526] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.698587][ T6526] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 91.698605][ T6526] ? __pfx_do_preadv+0x10/0x10
[ 91.698620][ T6526] ? rcu_is_watching+0x12/0xc0
[ 91.698634][ T6526] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.698652][ T6526] do_syscall_64+0xda/0x260
[ 91.698668][ T6526] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.698680][ T6526] RIP: 0033:0x7fbf3cb8e969
[ 91.698689][ T6526] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 91.698695][ T6526] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 91.698707][ T6526] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 91.698715][ T6526] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 91.698722][ T6526] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 91.698729][ T6526] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 91.698736][ T6526] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 91.698747][ T6526]
[ 91.737901][ T6528] BUG: Bad page state in process syz.0.28 pfn:4c201
[ 91.831968][ T6528] page does not match folio
[ 91.833758][ T6528] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4c201
[ 91.837710][ T6528] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 91.840628][ T6528] raw: 00fff00000000000 ffffea0001308000 00000000ffffffff ffffffffffffffff
[ 91.843993][ T6528] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 91.847464][ T6528] page dumped because: nonzero pincount
[ 91.849659][ T6528] page_owner tracks the page as allocated
[ 91.851912][ T6528] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6528, tgid 6528 (syz.0.28), ts 91707044763, free_ts 90773026779
[ 91.859790][ T6528] post_alloc_hook+0x181/0x1b0
[ 91.861738][ T6528] get_page_from_freelist+0x135c/0x3920
[ 91.863957][ T6528] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 91.866904][ T6528] alloc_pages_mpol+0x1fb/0x550
[ 91.868819][ T6528] folio_alloc_noprof+0x20/0x2d0
[ 91.870722][ T6528] filemap_alloc_folio_noprof+0x3a1/0x470
[ 91.872920][ T6528] page_cache_ra_order+0x4c0/0xd00
[ 91.874965][ T6528] filemap_fault+0x1a5e/0x2740
[ 91.876811][ T6528] __do_fault+0x10a/0x490
[ 91.878482][ T6528] do_pte_missing+0x1a6/0x3fb0
[ 91.880329][ T6528] __handle_mm_fault+0x103d/0x2a40
[ 91.882382][ T6528] handle_mm_fault+0x3fe/0xad0
[ 91.884274][ T6528] do_user_addr_fault+0x60c/0x1370
[ 91.886344][ T6528] exc_page_fault+0x5c/0xc0
[ 91.888119][ T6528] asm_exc_page_fault+0x26/0x30
[ 91.890050][ T6528] page last free pid 6521 tgid 6521 stack trace:
[ 91.892454][ T6528] free_unref_folios+0x999/0x1630
[ 91.894437][ T6528] folios_put_refs+0x56f/0x740
[ 91.896350][ T6528] truncate_inode_pages_range+0x311/0xe30
[ 91.898553][ T6528] blkdev_flush_mapping+0xfb/0x290
[ 91.900516][ T6528] blkdev_put_whole+0xc4/0xf0
[ 91.902396][ T6528] bdev_release+0x47e/0x6d0
[ 91.904149][ T6528] blkdev_release+0x15/0x20
[ 91.905987][ T6528] __fput+0x3ff/0xb70
[ 91.907556][ T6528] task_work_run+0x14d/0x240
[ 91.909375][ T6528] do_exit+0xafb/0x2c30
[ 91.910993][ T6528] do_group_exit+0xd3/0x2a0
[ 91.912772][ T6528] __x64_sys_exit_group+0x3e/0x50
[ 91.914781][ T6528] x64_sys_call+0x1530/0x1730
[ 91.916607][ T6528] do_syscall_64+0xcd/0x260
[ 91.918359][ T6528] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.920670][ T6528] Modules linked in:
[ 91.922229][ T6528] CPU: 1 UID: 0 PID: 6528 Comm: syz.0.28 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 91.922251][ T6528] Tainted: [B]=BAD_PAGE
[ 91.922257][ T6528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 91.922266][ T6528] Call Trace:
[ 91.922271][ T6528]
[ 91.922276][ T6528] dump_stack_lvl+0x16c/0x1f0
[ 91.922298][ T6528] bad_page+0xb3/0x1f0
[ 91.922313][ T6528] ? __pfx_bad_page+0x10/0x10
[ 91.922330][ T6528] ? __mem_cgroup_uncharge+0xda/0x130
[ 91.922353][ T6528] free_tail_page_prepare+0x44f/0x5b0
[ 91.922372][ T6528] __free_frozen_pages+0x96a/0xff0
[ 91.922395][ T6528] __folio_put+0x329/0x450
[ 91.922412][ T6528] ? __pfx___folio_put+0x10/0x10
[ 91.922427][ T6528] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 91.922444][ T6528] ? rcu_is_watching+0x12/0xc0
[ 91.922460][ T6528] ? lock_release+0x201/0x2f0
[ 91.922481][ T6528] filemap_free_folio+0x132/0x170
[ 91.922497][ T6528] delete_from_page_cache_batch+0x741/0x9b0
[ 91.922515][ T6528] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 91.922534][ T6528] ? __pfx_workingset_update_node+0x10/0x10
[ 91.922549][ T6528] ? xas_move_index+0xb0/0x110
[ 91.922570][ T6528] truncate_inode_pages_range+0x279/0xe30
[ 91.922592][ T6528] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 91.922627][ T6528] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 91.922650][ T6528] ? __pfx_has_bh_in_lru+0x10/0x10
[ 91.922669][ T6528] blkdev_flush_mapping+0xfb/0x290
[ 91.922689][ T6528] blkdev_put_whole+0xc4/0xf0
[ 91.922704][ T6528] bdev_release+0x47e/0x6d0
[ 91.922723][ T6528] ? __pfx_blkdev_release+0x10/0x10
[ 91.922741][ T6528] blkdev_release+0x15/0x20
[ 91.922758][ T6528] __fput+0x3ff/0xb70
[ 91.922775][ T6528] task_work_run+0x14d/0x240
[ 91.922791][ T6528] ? __pfx_task_work_run+0x10/0x10
[ 91.922807][ T6528] ? do_raw_spin_unlock+0x172/0x230
[ 91.922823][ T6528] do_exit+0xafb/0x2c30
[ 91.922845][ T6528] ? __pfx_do_exit+0x10/0x10
[ 91.922865][ T6528] ? preempt_schedule_thunk+0x16/0x30
[ 91.922880][ T6528] do_group_exit+0xd3/0x2a0
[ 91.922901][ T6528] __x64_sys_exit_group+0x3e/0x50
[ 91.922920][ T6528] x64_sys_call+0x1530/0x1730
[ 91.922940][ T6528] do_syscall_64+0xcd/0x260
[ 91.922961][ T6528] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.922975][ T6528] RIP: 0033:0x7fbf3cb8e969
[ 91.922988][ T6528] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 91.922994][ T6528] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 91.923008][ T6528] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 91.923019][ T6528] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 91.923027][ T6528] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 91.923036][ T6528] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000c
[ 91.923046][ T6528] R13: 00000000000927c0 R14: 0000000000016467 R15: 00007fff5c310b00
[ 91.923058][ T6528]
[ 91.923084][ T6528] BUG: Bad page state in process syz.0.28 pfn:4c200
[ 92.037419][ T6528] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4c200
[ 92.039819][ T6528] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 92.042070][ T6528] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 92.044372][ T6528] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.046739][ T6528] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.049382][ T6528] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.051928][ T6528] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.054608][ T6528] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.057964][ T6528] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 92.061349][ T6528] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 92.063757][ T6528] page_owner tracks the page as allocated
[ 92.066063][ T6528] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6528, tgid 6528 (syz.0.28), ts 91707044763, free_ts 90773026779
[ 92.072422][ T6528] post_alloc_hook+0x181/0x1b0
[ 92.073920][ T6528] get_page_from_freelist+0x135c/0x3920
[ 92.076075][ T6528] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 92.077851][ T6528] alloc_pages_mpol+0x1fb/0x550
[ 92.079311][ T6528] folio_alloc_noprof+0x20/0x2d0
[ 92.080772][ T6528] filemap_alloc_folio_noprof+0x3a1/0x470
[ 92.082547][ T6528] page_cache_ra_order+0x4c0/0xd00
[ 92.084159][ T6528] filemap_fault+0x1a5e/0x2740
[ 92.086219][ T6528] __do_fault+0x10a/0x490
[ 92.087790][ T6528] do_pte_missing+0x1a6/0x3fb0
[ 92.089211][ T6528] __handle_mm_fault+0x103d/0x2a40
[ 92.090677][ T6528] handle_mm_fault+0x3fe/0xad0
[ 92.092097][ T6528] do_user_addr_fault+0x60c/0x1370
[ 92.093677][ T6528] exc_page_fault+0x5c/0xc0
[ 92.095436][ T6528] asm_exc_page_fault+0x26/0x30
[ 92.096876][ T6528] page last free pid 6521 tgid 6521 stack trace:
[ 92.098752][ T6528] free_unref_folios+0x999/0x1630
[ 92.100436][ T6528] folios_put_refs+0x56f/0x740
[ 92.102195][ T6528] truncate_inode_pages_range+0x311/0xe30
[ 92.104142][ T6528] blkdev_flush_mapping+0xfb/0x290
[ 92.106863][ T6528] blkdev_put_whole+0xc4/0xf0
[ 92.108322][ T6528] bdev_release+0x47e/0x6d0
[ 92.109645][ T6528] blkdev_release+0x15/0x20
[ 92.110947][ T6528] __fput+0x3ff/0xb70
[ 92.112123][ T6528] task_work_run+0x14d/0x240
[ 92.113466][ T6528] do_exit+0xafb/0x2c30
[ 92.114986][ T6528] do_group_exit+0xd3/0x2a0
[ 92.116255][ T6528] __x64_sys_exit_group+0x3e/0x50
[ 92.117688][ T6528] x64_sys_call+0x1530/0x1730
[ 92.119095][ T6528] do_syscall_64+0xcd/0x260
[ 92.120434][ T6528] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.122232][ T6528] Modules linked in:
[ 92.123435][ T6528] CPU: 2 UID: 0 PID: 6528 Comm: syz.0.28 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 92.123450][ T6528] Tainted: [B]=BAD_PAGE
[ 92.123454][ T6528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 92.123459][ T6528] Call Trace:
[ 92.123463][ T6528]
[ 92.123467][ T6528] dump_stack_lvl+0x16c/0x1f0
[ 92.123482][ T6528] bad_page+0xb3/0x1f0
[ 92.123492][ T6528] ? __pfx_bad_page+0x10/0x10
[ 92.123503][ T6528] ? page_bad_reason+0x9d/0x1e0
[ 92.123513][ T6528] __free_frozen_pages+0x76e/0xff0
[ 92.123528][ T6528] __folio_put+0x329/0x450
[ 92.123539][ T6528] ? __pfx___folio_put+0x10/0x10
[ 92.123550][ T6528] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 92.123560][ T6528] ? rcu_is_watching+0x12/0xc0
[ 92.123572][ T6528] ? lock_release+0x201/0x2f0
[ 92.123587][ T6528] filemap_free_folio+0x132/0x170
[ 92.123597][ T6528] delete_from_page_cache_batch+0x741/0x9b0
[ 92.123610][ T6528] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 92.123621][ T6528] ? __pfx_workingset_update_node+0x10/0x10
[ 92.123632][ T6528] ? xas_move_index+0xb0/0x110
[ 92.123645][ T6528] truncate_inode_pages_range+0x279/0xe30
[ 92.123660][ T6528] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 92.123681][ T6528] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 92.123697][ T6528] ? __pfx_has_bh_in_lru+0x10/0x10
[ 92.123711][ T6528] blkdev_flush_mapping+0xfb/0x290
[ 92.123723][ T6528] blkdev_put_whole+0xc4/0xf0
[ 92.123733][ T6528] bdev_release+0x47e/0x6d0
[ 92.123746][ T6528] ? __pfx_blkdev_release+0x10/0x10
[ 92.123758][ T6528] blkdev_release+0x15/0x20
[ 92.123770][ T6528] __fput+0x3ff/0xb70
[ 92.123782][ T6528] task_work_run+0x14d/0x240
[ 92.123793][ T6528] ? __pfx_task_work_run+0x10/0x10
[ 92.123803][ T6528] ? do_raw_spin_unlock+0x172/0x230
[ 92.123813][ T6528] do_exit+0xafb/0x2c30
[ 92.123828][ T6528] ? __pfx_do_exit+0x10/0x10
[ 92.123842][ T6528] ? preempt_schedule_thunk+0x16/0x30
[ 92.123851][ T6528] do_group_exit+0xd3/0x2a0
[ 92.123868][ T6528] __x64_sys_exit_group+0x3e/0x50
[ 92.123886][ T6528] x64_sys_call+0x1530/0x1730
[ 92.123904][ T6528] do_syscall_64+0xcd/0x260
[ 92.123921][ T6528] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.123935][ T6528] RIP: 0033:0x7fbf3cb8e969
[ 92.123948][ T6528] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 92.123954][ T6528] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 92.123967][ T6528] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 92.123977][ T6528] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 92.123984][ T6528] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 92.123993][ T6528] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000c
[ 92.124002][ T6528] R13: 00000000000927c0 R14: 0000000000016467 R15: 00007fff5c310b00
[ 92.124016][ T6528]
[ 92.159064][ T6531] BUG: Bad page state in process syz.0.29 pfn:4ae01
[ 92.222252][ T6531] page does not match folio
[ 92.223786][ T6531] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4ae01
[ 92.227181][ T6531] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 92.229741][ T6531] raw: 00fff00000000000 ffffea00012b8000 00000000ffffffff ffffffffffffffff
[ 92.232686][ T6531] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 92.239851][ T6531] page dumped because: nonzero pincount
[ 92.241957][ T6531] page_owner tracks the page as allocated
[ 92.243910][ T6531] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6530, tgid 6530 (syz.0.29), ts 92136939012, free_ts 91698785809
[ 92.250986][ T6531] post_alloc_hook+0x181/0x1b0
[ 92.252521][ T6531] get_page_from_freelist+0x135c/0x3920
[ 92.254584][ T6531] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 92.256487][ T6531] alloc_pages_mpol+0x1fb/0x550
[ 92.258338][ T6531] folio_alloc_noprof+0x20/0x2d0
[ 92.259906][ T6531] filemap_alloc_folio_noprof+0x3a1/0x470
[ 92.261608][ T6531] page_cache_ra_order+0x4c0/0xd00
[ 92.263395][ T6531] filemap_fault+0x1a5e/0x2740
[ 92.265131][ T6531] __do_fault+0x10a/0x490
[ 92.266496][ T6531] do_pte_missing+0x1a6/0x3fb0
[ 92.267895][ T6531] __handle_mm_fault+0x103d/0x2a40
[ 92.269437][ T6531] handle_mm_fault+0x3fe/0xad0
[ 92.270879][ T6531] do_user_addr_fault+0x60c/0x1370
[ 92.272410][ T6531] exc_page_fault+0x5c/0xc0
[ 92.273775][ T6531] asm_exc_page_fault+0x26/0x30
[ 92.275321][ T6531] page last free pid 6526 tgid 6525 stack trace:
[ 92.277197][ T6531] free_unref_folios+0x999/0x1630
[ 92.278693][ T6531] folios_put_refs+0x56f/0x740
[ 92.280104][ T6531] truncate_inode_pages_range+0x311/0xe30
[ 92.281831][ T6531] blkdev_flush_mapping+0xfb/0x290
[ 92.283386][ T6531] blkdev_put_whole+0xc4/0xf0
[ 92.284859][ T6531] bdev_release+0x47e/0x6d0
[ 92.286233][ T6531] blkdev_release+0x15/0x20
[ 92.287573][ T6531] __fput+0x3ff/0xb70
[ 92.288748][ T6531] task_work_run+0x14d/0x240
[ 92.290156][ T6531] do_exit+0xafb/0x2c30
[ 92.291450][ T6531] do_group_exit+0xd3/0x2a0
[ 92.292867][ T6531] get_signal+0x2673/0x26d0
[ 92.294632][ T6531] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.296836][ T6531] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.298542][ T6531] do_syscall_64+0xda/0x260
[ 92.299900][ T6531] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.301691][ T6531] Modules linked in:
[ 92.302880][ T6531] CPU: 0 UID: 0 PID: 6531 Comm: syz.0.29 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 92.302895][ T6531] Tainted: [B]=BAD_PAGE
[ 92.302898][ T6531] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 92.302904][ T6531] Call Trace:
[ 92.302908][ T6531]
[ 92.302912][ T6531] dump_stack_lvl+0x16c/0x1f0
[ 92.302926][ T6531] bad_page+0xb3/0x1f0
[ 92.302936][ T6531] ? __pfx_bad_page+0x10/0x10
[ 92.302946][ T6531] ? __mem_cgroup_uncharge+0xda/0x130
[ 92.302958][ T6531] free_tail_page_prepare+0x44f/0x5b0
[ 92.302971][ T6531] __free_frozen_pages+0x96a/0xff0
[ 92.302985][ T6531] __folio_put+0x329/0x450
[ 92.302997][ T6531] ? __pfx___folio_put+0x10/0x10
[ 92.303007][ T6531] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 92.303018][ T6531] ? rcu_is_watching+0x12/0xc0
[ 92.303029][ T6531] ? lock_release+0x201/0x2f0
[ 92.303044][ T6531] filemap_free_folio+0x132/0x170
[ 92.303054][ T6531] delete_from_page_cache_batch+0x741/0x9b0
[ 92.303066][ T6531] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 92.303078][ T6531] ? __pfx_workingset_update_node+0x10/0x10
[ 92.303089][ T6531] ? xas_move_index+0xb0/0x110
[ 92.303103][ T6531] truncate_inode_pages_range+0x279/0xe30
[ 92.303117][ T6531] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 92.303138][ T6531] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 92.303154][ T6531] ? __pfx_has_bh_in_lru+0x10/0x10
[ 92.303168][ T6531] blkdev_flush_mapping+0xfb/0x290
[ 92.303180][ T6531] ? filemap_check_errors+0xa9/0x160
[ 92.303195][ T6531] blkdev_put_whole+0xc4/0xf0
[ 92.303205][ T6531] bdev_release+0x47e/0x6d0
[ 92.303218][ T6531] ? __pfx_blkdev_release+0x10/0x10
[ 92.303230][ T6531] blkdev_release+0x15/0x20
[ 92.303242][ T6531] __fput+0x3ff/0xb70
[ 92.303253][ T6531] task_work_run+0x14d/0x240
[ 92.303263][ T6531] ? __pfx_task_work_run+0x10/0x10
[ 92.303273][ T6531] ? do_raw_spin_unlock+0x172/0x230
[ 92.303284][ T6531] do_exit+0xafb/0x2c30
[ 92.303298][ T6531] ? __pfx_futex_wake_mark+0x10/0x10
[ 92.303314][ T6531] ? __pfx_do_exit+0x10/0x10
[ 92.303327][ T6531] ? do_raw_spin_lock+0x12c/0x2b0
[ 92.303336][ T6531] ? get_signal+0x8f5/0x26d0
[ 92.303347][ T6531] ? rcu_is_watching+0x12/0xc0
[ 92.303358][ T6531] do_group_exit+0xd3/0x2a0
[ 92.303376][ T6531] get_signal+0x2673/0x26d0
[ 92.303390][ T6531] ? __pfx_get_signal+0x10/0x10
[ 92.303401][ T6531] ? do_futex+0x122/0x350
[ 92.303414][ T6531] ? __pfx_do_futex+0x10/0x10
[ 92.303426][ T6531] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.303440][ T6531] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 92.303455][ T6531] ? __pfx_do_preadv+0x10/0x10
[ 92.303467][ T6531] ? madvise_unlock+0xc6/0x190
[ 92.303478][ T6531] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.303491][ T6531] do_syscall_64+0xda/0x260
[ 92.303504][ T6531] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.303514][ T6531] RIP: 0033:0x7fbf3cb8e969
