Warning: Permanently added '[localhost]:12776' (ED25519) to the list of known hosts.
2025/05/02 03:46:58 ignoring optional flag "sandboxArg"="0"
2025/05/02 03:46:59 parsed 1 programs
[ 81.999228][ T40] audit: type=1400 audit(1746157621.405:144): avc: denied { unlink } for pid=6205 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 83.165678][ T6205] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 85.246414][ T40] audit: type=1401 audit(1746157624.645:145): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 85.414989][ T5284] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 85.420705][ T5284] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 85.424208][ T5284] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 85.428275][ T5284] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 85.435467][ T5284] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 85.939153][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 85.942412][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 85.963017][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 85.966270][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 86.569073][ T57] cfg80211: failed to load regulatory.db
[ 87.355864][ T6328] chnl_net:caif_netlink_parms(): no params data found
[ 87.443427][ T6328] bridge0: port 1(bridge_slave_0) entered blocking state
[ 87.445722][ T6328] bridge0: port 1(bridge_slave_0) entered disabled state
[ 87.448422][ T6328] bridge_slave_0: entered allmulticast mode
[ 87.451145][ T6328] bridge_slave_0: entered promiscuous mode
[ 87.454583][ T6328] bridge0: port 2(bridge_slave_1) entered blocking state
[ 87.456841][ T6328] bridge0: port 2(bridge_slave_1) entered disabled state
[ 87.459132][ T6328] bridge_slave_1: entered allmulticast mode
[ 87.461760][ T6328] bridge_slave_1: entered promiscuous mode
[ 87.494084][ T6328] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 87.503370][ T6328] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 87.539666][ T6328] team0: Port device team_slave_0 added
[ 87.544608][ T6328] team0: Port device team_slave_1 added
[ 87.592145][ T6328] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 87.595083][ T6328] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 87.607428][ T6328] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 87.614540][ T6328] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 87.616757][ T6328] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 87.624725][ T6328] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 87.663178][ T6328] hsr_slave_0: entered promiscuous mode
[ 87.665402][ T6328] hsr_slave_1: entered promiscuous mode
[ 88.218928][ T6328] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 88.224182][ T6328] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 88.233902][ T6328] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 88.239545][ T6328] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 88.288864][ T6328] 8021q: adding VLAN 0 to HW filter on device bond0
[ 88.298324][ T6328] 8021q: adding VLAN 0 to HW filter on device team0
[ 88.303749][ T83] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.306245][ T83] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 88.312984][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.315291][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 88.342880][ T6328] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 88.346124][ T6328] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 88.466494][ T6328] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 88.502612][ T6328] veth0_vlan: entered promiscuous mode
[ 88.512457][ T6328] veth1_vlan: entered promiscuous mode
[ 88.532411][ T6328] veth0_macvtap: entered promiscuous mode
[ 88.538085][ T6328] veth1_macvtap: entered promiscuous mode
[ 88.551881][ T6328] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 88.560198][ T6328] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 88.566687][ T6328] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.572301][ T6328] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.575885][ T6328] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.579671][ T6328] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.672095][ T102] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 88.732311][ T102] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 88.811278][ T102] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 88.903355][ T102] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/05/02 03:47:08 executed programs: 0
[ 89.163371][ T6041] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 89.166133][ T6041] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 89.170834][ T6041] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 89.173743][ T6041] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 89.177802][ T6041] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 89.318151][ T6411] chnl_net:caif_netlink_parms(): no params data found
[ 89.404499][ T6411] bridge0: port 1(bridge_slave_0) entered blocking state
[ 89.407775][ T6411] bridge0: port 1(bridge_slave_0) entered disabled state
[ 89.410135][ T6411] bridge_slave_0: entered allmulticast mode
[ 89.412921][ T6411] bridge_slave_0: entered promiscuous mode
[ 89.416790][ T6411] bridge0: port 2(bridge_slave_1) entered blocking state
[ 89.420395][ T6411] bridge0: port 2(bridge_slave_1) entered disabled state
[ 89.423044][ T6411] bridge_slave_1: entered allmulticast mode
[ 89.425790][ T6411] bridge_slave_1: entered promiscuous mode
[ 89.476558][ T6411] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 89.483836][ T6411] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 89.542818][ T6411] team0: Port device team_slave_0 added
[ 89.547825][ T6411] team0: Port device team_slave_1 added
[ 89.604240][ T6411] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 89.607123][ T6411] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 89.618071][ T6411] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 89.626803][ T6411] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 89.630132][ T6411] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 89.640646][ T6411] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 89.709470][ T6411] hsr_slave_0: entered promiscuous mode
[ 89.712622][ T6411] hsr_slave_1: entered promiscuous mode
[ 89.715529][ T6411] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 89.722535][ T6411] Cannot create hsr debugfs directory
[ 91.208080][ T6041] Bluetooth: hci0: command tx timeout
[ 91.904367][ T102] bridge_slave_1: left allmulticast mode
[ 91.906825][ T102] bridge_slave_1: left promiscuous mode
[ 91.909451][ T102] bridge0: port 2(bridge_slave_1) entered disabled state
[ 91.915079][ T102] bridge_slave_0: left allmulticast mode
[ 91.917847][ T102] bridge_slave_0: left promiscuous mode
[ 91.920321][ T102] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.160907][ T102] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 92.166531][ T102] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 92.171593][ T102] bond0 (unregistering): Released all slaves
[ 92.311647][ T102] hsr_slave_0: left promiscuous mode
[ 92.313880][ T102] hsr_slave_1: left promiscuous mode
[ 92.315979][ T102] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 92.318427][ T102] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 92.321151][ T102] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 92.324069][ T102] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 92.339544][ T102] veth1_macvtap: left promiscuous mode
[ 92.342239][ T102] veth0_macvtap: left promiscuous mode
[ 92.344478][ T102] veth1_vlan: left promiscuous mode
[ 92.346645][ T102] veth0_vlan: left promiscuous mode
[ 92.842055][ T102] team0 (unregistering): Port device team_slave_1 removed
[ 92.899381][ T102] team0 (unregistering): Port device team_slave_0 removed
[ 93.287401][ T6041] Bluetooth: hci0: command tx timeout
[ 93.758794][ T6411] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 93.765526][ T6411] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 93.769616][ T6411] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 93.773730][ T6411] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 93.816818][ T6411] 8021q: adding VLAN 0 to HW filter on device bond0
[ 93.826842][ T6411] 8021q: adding VLAN 0 to HW filter on device team0
[ 93.832312][ T64] bridge0: port 1(bridge_slave_0) entered blocking state
[ 93.835406][ T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 93.844282][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 93.847474][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 94.002645][ T6411] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 94.042491][ T6411] veth0_vlan: entered promiscuous mode
[ 94.050380][ T6411] veth1_vlan: entered promiscuous mode
[ 94.070603][ T6411] veth0_macvtap: entered promiscuous mode
[ 94.074140][ T6411] veth1_macvtap: entered promiscuous mode
[ 94.091131][ T6411] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 94.101033][ T6411] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 94.106976][ T6411] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.113213][ T6411] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.116791][ T6411] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.120533][ T6411] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.161002][ T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 94.163581][ T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 94.185012][ T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 94.187527][ T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/05/02 03:47:13 executed programs: 2
[ 94.242956][ T40] audit: type=1400 audit(1746157633.645:146): avc: denied { read write } for pid=6527 comm="syz.0.16" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 94.252589][ T40] audit: type=1400 audit(1746157633.645:147): avc: denied { open } for pid=6527 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 94.262254][ T40] audit: type=1400 audit(1746157633.645:148): avc: denied { map } for pid=6527 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 94.271895][ T40] audit: type=1400 audit(1746157633.645:149): avc: denied { execute } for pid=6527 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 94.281680][ T40] audit: type=1400 audit(1746157633.645:150): avc: denied { create } for pid=6527 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 94.289820][ T40] audit: type=1400 audit(1746157633.655:151): avc: denied { bind } for pid=6527 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 94.294406][ T6527] BUG: Bad page state in process syz.0.16 pfn:4e001
[ 94.297993][ T40] audit: type=1400 audit(1746157633.655:152): avc: denied { write } for pid=6527 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 94.299797][ T6527] page does not match folio
[ 94.299804][ T6527] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4e001
[ 94.317764][ T6527] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 94.320927][ T6527] raw: 00fff00000000000 ffffea0001380000 00000000ffffffff ffffffffffffffff
[ 94.324535][ T6527] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.328370][ T6527] page dumped because: nonzero pincount
[ 94.330728][ T6527] page_owner tracks the page as allocated
[ 94.333224][ T6527] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6527, tgid 6527 (syz.0.16), ts 94244842343, free_ts 59432072975
[ 94.341986][ T6527] post_alloc_hook+0x181/0x1b0
[ 94.343557][ T6527] get_page_from_freelist+0x135c/0x3920
[ 94.345298][ T6527] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.347214][ T6527] alloc_pages_mpol+0x1fb/0x550
[ 94.350635][ T6527] folio_alloc_noprof+0x20/0x2d0
[ 94.352282][ T6527] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.353993][ T6527] page_cache_ra_order+0x4c0/0xd00
[ 94.355891][ T6527] filemap_fault+0x1a5e/0x2740
[ 94.358150][ T6527] __do_fault+0x10a/0x490
[ 94.360002][ T6527] do_pte_missing+0x1a6/0x3fb0
[ 94.362023][ T6527] __handle_mm_fault+0x103d/0x2a40
[ 94.364205][ T6527] handle_mm_fault+0x3fe/0xad0
[ 94.366223][ T6527] do_user_addr_fault+0x60c/0x1370
[ 94.369262][ T6527] exc_page_fault+0x5c/0xc0
[ 94.371227][ T6527] asm_exc_page_fault+0x26/0x30
[ 94.373254][ T6527] page last free pid 6022 tgid 6022 stack trace:
[ 94.375802][ T6527] __free_frozen_pages+0x69d/0xff0
[ 94.378455][ T6527] vfree+0x176/0x960
[ 94.380122][ T6527] kcov_close+0x34/0x60
[ 94.381877][ T6527] __fput+0x3ff/0xb70
[ 94.383533][ T6527] task_work_run+0x14d/0x240
[ 94.385468][ T6527] do_exit+0xafb/0x2c30
[ 94.387137][ T6527] do_group_exit+0xd3/0x2a0
[ 94.389845][ T6527] get_signal+0x2673/0x26d0
[ 94.391347][ T6527] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.393105][ T6527] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.395212][ T6527] do_syscall_64+0xda/0x260
[ 94.397113][ T6527] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.400173][ T6527] Modules linked in:
[ 94.401753][ T6527] CPU: 3 UID: 0 PID: 6527 Comm: syz.0.16 Not tainted 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 94.401775][ T6527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.401785][ T6527] Call Trace:
[ 94.401791][ T6527]
[ 94.401797][ T6527] dump_stack_lvl+0x16c/0x1f0
[ 94.401812][ T6527] bad_page+0xb3/0x1f0
[ 94.401824][ T6527] ? __pfx_bad_page+0x10/0x10
[ 94.401835][ T6527] ? __mem_cgroup_uncharge+0xda/0x130
[ 94.401848][ T6527] free_tail_page_prepare+0x44f/0x5b0
[ 94.401863][ T6527] __free_frozen_pages+0x96a/0xff0
[ 94.401877][ T6527] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 94.401890][ T6527] __folio_put+0x329/0x450
[ 94.401901][ T6527] ? __pfx___folio_put+0x10/0x10
[ 94.401913][ T6527] ? find_held_lock+0x2b/0x80
[ 94.401925][ T6527] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.401938][ T6527] ? mark_held_locks+0x49/0x80
[ 94.401953][ T6527] filemap_free_folio+0x132/0x170
[ 94.401965][ T6527] delete_from_page_cache_batch+0x741/0x9b0
[ 94.401979][ T6527] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.401992][ T6527] ? __pfx_workingset_update_node+0x10/0x10
[ 94.402007][ T6527] truncate_inode_pages_range+0x279/0xe30
[ 94.402024][ T6527] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.402048][ T6527] ? __lock_acquire+0xaa4/0x1ba0
[ 94.402075][ T6527] ? __pfx_down_write+0x10/0x10
[ 94.402088][ T6527] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.402104][ T6527] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.402120][ T6527] blkdev_flush_mapping+0xe9/0x280
[ 94.402134][ T6527] blkdev_put_whole+0xc4/0xf0
[ 94.402145][ T6527] bdev_release+0x47e/0x6d0
[ 94.402160][ T6527] ? __pfx_blkdev_release+0x10/0x10
[ 94.402172][ T6527] blkdev_release+0x15/0x20
[ 94.402184][ T6527] __fput+0x3ff/0xb70
[ 94.402198][ T6527] task_work_run+0x14d/0x240
[ 94.402209][ T6527] ? __pfx_task_work_run+0x10/0x10
[ 94.402220][ T6527] ? do_raw_spin_unlock+0x172/0x230
[ 94.402232][ T6527] do_exit+0xafb/0x2c30
[ 94.402250][ T6527] ? __pfx_do_exit+0x10/0x10
[ 94.402264][ T6527] ? preempt_schedule_thunk+0x16/0x30
[ 94.402277][ T6527] do_group_exit+0xd3/0x2a0
[ 94.402293][ T6527] __x64_sys_exit_group+0x3e/0x50
[ 94.402308][ T6527] x64_sys_call+0x1530/0x1730
[ 94.402322][ T6527] do_syscall_64+0xcd/0x260
[ 94.402335][ T6527] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.402345][ T6527] RIP: 0033:0x7f9fe6f8e969
[ 94.402356][ T6527] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 94.402363][ T6527] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 94.402377][ T6527] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 94.402387][ T6527] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 94.402396][ T6527] RBP: 0000000000000003 R08: 00000006ca8b3d8f R09: 00007f9fe717d260
[ 94.402405][ T6527] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 94.402413][ T6527] R13: 00007f9fe717d260 R14: 0000000000000003 R15: 00007ffdca8b3d50
[ 94.402435][ T6527]
[ 94.402441][ T6527] Disabling lock debugging due to kernel taint
[ 94.514271][ T6527] BUG: Bad page state in process syz.0.16 pfn:4e000
[ 94.516446][ T6527] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4e000
[ 94.519244][ T6527] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 94.521909][ T6527] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 94.524686][ T6527] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.527382][ T6527] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.530006][ T6527] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.532674][ T6527] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.535342][ T6527] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.538193][ T6527] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.540877][ T6527] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 94.543119][ T6527] page_owner tracks the page as allocated
[ 94.544890][ T6527] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6527, tgid 6527 (syz.0.16), ts 94244842343, free_ts 59432061555
[ 94.551056][ T6527] post_alloc_hook+0x181/0x1b0
[ 94.552648][ T6527] get_page_from_freelist+0x135c/0x3920
[ 94.554470][ T6527] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.556343][ T6527] alloc_pages_mpol+0x1fb/0x550
[ 94.557873][ T6527] folio_alloc_noprof+0x20/0x2d0
[ 94.559444][ T6527] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.561227][ T6527] page_cache_ra_order+0x4c0/0xd00
[ 94.562820][ T6527] filemap_fault+0x1a5e/0x2740
[ 94.564335][ T6527] __do_fault+0x10a/0x490
[ 94.565685][ T6527] do_pte_missing+0x1a6/0x3fb0
[ 94.567220][ T6527] __handle_mm_fault+0x103d/0x2a40
[ 94.569030][ T6527] handle_mm_fault+0x3fe/0xad0
[ 94.570529][ T6527] do_user_addr_fault+0x60c/0x1370
[ 94.572146][ T6527] exc_page_fault+0x5c/0xc0
[ 94.573927][ T6527] asm_exc_page_fault+0x26/0x30
[ 94.575890][ T6527] page last free pid 6022 tgid 6022 stack trace:
[ 94.578288][ T6527] __free_frozen_pages+0x69d/0xff0
[ 94.579906][ T6527] vfree+0x176/0x960
[ 94.581141][ T6527] kcov_close+0x34/0x60
[ 94.582438][ T6527] __fput+0x3ff/0xb70
[ 94.583817][ T6527] task_work_run+0x14d/0x240
[ 94.585650][ T6527] do_exit+0xafb/0x2c30
[ 94.587101][ T6527] do_group_exit+0xd3/0x2a0
[ 94.588625][ T6527] get_signal+0x2673/0x26d0
[ 94.590053][ T6527] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.591789][ T6527] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.593527][ T6527] do_syscall_64+0xda/0x260
[ 94.594948][ T6527] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.596807][ T6527] Modules linked in:
[ 94.598083][ T6527] CPU: 2 UID: 0 PID: 6527 Comm: syz.0.16 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 94.598099][ T6527] Tainted: [B]=BAD_PAGE
[ 94.598102][ T6527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.598108][ T6527] Call Trace:
[ 94.598112][ T6527]
[ 94.598116][ T6527] dump_stack_lvl+0x16c/0x1f0
[ 94.598128][ T6527] bad_page+0xb3/0x1f0
[ 94.598140][ T6527] ? __pfx_bad_page+0x10/0x10
[ 94.598150][ T6527] ? page_bad_reason+0x9d/0x1e0
[ 94.598161][ T6527] __free_frozen_pages+0x76e/0xff0
[ 94.598175][ T6527] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 94.598186][ T6527] __folio_put+0x329/0x450
[ 94.598198][ T6527] ? __pfx___folio_put+0x10/0x10
[ 94.598208][ T6527] ? find_held_lock+0x2b/0x80
[ 94.598220][ T6527] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.598232][ T6527] ? mark_held_locks+0x49/0x80
[ 94.598246][ T6527] filemap_free_folio+0x132/0x170
[ 94.598256][ T6527] delete_from_page_cache_batch+0x741/0x9b0
[ 94.598269][ T6527] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.598280][ T6527] ? __pfx_workingset_update_node+0x10/0x10
[ 94.598293][ T6527] truncate_inode_pages_range+0x279/0xe30
[ 94.598308][ T6527] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.598325][ T6527] ? __lock_acquire+0xaa4/0x1ba0
[ 94.598344][ T6527] ? __pfx_down_write+0x10/0x10
[ 94.598356][ T6527] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.598372][ T6527] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.598386][ T6527] blkdev_flush_mapping+0xe9/0x280
[ 94.598403][ T6527] blkdev_put_whole+0xc4/0xf0
[ 94.598414][ T6527] bdev_release+0x47e/0x6d0
[ 94.598427][ T6527] ? __pfx_blkdev_release+0x10/0x10
[ 94.598439][ T6527] blkdev_release+0x15/0x20
[ 94.598451][ T6527] __fput+0x3ff/0xb70
[ 94.598462][ T6527] task_work_run+0x14d/0x240
[ 94.598473][ T6527] ? __pfx_task_work_run+0x10/0x10
[ 94.598483][ T6527] ? do_raw_spin_unlock+0x172/0x230
[ 94.598493][ T6527] do_exit+0xafb/0x2c30
[ 94.598508][ T6527] ? __pfx_do_exit+0x10/0x10
[ 94.598522][ T6527] ? preempt_schedule_thunk+0x16/0x30
[ 94.598533][ T6527] do_group_exit+0xd3/0x2a0
[ 94.598548][ T6527] __x64_sys_exit_group+0x3e/0x50
[ 94.598562][ T6527] x64_sys_call+0x1530/0x1730
[ 94.598576][ T6527] do_syscall_64+0xcd/0x260
[ 94.598588][ T6527] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.598598][ T6527] RIP: 0033:0x7f9fe6f8e969
[ 94.598605][ T6527] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 94.598610][ T6527] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 94.598619][ T6527] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 94.598625][ T6527] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 94.598630][ T6527] RBP: 0000000000000003 R08: 00000006ca8b3d8f R09: 00007f9fe717d260
[ 94.598636][ T6527] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 94.598642][ T6527] R13: 00007f9fe717d260 R14: 0000000000000003 R15: 00007ffdca8b3d50
[ 94.598650][ T6527]
[ 94.599446][ T40] audit: type=1400 audit(1746157634.005:153): avc: denied { rename } for pid=5326 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 94.641656][ T6530] BUG: Bad page state in process syz.0.17 pfn:49a01
[ 94.643148][ T40] audit: type=1400 audit(1746157634.005:154): avc: denied { unlink } for pid=5326 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 94.645195][ T6530] page does not match folio
[ 94.646803][ T40] audit: type=1400 audit(1746157634.005:155): avc: denied { create } for pid=5326 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 94.648975][ T6530] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x49a01
[ 94.738323][ T6530] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 94.741360][ T6530] raw: 00fff00000000000 ffffea0001268000 00000000ffffffff ffffffffffffffff
[ 94.744803][ T6530] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.748284][ T6530] page dumped because: nonzero pincount
[ 94.750585][ T6530] page_owner tracks the page as allocated
[ 94.752853][ T6530] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6529, tgid 6529 (syz.0.17), ts 94611385537, free_ts 59203998653
[ 94.762440][ T6530] post_alloc_hook+0x181/0x1b0
[ 94.764401][ T6530] get_page_from_freelist+0x135c/0x3920
[ 94.766663][ T6530] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.769408][ T6530] alloc_pages_mpol+0x1fb/0x550
[ 94.771495][ T6530] folio_alloc_noprof+0x20/0x2d0
[ 94.773577][ T6530] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.775933][ T6530] page_cache_ra_order+0x4c0/0xd00
[ 94.778087][ T6530] filemap_fault+0x1a5e/0x2740
[ 94.780014][ T6530] __do_fault+0x10a/0x490
[ 94.781846][ T6530] do_pte_missing+0x1a6/0x3fb0
[ 94.783895][ T6530] __handle_mm_fault+0x103d/0x2a40
[ 94.786058][ T6530] handle_mm_fault+0x3fe/0xad0
[ 94.788394][ T6530] do_user_addr_fault+0x60c/0x1370
[ 94.790565][ T6530] exc_page_fault+0x5c/0xc0
[ 94.792498][ T6530] asm_exc_page_fault+0x26/0x30
[ 94.794557][ T6530] page last free pid 6016 tgid 6016 stack trace:
[ 94.797212][ T6530] __free_frozen_pages+0x69d/0xff0
[ 94.799472][ T6530] vfree+0x176/0x960
[ 94.801168][ T6530] kcov_close+0x34/0x60
[ 94.802933][ T6530] __fput+0x3ff/0xb70
[ 94.804657][ T6530] task_work_run+0x14d/0x240
[ 94.806644][ T6530] do_exit+0xafb/0x2c30
[ 94.809161][ T6530] do_group_exit+0xd3/0x2a0
[ 94.811121][ T6530] get_signal+0x2673/0x26d0
[ 94.813057][ T6530] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.815407][ T6530] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.817851][ T6530] do_syscall_64+0xda/0x260
[ 94.819814][ T6530] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.822346][ T6530] Modules linked in:
[ 94.824039][ T6530] CPU: 0 UID: 0 PID: 6530 Comm: syz.0.17 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 94.824065][ T6530] Tainted: [B]=BAD_PAGE
[ 94.824071][ T6530] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.824081][ T6530] Call Trace:
[ 94.824088][ T6530]
[ 94.824094][ T6530] dump_stack_lvl+0x16c/0x1f0
[ 94.824115][ T6530] bad_page+0xb3/0x1f0
[ 94.824133][ T6530] ? __pfx_bad_page+0x10/0x10
[ 94.824150][ T6530] ? __mem_cgroup_uncharge+0xda/0x130
[ 94.824169][ T6530] free_tail_page_prepare+0x44f/0x5b0
[ 94.824191][ T6530] __free_frozen_pages+0x96a/0xff0
[ 94.824215][ T6530] __folio_put+0x329/0x450
[ 94.824233][ T6530] ? __pfx___folio_put+0x10/0x10
[ 94.824251][ T6530] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.824269][ T6530] ? rcu_is_watching+0x12/0xc0
[ 94.824290][ T6530] ? lock_release+0x201/0x2f0
[ 94.824313][ T6530] filemap_free_folio+0x132/0x170
[ 94.824331][ T6530] delete_from_page_cache_batch+0x741/0x9b0
[ 94.824351][ T6530] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.824371][ T6530] ? __pfx_workingset_update_node+0x10/0x10
[ 94.824389][ T6530] ? xas_move_index+0xb0/0x110
[ 94.824409][ T6530] truncate_inode_pages_range+0x279/0xe30
[ 94.824434][ T6530] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.824471][ T6530] ? __pfx_down_write+0x10/0x10
[ 94.824493][ T6530] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.824518][ T6530] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.824541][ T6530] blkdev_flush_mapping+0xe9/0x280
[ 94.824560][ T6530] ? filemap_check_errors+0xa9/0x160
[ 94.824584][ T6530] blkdev_put_whole+0xc4/0xf0
[ 94.824601][ T6530] bdev_release+0x47e/0x6d0
[ 94.824626][ T6530] ? __pfx_blkdev_release+0x10/0x10
[ 94.824646][ T6530] blkdev_release+0x15/0x20
[ 94.824666][ T6530] __fput+0x3ff/0xb70
[ 94.824685][ T6530] task_work_run+0x14d/0x240
[ 94.824702][ T6530] ? __pfx_task_work_run+0x10/0x10
[ 94.824719][ T6530] ? do_raw_spin_unlock+0x172/0x230
[ 94.824737][ T6530] do_exit+0xafb/0x2c30
[ 94.824760][ T6530] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.824786][ T6530] ? __pfx_do_exit+0x10/0x10
[ 94.824808][ T6530] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.824825][ T6530] ? get_signal+0x8f5/0x26d0
[ 94.824843][ T6530] ? rcu_is_watching+0x12/0xc0
[ 94.824862][ T6530] do_group_exit+0xd3/0x2a0
[ 94.824887][ T6530] get_signal+0x2673/0x26d0
[ 94.824909][ T6530] ? __pfx_get_signal+0x10/0x10
[ 94.824928][ T6530] ? do_futex+0x122/0x350
[ 94.824950][ T6530] ? __pfx_do_futex+0x10/0x10
[ 94.824970][ T6530] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.824994][ T6530] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.825020][ T6530] ? madvise_unlock+0xc6/0x190
[ 94.825038][ T6530] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.825058][ T6530] do_syscall_64+0xda/0x260
[ 94.825078][ T6530] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.825095][ T6530] RIP: 0033:0x7f9fe6f8e969