[ 92.303521][ T6531] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 92.303525][ T6531] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 92.303535][ T6531] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 92.303540][ T6531] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 92.303546][ T6531] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 92.303552][ T6531] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 92.303557][ T6531] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 92.303565][ T6531]
[ 92.303580][ T6531] BUG: Bad page state in process syz.0.29 pfn:4ae00
[ 92.408376][ T6531] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4ae00
[ 92.411897][ T6531] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 92.415194][ T6531] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 92.418443][ T6531] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.421015][ T6531] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.423597][ T6531] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.426378][ T6531] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.428974][ T6531] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.431576][ T6531] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 92.434128][ T6531] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 92.437009][ T6531] page_owner tracks the page as allocated
[ 92.439118][ T6531] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6530, tgid 6530 (syz.0.29), ts 92136939012, free_ts 91698785809
[ 92.446579][ T6531] post_alloc_hook+0x181/0x1b0
[ 92.448417][ T6531] get_page_from_freelist+0x135c/0x3920
[ 92.450501][ T6531] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 92.452749][ T6531] alloc_pages_mpol+0x1fb/0x550
[ 92.454538][ T6531] folio_alloc_noprof+0x20/0x2d0
[ 92.456647][ T6531] filemap_alloc_folio_noprof+0x3a1/0x470
[ 92.458816][ T6531] page_cache_ra_order+0x4c0/0xd00
[ 92.460711][ T6531] filemap_fault+0x1a5e/0x2740
[ 92.462419][ T6531] __do_fault+0x10a/0x490
[ 92.463703][ T6531] do_pte_missing+0x1a6/0x3fb0
[ 92.465350][ T6531] __handle_mm_fault+0x103d/0x2a40
[ 92.466837][ T6531] handle_mm_fault+0x3fe/0xad0
[ 92.468234][ T6531] do_user_addr_fault+0x60c/0x1370
[ 92.469747][ T6531] exc_page_fault+0x5c/0xc0
[ 92.471139][ T6531] asm_exc_page_fault+0x26/0x30
[ 92.472634][ T6531] page last free pid 6526 tgid 6525 stack trace:
[ 92.474523][ T6531] free_unref_folios+0x999/0x1630
[ 92.476197][ T6531] folios_put_refs+0x56f/0x740
[ 92.477665][ T6531] truncate_inode_pages_range+0x311/0xe30
[ 92.479367][ T6531] blkdev_flush_mapping+0xfb/0x290
[ 92.480843][ T6531] blkdev_put_whole+0xc4/0xf0
[ 92.482296][ T6531] bdev_release+0x47e/0x6d0
[ 92.483651][ T6531] blkdev_release+0x15/0x20
[ 92.485100][ T6531] __fput+0x3ff/0xb70
[ 92.486281][ T6531] task_work_run+0x14d/0x240
[ 92.487680][ T6531] do_exit+0xafb/0x2c30
[ 92.489114][ T6531] do_group_exit+0xd3/0x2a0
[ 92.490501][ T6531] get_signal+0x2673/0x26d0
[ 92.491900][ T6531] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.493571][ T6531] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.495375][ T6531] do_syscall_64+0xda/0x260
[ 92.496781][ T6531] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.498604][ T6531] Modules linked in:
[ 92.499813][ T6531] CPU: 1 UID: 0 PID: 6531 Comm: syz.0.29 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 92.499829][ T6531] Tainted: [B]=BAD_PAGE
[ 92.499832][ T6531] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 92.499838][ T6531] Call Trace:
[ 92.499843][ T6531]
[ 92.499847][ T6531] dump_stack_lvl+0x16c/0x1f0
[ 92.499861][ T6531] bad_page+0xb3/0x1f0
[ 92.499872][ T6531] ? __pfx_bad_page+0x10/0x10
[ 92.499883][ T6531] ? page_bad_reason+0x9d/0x1e0
[ 92.499893][ T6531] __free_frozen_pages+0x76e/0xff0
[ 92.499907][ T6531] __folio_put+0x329/0x450
[ 92.499918][ T6531] ? __pfx___folio_put+0x10/0x10
[ 92.499929][ T6531] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 92.499940][ T6531] ? rcu_is_watching+0x12/0xc0
[ 92.499951][ T6531] ? lock_release+0x201/0x2f0
[ 92.499966][ T6531] filemap_free_folio+0x132/0x170
[ 92.499976][ T6531] delete_from_page_cache_batch+0x741/0x9b0
[ 92.499988][ T6531] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 92.500000][ T6531] ? __pfx_workingset_update_node+0x10/0x10
[ 92.500010][ T6531] ? xas_move_index+0xb0/0x110
[ 92.500024][ T6531] truncate_inode_pages_range+0x279/0xe30
[ 92.500039][ T6531] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 92.500060][ T6531] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 92.500080][ T6531] ? __pfx_has_bh_in_lru+0x10/0x10
[ 92.500094][ T6531] blkdev_flush_mapping+0xfb/0x290
[ 92.500105][ T6531] ? filemap_check_errors+0xa9/0x160
[ 92.500120][ T6531] blkdev_put_whole+0xc4/0xf0
[ 92.500130][ T6531] bdev_release+0x47e/0x6d0
[ 92.500143][ T6531] ? __pfx_blkdev_release+0x10/0x10
[ 92.500155][ T6531] blkdev_release+0x15/0x20
[ 92.500167][ T6531] __fput+0x3ff/0xb70
[ 92.500178][ T6531] task_work_run+0x14d/0x240
[ 92.500189][ T6531] ? __pfx_task_work_run+0x10/0x10
[ 92.500199][ T6531] ? do_raw_spin_unlock+0x172/0x230
[ 92.500210][ T6531] do_exit+0xafb/0x2c30
[ 92.500223][ T6531] ? __pfx_futex_wake_mark+0x10/0x10
[ 92.500239][ T6531] ? __pfx_do_exit+0x10/0x10
2025/05/11 20:14:58 executed programs: 16
[ 92.500253][ T6531] ? do_raw_spin_lock+0x12c/0x2b0
[ 92.500263][ T6531] ? get_signal+0x8f5/0x26d0
[ 92.500274][ T6531] ? rcu_is_watching+0x12/0xc0
[ 92.500284][ T6531] do_group_exit+0xd3/0x2a0
[ 92.500299][ T6531] get_signal+0x2673/0x26d0
[ 92.500312][ T6531] ? __pfx_get_signal+0x10/0x10
[ 92.500324][ T6531] ? do_futex+0x122/0x350
[ 92.500336][ T6531] ? __pfx_do_futex+0x10/0x10
[ 92.500349][ T6531] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.500362][ T6531] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 92.500377][ T6531] ? __pfx_do_preadv+0x10/0x10
[ 92.500390][ T6531] ? madvise_unlock+0xc6/0x190
[ 92.500400][ T6531] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.500414][ T6531] do_syscall_64+0xda/0x260
[ 92.500427][ T6531] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.500437][ T6531] RIP: 0033:0x7fbf3cb8e969
[ 92.500445][ T6531] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 92.500449][ T6531] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 92.500459][ T6531] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 92.500465][ T6531] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 92.500470][ T6531] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 92.500476][ T6531] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 92.500482][ T6531] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 92.500489][ T6531]
[ 92.627890][ T6533] BUG: Bad page state in process syz.0.30 pfn:41c01
[ 92.629921][ T6533] page does not match folio
[ 92.631296][ T6533] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x41c01
[ 92.634202][ T6533] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 92.636859][ T6533] raw: 00fff00000000000 ffffea0001070000 00000000ffffffff ffffffffffffffff
[ 92.639395][ T6533] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 92.641828][ T6533] page dumped because: nonzero pincount
[ 92.643268][ T6533] page_owner tracks the page as allocated
[ 92.645032][ T6533] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6532, tgid 6532 (syz.0.30), ts 92610896865, free_ts 77157421904
[ 92.650522][ T6533] post_alloc_hook+0x181/0x1b0
[ 92.651876][ T6533] get_page_from_freelist+0x135c/0x3920
[ 92.653370][ T6533] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 92.655332][ T6533] alloc_pages_mpol+0x1fb/0x550
[ 92.657039][ T6533] folio_alloc_noprof+0x20/0x2d0
[ 92.658774][ T6533] filemap_alloc_folio_noprof+0x3a1/0x470
[ 92.660346][ T6533] page_cache_ra_order+0x4c0/0xd00
[ 92.662001][ T6533] filemap_fault+0x1a5e/0x2740
[ 92.663708][ T6533] __do_fault+0x10a/0x490
[ 92.665656][ T6533] do_pte_missing+0x1a6/0x3fb0
[ 92.667525][ T6533] __handle_mm_fault+0x103d/0x2a40
[ 92.669377][ T6533] handle_mm_fault+0x3fe/0xad0
[ 92.670976][ T6533] do_user_addr_fault+0x60c/0x1370
[ 92.672351][ T6533] exc_page_fault+0x5c/0xc0
[ 92.673621][ T6533] asm_exc_page_fault+0x26/0x30
[ 92.675374][ T6533] page last free pid 6196 tgid 6196 stack trace:
[ 92.677217][ T6533] free_unref_folios+0x999/0x1630
[ 92.678911][ T6533] folios_put_refs+0x56f/0x740
[ 92.680542][ T6533] free_pages_and_swap_cache+0x245/0x4a0
[ 92.682262][ T6533] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 92.683845][ T6533] tlb_finish_mmu+0x168/0x7b0
[ 92.685314][ T6533] vms_clear_ptes+0x55e/0x770
[ 92.686666][ T6533] vms_complete_munmap_vmas+0x1ca/0x970
[ 92.688632][ T6533] do_vmi_align_munmap+0x43b/0x7d0
[ 92.690168][ T6533] do_vmi_munmap+0x208/0x3e0
[ 92.691437][ T6533] __vm_munmap+0x19a/0x390
[ 92.692691][ T6533] __x64_sys_munmap+0x59/0x80
[ 92.693963][ T6533] do_syscall_64+0xcd/0x260
[ 92.695233][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.696860][ T6533] Modules linked in:
[ 92.697957][ T6533] CPU: 0 UID: 0 PID: 6533 Comm: syz.0.30 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 92.697972][ T6533] Tainted: [B]=BAD_PAGE
[ 92.697975][ T6533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 92.697981][ T6533] Call Trace:
[ 92.697985][ T6533]
[ 92.697989][ T6533] dump_stack_lvl+0x16c/0x1f0
[ 92.698003][ T6533] bad_page+0xb3/0x1f0
[ 92.698014][ T6533] ? __pfx_bad_page+0x10/0x10
[ 92.698024][ T6533] ? __mem_cgroup_uncharge+0xda/0x130
[ 92.698036][ T6533] free_tail_page_prepare+0x44f/0x5b0
[ 92.698049][ T6533] __free_frozen_pages+0x96a/0xff0
[ 92.698064][ T6533] __folio_put+0x329/0x450
[ 92.698075][ T6533] ? __pfx___folio_put+0x10/0x10
[ 92.698085][ T6533] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 92.698096][ T6533] ? rcu_is_watching+0x12/0xc0
[ 92.698108][ T6533] ? lock_release+0x201/0x2f0
[ 92.698123][ T6533] filemap_free_folio+0x132/0x170
[ 92.698133][ T6533] delete_from_page_cache_batch+0x741/0x9b0
[ 92.698145][ T6533] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 92.698157][ T6533] ? __pfx_workingset_update_node+0x10/0x10
[ 92.698168][ T6533] ? xas_move_index+0xb0/0x110
[ 92.698182][ T6533] truncate_inode_pages_range+0x279/0xe30
[ 92.698196][ T6533] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 92.698218][ T6533] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 92.698233][ T6533] ? __pfx_has_bh_in_lru+0x10/0x10
[ 92.698247][ T6533] blkdev_flush_mapping+0xfb/0x290
[ 92.698259][ T6533] ? filemap_check_errors+0xa9/0x160
[ 92.698273][ T6533] blkdev_put_whole+0xc4/0xf0
[ 92.698283][ T6533] bdev_release+0x47e/0x6d0
[ 92.698296][ T6533] ? __pfx_blkdev_release+0x10/0x10
[ 92.698308][ T6533] blkdev_release+0x15/0x20
[ 92.698320][ T6533] __fput+0x3ff/0xb70
[ 92.698331][ T6533] task_work_run+0x14d/0x240
[ 92.698341][ T6533] ? __pfx_task_work_run+0x10/0x10
[ 92.698351][ T6533] ? do_raw_spin_unlock+0x172/0x230
[ 92.698366][ T6533] do_exit+0xafb/0x2c30
[ 92.698380][ T6533] ? __pfx_futex_wake_mark+0x10/0x10
[ 92.698396][ T6533] ? __pfx_do_exit+0x10/0x10
[ 92.698409][ T6533] ? do_raw_spin_lock+0x12c/0x2b0
[ 92.698419][ T6533] ? get_signal+0x8f5/0x26d0
[ 92.698430][ T6533] ? rcu_is_watching+0x12/0xc0
[ 92.698441][ T6533] do_group_exit+0xd3/0x2a0
[ 92.698456][ T6533] get_signal+0x2673/0x26d0
[ 92.698469][ T6533] ? __pfx_get_signal+0x10/0x10
[ 92.698480][ T6533] ? do_futex+0x122/0x350
[ 92.698492][ T6533] ? __pfx_do_futex+0x10/0x10
[ 92.698505][ T6533] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.698519][ T6533] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 92.698534][ T6533] ? __pfx_do_preadv+0x10/0x10
[ 92.698546][ T6533] ? madvise_unlock+0xc6/0x190
[ 92.698557][ T6533] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.698571][ T6533] do_syscall_64+0xda/0x260
[ 92.698584][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.698594][ T6533] RIP: 0033:0x7fbf3cb8e969
[ 92.698601][ T6533] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 92.698606][ T6533] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 92.698615][ T6533] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 92.698621][ T6533] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 92.698627][ T6533] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 92.698632][ T6533] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 92.698638][ T6533] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 92.698646][ T6533]
[ 92.698661][ T6533] BUG: Bad page state in process syz.0.30 pfn:41c00
[ 92.793078][ T6533] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x41c00
[ 92.795481][ T6533] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 92.798224][ T6533] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 92.801290][ T6533] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.804221][ T6533] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.807013][ T6533] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.809432][ T6533] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.812184][ T6533] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.815261][ T6533] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 92.818182][ T6533] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 92.820527][ T6533] page_owner tracks the page as allocated
[ 92.822243][ T6533] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6532, tgid 6532 (syz.0.30), ts 92610896865, free_ts 77157416853
[ 92.828279][ T6533] post_alloc_hook+0x181/0x1b0
[ 92.829931][ T6533] get_page_from_freelist+0x135c/0x3920
[ 92.831823][ T6533] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 92.833560][ T6533] alloc_pages_mpol+0x1fb/0x550
[ 92.834916][ T6533] folio_alloc_noprof+0x20/0x2d0
[ 92.836258][ T6533] filemap_alloc_folio_noprof+0x3a1/0x470
[ 92.837845][ T6533] page_cache_ra_order+0x4c0/0xd00
[ 92.839196][ T6533] filemap_fault+0x1a5e/0x2740
[ 92.840478][ T6533] __do_fault+0x10a/0x490
[ 92.841679][ T6533] do_pte_missing+0x1a6/0x3fb0
[ 92.842964][ T6533] __handle_mm_fault+0x103d/0x2a40
[ 92.844707][ T6533] handle_mm_fault+0x3fe/0xad0
[ 92.846602][ T6533] do_user_addr_fault+0x60c/0x1370
[ 92.848448][ T6533] exc_page_fault+0x5c/0xc0
[ 92.850119][ T6533] asm_exc_page_fault+0x26/0x30
[ 92.851861][ T6533] page last free pid 6196 tgid 6196 stack trace:
[ 92.854058][ T6533] free_unref_folios+0x999/0x1630
[ 92.856006][ T6533] folios_put_refs+0x56f/0x740
[ 92.857734][ T6533] free_pages_and_swap_cache+0x245/0x4a0
[ 92.859688][ T6533] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 92.861846][ T6533] tlb_finish_mmu+0x168/0x7b0
[ 92.863558][ T6533] vms_clear_ptes+0x55e/0x770
[ 92.865424][ T6533] vms_complete_munmap_vmas+0x1ca/0x970
[ 92.867463][ T6533] do_vmi_align_munmap+0x43b/0x7d0
[ 92.869336][ T6533] do_vmi_munmap+0x208/0x3e0
[ 92.871005][ T6533] __vm_munmap+0x19a/0x390
[ 92.872666][ T6533] __x64_sys_munmap+0x59/0x80
[ 92.874434][ T6533] do_syscall_64+0xcd/0x260
[ 92.876259][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.878418][ T6533] Modules linked in:
[ 92.879792][ T6533] CPU: 0 UID: 0 PID: 6533 Comm: syz.0.30 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 92.879816][ T6533] Tainted: [B]=BAD_PAGE
[ 92.879821][ T6533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 92.879831][ T6533] Call Trace:
[ 92.879838][ T6533]
[ 92.879844][ T6533] dump_stack_lvl+0x16c/0x1f0
[ 92.879867][ T6533] bad_page+0xb3/0x1f0
[ 92.879883][ T6533] ? __pfx_bad_page+0x10/0x10
[ 92.879900][ T6533] ? page_bad_reason+0x9d/0x1e0
[ 92.879916][ T6533] __free_frozen_pages+0x76e/0xff0
[ 92.879940][ T6533] __folio_put+0x329/0x450
[ 92.879957][ T6533] ? __pfx___folio_put+0x10/0x10
[ 92.879974][ T6533] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 92.879992][ T6533] ? rcu_is_watching+0x12/0xc0
[ 92.880011][ T6533] ? lock_release+0x201/0x2f0
[ 92.880036][ T6533] filemap_free_folio+0x132/0x170
[ 92.880053][ T6533] delete_from_page_cache_batch+0x741/0x9b0
[ 92.880073][ T6533] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 92.880092][ T6533] ? __pfx_workingset_update_node+0x10/0x10
[ 92.880109][ T6533] ? xas_move_index+0xb0/0x110
[ 92.880131][ T6533] truncate_inode_pages_range+0x279/0xe30
[ 92.880154][ T6533] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 92.880191][ T6533] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 92.880217][ T6533] ? __pfx_has_bh_in_lru+0x10/0x10
[ 92.880240][ T6533] blkdev_flush_mapping+0xfb/0x290
[ 92.880258][ T6533] ? filemap_check_errors+0xa9/0x160
[ 92.880282][ T6533] blkdev_put_whole+0xc4/0xf0
[ 92.880298][ T6533] bdev_release+0x47e/0x6d0
[ 92.880318][ T6533] ? __pfx_blkdev_release+0x10/0x10
[ 92.880338][ T6533] blkdev_release+0x15/0x20
[ 92.880363][ T6533] __fput+0x3ff/0xb70
[ 92.880382][ T6533] task_work_run+0x14d/0x240
[ 92.880399][ T6533] ? __pfx_task_work_run+0x10/0x10
[ 92.880416][ T6533] ? do_raw_spin_unlock+0x172/0x230
[ 92.880434][ T6533] do_exit+0xafb/0x2c30
[ 92.880455][ T6533] ? __pfx_futex_wake_mark+0x10/0x10
[ 92.880479][ T6533] ? __pfx_do_exit+0x10/0x10
[ 92.880500][ T6533] ? do_raw_spin_lock+0x12c/0x2b0
[ 92.880515][ T6533] ? get_signal+0x8f5/0x26d0
[ 92.880532][ T6533] ? rcu_is_watching+0x12/0xc0
[ 92.880548][ T6533] do_group_exit+0xd3/0x2a0
[ 92.880568][ T6533] get_signal+0x2673/0x26d0
[ 92.880588][ T6533] ? __pfx_get_signal+0x10/0x10
[ 92.880606][ T6533] ? do_futex+0x122/0x350
[ 92.880625][ T6533] ? __pfx_do_futex+0x10/0x10
[ 92.880645][ T6533] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.880667][ T6533] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 92.880688][ T6533] ? __pfx_do_preadv+0x10/0x10
[ 92.880708][ T6533] ? madvise_unlock+0xc6/0x190
[ 92.880726][ T6533] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.880749][ T6533] do_syscall_64+0xda/0x260
[ 92.880771][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.880787][ T6533] RIP: 0033:0x7fbf3cb8e969
[ 92.880798][ T6533] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 92.880805][ T6533] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 92.880821][ T6533] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 92.880832][ T6533] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 92.880842][ T6533] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 92.880853][ T6533] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 92.880862][ T6533] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 92.880876][ T6533]
[ 92.929239][ T6536] BUG: Bad page state in process syz.0.31 pfn:4a801
[ 92.999331][ T6536] page does not match folio
[ 93.000897][ T6536] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4a801
[ 93.003865][ T6536] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 93.006397][ T6536] raw: 00fff00000000000 ffffea00012a0000 00000000ffffffff ffffffffffffffff
[ 93.009840][ T6536] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 93.013205][ T6536] page dumped because: nonzero pincount
[ 93.015693][ T6536] page_owner tracks the page as allocated
[ 93.017918][ T6536] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6535, tgid 6535 (syz.0.31), ts 92895620373, free_ts 92500577350
[ 93.026095][ T6536] post_alloc_hook+0x181/0x1b0
[ 93.028513][ T6536] get_page_from_freelist+0x135c/0x3920
[ 93.030745][ T6536] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 93.033130][ T6536] alloc_pages_mpol+0x1fb/0x550
[ 93.035124][ T6536] folio_alloc_noprof+0x20/0x2d0
[ 93.036944][ T6536] filemap_alloc_folio_noprof+0x3a1/0x470
[ 93.039209][ T6536] page_cache_ra_order+0x4c0/0xd00
[ 93.041214][ T6536] filemap_fault+0x1a5e/0x2740
[ 93.043171][ T6536] __do_fault+0x10a/0x490
[ 93.045033][ T6536] do_pte_missing+0x1a6/0x3fb0
[ 93.046971][ T6536] __handle_mm_fault+0x103d/0x2a40
[ 93.049013][ T6536] handle_mm_fault+0x3fe/0xad0
[ 93.050916][ T6536] do_user_addr_fault+0x60c/0x1370
[ 93.052995][ T6536] exc_page_fault+0x5c/0xc0
[ 93.054931][ T6536] asm_exc_page_fault+0x26/0x30
[ 93.056907][ T6536] page last free pid 6531 tgid 6530 stack trace:
[ 93.059390][ T6536] free_unref_folios+0x999/0x1630
[ 93.061426][ T6536] folios_put_refs+0x56f/0x740
[ 93.063342][ T6536] truncate_inode_pages_range+0x311/0xe30
[ 93.065741][ T6536] blkdev_flush_mapping+0xfb/0x290
[ 93.067757][ T6536] blkdev_put_whole+0xc4/0xf0
[ 93.069631][ T6536] bdev_release+0x47e/0x6d0
[ 93.071453][ T6536] blkdev_release+0x15/0x20
[ 93.073311][ T6536] __fput+0x3ff/0xb70
[ 93.074981][ T6536] task_work_run+0x14d/0x240
[ 93.076365][ T6536] do_exit+0xafb/0x2c30
[ 93.077611][ T6536] do_group_exit+0xd3/0x2a0
[ 93.078999][ T6536] get_signal+0x2673/0x26d0
[ 93.080392][ T6536] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.082043][ T6536] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.083883][ T6536] do_syscall_64+0xda/0x260
[ 93.085523][ T6536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.087299][ T6536] Modules linked in:
[ 93.088527][ T6536] CPU: 2 UID: 0 PID: 6536 Comm: syz.0.31 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 93.088543][ T6536] Tainted: [B]=BAD_PAGE
[ 93.088546][ T6536] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 93.088552][ T6536] Call Trace:
[ 93.088555][ T6536]
[ 93.088559][ T6536] dump_stack_lvl+0x16c/0x1f0
[ 93.088573][ T6536] bad_page+0xb3/0x1f0
[ 93.088584][ T6536] ? __pfx_bad_page+0x10/0x10
[ 93.088594][ T6536] ? __mem_cgroup_uncharge+0xda/0x130
[ 93.088606][ T6536] free_tail_page_prepare+0x44f/0x5b0
[ 93.088619][ T6536] __free_frozen_pages+0x96a/0xff0
[ 93.088634][ T6536] __folio_put+0x329/0x450
[ 93.088645][ T6536] ? __pfx___folio_put+0x10/0x10
[ 93.088656][ T6536] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 93.088667][ T6536] ? rcu_is_watching+0x12/0xc0
[ 93.088678][ T6536] ? lock_release+0x201/0x2f0
[ 93.088693][ T6536] filemap_free_folio+0x132/0x170
[ 93.088703][ T6536] delete_from_page_cache_batch+0x741/0x9b0
[ 93.088715][ T6536] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 93.088727][ T6536] ? __pfx_workingset_update_node+0x10/0x10
[ 93.088738][ T6536] ? xas_move_index+0xb0/0x110
[ 93.088751][ T6536] truncate_inode_pages_range+0x279/0xe30
[ 93.088767][ T6536] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 93.088788][ T6536] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 93.088803][ T6536] ? __pfx_has_bh_in_lru+0x10/0x10
[ 93.088817][ T6536] blkdev_flush_mapping+0xfb/0x290
[ 93.088830][ T6536] ? filemap_check_errors+0xa9/0x160
[ 93.088845][ T6536] blkdev_put_whole+0xc4/0xf0
[ 93.088855][ T6536] bdev_release+0x47e/0x6d0
[ 93.088868][ T6536] ? __pfx_blkdev_release+0x10/0x10
[ 93.088895][ T6536] blkdev_release+0x15/0x20
[ 93.088914][ T6536] __fput+0x3ff/0xb70
[ 93.088926][ T6536] task_work_run+0x14d/0x240
[ 93.088936][ T6536] ? __pfx_task_work_run+0x10/0x10
[ 93.088946][ T6536] ? do_raw_spin_unlock+0x172/0x230
[ 93.088957][ T6536] do_exit+0xafb/0x2c30
[ 93.088971][ T6536] ? __pfx_futex_wake_mark+0x10/0x10
[ 93.088987][ T6536] ? __pfx_do_exit+0x10/0x10
[ 93.089000][ T6536] ? do_raw_spin_lock+0x12c/0x2b0
[ 93.089010][ T6536] ? get_signal+0x8f5/0x26d0
[ 93.089021][ T6536] ? rcu_is_watching+0x12/0xc0
[ 93.089032][ T6536] do_group_exit+0xd3/0x2a0
[ 93.089047][ T6536] get_signal+0x2673/0x26d0
[ 93.089060][ T6536] ? __pfx_get_signal+0x10/0x10
[ 93.089071][ T6536] ? do_futex+0x122/0x350
[ 93.089084][ T6536] ? __pfx_do_futex+0x10/0x10
[ 93.089097][ T6536] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.089112][ T6536] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 93.089126][ T6536] ? __pfx_do_preadv+0x10/0x10
[ 93.089138][ T6536] ? madvise_unlock+0xc6/0x190
[ 93.089149][ T6536] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.089163][ T6536] do_syscall_64+0xda/0x260
[ 93.089177][ T6536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.089186][ T6536] RIP: 0033:0x7fbf3cb8e969
[ 93.089193][ T6536] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 93.089198][ T6536] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 93.089207][ T6536] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 93.089213][ T6536] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 93.089219][ T6536] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 93.089225][ T6536] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 93.089230][ T6536] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 93.089238][ T6536]
[ 93.089253][ T6536] BUG: Bad page state in process syz.0.31 pfn:4a800
[ 93.215181][ T6536] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4a800
[ 93.218104][ T6536] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 93.221396][ T6536] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 93.224438][ T6536] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 93.227751][ T6536] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.230878][ T6536] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 93.234185][ T6536] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.237637][ T6536] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.241063][ T6536] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 93.244418][ T6536] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 93.247227][ T6536] page_owner tracks the page as allocated
[ 93.249485][ T6536] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6535, tgid 6535 (syz.0.31), ts 92895620373, free_ts 92500577350
[ 93.256773][ T6536] post_alloc_hook+0x181/0x1b0
[ 93.258590][ T6536] get_page_from_freelist+0x135c/0x3920
[ 93.260677][ T6536] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 93.262893][ T6536] alloc_pages_mpol+0x1fb/0x550
[ 93.264493][ T6536] folio_alloc_noprof+0x20/0x2d0
[ 93.266308][ T6536] filemap_alloc_folio_noprof+0x3a1/0x470
[ 93.268040][ T6536] page_cache_ra_order+0x4c0/0xd00
[ 93.269819][ T6536] filemap_fault+0x1a5e/0x2740
[ 93.271519][ T6536] __do_fault+0x10a/0x490
[ 93.273178][ T6536] do_pte_missing+0x1a6/0x3fb0
[ 93.275125][ T6536] __handle_mm_fault+0x103d/0x2a40
[ 93.276840][ T6536] handle_mm_fault+0x3fe/0xad0
[ 93.278519][ T6536] do_user_addr_fault+0x60c/0x1370
[ 93.280203][ T6536] exc_page_fault+0x5c/0xc0
[ 93.281895][ T6536] asm_exc_page_fault+0x26/0x30
[ 93.283756][ T6536] page last free pid 6531 tgid 6530 stack trace:
[ 93.286319][ T6536] free_unref_folios+0x999/0x1630
[ 93.288215][ T6536] folios_put_refs+0x56f/0x740
[ 93.289987][ T6536] truncate_inode_pages_range+0x311/0xe30
[ 93.292201][ T6536] blkdev_flush_mapping+0xfb/0x290
[ 93.294015][ T6536] blkdev_put_whole+0xc4/0xf0
[ 93.296018][ T6536] bdev_release+0x47e/0x6d0
[ 93.297863][ T6536] blkdev_release+0x15/0x20
[ 93.299682][ T6536] __fput+0x3ff/0xb70
[ 93.301272][ T6536] task_work_run+0x14d/0x240
[ 93.303131][ T6536] do_exit+0xafb/0x2c30
[ 93.304871][ T6536] do_group_exit+0xd3/0x2a0
[ 93.306750][ T6536] get_signal+0x2673/0x26d0
[ 93.308605][ T6536] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.310840][ T6536] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.312995][ T6536] do_syscall_64+0xda/0x260
[ 93.314902][ T6536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.317123][ T6536] Modules linked in:
[ 93.318472][ T6536] CPU: 2 UID: 0 PID: 6536 Comm: syz.0.31 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 93.318496][ T6536] Tainted: [B]=BAD_PAGE
[ 93.318502][ T6536] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 93.318512][ T6536] Call Trace:
[ 93.318518][ T6536]
[ 93.318524][ T6536] dump_stack_lvl+0x16c/0x1f0
[ 93.318547][ T6536] bad_page+0xb3/0x1f0
[ 93.318563][ T6536] ? __pfx_bad_page+0x10/0x10
[ 93.318580][ T6536] ? page_bad_reason+0x9d/0x1e0
[ 93.318594][ T6536] __free_frozen_pages+0x76e/0xff0
[ 93.318618][ T6536] __folio_put+0x329/0x450
[ 93.318636][ T6536] ? __pfx___folio_put+0x10/0x10
[ 93.318653][ T6536] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 93.318671][ T6536] ? rcu_is_watching+0x12/0xc0
[ 93.318690][ T6536] ? lock_release+0x201/0x2f0
[ 93.318713][ T6536] filemap_free_folio+0x132/0x170
[ 93.318730][ T6536] delete_from_page_cache_batch+0x741/0x9b0
[ 93.318750][ T6536] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 93.318769][ T6536] ? __pfx_workingset_update_node+0x10/0x10
[ 93.318786][ T6536] ? xas_move_index+0xb0/0x110
[ 93.318808][ T6536] truncate_inode_pages_range+0x279/0xe30
[ 93.318830][ T6536] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 93.318863][ T6536] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 93.318882][ T6536] ? __pfx_has_bh_in_lru+0x10/0x10
[ 93.318896][ T6536] blkdev_flush_mapping+0xfb/0x290
[ 93.318908][ T6536] ? filemap_check_errors+0xa9/0x160
[ 93.318922][ T6536] blkdev_put_whole+0xc4/0xf0
[ 93.318932][ T6536] bdev_release+0x47e/0x6d0
[ 93.318945][ T6536] ? __pfx_blkdev_release+0x10/0x10
[ 93.318957][ T6536] blkdev_release+0x15/0x20
[ 93.318969][ T6536] __fput+0x3ff/0xb70
[ 93.318981][ T6536] task_work_run+0x14d/0x240
[ 93.318991][ T6536] ? __pfx_task_work_run+0x10/0x10
[ 93.319003][ T6536] ? do_raw_spin_unlock+0x172/0x230
[ 93.319018][ T6536] do_exit+0xafb/0x2c30
[ 93.319038][ T6536] ? __pfx_futex_wake_mark+0x10/0x10
[ 93.319063][ T6536] ? __pfx_do_exit+0x10/0x10
[ 93.319083][ T6536] ? do_raw_spin_lock+0x12c/0x2b0
[ 93.319099][ T6536] ? get_signal+0x8f5/0x26d0
[ 93.319117][ T6536] ? rcu_is_watching+0x12/0xc0
[ 93.319135][ T6536] do_group_exit+0xd3/0x2a0
[ 93.319156][ T6536] get_signal+0x2673/0x26d0
[ 93.319178][ T6536] ? __pfx_get_signal+0x10/0x10
[ 93.319197][ T6536] ? do_futex+0x122/0x350
[ 93.319216][ T6536] ? __pfx_do_futex+0x10/0x10
[ 93.319237][ T6536] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.319260][ T6536] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 93.319284][ T6536] ? __pfx_do_preadv+0x10/0x10
[ 93.319304][ T6536] ? madvise_unlock+0xc6/0x190
[ 93.319322][ T6536] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.319344][ T6536] do_syscall_64+0xda/0x260
[ 93.319366][ T6536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.319383][ T6536] RIP: 0033:0x7fbf3cb8e969
[ 93.319438][ T6536] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 93.319445][ T6536] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 93.319460][ T6536] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 93.319470][ T6536] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 93.319480][ T6536] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 93.319490][ T6536] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 93.319500][ T6536] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 93.319515][ T6536]
[ 93.351479][ T6538] BUG: Bad page state in process syz.0.32 pfn:41e01
[ 93.441119][ T6538] page does not match folio
[ 93.442996][ T6538] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x41e01
[ 93.446954][ T6538] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 93.449873][ T6538] raw: 00fff00000000000 ffffea0001078000 00000000ffffffff ffffffffffffffff
[ 93.453180][ T6538] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 93.456551][ T6538] page dumped because: nonzero pincount
[ 93.458693][ T6538] page_owner tracks the page as allocated
[ 93.460903][ T6538] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6538, tgid 6538 (syz.0.32), ts 93328939385, free_ts 92880950391
[ 93.468606][ T6538] post_alloc_hook+0x181/0x1b0
[ 93.470456][ T6538] get_page_from_freelist+0x135c/0x3920
[ 93.472623][ T6538] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 93.475067][ T6538] alloc_pages_mpol+0x1fb/0x550
[ 93.477054][ T6538] folio_alloc_noprof+0x20/0x2d0
[ 93.479039][ T6538] filemap_alloc_folio_noprof+0x3a1/0x470
[ 93.481323][ T6538] page_cache_ra_order+0x4c0/0xd00
[ 93.483319][ T6538] filemap_fault+0x1a5e/0x2740
[ 93.485315][ T6538] __do_fault+0x10a/0x490
[ 93.487018][ T6538] do_pte_missing+0x1a6/0x3fb0
[ 93.488966][ T6538] __handle_mm_fault+0x103d/0x2a40
[ 93.490966][ T6538] handle_mm_fault+0x3fe/0xad0
[ 93.492903][ T6538] do_user_addr_fault+0x60c/0x1370
[ 93.494990][ T6538] exc_page_fault+0x5c/0xc0
[ 93.496790][ T6538] asm_exc_page_fault+0x26/0x30
[ 93.498729][ T6538] page last free pid 6533 tgid 6532 stack trace:
[ 93.501251][ T6538] free_unref_folios+0x999/0x1630
[ 93.503265][ T6538] folios_put_refs+0x56f/0x740
[ 93.505279][ T6538] truncate_inode_pages_range+0x311/0xe30
[ 93.507466][ T6538] blkdev_flush_mapping+0xfb/0x290
[ 93.509472][ T6538] blkdev_put_whole+0xc4/0xf0
[ 93.511322][ T6538] bdev_release+0x47e/0x6d0
[ 93.513150][ T6538] blkdev_release+0x15/0x20
[ 93.515049][ T6538] __fput+0x3ff/0xb70
[ 93.516629][ T6538] task_work_run+0x14d/0x240
[ 93.518481][ T6538] do_exit+0xafb/0x2c30
[ 93.520122][ T6538] do_group_exit+0xd3/0x2a0
[ 93.521923][ T6538] get_signal+0x2673/0x26d0
[ 93.523718][ T6538] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.525979][ T6538] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.528177][ T6538] do_syscall_64+0xda/0x260
[ 93.529973][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.532341][ T6538] Modules linked in:
[ 93.534001][ T6538] CPU: 0 UID: 0 PID: 6538 Comm: syz.0.32 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 93.534027][ T6538] Tainted: [B]=BAD_PAGE
[ 93.534033][ T6538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 93.534043][ T6538] Call Trace:
[ 93.534049][ T6538]
[ 93.534054][ T6538] dump_stack_lvl+0x16c/0x1f0
[ 93.534077][ T6538] bad_page+0xb3/0x1f0
[ 93.534095][ T6538] ? __pfx_bad_page+0x10/0x10
[ 93.534118][ T6538] ? __mem_cgroup_uncharge+0xda/0x130
[ 93.534138][ T6538] free_tail_page_prepare+0x44f/0x5b0
[ 93.534159][ T6538] __free_frozen_pages+0x96a/0xff0
[ 93.534183][ T6538] __folio_put+0x329/0x450
[ 93.534200][ T6538] ? __pfx___folio_put+0x10/0x10
[ 93.534217][ T6538] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 93.534235][ T6538] ? rcu_is_watching+0x12/0xc0
[ 93.534254][ T6538] ? lock_release+0x201/0x2f0
[ 93.534278][ T6538] filemap_free_folio+0x132/0x170
[ 93.534295][ T6538] delete_from_page_cache_batch+0x741/0x9b0
[ 93.534314][ T6538] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 93.534333][ T6538] ? __pfx_workingset_update_node+0x10/0x10
[ 93.534350][ T6538] ? xas_move_index+0xb0/0x110
[ 93.534372][ T6538] truncate_inode_pages_range+0x279/0xe30
[ 93.534396][ T6538] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 93.534434][ T6538] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 93.534458][ T6538] ? __pfx_has_bh_in_lru+0x10/0x10
[ 93.534482][ T6538] blkdev_flush_mapping+0xfb/0x290
[ 93.534502][ T6538] blkdev_put_whole+0xc4/0xf0
[ 93.534520][ T6538] bdev_release+0x47e/0x6d0
[ 93.534540][ T6538] ? __pfx_blkdev_release+0x10/0x10
[ 93.534560][ T6538] blkdev_release+0x15/0x20
[ 93.534594][ T6538] __fput+0x3ff/0xb70