[ 94.825107][ T6530] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 94.825115][ T6530] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.825130][ T6530] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 94.825140][ T6530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 94.825151][ T6530] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 94.825160][ T6530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 94.825170][ T6530] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 94.825185][ T6530]
[ 94.825212][ T6530] BUG: Bad page state in process syz.0.17 pfn:49a00
[ 94.970094][ T6530] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x49a00
[ 94.972966][ T6530] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 94.976121][ T6530] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 94.979583][ T6530] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.982857][ T6530] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.985926][ T6530] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.989047][ T6530] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.992269][ T6530] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.995271][ T6530] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.998182][ T6530] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 95.000448][ T6530] page_owner tracks the page as allocated
[ 95.002293][ T6530] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6529, tgid 6529 (syz.0.17), ts 94611385537, free_ts 59203993304
[ 95.010347][ T6530] post_alloc_hook+0x181/0x1b0
[ 95.012404][ T6530] get_page_from_freelist+0x135c/0x3920
[ 95.014721][ T6530] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.017380][ T6530] alloc_pages_mpol+0x1fb/0x550
[ 95.019388][ T6530] folio_alloc_noprof+0x20/0x2d0
[ 95.021349][ T6530] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.023597][ T6530] page_cache_ra_order+0x4c0/0xd00
[ 95.025456][ T6530] filemap_fault+0x1a5e/0x2740
[ 95.027152][ T6530] __do_fault+0x10a/0x490
[ 95.028571][ T6530] do_pte_missing+0x1a6/0x3fb0
[ 95.030083][ T6530] __handle_mm_fault+0x103d/0x2a40
[ 95.031724][ T6530] handle_mm_fault+0x3fe/0xad0
[ 95.033223][ T6530] do_user_addr_fault+0x60c/0x1370
[ 95.034805][ T6530] exc_page_fault+0x5c/0xc0
[ 95.036302][ T6530] asm_exc_page_fault+0x26/0x30
[ 95.037993][ T6530] page last free pid 6016 tgid 6016 stack trace:
[ 95.039967][ T6530] __free_frozen_pages+0x69d/0xff0
[ 95.041583][ T6530] vfree+0x176/0x960
[ 95.042822][ T6530] kcov_close+0x34/0x60
[ 95.044135][ T6530] __fput+0x3ff/0xb70
[ 95.045390][ T6530] task_work_run+0x14d/0x240
[ 95.047097][ T6530] do_exit+0xafb/0x2c30
[ 95.048988][ T6530] do_group_exit+0xd3/0x2a0
[ 95.050976][ T6530] get_signal+0x2673/0x26d0
[ 95.052936][ T6530] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.055278][ T6530] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.057674][ T6530] do_syscall_64+0xda/0x260
[ 95.059605][ T6530] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.062099][ T6530] Modules linked in:
[ 95.063747][ T6530] CPU: 1 UID: 0 PID: 6530 Comm: syz.0.17 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 95.063771][ T6530] Tainted: [B]=BAD_PAGE
[ 95.063777][ T6530] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.063786][ T6530] Call Trace:
[ 95.063792][ T6530]
[ 95.063798][ T6530] dump_stack_lvl+0x16c/0x1f0
[ 95.063818][ T6530] bad_page+0xb3/0x1f0
[ 95.063835][ T6530] ? __pfx_bad_page+0x10/0x10
[ 95.063853][ T6530] ? page_bad_reason+0x9d/0x1e0
[ 95.063870][ T6530] __free_frozen_pages+0x76e/0xff0
[ 95.063895][ T6530] __folio_put+0x329/0x450
[ 95.063913][ T6530] ? __pfx___folio_put+0x10/0x10
[ 95.063931][ T6530] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.063949][ T6530] ? rcu_is_watching+0x12/0xc0
[ 95.063968][ T6530] ? lock_release+0x201/0x2f0
[ 95.063993][ T6530] filemap_free_folio+0x132/0x170
[ 95.064011][ T6530] delete_from_page_cache_batch+0x741/0x9b0
[ 95.064031][ T6530] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.064051][ T6530] ? __pfx_workingset_update_node+0x10/0x10
[ 95.064068][ T6530] ? xas_move_index+0xb0/0x110
[ 95.064091][ T6530] truncate_inode_pages_range+0x279/0xe30
[ 95.064115][ T6530] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.064152][ T6530] ? __pfx_down_write+0x10/0x10
[ 95.064175][ T6530] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.064199][ T6530] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.064223][ T6530] blkdev_flush_mapping+0xe9/0x280
[ 95.064242][ T6530] ? filemap_check_errors+0xa9/0x160
[ 95.064265][ T6530] blkdev_put_whole+0xc4/0xf0
[ 95.064283][ T6530] bdev_release+0x47e/0x6d0
[ 95.064302][ T6530] ? __pfx_blkdev_release+0x10/0x10
[ 95.064323][ T6530] blkdev_release+0x15/0x20
[ 95.064342][ T6530] __fput+0x3ff/0xb70
[ 95.064361][ T6530] task_work_run+0x14d/0x240
[ 95.064379][ T6530] ? __pfx_task_work_run+0x10/0x10
[ 95.064396][ T6530] ? do_raw_spin_unlock+0x172/0x230
[ 95.064415][ T6530] do_exit+0xafb/0x2c30
[ 95.064436][ T6530] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.064462][ T6530] ? __pfx_do_exit+0x10/0x10
[ 95.064485][ T6530] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.064501][ T6530] ? get_signal+0x8f5/0x26d0
[ 95.064520][ T6530] ? rcu_is_watching+0x12/0xc0
[ 95.064539][ T6530] do_group_exit+0xd3/0x2a0
[ 95.064563][ T6530] get_signal+0x2673/0x26d0
[ 95.064585][ T6530] ? __pfx_get_signal+0x10/0x10
[ 95.064605][ T6530] ? do_futex+0x122/0x350
[ 95.064625][ T6530] ? __pfx_do_futex+0x10/0x10
[ 95.064647][ T6530] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.064671][ T6530] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.064701][ T6530] ? madvise_unlock+0xc6/0x190
[ 95.064721][ T6530] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.064741][ T6530] do_syscall_64+0xda/0x260
[ 95.064760][ T6530] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.064777][ T6530] RIP: 0033:0x7f9fe6f8e969
[ 95.064789][ T6530] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 95.064796][ T6530] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.064811][ T6530] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 95.064822][ T6530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 95.064831][ T6530] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.064841][ T6530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 95.064851][ T6530] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 95.064865][ T6530]
[ 95.232706][ T6533] BUG: Bad page state in process syz.0.18 pfn:4f001
[ 95.234754][ T6533] page does not match folio
[ 95.236162][ T6533] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4f001
[ 95.239739][ T6533] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 95.242169][ T6533] raw: 00fff00000000000 ffffea00013c0000 00000000ffffffff ffffffffffffffff
[ 95.245213][ T6533] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.249128][ T6533] page dumped because: nonzero pincount
[ 95.251382][ T6533] page_owner tracks the page as allocated
[ 95.254101][ T6533] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6531, tgid 6531 (syz.0.18), ts 95205584898, free_ts 95064911315
[ 95.261711][ T6533] post_alloc_hook+0x181/0x1b0
[ 95.263221][ T6533] get_page_from_freelist+0x135c/0x3920
[ 95.264890][ T6533] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.266750][ T6533] alloc_pages_mpol+0x1fb/0x550
[ 95.268349][ T6533] folio_alloc_noprof+0x20/0x2d0
[ 95.269854][ T6533] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.271651][ T6533] page_cache_ra_order+0x4c0/0xd00
[ 95.273184][ T6533] filemap_fault+0x1a5e/0x2740
[ 95.274644][ T6533] __do_fault+0x10a/0x490
[ 95.275971][ T6533] do_pte_missing+0x1a6/0x3fb0
[ 95.277526][ T6533] __handle_mm_fault+0x103d/0x2a40
[ 95.279083][ T6533] handle_mm_fault+0x3fe/0xad0
[ 95.280566][ T6533] do_user_addr_fault+0x60c/0x1370
[ 95.282332][ T6533] exc_page_fault+0x5c/0xc0
[ 95.283837][ T6533] asm_exc_page_fault+0x26/0x30
[ 95.285311][ T6533] page last free pid 6530 tgid 6529 stack trace:
[ 95.287391][ T6533] free_unref_folios+0x999/0x1630
[ 95.289055][ T6533] folios_put_refs+0x56f/0x740
[ 95.290622][ T6533] truncate_inode_pages_range+0x311/0xe30
[ 95.292590][ T6533] blkdev_flush_mapping+0xe9/0x280
[ 95.294201][ T6533] blkdev_put_whole+0xc4/0xf0
[ 95.295658][ T6533] bdev_release+0x47e/0x6d0
[ 95.297081][ T6533] blkdev_release+0x15/0x20
[ 95.298574][ T6533] __fput+0x3ff/0xb70
[ 95.299862][ T6533] task_work_run+0x14d/0x240
[ 95.301294][ T6533] do_exit+0xafb/0x2c30
[ 95.302722][ T6533] do_group_exit+0xd3/0x2a0
[ 95.304141][ T6533] get_signal+0x2673/0x26d0
[ 95.305533][ T6533] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.307513][ T6533] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.309273][ T6533] do_syscall_64+0xda/0x260
[ 95.310666][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.312518][ T6533] Modules linked in:
[ 95.313752][ T6533] CPU: 0 UID: 0 PID: 6533 Comm: syz.0.18 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 95.313769][ T6533] Tainted: [B]=BAD_PAGE
[ 95.313772][ T6533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.313778][ T6533] Call Trace:
[ 95.313781][ T6533]
[ 95.313785][ T6533] dump_stack_lvl+0x16c/0x1f0
[ 95.313798][ T6533] bad_page+0xb3/0x1f0
[ 95.313809][ T6533] ? __pfx_bad_page+0x10/0x10
[ 95.313819][ T6533] ? __mem_cgroup_uncharge+0xda/0x130
[ 95.313831][ T6533] free_tail_page_prepare+0x44f/0x5b0
[ 95.313845][ T6533] __free_frozen_pages+0x96a/0xff0
[ 95.313860][ T6533] __folio_put+0x329/0x450
[ 95.313870][ T6533] ? __pfx___folio_put+0x10/0x10
[ 95.313881][ T6533] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.313893][ T6533] ? rcu_is_watching+0x12/0xc0
[ 95.313904][ T6533] ? lock_release+0x201/0x2f0
[ 95.313920][ T6533] filemap_free_folio+0x132/0x170
[ 95.313930][ T6533] delete_from_page_cache_batch+0x741/0x9b0
[ 95.313942][ T6533] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.313954][ T6533] ? __pfx_workingset_update_node+0x10/0x10
[ 95.313965][ T6533] ? xas_move_index+0xb0/0x110
[ 95.313977][ T6533] truncate_inode_pages_range+0x279/0xe30
[ 95.313992][ T6533] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.314014][ T6533] ? __pfx_down_write+0x10/0x10
[ 95.314027][ T6533] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.314042][ T6533] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.314057][ T6533] blkdev_flush_mapping+0xe9/0x280
[ 95.314068][ T6533] ? filemap_check_errors+0xa9/0x160
[ 95.314083][ T6533] blkdev_put_whole+0xc4/0xf0
[ 95.314093][ T6533] bdev_release+0x47e/0x6d0
[ 95.314106][ T6533] ? __pfx_blkdev_release+0x10/0x10
[ 95.314118][ T6533] blkdev_release+0x15/0x20
[ 95.314130][ T6533] __fput+0x3ff/0xb70
[ 95.314141][ T6533] task_work_run+0x14d/0x240
[ 95.314152][ T6533] ? __pfx_task_work_run+0x10/0x10
[ 95.314162][ T6533] ? do_raw_spin_unlock+0x172/0x230
[ 95.314173][ T6533] do_exit+0xafb/0x2c30
[ 95.314187][ T6533] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.314203][ T6533] ? __pfx_do_exit+0x10/0x10
[ 95.314217][ T6533] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.314227][ T6533] ? get_signal+0x8f5/0x26d0
[ 95.314238][ T6533] ? rcu_is_watching+0x12/0xc0
[ 95.314250][ T6533] do_group_exit+0xd3/0x2a0
[ 95.314264][ T6533] get_signal+0x2673/0x26d0
[ 95.314278][ T6533] ? __pfx_get_signal+0x10/0x10
[ 95.314290][ T6533] ? do_futex+0x122/0x350
[ 95.314303][ T6533] ? __pfx_do_futex+0x10/0x10
[ 95.314316][ T6533] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.314330][ T6533] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.314346][ T6533] ? rcu_is_watching+0x12/0xc0
[ 95.314357][ T6533] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.314374][ T6533] do_syscall_64+0xda/0x260
[ 95.314386][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.314397][ T6533] RIP: 0033:0x7f9fe6f8e969
[ 95.314404][ T6533] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 95.314408][ T6533] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.314418][ T6533] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 95.314424][ T6533] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 95.314430][ T6533] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.314436][ T6533] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 95.314441][ T6533] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 95.314449][ T6533]
[ 95.314465][ T6533] BUG: Bad page state in process syz.0.18 pfn:4f000
[ 95.367396][ T6041] Bluetooth: hci0: command tx timeout
[ 95.368604][ T6533] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4f000
[ 95.439721][ T6533] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 95.443242][ T6533] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 95.446683][ T6533] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.450149][ T6533] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.453423][ T6533] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.456718][ T6533] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.460472][ T6533] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.463765][ T6533] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.467019][ T6533] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 95.470052][ T6533] page_owner tracks the page as allocated
[ 95.472268][ T6533] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6531, tgid 6531 (syz.0.18), ts 95205584898, free_ts 95064911315
[ 95.479876][ T6533] post_alloc_hook+0x181/0x1b0
[ 95.481740][ T6533] get_page_from_freelist+0x135c/0x3920
[ 95.483874][ T6533] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.486157][ T6533] alloc_pages_mpol+0x1fb/0x550
[ 95.488151][ T6533] folio_alloc_noprof+0x20/0x2d0
[ 95.490078][ T6533] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.492271][ T6533] page_cache_ra_order+0x4c0/0xd00
[ 95.494248][ T6533] filemap_fault+0x1a5e/0x2740
[ 95.496172][ T6533] __do_fault+0x10a/0x490
[ 95.497954][ T6533] do_pte_missing+0x1a6/0x3fb0
[ 95.499855][ T6533] __handle_mm_fault+0x103d/0x2a40
[ 95.501837][ T6533] handle_mm_fault+0x3fe/0xad0
[ 95.503743][ T6533] do_user_addr_fault+0x60c/0x1370
[ 95.505781][ T6533] exc_page_fault+0x5c/0xc0
[ 95.507773][ T6533] asm_exc_page_fault+0x26/0x30
[ 95.509801][ T6533] page last free pid 6530 tgid 6529 stack trace:
[ 95.512376][ T6533] free_unref_folios+0x999/0x1630
[ 95.514425][ T6533] folios_put_refs+0x56f/0x740
[ 95.516393][ T6533] truncate_inode_pages_range+0x311/0xe30
[ 95.518825][ T6533] blkdev_flush_mapping+0xe9/0x280
[ 95.520979][ T6533] blkdev_put_whole+0xc4/0xf0
[ 95.522937][ T6533] bdev_release+0x47e/0x6d0
[ 95.524822][ T6533] blkdev_release+0x15/0x20
[ 95.526702][ T6533] __fput+0x3ff/0xb70
[ 95.528485][ T6533] task_work_run+0x14d/0x240
[ 95.530407][ T6533] do_exit+0xafb/0x2c30
[ 95.532127][ T6533] do_group_exit+0xd3/0x2a0
[ 95.534016][ T6533] get_signal+0x2673/0x26d0
[ 95.535914][ T6533] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.538294][ T6533] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.540642][ T6533] do_syscall_64+0xda/0x260
[ 95.542543][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.544995][ T6533] Modules linked in:
[ 95.546622][ T6533] CPU: 0 UID: 0 PID: 6533 Comm: syz.0.18 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 95.546646][ T6533] Tainted: [B]=BAD_PAGE
[ 95.546651][ T6533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.546661][ T6533] Call Trace:
[ 95.546667][ T6533]
[ 95.546674][ T6533] dump_stack_lvl+0x16c/0x1f0
[ 95.546695][ T6533] bad_page+0xb3/0x1f0
[ 95.546713][ T6533] ? __pfx_bad_page+0x10/0x10
[ 95.546729][ T6533] ? page_bad_reason+0x9d/0x1e0
[ 95.546746][ T6533] __free_frozen_pages+0x76e/0xff0
[ 95.546768][ T6533] __folio_put+0x329/0x450
[ 95.546785][ T6533] ? __pfx___folio_put+0x10/0x10
[ 95.546802][ T6533] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.546819][ T6533] ? rcu_is_watching+0x12/0xc0
[ 95.546837][ T6533] ? lock_release+0x201/0x2f0
[ 95.546859][ T6533] filemap_free_folio+0x132/0x170
[ 95.546875][ T6533] delete_from_page_cache_batch+0x741/0x9b0
[ 95.546894][ T6533] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.546912][ T6533] ? __pfx_workingset_update_node+0x10/0x10
[ 95.546929][ T6533] ? xas_move_index+0xb0/0x110
[ 95.546948][ T6533] truncate_inode_pages_range+0x279/0xe30
[ 95.546971][ T6533] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.547006][ T6533] ? __pfx_down_write+0x10/0x10
[ 95.547025][ T6533] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.547048][ T6533] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.547069][ T6533] blkdev_flush_mapping+0xe9/0x280
[ 95.547086][ T6533] ? filemap_check_errors+0xa9/0x160
[ 95.547107][ T6533] blkdev_put_whole+0xc4/0xf0
[ 95.547124][ T6533] bdev_release+0x47e/0x6d0
[ 95.547143][ T6533] ? __pfx_blkdev_release+0x10/0x10
[ 95.547180][ T6533] blkdev_release+0x15/0x20
[ 95.547198][ T6533] __fput+0x3ff/0xb70
[ 95.547216][ T6533] task_work_run+0x14d/0x240
[ 95.547232][ T6533] ? __pfx_task_work_run+0x10/0x10
[ 95.547262][ T6533] ? do_raw_spin_unlock+0x172/0x230
[ 95.547279][ T6533] do_exit+0xafb/0x2c30
[ 95.547299][ T6533] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.547324][ T6533] ? __pfx_do_exit+0x10/0x10
[ 95.547346][ T6533] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.547369][ T6533] ? get_signal+0x8f5/0x26d0
[ 95.547387][ T6533] ? rcu_is_watching+0x12/0xc0
[ 95.547405][ T6533] do_group_exit+0xd3/0x2a0
[ 95.547427][ T6533] get_signal+0x2673/0x26d0
[ 95.547448][ T6533] ? __pfx_get_signal+0x10/0x10
[ 95.547466][ T6533] ? do_futex+0x122/0x350
[ 95.547486][ T6533] ? __pfx_do_futex+0x10/0x10
[ 95.547506][ T6533] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.547528][ T6533] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.547551][ T6533] ? rcu_is_watching+0x12/0xc0
[ 95.547569][ T6533] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.547587][ T6533] do_syscall_64+0xda/0x260
[ 95.547605][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.547620][ T6533] RIP: 0033:0x7f9fe6f8e969
[ 95.547631][ T6533] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 95.547638][ T6533] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.547653][ T6533] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 95.547663][ T6533] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 95.547672][ T6533] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.547681][ T6533] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 95.547690][ T6533] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 95.547704][ T6533]
[ 95.708722][ T6535] BUG: Bad page state in process syz.0.19 pfn:4f401
[ 95.711099][ T6535] page does not match folio
[ 95.712455][ T6535] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4f401
[ 95.715419][ T6535] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 95.717758][ T6535] raw: 00fff00000000000 ffffea00013d0000 00000000ffffffff ffffffffffffffff
[ 95.720610][ T6535] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.724021][ T6535] page dumped because: nonzero pincount
[ 95.726254][ T6535] page_owner tracks the page as allocated
[ 95.728690][ T6535] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6534, tgid 6534 (syz.0.19), ts 95689209230, free_ts 95678270267
[ 95.736721][ T6535] post_alloc_hook+0x181/0x1b0
[ 95.738900][ T6535] get_page_from_freelist+0x135c/0x3920
[ 95.741218][ T6535] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.743676][ T6535] alloc_pages_mpol+0x1fb/0x550
[ 95.745705][ T6535] folio_alloc_noprof+0x20/0x2d0
[ 95.747888][ T6535] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.750223][ T6535] page_cache_ra_order+0x4c0/0xd00
[ 95.752232][ T6535] filemap_fault+0x1a5e/0x2740
[ 95.754159][ T6535] __do_fault+0x10a/0x490
[ 95.755961][ T6535] do_pte_missing+0x1a6/0x3fb0
[ 95.758203][ T6535] __handle_mm_fault+0x103d/0x2a40
[ 95.759815][ T6535] handle_mm_fault+0x3fe/0xad0
[ 95.761358][ T6535] do_user_addr_fault+0x60c/0x1370
[ 95.763341][ T6535] exc_page_fault+0x5c/0xc0
[ 95.765098][ T6535] asm_exc_page_fault+0x26/0x30
[ 95.766947][ T6535] page last free pid 6533 tgid 6531 stack trace:
[ 95.769287][ T6535] free_unref_folios+0x999/0x1630
[ 95.771115][ T6535] folios_put_refs+0x56f/0x740
[ 95.772898][ T6535] truncate_inode_pages_range+0x311/0xe30
[ 95.775005][ T6535] blkdev_flush_mapping+0xe9/0x280
[ 95.776778][ T6535] blkdev_put_whole+0xc4/0xf0
[ 95.778331][ T6535] bdev_release+0x47e/0x6d0
[ 95.779755][ T6535] blkdev_release+0x15/0x20
[ 95.781165][ T6535] __fput+0x3ff/0xb70
[ 95.782578][ T6535] task_work_run+0x14d/0x240
[ 95.784362][ T6535] do_exit+0xafb/0x2c30
[ 95.785998][ T6535] do_group_exit+0xd3/0x2a0
[ 95.787861][ T6535] get_signal+0x2673/0x26d0
[ 95.789473][ T6535] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.791175][ T6535] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.792881][ T6535] do_syscall_64+0xda/0x260
[ 95.794454][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.796679][ T6535] Modules linked in:
[ 95.799362][ T6535] CPU: 1 UID: 0 PID: 6535 Comm: syz.0.19 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 95.799379][ T6535] Tainted: [B]=BAD_PAGE
[ 95.799382][ T6535] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.799389][ T6535] Call Trace:
[ 95.799392][ T6535]
[ 95.799395][ T6535] dump_stack_lvl+0x16c/0x1f0
[ 95.799411][ T6535] bad_page+0xb3/0x1f0
[ 95.799421][ T6535] ? __pfx_bad_page+0x10/0x10
[ 95.799431][ T6535] ? __mem_cgroup_uncharge+0xda/0x130
[ 95.799444][ T6535] free_tail_page_prepare+0x44f/0x5b0
[ 95.799457][ T6535] __free_frozen_pages+0x96a/0xff0
[ 95.799472][ T6535] __folio_put+0x329/0x450
[ 95.799482][ T6535] ? __pfx___folio_put+0x10/0x10
[ 95.799493][ T6535] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.799507][ T6535] ? rcu_is_watching+0x12/0xc0
[ 95.799518][ T6535] ? lock_release+0x201/0x2f0
[ 95.799533][ T6535] filemap_free_folio+0x132/0x170
[ 95.799543][ T6535] delete_from_page_cache_batch+0x741/0x9b0
[ 95.799555][ T6535] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.799567][ T6535] ? __pfx_workingset_update_node+0x10/0x10
[ 95.799578][ T6535] ? xas_move_index+0xb0/0x110
[ 95.799590][ T6535] truncate_inode_pages_range+0x279/0xe30
[ 95.799604][ T6535] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.799626][ T6535] ? __pfx_down_write+0x10/0x10
[ 95.799639][ T6535] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.799659][ T6535] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.799674][ T6535] blkdev_flush_mapping+0xe9/0x280
[ 95.799685][ T6535] ? filemap_check_errors+0xa9/0x160
[ 95.799700][ T6535] blkdev_put_whole+0xc4/0xf0
[ 95.799710][ T6535] bdev_release+0x47e/0x6d0
[ 95.799723][ T6535] ? __pfx_blkdev_release+0x10/0x10
[ 95.799735][ T6535] blkdev_release+0x15/0x20
[ 95.799746][ T6535] __fput+0x3ff/0xb70
[ 95.799758][ T6535] task_work_run+0x14d/0x240
[ 95.799768][ T6535] ? __pfx_task_work_run+0x10/0x10
[ 95.799778][ T6535] ? do_raw_spin_unlock+0x172/0x230
[ 95.799789][ T6535] do_exit+0xafb/0x2c30
[ 95.799803][ T6535] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.799819][ T6535] ? __pfx_do_exit+0x10/0x10
[ 95.799833][ T6535] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.799843][ T6535] ? get_signal+0x8f5/0x26d0
[ 95.799855][ T6535] ? rcu_is_watching+0x12/0xc0
[ 95.799866][ T6535] do_group_exit+0xd3/0x2a0
[ 95.799880][ T6535] get_signal+0x2673/0x26d0
[ 95.799894][ T6535] ? __pfx_get_signal+0x10/0x10
[ 95.799905][ T6535] ? do_futex+0x122/0x350
[ 95.799918][ T6535] ? __pfx_do_futex+0x10/0x10
[ 95.799931][ T6535] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.799946][ T6535] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.799961][ T6535] ? madvise_unlock+0xc6/0x190
[ 95.799972][ T6535] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.799984][ T6535] do_syscall_64+0xda/0x260
[ 95.799996][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.800006][ T6535] RIP: 0033:0x7f9fe6f8e969
[ 95.800013][ T6535] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 95.800018][ T6535] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.800027][ T6535] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 95.800033][ T6535] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 95.800039][ T6535] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.800045][ T6535] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 95.800051][ T6535] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 95.800059][ T6535]
[ 95.800073][ T6535] BUG: Bad page state in process syz.0.19 pfn:4f400
[ 95.915786][ T6535] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4f400
[ 95.919405][ T6535] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 95.921940][ T6535] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 95.924544][ T6535] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.927107][ T6535] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.929990][ T6535] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.932785][ T6535] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.935950][ T6535] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.939063][ T6535] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.941662][ T6535] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 95.943873][ T6535] page_owner tracks the page as allocated
[ 95.945612][ T6535] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6534, tgid 6534 (syz.0.19), ts 95689209230, free_ts 95678270267
[ 95.951736][ T6535] post_alloc_hook+0x181/0x1b0
[ 95.953266][ T6535] get_page_from_freelist+0x135c/0x3920
[ 95.954918][ T6535] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.956738][ T6535] alloc_pages_mpol+0x1fb/0x550
[ 95.958423][ T6535] folio_alloc_noprof+0x20/0x2d0
[ 95.959955][ T6535] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.961708][ T6535] page_cache_ra_order+0x4c0/0xd00
[ 95.963280][ T6535] filemap_fault+0x1a5e/0x2740
[ 95.964730][ T6535] __do_fault+0x10a/0x490
[ 95.966071][ T6535] do_pte_missing+0x1a6/0x3fb0
[ 95.967635][ T6535] __handle_mm_fault+0x103d/0x2a40
[ 95.969735][ T6535] handle_mm_fault+0x3fe/0xad0
[ 95.971701][ T6535] do_user_addr_fault+0x60c/0x1370
[ 95.973762][ T6535] exc_page_fault+0x5c/0xc0
[ 95.975622][ T6535] asm_exc_page_fault+0x26/0x30
[ 95.977672][ T6535] page last free pid 6533 tgid 6531 stack trace:
[ 95.980155][ T6535] free_unref_folios+0x999/0x1630
[ 95.982216][ T6535] folios_put_refs+0x56f/0x740
[ 95.984203][ T6535] truncate_inode_pages_range+0x311/0xe30
[ 95.986512][ T6535] blkdev_flush_mapping+0xe9/0x280
[ 95.988726][ T6535] blkdev_put_whole+0xc4/0xf0
[ 95.990663][ T6535] bdev_release+0x47e/0x6d0
[ 95.992507][ T6535] blkdev_release+0x15/0x20
[ 95.994389][ T6535] __fput+0x3ff/0xb70
[ 95.996053][ T6535] task_work_run+0x14d/0x240
[ 95.998198][ T6535] do_exit+0xafb/0x2c30
[ 95.999946][ T6535] do_group_exit+0xd3/0x2a0
[ 96.001833][ T6535] get_signal+0x2673/0x26d0
[ 96.003718][ T6535] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.005984][ T6535] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.008337][ T6535] do_syscall_64+0xda/0x260
[ 96.010197][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.012608][ T6535] Modules linked in:
[ 96.014194][ T6535] CPU: 1 UID: 0 PID: 6535 Comm: syz.0.19 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 96.014219][ T6535] Tainted: [B]=BAD_PAGE
[ 96.014225][ T6535] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.014235][ T6535] Call Trace:
[ 96.014241][ T6535]
[ 96.014247][ T6535] dump_stack_lvl+0x16c/0x1f0
[ 96.014266][ T6535] bad_page+0xb3/0x1f0
[ 96.014284][ T6535] ? __pfx_bad_page+0x10/0x10
[ 96.014301][ T6535] ? page_bad_reason+0x9d/0x1e0
[ 96.014318][ T6535] __free_frozen_pages+0x76e/0xff0
[ 96.014342][ T6535] __folio_put+0x329/0x450
[ 96.014359][ T6535] ? __pfx___folio_put+0x10/0x10
[ 96.014377][ T6535] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.014395][ T6535] ? rcu_is_watching+0x12/0xc0
[ 96.014413][ T6535] ? lock_release+0x201/0x2f0
[ 96.014437][ T6535] filemap_free_folio+0x132/0x170
[ 96.014453][ T6535] delete_from_page_cache_batch+0x741/0x9b0
[ 96.014473][ T6535] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.014492][ T6535] ? __pfx_workingset_update_node+0x10/0x10
[ 96.014509][ T6535] ? xas_move_index+0xb0/0x110
[ 96.014530][ T6535] truncate_inode_pages_range+0x279/0xe30
[ 96.014553][ T6535] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.014590][ T6535] ? __pfx_down_write+0x10/0x10
[ 96.014611][ T6535] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.014635][ T6535] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.014662][ T6535] blkdev_flush_mapping+0xe9/0x280
[ 96.014680][ T6535] ? filemap_check_errors+0xa9/0x160
[ 96.014703][ T6535] blkdev_put_whole+0xc4/0xf0
[ 96.014720][ T6535] bdev_release+0x47e/0x6d0
[ 96.014740][ T6535] ? __pfx_blkdev_release+0x10/0x10
[ 96.014760][ T6535] blkdev_release+0x15/0x20
[ 96.014779][ T6535] __fput+0x3ff/0xb70
[ 96.014798][ T6535] task_work_run+0x14d/0x240
[ 96.014815][ T6535] ? __pfx_task_work_run+0x10/0x10
[ 96.014831][ T6535] ? do_raw_spin_unlock+0x172/0x230
[ 96.014849][ T6535] do_exit+0xafb/0x2c30
[ 96.014871][ T6535] ? __pfx_futex_wake_mark+0x10/0x10
[ 96.014896][ T6535] ? __pfx_do_exit+0x10/0x10
[ 96.014917][ T6535] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.014933][ T6535] ? get_signal+0x8f5/0x26d0
[ 96.014951][ T6535] ? rcu_is_watching+0x12/0xc0
[ 96.014969][ T6535] do_group_exit+0xd3/0x2a0
[ 96.014992][ T6535] get_signal+0x2673/0x26d0
[ 96.015013][ T6535] ? __pfx_get_signal+0x10/0x10
[ 96.015031][ T6535] ? do_futex+0x122/0x350
[ 96.015051][ T6535] ? __pfx_do_futex+0x10/0x10
[ 96.015076][ T6535] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.015103][ T6535] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.015127][ T6535] ? madvise_unlock+0xc6/0x190
[ 96.015145][ T6535] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.015190][ T6535] do_syscall_64+0xda/0x260
[ 96.015208][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.015224][ T6535] RIP: 0033:0x7f9fe6f8e969
[ 96.015236][ T6535] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 96.015242][ T6535] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.015257][ T6535] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 96.015268][ T6535] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 96.015278][ T6535] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 96.015288][ T6535] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 96.015298][ T6535] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 96.015312][ T6535]
[ 96.052843][ T6537] BUG: Bad page state in process syz.0.20 pfn:4d601
[ 96.137598][ T6537] page does not match folio
[ 96.139113][ T6537] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4d601
[ 96.142214][ T6537] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 96.144472][ T6537] raw: 00fff00000000000 ffffea0001358000 00000000ffffffff ffffffffffffffff
[ 96.147070][ T6537] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.149730][ T6537] page dumped because: nonzero pincount
[ 96.151368][ T6537] page_owner tracks the page as allocated
[ 96.153112][ T6537] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6537, tgid 6537 (syz.0.20), ts 96025116817, free_ts 59206762450
[ 96.159641][ T6537] post_alloc_hook+0x181/0x1b0
[ 96.161139][ T6537] get_page_from_freelist+0x135c/0x3920
[ 96.162826][ T6537] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.164620][ T6537] alloc_pages_mpol+0x1fb/0x550
[ 96.166118][ T6537] folio_alloc_noprof+0x20/0x2d0
[ 96.167729][ T6537] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.169468][ T6537] page_cache_ra_order+0x4c0/0xd00
[ 96.171019][ T6537] filemap_fault+0x1a5e/0x2740
[ 96.172452][ T6537] __do_fault+0x10a/0x490
[ 96.173762][ T6537] do_pte_missing+0x1a6/0x3fb0
[ 96.175470][ T6537] __handle_mm_fault+0x103d/0x2a40
[ 96.177067][ T6537] handle_mm_fault+0x3fe/0xad0
[ 96.178666][ T6537] do_user_addr_fault+0x60c/0x1370
[ 96.180455][ T6537] exc_page_fault+0x5c/0xc0
[ 96.181899][ T6537] asm_exc_page_fault+0x26/0x30
[ 96.183539][ T6537] page last free pid 6016 tgid 6016 stack trace:
[ 96.185518][ T6537] __free_frozen_pages+0x69d/0xff0
[ 96.187121][ T6537] vfree+0x176/0x960
[ 96.188399][ T6537] kcov_close+0x34/0x60
[ 96.189721][ T6537] __fput+0x3ff/0xb70
[ 96.190945][ T6537] task_work_run+0x14d/0x240
[ 96.192365][ T6537] do_exit+0xafb/0x2c30
[ 96.193649][ T6537] do_group_exit+0xd3/0x2a0
[ 96.195050][ T6537] get_signal+0x2673/0x26d0
[ 96.196454][ T6537] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.198227][ T6537] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.199945][ T6537] do_syscall_64+0xda/0x260
[ 96.201367][ T6537] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.203109][ T6537] Modules linked in:
[ 96.204301][ T6537] CPU: 0 UID: 0 PID: 6537 Comm: syz.0.20 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 96.204316][ T6537] Tainted: [B]=BAD_PAGE
[ 96.204319][ T6537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.204325][ T6537] Call Trace:
[ 96.204329][ T6537]
[ 96.204333][ T6537] dump_stack_lvl+0x16c/0x1f0
[ 96.204345][ T6537] bad_page+0xb3/0x1f0
[ 96.204355][ T6537] ? __pfx_bad_page+0x10/0x10
[ 96.204365][ T6537] ? __mem_cgroup_uncharge+0xda/0x130
[ 96.204378][ T6537] free_tail_page_prepare+0x44f/0x5b0
[ 96.204391][ T6537] __free_frozen_pages+0x96a/0xff0
[ 96.204405][ T6537] __folio_put+0x329/0x450
[ 96.204416][ T6537] ? __pfx___folio_put+0x10/0x10
[ 96.204427][ T6537] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.204438][ T6537] ? rcu_is_watching+0x12/0xc0
[ 96.204450][ T6537] ? lock_release+0x201/0x2f0
[ 96.204465][ T6537] filemap_free_folio+0x132/0x170
[ 96.204475][ T6537] delete_from_page_cache_batch+0x741/0x9b0
[ 96.204487][ T6537] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.204499][ T6537] ? __pfx_workingset_update_node+0x10/0x10
[ 96.204510][ T6537] ? xas_move_index+0xb0/0x110
[ 96.204522][ T6537] truncate_inode_pages_range+0x279/0xe30
[ 96.204537][ T6537] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.204559][ T6537] ? __pfx_down_write+0x10/0x10
[ 96.204572][ T6537] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.204588][ T6537] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.204602][ T6537] blkdev_flush_mapping+0xe9/0x280
[ 96.204615][ T6537] blkdev_put_whole+0xc4/0xf0
[ 96.204626][ T6537] bdev_release+0x47e/0x6d0
[ 96.204639][ T6537] ? __pfx_blkdev_release+0x10/0x10
[ 96.204651][ T6537] blkdev_release+0x15/0x20
[ 96.204662][ T6537] __fput+0x3ff/0xb70
[ 96.204677][ T6537] task_work_run+0x14d/0x240
[ 96.204687][ T6537] ? __pfx_task_work_run+0x10/0x10
[ 96.204697][ T6537] ? do_raw_spin_unlock+0x172/0x230
[ 96.204708][ T6537] do_exit+0xafb/0x2c30
[ 96.204723][ T6537] ? __pfx_do_exit+0x10/0x10
[ 96.204737][ T6537] ? preempt_schedule_thunk+0x16/0x30
[ 96.204747][ T6537] do_group_exit+0xd3/0x2a0
[ 96.204762][ T6537] __x64_sys_exit_group+0x3e/0x50
[ 96.204776][ T6537] x64_sys_call+0x1530/0x1730
[ 96.204790][ T6537] do_syscall_64+0xcd/0x260
[ 96.204802][ T6537] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.204812][ T6537] RIP: 0033:0x7f9fe6f8e969
[ 96.204819][ T6537] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 96.204824][ T6537] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 96.204833][ T6537] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 96.204839][ T6537] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 96.204844][ T6537] RBP: 00007ffdca8b3cfc R08: 00000006ca8b3d8f R09: 00000000000927c0
[ 96.204850][ T6537] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000004
[ 96.204856][ T6537] R13: 00000000000927c0 R14: 0000000000017547 R15: 00007ffdca8b3d50
[ 96.204864][ T6537]
[ 96.204879][ T6537] BUG: Bad page state in process syz.0.20 pfn:4d600
[ 96.300020][ T6537] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4d600
[ 96.303737][ T6537] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 96.307371][ T6537] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 96.311081][ T6537] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.314689][ T6537] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.318766][ T6537] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.322423][ T6537] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.326074][ T6537] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.329768][ T6537] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.333425][ T6537] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 96.336516][ T6537] page_owner tracks the page as allocated
[ 96.338943][ T6537] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6537, tgid 6537 (syz.0.20), ts 96025116817, free_ts 59206756976
[ 96.347180][ T6537] post_alloc_hook+0x181/0x1b0
[ 96.349276][ T6537] get_page_from_freelist+0x135c/0x3920
[ 96.351620][ T6537] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.354093][ T6537] alloc_pages_mpol+0x1fb/0x550
[ 96.356155][ T6537] folio_alloc_noprof+0x20/0x2d0
[ 96.358256][ T6537] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.360617][ T6537] page_cache_ra_order+0x4c0/0xd00
[ 96.362712][ T6537] filemap_fault+0x1a5e/0x2740
[ 96.364742][ T6537] __do_fault+0x10a/0x490
[ 96.366598][ T6537] do_pte_missing+0x1a6/0x3fb0
[ 96.368699][ T6537] __handle_mm_fault+0x103d/0x2a40
[ 96.370839][ T6537] handle_mm_fault+0x3fe/0xad0
[ 96.372836][ T6537] do_user_addr_fault+0x60c/0x1370
[ 96.374910][ T6537] exc_page_fault+0x5c/0xc0
[ 96.376825][ T6537] asm_exc_page_fault+0x26/0x30
[ 96.379064][ T6537] page last free pid 6016 tgid 6016 stack trace:
[ 96.381689][ T6537] __free_frozen_pages+0x69d/0xff0
[ 96.383907][ T6537] vfree+0x176/0x960
[ 96.385586][ T6537] kcov_close+0x34/0x60
[ 96.387440][ T6537] __fput+0x3ff/0xb70
[ 96.389078][ T6537] task_work_run+0x14d/0x240
[ 96.391024][ T6537] do_exit+0xafb/0x2c30
[ 96.392764][ T6537] do_group_exit+0xd3/0x2a0
[ 96.394644][ T6537] get_signal+0x2673/0x26d0
[ 96.396540][ T6537] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.398854][ T6537] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.401188][ T6537] do_syscall_64+0xda/0x260
[ 96.403066][ T6537] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.405499][ T6537] Modules linked in:
[ 96.407114][ T6537] CPU: 2 UID: 0 PID: 6537 Comm: syz.0.20 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 96.407137][ T6537] Tainted: [B]=BAD_PAGE
[ 96.407143][ T6537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.407170][ T6537] Call Trace:
[ 96.407177][ T6537]
[ 96.407183][ T6537] dump_stack_lvl+0x16c/0x1f0
[ 96.407202][ T6537] bad_page+0xb3/0x1f0
[ 96.407221][ T6537] ? __pfx_bad_page+0x10/0x10
[ 96.407251][ T6537] ? page_bad_reason+0x9d/0x1e0
[ 96.407269][ T6537] __free_frozen_pages+0x76e/0xff0
[ 96.407294][ T6537] __folio_put+0x329/0x450
[ 96.407313][ T6537] ? __pfx___folio_put+0x10/0x10
[ 96.407330][ T6537] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.407349][ T6537] ? rcu_is_watching+0x12/0xc0
[ 96.407368][ T6537] ? lock_release+0x201/0x2f0
[ 96.407392][ T6537] filemap_free_folio+0x132/0x170
[ 96.407409][ T6537] delete_from_page_cache_batch+0x741/0x9b0
[ 96.407430][ T6537] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.407450][ T6537] ? __pfx_workingset_update_node+0x10/0x10
[ 96.407468][ T6537] ? xas_move_index+0xb0/0x110
[ 96.407488][ T6537] truncate_inode_pages_range+0x279/0xe30
[ 96.407512][ T6537] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.407550][ T6537] ? __pfx_down_write+0x10/0x10
[ 96.407571][ T6537] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.407602][ T6537] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.407625][ T6537] blkdev_flush_mapping+0xe9/0x280
[ 96.407646][ T6537] blkdev_put_whole+0xc4/0xf0
[ 96.407663][ T6537] bdev_release+0x47e/0x6d0
[ 96.407684][ T6537] ? __pfx_blkdev_release+0x10/0x10
[ 96.407703][ T6537] blkdev_release+0x15/0x20
[ 96.407723][ T6537] __fput+0x3ff/0xb70
[ 96.407742][ T6537] task_work_run+0x14d/0x240
[ 96.407760][ T6537] ? __pfx_task_work_run+0x10/0x10
[ 96.407778][ T6537] ? do_raw_spin_unlock+0x172/0x230
[ 96.407796][ T6537] do_exit+0xafb/0x2c30
[ 96.407821][ T6537] ? __pfx_do_exit+0x10/0x10
[ 96.407844][ T6537] ? preempt_schedule_thunk+0x16/0x30
[ 96.407862][ T6537] do_group_exit+0xd3/0x2a0
[ 96.407885][ T6537] __x64_sys_exit_group+0x3e/0x50
[ 96.407908][ T6537] x64_sys_call+0x1530/0x1730
[ 96.407931][ T6537] do_syscall_64+0xcd/0x260
[ 96.407951][ T6537] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.407968][ T6537] RIP: 0033:0x7f9fe6f8e969
[ 96.407981][ T6537] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 96.407988][ T6537] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 96.408004][ T6537] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 96.408015][ T6537] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 96.408024][ T6537] RBP: 00007ffdca8b3cfc R08: 00000006ca8b3d8f R09: 00000000000927c0
[ 96.408033][ T6537] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000004
[ 96.408044][ T6537] R13: 00000000000927c0 R14: 0000000000017547 R15: 00007ffdca8b3d50
[ 96.408058][ T6537]
[ 96.562641][ T6540] BUG: Bad page state in process syz.0.21 pfn:50e01
[ 96.565297][ T6540] page does not match folio
[ 96.567164][ T6540] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50e01
[ 96.574007][ T6540] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 96.577082][ T6540] raw: 00fff00000000000 ffffea0001438000 00000000ffffffff ffffffffffffffff
[ 96.585776][ T6540] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.589331][ T6540] page dumped because: nonzero pincount
[ 96.591584][ T6540] page_owner tracks the page as allocated
[ 96.593926][ T6540] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6540, tgid 6540 (syz.0.21), ts 96531695679, free_ts 83662406021
[ 96.603433][ T6540] post_alloc_hook+0x181/0x1b0
[ 96.605403][ T6540] get_page_from_freelist+0x135c/0x3920
[ 96.607785][ T6540] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.610210][ T6540] alloc_pages_mpol+0x1fb/0x550
[ 96.612132][ T6540] folio_alloc_noprof+0x20/0x2d0
[ 96.613623][ T6540] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.615395][ T6540] page_cache_ra_order+0x4c0/0xd00
[ 96.617529][ T6540] filemap_fault+0x1a5e/0x2740
[ 96.619281][ T6540] __do_fault+0x10a/0x490
[ 96.620896][ T6540] do_pte_missing+0x1a6/0x3fb0
[ 96.622789][ T6540] __handle_mm_fault+0x103d/0x2a40
[ 96.624918][ T6540] handle_mm_fault+0x3fe/0xad0
[ 96.626907][ T6540] do_user_addr_fault+0x60c/0x1370
[ 96.629108][ T6540] exc_page_fault+0x5c/0xc0
[ 96.630977][ T6540] asm_exc_page_fault+0x26/0x30
[ 96.632707][ T6540] page last free pid 6205 tgid 6205 stack trace:
[ 96.634603][ T6540] free_unref_folios+0x999/0x1630
[ 96.636165][ T6540] folios_put_refs+0x56f/0x740
[ 96.637720][ T6540] free_pages_and_swap_cache+0x245/0x4a0
[ 96.639413][ T6540] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 96.641327][ T6540] tlb_finish_mmu+0x168/0x7b0
[ 96.643280][ T6540] vms_clear_ptes+0x55e/0x770
[ 96.645236][ T6540] vms_complete_munmap_vmas+0x1ca/0x970
[ 96.647585][ T6540] do_vmi_align_munmap+0x43b/0x7d0
[ 96.649314][ T6540] do_vmi_munmap+0x208/0x3e0
[ 96.650723][ T6540] __vm_munmap+0x19a/0x390
[ 96.652133][ T6540] __x64_sys_munmap+0x59/0x80
[ 96.653566][ T6540] do_syscall_64+0xcd/0x260
[ 96.654960][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.656782][ T6540] Modules linked in:
[ 96.658045][ T6540] CPU: 0 UID: 0 PID: 6540 Comm: syz.0.21 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 96.658061][ T6540] Tainted: [B]=BAD_PAGE
[ 96.658064][ T6540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.658070][ T6540] Call Trace:
[ 96.658074][ T6540]
[ 96.658078][ T6540] dump_stack_lvl+0x16c/0x1f0
[ 96.658090][ T6540] bad_page+0xb3/0x1f0
[ 96.658100][ T6540] ? __pfx_bad_page+0x10/0x10
[ 96.658184][ T6540] ? __mem_cgroup_uncharge+0xda/0x130
[ 96.658197][ T6540] free_tail_page_prepare+0x44f/0x5b0
[ 96.658210][ T6540] __free_frozen_pages+0x96a/0xff0
[ 96.658225][ T6540] __folio_put+0x329/0x450
[ 96.658236][ T6540] ? __pfx___folio_put+0x10/0x10
[ 96.658247][ T6540] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.658258][ T6540] ? rcu_is_watching+0x12/0xc0
[ 96.658270][ T6540] ? lock_release+0x201/0x2f0
[ 96.658285][ T6540] filemap_free_folio+0x132/0x170
[ 96.658320][ T6540] delete_from_page_cache_batch+0x741/0x9b0
[ 96.658335][ T6540] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.658347][ T6540] ? __pfx_workingset_update_node+0x10/0x10
[ 96.658357][ T6540] ? xas_move_index+0xb0/0x110
[ 96.658372][ T6540] truncate_inode_pages_range+0x279/0xe30
[ 96.658387][ T6540] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.658409][ T6540] ? __pfx_down_write+0x10/0x10
[ 96.658422][ T6540] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.658438][ T6540] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.658452][ T6540] blkdev_flush_mapping+0xe9/0x280
[ 96.658465][ T6540] blkdev_put_whole+0xc4/0xf0
[ 96.658475][ T6540] bdev_release+0x47e/0x6d0
[ 96.658488][ T6540] ? __pfx_blkdev_release+0x10/0x10
[ 96.658500][ T6540] blkdev_release+0x15/0x20
[ 96.658512][ T6540] __fput+0x3ff/0xb70
[ 96.658523][ T6540] task_work_run+0x14d/0x240
[ 96.658534][ T6540] ? __pfx_task_work_run+0x10/0x10
[ 96.658544][ T6540] ? do_raw_spin_unlock+0x172/0x230
[ 96.658555][ T6540] do_exit+0xafb/0x2c30
[ 96.658570][ T6540] ? __pfx_do_exit+0x10/0x10
[ 96.658584][ T6540] ? preempt_schedule_thunk+0x16/0x30
[ 96.658595][ T6540] do_group_exit+0xd3/0x2a0
[ 96.658610][ T6540] __x64_sys_exit_group+0x3e/0x50
[ 96.658624][ T6540] x64_sys_call+0x1530/0x1730
[ 96.658639][ T6540] do_syscall_64+0xcd/0x260
[ 96.658653][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.658663][ T6540] RIP: 0033:0x7f9fe6f8e969
[ 96.658671][ T6540] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 96.658676][ T6540] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 96.658685][ T6540] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 96.658691][ T6540] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 96.658697][ T6540] RBP: 00007ffdca8b3cfc R08: 00000006ca8b3d8f R09: 00000000000927c0
[ 96.658703][ T6540] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000005
[ 96.658709][ T6540] R13: 00000000000927c0 R14: 0000000000017697 R15: 00007ffdca8b3d50
[ 96.658717][ T6540]
[ 96.658732][ T6540] BUG: Bad page state in process syz.0.21 pfn:50e00
[ 96.766474][ T6540] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50e00
[ 96.770146][ T6540] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 96.773507][ T6540] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 96.777061][ T6540] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.780568][ T6540] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.783973][ T6540] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.787526][ T6540] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.791443][ T6540] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.794967][ T6540] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.798616][ T6540] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 96.801584][ T6540] page_owner tracks the page as allocated
[ 96.803923][ T6540] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6540, tgid 6540 (syz.0.21), ts 96531695679, free_ts 83662401005
[ 96.812069][ T6540] post_alloc_hook+0x181/0x1b0
[ 96.814067][ T6540] get_page_from_freelist+0x135c/0x3920
[ 96.816360][ T6540] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.818904][ T6540] alloc_pages_mpol+0x1fb/0x550
[ 96.820948][ T6540] folio_alloc_noprof+0x20/0x2d0
[ 96.823000][ T6540] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.825339][ T6540] page_cache_ra_order+0x4c0/0xd00
[ 96.827481][ T6540] filemap_fault+0x1a5e/0x2740
[ 96.829460][ T6540] __do_fault+0x10a/0x490
[ 96.831264][ T6540] do_pte_missing+0x1a6/0x3fb0
[ 96.833259][ T6540] __handle_mm_fault+0x103d/0x2a40
[ 96.835399][ T6540] handle_mm_fault+0x3fe/0xad0
[ 96.837466][ T6540] do_user_addr_fault+0x60c/0x1370
[ 96.839604][ T6540] exc_page_fault+0x5c/0xc0
[ 96.841504][ T6540] asm_exc_page_fault+0x26/0x30
[ 96.843516][ T6540] page last free pid 6205 tgid 6205 stack trace:
[ 96.846106][ T6540] free_unref_folios+0x999/0x1630
[ 96.848247][ T6540] folios_put_refs+0x56f/0x740
[ 96.850254][ T6540] free_pages_and_swap_cache+0x245/0x4a0
[ 96.852580][ T6540] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 96.855063][ T6540] tlb_finish_mmu+0x168/0x7b0
[ 96.857059][ T6540] vms_clear_ptes+0x55e/0x770
[ 96.859133][ T6540] vms_complete_munmap_vmas+0x1ca/0x970
[ 96.861291][ T6540] do_vmi_align_munmap+0x43b/0x7d0
[ 96.863394][ T6540] do_vmi_munmap+0x208/0x3e0
[ 96.864875][ T6540] __vm_munmap+0x19a/0x390
[ 96.866241][ T6540] __x64_sys_munmap+0x59/0x80
[ 96.867734][ T6540] do_syscall_64+0xcd/0x260
[ 96.869131][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.870995][ T6540] Modules linked in:
[ 96.872291][ T6540] CPU: 0 UID: 0 PID: 6540 Comm: syz.0.21 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 96.872307][ T6540] Tainted: [B]=BAD_PAGE
[ 96.872311][ T6540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.872317][ T6540] Call Trace:
[ 96.872322][ T6540]
[ 96.872326][ T6540] dump_stack_lvl+0x16c/0x1f0
[ 96.872339][ T6540] bad_page+0xb3/0x1f0
[ 96.872350][ T6540] ? __pfx_bad_page+0x10/0x10
[ 96.872360][ T6540] ? page_bad_reason+0x9d/0x1e0
[ 96.872371][ T6540] __free_frozen_pages+0x76e/0xff0
[ 96.872386][ T6540] __folio_put+0x329/0x450
[ 96.872397][ T6540] ? __pfx___folio_put+0x10/0x10
[ 96.872408][ T6540] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.872420][ T6540] ? rcu_is_watching+0x12/0xc0
[ 96.872431][ T6540] ? lock_release+0x201/0x2f0
[ 96.872447][ T6540] filemap_free_folio+0x132/0x170
[ 96.872457][ T6540] delete_from_page_cache_batch+0x741/0x9b0
[ 96.872469][ T6540] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.872481][ T6540] ? __pfx_workingset_update_node+0x10/0x10
[ 96.872492][ T6540] ? xas_move_index+0xb0/0x110
[ 96.872504][ T6540] truncate_inode_pages_range+0x279/0xe30
[ 96.872520][ T6540] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.872542][ T6540] ? __pfx_down_write+0x10/0x10
[ 96.872555][ T6540] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.872571][ T6540] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.872585][ T6540] blkdev_flush_mapping+0xe9/0x280
[ 96.872598][ T6540] blkdev_put_whole+0xc4/0xf0
[ 96.872608][ T6540] bdev_release+0x47e/0x6d0
[ 96.872622][ T6540] ? __pfx_blkdev_release+0x10/0x10
[ 96.872634][ T6540] blkdev_release+0x15/0x20
[ 96.872650][ T6540] __fput+0x3ff/0xb70
[ 96.872662][ T6540] task_work_run+0x14d/0x240
[ 96.872672][ T6540] ? __pfx_task_work_run+0x10/0x10
[ 96.872682][ T6540] ? do_raw_spin_unlock+0x172/0x230
[ 96.872693][ T6540] do_exit+0xafb/0x2c30
[ 96.872709][ T6540] ? __pfx_do_exit+0x10/0x10
[ 96.872723][ T6540] ? preempt_schedule_thunk+0x16/0x30
[ 96.872734][ T6540] do_group_exit+0xd3/0x2a0
[ 96.872749][ T6540] __x64_sys_exit_group+0x3e/0x50
[ 96.872764][ T6540] x64_sys_call+0x1530/0x1730
[ 96.872778][ T6540] do_syscall_64+0xcd/0x260
[ 96.872790][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.872800][ T6540] RIP: 0033:0x7f9fe6f8e969
[ 96.872808][ T6540] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 96.872812][ T6540] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 96.872822][ T6540] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 96.872829][ T6540] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 96.872835][ T6540] RBP: 00007ffdca8b3cfc R08: 00000006ca8b3d8f R09: 00000000000927c0
[ 96.872841][ T6540] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000005
[ 96.872847][ T6540] R13: 00000000000927c0 R14: 0000000000017697 R15: 00007ffdca8b3d50
[ 96.872855][ T6540]
[ 97.022645][ T6543] BUG: Bad page state in process syz.0.22 pfn:50401
[ 97.025305][ T6543] page does not match folio
[ 97.027109][ T6543] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50401
[ 97.031262][ T6543] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.034320][ T6543] raw: 00fff00000000000 ffffea0001410000 00000000ffffffff ffffffffffffffff
[ 97.038062][ T6543] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.041481][ T6543] page dumped because: nonzero pincount
[ 97.043553][ T6543] page_owner tracks the page as allocated
[ 97.045933][ T6543] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6543, tgid 6543 (syz.0.22), ts 96992574309, free_ts 83645780863
[ 97.054145][ T6543] post_alloc_hook+0x181/0x1b0
[ 97.056169][ T6543] get_page_from_freelist+0x135c/0x3920
[ 97.058582][ T6543] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.061066][ T6543] alloc_pages_mpol+0x1fb/0x550
[ 97.063120][ T6543] folio_alloc_noprof+0x20/0x2d0
[ 97.065187][ T6543] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.067627][ T6543] page_cache_ra_order+0x4c0/0xd00
[ 97.069740][ T6543] filemap_fault+0x1a5e/0x2740
[ 97.071747][ T6543] __do_fault+0x10a/0x490
[ 97.073565][ T6543] do_pte_missing+0x1a6/0x3fb0
[ 97.075540][ T6543] __handle_mm_fault+0x103d/0x2a40
[ 97.077786][ T6543] handle_mm_fault+0x3fe/0xad0
[ 97.079783][ T6543] do_user_addr_fault+0x60c/0x1370
[ 97.081868][ T6543] exc_page_fault+0x5c/0xc0
[ 97.083768][ T6543] asm_exc_page_fault+0x26/0x30
[ 97.085717][ T6543] page last free pid 6205 tgid 6205 stack trace:
[ 97.088458][ T6543] free_unref_folios+0x999/0x1630
[ 97.090546][ T6543] folios_put_refs+0x56f/0x740
[ 97.092504][ T6543] free_pages_and_swap_cache+0x245/0x4a0
[ 97.094811][ T6543] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 97.097447][ T6543] tlb_finish_mmu+0x168/0x7b0
[ 97.099465][ T6543] vms_clear_ptes+0x55e/0x770
[ 97.101456][ T6543] vms_complete_munmap_vmas+0x1ca/0x970
[ 97.103851][ T6543] do_vmi_align_munmap+0x43b/0x7d0
[ 97.106028][ T6543] do_vmi_munmap+0x208/0x3e0
[ 97.108092][ T6543] __vm_munmap+0x19a/0x390
[ 97.109972][ T6543] __x64_sys_munmap+0x59/0x80
[ 97.111962][ T6543] do_syscall_64+0xcd/0x260
[ 97.113809][ T6543] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.116224][ T6543] Modules linked in:
[ 97.117919][ T6543] CPU: 2 UID: 0 PID: 6543 Comm: syz.0.22 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 97.117945][ T6543] Tainted: [B]=BAD_PAGE
[ 97.117951][ T6543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.117961][ T6543] Call Trace:
[ 97.117967][ T6543]
[ 97.117973][ T6543] dump_stack_lvl+0x16c/0x1f0
[ 97.117993][ T6543] bad_page+0xb3/0x1f0
[ 97.118009][ T6543] ? __pfx_bad_page+0x10/0x10
[ 97.118026][ T6543] ? __mem_cgroup_uncharge+0xda/0x130
[ 97.118046][ T6543] free_tail_page_prepare+0x44f/0x5b0
[ 97.118066][ T6543] __free_frozen_pages+0x96a/0xff0
[ 97.118088][ T6543] __folio_put+0x329/0x450
[ 97.118105][ T6543] ? __pfx___folio_put+0x10/0x10
[ 97.118123][ T6543] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.118142][ T6543] ? rcu_is_watching+0x12/0xc0