[ 93.534614][ T6538] task_work_run+0x14d/0x240
[ 93.534631][ T6538] ? __pfx_task_work_run+0x10/0x10
[ 93.534648][ T6538] ? do_raw_spin_unlock+0x172/0x230
[ 93.534666][ T6538] do_exit+0xafb/0x2c30
[ 93.534690][ T6538] ? __pfx_do_exit+0x10/0x10
[ 93.534711][ T6538] ? preempt_schedule_thunk+0x16/0x30
[ 93.534742][ T6538] do_group_exit+0xd3/0x2a0
[ 93.534765][ T6538] __x64_sys_exit_group+0x3e/0x50
[ 93.534787][ T6538] x64_sys_call+0x1530/0x1730
[ 93.534808][ T6538] do_syscall_64+0xcd/0x260
[ 93.534830][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.534846][ T6538] RIP: 0033:0x7fbf3cb8e969
[ 93.534857][ T6538] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 93.534864][ T6538] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 93.534880][ T6538] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 93.534890][ T6538] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 93.534899][ T6538] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 93.534909][ T6538] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000010
[ 93.534918][ T6538] R13: 00000000000927c0 R14: 0000000000016a6d R15: 00007fff5c310b00
[ 93.534932][ T6538]
[ 93.619909][ T6538] BUG: Bad page state in process syz.0.32 pfn:41e00
[ 93.621920][ T6538] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x41e00
[ 93.624633][ T6538] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 93.629143][ T6538] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 93.631791][ T6538] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 93.634272][ T6538] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.637377][ T6538] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 93.639976][ T6538] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.643345][ T6538] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.646948][ T6538] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 93.650374][ T6538] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 93.653269][ T6538] page_owner tracks the page as allocated
[ 93.655514][ T6538] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6538, tgid 6538 (syz.0.32), ts 93328939385, free_ts 92880950391
[ 93.662805][ T6538] post_alloc_hook+0x181/0x1b0
[ 93.664214][ T6538] get_page_from_freelist+0x135c/0x3920
[ 93.666423][ T6538] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 93.668384][ T6538] alloc_pages_mpol+0x1fb/0x550
[ 93.669838][ T6538] folio_alloc_noprof+0x20/0x2d0
[ 93.671341][ T6538] filemap_alloc_folio_noprof+0x3a1/0x470
[ 93.673551][ T6538] page_cache_ra_order+0x4c0/0xd00
[ 93.675512][ T6538] filemap_fault+0x1a5e/0x2740
[ 93.677335][ T6538] __do_fault+0x10a/0x490
[ 93.679058][ T6538] do_pte_missing+0x1a6/0x3fb0
[ 93.680983][ T6538] __handle_mm_fault+0x103d/0x2a40
[ 93.682974][ T6538] handle_mm_fault+0x3fe/0xad0
[ 93.684934][ T6538] do_user_addr_fault+0x60c/0x1370
[ 93.686900][ T6538] exc_page_fault+0x5c/0xc0
[ 93.688552][ T6538] asm_exc_page_fault+0x26/0x30
[ 93.690584][ T6538] page last free pid 6533 tgid 6532 stack trace:
[ 93.692830][ T6538] free_unref_folios+0x999/0x1630
[ 93.694908][ T6538] folios_put_refs+0x56f/0x740
[ 93.696811][ T6538] truncate_inode_pages_range+0x311/0xe30
[ 93.698884][ T6538] blkdev_flush_mapping+0xfb/0x290
[ 93.700988][ T6538] blkdev_put_whole+0xc4/0xf0
[ 93.702905][ T6538] bdev_release+0x47e/0x6d0
[ 93.704859][ T6538] blkdev_release+0x15/0x20
[ 93.706714][ T6538] __fput+0x3ff/0xb70
[ 93.708332][ T6538] task_work_run+0x14d/0x240
[ 93.710210][ T6538] do_exit+0xafb/0x2c30
[ 93.711925][ T6538] do_group_exit+0xd3/0x2a0
[ 93.713774][ T6538] get_signal+0x2673/0x26d0
[ 93.715730][ T6538] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.717928][ T6538] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.720172][ T6538] do_syscall_64+0xda/0x260
[ 93.722030][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.724365][ T6538] Modules linked in:
[ 93.726101][ T6538] CPU: 1 UID: 0 PID: 6538 Comm: syz.0.32 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 93.726125][ T6538] Tainted: [B]=BAD_PAGE
[ 93.726130][ T6538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 93.726140][ T6538] Call Trace:
[ 93.726146][ T6538]
[ 93.726153][ T6538] dump_stack_lvl+0x16c/0x1f0
[ 93.726176][ T6538] bad_page+0xb3/0x1f0
[ 93.726194][ T6538] ? __pfx_bad_page+0x10/0x10
[ 93.726211][ T6538] ? page_bad_reason+0x9d/0x1e0
[ 93.726228][ T6538] __free_frozen_pages+0x76e/0xff0
[ 93.726252][ T6538] __folio_put+0x329/0x450
[ 93.726269][ T6538] ? __pfx___folio_put+0x10/0x10
[ 93.726286][ T6538] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 93.726304][ T6538] ? rcu_is_watching+0x12/0xc0
[ 93.726323][ T6538] ? lock_release+0x201/0x2f0
[ 93.726347][ T6538] filemap_free_folio+0x132/0x170
[ 93.726364][ T6538] delete_from_page_cache_batch+0x741/0x9b0
[ 93.726390][ T6538] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 93.726409][ T6538] ? __pfx_workingset_update_node+0x10/0x10
[ 93.726426][ T6538] ? xas_move_index+0xb0/0x110
[ 93.726449][ T6538] truncate_inode_pages_range+0x279/0xe30
[ 93.726473][ T6538] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 93.726511][ T6538] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 93.726535][ T6538] ? __pfx_has_bh_in_lru+0x10/0x10
[ 93.726558][ T6538] blkdev_flush_mapping+0xfb/0x290
[ 93.726579][ T6538] blkdev_put_whole+0xc4/0xf0
[ 93.726595][ T6538] bdev_release+0x47e/0x6d0
[ 93.726616][ T6538] ? __pfx_blkdev_release+0x10/0x10
[ 93.726635][ T6538] blkdev_release+0x15/0x20
[ 93.726654][ T6538] __fput+0x3ff/0xb70
[ 93.726673][ T6538] task_work_run+0x14d/0x240
[ 93.726689][ T6538] ? __pfx_task_work_run+0x10/0x10
[ 93.726705][ T6538] ? do_raw_spin_unlock+0x172/0x230
[ 93.726723][ T6538] do_exit+0xafb/0x2c30
[ 93.726747][ T6538] ? __pfx_do_exit+0x10/0x10
[ 93.726769][ T6538] ? preempt_schedule_thunk+0x16/0x30
[ 93.726786][ T6538] do_group_exit+0xd3/0x2a0
[ 93.726809][ T6538] __x64_sys_exit_group+0x3e/0x50
[ 93.726829][ T6538] x64_sys_call+0x1530/0x1730
[ 93.726849][ T6538] do_syscall_64+0xcd/0x260
[ 93.726870][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.726886][ T6538] RIP: 0033:0x7fbf3cb8e969
[ 93.726898][ T6538] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 93.726905][ T6538] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 93.726920][ T6538] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 93.726930][ T6538] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 93.726939][ T6538] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 93.726949][ T6538] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000010
[ 93.726958][ T6538] R13: 00000000000927c0 R14: 0000000000016a6d R15: 00007fff5c310b00
[ 93.726972][ T6538]
[ 93.755510][ T6545] BUG: Bad page state in process syz.0.33 pfn:52401
[ 93.832254][ T6545] page does not match folio
[ 93.834127][ T6545] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52401
[ 93.838064][ T6545] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 93.841002][ T6545] raw: 00fff00000000000 ffffea0001490000 00000000ffffffff ffffffffffffffff
[ 93.844346][ T6545] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 93.847842][ T6545] page dumped because: nonzero pincount
[ 93.849526][ T6545] page_owner tracks the page as allocated
[ 93.851483][ T6545] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6544, tgid 6544 (syz.0.33), ts 93734215921, free_ts 0
[ 93.858846][ T6545] post_alloc_hook+0x181/0x1b0
[ 93.860434][ T6545] get_page_from_freelist+0x135c/0x3920
[ 93.862472][ T6545] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 93.864609][ T6545] alloc_pages_mpol+0x1fb/0x550
[ 93.866262][ T6545] folio_alloc_noprof+0x20/0x2d0
[ 93.867828][ T6545] filemap_alloc_folio_noprof+0x3a1/0x470
[ 93.869590][ T6545] page_cache_ra_order+0x4c0/0xd00
[ 93.871203][ T6545] filemap_fault+0x1a5e/0x2740
[ 93.872736][ T6545] __do_fault+0x10a/0x490
[ 93.874083][ T6545] do_pte_missing+0x1a6/0x3fb0
[ 93.875742][ T6545] __handle_mm_fault+0x103d/0x2a40
[ 93.877572][ T6545] handle_mm_fault+0x3fe/0xad0
[ 93.879086][ T6545] do_user_addr_fault+0x60c/0x1370
[ 93.880748][ T6545] exc_page_fault+0x5c/0xc0
[ 93.882365][ T6545] asm_exc_page_fault+0x26/0x30
[ 93.883848][ T6545] page_owner free stack trace missing
[ 93.885615][ T6545] Modules linked in:
[ 93.886855][ T6545] CPU: 2 UID: 0 PID: 6545 Comm: syz.0.33 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 93.886871][ T6545] Tainted: [B]=BAD_PAGE
[ 93.886875][ T6545] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 93.886880][ T6545] Call Trace:
[ 93.886884][ T6545]
[ 93.886888][ T6545] dump_stack_lvl+0x16c/0x1f0
[ 93.886903][ T6545] bad_page+0xb3/0x1f0
[ 93.886915][ T6545] ? __pfx_bad_page+0x10/0x10
[ 93.886925][ T6545] ? __mem_cgroup_uncharge+0xda/0x130
[ 93.886937][ T6545] free_tail_page_prepare+0x44f/0x5b0
[ 93.886950][ T6545] __free_frozen_pages+0x96a/0xff0
[ 93.886965][ T6545] __folio_put+0x329/0x450
[ 93.886975][ T6545] ? __pfx___folio_put+0x10/0x10
[ 93.886986][ T6545] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 93.886997][ T6545] ? rcu_is_watching+0x12/0xc0
[ 93.887009][ T6545] ? lock_release+0x201/0x2f0
[ 93.887024][ T6545] filemap_free_folio+0x132/0x170
[ 93.887034][ T6545] delete_from_page_cache_batch+0x741/0x9b0
[ 93.887046][ T6545] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 93.887058][ T6545] ? __pfx_workingset_update_node+0x10/0x10
[ 93.887068][ T6545] ? xas_move_index+0xb0/0x110
[ 93.887082][ T6545] truncate_inode_pages_range+0x279/0xe30
[ 93.887097][ T6545] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 93.887118][ T6545] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 93.887133][ T6545] ? __pfx_has_bh_in_lru+0x10/0x10
[ 93.887147][ T6545] blkdev_flush_mapping+0xfb/0x290
[ 93.887159][ T6545] ? filemap_check_errors+0xa9/0x160
[ 93.887176][ T6545] blkdev_put_whole+0xc4/0xf0
[ 93.887187][ T6545] bdev_release+0x47e/0x6d0
[ 93.887199][ T6545] ? __pfx_blkdev_release+0x10/0x10
[ 93.887211][ T6545] blkdev_release+0x15/0x20
[ 93.887223][ T6545] __fput+0x3ff/0xb70
[ 93.887234][ T6545] task_work_run+0x14d/0x240
[ 93.887245][ T6545] ? __pfx_task_work_run+0x10/0x10
[ 93.887255][ T6545] ? do_raw_spin_unlock+0x172/0x230
[ 93.887265][ T6545] do_exit+0xafb/0x2c30
[ 93.887279][ T6545] ? __pfx_futex_wake_mark+0x10/0x10
[ 93.887295][ T6545] ? __pfx_do_exit+0x10/0x10
[ 93.887308][ T6545] ? do_raw_spin_lock+0x12c/0x2b0
[ 93.887317][ T6545] ? get_signal+0x8f5/0x26d0
[ 93.887328][ T6545] ? rcu_is_watching+0x12/0xc0
[ 93.887339][ T6545] do_group_exit+0xd3/0x2a0
[ 93.887353][ T6545] get_signal+0x2673/0x26d0
[ 93.887366][ T6545] ? __pfx_get_signal+0x10/0x10
[ 93.887378][ T6545] ? do_futex+0x122/0x350
[ 93.887391][ T6545] ? __pfx_do_futex+0x10/0x10
[ 93.887404][ T6545] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.887421][ T6545] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 93.887436][ T6545] ? __pfx_do_preadv+0x10/0x10
[ 93.887448][ T6545] ? madvise_unlock+0xc6/0x190
[ 93.887460][ T6545] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.887474][ T6545] do_syscall_64+0xda/0x260
[ 93.887488][ T6545] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.887498][ T6545] RIP: 0033:0x7fbf3cb8e969
[ 93.887505][ T6545] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 93.887509][ T6545] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 93.887519][ T6545] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 93.887525][ T6545] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 93.887530][ T6545] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 93.887536][ T6545] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 93.887542][ T6545] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 93.887549][ T6545]
[ 93.887564][ T6545] BUG: Bad page state in process syz.0.33 pfn:52400
[ 94.015909][ T6545] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52400
[ 94.019440][ T6545] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 94.022872][ T6545] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 94.026608][ T6545] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.030116][ T6545] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.033594][ T6545] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.043679][ T6545] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.047338][ T6545] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.051246][ T6545] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.054682][ T6545] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 94.057692][ T6545] page_owner tracks the page as allocated
[ 94.059987][ T6545] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6544, tgid 6544 (syz.0.33), ts 93734215921, free_ts 0
[ 94.066080][ T6545] post_alloc_hook+0x181/0x1b0
[ 94.067542][ T6545] get_page_from_freelist+0x135c/0x3920
[ 94.069178][ T6545] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.071570][ T6545] alloc_pages_mpol+0x1fb/0x550
[ 94.073543][ T6545] folio_alloc_noprof+0x20/0x2d0
[ 94.075704][ T6545] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.078037][ T6545] page_cache_ra_order+0x4c0/0xd00
[ 94.080126][ T6545] filemap_fault+0x1a5e/0x2740
[ 94.082105][ T6545] __do_fault+0x10a/0x490
[ 94.083875][ T6545] do_pte_missing+0x1a6/0x3fb0
[ 94.085965][ T6545] __handle_mm_fault+0x103d/0x2a40
[ 94.088098][ T6545] handle_mm_fault+0x3fe/0xad0
[ 94.090117][ T6545] do_user_addr_fault+0x60c/0x1370
[ 94.092197][ T6545] exc_page_fault+0x5c/0xc0
[ 94.094060][ T6545] asm_exc_page_fault+0x26/0x30
[ 94.096138][ T6545] page_owner free stack trace missing
[ 94.098319][ T6545] Modules linked in:
[ 94.099914][ T6545] CPU: 2 UID: 0 PID: 6545 Comm: syz.0.33 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 94.099939][ T6545] Tainted: [B]=BAD_PAGE
[ 94.099945][ T6545] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.099955][ T6545] Call Trace:
[ 94.099962][ T6545]
[ 94.099969][ T6545] dump_stack_lvl+0x16c/0x1f0
[ 94.099995][ T6545] bad_page+0xb3/0x1f0
[ 94.100013][ T6545] ? __pfx_bad_page+0x10/0x10
[ 94.100030][ T6545] ? page_bad_reason+0x9d/0x1e0
[ 94.100048][ T6545] __free_frozen_pages+0x76e/0xff0
[ 94.100072][ T6545] __folio_put+0x329/0x450
[ 94.100089][ T6545] ? __pfx___folio_put+0x10/0x10
[ 94.100107][ T6545] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.100125][ T6545] ? rcu_is_watching+0x12/0xc0
[ 94.100144][ T6545] ? lock_release+0x201/0x2f0
[ 94.100173][ T6545] filemap_free_folio+0x132/0x170
[ 94.100191][ T6545] delete_from_page_cache_batch+0x741/0x9b0
[ 94.100212][ T6545] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.100232][ T6545] ? __pfx_workingset_update_node+0x10/0x10
[ 94.100249][ T6545] ? xas_move_index+0xb0/0x110
[ 94.100272][ T6545] truncate_inode_pages_range+0x279/0xe30
[ 94.100296][ T6545] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.100335][ T6545] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.100359][ T6545] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.100383][ T6545] blkdev_flush_mapping+0xfb/0x290
[ 94.100402][ T6545] ? filemap_check_errors+0xa9/0x160
[ 94.100424][ T6545] blkdev_put_whole+0xc4/0xf0
[ 94.100442][ T6545] bdev_release+0x47e/0x6d0
[ 94.100463][ T6545] ? __pfx_blkdev_release+0x10/0x10
[ 94.100483][ T6545] blkdev_release+0x15/0x20
[ 94.100503][ T6545] __fput+0x3ff/0xb70
[ 94.100522][ T6545] task_work_run+0x14d/0x240
[ 94.100539][ T6545] ? __pfx_task_work_run+0x10/0x10
[ 94.100556][ T6545] ? do_raw_spin_unlock+0x172/0x230
[ 94.100574][ T6545] do_exit+0xafb/0x2c30
[ 94.100596][ T6545] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.100621][ T6545] ? __pfx_do_exit+0x10/0x10
[ 94.100644][ T6545] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.100660][ T6545] ? get_signal+0x8f5/0x26d0
[ 94.100678][ T6545] ? rcu_is_watching+0x12/0xc0
[ 94.100697][ T6545] do_group_exit+0xd3/0x2a0
[ 94.100721][ T6545] get_signal+0x2673/0x26d0
[ 94.100743][ T6545] ? __pfx_get_signal+0x10/0x10
[ 94.100762][ T6545] ? do_futex+0x122/0x350
[ 94.100783][ T6545] ? __pfx_do_futex+0x10/0x10
[ 94.100804][ T6545] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.100827][ T6545] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.100851][ T6545] ? __pfx_do_preadv+0x10/0x10
[ 94.100894][ T6545] ? madvise_unlock+0xc6/0x190
[ 94.100912][ T6545] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.100935][ T6545] do_syscall_64+0xda/0x260
[ 94.100957][ T6545] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.100973][ T6545] RIP: 0033:0x7fbf3cb8e969
[ 94.100986][ T6545] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 94.100993][ T6545] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.101008][ T6545] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 94.101018][ T6545] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 94.101028][ T6545] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 94.101037][ T6545] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 94.101047][ T6545] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 94.101061][ T6545]
[ 94.239289][ T6547] BUG: Bad page state in process syz.0.34 pfn:52601
[ 94.241302][ T6547] page does not match folio
[ 94.242684][ T6547] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52601