[ 97.118160][ T6543] ? lock_release+0x201/0x2f0
[ 97.118181][ T6543] filemap_free_folio+0x132/0x170
[ 97.118198][ T6543] delete_from_page_cache_batch+0x741/0x9b0
[ 97.118218][ T6543] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.118237][ T6543] ? __pfx_workingset_update_node+0x10/0x10
[ 97.118252][ T6543] ? xas_move_index+0xb0/0x110
[ 97.118271][ T6543] truncate_inode_pages_range+0x279/0xe30
[ 97.118292][ T6543] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.118326][ T6543] ? __pfx_down_write+0x10/0x10
[ 97.118345][ T6543] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.118369][ T6543] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.118388][ T6543] blkdev_flush_mapping+0xe9/0x280
[ 97.118404][ T6543] blkdev_put_whole+0xc4/0xf0
[ 97.118418][ T6543] bdev_release+0x47e/0x6d0
[ 97.118434][ T6543] ? __pfx_blkdev_release+0x10/0x10
[ 97.118450][ T6543] blkdev_release+0x15/0x20
[ 97.118467][ T6543] __fput+0x3ff/0xb70
[ 97.118482][ T6543] task_work_run+0x14d/0x240
[ 97.118500][ T6543] ? __pfx_task_work_run+0x10/0x10
[ 97.118516][ T6543] ? do_raw_spin_unlock+0x172/0x230
[ 97.118536][ T6543] do_exit+0xafb/0x2c30
[ 97.118561][ T6543] ? __pfx_do_exit+0x10/0x10
[ 97.118584][ T6543] ? preempt_schedule_thunk+0x16/0x30
[ 97.118609][ T6543] do_group_exit+0xd3/0x2a0
[ 97.118632][ T6543] __x64_sys_exit_group+0x3e/0x50
[ 97.118655][ T6543] x64_sys_call+0x1530/0x1730
[ 97.118676][ T6543] do_syscall_64+0xcd/0x260
[ 97.118694][ T6543] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.118711][ T6543] RIP: 0033:0x7f9fe6f8e969
[ 97.118724][ T6543] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 97.118731][ T6543] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 97.118747][ T6543] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 97.118757][ T6543] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 97.118767][ T6543] RBP: 00007ffdca8b3cfc R08: 00000006ca8b3d8f R09: 00000000000927c0
[ 97.118777][ T6543] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000006
[ 97.118788][ T6543] R13: 00000000000927c0 R14: 0000000000017891 R15: 00007ffdca8b3d50
[ 97.118803][ T6543]
[ 97.118831][ T6543] BUG: Bad page state in process syz.0.22 pfn:50400
[ 97.239240][ T6543] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50400
[ 97.242652][ T6543] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 97.246076][ T6543] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 97.249788][ T6543] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.253164][ T6543] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.256597][ T6543] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.260123][ T6543] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.263589][ T6543] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.267001][ T6543] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.270482][ T6543] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 97.273394][ T6543] page_owner tracks the page as allocated
[ 97.275704][ T6543] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6543, tgid 6543 (syz.0.22), ts 96992574309, free_ts 83645775780
[ 97.283759][ T6543] post_alloc_hook+0x181/0x1b0
[ 97.285727][ T6543] get_page_from_freelist+0x135c/0x3920
[ 97.288018][ T6543] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.290439][ T6543] alloc_pages_mpol+0x1fb/0x550
[ 97.292473][ T6543] folio_alloc_noprof+0x20/0x2d0
[ 97.294508][ T6543] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.296845][ T6543] page_cache_ra_order+0x4c0/0xd00
[ 97.298866][ T6543] filemap_fault+0x1a5e/0x2740
[ 97.300864][ T6543] __do_fault+0x10a/0x490
[ 97.302654][ T6543] do_pte_missing+0x1a6/0x3fb0
[ 97.304637][ T6543] __handle_mm_fault+0x103d/0x2a40
[ 97.306734][ T6543] handle_mm_fault+0x3fe/0xad0
[ 97.308775][ T6543] do_user_addr_fault+0x60c/0x1370
[ 97.310858][ T6543] exc_page_fault+0x5c/0xc0
[ 97.312731][ T6543] asm_exc_page_fault+0x26/0x30
[ 97.314580][ T6543] page last free pid 6205 tgid 6205 stack trace:
[ 97.317107][ T6543] free_unref_folios+0x999/0x1630
[ 97.319258][ T6543] folios_put_refs+0x56f/0x740
[ 97.321225][ T6543] free_pages_and_swap_cache+0x245/0x4a0
[ 97.323523][ T6543] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 97.325987][ T6543] tlb_finish_mmu+0x168/0x7b0
[ 97.327947][ T6543] vms_clear_ptes+0x55e/0x770
[ 97.329858][ T6543] vms_complete_munmap_vmas+0x1ca/0x970
[ 97.331988][ T6543] do_vmi_align_munmap+0x43b/0x7d0
[ 97.333913][ T6543] do_vmi_munmap+0x208/0x3e0
[ 97.335821][ T6543] __vm_munmap+0x19a/0x390
[ 97.337711][ T6543] __x64_sys_munmap+0x59/0x80
[ 97.339626][ T6543] do_syscall_64+0xcd/0x260
[ 97.341435][ T6543] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.343863][ T6543] Modules linked in:
[ 97.345489][ T6543] CPU: 2 UID: 0 PID: 6543 Comm: syz.0.22 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 97.345514][ T6543] Tainted: [B]=BAD_PAGE
[ 97.345520][ T6543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.345531][ T6543] Call Trace:
[ 97.345537][ T6543]
[ 97.345544][ T6543] dump_stack_lvl+0x16c/0x1f0
[ 97.345565][ T6543] bad_page+0xb3/0x1f0
[ 97.345588][ T6543] ? __pfx_bad_page+0x10/0x10
[ 97.345606][ T6543] ? page_bad_reason+0x9d/0x1e0
[ 97.345623][ T6543] __free_frozen_pages+0x76e/0xff0
[ 97.345648][ T6543] __folio_put+0x329/0x450
[ 97.345666][ T6543] ? __pfx___folio_put+0x10/0x10
[ 97.345685][ T6543] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.345704][ T6543] ? rcu_is_watching+0x12/0xc0
[ 97.345725][ T6543] ? lock_release+0x201/0x2f0
[ 97.345749][ T6543] filemap_free_folio+0x132/0x170
[ 97.345767][ T6543] delete_from_page_cache_batch+0x741/0x9b0
[ 97.345788][ T6543] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.345807][ T6543] ? __pfx_workingset_update_node+0x10/0x10
[ 97.345825][ T6543] ? xas_move_index+0xb0/0x110
[ 97.345845][ T6543] truncate_inode_pages_range+0x279/0xe30
[ 97.345871][ T6543] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.345908][ T6543] ? __pfx_down_write+0x10/0x10
[ 97.345930][ T6543] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.345955][ T6543] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.345978][ T6543] blkdev_flush_mapping+0xe9/0x280
[ 97.346000][ T6543] blkdev_put_whole+0xc4/0xf0
[ 97.346017][ T6543] bdev_release+0x47e/0x6d0
[ 97.346038][ T6543] ? __pfx_blkdev_release+0x10/0x10
[ 97.346058][ T6543] blkdev_release+0x15/0x20
[ 97.346076][ T6543] __fput+0x3ff/0xb70
[ 97.346097][ T6543] task_work_run+0x14d/0x240
[ 97.346114][ T6543] ? __pfx_task_work_run+0x10/0x10
[ 97.346132][ T6543] ? do_raw_spin_unlock+0x172/0x230
[ 97.346150][ T6543] do_exit+0xafb/0x2c30
[ 97.346175][ T6543] ? __pfx_do_exit+0x10/0x10
[ 97.346199][ T6543] ? preempt_schedule_thunk+0x16/0x30
[ 97.346216][ T6543] do_group_exit+0xd3/0x2a0
[ 97.346240][ T6543] __x64_sys_exit_group+0x3e/0x50
[ 97.346264][ T6543] x64_sys_call+0x1530/0x1730
[ 97.346287][ T6543] do_syscall_64+0xcd/0x260
[ 97.346307][ T6543] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.346324][ T6543] RIP: 0033:0x7f9fe6f8e969
[ 97.346336][ T6543] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 97.346343][ T6543] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 97.346359][ T6543] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 97.346370][ T6543] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 97.346379][ T6543] RBP: 00007ffdca8b3cfc R08: 00000006ca8b3d8f R09: 00000000000927c0
[ 97.346390][ T6543] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000006
[ 97.346400][ T6543] R13: 00000000000927c0 R14: 0000000000017891 R15: 00007ffdca8b3d50
[ 97.346415][ T6543]
[ 97.388511][ T6546] BUG: Bad page state in process syz.0.23 pfn:50801
[ 97.447372][ T6041] Bluetooth: hci0: command tx timeout
[ 97.449373][ T6546] page does not match folio
[ 97.464936][ T6546] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50801
[ 97.468380][ T6546] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.470635][ T6546] raw: 00fff00000000000 ffffea0001420000 00000000ffffffff ffffffffffffffff
[ 97.473312][ T6546] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.476016][ T6546] page dumped because: nonzero pincount
[ 97.478024][ T6546] page_owner tracks the page as allocated
[ 97.479752][ T6546] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6546, tgid 6546 (syz.0.23), ts 97356206017, free_ts 96872881204
[ 97.485979][ T6546] post_alloc_hook+0x181/0x1b0
[ 97.488240][ T6546] get_page_from_freelist+0x135c/0x3920
[ 97.490419][ T6546] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.492602][ T6546] alloc_pages_mpol+0x1fb/0x550
[ 97.494470][ T6546] folio_alloc_noprof+0x20/0x2d0
[ 97.496514][ T6546] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.498990][ T6546] page_cache_ra_order+0x4c0/0xd00
[ 97.501061][ T6546] filemap_fault+0x1a5e/0x2740
[ 97.502948][ T6546] __do_fault+0x10a/0x490
[ 97.504660][ T6546] do_pte_missing+0x1a6/0x3fb0
[ 97.506613][ T6546] __handle_mm_fault+0x103d/0x2a40
[ 97.509101][ T6546] handle_mm_fault+0x3fe/0xad0
[ 97.511046][ T6546] do_user_addr_fault+0x60c/0x1370
[ 97.513077][ T6546] exc_page_fault+0x5c/0xc0
[ 97.514826][ T6546] asm_exc_page_fault+0x26/0x30
[ 97.516780][ T6546] page last free pid 6540 tgid 6540 stack trace:
[ 97.519548][ T6546] free_unref_folios+0x999/0x1630
[ 97.521556][ T6546] folios_put_refs+0x56f/0x740
[ 97.523426][ T6546] truncate_inode_pages_range+0x311/0xe30
[ 97.525645][ T6546] blkdev_flush_mapping+0xe9/0x280
[ 97.527894][ T6546] blkdev_put_whole+0xc4/0xf0
[ 97.529739][ T6546] bdev_release+0x47e/0x6d0
[ 97.531528][ T6546] blkdev_release+0x15/0x20
[ 97.533330][ T6546] __fput+0x3ff/0xb70
[ 97.534955][ T6546] task_work_run+0x14d/0x240
[ 97.536784][ T6546] do_exit+0xafb/0x2c30
[ 97.538772][ T6546] do_group_exit+0xd3/0x2a0
[ 97.540617][ T6546] __x64_sys_exit_group+0x3e/0x50
[ 97.542637][ T6546] x64_sys_call+0x1530/0x1730
[ 97.544408][ T6546] do_syscall_64+0xcd/0x260
[ 97.546134][ T6546] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.548807][ T6546] Modules linked in:
[ 97.550146][ T6546] CPU: 1 UID: 0 PID: 6546 Comm: syz.0.23 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 97.550162][ T6546] Tainted: [B]=BAD_PAGE
[ 97.550166][ T6546] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.550172][ T6546] Call Trace:
[ 97.550176][ T6546]
[ 97.550180][ T6546] dump_stack_lvl+0x16c/0x1f0
[ 97.550193][ T6546] bad_page+0xb3/0x1f0
[ 97.550204][ T6546] ? __pfx_bad_page+0x10/0x10
[ 97.550214][ T6546] ? __mem_cgroup_uncharge+0xda/0x130
[ 97.550227][ T6546] free_tail_page_prepare+0x44f/0x5b0
[ 97.550240][ T6546] __free_frozen_pages+0x96a/0xff0
[ 97.550255][ T6546] __folio_put+0x329/0x450
[ 97.550266][ T6546] ? __pfx___folio_put+0x10/0x10
[ 97.550277][ T6546] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.550289][ T6546] ? rcu_is_watching+0x12/0xc0
[ 97.550301][ T6546] ? lock_release+0x201/0x2f0
[ 97.550316][ T6546] filemap_free_folio+0x132/0x170
[ 97.550327][ T6546] delete_from_page_cache_batch+0x741/0x9b0
[ 97.550339][ T6546] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.550353][ T6546] ? __pfx_workingset_update_node+0x10/0x10
[ 97.550364][ T6546] ? xas_move_index+0xb0/0x110
[ 97.550376][ T6546] truncate_inode_pages_range+0x279/0xe30
[ 97.550391][ T6546] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.550413][ T6546] ? __pfx_down_write+0x10/0x10
[ 97.550426][ T6546] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.550443][ T6546] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.550457][ T6546] blkdev_flush_mapping+0xe9/0x280
[ 97.550470][ T6546] blkdev_put_whole+0xc4/0xf0
[ 97.550481][ T6546] bdev_release+0x47e/0x6d0
[ 97.550494][ T6546] ? __pfx_blkdev_release+0x10/0x10
[ 97.550506][ T6546] blkdev_release+0x15/0x20
[ 97.550518][ T6546] __fput+0x3ff/0xb70
[ 97.550530][ T6546] task_work_run+0x14d/0x240
[ 97.550540][ T6546] ? __pfx_task_work_run+0x10/0x10
[ 97.550550][ T6546] ? do_raw_spin_unlock+0x172/0x230
[ 97.550561][ T6546] do_exit+0xafb/0x2c30
[ 97.550576][ T6546] ? __pfx_do_exit+0x10/0x10
[ 97.550590][ T6546] ? preempt_schedule_thunk+0x16/0x30
[ 97.550605][ T6546] do_group_exit+0xd3/0x2a0
[ 97.550619][ T6546] __x64_sys_exit_group+0x3e/0x50
[ 97.550635][ T6546] x64_sys_call+0x1530/0x1730
[ 97.550649][ T6546] do_syscall_64+0xcd/0x260
[ 97.550661][ T6546] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.550671][ T6546] RIP: 0033:0x7f9fe6f8e969
[ 97.550678][ T6546] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 97.550683][ T6546] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 97.550692][ T6546] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 97.550699][ T6546] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 97.550704][ T6546] RBP: 00007ffdca8b3cfc R08: 00000006ca8b3d8f R09: 00000000000927c0
[ 97.550711][ T6546] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000007
[ 97.550716][ T6546] R13: 00000000000927c0 R14: 0000000000017a5e R15: 00007ffdca8b3d50
[ 97.550725][ T6546]
[ 97.550739][ T6546] BUG: Bad page state in process syz.0.23 pfn:50800
[ 97.652613][ T6546] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50800
[ 97.655752][ T6546] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 97.658593][ T6546] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 97.661898][ T6546] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.664907][ T6546] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.668117][ T6546] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.670996][ T6546] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.673947][ T6546] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.677368][ T6546] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.680806][ T6546] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 97.683682][ T6546] page_owner tracks the page as allocated
[ 97.685947][ T6546] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6546, tgid 6546 (syz.0.23), ts 97356206017, free_ts 96872881204
[ 97.693869][ T6546] post_alloc_hook+0x181/0x1b0
[ 97.695822][ T6546] get_page_from_freelist+0x135c/0x3920
[ 97.698085][ T6546] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.700204][ T6546] alloc_pages_mpol+0x1fb/0x550
[ 97.701639][ T6546] folio_alloc_noprof+0x20/0x2d0
[ 97.703232][ T6546] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.704907][ T6546] page_cache_ra_order+0x4c0/0xd00
[ 97.706430][ T6546] filemap_fault+0x1a5e/0x2740
[ 97.707921][ T6546] __do_fault+0x10a/0x490
[ 97.709200][ T6546] do_pte_missing+0x1a6/0x3fb0
[ 97.710638][ T6546] __handle_mm_fault+0x103d/0x2a40
[ 97.712174][ T6546] handle_mm_fault+0x3fe/0xad0
[ 97.713645][ T6546] do_user_addr_fault+0x60c/0x1370
[ 97.715338][ T6546] exc_page_fault+0x5c/0xc0
[ 97.716803][ T6546] asm_exc_page_fault+0x26/0x30
[ 97.718455][ T6546] page last free pid 6540 tgid 6540 stack trace:
[ 97.720406][ T6546] free_unref_folios+0x999/0x1630
[ 97.721876][ T6546] folios_put_refs+0x56f/0x740
[ 97.723663][ T6546] truncate_inode_pages_range+0x311/0xe30
[ 97.725442][ T6546] blkdev_flush_mapping+0xe9/0x280
[ 97.727034][ T6546] blkdev_put_whole+0xc4/0xf0
[ 97.728540][ T6546] bdev_release+0x47e/0x6d0
[ 97.729994][ T6546] blkdev_release+0x15/0x20
[ 97.731402][ T6546] __fput+0x3ff/0xb70
[ 97.732710][ T6546] task_work_run+0x14d/0x240
[ 97.734115][ T6546] do_exit+0xafb/0x2c30
[ 97.735447][ T6546] do_group_exit+0xd3/0x2a0
[ 97.736838][ T6546] __x64_sys_exit_group+0x3e/0x50
[ 97.738405][ T6546] x64_sys_call+0x1530/0x1730
[ 97.740000][ T6546] do_syscall_64+0xcd/0x260
[ 97.741886][ T6546] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.744283][ T6546] Modules linked in:
[ 97.745854][ T6546] CPU: 1 UID: 0 PID: 6546 Comm: syz.0.23 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 97.745878][ T6546] Tainted: [B]=BAD_PAGE
[ 97.745883][ T6546] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.745893][ T6546] Call Trace:
[ 97.745899][ T6546]
[ 97.745905][ T6546] dump_stack_lvl+0x16c/0x1f0
[ 97.745924][ T6546] bad_page+0xb3/0x1f0
[ 97.745940][ T6546] ? __pfx_bad_page+0x10/0x10
[ 97.745956][ T6546] ? page_bad_reason+0x9d/0x1e0
[ 97.745972][ T6546] __free_frozen_pages+0x76e/0xff0
[ 97.745995][ T6546] __folio_put+0x329/0x450
[ 97.746010][ T6546] ? __pfx___folio_put+0x10/0x10
[ 97.746027][ T6546] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.746044][ T6546] ? rcu_is_watching+0x12/0xc0
[ 97.746061][ T6546] ? lock_release+0x201/0x2f0
[ 97.746083][ T6546] filemap_free_folio+0x132/0x170
[ 97.746099][ T6546] delete_from_page_cache_batch+0x741/0x9b0
[ 97.746117][ T6546] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.746136][ T6546] ? __pfx_workingset_update_node+0x10/0x10
[ 97.746152][ T6546] ? xas_move_index+0xb0/0x110
[ 97.746169][ T6546] truncate_inode_pages_range+0x279/0xe30
[ 97.746191][ T6546] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.746225][ T6546] ? __pfx_down_write+0x10/0x10
[ 97.746245][ T6546] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.746269][ T6546] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.746290][ T6546] blkdev_flush_mapping+0xe9/0x280
[ 97.746308][ T6546] blkdev_put_whole+0xc4/0xf0
[ 97.746324][ T6546] bdev_release+0x47e/0x6d0
[ 97.746343][ T6546] ? __pfx_blkdev_release+0x10/0x10
[ 97.746361][ T6546] blkdev_release+0x15/0x20
[ 97.746379][ T6546] __fput+0x3ff/0xb70
[ 97.746397][ T6546] task_work_run+0x14d/0x240
[ 97.746412][ T6546] ? __pfx_task_work_run+0x10/0x10
[ 97.746427][ T6546] ? do_raw_spin_unlock+0x172/0x230
[ 97.746444][ T6546] do_exit+0xafb/0x2c30
[ 97.746466][ T6546] ? __pfx_do_exit+0x10/0x10
[ 97.746487][ T6546] ? preempt_schedule_thunk+0x16/0x30
[ 97.746503][ T6546] do_group_exit+0xd3/0x2a0
[ 97.746525][ T6546] __x64_sys_exit_group+0x3e/0x50
[ 97.746546][ T6546] x64_sys_call+0x1530/0x1730
[ 97.746567][ T6546] do_syscall_64+0xcd/0x260
[ 97.746584][ T6546] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.746599][ T6546] RIP: 0033:0x7f9fe6f8e969
[ 97.746610][ T6546] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 97.746618][ T6546] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 97.746632][ T6546] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 97.746643][ T6546] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 97.746651][ T6546] RBP: 00007ffdca8b3cfc R08: 00000006ca8b3d8f R09: 00000000000927c0
[ 97.746669][ T6546] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000007
[ 97.746678][ T6546] R13: 00000000000927c0 R14: 0000000000017a5e R15: 00007ffdca8b3d50
[ 97.746688][ T6546]
[ 97.887538][ T6550] BUG: Bad page state in process syz.0.24 pfn:50a01
[ 97.890139][ T6550] page does not match folio
[ 97.891927][ T6550] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50a01
[ 97.895835][ T6550] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.899051][ T6550] raw: 00fff00000000000 ffffea0001428000 00000000ffffffff ffffffffffffffff
[ 97.902455][ T6550] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.905919][ T6550] page dumped because: nonzero pincount
[ 97.908350][ T6550] page_owner tracks the page as allocated
[ 97.910616][ T6550] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6549, tgid 6549 (syz.0.24), ts 97854987305, free_ts 97746743324
[ 97.921047][ T6550] post_alloc_hook+0x181/0x1b0
[ 97.922961][ T6550] get_page_from_freelist+0x135c/0x3920
[ 97.925113][ T6550] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.927520][ T6550] alloc_pages_mpol+0x1fb/0x550
[ 97.929452][ T6550] folio_alloc_noprof+0x20/0x2d0
[ 97.931421][ T6550] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.933650][ T6550] page_cache_ra_order+0x4c0/0xd00
[ 97.935667][ T6550] filemap_fault+0x1a5e/0x2740
[ 97.937731][ T6550] __do_fault+0x10a/0x490
[ 97.939457][ T6550] do_pte_missing+0x1a6/0x3fb0
[ 97.941415][ T6550] __handle_mm_fault+0x103d/0x2a40
[ 97.943473][ T6550] handle_mm_fault+0x3fe/0xad0
[ 97.945401][ T6550] do_user_addr_fault+0x60c/0x1370
[ 97.947558][ T6550] exc_page_fault+0x5c/0xc0
[ 97.949363][ T6550] asm_exc_page_fault+0x26/0x30
[ 97.951276][ T6550] page last free pid 6546 tgid 6546 stack trace:
[ 97.953720][ T6550] free_unref_folios+0x999/0x1630
[ 97.955710][ T6550] folios_put_refs+0x56f/0x740
[ 97.957743][ T6550] truncate_inode_pages_range+0x311/0xe30
[ 97.959997][ T6550] blkdev_flush_mapping+0xe9/0x280
[ 97.961974][ T6550] blkdev_put_whole+0xc4/0xf0
[ 97.963873][ T6550] bdev_release+0x47e/0x6d0
[ 97.965623][ T6550] blkdev_release+0x15/0x20
[ 97.967535][ T6550] __fput+0x3ff/0xb70
[ 97.969130][ T6550] task_work_run+0x14d/0x240
[ 97.970943][ T6550] do_exit+0xafb/0x2c30
[ 97.972658][ T6550] do_group_exit+0xd3/0x2a0
[ 97.974454][ T6550] __x64_sys_exit_group+0x3e/0x50
[ 97.976482][ T6550] x64_sys_call+0x1530/0x1730
[ 97.978463][ T6550] do_syscall_64+0xcd/0x260
[ 97.980276][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.982628][ T6550] Modules linked in:
[ 97.984174][ T6550] CPU: 2 UID: 0 PID: 6550 Comm: syz.0.24 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 97.984198][ T6550] Tainted: [B]=BAD_PAGE
[ 97.984203][ T6550] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.984213][ T6550] Call Trace:
[ 97.984219][ T6550]
[ 97.984225][ T6550] dump_stack_lvl+0x16c/0x1f0
[ 97.984244][ T6550] bad_page+0xb3/0x1f0
[ 97.984261][ T6550] ? __pfx_bad_page+0x10/0x10
[ 97.984277][ T6550] ? __mem_cgroup_uncharge+0xda/0x130
[ 97.984297][ T6550] free_tail_page_prepare+0x44f/0x5b0
[ 97.984317][ T6550] __free_frozen_pages+0x96a/0xff0
[ 97.984339][ T6550] __folio_put+0x329/0x450
[ 97.984356][ T6550] ? __pfx___folio_put+0x10/0x10
[ 97.984378][ T6550] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.984396][ T6550] ? rcu_is_watching+0x12/0xc0
[ 97.984413][ T6550] ? lock_release+0x201/0x2f0
[ 97.984436][ T6550] filemap_free_folio+0x132/0x170
[ 97.984453][ T6550] delete_from_page_cache_batch+0x741/0x9b0
[ 97.984472][ T6550] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.984491][ T6550] ? __pfx_workingset_update_node+0x10/0x10
[ 97.984508][ T6550] ? xas_move_index+0xb0/0x110
[ 97.984527][ T6550] truncate_inode_pages_range+0x279/0xe30
[ 97.984550][ T6550] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.984585][ T6550] ? __pfx_down_write+0x10/0x10
[ 97.984604][ T6550] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.984628][ T6550] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.984649][ T6550] blkdev_flush_mapping+0xe9/0x280
[ 97.984667][ T6550] ? filemap_check_errors+0xa9/0x160
[ 97.984688][ T6550] blkdev_put_whole+0xc4/0xf0
[ 97.984704][ T6550] bdev_release+0x47e/0x6d0
[ 97.984723][ T6550] ? __pfx_blkdev_release+0x10/0x10
[ 97.984741][ T6550] blkdev_release+0x15/0x20
[ 97.984758][ T6550] __fput+0x3ff/0xb70
[ 97.984776][ T6550] task_work_run+0x14d/0x240
[ 97.984792][ T6550] ? __pfx_task_work_run+0x10/0x10
[ 97.984808][ T6550] ? do_raw_spin_unlock+0x172/0x230
[ 97.984825][ T6550] do_exit+0xafb/0x2c30
[ 97.984845][ T6550] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.984869][ T6550] ? __pfx_do_exit+0x10/0x10
[ 97.984890][ T6550] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.984905][ T6550] ? get_signal+0x8f5/0x26d0
[ 97.984922][ T6550] ? rcu_is_watching+0x12/0xc0
[ 97.984940][ T6550] do_group_exit+0xd3/0x2a0
[ 97.984962][ T6550] get_signal+0x2673/0x26d0
[ 97.984982][ T6550] ? __pfx_get_signal+0x10/0x10
[ 97.984999][ T6550] ? do_futex+0x122/0x350
[ 97.985018][ T6550] ? __pfx_do_futex+0x10/0x10
[ 97.985037][ T6550] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.985059][ T6550] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.985083][ T6550] ? madvise_unlock+0xc6/0x190
[ 97.985101][ T6550] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.985120][ T6550] do_syscall_64+0xda/0x260
[ 97.985138][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.985153][ T6550] RIP: 0033:0x7f9fe6f8e969
[ 97.985166][ T6550] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 97.985173][ T6550] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.985188][ T6550] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 97.985199][ T6550] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 97.985208][ T6550] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.985217][ T6550] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 97.985227][ T6550] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 97.985239][ T6550]
[ 97.985267][ T6550] BUG: Bad page state in process syz.0.24 pfn:50a00
[ 98.121539][ T6550] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50a00
[ 98.124223][ T6550] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 98.126699][ T6550] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 98.129859][ T6550] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.133010][ T6550] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.136400][ T6550] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.139913][ T6550] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.143336][ T6550] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.146280][ T6550] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.149504][ T6550] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 98.152261][ T6550] page_owner tracks the page as allocated
[ 98.154304][ T6550] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6549, tgid 6549 (syz.0.24), ts 97854987305, free_ts 97746743324
[ 98.160391][ T6550] post_alloc_hook+0x181/0x1b0
[ 98.161983][ T6550] get_page_from_freelist+0x135c/0x3920
[ 98.163705][ T6550] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.165490][ T6550] alloc_pages_mpol+0x1fb/0x550
[ 98.166972][ T6550] folio_alloc_noprof+0x20/0x2d0
[ 98.168603][ T6550] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.170337][ T6550] page_cache_ra_order+0x4c0/0xd00
[ 98.172008][ T6550] filemap_fault+0x1a5e/0x2740
[ 98.173784][ T6550] __do_fault+0x10a/0x490
[ 98.175099][ T6550] do_pte_missing+0x1a6/0x3fb0
[ 98.176610][ T6550] __handle_mm_fault+0x103d/0x2a40
[ 98.178607][ T6550] handle_mm_fault+0x3fe/0xad0
[ 98.180052][ T6550] do_user_addr_fault+0x60c/0x1370
[ 98.181600][ T6550] exc_page_fault+0x5c/0xc0
[ 98.182977][ T6550] asm_exc_page_fault+0x26/0x30
[ 98.184422][ T6550] page last free pid 6546 tgid 6546 stack trace:
[ 98.186331][ T6550] free_unref_folios+0x999/0x1630
[ 98.187908][ T6550] folios_put_refs+0x56f/0x740
[ 98.189357][ T6550] truncate_inode_pages_range+0x311/0xe30
[ 98.191339][ T6550] blkdev_flush_mapping+0xe9/0x280
[ 98.193185][ T6550] blkdev_put_whole+0xc4/0xf0
[ 98.194597][ T6550] bdev_release+0x47e/0x6d0
[ 98.195968][ T6550] blkdev_release+0x15/0x20
[ 98.197489][ T6550] __fput+0x3ff/0xb70
[ 98.198730][ T6550] task_work_run+0x14d/0x240
[ 98.200126][ T6550] do_exit+0xafb/0x2c30
[ 98.201437][ T6550] do_group_exit+0xd3/0x2a0
[ 98.202805][ T6550] __x64_sys_exit_group+0x3e/0x50
[ 98.204312][ T6550] x64_sys_call+0x1530/0x1730
[ 98.205706][ T6550] do_syscall_64+0xcd/0x260
[ 98.207084][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.208999][ T6550] Modules linked in:
[ 98.210190][ T6550] CPU: 2 UID: 0 PID: 6550 Comm: syz.0.24 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 98.210206][ T6550] Tainted: [B]=BAD_PAGE
[ 98.210210][ T6550] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.210228][ T6550] Call Trace:
[ 98.210232][ T6550]
[ 98.210236][ T6550] dump_stack_lvl+0x16c/0x1f0
[ 98.210249][ T6550] bad_page+0xb3/0x1f0
[ 98.210260][ T6550] ? __pfx_bad_page+0x10/0x10