[ 94.245705][ T6547] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 94.247909][ T6547] raw: 00fff00000000000 ffffea0001498000 00000000ffffffff ffffffffffffffff
[ 94.250397][ T6547] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.252921][ T6547] page dumped because: nonzero pincount
[ 94.254542][ T6547] page_owner tracks the page as allocated
[ 94.256499][ T6547] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6546, tgid 6546 (syz.0.34), ts 94223159986, free_ts 94101109229
[ 94.262281][ T6547] post_alloc_hook+0x181/0x1b0
[ 94.263711][ T6547] get_page_from_freelist+0x135c/0x3920
[ 94.265496][ T6547] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.267305][ T6547] alloc_pages_mpol+0x1fb/0x550
[ 94.268727][ T6547] folio_alloc_noprof+0x20/0x2d0
[ 94.270214][ T6547] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.271927][ T6547] page_cache_ra_order+0x4c0/0xd00
[ 94.273431][ T6547] filemap_fault+0x1a5e/0x2740
[ 94.274915][ T6547] __do_fault+0x10a/0x490
[ 94.276272][ T6547] do_pte_missing+0x1a6/0x3fb0
[ 94.278225][ T6547] __handle_mm_fault+0x103d/0x2a40
[ 94.280349][ T6547] handle_mm_fault+0x3fe/0xad0
[ 94.282260][ T6547] do_user_addr_fault+0x60c/0x1370
[ 94.284282][ T6547] exc_page_fault+0x5c/0xc0
[ 94.286315][ T6547] asm_exc_page_fault+0x26/0x30
[ 94.288235][ T6547] page last free pid 6545 tgid 6544 stack trace:
[ 94.290681][ T6547] free_unref_folios+0x999/0x1630
[ 94.292680][ T6547] folios_put_refs+0x56f/0x740
[ 94.294567][ T6547] truncate_inode_pages_range+0x311/0xe30
[ 94.296894][ T6547] blkdev_flush_mapping+0xfb/0x290
[ 94.298866][ T6547] blkdev_put_whole+0xc4/0xf0
[ 94.300704][ T6547] bdev_release+0x47e/0x6d0
[ 94.302535][ T6547] blkdev_release+0x15/0x20
[ 94.304291][ T6547] __fput+0x3ff/0xb70
[ 94.305949][ T6547] task_work_run+0x14d/0x240
[ 94.307766][ T6547] do_exit+0xafb/0x2c30
[ 94.309405][ T6547] do_group_exit+0xd3/0x2a0
[ 94.311195][ T6547] get_signal+0x2673/0x26d0
[ 94.313012][ T6547] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.315239][ T6547] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.317420][ T6547] do_syscall_64+0xda/0x260
[ 94.319179][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.321492][ T6547] Modules linked in:
[ 94.323059][ T6547] CPU: 3 UID: 0 PID: 6547 Comm: syz.0.34 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 94.323082][ T6547] Tainted: [B]=BAD_PAGE
[ 94.323087][ T6547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.323095][ T6547] Call Trace:
[ 94.323108][ T6547]
[ 94.323114][ T6547] dump_stack_lvl+0x16c/0x1f0
[ 94.323137][ T6547] bad_page+0xb3/0x1f0
[ 94.323153][ T6547] ? __pfx_bad_page+0x10/0x10
[ 94.323169][ T6547] ? __mem_cgroup_uncharge+0xda/0x130
[ 94.323188][ T6547] free_tail_page_prepare+0x44f/0x5b0
[ 94.323208][ T6547] __free_frozen_pages+0x96a/0xff0
[ 94.323229][ T6547] __folio_put+0x329/0x450
[ 94.323246][ T6547] ? __pfx___folio_put+0x10/0x10
[ 94.323261][ T6547] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.323279][ T6547] ? rcu_is_watching+0x12/0xc0
[ 94.323295][ T6547] ? lock_release+0x201/0x2f0
[ 94.323317][ T6547] filemap_free_folio+0x132/0x170
[ 94.323333][ T6547] delete_from_page_cache_batch+0x741/0x9b0
[ 94.323351][ T6547] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.323369][ T6547] ? __pfx_workingset_update_node+0x10/0x10
[ 94.323384][ T6547] ? xas_move_index+0xb0/0x110
[ 94.323405][ T6547] truncate_inode_pages_range+0x279/0xe30
[ 94.323427][ T6547] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.323461][ T6547] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.323482][ T6547] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.323504][ T6547] blkdev_flush_mapping+0xfb/0x290
[ 94.323523][ T6547] ? filemap_check_errors+0xa9/0x160
[ 94.323543][ T6547] blkdev_put_whole+0xc4/0xf0
[ 94.323560][ T6547] bdev_release+0x47e/0x6d0
[ 94.323579][ T6547] ? __pfx_blkdev_release+0x10/0x10
[ 94.323596][ T6547] blkdev_release+0x15/0x20
[ 94.323614][ T6547] __fput+0x3ff/0xb70
[ 94.323632][ T6547] task_work_run+0x14d/0x240
[ 94.323649][ T6547] ? __pfx_task_work_run+0x10/0x10
[ 94.323663][ T6547] ? do_raw_spin_unlock+0x172/0x230
[ 94.323681][ T6547] do_exit+0xafb/0x2c30
[ 94.323701][ T6547] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.323723][ T6547] ? __pfx_do_exit+0x10/0x10
[ 94.323743][ T6547] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.323759][ T6547] ? get_signal+0x8f5/0x26d0
[ 94.323774][ T6547] ? rcu_is_watching+0x12/0xc0
[ 94.323792][ T6547] do_group_exit+0xd3/0x2a0
[ 94.323812][ T6547] get_signal+0x2673/0x26d0
[ 94.323833][ T6547] ? __pfx_get_signal+0x10/0x10
[ 94.323851][ T6547] ? do_futex+0x122/0x350
[ 94.323868][ T6547] ? __pfx_do_futex+0x10/0x10
[ 94.323887][ T6547] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.323907][ T6547] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.323930][ T6547] ? rcu_is_watching+0x12/0xc0
[ 94.323948][ T6547] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.323967][ T6547] do_syscall_64+0xda/0x260
[ 94.323988][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.324003][ T6547] RIP: 0033:0x7fbf3cb8e969
[ 94.324014][ T6547] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 94.324021][ T6547] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.324035][ T6547] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 94.324045][ T6547] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 94.324054][ T6547] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 94.324062][ T6547] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 94.324072][ T6547] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 94.324085][ T6547]
[ 94.324115][ T6547] BUG: Bad page state in process syz.0.34 pfn:52600
[ 94.456347][ T6547] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52600
[ 94.459672][ T6547] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 94.462909][ T6547] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 94.466452][ T6547] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.469750][ T6547] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.473062][ T6547] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.476451][ T6547] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.479767][ T6547] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.483102][ T6547] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.486519][ T6547] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 94.489365][ T6547] page_owner tracks the page as allocated
[ 94.491625][ T6547] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6546, tgid 6546 (syz.0.34), ts 94223159986, free_ts 94101109229
[ 94.499326][ T6547] post_alloc_hook+0x181/0x1b0
[ 94.501193][ T6547] get_page_from_freelist+0x135c/0x3920
[ 94.503361][ T6547] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.505816][ T6547] alloc_pages_mpol+0x1fb/0x550
[ 94.507712][ T6547] folio_alloc_noprof+0x20/0x2d0
[ 94.509637][ T6547] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.511852][ T6547] page_cache_ra_order+0x4c0/0xd00
[ 94.513919][ T6547] filemap_fault+0x1a5e/0x2740
[ 94.515945][ T6547] __do_fault+0x10a/0x490
[ 94.517696][ T6547] do_pte_missing+0x1a6/0x3fb0
[ 94.519609][ T6547] __handle_mm_fault+0x103d/0x2a40
[ 94.521729][ T6547] handle_mm_fault+0x3fe/0xad0
[ 94.523654][ T6547] do_user_addr_fault+0x60c/0x1370
[ 94.525770][ T6547] exc_page_fault+0x5c/0xc0
[ 94.527638][ T6547] asm_exc_page_fault+0x26/0x30
[ 94.529497][ T6547] page last free pid 6545 tgid 6544 stack trace:
[ 94.531605][ T6547] free_unref_folios+0x999/0x1630
[ 94.533634][ T6547] folios_put_refs+0x56f/0x740
[ 94.535634][ T6547] truncate_inode_pages_range+0x311/0xe30
[ 94.537912][ T6547] blkdev_flush_mapping+0xfb/0x290
[ 94.539891][ T6547] blkdev_put_whole+0xc4/0xf0
[ 94.541773][ T6547] bdev_release+0x47e/0x6d0
[ 94.543545][ T6547] blkdev_release+0x15/0x20
[ 94.545418][ T6547] __fput+0x3ff/0xb70
[ 94.547023][ T6547] task_work_run+0x14d/0x240
[ 94.548815][ T6547] do_exit+0xafb/0x2c30
[ 94.550513][ T6547] do_group_exit+0xd3/0x2a0
[ 94.552284][ T6547] get_signal+0x2673/0x26d0
[ 94.554041][ T6547] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.556263][ T6547] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.558441][ T6547] do_syscall_64+0xda/0x260
[ 94.560192][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.562538][ T6547] Modules linked in:
[ 94.564058][ T6547] CPU: 3 UID: 0 PID: 6547 Comm: syz.0.34 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 94.564080][ T6547] Tainted: [B]=BAD_PAGE
[ 94.564086][ T6547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.564099][ T6547] Call Trace:
[ 94.564104][ T6547]
[ 94.564111][ T6547] dump_stack_lvl+0x16c/0x1f0
[ 94.564130][ T6547] bad_page+0xb3/0x1f0
[ 94.564147][ T6547] ? __pfx_bad_page+0x10/0x10
[ 94.564162][ T6547] ? page_bad_reason+0x9d/0x1e0
[ 94.564179][ T6547] __free_frozen_pages+0x76e/0xff0
[ 94.564200][ T6547] __folio_put+0x329/0x450
[ 94.564216][ T6547] ? __pfx___folio_put+0x10/0x10
[ 94.564232][ T6547] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.564248][ T6547] ? rcu_is_watching+0x12/0xc0
[ 94.564266][ T6547] ? lock_release+0x201/0x2f0
[ 94.564287][ T6547] filemap_free_folio+0x132/0x170
[ 94.564303][ T6547] delete_from_page_cache_batch+0x741/0x9b0
[ 94.564322][ T6547] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.564339][ T6547] ? __pfx_workingset_update_node+0x10/0x10
[ 94.564355][ T6547] ? xas_move_index+0xb0/0x110
[ 94.564375][ T6547] truncate_inode_pages_range+0x279/0xe30
[ 94.564397][ T6547] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.564431][ T6547] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.564453][ T6547] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.564473][ T6547] blkdev_flush_mapping+0xfb/0x290
[ 94.564491][ T6547] ? filemap_check_errors+0xa9/0x160
[ 94.564512][ T6547] blkdev_put_whole+0xc4/0xf0
[ 94.564527][ T6547] bdev_release+0x47e/0x6d0
[ 94.564546][ T6547] ? __pfx_blkdev_release+0x10/0x10
[ 94.564563][ T6547] blkdev_release+0x15/0x20
[ 94.564581][ T6547] __fput+0x3ff/0xb70
[ 94.564598][ T6547] task_work_run+0x14d/0x240
[ 94.564614][ T6547] ? __pfx_task_work_run+0x10/0x10
[ 94.564628][ T6547] ? do_raw_spin_unlock+0x172/0x230
[ 94.564645][ T6547] do_exit+0xafb/0x2c30
[ 94.564665][ T6547] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.564689][ T6547] ? __pfx_do_exit+0x10/0x10
[ 94.564707][ T6547] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.564736][ T6547] ? get_signal+0x8f5/0x26d0
[ 94.564757][ T6547] ? rcu_is_watching+0x12/0xc0
[ 94.564774][ T6547] do_group_exit+0xd3/0x2a0
[ 94.564795][ T6547] get_signal+0x2673/0x26d0
[ 94.564816][ T6547] ? __pfx_get_signal+0x10/0x10
[ 94.564833][ T6547] ? do_futex+0x122/0x350
[ 94.564851][ T6547] ? __pfx_do_futex+0x10/0x10
[ 94.564887][ T6547] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.564909][ T6547] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.564930][ T6547] ? rcu_is_watching+0x12/0xc0
[ 94.564949][ T6547] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.564969][ T6547] do_syscall_64+0xda/0x260
[ 94.564989][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.565005][ T6547] RIP: 0033:0x7fbf3cb8e969
[ 94.565016][ T6547] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 94.565024][ T6547] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.565038][ T6547] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 94.565047][ T6547] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 94.565057][ T6547] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 94.565065][ T6547] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 94.565073][ T6547] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 94.565088][ T6547]
[ 94.692554][ T6549] BUG: Bad page state in process syz.0.35 pfn:4aa01
[ 94.694577][ T6549] page does not match folio
[ 94.696381][ T6549] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4aa01
[ 94.700001][ T6549] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 94.702574][ T6549] raw: 00fff00000000000 ffffea00012a8000 00000000ffffffff ffffffffffffffff
[ 94.705482][ T6549] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.708002][ T6549] page dumped because: nonzero pincount
[ 94.709646][ T6549] page_owner tracks the page as allocated
[ 94.711305][ T6549] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6548, tgid 6548 (syz.0.35), ts 94674023948, free_ts 92124060540
[ 94.718451][ T6549] post_alloc_hook+0x181/0x1b0
[ 94.719984][ T6549] get_page_from_freelist+0x135c/0x3920
[ 94.721776][ T6549] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.723697][ T6549] alloc_pages_mpol+0x1fb/0x550
[ 94.725252][ T6549] folio_alloc_noprof+0x20/0x2d0
[ 94.726764][ T6549] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.728472][ T6549] page_cache_ra_order+0x4c0/0xd00
[ 94.729988][ T6549] filemap_fault+0x1a5e/0x2740
[ 94.731413][ T6549] __do_fault+0x10a/0x490
[ 94.732804][ T6549] do_pte_missing+0x1a6/0x3fb0
[ 94.734240][ T6549] __handle_mm_fault+0x103d/0x2a40
[ 94.735975][ T6549] handle_mm_fault+0x3fe/0xad0
[ 94.737434][ T6549] do_user_addr_fault+0x60c/0x1370
[ 94.738986][ T6549] exc_page_fault+0x5c/0xc0
[ 94.740359][ T6549] asm_exc_page_fault+0x26/0x30
[ 94.741885][ T6549] page last free pid 6528 tgid 6528 stack trace:
[ 94.743783][ T6549] free_unref_folios+0x999/0x1630
[ 94.745417][ T6549] folios_put_refs+0x56f/0x740
[ 94.746923][ T6549] truncate_inode_pages_range+0x311/0xe30
[ 94.748592][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 94.750126][ T6549] blkdev_put_whole+0xc4/0xf0
[ 94.751740][ T6549] bdev_release+0x47e/0x6d0
[ 94.753146][ T6549] blkdev_release+0x15/0x20
[ 94.754507][ T6549] __fput+0x3ff/0xb70
[ 94.755805][ T6549] task_work_run+0x14d/0x240
[ 94.757184][ T6549] do_exit+0xafb/0x2c30
[ 94.758439][ T6549] do_group_exit+0xd3/0x2a0
[ 94.759822][ T6549] __x64_sys_exit_group+0x3e/0x50
[ 94.761368][ T6549] x64_sys_call+0x1530/0x1730
[ 94.762972][ T6549] do_syscall_64+0xcd/0x260
[ 94.764339][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.766209][ T6549] Modules linked in:
[ 94.767785][ T6549] CPU: 2 UID: 0 PID: 6549 Comm: syz.0.35 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 94.767800][ T6549] Tainted: [B]=BAD_PAGE
[ 94.767804][ T6549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.767810][ T6549] Call Trace:
[ 94.767813][ T6549]
[ 94.767816][ T6549] dump_stack_lvl+0x16c/0x1f0
[ 94.767831][ T6549] bad_page+0xb3/0x1f0
[ 94.767843][ T6549] ? __pfx_bad_page+0x10/0x10
[ 94.767853][ T6549] ? __mem_cgroup_uncharge+0xda/0x130
[ 94.767865][ T6549] free_tail_page_prepare+0x44f/0x5b0
[ 94.767878][ T6549] __free_frozen_pages+0x96a/0xff0
[ 94.767893][ T6549] __folio_put+0x329/0x450
[ 94.767903][ T6549] ? __pfx___folio_put+0x10/0x10
[ 94.767914][ T6549] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.767926][ T6549] ? rcu_is_watching+0x12/0xc0
[ 94.767937][ T6549] ? lock_release+0x201/0x2f0
[ 94.767952][ T6549] filemap_free_folio+0x132/0x170
[ 94.767962][ T6549] delete_from_page_cache_batch+0x741/0x9b0
[ 94.767974][ T6549] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.767986][ T6549] ? __pfx_workingset_update_node+0x10/0x10
[ 94.767997][ T6549] ? xas_move_index+0xb0/0x110
[ 94.768011][ T6549] truncate_inode_pages_range+0x279/0xe30
[ 94.768025][ T6549] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.768046][ T6549] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.768061][ T6549] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.768076][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 94.768088][ T6549] ? filemap_check_errors+0xa9/0x160
[ 94.768102][ T6549] blkdev_put_whole+0xc4/0xf0
[ 94.768113][ T6549] bdev_release+0x47e/0x6d0
[ 94.768126][ T6549] ? __pfx_blkdev_release+0x10/0x10
[ 94.768138][ T6549] blkdev_release+0x15/0x20
[ 94.768150][ T6549] __fput+0x3ff/0xb70
[ 94.768161][ T6549] task_work_run+0x14d/0x240
[ 94.768172][ T6549] ? __pfx_task_work_run+0x10/0x10
[ 94.768181][ T6549] ? do_raw_spin_unlock+0x172/0x230
[ 94.768192][ T6549] do_exit+0xafb/0x2c30
[ 94.768206][ T6549] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.768221][ T6549] ? __pfx_do_exit+0x10/0x10
[ 94.768234][ T6549] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.768244][ T6549] ? get_signal+0x8f5/0x26d0
[ 94.768255][ T6549] ? rcu_is_watching+0x12/0xc0
[ 94.768266][ T6549] do_group_exit+0xd3/0x2a0
[ 94.768280][ T6549] get_signal+0x2673/0x26d0
[ 94.768293][ T6549] ? __pfx_get_signal+0x10/0x10
[ 94.768305][ T6549] ? do_futex+0x122/0x350
[ 94.768317][ T6549] ? __pfx_do_futex+0x10/0x10
[ 94.768330][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.768344][ T6549] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.768364][ T6549] ? __pfx_do_preadv+0x10/0x10
[ 94.768377][ T6549] ? rcu_is_watching+0x12/0xc0
[ 94.768388][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.768402][ T6549] do_syscall_64+0xda/0x260
[ 94.768415][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.768425][ T6549] RIP: 0033:0x7fbf3cb8e969
[ 94.768433][ T6549] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 94.768437][ T6549] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.768446][ T6549] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 94.768452][ T6549] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 94.768458][ T6549] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 94.768464][ T6549] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 94.768469][ T6549] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 94.768477][ T6549]
[ 94.768491][ T6549] BUG: Bad page state in process syz.0.35 pfn:4aa00
[ 94.900140][ T6549] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4aa00
[ 94.903683][ T6549] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 94.907222][ T6549] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 94.910692][ T6549] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.914081][ T6549] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.917799][ T6549] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.921166][ T6549] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.924622][ T6549] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.928192][ T6549] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.931742][ T6549] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 94.934685][ T6549] page_owner tracks the page as allocated
[ 94.937102][ T6549] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6548, tgid 6548 (syz.0.35), ts 94674023948, free_ts 92124060540
[ 94.945124][ T6549] post_alloc_hook+0x181/0x1b0
[ 94.947088][ T6549] get_page_from_freelist+0x135c/0x3920
[ 94.949384][ T6549] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.951839][ T6549] alloc_pages_mpol+0x1fb/0x550
[ 94.953798][ T6549] folio_alloc_noprof+0x20/0x2d0
[ 94.955929][ T6549] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.958223][ T6549] page_cache_ra_order+0x4c0/0xd00
[ 94.960177][ T6549] filemap_fault+0x1a5e/0x2740
[ 94.962009][ T6549] __do_fault+0x10a/0x490
[ 94.963318][ T6549] do_pte_missing+0x1a6/0x3fb0
[ 94.965018][ T6549] __handle_mm_fault+0x103d/0x2a40
[ 94.966992][ T6549] handle_mm_fault+0x3fe/0xad0
[ 94.968798][ T6549] do_user_addr_fault+0x60c/0x1370
[ 94.970782][ T6549] exc_page_fault+0x5c/0xc0
[ 94.972543][ T6549] asm_exc_page_fault+0x26/0x30
[ 94.974402][ T6549] page last free pid 6528 tgid 6528 stack trace:
[ 94.976829][ T6549] free_unref_folios+0x999/0x1630
[ 94.978761][ T6549] folios_put_refs+0x56f/0x740
[ 94.980156][ T6549] truncate_inode_pages_range+0x311/0xe30
[ 94.981841][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 94.983367][ T6549] blkdev_put_whole+0xc4/0xf0
[ 94.985078][ T6549] bdev_release+0x47e/0x6d0
[ 94.986625][ T6549] blkdev_release+0x15/0x20
[ 94.987994][ T6549] __fput+0x3ff/0xb70
[ 94.989212][ T6549] task_work_run+0x14d/0x240
[ 94.990572][ T6549] do_exit+0xafb/0x2c30
[ 94.991794][ T6549] do_group_exit+0xd3/0x2a0
[ 94.993168][ T6549] __x64_sys_exit_group+0x3e/0x50
[ 94.994825][ T6549] x64_sys_call+0x1530/0x1730
[ 94.996235][ T6549] do_syscall_64+0xcd/0x260
[ 94.997615][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.999386][ T6549] Modules linked in:
[ 95.000548][ T6549] CPU: 3 UID: 0 PID: 6549 Comm: syz.0.35 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 95.000564][ T6549] Tainted: [B]=BAD_PAGE
[ 95.000567][ T6549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.000573][ T6549] Call Trace:
[ 95.000578][ T6549]
[ 95.000582][ T6549] dump_stack_lvl+0x16c/0x1f0
[ 95.000596][ T6549] bad_page+0xb3/0x1f0
[ 95.000606][ T6549] ? __pfx_bad_page+0x10/0x10
[ 95.000617][ T6549] ? page_bad_reason+0x9d/0x1e0
[ 95.000627][ T6549] __free_frozen_pages+0x76e/0xff0
[ 95.000642][ T6549] __folio_put+0x329/0x450
[ 95.000653][ T6549] ? __pfx___folio_put+0x10/0x10
[ 95.000664][ T6549] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.000675][ T6549] ? rcu_is_watching+0x12/0xc0
[ 95.000686][ T6549] ? lock_release+0x201/0x2f0
[ 95.000701][ T6549] filemap_free_folio+0x132/0x170
[ 95.000711][ T6549] delete_from_page_cache_batch+0x741/0x9b0
[ 95.000723][ T6549] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.000735][ T6549] ? __pfx_workingset_update_node+0x10/0x10
[ 95.000746][ T6549] ? xas_move_index+0xb0/0x110
[ 95.000760][ T6549] truncate_inode_pages_range+0x279/0xe30
[ 95.000774][ T6549] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.000796][ T6549] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.000812][ T6549] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.000826][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 95.000838][ T6549] ? filemap_check_errors+0xa9/0x160
[ 95.000852][ T6549] blkdev_put_whole+0xc4/0xf0
[ 95.000878][ T6549] bdev_release+0x47e/0x6d0
[ 95.000891][ T6549] ? __pfx_blkdev_release+0x10/0x10
[ 95.000903][ T6549] blkdev_release+0x15/0x20
[ 95.000915][ T6549] __fput+0x3ff/0xb70
[ 95.000927][ T6549] task_work_run+0x14d/0x240
[ 95.000938][ T6549] ? __pfx_task_work_run+0x10/0x10
[ 95.000948][ T6549] ? do_raw_spin_unlock+0x172/0x230
[ 95.000958][ T6549] do_exit+0xafb/0x2c30
[ 95.000972][ T6549] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.000988][ T6549] ? __pfx_do_exit+0x10/0x10
[ 95.001001][ T6549] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.001011][ T6549] ? get_signal+0x8f5/0x26d0
[ 95.001022][ T6549] ? rcu_is_watching+0x12/0xc0
[ 95.001033][ T6549] do_group_exit+0xd3/0x2a0
[ 95.001047][ T6549] get_signal+0x2673/0x26d0
[ 95.001060][ T6549] ? __pfx_get_signal+0x10/0x10
[ 95.001071][ T6549] ? do_futex+0x122/0x350
[ 95.001084][ T6549] ? __pfx_do_futex+0x10/0x10
[ 95.001096][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.001111][ T6549] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.001131][ T6549] ? __pfx_do_preadv+0x10/0x10
[ 95.001143][ T6549] ? rcu_is_watching+0x12/0xc0
[ 95.001154][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.001168][ T6549] do_syscall_64+0xda/0x260
[ 95.001182][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.001191][ T6549] RIP: 0033:0x7fbf3cb8e969
[ 95.001199][ T6549] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 95.001203][ T6549] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.001213][ T6549] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 95.001219][ T6549] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 95.001224][ T6549] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.001230][ T6549] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 95.001236][ T6549] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 95.001244][ T6549]
[ 95.040806][ T6551] BUG: Bad page state in process syz.0.36 pfn:4a401
[ 95.134395][ T6551] page does not match folio
[ 95.136234][ T6551] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4a401
[ 95.139978][ T6551] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 95.142775][ T6551] raw: 00fff00000000000 ffffea0001290000 00000000ffffffff ffffffffffffffff
[ 95.145991][ T6551] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.149160][ T6551] page dumped because: nonzero pincount
[ 95.151238][ T6551] page_owner tracks the page as allocated
[ 95.153388][ T6551] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6550, tgid 6550 (syz.0.36), ts 95009484087, free_ts 93727013009
[ 95.161539][ T6551] post_alloc_hook+0x181/0x1b0
[ 95.163327][ T6551] get_page_from_freelist+0x135c/0x3920
[ 95.165482][ T6551] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.167715][ T6551] alloc_pages_mpol+0x1fb/0x550
[ 95.169550][ T6551] folio_alloc_noprof+0x20/0x2d0
[ 95.171401][ T6551] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.173532][ T6551] page_cache_ra_order+0x4c0/0xd00
[ 95.175600][ T6551] filemap_fault+0x1a5e/0x2740
[ 95.177844][ T6551] __do_fault+0x10a/0x490
[ 95.179453][ T6551] do_pte_missing+0x1a6/0x3fb0
[ 95.181232][ T6551] __handle_mm_fault+0x103d/0x2a40
[ 95.183168][ T6551] handle_mm_fault+0x3fe/0xad0
[ 95.184668][ T6551] do_user_addr_fault+0x60c/0x1370
[ 95.186659][ T6551] exc_page_fault+0x5c/0xc0
[ 95.188288][ T6551] asm_exc_page_fault+0x26/0x30
[ 95.189909][ T6551] page last free pid 6538 tgid 6538 stack trace:
[ 95.191967][ T6551] free_unref_folios+0x999/0x1630
[ 95.193844][ T6551] folios_put_refs+0x56f/0x740
[ 95.195465][ T6551] truncate_inode_pages_range+0x311/0xe30
[ 95.197175][ T6551] blkdev_flush_mapping+0xfb/0x290
[ 95.198688][ T6551] blkdev_put_whole+0xc4/0xf0
[ 95.200088][ T6551] bdev_release+0x47e/0x6d0
[ 95.201461][ T6551] blkdev_release+0x15/0x20
[ 95.202849][ T6551] __fput+0x3ff/0xb70
[ 95.204049][ T6551] task_work_run+0x14d/0x240
[ 95.205525][ T6551] do_exit+0xafb/0x2c30
[ 95.206788][ T6551] do_group_exit+0xd3/0x2a0
[ 95.208156][ T6551] __x64_sys_exit_group+0x3e/0x50
[ 95.209655][ T6551] x64_sys_call+0x1530/0x1730
[ 95.211066][ T6551] do_syscall_64+0xcd/0x260
[ 95.212443][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.214209][ T6551] Modules linked in:
[ 95.215480][ T6551] CPU: 2 UID: 0 PID: 6551 Comm: syz.0.36 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 95.215496][ T6551] Tainted: [B]=BAD_PAGE
[ 95.215499][ T6551] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.215506][ T6551] Call Trace:
[ 95.215511][ T6551]
[ 95.215515][ T6551] dump_stack_lvl+0x16c/0x1f0
[ 95.215530][ T6551] bad_page+0xb3/0x1f0
[ 95.215542][ T6551] ? __pfx_bad_page+0x10/0x10
[ 95.215551][ T6551] ? __mem_cgroup_uncharge+0xda/0x130
[ 95.215564][ T6551] free_tail_page_prepare+0x44f/0x5b0
[ 95.215577][ T6551] __free_frozen_pages+0x96a/0xff0
[ 95.215591][ T6551] __folio_put+0x329/0x450
[ 95.215602][ T6551] ? __pfx___folio_put+0x10/0x10
[ 95.215612][ T6551] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.215624][ T6551] ? rcu_is_watching+0x12/0xc0
[ 95.215635][ T6551] ? lock_release+0x201/0x2f0
[ 95.215650][ T6551] filemap_free_folio+0x132/0x170
[ 95.215660][ T6551] delete_from_page_cache_batch+0x741/0x9b0
[ 95.215672][ T6551] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.215684][ T6551] ? __pfx_workingset_update_node+0x10/0x10
[ 95.215695][ T6551] ? xas_move_index+0xb0/0x110
[ 95.215709][ T6551] truncate_inode_pages_range+0x279/0xe30
[ 95.215724][ T6551] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.215745][ T6551] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.215761][ T6551] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.215775][ T6551] blkdev_flush_mapping+0xfb/0x290
[ 95.215787][ T6551] ? filemap_check_errors+0xa9/0x160
[ 95.215801][ T6551] blkdev_put_whole+0xc4/0xf0
[ 95.215812][ T6551] bdev_release+0x47e/0x6d0
[ 95.215824][ T6551] ? __pfx_blkdev_release+0x10/0x10
[ 95.215836][ T6551] blkdev_release+0x15/0x20
[ 95.215848][ T6551] __fput+0x3ff/0xb70
[ 95.215860][ T6551] task_work_run+0x14d/0x240
[ 95.215870][ T6551] ? __pfx_task_work_run+0x10/0x10
[ 95.215880][ T6551] ? do_raw_spin_unlock+0x172/0x230
[ 95.215891][ T6551] do_exit+0xafb/0x2c30
[ 95.215904][ T6551] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.215920][ T6551] ? __pfx_do_exit+0x10/0x10
[ 95.215933][ T6551] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.215943][ T6551] ? get_signal+0x8f5/0x26d0
[ 95.215954][ T6551] ? rcu_is_watching+0x12/0xc0
[ 95.215965][ T6551] do_group_exit+0xd3/0x2a0
[ 95.215980][ T6551] get_signal+0x2673/0x26d0
[ 95.215993][ T6551] ? __pfx_get_signal+0x10/0x10
[ 95.216004][ T6551] ? do_futex+0x122/0x350
[ 95.216017][ T6551] ? __pfx_do_futex+0x10/0x10
[ 95.216030][ T6551] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.216045][ T6551] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.216064][ T6551] ? __pfx_do_preadv+0x10/0x10
[ 95.216076][ T6551] ? madvise_unlock+0xc6/0x190
[ 95.216088][ T6551] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.216101][ T6551] do_syscall_64+0xda/0x260
[ 95.216119][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.216128][ T6551] RIP: 0033:0x7fbf3cb8e969
[ 95.216135][ T6551] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 95.216140][ T6551] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.216149][ T6551] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 95.216155][ T6551] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 95.216161][ T6551] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.216167][ T6551] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 95.216173][ T6551] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 95.216181][ T6551]
[ 95.216196][ T6551] BUG: Bad page state in process syz.0.36 pfn:4a400
[ 95.328440][ T6551] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4a400
[ 95.331277][ T6551] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 95.334346][ T6551] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 95.337734][ T6551] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.340723][ T6551] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.343762][ T6551] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.347022][ T6551] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.350300][ T6551] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.353463][ T6551] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.356684][ T6551] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 95.359430][ T6551] page_owner tracks the page as allocated
[ 95.361336][ T6551] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6550, tgid 6550 (syz.0.36), ts 95009484087, free_ts 93727013009
[ 95.368701][ T6551] post_alloc_hook+0x181/0x1b0
[ 95.370443][ T6551] get_page_from_freelist+0x135c/0x3920
[ 95.372422][ T6551] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.374541][ T6551] alloc_pages_mpol+0x1fb/0x550
[ 95.376382][ T6551] folio_alloc_noprof+0x20/0x2d0
[ 95.378261][ T6551] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.379987][ T6551] page_cache_ra_order+0x4c0/0xd00
[ 95.381848][ T6551] filemap_fault+0x1a5e/0x2740
[ 95.383306][ T6551] __do_fault+0x10a/0x490
[ 95.384573][ T6551] do_pte_missing+0x1a6/0x3fb0
[ 95.386181][ T6551] __handle_mm_fault+0x103d/0x2a40
[ 95.387916][ T6551] handle_mm_fault+0x3fe/0xad0
[ 95.389505][ T6551] do_user_addr_fault+0x60c/0x1370
[ 95.391096][ T6551] exc_page_fault+0x5c/0xc0
[ 95.392507][ T6551] asm_exc_page_fault+0x26/0x30
[ 95.393996][ T6551] page last free pid 6538 tgid 6538 stack trace:
[ 95.396228][ T6551] free_unref_folios+0x999/0x1630
[ 95.398106][ T6551] folios_put_refs+0x56f/0x740
[ 95.399541][ T6551] truncate_inode_pages_range+0x311/0xe30
[ 95.401247][ T6551] blkdev_flush_mapping+0xfb/0x290
[ 95.402952][ T6551] blkdev_put_whole+0xc4/0xf0
[ 95.404680][ T6551] bdev_release+0x47e/0x6d0
[ 95.406454][ T6551] blkdev_release+0x15/0x20
[ 95.408054][ T6551] __fput+0x3ff/0xb70
[ 95.409449][ T6551] task_work_run+0x14d/0x240
[ 95.410996][ T6551] do_exit+0xafb/0x2c30
[ 95.412488][ T6551] do_group_exit+0xd3/0x2a0
[ 95.414098][ T6551] __x64_sys_exit_group+0x3e/0x50
[ 95.415972][ T6551] x64_sys_call+0x1530/0x1730
[ 95.417624][ T6551] do_syscall_64+0xcd/0x260
[ 95.419227][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.421365][ T6551] Modules linked in:
[ 95.422917][ T6551] CPU: 2 UID: 0 PID: 6551 Comm: syz.0.36 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 95.422933][ T6551] Tainted: [B]=BAD_PAGE
[ 95.422936][ T6551] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.422943][ T6551] Call Trace:
[ 95.422947][ T6551]
[ 95.422951][ T6551] dump_stack_lvl+0x16c/0x1f0
[ 95.422969][ T6551] bad_page+0xb3/0x1f0
[ 95.422985][ T6551] ? __pfx_bad_page+0x10/0x10
[ 95.423000][ T6551] ? page_bad_reason+0x9d/0x1e0
[ 95.423015][ T6551] __free_frozen_pages+0x76e/0xff0
[ 95.423037][ T6551] __folio_put+0x329/0x450
[ 95.423053][ T6551] ? __pfx___folio_put+0x10/0x10
[ 95.423069][ T6551] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.423085][ T6551] ? rcu_is_watching+0x12/0xc0
[ 95.423101][ T6551] ? lock_release+0x201/0x2f0
[ 95.423122][ T6551] filemap_free_folio+0x132/0x170
[ 95.423137][ T6551] delete_from_page_cache_batch+0x741/0x9b0
[ 95.423161][ T6551] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.423178][ T6551] ? __pfx_workingset_update_node+0x10/0x10
[ 95.423193][ T6551] ? xas_move_index+0xb0/0x110
[ 95.423213][ T6551] truncate_inode_pages_range+0x279/0xe30
[ 95.423234][ T6551] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.423269][ T6551] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.423285][ T6551] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.423299][ T6551] blkdev_flush_mapping+0xfb/0x290
[ 95.423311][ T6551] ? filemap_check_errors+0xa9/0x160
[ 95.423326][ T6551] blkdev_put_whole+0xc4/0xf0
[ 95.423336][ T6551] bdev_release+0x47e/0x6d0
[ 95.423349][ T6551] ? __pfx_blkdev_release+0x10/0x10
[ 95.423360][ T6551] blkdev_release+0x15/0x20
[ 95.423373][ T6551] __fput+0x3ff/0xb70
[ 95.423384][ T6551] task_work_run+0x14d/0x240
[ 95.423395][ T6551] ? __pfx_task_work_run+0x10/0x10
[ 95.423406][ T6551] ? do_raw_spin_unlock+0x172/0x230
[ 95.423417][ T6551] do_exit+0xafb/0x2c30
[ 95.423430][ T6551] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.423446][ T6551] ? __pfx_do_exit+0x10/0x10
[ 95.423460][ T6551] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.423469][ T6551] ? get_signal+0x8f5/0x26d0
[ 95.423480][ T6551] ? rcu_is_watching+0x12/0xc0
[ 95.423491][ T6551] do_group_exit+0xd3/0x2a0
[ 95.423506][ T6551] get_signal+0x2673/0x26d0