[ 98.210271][ T6550] ? page_bad_reason+0x9d/0x1e0
[ 98.210282][ T6550] __free_frozen_pages+0x76e/0xff0
[ 98.210297][ T6550] __folio_put+0x329/0x450
[ 98.210309][ T6550] ? __pfx___folio_put+0x10/0x10
[ 98.210320][ T6550] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.210331][ T6550] ? rcu_is_watching+0x12/0xc0
[ 98.210343][ T6550] ? lock_release+0x201/0x2f0
[ 98.210358][ T6550] filemap_free_folio+0x132/0x170
[ 98.210369][ T6550] delete_from_page_cache_batch+0x741/0x9b0
[ 98.210381][ T6550] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.210393][ T6550] ? __pfx_workingset_update_node+0x10/0x10
[ 98.210404][ T6550] ? xas_move_index+0xb0/0x110
[ 98.210416][ T6550] truncate_inode_pages_range+0x279/0xe30
[ 98.210431][ T6550] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.210454][ T6550] ? __pfx_down_write+0x10/0x10
[ 98.210466][ T6550] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.210482][ T6550] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.210497][ T6550] blkdev_flush_mapping+0xe9/0x280
[ 98.210509][ T6550] ? filemap_check_errors+0xa9/0x160
[ 98.210524][ T6550] blkdev_put_whole+0xc4/0xf0
[ 98.210534][ T6550] bdev_release+0x47e/0x6d0
[ 98.210547][ T6550] ? __pfx_blkdev_release+0x10/0x10
[ 98.210559][ T6550] blkdev_release+0x15/0x20
[ 98.210571][ T6550] __fput+0x3ff/0xb70
[ 98.210584][ T6550] task_work_run+0x14d/0x240
[ 98.210594][ T6550] ? __pfx_task_work_run+0x10/0x10
[ 98.210608][ T6550] ? do_raw_spin_unlock+0x172/0x230
[ 98.210619][ T6550] do_exit+0xafb/0x2c30
[ 98.210634][ T6550] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.210651][ T6550] ? __pfx_do_exit+0x10/0x10
[ 98.210665][ T6550] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.210674][ T6550] ? get_signal+0x8f5/0x26d0
[ 98.210686][ T6550] ? rcu_is_watching+0x12/0xc0
[ 98.210698][ T6550] do_group_exit+0xd3/0x2a0
[ 98.210713][ T6550] get_signal+0x2673/0x26d0
[ 98.210727][ T6550] ? __pfx_get_signal+0x10/0x10
[ 98.210738][ T6550] ? do_futex+0x122/0x350
[ 98.210751][ T6550] ? __pfx_do_futex+0x10/0x10
[ 98.210764][ T6550] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.210780][ T6550] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.210795][ T6550] ? madvise_unlock+0xc6/0x190
[ 98.210807][ T6550] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.210819][ T6550] do_syscall_64+0xda/0x260
[ 98.210831][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.210841][ T6550] RIP: 0033:0x7f9fe6f8e969
[ 98.210850][ T6550] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 98.210854][ T6550] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.210864][ T6550] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 98.210870][ T6550] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 98.210876][ T6550] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.210882][ T6550] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 98.210888][ T6550] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 98.210897][ T6550]
[ 98.271495][ T6553] atomic_op ffff888025103198 conn xmit_atomic 0000000000000000
[ 98.368859][ T6554] BUG: Bad page state in process syz.0.26 pfn:50c01
[ 98.371234][ T6554] page does not match folio
[ 98.372836][ T6554] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50c01
[ 98.376351][ T6554] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 98.378681][ T6554] raw: 00fff00000000000 ffffea0001430000 00000000ffffffff ffffffffffffffff
[ 98.381793][ T6554] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.384744][ T6554] page dumped because: nonzero pincount
[ 98.386650][ T6554] page_owner tracks the page as allocated
[ 98.388432][ T6554] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6554, tgid 6554 (syz.0.26), ts 98352526484, free_ts 96523781822
[ 98.394241][ T6554] post_alloc_hook+0x181/0x1b0
[ 98.395715][ T6554] get_page_from_freelist+0x135c/0x3920
[ 98.397383][ T6554] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.399229][ T6554] alloc_pages_mpol+0x1fb/0x550
[ 98.400693][ T6554] folio_alloc_noprof+0x20/0x2d0
[ 98.402191][ T6554] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.403878][ T6554] page_cache_ra_order+0x4c0/0xd00
[ 98.405385][ T6554] filemap_fault+0x1a5e/0x2740
[ 98.406848][ T6554] __do_fault+0x10a/0x490
[ 98.408244][ T6554] do_pte_missing+0x1a6/0x3fb0
[ 98.409663][ T6554] __handle_mm_fault+0x103d/0x2a40
[ 98.411193][ T6554] handle_mm_fault+0x3fe/0xad0
[ 98.412604][ T6554] do_user_addr_fault+0x60c/0x1370
[ 98.414107][ T6554] exc_page_fault+0x5c/0xc0
[ 98.415450][ T6554] asm_exc_page_fault+0x26/0x30
[ 98.416957][ T6554] page last free pid 6537 tgid 6537 stack trace:
[ 98.418846][ T6554] free_unref_folios+0x999/0x1630
[ 98.420375][ T6554] folios_put_refs+0x56f/0x740
[ 98.421769][ T6554] truncate_inode_pages_range+0x311/0xe30
[ 98.423443][ T6554] blkdev_flush_mapping+0xe9/0x280
[ 98.424945][ T6554] blkdev_put_whole+0xc4/0xf0
[ 98.426473][ T6554] bdev_release+0x47e/0x6d0
[ 98.427890][ T6554] blkdev_release+0x15/0x20
[ 98.429220][ T6554] __fput+0x3ff/0xb70
[ 98.430416][ T6554] task_work_run+0x14d/0x240
[ 98.431796][ T6554] do_exit+0xafb/0x2c30
[ 98.433028][ T6554] do_group_exit+0xd3/0x2a0
[ 98.434349][ T6554] __x64_sys_exit_group+0x3e/0x50
[ 98.435875][ T6554] x64_sys_call+0x1530/0x1730
[ 98.437354][ T6554] do_syscall_64+0xcd/0x260
[ 98.438787][ T6554] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.440878][ T6554] Modules linked in:
[ 98.442141][ T6554] CPU: 3 UID: 0 PID: 6554 Comm: syz.0.26 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 98.442159][ T6554] Tainted: [B]=BAD_PAGE
[ 98.442162][ T6554] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.442180][ T6554] Call Trace:
[ 98.442185][ T6554]
[ 98.442189][ T6554] dump_stack_lvl+0x16c/0x1f0
[ 98.442202][ T6554] bad_page+0xb3/0x1f0
[ 98.442213][ T6554] ? __pfx_bad_page+0x10/0x10
[ 98.442224][ T6554] ? __mem_cgroup_uncharge+0xda/0x130
[ 98.442237][ T6554] free_tail_page_prepare+0x44f/0x5b0
[ 98.442250][ T6554] __free_frozen_pages+0x96a/0xff0
[ 98.442265][ T6554] __folio_put+0x329/0x450
[ 98.442276][ T6554] ? __pfx___folio_put+0x10/0x10
[ 98.442287][ T6554] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.442298][ T6554] ? rcu_is_watching+0x12/0xc0
[ 98.442310][ T6554] ? lock_release+0x201/0x2f0
[ 98.442325][ T6554] filemap_free_folio+0x132/0x170
[ 98.442340][ T6554] delete_from_page_cache_batch+0x741/0x9b0
[ 98.442353][ T6554] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.442365][ T6554] ? __pfx_workingset_update_node+0x10/0x10
[ 98.442375][ T6554] ? xas_move_index+0xb0/0x110
[ 98.442387][ T6554] truncate_inode_pages_range+0x279/0xe30
[ 98.442403][ T6554] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.442425][ T6554] ? __pfx_down_write+0x10/0x10
[ 98.442438][ T6554] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.442454][ T6554] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.442469][ T6554] blkdev_flush_mapping+0xe9/0x280
[ 98.442481][ T6554] blkdev_put_whole+0xc4/0xf0
[ 98.442492][ T6554] bdev_release+0x47e/0x6d0
[ 98.442505][ T6554] ? __pfx_blkdev_release+0x10/0x10
[ 98.442517][ T6554] blkdev_release+0x15/0x20
[ 98.442529][ T6554] __fput+0x3ff/0xb70
[ 98.442541][ T6554] task_work_run+0x14d/0x240
[ 98.442552][ T6554] ? __pfx_task_work_run+0x10/0x10
[ 98.442562][ T6554] ? do_raw_spin_unlock+0x172/0x230
[ 98.442573][ T6554] do_exit+0xafb/0x2c30
[ 98.442590][ T6554] ? __pfx_do_exit+0x10/0x10
[ 98.442604][ T6554] ? preempt_schedule_thunk+0x16/0x30
[ 98.442615][ T6554] do_group_exit+0xd3/0x2a0
[ 98.442629][ T6554] __x64_sys_exit_group+0x3e/0x50
[ 98.442644][ T6554] x64_sys_call+0x1530/0x1730
[ 98.442658][ T6554] do_syscall_64+0xcd/0x260
[ 98.442670][ T6554] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.442680][ T6554] RIP: 0033:0x7f9fe6f8e969
[ 98.442688][ T6554] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 98.442693][ T6554] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 98.442703][ T6554] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 98.442709][ T6554] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 98.442715][ T6554] RBP: 00007ffdca8b3cfc R08: 00000006ca8b3d8f R09: 00000000000927c0
[ 98.442721][ T6554] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000a
[ 98.442727][ T6554] R13: 00000000000927c0 R14: 0000000000017f8e R15: 00007ffdca8b3d50
[ 98.442736][ T6554]
[ 98.442762][ T6554] BUG: Bad page state in process syz.0.26 pfn:50c00
[ 98.542648][ T6554] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50c00
[ 98.546146][ T6554] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 98.549603][ T6554] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 98.553080][ T6554] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.556468][ T6554] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.559117][ T6554] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.561979][ T6554] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.564967][ T6554] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.568692][ T6554] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.572102][ T6554] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 98.574944][ T6554] page_owner tracks the page as allocated
[ 98.577206][ T6554] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6554, tgid 6554 (syz.0.26), ts 98352526484, free_ts 96523781822
[ 98.584433][ T6554] post_alloc_hook+0x181/0x1b0
[ 98.586406][ T6554] get_page_from_freelist+0x135c/0x3920
[ 98.588714][ T6554] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.591088][ T6554] alloc_pages_mpol+0x1fb/0x550
[ 98.592935][ T6554] folio_alloc_noprof+0x20/0x2d0
[ 98.594890][ T6554] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.597172][ T6554] page_cache_ra_order+0x4c0/0xd00
[ 98.599393][ T6554] filemap_fault+0x1a5e/0x2740
[ 98.601359][ T6554] __do_fault+0x10a/0x490
[ 98.603145][ T6554] do_pte_missing+0x1a6/0x3fb0
[ 98.605089][ T6554] __handle_mm_fault+0x103d/0x2a40
[ 98.607087][ T6554] handle_mm_fault+0x3fe/0xad0
[ 98.608883][ T6554] do_user_addr_fault+0x60c/0x1370
[ 98.610766][ T6554] exc_page_fault+0x5c/0xc0
[ 98.612464][ T6554] asm_exc_page_fault+0x26/0x30
[ 98.614044][ T6554] page last free pid 6537 tgid 6537 stack trace:
[ 98.616297][ T6554] free_unref_folios+0x999/0x1630
[ 98.618205][ T6554] folios_put_refs+0x56f/0x740
[ 98.619873][ T6554] truncate_inode_pages_range+0x311/0xe30
[ 98.621730][ T6554] blkdev_flush_mapping+0xe9/0x280
[ 98.623665][ T6554] blkdev_put_whole+0xc4/0xf0
[ 98.625375][ T6554] bdev_release+0x47e/0x6d0
[ 98.627085][ T6554] blkdev_release+0x15/0x20
[ 98.628699][ T6554] __fput+0x3ff/0xb70
[ 98.630110][ T6554] task_work_run+0x14d/0x240
[ 98.631781][ T6554] do_exit+0xafb/0x2c30
[ 98.633200][ T6554] do_group_exit+0xd3/0x2a0
[ 98.634579][ T6554] __x64_sys_exit_group+0x3e/0x50
[ 98.636317][ T6554] x64_sys_call+0x1530/0x1730
[ 98.638098][ T6554] do_syscall_64+0xcd/0x260
[ 98.639813][ T6554] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.642011][ T6554] Modules linked in:
[ 98.643394][ T6554] CPU: 2 UID: 0 PID: 6554 Comm: syz.0.26 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 98.643417][ T6554] Tainted: [B]=BAD_PAGE
[ 98.643421][ T6554] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.643427][ T6554] Call Trace:
[ 98.643431][ T6554]
[ 98.643434][ T6554] dump_stack_lvl+0x16c/0x1f0
[ 98.643448][ T6554] bad_page+0xb3/0x1f0
[ 98.643459][ T6554] ? __pfx_bad_page+0x10/0x10
[ 98.643470][ T6554] ? page_bad_reason+0x9d/0x1e0
[ 98.643480][ T6554] __free_frozen_pages+0x76e/0xff0
[ 98.643496][ T6554] __folio_put+0x329/0x450
[ 98.643510][ T6554] ? __pfx___folio_put+0x10/0x10
[ 98.643526][ T6554] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.643543][ T6554] ? rcu_is_watching+0x12/0xc0
[ 98.643560][ T6554] ? lock_release+0x201/0x2f0
[ 98.643581][ T6554] filemap_free_folio+0x132/0x170
[ 98.643597][ T6554] delete_from_page_cache_batch+0x741/0x9b0
[ 98.643615][ T6554] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.643632][ T6554] ? __pfx_workingset_update_node+0x10/0x10
[ 98.643648][ T6554] ? xas_move_index+0xb0/0x110
[ 98.643666][ T6554] truncate_inode_pages_range+0x279/0xe30
[ 98.643687][ T6554] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.643721][ T6554] ? __pfx_down_write+0x10/0x10
[ 98.643740][ T6554] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.643763][ T6554] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.643784][ T6554] blkdev_flush_mapping+0xe9/0x280
[ 98.643801][ T6554] blkdev_put_whole+0xc4/0xf0
[ 98.643818][ T6554] bdev_release+0x47e/0x6d0
[ 98.643836][ T6554] ? __pfx_blkdev_release+0x10/0x10
[ 98.643853][ T6554] blkdev_release+0x15/0x20
[ 98.643870][ T6554] __fput+0x3ff/0xb70
[ 98.643887][ T6554] task_work_run+0x14d/0x240
[ 98.643903][ T6554] ? __pfx_task_work_run+0x10/0x10
[ 98.643918][ T6554] ? do_raw_spin_unlock+0x172/0x230
[ 98.643935][ T6554] do_exit+0xafb/0x2c30
[ 98.643956][ T6554] ? __pfx_do_exit+0x10/0x10
[ 98.643976][ T6554] ? preempt_schedule_thunk+0x16/0x30
[ 98.643992][ T6554] do_group_exit+0xd3/0x2a0
[ 98.644013][ T6554] __x64_sys_exit_group+0x3e/0x50
[ 98.644034][ T6554] x64_sys_call+0x1530/0x1730
[ 98.644055][ T6554] do_syscall_64+0xcd/0x260
[ 98.644072][ T6554] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.644087][ T6554] RIP: 0033:0x7f9fe6f8e969
[ 98.644098][ T6554] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 98.644104][ T6554] RSP: 002b:00007ffdca8b3c98 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 98.644119][ T6554] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9fe6f8e969
[ 98.644128][ T6554] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 98.644137][ T6554] RBP: 00007ffdca8b3cfc R08: 00000006ca8b3d8f R09: 00000000000927c0
[ 98.644146][ T6554] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000a
[ 98.644155][ T6554] R13: 00000000000927c0 R14: 0000000000017f8e R15: 00007ffdca8b3d50
[ 98.644168][ T6554]
[ 98.762656][ T6557] BUG: Bad page state in process syz.0.27 pfn:4e401
[ 98.764626][ T6557] page does not match folio
[ 98.766000][ T6557] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4e401
[ 98.769783][ T6557] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 98.772647][ T6557] raw: 00fff00000000000 ffffea0001390000 00000000ffffffff ffffffffffffffff
[ 98.775496][ T6557] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.778145][ T6557] page dumped because: nonzero pincount
[ 98.779787][ T6557] page_owner tracks the page as allocated
[ 98.781388][ T6557] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6556, tgid 6556 (syz.0.27), ts 98742868359, free_ts 98644215116
[ 98.788262][ T6557] post_alloc_hook+0x181/0x1b0
[ 98.789967][ T6557] get_page_from_freelist+0x135c/0x3920
[ 98.792072][ T6557] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.794310][ T6557] alloc_pages_mpol+0x1fb/0x550
[ 98.796145][ T6557] folio_alloc_noprof+0x20/0x2d0
[ 98.798192][ T6557] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.800652][ T6557] page_cache_ra_order+0x4c0/0xd00
[ 98.802707][ T6557] filemap_fault+0x1a5e/0x2740
[ 98.804650][ T6557] __do_fault+0x10a/0x490
[ 98.806440][ T6557] do_pte_missing+0x1a6/0x3fb0
[ 98.808703][ T6557] __handle_mm_fault+0x103d/0x2a40
[ 98.810796][ T6557] handle_mm_fault+0x3fe/0xad0
[ 98.812744][ T6557] do_user_addr_fault+0x60c/0x1370
[ 98.814809][ T6557] exc_page_fault+0x5c/0xc0
[ 98.816703][ T6557] asm_exc_page_fault+0x26/0x30
[ 98.818780][ T6557] page last free pid 6554 tgid 6554 stack trace:
[ 98.821342][ T6557] free_unref_folios+0x999/0x1630
[ 98.823416][ T6557] folios_put_refs+0x56f/0x740
[ 98.825397][ T6557] truncate_inode_pages_range+0x311/0xe30
[ 98.827995][ T6557] blkdev_flush_mapping+0xe9/0x280
[ 98.830055][ T6557] blkdev_put_whole+0xc4/0xf0
[ 98.831935][ T6557] bdev_release+0x47e/0x6d0
[ 98.833785][ T6557] blkdev_release+0x15/0x20
[ 98.835648][ T6557] __fput+0x3ff/0xb70
[ 98.837354][ T6557] task_work_run+0x14d/0x240
[ 98.839266][ T6557] do_exit+0xafb/0x2c30
[ 98.840951][ T6557] do_group_exit+0xd3/0x2a0
[ 98.842812][ T6557] __x64_sys_exit_group+0x3e/0x50
[ 98.844876][ T6557] x64_sys_call+0x1530/0x1730
[ 98.846805][ T6557] do_syscall_64+0xcd/0x260
[ 98.848827][ T6557] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.850963][ T6557] Modules linked in:
[ 98.852348][ T6557] CPU: 1 UID: 0 PID: 6557 Comm: syz.0.27 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 98.852369][ T6557] Tainted: [B]=BAD_PAGE
[ 98.852373][ T6557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.852381][ T6557] Call Trace:
[ 98.852386][ T6557]
[ 98.852391][ T6557] dump_stack_lvl+0x16c/0x1f0
[ 98.852406][ T6557] bad_page+0xb3/0x1f0
[ 98.852420][ T6557] ? __pfx_bad_page+0x10/0x10
[ 98.852432][ T6557] ? __mem_cgroup_uncharge+0xda/0x130
[ 98.852448][ T6557] free_tail_page_prepare+0x44f/0x5b0
[ 98.852465][ T6557] __free_frozen_pages+0x96a/0xff0
[ 98.852483][ T6557] __folio_put+0x329/0x450
[ 98.852497][ T6557] ? __pfx___folio_put+0x10/0x10
[ 98.852510][ T6557] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.852525][ T6557] ? rcu_is_watching+0x12/0xc0
[ 98.852540][ T6557] ? lock_release+0x201/0x2f0
[ 98.852564][ T6557] filemap_free_folio+0x132/0x170
[ 98.852577][ T6557] delete_from_page_cache_batch+0x741/0x9b0
[ 98.852593][ T6557] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.852608][ T6557] ? __pfx_workingset_update_node+0x10/0x10
[ 98.852621][ T6557] ? xas_move_index+0xb0/0x110
[ 98.852637][ T6557] truncate_inode_pages_range+0x279/0xe30
[ 98.852655][ T6557] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.852684][ T6557] ? __pfx_down_write+0x10/0x10
[ 98.852700][ T6557] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.852720][ T6557] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.852738][ T6557] blkdev_flush_mapping+0xe9/0x280
[ 98.852752][ T6557] ? filemap_check_errors+0xa9/0x160
[ 98.852770][ T6557] blkdev_put_whole+0xc4/0xf0
[ 98.852783][ T6557] bdev_release+0x47e/0x6d0
[ 98.852799][ T6557] ? __pfx_blkdev_release+0x10/0x10
[ 98.852814][ T6557] blkdev_release+0x15/0x20
[ 98.852829][ T6557] __fput+0x3ff/0xb70
[ 98.852844][ T6557] task_work_run+0x14d/0x240
[ 98.852858][ T6557] ? __pfx_task_work_run+0x10/0x10
[ 98.852870][ T6557] ? do_raw_spin_unlock+0x172/0x230
[ 98.852884][ T6557] do_exit+0xafb/0x2c30
[ 98.852902][ T6557] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.852922][ T6557] ? __pfx_do_exit+0x10/0x10
[ 98.852939][ T6557] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.852952][ T6557] ? get_signal+0x8f5/0x26d0
[ 98.852966][ T6557] ? rcu_is_watching+0x12/0xc0
[ 98.852980][ T6557] do_group_exit+0xd3/0x2a0
[ 98.852999][ T6557] get_signal+0x2673/0x26d0
[ 98.853016][ T6557] ? __pfx_get_signal+0x10/0x10
[ 98.853030][ T6557] ? do_futex+0x122/0x350
[ 98.853046][ T6557] ? __pfx_do_futex+0x10/0x10
[ 98.853062][ T6557] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.853080][ T6557] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.853100][ T6557] ? rcu_is_watching+0x12/0xc0
[ 98.853115][ T6557] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.853130][ T6557] do_syscall_64+0xda/0x260
[ 98.853145][ T6557] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.853157][ T6557] RIP: 0033:0x7f9fe6f8e969
[ 98.853167][ T6557] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 98.853173][ T6557] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.853185][ T6557] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 98.853194][ T6557] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 98.853202][ T6557] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.853209][ T6557] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 98.853217][ T6557] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 98.853228][ T6557]
[ 98.853252][ T6557] BUG: Bad page state in process syz.0.27 pfn:4e400
[ 98.993771][ T6557] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4e400
[ 98.997216][ T6557] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 99.000653][ T6557] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 99.004247][ T6557] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.007703][ T6557] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.011048][ T6557] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.014452][ T6557] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.017977][ T6557] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.021440][ T6557] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.024895][ T6557] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 99.027892][ T6557] page_owner tracks the page as allocated
[ 99.030196][ T6557] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6556, tgid 6556 (syz.0.27), ts 98742868359, free_ts 98644215116
[ 99.038127][ T6557] post_alloc_hook+0x181/0x1b0
[ 99.040100][ T6557] get_page_from_freelist+0x135c/0x3920
[ 99.042378][ T6557] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.044777][ T6557] alloc_pages_mpol+0x1fb/0x550
[ 99.046707][ T6557] folio_alloc_noprof+0x20/0x2d0
[ 99.048813][ T6557] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.051092][ T6557] page_cache_ra_order+0x4c0/0xd00
[ 99.053131][ T6557] filemap_fault+0x1a5e/0x2740
[ 99.055105][ T6557] __do_fault+0x10a/0x490
[ 99.056891][ T6557] do_pte_missing+0x1a6/0x3fb0
[ 99.058993][ T6557] __handle_mm_fault+0x103d/0x2a40
[ 99.061124][ T6557] handle_mm_fault+0x3fe/0xad0
[ 99.063089][ T6557] do_user_addr_fault+0x60c/0x1370
[ 99.065183][ T6557] exc_page_fault+0x5c/0xc0
[ 99.067045][ T6557] asm_exc_page_fault+0x26/0x30
[ 99.069069][ T6557] page last free pid 6554 tgid 6554 stack trace:
[ 99.071603][ T6557] free_unref_folios+0x999/0x1630
[ 99.073680][ T6557] folios_put_refs+0x56f/0x740
[ 99.075670][ T6557] truncate_inode_pages_range+0x311/0xe30
[ 99.078023][ T6557] blkdev_flush_mapping+0xe9/0x280
[ 99.080089][ T6557] blkdev_put_whole+0xc4/0xf0
[ 99.081975][ T6557] bdev_release+0x47e/0x6d0
[ 99.083828][ T6557] blkdev_release+0x15/0x20
[ 99.085709][ T6557] __fput+0x3ff/0xb70
[ 99.087426][ T6557] task_work_run+0x14d/0x240
[ 99.089314][ T6557] do_exit+0xafb/0x2c30
[ 99.091022][ T6557] do_group_exit+0xd3/0x2a0
[ 99.092951][ T6557] __x64_sys_exit_group+0x3e/0x50
[ 99.095004][ T6557] x64_sys_call+0x1530/0x1730
[ 99.096915][ T6557] do_syscall_64+0xcd/0x260
[ 99.098847][ T6557] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.101137][ T6557] Modules linked in:
[ 99.102639][ T6557] CPU: 1 UID: 0 PID: 6557 Comm: syz.0.27 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 99.102665][ T6557] Tainted: [B]=BAD_PAGE
[ 99.102671][ T6557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.102681][ T6557] Call Trace:
[ 99.102687][ T6557]
[ 99.102692][ T6557] dump_stack_lvl+0x16c/0x1f0
[ 99.102714][ T6557] bad_page+0xb3/0x1f0
[ 99.102733][ T6557] ? __pfx_bad_page+0x10/0x10
[ 99.102750][ T6557] ? page_bad_reason+0x9d/0x1e0
[ 99.102769][ T6557] __free_frozen_pages+0x76e/0xff0
[ 99.102795][ T6557] __folio_put+0x329/0x450
[ 99.102813][ T6557] ? __pfx___folio_put+0x10/0x10
[ 99.102832][ T6557] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.102850][ T6557] ? rcu_is_watching+0x12/0xc0
[ 99.102870][ T6557] ? lock_release+0x201/0x2f0
[ 99.102894][ T6557] filemap_free_folio+0x132/0x170
[ 99.102912][ T6557] delete_from_page_cache_batch+0x741/0x9b0
[ 99.102933][ T6557] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.102953][ T6557] ? __pfx_workingset_update_node+0x10/0x10
[ 99.102971][ T6557] ? xas_move_index+0xb0/0x110
[ 99.102992][ T6557] truncate_inode_pages_range+0x279/0xe30
[ 99.103016][ T6557] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.103053][ T6557] ? __pfx_down_write+0x10/0x10
[ 99.103076][ T6557] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.103101][ T6557] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.103145][ T6557] blkdev_flush_mapping+0xe9/0x280
[ 99.103164][ T6557] ? filemap_check_errors+0xa9/0x160
[ 99.103188][ T6557] blkdev_put_whole+0xc4/0xf0
[ 99.103206][ T6557] bdev_release+0x47e/0x6d0
[ 99.103226][ T6557] ? __pfx_blkdev_release+0x10/0x10
[ 99.103246][ T6557] blkdev_release+0x15/0x20
[ 99.103265][ T6557] __fput+0x3ff/0xb70
[ 99.103287][ T6557] task_work_run+0x14d/0x240
[ 99.103303][ T6557] ? __pfx_task_work_run+0x10/0x10
[ 99.103320][ T6557] ? do_raw_spin_unlock+0x172/0x230
[ 99.103339][ T6557] do_exit+0xafb/0x2c30
[ 99.103362][ T6557] ? __pfx_futex_wake_mark+0x10/0x10
[ 99.103388][ T6557] ? __pfx_do_exit+0x10/0x10
[ 99.103411][ T6557] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.103427][ T6557] ? get_signal+0x8f5/0x26d0
[ 99.103446][ T6557] ? rcu_is_watching+0x12/0xc0
[ 99.103465][ T6557] do_group_exit+0xd3/0x2a0
[ 99.103490][ T6557] get_signal+0x2673/0x26d0
[ 99.103512][ T6557] ? __pfx_get_signal+0x10/0x10
[ 99.103531][ T6557] ? do_futex+0x122/0x350
[ 99.103557][ T6557] ? __pfx_do_futex+0x10/0x10
[ 99.103579][ T6557] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.103603][ T6557] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.103629][ T6557] ? rcu_is_watching+0x12/0xc0
[ 99.103649][ T6557] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.103669][ T6557] do_syscall_64+0xda/0x260
[ 99.103689][ T6557] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.103705][ T6557] RIP: 0033:0x7f9fe6f8e969
[ 99.103719][ T6557] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 99.103726][ T6557] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 99.103742][ T6557] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 99.103754][ T6557] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 99.103764][ T6557] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 99.103774][ T6557] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 99.103785][ T6557] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 99.103799][ T6557]
[ 99.277424][ T6559] BUG: Bad page state in process syz.0.28 pfn:4d401
[ 99.279584][ T6559] page does not match folio
[ 99.281001][ T6559] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4d401
[ 99.284476][ T6559] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 99.287329][ T6559] raw: 00fff00000000000 ffffea0001350000 00000000ffffffff ffffffffffffffff
[ 99.290193][ T6559] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.292832][ T6559] page dumped because: nonzero pincount
[ 99.294567][ T6559] page_owner tracks the page as allocated
[ 99.296338][ T6559] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6558, tgid 6558 (syz.0.28), ts 99244056504, free_ts 99103927391
[ 99.303245][ T6559] post_alloc_hook+0x181/0x1b0
[ 99.304680][ T6559] get_page_from_freelist+0x135c/0x3920
[ 99.306503][ T6559] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.308362][ T6559] alloc_pages_mpol+0x1fb/0x550
[ 99.309794][ T6559] folio_alloc_noprof+0x20/0x2d0
[ 99.311280][ T6559] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.313020][ T6559] page_cache_ra_order+0x4c0/0xd00
[ 99.314536][ T6559] filemap_fault+0x1a5e/0x2740
[ 99.315990][ T6559] __do_fault+0x10a/0x490
[ 99.317362][ T6559] do_pte_missing+0x1a6/0x3fb0
[ 99.318819][ T6559] __handle_mm_fault+0x103d/0x2a40
[ 99.320350][ T6559] handle_mm_fault+0x3fe/0xad0
[ 99.321751][ T6559] do_user_addr_fault+0x60c/0x1370
[ 99.323274][ T6559] exc_page_fault+0x5c/0xc0
[ 99.324641][ T6559] asm_exc_page_fault+0x26/0x30
[ 99.326137][ T6559] page last free pid 6557 tgid 6556 stack trace:
[ 99.328289][ T6559] free_unref_folios+0x999/0x1630
[ 99.330172][ T6559] folios_put_refs+0x56f/0x740
[ 99.332062][ T6559] truncate_inode_pages_range+0x311/0xe30
[ 99.334272][ T6559] blkdev_flush_mapping+0xe9/0x280
[ 99.336323][ T6559] blkdev_put_whole+0xc4/0xf0
[ 99.338270][ T6559] bdev_release+0x47e/0x6d0
[ 99.340041][ T6559] blkdev_release+0x15/0x20
[ 99.341802][ T6559] __fput+0x3ff/0xb70
[ 99.343342][ T6559] task_work_run+0x14d/0x240
[ 99.345149][ T6559] do_exit+0xafb/0x2c30
[ 99.346788][ T6559] do_group_exit+0xd3/0x2a0
[ 99.348667][ T6559] get_signal+0x2673/0x26d0
[ 99.350927][ T6559] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.353097][ T6559] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.355248][ T6559] do_syscall_64+0xda/0x260
[ 99.357028][ T6559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.359392][ T6559] Modules linked in:
[ 99.360930][ T6559] CPU: 0 UID: 0 PID: 6559 Comm: syz.0.28 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 99.360955][ T6559] Tainted: [B]=BAD_PAGE
[ 99.360960][ T6559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.360969][ T6559] Call Trace:
[ 99.360974][ T6559]
[ 99.360981][ T6559] dump_stack_lvl+0x16c/0x1f0
[ 99.360999][ T6559] bad_page+0xb3/0x1f0
[ 99.361017][ T6559] ? __pfx_bad_page+0x10/0x10
[ 99.361032][ T6559] ? __mem_cgroup_uncharge+0xda/0x130
[ 99.361051][ T6559] free_tail_page_prepare+0x44f/0x5b0
[ 99.361071][ T6559] __free_frozen_pages+0x96a/0xff0
[ 99.361092][ T6559] __folio_put+0x329/0x450
[ 99.361110][ T6559] ? __pfx___folio_put+0x10/0x10
[ 99.361126][ T6559] ? preempt_schedule_common+0x44/0xc0
[ 99.361143][ T6559] ? preempt_schedule_thunk+0x16/0x30
[ 99.361159][ T6559] filemap_free_folio+0x132/0x170
[ 99.361177][ T6559] delete_from_page_cache_batch+0x741/0x9b0
[ 99.361194][ T6559] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.361213][ T6559] ? __pfx_workingset_update_node+0x10/0x10
[ 99.361230][ T6559] ? xas_move_index+0xb0/0x110
[ 99.361248][ T6559] truncate_inode_pages_range+0x279/0xe30
[ 99.361272][ T6559] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.361300][ T6559] ? __pfx___send_ipi_mask+0x10/0x10
[ 99.361334][ T6559] ? __pfx_down_write+0x10/0x10
[ 99.361354][ T6559] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.361378][ T6559] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.361399][ T6559] blkdev_flush_mapping+0xe9/0x280
[ 99.361417][ T6559] ? filemap_check_errors+0xa9/0x160
[ 99.361440][ T6559] blkdev_put_whole+0xc4/0xf0
[ 99.361455][ T6559] bdev_release+0x47e/0x6d0
[ 99.361476][ T6559] ? __pfx_blkdev_release+0x10/0x10
[ 99.361493][ T6559] blkdev_release+0x15/0x20
[ 99.361512][ T6559] __fput+0x3ff/0xb70
[ 99.361531][ T6559] task_work_run+0x14d/0x240
[ 99.361546][ T6559] ? __pfx_task_work_run+0x10/0x10
[ 99.361563][ T6559] ? do_raw_spin_unlock+0x172/0x230
[ 99.361579][ T6559] do_exit+0xafb/0x2c30
[ 99.361601][ T6559] ? __pfx_futex_wake_mark+0x10/0x10
[ 99.361626][ T6559] ? __pfx_do_exit+0x10/0x10
[ 99.361646][ T6559] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.361662][ T6559] ? get_signal+0x8f5/0x26d0
[ 99.361679][ T6559] ? rcu_is_watching+0x12/0xc0
[ 99.361697][ T6559] do_group_exit+0xd3/0x2a0
[ 99.361720][ T6559] get_signal+0x2673/0x26d0
[ 99.361741][ T6559] ? __pfx_get_signal+0x10/0x10
[ 99.361758][ T6559] ? do_futex+0x122/0x350
[ 99.361778][ T6559] ? __pfx_do_futex+0x10/0x10
[ 99.361797][ T6559] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.361819][ T6559] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.361843][ T6559] ? rcu_is_watching+0x12/0xc0
[ 99.361862][ T6559] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.361879][ T6559] do_syscall_64+0xda/0x260
[ 99.361899][ T6559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.361914][ T6559] RIP: 0033:0x7f9fe6f8e969
[ 99.361927][ T6559] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 99.361934][ T6559] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 99.361950][ T6559] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 99.361959][ T6559] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 99.361968][ T6559] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 99.361979][ T6559] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 99.361987][ T6559] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 99.362002][ T6559]
[ 99.362029][ T6559] BUG: Bad page state in process syz.0.28 pfn:4d400
[ 99.492031][ T6559] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4d400
[ 99.494909][ T6559] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 99.497629][ T6559] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 99.500439][ T6559] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.503066][ T6559] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.505711][ T6559] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.508537][ T6559] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.511234][ T6559] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.514436][ T6559] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.517030][ T6559] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 99.519541][ T6559] page_owner tracks the page as allocated
[ 99.521356][ T6559] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6558, tgid 6558 (syz.0.28), ts 99244056504, free_ts 99103927391
[ 99.528640][ T6559] post_alloc_hook+0x181/0x1b0
[ 99.530632][ T6559] get_page_from_freelist+0x135c/0x3920
[ 99.532878][ T6559] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.535261][ T6559] alloc_pages_mpol+0x1fb/0x550
[ 99.537337][ T6559] folio_alloc_noprof+0x20/0x2d0
[ 99.539335][ T6559] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.541526][ T6559] page_cache_ra_order+0x4c0/0xd00
[ 99.543571][ T6559] filemap_fault+0x1a5e/0x2740
[ 99.545456][ T6559] __do_fault+0x10a/0x490
[ 99.547204][ T6559] do_pte_missing+0x1a6/0x3fb0
[ 99.549209][ T6559] __handle_mm_fault+0x103d/0x2a40
[ 99.551239][ T6559] handle_mm_fault+0x3fe/0xad0
[ 99.553186][ T6559] do_user_addr_fault+0x60c/0x1370
[ 99.555733][ T6559] exc_page_fault+0x5c/0xc0
[ 99.557700][ T6559] asm_exc_page_fault+0x26/0x30
[ 99.559639][ T6559] page last free pid 6557 tgid 6556 stack trace:
[ 99.562150][ T6559] free_unref_folios+0x999/0x1630
[ 99.564004][ T6559] folios_put_refs+0x56f/0x740
[ 99.565538][ T6559] truncate_inode_pages_range+0x311/0xe30
[ 99.567476][ T6559] blkdev_flush_mapping+0xe9/0x280
[ 99.569410][ T6559] blkdev_put_whole+0xc4/0xf0
[ 99.571330][ T6559] bdev_release+0x47e/0x6d0
[ 99.573034][ T6559] blkdev_release+0x15/0x20
[ 99.574376][ T6559] __fput+0x3ff/0xb70
[ 99.575587][ T6559] task_work_run+0x14d/0x240
[ 99.576979][ T6559] do_exit+0xafb/0x2c30
[ 99.578269][ T6559] do_group_exit+0xd3/0x2a0
[ 99.579843][ T6559] get_signal+0x2673/0x26d0
[ 99.581215][ T6559] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.582856][ T6559] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.584506][ T6559] do_syscall_64+0xda/0x260
[ 99.585884][ T6559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.587714][ T6559] Modules linked in:
[ 99.589112][ T6559] CPU: 0 UID: 0 PID: 6559 Comm: syz.0.28 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 99.589138][ T6559] Tainted: [B]=BAD_PAGE
[ 99.589143][ T6559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.589153][ T6559] Call Trace:
[ 99.589159][ T6559]
[ 99.589165][ T6559] dump_stack_lvl+0x16c/0x1f0
[ 99.589186][ T6559] bad_page+0xb3/0x1f0
[ 99.589204][ T6559] ? __pfx_bad_page+0x10/0x10
[ 99.589221][ T6559] ? page_bad_reason+0x9d/0x1e0
[ 99.589238][ T6559] __free_frozen_pages+0x76e/0xff0
[ 99.589261][ T6559] __folio_put+0x329/0x450
[ 99.589279][ T6559] ? __pfx___folio_put+0x10/0x10
[ 99.589295][ T6559] ? preempt_schedule_common+0x44/0xc0
[ 99.589312][ T6559] ? preempt_schedule_thunk+0x16/0x30
[ 99.589329][ T6559] filemap_free_folio+0x132/0x170
[ 99.589346][ T6559] delete_from_page_cache_batch+0x741/0x9b0
[ 99.589365][ T6559] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.589384][ T6559] ? __pfx_workingset_update_node+0x10/0x10
[ 99.589402][ T6559] ? xas_move_index+0xb0/0x110
[ 99.589422][ T6559] truncate_inode_pages_range+0x279/0xe30
[ 99.589446][ T6559] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.589476][ T6559] ? __pfx___send_ipi_mask+0x10/0x10
[ 99.589505][ T6559] ? __pfx_down_write+0x10/0x10
2025/05/02 03:47:19 executed programs: 15
[ 99.589525][ T6559] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.589549][ T6559] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.589569][ T6559] blkdev_flush_mapping+0xe9/0x280
[ 99.589591][ T6559] ? filemap_check_errors+0xa9/0x160
[ 99.589614][ T6559] blkdev_put_whole+0xc4/0xf0
[ 99.589631][ T6559] bdev_release+0x47e/0x6d0
[ 99.589651][ T6559] ? __pfx_blkdev_release+0x10/0x10
[ 99.589670][ T6559] blkdev_release+0x15/0x20
[ 99.589688][ T6559] __fput+0x3ff/0xb70
[ 99.589707][ T6559] task_work_run+0x14d/0x240
[ 99.589723][ T6559] ? __pfx_task_work_run+0x10/0x10
[ 99.589739][ T6559] ? do_raw_spin_unlock+0x172/0x230
[ 99.589758][ T6559] do_exit+0xafb/0x2c30
[ 99.589779][ T6559] ? __pfx_futex_wake_mark+0x10/0x10
[ 99.589805][ T6559] ? __pfx_do_exit+0x10/0x10
[ 99.589826][ T6559] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.589842][ T6559] ? get_signal+0x8f5/0x26d0
[ 99.589860][ T6559] ? rcu_is_watching+0x12/0xc0
[ 99.589878][ T6559] do_group_exit+0xd3/0x2a0
[ 99.589902][ T6559] get_signal+0x2673/0x26d0
[ 99.589923][ T6559] ? __pfx_get_signal+0x10/0x10
[ 99.589942][ T6559] ? do_futex+0x122/0x350
[ 99.589962][ T6559] ? __pfx_do_futex+0x10/0x10
[ 99.589982][ T6559] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.590004][ T6559] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.590029][ T6559] ? rcu_is_watching+0x12/0xc0
[ 99.590048][ T6559] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.590067][ T6559] do_syscall_64+0xda/0x260
[ 99.590087][ T6559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.590103][ T6559] RIP: 0033:0x7f9fe6f8e969
[ 99.590116][ T6559] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 99.590123][ T6559] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 99.590139][ T6559] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 99.590149][ T6559] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 99.590159][ T6559] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 99.590169][ T6559] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 99.590178][ T6559] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 99.590193][ T6559]
[ 99.633909][ T6562] BUG: Bad page state in process syz.0.29 pfn:50601
[ 99.716228][ T6562] page does not match folio
[ 99.717695][ T6562] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50601
[ 99.721259][ T6562] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 99.723969][ T6562] raw: 00fff00000000000 ffffea0001418000 00000000ffffffff ffffffffffffffff
[ 99.727155][ T6562] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.733099][ T6562] page dumped because: nonzero pincount
[ 99.734883][ T6562] page_owner tracks the page as allocated
[ 99.736612][ T6562] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6561, tgid 6561 (syz.0.29), ts 99603825146, free_ts 97346657628
[ 99.742415][ T6562] post_alloc_hook+0x181/0x1b0
[ 99.743988][ T6562] get_page_from_freelist+0x135c/0x3920
[ 99.745734][ T6562] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.747627][ T6562] alloc_pages_mpol+0x1fb/0x550
[ 99.749110][ T6562] folio_alloc_noprof+0x20/0x2d0
[ 99.750783][ T6562] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.752515][ T6562] page_cache_ra_order+0x4c0/0xd00
[ 99.754246][ T6562] filemap_fault+0x1a5e/0x2740
[ 99.755804][ T6562] __do_fault+0x10a/0x490
[ 99.757114][ T6562] do_pte_missing+0x1a6/0x3fb0
[ 99.758595][ T6562] __handle_mm_fault+0x103d/0x2a40
[ 99.760129][ T6562] handle_mm_fault+0x3fe/0xad0
[ 99.761607][ T6562] do_user_addr_fault+0x60c/0x1370
[ 99.763148][ T6562] exc_page_fault+0x5c/0xc0
[ 99.764480][ T6562] asm_exc_page_fault+0x26/0x30
[ 99.765938][ T6562] page last free pid 6543 tgid 6543 stack trace:
[ 99.767998][ T6562] free_unref_folios+0x999/0x1630
[ 99.769901][ T6562] folios_put_refs+0x56f/0x740
[ 99.771618][ T6562] truncate_inode_pages_range+0x311/0xe30
[ 99.773733][ T6562] blkdev_flush_mapping+0xe9/0x280
[ 99.775255][ T6562] blkdev_put_whole+0xc4/0xf0
[ 99.776676][ T6562] bdev_release+0x47e/0x6d0
[ 99.778090][ T6562] blkdev_release+0x15/0x20
[ 99.779464][ T6562] __fput+0x3ff/0xb70
[ 99.780669][ T6562] task_work_run+0x14d/0x240
[ 99.782070][ T6562] do_exit+0xafb/0x2c30
[ 99.783384][ T6562] do_group_exit+0xd3/0x2a0
[ 99.784780][ T6562] __x64_sys_exit_group+0x3e/0x50
[ 99.786743][ T6562] x64_sys_call+0x1530/0x1730
[ 99.788457][ T6562] do_syscall_64+0xcd/0x260
[ 99.789878][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.791701][ T6562] Modules linked in:
[ 99.792906][ T6562] CPU: 3 UID: 0 PID: 6562 Comm: syz.0.29 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 99.792923][ T6562] Tainted: [B]=BAD_PAGE
[ 99.792926][ T6562] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.792932][ T6562] Call Trace:
[ 99.792937][ T6562]
[ 99.792941][ T6562] dump_stack_lvl+0x16c/0x1f0
[ 99.792954][ T6562] bad_page+0xb3/0x1f0
[ 99.792965][ T6562] ? __pfx_bad_page+0x10/0x10
[ 99.792976][ T6562] ? __mem_cgroup_uncharge+0xda/0x130
[ 99.792988][ T6562] free_tail_page_prepare+0x44f/0x5b0
[ 99.793001][ T6562] __free_frozen_pages+0x96a/0xff0
[ 99.793016][ T6562] __folio_put+0x329/0x450
[ 99.793027][ T6562] ? __pfx___folio_put+0x10/0x10
[ 99.793038][ T6562] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.793050][ T6562] ? rcu_is_watching+0x12/0xc0
[ 99.793062][ T6562] ? lock_release+0x201/0x2f0
[ 99.793078][ T6562] filemap_free_folio+0x132/0x170
[ 99.793089][ T6562] delete_from_page_cache_batch+0x741/0x9b0
[ 99.793101][ T6562] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.793113][ T6562] ? __pfx_workingset_update_node+0x10/0x10
[ 99.793126][ T6562] truncate_inode_pages_range+0x279/0xe30
[ 99.793141][ T6562] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.793155][ T6562] ? __schedule+0x3ffd/0x5de0
[ 99.793164][ T6562] ? rcu_is_watching+0x12/0xc0
[ 99.793178][ T6562] ? rcu_is_watching+0x12/0xc0
[ 99.793193][ T6562] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.793207][ T6562] ? preempt_schedule_thunk+0x16/0x30
[ 99.793217][ T6562] ? on_each_cpu_cond_mask+0x5a/0x90
[ 99.793228][ T6562] ? on_each_cpu_cond_mask+0x70/0x90
[ 99.793239][ T6562] blkdev_flush_mapping+0xe9/0x280
[ 99.793251][ T6562] ? filemap_check_errors+0xa9/0x160
[ 99.793266][ T6562] blkdev_put_whole+0xc4/0xf0
[ 99.793277][ T6562] bdev_release+0x47e/0x6d0
[ 99.793289][ T6562] ? __pfx_blkdev_release+0x10/0x10
[ 99.793305][ T6562] blkdev_release+0x15/0x20
[ 99.793317][ T6562] __fput+0x3ff/0xb70
[ 99.793329][ T6562] task_work_run+0x14d/0x240
[ 99.793340][ T6562] ? __pfx_task_work_run+0x10/0x10
[ 99.793350][ T6562] ? do_raw_spin_unlock+0x172/0x230
[ 99.793361][ T6562] do_exit+0xafb/0x2c30
[ 99.793375][ T6562] ? __pfx_futex_wake_mark+0x10/0x10
[ 99.793392][ T6562] ? __pfx_do_exit+0x10/0x10
[ 99.793406][ T6562] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.793415][ T6562] ? get_signal+0x8f5/0x26d0
[ 99.793427][ T6562] ? rcu_is_watching+0x12/0xc0
[ 99.793438][ T6562] do_group_exit+0xd3/0x2a0
[ 99.793453][ T6562] get_signal+0x2673/0x26d0
[ 99.793467][ T6562] ? __pfx_get_signal+0x10/0x10
[ 99.793479][ T6562] ? do_futex+0x122/0x350
[ 99.793492][ T6562] ? __pfx_do_futex+0x10/0x10
[ 99.793505][ T6562] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.793520][ T6562] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.793536][ T6562] ? madvise_unlock+0xc6/0x190
[ 99.793547][ T6562] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.793559][ T6562] do_syscall_64+0xda/0x260
[ 99.793571][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.793582][ T6562] RIP: 0033:0x7f9fe6f8e969
[ 99.793590][ T6562] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 99.793594][ T6562] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 99.793604][ T6562] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 99.793611][ T6562] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 99.793617][ T6562] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 99.793623][ T6562] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 99.793629][ T6562] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 99.793637][ T6562]
[ 99.793651][ T6562] BUG: Bad page state in process syz.0.29 pfn:50600
[ 99.921800][ T6562] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50600
[ 99.925084][ T6562] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 99.928737][ T6562] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 99.931988][ T6562] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.934481][ T6562] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.937728][ T6562] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.941012][ T6562] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.944219][ T6562] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.947562][ T6562] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.950750][ T6562] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 99.953313][ T6562] page_owner tracks the page as allocated
[ 99.954988][ T6562] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6561, tgid 6561 (syz.0.29), ts 99603825146, free_ts 97346657628
[ 99.961974][ T6562] post_alloc_hook+0x181/0x1b0
[ 99.963768][ T6562] get_page_from_freelist+0x135c/0x3920
[ 99.965837][ T6562] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.968241][ T6562] alloc_pages_mpol+0x1fb/0x550
[ 99.970112][ T6562] folio_alloc_noprof+0x20/0x2d0
[ 99.971673][ T6562] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.973365][ T6562] page_cache_ra_order+0x4c0/0xd00
[ 99.974880][ T6562] filemap_fault+0x1a5e/0x2740
[ 99.976300][ T6562] __do_fault+0x10a/0x490
[ 99.977887][ T6562] do_pte_missing+0x1a6/0x3fb0
[ 99.979606][ T6562] __handle_mm_fault+0x103d/0x2a40
[ 99.981471][ T6562] handle_mm_fault+0x3fe/0xad0
[ 99.983193][ T6562] do_user_addr_fault+0x60c/0x1370
[ 99.985069][ T6562] exc_page_fault+0x5c/0xc0
[ 99.986731][ T6562] asm_exc_page_fault+0x26/0x30
[ 99.988619][ T6562] page last free pid 6543 tgid 6543 stack trace:
[ 99.990560][ T6562] free_unref_folios+0x999/0x1630
[ 99.992276][ T6562] folios_put_refs+0x56f/0x740
[ 99.994116][ T6562] truncate_inode_pages_range+0x311/0xe30
[ 99.995983][ T6562] blkdev_flush_mapping+0xe9/0x280
[ 99.997855][ T6562] blkdev_put_whole+0xc4/0xf0
[ 99.999355][ T6562] bdev_release+0x47e/0x6d0
[ 100.000702][ T6562] blkdev_release+0x15/0x20
[ 100.002056][ T6562] __fput+0x3ff/0xb70
[ 100.003248][ T6562] task_work_run+0x14d/0x240
[ 100.005027][ T6562] do_exit+0xafb/0x2c30
[ 100.006626][ T6562] do_group_exit+0xd3/0x2a0
[ 100.008808][ T6562] __x64_sys_exit_group+0x3e/0x50
[ 100.010391][ T6562] x64_sys_call+0x1530/0x1730
[ 100.011913][ T6562] do_syscall_64+0xcd/0x260
[ 100.013271][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.015014][ T6562] Modules linked in:
[ 100.016290][ T6562] CPU: 0 UID: 0 PID: 6562 Comm: syz.0.29 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 100.016307][ T6562] Tainted: [B]=BAD_PAGE
[ 100.016310][ T6562] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.016316][ T6562] Call Trace:
[ 100.016324][ T6562]
[ 100.016328][ T6562] dump_stack_lvl+0x16c/0x1f0
[ 100.016341][ T6562] bad_page+0xb3/0x1f0
[ 100.016352][ T6562] ? __pfx_bad_page+0x10/0x10
[ 100.016363][ T6562] ? page_bad_reason+0x9d/0x1e0
[ 100.016373][ T6562] __free_frozen_pages+0x76e/0xff0
[ 100.016388][ T6562] __folio_put+0x329/0x450
[ 100.016399][ T6562] ? __pfx___folio_put+0x10/0x10
[ 100.016410][ T6562] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.016421][ T6562] ? rcu_is_watching+0x12/0xc0
[ 100.016433][ T6562] ? lock_release+0x201/0x2f0
[ 100.016448][ T6562] filemap_free_folio+0x132/0x170
[ 100.016458][ T6562] delete_from_page_cache_batch+0x741/0x9b0
[ 100.016471][ T6562] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.016483][ T6562] ? __pfx_workingset_update_node+0x10/0x10
[ 100.016496][ T6562] truncate_inode_pages_range+0x279/0xe30
[ 100.016511][ T6562] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.016524][ T6562] ? __schedule+0x3ffd/0x5de0
[ 100.016534][ T6562] ? rcu_is_watching+0x12/0xc0
[ 100.016548][ T6562] ? rcu_is_watching+0x12/0xc0
[ 100.016563][ T6562] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.016578][ T6562] ? preempt_schedule_thunk+0x16/0x30
[ 100.016588][ T6562] ? on_each_cpu_cond_mask+0x5a/0x90
[ 100.016599][ T6562] ? on_each_cpu_cond_mask+0x70/0x90
[ 100.016610][ T6562] blkdev_flush_mapping+0xe9/0x280
[ 100.016621][ T6562] ? filemap_check_errors+0xa9/0x160
[ 100.016636][ T6562] blkdev_put_whole+0xc4/0xf0
[ 100.016647][ T6562] bdev_release+0x47e/0x6d0
[ 100.016659][ T6562] ? __pfx_blkdev_release+0x10/0x10
[ 100.016671][ T6562] blkdev_release+0x15/0x20
[ 100.016683][ T6562] __fput+0x3ff/0xb70
[ 100.016695][ T6562] task_work_run+0x14d/0x240
[ 100.016708][ T6562] ? __pfx_task_work_run+0x10/0x10
[ 100.016722][ T6562] ? do_raw_spin_unlock+0x172/0x230
[ 100.016739][ T6562] do_exit+0xafb/0x2c30
[ 100.016759][ T6562] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.016783][ T6562] ? __pfx_do_exit+0x10/0x10
[ 100.016802][ T6562] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.016816][ T6562] ? get_signal+0x8f5/0x26d0
[ 100.016832][ T6562] ? rcu_is_watching+0x12/0xc0
[ 100.016849][ T6562] do_group_exit+0xd3/0x2a0
[ 100.016870][ T6562] get_signal+0x2673/0x26d0
[ 100.016891][ T6562] ? __pfx_get_signal+0x10/0x10
[ 100.016908][ T6562] ? do_futex+0x122/0x350
[ 100.016927][ T6562] ? __pfx_do_futex+0x10/0x10
[ 100.016945][ T6562] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.016967][ T6562] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.016989][ T6562] ? madvise_unlock+0xc6/0x190
[ 100.017006][ T6562] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.017023][ T6562] do_syscall_64+0xda/0x260
[ 100.017040][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.017055][ T6562] RIP: 0033:0x7f9fe6f8e969
[ 100.017066][ T6562] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 100.017073][ T6562] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.017088][ T6562] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 100.017099][ T6562] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 100.017108][ T6562] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.017117][ T6562] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 100.017126][ T6562] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 100.017140][ T6562]
[ 100.181222][ T6564] BUG: Bad page state in process syz.0.30 pfn:4f601
[ 100.183987][ T6564] page does not match folio
[ 100.185788][ T6564] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4f601
[ 100.190021][ T6564] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 100.193002][ T6564] raw: 00fff00000000000 ffffea00013d8000 00000000ffffffff ffffffffffffffff
[ 100.196363][ T6564] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.199920][ T6564] page dumped because: nonzero pincount
[ 100.202086][ T6564] page_owner tracks the page as allocated
[ 100.204304][ T6564] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6563, tgid 6563 (syz.0.30), ts 100147726529, free_ts 99590246273
[ 100.212148][ T6564] post_alloc_hook+0x181/0x1b0
[ 100.214083][ T6564] get_page_from_freelist+0x135c/0x3920
[ 100.216356][ T6564] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.218833][ T6564] alloc_pages_mpol+0x1fb/0x550
[ 100.220818][ T6564] folio_alloc_noprof+0x20/0x2d0
[ 100.222828][ T6564] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.225118][ T6564] page_cache_ra_order+0x4c0/0xd00
[ 100.227549][ T6564] filemap_fault+0x1a5e/0x2740
[ 100.229588][ T6564] __do_fault+0x10a/0x490
[ 100.231303][ T6564] do_pte_missing+0x1a6/0x3fb0
[ 100.233168][ T6564] __handle_mm_fault+0x103d/0x2a40
[ 100.235254][ T6564] handle_mm_fault+0x3fe/0xad0
[ 100.237103][ T6564] do_user_addr_fault+0x60c/0x1370
[ 100.239361][ T6564] exc_page_fault+0x5c/0xc0
[ 100.241266][ T6564] asm_exc_page_fault+0x26/0x30
[ 100.243264][ T6564] page last free pid 6559 tgid 6558 stack trace:
[ 100.245814][ T6564] free_unref_folios+0x999/0x1630
[ 100.248122][ T6564] folios_put_refs+0x56f/0x740
[ 100.250115][ T6564] truncate_inode_pages_range+0x311/0xe30
[ 100.252460][ T6564] blkdev_flush_mapping+0xe9/0x280
[ 100.254560][ T6564] blkdev_put_whole+0xc4/0xf0
[ 100.256532][ T6564] bdev_release+0x47e/0x6d0
[ 100.258547][ T6564] blkdev_release+0x15/0x20
[ 100.260421][ T6564] __fput+0x3ff/0xb70
[ 100.262048][ T6564] task_work_run+0x14d/0x240
[ 100.263951][ T6564] do_exit+0xafb/0x2c30
[ 100.265640][ T6564] do_group_exit+0xd3/0x2a0
[ 100.267579][ T6564] get_signal+0x2673/0x26d0
[ 100.269437][ T6564] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.271666][ T6564] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.273908][ T6564] do_syscall_64+0xda/0x260
[ 100.275739][ T6564] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.278238][ T6564] Modules linked in:
[ 100.279832][ T6564] CPU: 2 UID: 0 PID: 6564 Comm: syz.0.30 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 100.279857][ T6564] Tainted: [B]=BAD_PAGE
[ 100.279863][ T6564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.279873][ T6564] Call Trace:
[ 100.279880][ T6564]
[ 100.279886][ T6564] dump_stack_lvl+0x16c/0x1f0
[ 100.279905][ T6564] bad_page+0xb3/0x1f0
[ 100.279923][ T6564] ? __pfx_bad_page+0x10/0x10
[ 100.279939][ T6564] ? __mem_cgroup_uncharge+0xda/0x130
[ 100.279959][ T6564] free_tail_page_prepare+0x44f/0x5b0
[ 100.279980][ T6564] __free_frozen_pages+0x96a/0xff0
[ 100.280004][ T6564] __folio_put+0x329/0x450
[ 100.280023][ T6564] ? __pfx___folio_put+0x10/0x10
[ 100.280040][ T6564] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.280059][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.280077][ T6564] ? lock_release+0x201/0x2f0
[ 100.280102][ T6564] filemap_free_folio+0x132/0x170
[ 100.280120][ T6564] delete_from_page_cache_batch+0x741/0x9b0
[ 100.280140][ T6564] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.280160][ T6564] ? __pfx_workingset_update_node+0x10/0x10
[ 100.280188][ T6564] ? xas_move_index+0xb0/0x110
[ 100.280208][ T6564] truncate_inode_pages_range+0x279/0xe30
[ 100.280231][ T6564] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.280268][ T6564] ? __pfx_down_write+0x10/0x10
[ 100.280289][ T6564] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.280313][ T6564] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.280336][ T6564] blkdev_flush_mapping+0xe9/0x280
[ 100.280355][ T6564] ? filemap_check_errors+0xa9/0x160
[ 100.280378][ T6564] blkdev_put_whole+0xc4/0xf0
[ 100.280395][ T6564] bdev_release+0x47e/0x6d0
[ 100.280415][ T6564] ? __pfx_blkdev_release+0x10/0x10
[ 100.280434][ T6564] blkdev_release+0x15/0x20
[ 100.280453][ T6564] __fput+0x3ff/0xb70
[ 100.280472][ T6564] task_work_run+0x14d/0x240
[ 100.280490][ T6564] ? __pfx_task_work_run+0x10/0x10
[ 100.280505][ T6564] ? do_raw_spin_unlock+0x172/0x230
[ 100.280523][ T6564] do_exit+0xafb/0x2c30
[ 100.280544][ T6564] ? __pfx_try_to_wake_up+0x10/0x10
[ 100.280564][ T6564] ? futex_wake+0x432/0x4e0