[ 95.423519][ T6551] ? __pfx_get_signal+0x10/0x10
[ 95.423536][ T6551] ? do_futex+0x122/0x350
[ 95.423551][ T6551] ? __pfx_do_futex+0x10/0x10
[ 95.423570][ T6551] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.423588][ T6551] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.423610][ T6551] ? __pfx_do_preadv+0x10/0x10
[ 95.423627][ T6551] ? madvise_unlock+0xc6/0x190
[ 95.423643][ T6551] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.423663][ T6551] do_syscall_64+0xda/0x260
[ 95.423683][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.423698][ T6551] RIP: 0033:0x7fbf3cb8e969
[ 95.423709][ T6551] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 95.423716][ T6551] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.423731][ T6551] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 95.423741][ T6551] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 95.423749][ T6551] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.423758][ T6551] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 95.423767][ T6551] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 95.423780][ T6551]
[ 95.447631][ T6552] BUG: Bad page state in process syz.0.37 pfn:42201
[ 95.533243][ T6552] page does not match folio
[ 95.534861][ T6552] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x42201
[ 95.538044][ T6552] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 95.540395][ T6552] raw: 00fff00000000000 ffffea0001088000 00000000ffffffff ffffffffffffffff
[ 95.542931][ T6552] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.546061][ T6552] page dumped because: nonzero pincount
[ 95.547745][ T6552] page_owner tracks the page as allocated
[ 95.549486][ T6552] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6552, tgid 6552 (syz.0.37), ts 95430165618, free_ts 77154165367
[ 95.556038][ T6552] post_alloc_hook+0x181/0x1b0
[ 95.557995][ T6552] get_page_from_freelist+0x135c/0x3920
[ 95.560170][ T6552] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.562491][ T6552] alloc_pages_mpol+0x1fb/0x550
[ 95.564357][ T6552] folio_alloc_noprof+0x20/0x2d0
[ 95.566415][ T6552] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.568647][ T6552] page_cache_ra_order+0x4c0/0xd00
[ 95.570677][ T6552] filemap_fault+0x1a5e/0x2740
[ 95.572555][ T6552] __do_fault+0x10a/0x490
[ 95.574255][ T6552] do_pte_missing+0x1a6/0x3fb0
[ 95.576214][ T6552] __handle_mm_fault+0x103d/0x2a40
[ 95.578384][ T6552] handle_mm_fault+0x3fe/0xad0
[ 95.580323][ T6552] do_user_addr_fault+0x60c/0x1370
[ 95.582400][ T6552] exc_page_fault+0x5c/0xc0
[ 95.584216][ T6552] asm_exc_page_fault+0x26/0x30
[ 95.585911][ T6552] page last free pid 6196 tgid 6196 stack trace:
[ 95.587896][ T6552] free_unref_folios+0x999/0x1630
[ 95.589938][ T6552] folios_put_refs+0x56f/0x740
[ 95.591831][ T6552] free_pages_and_swap_cache+0x245/0x4a0
[ 95.594085][ T6552] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 95.596504][ T6552] tlb_finish_mmu+0x168/0x7b0
[ 95.598416][ T6552] vms_clear_ptes+0x55e/0x770
[ 95.600398][ T6552] vms_complete_munmap_vmas+0x1ca/0x970
[ 95.602653][ T6552] do_vmi_align_munmap+0x43b/0x7d0
[ 95.604596][ T6552] do_vmi_munmap+0x208/0x3e0
[ 95.606590][ T6552] __vm_munmap+0x19a/0x390
[ 95.608284][ T6552] __x64_sys_munmap+0x59/0x80
[ 95.609672][ T6552] do_syscall_64+0xcd/0x260
[ 95.611061][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.612791][ T6552] Modules linked in:
[ 95.613976][ T6552] CPU: 1 UID: 0 PID: 6552 Comm: syz.0.37 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 95.613991][ T6552] Tainted: [B]=BAD_PAGE
[ 95.613995][ T6552] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.614001][ T6552] Call Trace:
[ 95.614005][ T6552]
[ 95.614009][ T6552] dump_stack_lvl+0x16c/0x1f0
[ 95.614023][ T6552] bad_page+0xb3/0x1f0
[ 95.614034][ T6552] ? __pfx_bad_page+0x10/0x10
[ 95.614044][ T6552] ? __mem_cgroup_uncharge+0xda/0x130
[ 95.614058][ T6552] free_tail_page_prepare+0x44f/0x5b0
[ 95.614070][ T6552] __free_frozen_pages+0x96a/0xff0
[ 95.614085][ T6552] __folio_put+0x329/0x450
[ 95.614096][ T6552] ? __pfx___folio_put+0x10/0x10
[ 95.614106][ T6552] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.614117][ T6552] ? rcu_is_watching+0x12/0xc0
[ 95.614129][ T6552] ? lock_release+0x201/0x2f0
[ 95.614143][ T6552] filemap_free_folio+0x132/0x170
[ 95.614154][ T6552] delete_from_page_cache_batch+0x741/0x9b0
[ 95.614166][ T6552] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.614177][ T6552] ? __pfx_workingset_update_node+0x10/0x10
[ 95.614188][ T6552] ? xas_move_index+0xb0/0x110
[ 95.614201][ T6552] truncate_inode_pages_range+0x279/0xe30
[ 95.614216][ T6552] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.614245][ T6552] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.614266][ T6552] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.614286][ T6552] blkdev_flush_mapping+0xfb/0x290
[ 95.614312][ T6552] blkdev_put_whole+0xc4/0xf0
[ 95.614327][ T6552] bdev_release+0x47e/0x6d0
[ 95.614345][ T6552] ? __pfx_blkdev_release+0x10/0x10
[ 95.614363][ T6552] blkdev_release+0x15/0x20
[ 95.614382][ T6552] __fput+0x3ff/0xb70
[ 95.614400][ T6552] task_work_run+0x14d/0x240
[ 95.614417][ T6552] ? __pfx_task_work_run+0x10/0x10
[ 95.614431][ T6552] ? do_raw_spin_unlock+0x172/0x230
[ 95.614444][ T6552] do_exit+0xafb/0x2c30
[ 95.614458][ T6552] ? __pfx_do_exit+0x10/0x10
[ 95.614471][ T6552] ? preempt_schedule_thunk+0x16/0x30
[ 95.614482][ T6552] do_group_exit+0xd3/0x2a0
[ 95.614496][ T6552] __x64_sys_exit_group+0x3e/0x50
[ 95.614511][ T6552] x64_sys_call+0x1530/0x1730
[ 95.614524][ T6552] do_syscall_64+0xcd/0x260
[ 95.614537][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.614547][ T6552] RIP: 0033:0x7fbf3cb8e969
[ 95.614554][ T6552] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 95.614559][ T6552] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 95.614568][ T6552] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 95.614574][ T6552] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 95.614579][ T6552] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 95.614585][ T6552] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000015
[ 95.614590][ T6552] R13: 00000000000927c0 R14: 00000000000172ab R15: 00007fff5c310b00
[ 95.614598][ T6552]
[ 95.614613][ T6552] BUG: Bad page state in process syz.0.37 pfn:42200
[ 95.720202][ T6552] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x42200
[ 95.724005][ T6552] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 95.727485][ T6552] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 95.731180][ T6552] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.734534][ T6552] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.737962][ T6552] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.741595][ T6552] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.745091][ T6552] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.748550][ T6552] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.752185][ T6552] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 95.755198][ T6552] page_owner tracks the page as allocated
[ 95.756995][ T6552] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6552, tgid 6552 (syz.0.37), ts 95430165618, free_ts 77154160398
[ 95.763015][ T6552] post_alloc_hook+0x181/0x1b0
[ 95.764690][ T6552] get_page_from_freelist+0x135c/0x3920
[ 95.766582][ T6552] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.768675][ T6552] alloc_pages_mpol+0x1fb/0x550
[ 95.770592][ T6552] folio_alloc_noprof+0x20/0x2d0
[ 95.772420][ T6552] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.774447][ T6552] page_cache_ra_order+0x4c0/0xd00
[ 95.776301][ T6552] filemap_fault+0x1a5e/0x2740
[ 95.778194][ T6552] __do_fault+0x10a/0x490
[ 95.779910][ T6552] do_pte_missing+0x1a6/0x3fb0
[ 95.781912][ T6552] __handle_mm_fault+0x103d/0x2a40
[ 95.783519][ T6552] handle_mm_fault+0x3fe/0xad0
[ 95.785374][ T6552] do_user_addr_fault+0x60c/0x1370
[ 95.787175][ T6552] exc_page_fault+0x5c/0xc0
[ 95.788547][ T6552] asm_exc_page_fault+0x26/0x30
[ 95.790027][ T6552] page last free pid 6196 tgid 6196 stack trace:
[ 95.792590][ T6552] free_unref_folios+0x999/0x1630
[ 95.794704][ T6552] folios_put_refs+0x56f/0x740
[ 95.796904][ T6552] free_pages_and_swap_cache+0x245/0x4a0
[ 95.799200][ T6552] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 95.801694][ T6552] tlb_finish_mmu+0x168/0x7b0
[ 95.803616][ T6552] vms_clear_ptes+0x55e/0x770
[ 95.805635][ T6552] vms_complete_munmap_vmas+0x1ca/0x970
[ 95.807940][ T6552] do_vmi_align_munmap+0x43b/0x7d0
[ 95.810043][ T6552] do_vmi_munmap+0x208/0x3e0
[ 95.811901][ T6552] __vm_munmap+0x19a/0x390
[ 95.813794][ T6552] __x64_sys_munmap+0x59/0x80
[ 95.815846][ T6552] do_syscall_64+0xcd/0x260
[ 95.817696][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.819842][ T6552] Modules linked in:
[ 95.821345][ T6552] CPU: 2 UID: 0 PID: 6552 Comm: syz.0.37 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 95.821366][ T6552] Tainted: [B]=BAD_PAGE
[ 95.821371][ T6552] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.821379][ T6552] Call Trace:
[ 95.821385][ T6552]
[ 95.821390][ T6552] dump_stack_lvl+0x16c/0x1f0
[ 95.821409][ T6552] bad_page+0xb3/0x1f0
[ 95.821422][ T6552] ? __pfx_bad_page+0x10/0x10
[ 95.821435][ T6552] ? page_bad_reason+0x9d/0x1e0
[ 95.821448][ T6552] __free_frozen_pages+0x76e/0xff0
[ 95.821466][ T6552] __folio_put+0x329/0x450
[ 95.821480][ T6552] ? __pfx___folio_put+0x10/0x10
[ 95.821494][ T6552] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.821509][ T6552] ? rcu_is_watching+0x12/0xc0
[ 95.821523][ T6552] ? lock_release+0x201/0x2f0
[ 95.821542][ T6552] filemap_free_folio+0x132/0x170
[ 95.821555][ T6552] delete_from_page_cache_batch+0x741/0x9b0
[ 95.821570][ T6552] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.821585][ T6552] ? __pfx_workingset_update_node+0x10/0x10
[ 95.821599][ T6552] ? xas_move_index+0xb0/0x110
[ 95.821618][ T6552] truncate_inode_pages_range+0x279/0xe30
[ 95.821636][ T6552] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.821667][ T6552] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.821686][ T6552] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.821703][ T6552] blkdev_flush_mapping+0xfb/0x290
[ 95.821721][ T6552] blkdev_put_whole+0xc4/0xf0
[ 95.821735][ T6552] bdev_release+0x47e/0x6d0
[ 95.821752][ T6552] ? __pfx_blkdev_release+0x10/0x10
[ 95.821767][ T6552] blkdev_release+0x15/0x20
[ 95.821782][ T6552] __fput+0x3ff/0xb70
[ 95.821797][ T6552] task_work_run+0x14d/0x240
[ 95.821812][ T6552] ? __pfx_task_work_run+0x10/0x10
[ 95.821827][ T6552] ? do_raw_spin_unlock+0x172/0x230
[ 95.821845][ T6552] do_exit+0xafb/0x2c30
[ 95.821866][ T6552] ? __pfx_do_exit+0x10/0x10
[ 95.821885][ T6552] ? preempt_schedule_thunk+0x16/0x30
[ 95.821901][ T6552] do_group_exit+0xd3/0x2a0
[ 95.821922][ T6552] __x64_sys_exit_group+0x3e/0x50
[ 95.821943][ T6552] x64_sys_call+0x1530/0x1730
[ 95.821962][ T6552] do_syscall_64+0xcd/0x260
[ 95.821980][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.821997][ T6552] RIP: 0033:0x7fbf3cb8e969
[ 95.822009][ T6552] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 95.822016][ T6552] RSP: 002b:00007fff5c310a48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 95.822031][ T6552] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fbf3cb8e969
[ 95.822041][ T6552] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 95.822049][ T6552] RBP: 00007fff5c310aac R08: 000000165c310b3f R09: 00000000000927c0
[ 95.822058][ T6552] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000015
[ 95.822067][ T6552] R13: 00000000000927c0 R14: 00000000000172ab R15: 00007fff5c310b00
[ 95.822079][ T6552]
[ 95.935325][ T6555] BUG: Bad page state in process syz.0.38 pfn:3e201
[ 95.937305][ T6555] page does not match folio
[ 95.938663][ T6555] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3e201
[ 95.941664][ T6555] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 95.943785][ T6555] raw: 00fff00000000000 ffffea0000f88000 00000000ffffffff ffffffffffffffff
[ 95.946610][ T6555] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.949431][ T6555] page dumped because: nonzero pincount
[ 95.951337][ T6555] page_owner tracks the page as allocated
[ 95.953365][ T6555] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6554, tgid 6554 (syz.0.38), ts 95916882565, free_ts 95001272384
[ 95.960088][ T6555] post_alloc_hook+0x181/0x1b0
[ 95.961895][ T6555] get_page_from_freelist+0x135c/0x3920
[ 95.963916][ T6555] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.966693][ T6555] alloc_pages_mpol+0x1fb/0x550
[ 95.968792][ T6555] folio_alloc_noprof+0x20/0x2d0
[ 95.970330][ T6555] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.972163][ T6555] page_cache_ra_order+0x4c0/0xd00
[ 95.974228][ T6555] filemap_fault+0x1a5e/0x2740
[ 95.976222][ T6555] __do_fault+0x10a/0x490
[ 95.977910][ T6555] do_pte_missing+0x1a6/0x3fb0
[ 95.979336][ T6555] __handle_mm_fault+0x103d/0x2a40
[ 95.980829][ T6555] handle_mm_fault+0x3fe/0xad0
[ 95.982278][ T6555] do_user_addr_fault+0x60c/0x1370
[ 95.983762][ T6555] exc_page_fault+0x5c/0xc0
[ 95.985346][ T6555] asm_exc_page_fault+0x26/0x30
[ 95.987204][ T6555] page last free pid 6549 tgid 6548 stack trace:
[ 95.989543][ T6555] free_unref_folios+0x999/0x1630
[ 95.991140][ T6555] folios_put_refs+0x56f/0x740
[ 95.992599][ T6555] truncate_inode_pages_range+0x311/0xe30
[ 95.994314][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 95.995898][ T6555] blkdev_put_whole+0xc4/0xf0
[ 95.997302][ T6555] bdev_release+0x47e/0x6d0
[ 95.998655][ T6555] blkdev_release+0x15/0x20
[ 96.000012][ T6555] __fput+0x3ff/0xb70
[ 96.001233][ T6555] task_work_run+0x14d/0x240
[ 96.002832][ T6555] do_exit+0xafb/0x2c30
[ 96.004158][ T6555] do_group_exit+0xd3/0x2a0
[ 96.005657][ T6555] get_signal+0x2673/0x26d0
[ 96.007019][ T6555] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.008642][ T6555] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.010340][ T6555] do_syscall_64+0xda/0x260
[ 96.011733][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.013497][ T6555] Modules linked in:
[ 96.014662][ T6555] CPU: 0 UID: 0 PID: 6555 Comm: syz.0.38 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 96.014677][ T6555] Tainted: [B]=BAD_PAGE
[ 96.014681][ T6555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.014687][ T6555] Call Trace:
[ 96.014691][ T6555]
[ 96.014695][ T6555] dump_stack_lvl+0x16c/0x1f0
[ 96.014710][ T6555] bad_page+0xb3/0x1f0
[ 96.014733][ T6555] ? __pfx_bad_page+0x10/0x10
[ 96.014743][ T6555] ? __mem_cgroup_uncharge+0xda/0x130
[ 96.014755][ T6555] free_tail_page_prepare+0x44f/0x5b0
[ 96.014768][ T6555] __free_frozen_pages+0x96a/0xff0
[ 96.014783][ T6555] __folio_put+0x329/0x450
[ 96.014793][ T6555] ? __pfx___folio_put+0x10/0x10
[ 96.014804][ T6555] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.014816][ T6555] ? rcu_is_watching+0x12/0xc0
[ 96.014828][ T6555] ? lock_release+0x201/0x2f0
[ 96.014842][ T6555] filemap_free_folio+0x132/0x170
[ 96.014853][ T6555] delete_from_page_cache_batch+0x741/0x9b0
[ 96.014864][ T6555] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.014876][ T6555] ? __pfx_workingset_update_node+0x10/0x10
[ 96.014888][ T6555] truncate_inode_pages_range+0x279/0xe30
[ 96.014903][ T6555] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.014927][ T6555] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.014943][ T6555] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.014957][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 96.014968][ T6555] ? filemap_check_errors+0xa9/0x160
[ 96.014983][ T6555] blkdev_put_whole+0xc4/0xf0
[ 96.014993][ T6555] bdev_release+0x47e/0x6d0
[ 96.015006][ T6555] ? __pfx_blkdev_release+0x10/0x10
[ 96.015018][ T6555] blkdev_release+0x15/0x20
[ 96.015029][ T6555] __fput+0x3ff/0xb70
[ 96.015041][ T6555] task_work_run+0x14d/0x240
[ 96.015052][ T6555] ? __pfx_task_work_run+0x10/0x10
[ 96.015062][ T6555] ? do_raw_spin_unlock+0x172/0x230
[ 96.015072][ T6555] do_exit+0xafb/0x2c30
[ 96.015086][ T6555] ? __pfx_futex_wake_mark+0x10/0x10
[ 96.015102][ T6555] ? __pfx_do_exit+0x10/0x10
[ 96.015115][ T6555] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.015124][ T6555] ? get_signal+0x8f5/0x26d0
[ 96.015136][ T6555] ? rcu_is_watching+0x12/0xc0
[ 96.015147][ T6555] do_group_exit+0xd3/0x2a0
[ 96.015161][ T6555] get_signal+0x2673/0x26d0
[ 96.015175][ T6555] ? __pfx_get_signal+0x10/0x10
[ 96.015186][ T6555] ? do_futex+0x122/0x350
[ 96.015198][ T6555] ? __pfx_do_futex+0x10/0x10
[ 96.015211][ T6555] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.015225][ T6555] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.015240][ T6555] ? __pfx_do_preadv+0x10/0x10
[ 96.015252][ T6555] ? madvise_unlock+0xc6/0x190
[ 96.015264][ T6555] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.015277][ T6555] do_syscall_64+0xda/0x260
[ 96.015291][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.015300][ T6555] RIP: 0033:0x7fbf3cb8e969