[ 100.280594][ T6564] ? __pfx_do_exit+0x10/0x10
[ 100.280616][ T6564] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.280632][ T6564] ? get_signal+0x8f5/0x26d0
[ 100.280650][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.280668][ T6564] do_group_exit+0xd3/0x2a0
[ 100.280691][ T6564] get_signal+0x2673/0x26d0
[ 100.280712][ T6564] ? __pfx_get_signal+0x10/0x10
[ 100.280730][ T6564] ? do_futex+0x122/0x350
[ 100.280751][ T6564] ? __pfx_do_futex+0x10/0x10
[ 100.280771][ T6564] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.280794][ T6564] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.280818][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.280836][ T6564] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.280857][ T6564] do_syscall_64+0xda/0x260
[ 100.280876][ T6564] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.280892][ T6564] RIP: 0033:0x7f9fe6f8e969
[ 100.280903][ T6564] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 100.280911][ T6564] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.280925][ T6564] RAX: 0000000000000001 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 100.280936][ T6564] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9fe71b5fac
[ 100.280947][ T6564] RBP: 00007f9fe71b5fa0 R08: 00007f9fe7cf8000 R09: 0000000000000000
[ 100.280957][ T6564] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 100.280967][ T6564] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 100.280982][ T6564]
[ 100.281011][ T6564] BUG: Bad page state in process syz.0.30 pfn:4f600
[ 100.421960][ T6564] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4f600
[ 100.424671][ T6564] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 100.427959][ T6564] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 100.431583][ T6564] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.434864][ T6564] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.438377][ T6564] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.441876][ T6564] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.445287][ T6564] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.448889][ T6564] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.452461][ T6564] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 100.455403][ T6564] page_owner tracks the page as allocated
[ 100.457799][ T6564] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6563, tgid 6563 (syz.0.30), ts 100147726529, free_ts 99590246273
[ 100.465647][ T6564] post_alloc_hook+0x181/0x1b0
[ 100.467677][ T6564] get_page_from_freelist+0x135c/0x3920
[ 100.469872][ T6564] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.472218][ T6564] alloc_pages_mpol+0x1fb/0x550
[ 100.474148][ T6564] folio_alloc_noprof+0x20/0x2d0
[ 100.476241][ T6564] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.478556][ T6564] page_cache_ra_order+0x4c0/0xd00
[ 100.480618][ T6564] filemap_fault+0x1a5e/0x2740
[ 100.482547][ T6564] __do_fault+0x10a/0x490
[ 100.484358][ T6564] do_pte_missing+0x1a6/0x3fb0
[ 100.486212][ T6564] __handle_mm_fault+0x103d/0x2a40
[ 100.488273][ T6564] handle_mm_fault+0x3fe/0xad0
[ 100.490216][ T6564] do_user_addr_fault+0x60c/0x1370
[ 100.492310][ T6564] exc_page_fault+0x5c/0xc0
[ 100.494178][ T6564] asm_exc_page_fault+0x26/0x30
[ 100.496230][ T6564] page last free pid 6559 tgid 6558 stack trace:
[ 100.498944][ T6564] free_unref_folios+0x999/0x1630
[ 100.501063][ T6564] folios_put_refs+0x56f/0x740
[ 100.503021][ T6564] truncate_inode_pages_range+0x311/0xe30
[ 100.505335][ T6564] blkdev_flush_mapping+0xe9/0x280
[ 100.507522][ T6564] blkdev_put_whole+0xc4/0xf0
[ 100.509538][ T6564] bdev_release+0x47e/0x6d0
[ 100.511451][ T6564] blkdev_release+0x15/0x20
[ 100.513254][ T6564] __fput+0x3ff/0xb70
[ 100.514906][ T6564] task_work_run+0x14d/0x240
[ 100.516792][ T6564] do_exit+0xafb/0x2c30
[ 100.518569][ T6564] do_group_exit+0xd3/0x2a0
[ 100.520515][ T6564] get_signal+0x2673/0x26d0
[ 100.522374][ T6564] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.524570][ T6564] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.526845][ T6564] do_syscall_64+0xda/0x260
[ 100.528791][ T6564] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.531213][ T6564] Modules linked in:
[ 100.532815][ T6564] CPU: 3 UID: 0 PID: 6564 Comm: syz.0.30 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 100.532840][ T6564] Tainted: [B]=BAD_PAGE
[ 100.532846][ T6564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.532857][ T6564] Call Trace:
[ 100.532863][ T6564]
[ 100.532869][ T6564] dump_stack_lvl+0x16c/0x1f0
[ 100.532889][ T6564] bad_page+0xb3/0x1f0
[ 100.532907][ T6564] ? __pfx_bad_page+0x10/0x10
[ 100.532924][ T6564] ? page_bad_reason+0x9d/0x1e0
[ 100.532942][ T6564] __free_frozen_pages+0x76e/0xff0
[ 100.532966][ T6564] __folio_put+0x329/0x450
[ 100.532985][ T6564] ? __pfx___folio_put+0x10/0x10
[ 100.533002][ T6564] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.533021][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.533039][ T6564] ? lock_release+0x201/0x2f0
[ 100.533063][ T6564] filemap_free_folio+0x132/0x170
[ 100.533080][ T6564] delete_from_page_cache_batch+0x741/0x9b0
[ 100.533101][ T6564] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.533121][ T6564] ? __pfx_workingset_update_node+0x10/0x10
[ 100.533138][ T6564] ? xas_move_index+0xb0/0x110
[ 100.533159][ T6564] truncate_inode_pages_range+0x279/0xe30
[ 100.533183][ T6564] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.533221][ T6564] ? __pfx_down_write+0x10/0x10
[ 100.533242][ T6564] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.533267][ T6564] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.533290][ T6564] blkdev_flush_mapping+0xe9/0x280
[ 100.533309][ T6564] ? filemap_check_errors+0xa9/0x160
[ 100.533332][ T6564] blkdev_put_whole+0xc4/0xf0
[ 100.533347][ T6564] bdev_release+0x47e/0x6d0
[ 100.533367][ T6564] ? __pfx_blkdev_release+0x10/0x10
[ 100.533387][ T6564] blkdev_release+0x15/0x20
[ 100.533405][ T6564] __fput+0x3ff/0xb70
[ 100.533426][ T6564] task_work_run+0x14d/0x240
[ 100.533443][ T6564] ? __pfx_task_work_run+0x10/0x10
[ 100.533459][ T6564] ? do_raw_spin_unlock+0x172/0x230
[ 100.533478][ T6564] do_exit+0xafb/0x2c30
[ 100.533500][ T6564] ? __pfx_try_to_wake_up+0x10/0x10
[ 100.533520][ T6564] ? futex_wake+0x432/0x4e0
[ 100.533543][ T6564] ? __pfx_do_exit+0x10/0x10
[ 100.533566][ T6564] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.533582][ T6564] ? get_signal+0x8f5/0x26d0
[ 100.533605][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.533625][ T6564] do_group_exit+0xd3/0x2a0
[ 100.533648][ T6564] get_signal+0x2673/0x26d0
[ 100.533672][ T6564] ? __pfx_get_signal+0x10/0x10
[ 100.533690][ T6564] ? do_futex+0x122/0x350
[ 100.533711][ T6564] ? __pfx_do_futex+0x10/0x10
[ 100.533732][ T6564] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.533755][ T6564] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.533780][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.533799][ T6564] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.533819][ T6564] do_syscall_64+0xda/0x260
[ 100.533838][ T6564] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.533854][ T6564] RIP: 0033:0x7f9fe6f8e969
[ 100.533867][ T6564] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 100.533875][ T6564] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.533890][ T6564] RAX: 0000000000000001 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 100.533901][ T6564] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f9fe71b5fac
[ 100.533911][ T6564] RBP: 00007f9fe71b5fa0 R08: 00007f9fe7cf8000 R09: 0000000000000000
[ 100.533921][ T6564] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 100.533931][ T6564] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 100.533946][ T6564]
[ 100.700574][ T6566] BUG: Bad page state in process syz.0.31 pfn:50001
[ 100.702464][ T6566] page does not match folio
[ 100.703780][ T6566] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50001
[ 100.706694][ T6566] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 100.708991][ T6566] raw: 00fff00000000000 ffffea0001400000 00000000ffffffff ffffffffffffffff
[ 100.711513][ T6566] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.714099][ T6566] page dumped because: nonzero pincount
[ 100.715804][ T6566] page_owner tracks the page as allocated
[ 100.717867][ T6566] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6565, tgid 6565 (syz.0.31), ts 100680228726, free_ts 100534004216
[ 100.723763][ T6566] post_alloc_hook+0x181/0x1b0
[ 100.725372][ T6566] get_page_from_freelist+0x135c/0x3920
[ 100.727016][ T6566] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.729164][ T6566] alloc_pages_mpol+0x1fb/0x550
[ 100.731015][ T6566] folio_alloc_noprof+0x20/0x2d0
[ 100.732863][ T6566] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.734849][ T6566] page_cache_ra_order+0x4c0/0xd00
[ 100.736829][ T6566] filemap_fault+0x1a5e/0x2740
[ 100.738661][ T6566] __do_fault+0x10a/0x490
[ 100.740127][ T6566] do_pte_missing+0x1a6/0x3fb0
[ 100.741918][ T6566] __handle_mm_fault+0x103d/0x2a40
[ 100.743780][ T6566] handle_mm_fault+0x3fe/0xad0
[ 100.745287][ T6566] do_user_addr_fault+0x60c/0x1370
[ 100.746845][ T6566] exc_page_fault+0x5c/0xc0
[ 100.748342][ T6566] asm_exc_page_fault+0x26/0x30
[ 100.749753][ T6566] page last free pid 6564 tgid 6563 stack trace:
[ 100.751692][ T6566] free_unref_folios+0x999/0x1630
[ 100.753178][ T6566] folios_put_refs+0x56f/0x740
[ 100.754865][ T6566] truncate_inode_pages_range+0x311/0xe30
[ 100.756642][ T6566] blkdev_flush_mapping+0xe9/0x280
[ 100.758224][ T6566] blkdev_put_whole+0xc4/0xf0
[ 100.759662][ T6566] bdev_release+0x47e/0x6d0
[ 100.761050][ T6566] blkdev_release+0x15/0x20
[ 100.762419][ T6566] __fput+0x3ff/0xb70
[ 100.763612][ T6566] task_work_run+0x14d/0x240
[ 100.765030][ T6566] do_exit+0xafb/0x2c30
[ 100.766349][ T6566] do_group_exit+0xd3/0x2a0
[ 100.767809][ T6566] get_signal+0x2673/0x26d0
[ 100.769153][ T6566] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.771021][ T6566] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.772749][ T6566] do_syscall_64+0xda/0x260
[ 100.774379][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.776537][ T6566] Modules linked in:
[ 100.778473][ T6566] CPU: 2 UID: 0 PID: 6566 Comm: syz.0.31 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 100.778489][ T6566] Tainted: [B]=BAD_PAGE
[ 100.778492][ T6566] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.778498][ T6566] Call Trace:
[ 100.778502][ T6566]
[ 100.778505][ T6566] dump_stack_lvl+0x16c/0x1f0
[ 100.778518][ T6566] bad_page+0xb3/0x1f0
[ 100.778529][ T6566] ? __pfx_bad_page+0x10/0x10
[ 100.778539][ T6566] ? __mem_cgroup_uncharge+0xda/0x130
[ 100.778552][ T6566] free_tail_page_prepare+0x44f/0x5b0
[ 100.778565][ T6566] __free_frozen_pages+0x96a/0xff0
[ 100.778580][ T6566] __folio_put+0x329/0x450
[ 100.778591][ T6566] ? __pfx___folio_put+0x10/0x10
[ 100.778602][ T6566] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.778613][ T6566] ? rcu_is_watching+0x12/0xc0
[ 100.778629][ T6566] ? lock_release+0x201/0x2f0
[ 100.778644][ T6566] filemap_free_folio+0x132/0x170
[ 100.778655][ T6566] delete_from_page_cache_batch+0x741/0x9b0
[ 100.778667][ T6566] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.778679][ T6566] ? __pfx_workingset_update_node+0x10/0x10
[ 100.778690][ T6566] ? xas_move_index+0xb0/0x110
[ 100.778702][ T6566] truncate_inode_pages_range+0x279/0xe30
[ 100.778717][ T6566] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.778739][ T6566] ? __pfx_down_write+0x10/0x10
[ 100.778753][ T6566] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.778769][ T6566] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.778784][ T6566] blkdev_flush_mapping+0xe9/0x280
[ 100.778796][ T6566] ? filemap_check_errors+0xa9/0x160
[ 100.778810][ T6566] blkdev_put_whole+0xc4/0xf0
[ 100.778821][ T6566] bdev_release+0x47e/0x6d0
[ 100.778833][ T6566] ? __pfx_blkdev_release+0x10/0x10
[ 100.778845][ T6566] blkdev_release+0x15/0x20
[ 100.778857][ T6566] __fput+0x3ff/0xb70
[ 100.778869][ T6566] task_work_run+0x14d/0x240
[ 100.778879][ T6566] ? __pfx_task_work_run+0x10/0x10
[ 100.778889][ T6566] ? do_raw_spin_unlock+0x172/0x230
[ 100.778900][ T6566] do_exit+0xafb/0x2c30
[ 100.778917][ T6566] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.778940][ T6566] ? __pfx_do_exit+0x10/0x10
[ 100.778955][ T6566] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.778965][ T6566] ? get_signal+0x8f5/0x26d0
[ 100.778976][ T6566] ? rcu_is_watching+0x12/0xc0
[ 100.778987][ T6566] do_group_exit+0xd3/0x2a0
[ 100.779002][ T6566] get_signal+0x2673/0x26d0
[ 100.779015][ T6566] ? __pfx_get_signal+0x10/0x10
[ 100.779027][ T6566] ? do_futex+0x122/0x350
[ 100.779040][ T6566] ? __pfx_do_futex+0x10/0x10
[ 100.779053][ T6566] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.779068][ T6566] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.779084][ T6566] ? madvise_unlock+0xc6/0x190
[ 100.779095][ T6566] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.779131][ T6566] do_syscall_64+0xda/0x260
[ 100.779147][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.779159][ T6566] RIP: 0033:0x7f9fe6f8e969
[ 100.779170][ T6566] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 100.779177][ T6566] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.779191][ T6566] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 100.779201][ T6566] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 100.779210][ T6566] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.779219][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 100.779228][ T6566] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 100.779236][ T6566]
[ 100.779250][ T6566] BUG: Bad page state in process syz.0.31 pfn:50000
[ 100.909332][ T6566] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50000
[ 100.912725][ T6566] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 100.916033][ T6566] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 100.919849][ T6566] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.923235][ T6566] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.926611][ T6566] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.930137][ T6566] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.933566][ T6566] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.936883][ T6566] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.940409][ T6566] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 100.943265][ T6566] page_owner tracks the page as allocated
[ 100.945544][ T6566] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6565, tgid 6565 (syz.0.31), ts 100680228726, free_ts 100534004216
[ 100.953536][ T6566] post_alloc_hook+0x181/0x1b0
[ 100.955496][ T6566] get_page_from_freelist+0x135c/0x3920
[ 100.957898][ T6566] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.960328][ T6566] alloc_pages_mpol+0x1fb/0x550
[ 100.962245][ T6566] folio_alloc_noprof+0x20/0x2d0
[ 100.964232][ T6566] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.966515][ T6566] page_cache_ra_order+0x4c0/0xd00
[ 100.968658][ T6566] filemap_fault+0x1a5e/0x2740
[ 100.970588][ T6566] __do_fault+0x10a/0x490
[ 100.972322][ T6566] do_pte_missing+0x1a6/0x3fb0
[ 100.974237][ T6566] __handle_mm_fault+0x103d/0x2a40
[ 100.976313][ T6566] handle_mm_fault+0x3fe/0xad0
[ 100.978385][ T6566] do_user_addr_fault+0x60c/0x1370
[ 100.980471][ T6566] exc_page_fault+0x5c/0xc0
[ 100.982326][ T6566] asm_exc_page_fault+0x26/0x30
[ 100.984321][ T6566] page last free pid 6564 tgid 6563 stack trace:
[ 100.986866][ T6566] free_unref_folios+0x999/0x1630
[ 100.989338][ T6566] folios_put_refs+0x56f/0x740
[ 100.991308][ T6566] truncate_inode_pages_range+0x311/0xe30
[ 100.993624][ T6566] blkdev_flush_mapping+0xe9/0x280
[ 100.995751][ T6566] blkdev_put_whole+0xc4/0xf0
[ 100.997771][ T6566] bdev_release+0x47e/0x6d0
[ 100.999678][ T6566] blkdev_release+0x15/0x20
[ 101.001565][ T6566] __fput+0x3ff/0xb70
[ 101.003193][ T6566] task_work_run+0x14d/0x240
[ 101.005122][ T6566] do_exit+0xafb/0x2c30
[ 101.006873][ T6566] do_group_exit+0xd3/0x2a0
[ 101.008862][ T6566] get_signal+0x2673/0x26d0
[ 101.010687][ T6566] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.012929][ T6566] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.015230][ T6566] do_syscall_64+0xda/0x260
[ 101.017104][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.019606][ T6566] Modules linked in:
[ 101.021226][ T6566] CPU: 0 UID: 0 PID: 6566 Comm: syz.0.31 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 101.021266][ T6566] Tainted: [B]=BAD_PAGE
[ 101.021271][ T6566] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.021281][ T6566] Call Trace:
[ 101.021287][ T6566]
[ 101.021292][ T6566] dump_stack_lvl+0x16c/0x1f0
[ 101.021311][ T6566] bad_page+0xb3/0x1f0
[ 101.021332][ T6566] ? __pfx_bad_page+0x10/0x10
[ 101.021348][ T6566] ? page_bad_reason+0x9d/0x1e0
[ 101.021364][ T6566] __free_frozen_pages+0x76e/0xff0
[ 101.021387][ T6566] __folio_put+0x329/0x450
[ 101.021403][ T6566] ? __pfx___folio_put+0x10/0x10
[ 101.021420][ T6566] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.021437][ T6566] ? rcu_is_watching+0x12/0xc0
[ 101.021455][ T6566] ? lock_release+0x201/0x2f0
[ 101.021478][ T6566] filemap_free_folio+0x132/0x170
[ 101.021493][ T6566] delete_from_page_cache_batch+0x741/0x9b0
[ 101.021512][ T6566] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.021531][ T6566] ? __pfx_workingset_update_node+0x10/0x10
[ 101.021547][ T6566] ? xas_move_index+0xb0/0x110
[ 101.021566][ T6566] truncate_inode_pages_range+0x279/0xe30
[ 101.021589][ T6566] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.021626][ T6566] ? __pfx_down_write+0x10/0x10
[ 101.021645][ T6566] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.021668][ T6566] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.021689][ T6566] blkdev_flush_mapping+0xe9/0x280
[ 101.021707][ T6566] ? filemap_check_errors+0xa9/0x160
[ 101.021728][ T6566] blkdev_put_whole+0xc4/0xf0
[ 101.021744][ T6566] bdev_release+0x47e/0x6d0
[ 101.021763][ T6566] ? __pfx_blkdev_release+0x10/0x10
[ 101.021782][ T6566] blkdev_release+0x15/0x20
[ 101.021800][ T6566] __fput+0x3ff/0xb70
[ 101.021818][ T6566] task_work_run+0x14d/0x240
[ 101.021833][ T6566] ? __pfx_task_work_run+0x10/0x10
[ 101.021849][ T6566] ? do_raw_spin_unlock+0x172/0x230
[ 101.021866][ T6566] do_exit+0xafb/0x2c30
[ 101.021887][ T6566] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.021911][ T6566] ? __pfx_do_exit+0x10/0x10
[ 101.021932][ T6566] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.021947][ T6566] ? get_signal+0x8f5/0x26d0
[ 101.021964][ T6566] ? rcu_is_watching+0x12/0xc0
[ 101.021981][ T6566] do_group_exit+0xd3/0x2a0
[ 101.022004][ T6566] get_signal+0x2673/0x26d0
[ 101.022025][ T6566] ? __pfx_get_signal+0x10/0x10
[ 101.022042][ T6566] ? do_futex+0x122/0x350
[ 101.022061][ T6566] ? __pfx_do_futex+0x10/0x10
[ 101.022081][ T6566] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.022103][ T6566] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.022127][ T6566] ? madvise_unlock+0xc6/0x190
[ 101.022144][ T6566] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.022162][ T6566] do_syscall_64+0xda/0x260
[ 101.022180][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.022195][ T6566] RIP: 0033:0x7f9fe6f8e969
[ 101.022206][ T6566] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 101.022212][ T6566] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.022227][ T6566] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 101.022237][ T6566] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 101.022246][ T6566] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.022255][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 101.022264][ T6566] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 101.022278][ T6566]
[ 101.061341][ T6568] BUG: Bad page state in process syz.0.32 pfn:4fc01
[ 101.160271][ T6568] page does not match folio
[ 101.162116][ T6568] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4fc01
[ 101.166107][ T6568] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 101.169206][ T6568] raw: 00fff00000000000 ffffea00013f0000 00000000ffffffff ffffffffffffffff
[ 101.172575][ T6568] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.175938][ T6568] page dumped because: nonzero pincount
[ 101.178134][ T6568] page_owner tracks the page as allocated
[ 101.180378][ T6568] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6567, tgid 6567 (syz.0.32), ts 101029409919, free_ts 83631534789
[ 101.188122][ T6568] post_alloc_hook+0x181/0x1b0
[ 101.190053][ T6568] get_page_from_freelist+0x135c/0x3920
[ 101.192236][ T6568] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.194539][ T6568] alloc_pages_mpol+0x1fb/0x550
[ 101.196518][ T6568] folio_alloc_noprof+0x20/0x2d0
[ 101.198523][ T6568] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.200748][ T6568] page_cache_ra_order+0x4c0/0xd00
[ 101.202748][ T6568] filemap_fault+0x1a5e/0x2740
[ 101.204662][ T6568] __do_fault+0x10a/0x490
[ 101.206293][ T6568] do_pte_missing+0x1a6/0x3fb0
[ 101.208197][ T6568] __handle_mm_fault+0x103d/0x2a40
[ 101.210204][ T6568] handle_mm_fault+0x3fe/0xad0
[ 101.212143][ T6568] do_user_addr_fault+0x60c/0x1370
[ 101.214175][ T6568] exc_page_fault+0x5c/0xc0
[ 101.215979][ T6568] asm_exc_page_fault+0x26/0x30
[ 101.217971][ T6568] page last free pid 6205 tgid 6205 stack trace:
[ 101.220445][ T6568] free_unref_folios+0x999/0x1630
[ 101.222488][ T6568] folios_put_refs+0x56f/0x740
[ 101.224397][ T6568] free_pages_and_swap_cache+0x245/0x4a0
[ 101.226615][ T6568] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 101.229775][ T6568] tlb_finish_mmu+0x168/0x7b0
[ 101.231655][ T6568] vms_clear_ptes+0x55e/0x770
[ 101.233556][ T6568] vms_complete_munmap_vmas+0x1ca/0x970
[ 101.235791][ T6568] do_vmi_align_munmap+0x43b/0x7d0
[ 101.237940][ T6568] do_vmi_munmap+0x208/0x3e0
[ 101.239812][ T6568] __vm_munmap+0x19a/0x390
[ 101.241584][ T6568] __x64_sys_munmap+0x59/0x80
[ 101.243458][ T6568] do_syscall_64+0xcd/0x260
[ 101.245259][ T6568] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.247678][ T6568] Modules linked in:
[ 101.249208][ T6568] CPU: 2 UID: 0 PID: 6568 Comm: syz.0.32 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 101.249234][ T6568] Tainted: [B]=BAD_PAGE
[ 101.249239][ T6568] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.249249][ T6568] Call Trace:
[ 101.249255][ T6568]
[ 101.249260][ T6568] dump_stack_lvl+0x16c/0x1f0
[ 101.249279][ T6568] bad_page+0xb3/0x1f0
[ 101.249292][ T6568] ? __pfx_bad_page+0x10/0x10
[ 101.249305][ T6568] ? __mem_cgroup_uncharge+0xda/0x130
[ 101.249320][ T6568] free_tail_page_prepare+0x44f/0x5b0
[ 101.249336][ T6568] __free_frozen_pages+0x96a/0xff0
[ 101.249356][ T6568] __folio_put+0x329/0x450
[ 101.249371][ T6568] ? __pfx___folio_put+0x10/0x10
[ 101.249387][ T6568] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.249403][ T6568] ? rcu_is_watching+0x12/0xc0
[ 101.249420][ T6568] ? lock_release+0x201/0x2f0
[ 101.249443][ T6568] filemap_free_folio+0x132/0x170
[ 101.249459][ T6568] delete_from_page_cache_batch+0x741/0x9b0
[ 101.249477][ T6568] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.249496][ T6568] ? __pfx_workingset_update_node+0x10/0x10
[ 101.249511][ T6568] ? xas_move_index+0xb0/0x110
[ 101.249530][ T6568] truncate_inode_pages_range+0x279/0xe30
[ 101.249553][ T6568] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.249595][ T6568] ? __pfx_down_write+0x10/0x10
[ 101.249614][ T6568] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.249638][ T6568] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.249661][ T6568] blkdev_flush_mapping+0xe9/0x280
[ 101.249678][ T6568] ? filemap_check_errors+0xa9/0x160
[ 101.249699][ T6568] blkdev_put_whole+0xc4/0xf0
[ 101.249714][ T6568] bdev_release+0x47e/0x6d0
[ 101.249733][ T6568] ? __pfx_blkdev_release+0x10/0x10
[ 101.249750][ T6568] blkdev_release+0x15/0x20
[ 101.249768][ T6568] __fput+0x3ff/0xb70
[ 101.249787][ T6568] task_work_run+0x14d/0x240
[ 101.249804][ T6568] ? __pfx_task_work_run+0x10/0x10
[ 101.249819][ T6568] ? do_raw_spin_unlock+0x172/0x230
[ 101.249836][ T6568] do_exit+0xafb/0x2c30
[ 101.249857][ T6568] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.249882][ T6568] ? __pfx_do_exit+0x10/0x10
[ 101.249902][ T6568] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.249917][ T6568] ? get_signal+0x8f5/0x26d0
[ 101.249935][ T6568] ? rcu_is_watching+0x12/0xc0
[ 101.249952][ T6568] do_group_exit+0xd3/0x2a0
[ 101.249974][ T6568] get_signal+0x2673/0x26d0
[ 101.249995][ T6568] ? __pfx_get_signal+0x10/0x10
[ 101.250013][ T6568] ? do_futex+0x122/0x350
[ 101.250032][ T6568] ? __pfx_do_futex+0x10/0x10
[ 101.250052][ T6568] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.250074][ T6568] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.250097][ T6568] ? madvise_unlock+0xc6/0x190
[ 101.250115][ T6568] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.250134][ T6568] do_syscall_64+0xda/0x260
[ 101.250152][ T6568] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.250167][ T6568] RIP: 0033:0x7f9fe6f8e969
[ 101.250180][ T6568] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 101.250187][ T6568] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.250203][ T6568] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 101.250213][ T6568] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 101.250223][ T6568] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.250233][ T6568] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 101.250242][ T6568] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 101.250257][ T6568]
[ 101.250285][ T6568] BUG: Bad page state in process syz.0.32 pfn:4fc00
[ 101.387539][ T6568] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4fc00
[ 101.390680][ T6568] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 101.393931][ T6568] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 101.398652][ T6568] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.402081][ T6568] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.405318][ T6568] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.408799][ T6568] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.412027][ T6568] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.415004][ T6568] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.418189][ T6568] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 101.420962][ T6568] page_owner tracks the page as allocated
[ 101.423037][ T6568] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6567, tgid 6567 (syz.0.32), ts 101029409919, free_ts 83631529715
[ 101.429955][ T6568] post_alloc_hook+0x181/0x1b0
[ 101.431765][ T6568] get_page_from_freelist+0x135c/0x3920
[ 101.433843][ T6568] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.435832][ T6568] alloc_pages_mpol+0x1fb/0x550
[ 101.437474][ T6568] folio_alloc_noprof+0x20/0x2d0
[ 101.439359][ T6568] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.441531][ T6568] page_cache_ra_order+0x4c0/0xd00
[ 101.443449][ T6568] filemap_fault+0x1a5e/0x2740