[ 96.015308][ T6555] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 96.015312][ T6555] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.015321][ T6555] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 96.015327][ T6555] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 96.015332][ T6555] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 96.015338][ T6555] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 96.015343][ T6555] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 96.015351][ T6555]
[ 96.128626][ T6555] BUG: Bad page state in process syz.0.38 pfn:3e200
[ 96.131187][ T6555] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3e200
[ 96.134436][ T6555] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 96.137223][ T6555] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 96.139858][ T6555] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.142365][ T6555] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.144898][ T6555] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.147415][ T6555] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.149936][ T6555] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.152451][ T6555] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.155354][ T6555] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 96.157487][ T6555] page_owner tracks the page as allocated
[ 96.159177][ T6555] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6554, tgid 6554 (syz.0.38), ts 95916882565, free_ts 95001272384
[ 96.165800][ T6555] post_alloc_hook+0x181/0x1b0
[ 96.167238][ T6555] get_page_from_freelist+0x135c/0x3920
[ 96.168874][ T6555] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.170657][ T6555] alloc_pages_mpol+0x1fb/0x550
[ 96.172130][ T6555] folio_alloc_noprof+0x20/0x2d0
[ 96.173605][ T6555] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.175346][ T6555] page_cache_ra_order+0x4c0/0xd00
[ 96.176843][ T6555] filemap_fault+0x1a5e/0x2740
[ 96.178281][ T6555] __do_fault+0x10a/0x490
[ 96.179547][ T6555] do_pte_missing+0x1a6/0x3fb0
[ 96.180968][ T6555] __handle_mm_fault+0x103d/0x2a40
[ 96.182499][ T6555] handle_mm_fault+0x3fe/0xad0
[ 96.183946][ T6555] do_user_addr_fault+0x60c/0x1370
[ 96.185596][ T6555] exc_page_fault+0x5c/0xc0
[ 96.187106][ T6555] asm_exc_page_fault+0x26/0x30
[ 96.189113][ T6555] page last free pid 6549 tgid 6548 stack trace:
[ 96.191601][ T6555] free_unref_folios+0x999/0x1630
[ 96.193648][ T6555] folios_put_refs+0x56f/0x740
[ 96.195883][ T6555] truncate_inode_pages_range+0x311/0xe30
[ 96.198174][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 96.200206][ T6555] blkdev_put_whole+0xc4/0xf0
[ 96.202551][ T6555] bdev_release+0x47e/0x6d0
[ 96.204325][ T6555] blkdev_release+0x15/0x20
[ 96.206201][ T6555] __fput+0x3ff/0xb70
[ 96.207793][ T6555] task_work_run+0x14d/0x240
[ 96.209655][ T6555] do_exit+0xafb/0x2c30
[ 96.211354][ T6555] do_group_exit+0xd3/0x2a0
[ 96.213282][ T6555] get_signal+0x2673/0x26d0
[ 96.215307][ T6555] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.217533][ T6555] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.219754][ T6555] do_syscall_64+0xda/0x260
[ 96.221604][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.223898][ T6555] Modules linked in:
[ 96.225633][ T6555] CPU: 2 UID: 0 PID: 6555 Comm: syz.0.38 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 96.225659][ T6555] Tainted: [B]=BAD_PAGE
[ 96.225664][ T6555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.225675][ T6555] Call Trace:
[ 96.225681][ T6555]
[ 96.225687][ T6555] dump_stack_lvl+0x16c/0x1f0
[ 96.225719][ T6555] bad_page+0xb3/0x1f0
[ 96.225737][ T6555] ? __pfx_bad_page+0x10/0x10
[ 96.225754][ T6555] ? page_bad_reason+0x9d/0x1e0
[ 96.225771][ T6555] __free_frozen_pages+0x76e/0xff0
[ 96.225795][ T6555] __folio_put+0x329/0x450
[ 96.225812][ T6555] ? __pfx___folio_put+0x10/0x10
[ 96.225830][ T6555] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.225849][ T6555] ? rcu_is_watching+0x12/0xc0
[ 96.225868][ T6555] ? lock_release+0x201/0x2f0
[ 96.225891][ T6555] filemap_free_folio+0x132/0x170
[ 96.225908][ T6555] delete_from_page_cache_batch+0x741/0x9b0
[ 96.225928][ T6555] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.225947][ T6555] ? __pfx_workingset_update_node+0x10/0x10
[ 96.225967][ T6555] truncate_inode_pages_range+0x279/0xe30
[ 96.225991][ T6555] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.226029][ T6555] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.226054][ T6555] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.226077][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 96.226095][ T6555] ? filemap_check_errors+0xa9/0x160
[ 96.226117][ T6555] blkdev_put_whole+0xc4/0xf0
[ 96.226134][ T6555] bdev_release+0x47e/0x6d0
[ 96.226154][ T6555] ? __pfx_blkdev_release+0x10/0x10
[ 96.226173][ T6555] blkdev_release+0x15/0x20
[ 96.226192][ T6555] __fput+0x3ff/0xb70
[ 96.226212][ T6555] task_work_run+0x14d/0x240
[ 96.226228][ T6555] ? __pfx_task_work_run+0x10/0x10
[ 96.226245][ T6555] ? do_raw_spin_unlock+0x172/0x230
[ 96.226262][ T6555] do_exit+0xafb/0x2c30
[ 96.226284][ T6555] ? __pfx_futex_wake_mark+0x10/0x10
[ 96.226309][ T6555] ? __pfx_do_exit+0x10/0x10
[ 96.226331][ T6555] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.226346][ T6555] ? get_signal+0x8f5/0x26d0
[ 96.226365][ T6555] ? rcu_is_watching+0x12/0xc0
[ 96.226384][ T6555] do_group_exit+0xd3/0x2a0
[ 96.226408][ T6555] get_signal+0x2673/0x26d0
[ 96.226429][ T6555] ? __pfx_get_signal+0x10/0x10
[ 96.226446][ T6555] ? do_futex+0x122/0x350
[ 96.226464][ T6555] ? __pfx_do_futex+0x10/0x10
[ 96.226481][ T6555] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.226500][ T6555] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.226521][ T6555] ? __pfx_do_preadv+0x10/0x10
[ 96.226538][ T6555] ? madvise_unlock+0xc6/0x190
[ 96.226556][ T6555] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.226579][ T6555] do_syscall_64+0xda/0x260
[ 96.226597][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.226613][ T6555] RIP: 0033:0x7fbf3cb8e969
[ 96.226625][ T6555] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 96.226631][ T6555] RSP: 002b:00007fbf3d9570e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.226646][ T6555] RAX: fffffffffffffe00 RBX: 00007fbf3cdb5fa8 RCX: 00007fbf3cb8e969
[ 96.226656][ T6555] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb5fa8
[ 96.226665][ T6555] RBP: 00007fbf3cdb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 96.226674][ T6555] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb5fac
[ 96.226683][ T6555] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 96.226695][ T6555]
[ 96.385171][ T6559] BUG: Bad page state in process syz.0.39 pfn:52c01
[ 96.387171][ T6559] page does not match folio
[ 96.388519][ T6559] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52c01
[ 96.391530][ T6559] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 96.393757][ T6559] raw: 00fff00000000000 ffffea00014b0000 00000000ffffffff ffffffffffffffff
[ 96.396447][ T6559] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.398991][ T6559] page dumped because: nonzero pincount
[ 96.400619][ T6559] page_owner tracks the page as allocated
[ 96.402368][ T6559] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6556, tgid 6556 (syz.0.39), ts 96367254855, free_ts 0
[ 96.408160][ T6559] post_alloc_hook+0x181/0x1b0
[ 96.409703][ T6559] get_page_from_freelist+0x135c/0x3920
[ 96.411671][ T6559] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.413542][ T6559] alloc_pages_mpol+0x1fb/0x550
[ 96.415132][ T6559] folio_alloc_noprof+0x20/0x2d0
[ 96.416936][ T6559] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.418966][ T6559] page_cache_ra_order+0x4c0/0xd00
[ 96.420792][ T6559] filemap_fault+0x1a5e/0x2740
[ 96.422459][ T6559] __do_fault+0x10a/0x490
[ 96.424008][ T6559] do_pte_missing+0x1a6/0x3fb0
[ 96.425689][ T6559] __handle_mm_fault+0x103d/0x2a40
[ 96.427472][ T6559] handle_mm_fault+0x3fe/0xad0
[ 96.428921][ T6559] do_user_addr_fault+0x60c/0x1370
[ 96.430466][ T6559] exc_page_fault+0x5c/0xc0
[ 96.431900][ T6559] asm_exc_page_fault+0x26/0x30
[ 96.433431][ T6559] page_owner free stack trace missing
[ 96.435169][ T6559] Modules linked in:
[ 96.436380][ T6559] CPU: 3 UID: 0 PID: 6559 Comm: syz.0.39 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 96.436396][ T6559] Tainted: [B]=BAD_PAGE
[ 96.436399][ T6559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.436405][ T6559] Call Trace:
[ 96.436409][ T6559]
[ 96.436413][ T6559] dump_stack_lvl+0x16c/0x1f0
[ 96.436427][ T6559] bad_page+0xb3/0x1f0
[ 96.436438][ T6559] ? __pfx_bad_page+0x10/0x10
[ 96.436448][ T6559] ? __mem_cgroup_uncharge+0xda/0x130
[ 96.436461][ T6559] free_tail_page_prepare+0x44f/0x5b0
[ 96.436474][ T6559] __free_frozen_pages+0x96a/0xff0
[ 96.436489][ T6559] __folio_put+0x329/0x450
[ 96.436500][ T6559] ? __pfx___folio_put+0x10/0x10
[ 96.436511][ T6559] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.436522][ T6559] ? rcu_is_watching+0x12/0xc0
[ 96.436534][ T6559] ? lock_release+0x201/0x2f0
[ 96.436549][ T6559] filemap_free_folio+0x132/0x170
[ 96.436559][ T6559] delete_from_page_cache_batch+0x741/0x9b0
[ 96.436571][ T6559] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.436583][ T6559] ? __pfx_workingset_update_node+0x10/0x10
[ 96.436594][ T6559] ? xas_move_index+0xb0/0x110
[ 96.436608][ T6559] truncate_inode_pages_range+0x279/0xe30
[ 96.436622][ T6559] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.436644][ T6559] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.436659][ T6559] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.436673][ T6559] blkdev_flush_mapping+0xfb/0x290
[ 96.436686][ T6559] ? filemap_check_errors+0xa9/0x160
[ 96.436700][ T6559] blkdev_put_whole+0xc4/0xf0
[ 96.436710][ T6559] bdev_release+0x47e/0x6d0
[ 96.436723][ T6559] ? __pfx_blkdev_release+0x10/0x10
[ 96.436735][ T6559] blkdev_release+0x15/0x20
[ 96.436747][ T6559] __fput+0x3ff/0xb70
[ 96.436758][ T6559] task_work_run+0x14d/0x240
[ 96.436768][ T6559] ? __pfx_task_work_run+0x10/0x10
[ 96.436779][ T6559] ? do_raw_spin_unlock+0x172/0x230
[ 96.436789][ T6559] do_exit+0xafb/0x2c30
[ 96.436803][ T6559] ? __pfx_futex_wake_mark+0x10/0x10
[ 96.436819][ T6559] ? __pfx_do_exit+0x10/0x10
[ 96.436832][ T6559] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.436842][ T6559] ? get_signal+0x8f5/0x26d0
[ 96.436873][ T6559] ? rcu_is_watching+0x12/0xc0
[ 96.436889][ T6559] do_group_exit+0xd3/0x2a0
[ 96.436907][ T6559] get_signal+0x2673/0x26d0
[ 96.436918][ T6559] ? __pfx_madvise_walk_vmas+0x10/0x10
[ 96.436929][ T6559] ? lock_release+0x201/0x2f0
[ 96.436943][ T6559] ? __pfx_get_signal+0x10/0x10
[ 96.436955][ T6559] ? do_futex+0x122/0x350
[ 96.436968][ T6559] ? __pfx_do_futex+0x10/0x10
[ 96.436981][ T6559] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.436995][ T6559] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.437009][ T6559] ? madvise_unlock+0xc6/0x190
[ 96.437020][ T6559] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.437035][ T6559] do_syscall_64+0xda/0x260
[ 96.437053][ T6559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.437064][ T6559] RIP: 0033:0x7fbf3cb8e969
[ 96.437071][ T6559] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 96.437075][ T6559] RSP: 002b:00007fbf3d9150e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.437085][ T6559] RAX: fffffffffffffe00 RBX: 00007fbf3cdb6168 RCX: 00007fbf3cb8e969
[ 96.437091][ T6559] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb6168
[ 96.437097][ T6559] RBP: 00007fbf3cdb6160 R08: 0000000000000000 R09: 0000000000000000
[ 96.437102][ T6559] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb616c
[ 96.437108][ T6559] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 96.437116][ T6559]
[ 96.437131][ T6559] BUG: Bad page state in process syz.0.39 pfn:52c00
[ 96.554358][ T6559] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52c00
[ 96.557657][ T6559] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 96.560915][ T6559] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 96.564250][ T6559] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.571593][ T6559] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.574687][ T6559] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.577911][ T6559] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.581000][ T6559] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.583565][ T6559] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.586497][ T6559] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 96.588694][ T6559] page_owner tracks the page as allocated
[ 96.590394][ T6559] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6556, tgid 6556 (syz.0.39), ts 96367254855, free_ts 0
[ 96.595932][ T6559] post_alloc_hook+0x181/0x1b0
[ 96.597400][ T6559] get_page_from_freelist+0x135c/0x3920
[ 96.599045][ T6559] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.600785][ T6559] alloc_pages_mpol+0x1fb/0x550
[ 96.602317][ T6559] folio_alloc_noprof+0x20/0x2d0
[ 96.603784][ T6559] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.605527][ T6559] page_cache_ra_order+0x4c0/0xd00
[ 96.607144][ T6559] filemap_fault+0x1a5e/0x2740
[ 96.608575][ T6559] __do_fault+0x10a/0x490
[ 96.610109][ T6559] do_pte_missing+0x1a6/0x3fb0
[ 96.611945][ T6559] __handle_mm_fault+0x103d/0x2a40
[ 96.613878][ T6559] handle_mm_fault+0x3fe/0xad0
[ 96.615754][ T6559] do_user_addr_fault+0x60c/0x1370
[ 96.617555][ T6559] exc_page_fault+0x5c/0xc0
[ 96.619067][ T6559] asm_exc_page_fault+0x26/0x30
[ 96.620691][ T6559] page_owner free stack trace missing
[ 96.622627][ T6559] Modules linked in:
[ 96.623935][ T6559] CPU: 3 UID: 0 PID: 6559 Comm: syz.0.39 Tainted: G B 6.15.0-rc5-syzkaller-gcd802e7e5f1e #0 PREEMPT(full)
[ 96.623951][ T6559] Tainted: [B]=BAD_PAGE
[ 96.623954][ T6559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.623960][ T6559] Call Trace:
[ 96.623968][ T6559]
[ 96.623973][ T6559] dump_stack_lvl+0x16c/0x1f0
[ 96.623990][ T6559] bad_page+0xb3/0x1f0
[ 96.624001][ T6559] ? __pfx_bad_page+0x10/0x10
[ 96.624011][ T6559] ? page_bad_reason+0x9d/0x1e0
[ 96.624021][ T6559] __free_frozen_pages+0x76e/0xff0
[ 96.624036][ T6559] __folio_put+0x329/0x450
[ 96.624047][ T6559] ? __pfx___folio_put+0x10/0x10
[ 96.624059][ T6559] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.624070][ T6559] ? rcu_is_watching+0x12/0xc0
[ 96.624083][ T6559] ? lock_release+0x201/0x2f0
[ 96.624097][ T6559] filemap_free_folio+0x132/0x170
[ 96.624108][ T6559] delete_from_page_cache_batch+0x741/0x9b0
[ 96.624120][ T6559] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.624131][ T6559] ? __pfx_workingset_update_node+0x10/0x10
[ 96.624142][ T6559] ? xas_move_index+0xb0/0x110
[ 96.624155][ T6559] truncate_inode_pages_range+0x279/0xe30
[ 96.624170][ T6559] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.624191][ T6559] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.624207][ T6559] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.624221][ T6559] blkdev_flush_mapping+0xfb/0x290
[ 96.624232][ T6559] ? filemap_check_errors+0xa9/0x160
[ 96.624246][ T6559] blkdev_put_whole+0xc4/0xf0
[ 96.624257][ T6559] bdev_release+0x47e/0x6d0
[ 96.624270][ T6559] ? __pfx_blkdev_release+0x10/0x10
[ 96.624282][ T6559] blkdev_release+0x15/0x20
[ 96.624303][ T6559] __fput+0x3ff/0xb70
[ 96.624319][ T6559] task_work_run+0x14d/0x240
[ 96.624330][ T6559] ? __pfx_task_work_run+0x10/0x10
[ 96.624340][ T6559] ? do_raw_spin_unlock+0x172/0x230
[ 96.624351][ T6559] do_exit+0xafb/0x2c30
[ 96.624364][ T6559] ? __pfx_futex_wake_mark+0x10/0x10
[ 96.624380][ T6559] ? __pfx_do_exit+0x10/0x10
[ 96.624393][ T6559] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.624403][ T6559] ? get_signal+0x8f5/0x26d0
[ 96.624414][ T6559] ? rcu_is_watching+0x12/0xc0
[ 96.624425][ T6559] do_group_exit+0xd3/0x2a0
[ 96.624440][ T6559] get_signal+0x2673/0x26d0
[ 96.624452][ T6559] ? __pfx_madvise_walk_vmas+0x10/0x10
[ 96.624463][ T6559] ? lock_release+0x201/0x2f0
[ 96.624477][ T6559] ? __pfx_get_signal+0x10/0x10
[ 96.624488][ T6559] ? do_futex+0x122/0x350
[ 96.624501][ T6559] ? __pfx_do_futex+0x10/0x10
[ 96.624513][ T6559] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.624528][ T6559] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.624542][ T6559] ? madvise_unlock+0xc6/0x190
[ 96.624553][ T6559] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.624568][ T6559] do_syscall_64+0xda/0x260
[ 96.624581][ T6559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.624591][ T6559] RIP: 0033:0x7fbf3cb8e969
[ 96.624599][ T6559] Code: Unable to access opcode bytes at 0x7fbf3cb8e93f.
[ 96.624603][ T6559] RSP: 002b:00007fbf3d9150e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.624613][ T6559] RAX: fffffffffffffe00 RBX: 00007fbf3cdb6168 RCX: 00007fbf3cb8e969
[ 96.624619][ T6559] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fbf3cdb6168
[ 96.624624][ T6559] RBP: 00007fbf3cdb6160 R08: 0000000000000000 R09: 0000000000000000
[ 96.624633][ T6559] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fbf3cdb616c
[ 96.624641][ T6559] R13: 0000000000000000 R14: 00007fff5c310600 R15: 00007fff5c3106e8
[ 96.624652][ T6559]