[ 101.445258][ T6568] __do_fault+0x10a/0x490
[ 101.446903][ T6568] do_pte_missing+0x1a6/0x3fb0
[ 101.448833][ T6568] __handle_mm_fault+0x103d/0x2a40
[ 101.450890][ T6568] handle_mm_fault+0x3fe/0xad0
[ 101.452882][ T6568] do_user_addr_fault+0x60c/0x1370
[ 101.454604][ T6568] exc_page_fault+0x5c/0xc0
[ 101.455962][ T6568] asm_exc_page_fault+0x26/0x30
[ 101.457515][ T6568] page last free pid 6205 tgid 6205 stack trace:
[ 101.459359][ T6568] free_unref_folios+0x999/0x1630
[ 101.460852][ T6568] folios_put_refs+0x56f/0x740
[ 101.462248][ T6568] free_pages_and_swap_cache+0x245/0x4a0
[ 101.463876][ T6568] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 101.465611][ T6568] tlb_finish_mmu+0x168/0x7b0
[ 101.467022][ T6568] vms_clear_ptes+0x55e/0x770
[ 101.468523][ T6568] vms_complete_munmap_vmas+0x1ca/0x970
[ 101.470131][ T6568] do_vmi_align_munmap+0x43b/0x7d0
[ 101.471658][ T6568] do_vmi_munmap+0x208/0x3e0
[ 101.473018][ T6568] __vm_munmap+0x19a/0x390
[ 101.474321][ T6568] __x64_sys_munmap+0x59/0x80
[ 101.475731][ T6568] do_syscall_64+0xcd/0x260
[ 101.477080][ T6568] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.478845][ T6568] Modules linked in:
[ 101.480015][ T6568] CPU: 3 UID: 0 PID: 6568 Comm: syz.0.32 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 101.480031][ T6568] Tainted: [B]=BAD_PAGE
[ 101.480035][ T6568] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.480041][ T6568] Call Trace:
[ 101.480045][ T6568]
[ 101.480049][ T6568] dump_stack_lvl+0x16c/0x1f0
[ 101.480062][ T6568] bad_page+0xb3/0x1f0
[ 101.480072][ T6568] ? __pfx_bad_page+0x10/0x10
[ 101.480082][ T6568] ? page_bad_reason+0x9d/0x1e0
[ 101.480093][ T6568] __free_frozen_pages+0x76e/0xff0
[ 101.480108][ T6568] __folio_put+0x329/0x450
[ 101.480119][ T6568] ? __pfx___folio_put+0x10/0x10
[ 101.480130][ T6568] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.480141][ T6568] ? rcu_is_watching+0x12/0xc0
[ 101.480167][ T6568] ? lock_release+0x201/0x2f0
[ 101.480184][ T6568] filemap_free_folio+0x132/0x170
[ 101.480195][ T6568] delete_from_page_cache_batch+0x741/0x9b0
[ 101.480207][ T6568] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.480219][ T6568] ? __pfx_workingset_update_node+0x10/0x10
[ 101.480230][ T6568] ? xas_move_index+0xb0/0x110
[ 101.480242][ T6568] truncate_inode_pages_range+0x279/0xe30
[ 101.480258][ T6568] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.480280][ T6568] ? __pfx_down_write+0x10/0x10
[ 101.480297][ T6568] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.480313][ T6568] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.480327][ T6568] blkdev_flush_mapping+0xe9/0x280
[ 101.480339][ T6568] ? filemap_check_errors+0xa9/0x160
[ 101.480354][ T6568] blkdev_put_whole+0xc4/0xf0
[ 101.480364][ T6568] bdev_release+0x47e/0x6d0
[ 101.480377][ T6568] ? __pfx_blkdev_release+0x10/0x10
[ 101.480389][ T6568] blkdev_release+0x15/0x20
[ 101.480401][ T6568] __fput+0x3ff/0xb70
[ 101.480413][ T6568] task_work_run+0x14d/0x240
[ 101.480424][ T6568] ? __pfx_task_work_run+0x10/0x10
[ 101.480434][ T6568] ? do_raw_spin_unlock+0x172/0x230
[ 101.480445][ T6568] do_exit+0xafb/0x2c30
[ 101.480459][ T6568] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.480477][ T6568] ? __pfx_do_exit+0x10/0x10
[ 101.480490][ T6568] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.480500][ T6568] ? get_signal+0x8f5/0x26d0
[ 101.480512][ T6568] ? rcu_is_watching+0x12/0xc0
[ 101.480524][ T6568] do_group_exit+0xd3/0x2a0
[ 101.480539][ T6568] get_signal+0x2673/0x26d0
[ 101.480552][ T6568] ? __pfx_get_signal+0x10/0x10
[ 101.480564][ T6568] ? do_futex+0x122/0x350
[ 101.480577][ T6568] ? __pfx_do_futex+0x10/0x10
[ 101.480590][ T6568] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.480606][ T6568] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.480621][ T6568] ? madvise_unlock+0xc6/0x190
[ 101.480632][ T6568] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.480644][ T6568] do_syscall_64+0xda/0x260
[ 101.480656][ T6568] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.480666][ T6568] RIP: 0033:0x7f9fe6f8e969
[ 101.480674][ T6568] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 101.480679][ T6568] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.480689][ T6568] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 101.480695][ T6568] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 101.480701][ T6568] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.480707][ T6568] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 101.480713][ T6568] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 101.480721][ T6568]
[ 101.510547][ T6570] BUG: Bad page state in process syz.0.33 pfn:50201
[ 101.599856][ T6570] page does not match folio
[ 101.601703][ T6570] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50201
[ 101.606131][ T6570] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 101.609302][ T6570] raw: 00fff00000000000 ffffea0001408000 00000000ffffffff ffffffffffffffff
[ 101.612117][ T6570] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.614699][ T6570] page dumped because: nonzero pincount
[ 101.616392][ T6570] page_owner tracks the page as allocated
[ 101.618779][ T6570] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6569, tgid 6569 (syz.0.33), ts 101491699306, free_ts 101022407940
[ 101.626038][ T6570] post_alloc_hook+0x181/0x1b0
[ 101.628963][ T6570] get_page_from_freelist+0x135c/0x3920
[ 101.631059][ T6570] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.632990][ T6570] alloc_pages_mpol+0x1fb/0x550
[ 101.634842][ T6570] folio_alloc_noprof+0x20/0x2d0
[ 101.636815][ T6570] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.639251][ T6570] page_cache_ra_order+0x4c0/0xd00
[ 101.641206][ T6570] filemap_fault+0x1a5e/0x2740
[ 101.642866][ T6570] __do_fault+0x10a/0x490
[ 101.644485][ T6570] do_pte_missing+0x1a6/0x3fb0
[ 101.646336][ T6570] __handle_mm_fault+0x103d/0x2a40
[ 101.648349][ T6570] handle_mm_fault+0x3fe/0xad0
[ 101.650111][ T6570] do_user_addr_fault+0x60c/0x1370
[ 101.651945][ T6570] exc_page_fault+0x5c/0xc0
[ 101.653645][ T6570] asm_exc_page_fault+0x26/0x30
[ 101.655130][ T6570] page last free pid 6566 tgid 6565 stack trace:
[ 101.657112][ T6570] free_unref_folios+0x999/0x1630
[ 101.659068][ T6570] folios_put_refs+0x56f/0x740
[ 101.660823][ T6570] truncate_inode_pages_range+0x311/0xe30
[ 101.662798][ T6570] blkdev_flush_mapping+0xe9/0x280
[ 101.664742][ T6570] blkdev_put_whole+0xc4/0xf0
[ 101.666389][ T6570] bdev_release+0x47e/0x6d0
[ 101.668139][ T6570] blkdev_release+0x15/0x20
[ 101.669853][ T6570] __fput+0x3ff/0xb70
[ 101.671409][ T6570] task_work_run+0x14d/0x240
[ 101.673053][ T6570] do_exit+0xafb/0x2c30
[ 101.674622][ T6570] do_group_exit+0xd3/0x2a0
[ 101.676252][ T6570] get_signal+0x2673/0x26d0
[ 101.677911][ T6570] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.679885][ T6570] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.682011][ T6570] do_syscall_64+0xda/0x260
[ 101.683700][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.685929][ T6570] Modules linked in:
[ 101.687615][ T6570] CPU: 0 UID: 0 PID: 6570 Comm: syz.0.33 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 101.687639][ T6570] Tainted: [B]=BAD_PAGE
[ 101.687644][ T6570] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.687654][ T6570] Call Trace:
[ 101.687659][ T6570]
[ 101.687665][ T6570] dump_stack_lvl+0x16c/0x1f0
[ 101.687709][ T6570] bad_page+0xb3/0x1f0
[ 101.687725][ T6570] ? __pfx_bad_page+0x10/0x10
[ 101.687736][ T6570] ? __mem_cgroup_uncharge+0xda/0x130
[ 101.687748][ T6570] free_tail_page_prepare+0x44f/0x5b0
[ 101.687761][ T6570] __free_frozen_pages+0x96a/0xff0
[ 101.687779][ T6570] __folio_put+0x329/0x450
[ 101.687794][ T6570] ? __pfx___folio_put+0x10/0x10
[ 101.687810][ T6570] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.687827][ T6570] ? rcu_is_watching+0x12/0xc0
[ 101.687844][ T6570] ? lock_release+0x201/0x2f0
[ 101.687860][ T6570] filemap_free_folio+0x132/0x170
[ 101.687875][ T6570] delete_from_page_cache_batch+0x741/0x9b0
[ 101.687893][ T6570] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.687911][ T6570] ? __pfx_workingset_update_node+0x10/0x10
[ 101.687927][ T6570] ? xas_move_index+0xb0/0x110
[ 101.687940][ T6570] truncate_inode_pages_range+0x279/0xe30
[ 101.687955][ T6570] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.687977][ T6570] ? __pfx_down_write+0x10/0x10
[ 101.687990][ T6570] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.688007][ T6570] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.688021][ T6570] blkdev_flush_mapping+0xe9/0x280
[ 101.688032][ T6570] ? filemap_check_errors+0xa9/0x160
[ 101.688047][ T6570] blkdev_put_whole+0xc4/0xf0
[ 101.688058][ T6570] bdev_release+0x47e/0x6d0
[ 101.688070][ T6570] ? __pfx_blkdev_release+0x10/0x10
[ 101.688086][ T6570] blkdev_release+0x15/0x20
[ 101.688101][ T6570] __fput+0x3ff/0xb70
[ 101.688112][ T6570] task_work_run+0x14d/0x240
[ 101.688123][ T6570] ? __pfx_task_work_run+0x10/0x10
[ 101.688133][ T6570] ? do_raw_spin_unlock+0x172/0x230
[ 101.688144][ T6570] do_exit+0xafb/0x2c30
[ 101.688158][ T6570] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.688180][ T6570] ? __pfx_do_exit+0x10/0x10
[ 101.688198][ T6570] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.688208][ T6570] ? get_signal+0x8f5/0x26d0
[ 101.688219][ T6570] ? rcu_is_watching+0x12/0xc0
[ 101.688230][ T6570] do_group_exit+0xd3/0x2a0
[ 101.688246][ T6570] get_signal+0x2673/0x26d0
[ 101.688259][ T6570] ? __pfx_get_signal+0x10/0x10
[ 101.688271][ T6570] ? do_futex+0x122/0x350
[ 101.688284][ T6570] ? __pfx_do_futex+0x10/0x10
[ 101.688302][ T6570] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.688317][ T6570] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.688339][ T6570] ? madvise_unlock+0xc6/0x190
[ 101.688356][ T6570] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.688368][ T6570] do_syscall_64+0xda/0x260
[ 101.688380][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.688390][ T6570] RIP: 0033:0x7f9fe6f8e969
[ 101.688398][ T6570] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 101.688402][ T6570] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.688412][ T6570] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 101.688419][ T6570] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 101.688425][ T6570] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.688431][ T6570] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 101.688438][ T6570] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 101.688451][ T6570]
[ 101.688477][ T6570] BUG: Bad page state in process syz.0.33 pfn:50200
[ 101.808039][ T6570] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50200
[ 101.811485][ T6570] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 101.814827][ T6570] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 101.818253][ T6570] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.821442][ T6570] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.824726][ T6570] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.827624][ T6570] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.830919][ T6570] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.834287][ T6570] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.837827][ T6570] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 101.840716][ T6570] page_owner tracks the page as allocated
[ 101.842956][ T6570] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6569, tgid 6569 (syz.0.33), ts 101491699306, free_ts 101022407940
[ 101.850617][ T6570] post_alloc_hook+0x181/0x1b0
[ 101.852053][ T6570] get_page_from_freelist+0x135c/0x3920
[ 101.853658][ T6570] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.855473][ T6570] alloc_pages_mpol+0x1fb/0x550
[ 101.856902][ T6570] folio_alloc_noprof+0x20/0x2d0
[ 101.858389][ T6570] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.860111][ T6570] page_cache_ra_order+0x4c0/0xd00
[ 101.861643][ T6570] filemap_fault+0x1a5e/0x2740
[ 101.863029][ T6570] __do_fault+0x10a/0x490
[ 101.864439][ T6570] do_pte_missing+0x1a6/0x3fb0
[ 101.865990][ T6570] __handle_mm_fault+0x103d/0x2a40
[ 101.867685][ T6570] handle_mm_fault+0x3fe/0xad0
[ 101.869093][ T6570] do_user_addr_fault+0x60c/0x1370
[ 101.870614][ T6570] exc_page_fault+0x5c/0xc0
[ 101.871941][ T6570] asm_exc_page_fault+0x26/0x30
[ 101.873346][ T6570] page last free pid 6566 tgid 6565 stack trace:
[ 101.875262][ T6570] free_unref_folios+0x999/0x1630
[ 101.876860][ T6570] folios_put_refs+0x56f/0x740
[ 101.878385][ T6570] truncate_inode_pages_range+0x311/0xe30
[ 101.880164][ T6570] blkdev_flush_mapping+0xe9/0x280
[ 101.881739][ T6570] blkdev_put_whole+0xc4/0xf0
[ 101.883177][ T6570] bdev_release+0x47e/0x6d0
[ 101.884571][ T6570] blkdev_release+0x15/0x20
[ 101.886022][ T6570] __fput+0x3ff/0xb70
[ 101.887367][ T6570] task_work_run+0x14d/0x240
[ 101.888724][ T6570] do_exit+0xafb/0x2c30
[ 101.890031][ T6570] do_group_exit+0xd3/0x2a0
[ 101.891457][ T6570] get_signal+0x2673/0x26d0
[ 101.892852][ T6570] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.894610][ T6570] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.896486][ T6570] do_syscall_64+0xda/0x260
[ 101.898017][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.899871][ T6570] Modules linked in:
[ 101.901123][ T6570] CPU: 1 UID: 0 PID: 6570 Comm: syz.0.33 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 101.901139][ T6570] Tainted: [B]=BAD_PAGE
[ 101.901142][ T6570] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.901148][ T6570] Call Trace:
[ 101.901152][ T6570]
[ 101.901156][ T6570] dump_stack_lvl+0x16c/0x1f0
[ 101.901169][ T6570] bad_page+0xb3/0x1f0
[ 101.901180][ T6570] ? __pfx_bad_page+0x10/0x10
[ 101.901190][ T6570] ? page_bad_reason+0x9d/0x1e0
[ 101.901201][ T6570] __free_frozen_pages+0x76e/0xff0
[ 101.901216][ T6570] __folio_put+0x329/0x450
[ 101.901227][ T6570] ? __pfx___folio_put+0x10/0x10
[ 101.901238][ T6570] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.901250][ T6570] ? rcu_is_watching+0x12/0xc0
[ 101.901261][ T6570] ? lock_release+0x201/0x2f0
[ 101.901276][ T6570] filemap_free_folio+0x132/0x170
[ 101.901287][ T6570] delete_from_page_cache_batch+0x741/0x9b0
[ 101.901300][ T6570] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.901312][ T6570] ? __pfx_workingset_update_node+0x10/0x10
[ 101.901322][ T6570] ? xas_move_index+0xb0/0x110
[ 101.901335][ T6570] truncate_inode_pages_range+0x279/0xe30
[ 101.901350][ T6570] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.901372][ T6570] ? __pfx_down_write+0x10/0x10
[ 101.901385][ T6570] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.901401][ T6570] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.901416][ T6570] blkdev_flush_mapping+0xe9/0x280
[ 101.901427][ T6570] ? filemap_check_errors+0xa9/0x160
[ 101.901442][ T6570] blkdev_put_whole+0xc4/0xf0
[ 101.901453][ T6570] bdev_release+0x47e/0x6d0
[ 101.901466][ T6570] ? __pfx_blkdev_release+0x10/0x10
[ 101.901478][ T6570] blkdev_release+0x15/0x20
[ 101.901490][ T6570] __fput+0x3ff/0xb70
[ 101.901501][ T6570] task_work_run+0x14d/0x240
[ 101.901512][ T6570] ? __pfx_task_work_run+0x10/0x10
[ 101.901522][ T6570] ? do_raw_spin_unlock+0x172/0x230
[ 101.901533][ T6570] do_exit+0xafb/0x2c30
[ 101.901547][ T6570] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.901564][ T6570] ? __pfx_do_exit+0x10/0x10
[ 101.901578][ T6570] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.901592][ T6570] ? get_signal+0x8f5/0x26d0
[ 101.901603][ T6570] ? rcu_is_watching+0x12/0xc0
[ 101.901615][ T6570] do_group_exit+0xd3/0x2a0
[ 101.901629][ T6570] get_signal+0x2673/0x26d0
[ 101.901643][ T6570] ? __pfx_get_signal+0x10/0x10
[ 101.901655][ T6570] ? do_futex+0x122/0x350
[ 101.901668][ T6570] ? __pfx_do_futex+0x10/0x10
[ 101.901681][ T6570] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.901695][ T6570] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.901711][ T6570] ? madvise_unlock+0xc6/0x190
[ 101.901723][ T6570] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.901735][ T6570] do_syscall_64+0xda/0x260
[ 101.901746][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.901756][ T6570] RIP: 0033:0x7f9fe6f8e969
[ 101.901764][ T6570] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 101.901768][ T6570] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.901778][ T6570] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 101.901785][ T6570] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 101.901790][ T6570] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.901797][ T6570] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 101.901802][ T6570] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 101.901811][ T6570]
[ 102.025437][ T6572] BUG: Bad page state in process syz.0.34 pfn:3d401
[ 102.027620][ T6572] page does not match folio
[ 102.028940][ T6572] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3d401
[ 102.031876][ T6572] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.034155][ T6572] raw: 00fff00000000000 ffffea0000f50000 00000000ffffffff ffffffffffffffff
[ 102.036911][ T6572] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.039922][ T6572] page dumped because: nonzero pincount
[ 102.042051][ T6572] page_owner tracks the page as allocated
[ 102.044088][ T6572] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6571, tgid 6571 (syz.0.34), ts 102008138331, free_ts 101901842680
[ 102.050244][ T6572] post_alloc_hook+0x181/0x1b0
[ 102.051714][ T6572] get_page_from_freelist+0x135c/0x3920
[ 102.053833][ T6572] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.056151][ T6572] alloc_pages_mpol+0x1fb/0x550
[ 102.058207][ T6572] folio_alloc_noprof+0x20/0x2d0
[ 102.060239][ T6572] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.062490][ T6572] page_cache_ra_order+0x4c0/0xd00
[ 102.064496][ T6572] filemap_fault+0x1a5e/0x2740
[ 102.066439][ T6572] __do_fault+0x10a/0x490
[ 102.068227][ T6572] do_pte_missing+0x1a6/0x3fb0
[ 102.070143][ T6572] __handle_mm_fault+0x103d/0x2a40
[ 102.072161][ T6572] handle_mm_fault+0x3fe/0xad0
[ 102.074052][ T6572] do_user_addr_fault+0x60c/0x1370
[ 102.076120][ T6572] exc_page_fault+0x5c/0xc0
[ 102.077969][ T6572] asm_exc_page_fault+0x26/0x30
[ 102.079861][ T6572] page last free pid 6570 tgid 6569 stack trace:
[ 102.082364][ T6572] free_unref_folios+0x999/0x1630
[ 102.084351][ T6572] folios_put_refs+0x56f/0x740
[ 102.086123][ T6572] truncate_inode_pages_range+0x311/0xe30
[ 102.088473][ T6572] blkdev_flush_mapping+0xe9/0x280
[ 102.090515][ T6572] blkdev_put_whole+0xc4/0xf0
[ 102.092427][ T6572] bdev_release+0x47e/0x6d0
[ 102.094142][ T6572] blkdev_release+0x15/0x20
[ 102.095713][ T6572] __fput+0x3ff/0xb70
[ 102.097150][ T6572] task_work_run+0x14d/0x240
[ 102.099033][ T6572] do_exit+0xafb/0x2c30
[ 102.100687][ T6572] do_group_exit+0xd3/0x2a0
[ 102.102405][ T6572] get_signal+0x2673/0x26d0
[ 102.104262][ T6572] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.106520][ T6572] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.108811][ T6572] do_syscall_64+0xda/0x260
[ 102.110598][ T6572] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.112884][ T6572] Modules linked in:
[ 102.114438][ T6572] CPU: 3 UID: 0 PID: 6572 Comm: syz.0.34 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 102.114463][ T6572] Tainted: [B]=BAD_PAGE
[ 102.114469][ T6572] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.114478][ T6572] Call Trace:
[ 102.114484][ T6572]
[ 102.114490][ T6572] dump_stack_lvl+0x16c/0x1f0
[ 102.114508][ T6572] bad_page+0xb3/0x1f0
[ 102.114524][ T6572] ? __pfx_bad_page+0x10/0x10
[ 102.114539][ T6572] ? __mem_cgroup_uncharge+0xda/0x130
[ 102.114556][ T6572] free_tail_page_prepare+0x44f/0x5b0
[ 102.114578][ T6572] __free_frozen_pages+0x96a/0xff0
[ 102.114602][ T6572] __folio_put+0x329/0x450
[ 102.114621][ T6572] ? __pfx___folio_put+0x10/0x10
[ 102.114637][ T6572] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.114653][ T6572] ? rcu_is_watching+0x12/0xc0
[ 102.114669][ T6572] ? lock_release+0x201/0x2f0
[ 102.114690][ T6572] filemap_free_folio+0x132/0x170
[ 102.114704][ T6572] delete_from_page_cache_batch+0x741/0x9b0
[ 102.114725][ T6572] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.114746][ T6572] ? __pfx_workingset_update_node+0x10/0x10
[ 102.114765][ T6572] ? xas_move_index+0xb0/0x110
[ 102.114784][ T6572] truncate_inode_pages_range+0x279/0xe30
[ 102.114810][ T6572] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.114847][ T6572] ? __pfx_down_write+0x10/0x10
[ 102.114866][ T6572] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.114888][ T6572] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.114908][ T6572] blkdev_flush_mapping+0xe9/0x280
[ 102.114924][ T6572] ? filemap_check_errors+0xa9/0x160
[ 102.114946][ T6572] blkdev_put_whole+0xc4/0xf0
[ 102.114961][ T6572] bdev_release+0x47e/0x6d0
[ 102.114980][ T6572] ? __pfx_blkdev_release+0x10/0x10
[ 102.115001][ T6572] blkdev_release+0x15/0x20
[ 102.115019][ T6572] __fput+0x3ff/0xb70
[ 102.115036][ T6572] task_work_run+0x14d/0x240
[ 102.115050][ T6572] ? __pfx_task_work_run+0x10/0x10
[ 102.115064][ T6572] ? do_raw_spin_unlock+0x172/0x230
[ 102.115080][ T6572] do_exit+0xafb/0x2c30
[ 102.115119][ T6572] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.115147][ T6572] ? __pfx_do_exit+0x10/0x10
[ 102.115170][ T6572] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.115185][ T6572] ? get_signal+0x8f5/0x26d0
[ 102.115202][ T6572] ? rcu_is_watching+0x12/0xc0
[ 102.115218][ T6572] do_group_exit+0xd3/0x2a0
[ 102.115239][ T6572] get_signal+0x2673/0x26d0
[ 102.115259][ T6572] ? __pfx_get_signal+0x10/0x10
[ 102.115275][ T6572] ? do_futex+0x122/0x350
[ 102.115303][ T6572] ? __pfx_do_futex+0x10/0x10
[ 102.115324][ T6572] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.115349][ T6572] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.115372][ T6572] ? rcu_is_watching+0x12/0xc0
[ 102.115389][ T6572] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.115406][ T6572] do_syscall_64+0xda/0x260
[ 102.115423][ T6572] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.115437][ T6572] RIP: 0033:0x7f9fe6f8e969
[ 102.115448][ T6572] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 102.115455][ T6572] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.115472][ T6572] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 102.115483][ T6572] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 102.115492][ T6572] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.115503][ T6572] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 102.115514][ T6572] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 102.115528][ T6572]
[ 102.115554][ T6572] BUG: Bad page state in process syz.0.34 pfn:3d400
[ 102.249904][ T6572] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3d400
[ 102.253264][ T6572] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 102.256591][ T6572] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 102.260312][ T6572] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.263766][ T6572] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.267204][ T6572] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.270693][ T6572] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.274057][ T6572] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.277492][ T6572] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.280995][ T6572] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 102.283878][ T6572] page_owner tracks the page as allocated
[ 102.286138][ T6572] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6571, tgid 6571 (syz.0.34), ts 102008138331, free_ts 101901842680
[ 102.293932][ T6572] post_alloc_hook+0x181/0x1b0
[ 102.295876][ T6572] get_page_from_freelist+0x135c/0x3920
[ 102.298158][ T6572] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.300401][ T6572] alloc_pages_mpol+0x1fb/0x550
[ 102.302318][ T6572] folio_alloc_noprof+0x20/0x2d0
[ 102.304234][ T6572] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.306483][ T6572] page_cache_ra_order+0x4c0/0xd00
[ 102.308642][ T6572] filemap_fault+0x1a5e/0x2740
[ 102.310547][ T6572] __do_fault+0x10a/0x490
[ 102.312217][ T6572] do_pte_missing+0x1a6/0x3fb0
[ 102.313977][ T6572] __handle_mm_fault+0x103d/0x2a40
[ 102.315945][ T6572] handle_mm_fault+0x3fe/0xad0
[ 102.317911][ T6572] do_user_addr_fault+0x60c/0x1370
[ 102.319884][ T6572] exc_page_fault+0x5c/0xc0
[ 102.321663][ T6572] asm_exc_page_fault+0x26/0x30
[ 102.323596][ T6572] page last free pid 6570 tgid 6569 stack trace:
[ 102.326033][ T6572] free_unref_folios+0x999/0x1630
[ 102.328049][ T6572] folios_put_refs+0x56f/0x740
[ 102.329889][ T6572] truncate_inode_pages_range+0x311/0xe30
[ 102.332088][ T6572] blkdev_flush_mapping+0xe9/0x280
[ 102.334062][ T6572] blkdev_put_whole+0xc4/0xf0
[ 102.335899][ T6572] bdev_release+0x47e/0x6d0
[ 102.337768][ T6572] blkdev_release+0x15/0x20
[ 102.339562][ T6572] __fput+0x3ff/0xb70
[ 102.341140][ T6572] task_work_run+0x14d/0x240
[ 102.342950][ T6572] do_exit+0xafb/0x2c30
[ 102.344565][ T6572] do_group_exit+0xd3/0x2a0
[ 102.346317][ T6572] get_signal+0x2673/0x26d0
[ 102.348173][ T6572] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.350281][ T6572] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.352402][ T6572] do_syscall_64+0xda/0x260
[ 102.354160][ T6572] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.356430][ T6572] Modules linked in:
[ 102.358027][ T6572] CPU: 3 UID: 0 PID: 6572 Comm: syz.0.34 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 102.358050][ T6572] Tainted: [B]=BAD_PAGE
[ 102.358056][ T6572] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.358064][ T6572] Call Trace:
[ 102.358070][ T6572]
[ 102.358075][ T6572] dump_stack_lvl+0x16c/0x1f0
[ 102.358093][ T6572] bad_page+0xb3/0x1f0
[ 102.358110][ T6572] ? __pfx_bad_page+0x10/0x10
[ 102.358127][ T6572] ? page_bad_reason+0x9d/0x1e0
[ 102.358144][ T6572] __free_frozen_pages+0x76e/0xff0
[ 102.358170][ T6572] __folio_put+0x329/0x450
[ 102.358186][ T6572] ? __pfx___folio_put+0x10/0x10
[ 102.358202][ T6572] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.358218][ T6572] ? rcu_is_watching+0x12/0xc0
[ 102.358234][ T6572] ? lock_release+0x201/0x2f0
[ 102.358256][ T6572] filemap_free_folio+0x132/0x170
[ 102.358271][ T6572] delete_from_page_cache_batch+0x741/0x9b0
[ 102.358297][ T6572] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.358316][ T6572] ? __pfx_workingset_update_node+0x10/0x10
[ 102.358335][ T6572] ? xas_move_index+0xb0/0x110
[ 102.358355][ T6572] truncate_inode_pages_range+0x279/0xe30
[ 102.358376][ T6572] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.358409][ T6572] ? __pfx_down_write+0x10/0x10
[ 102.358427][ T6572] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.358449][ T6572] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.358472][ T6572] blkdev_flush_mapping+0xe9/0x280
[ 102.358490][ T6572] ? filemap_check_errors+0xa9/0x160
[ 102.358516][ T6572] blkdev_put_whole+0xc4/0xf0
[ 102.358531][ T6572] bdev_release+0x47e/0x6d0
[ 102.358549][ T6572] ? __pfx_blkdev_release+0x10/0x10
[ 102.358565][ T6572] blkdev_release+0x15/0x20
[ 102.358582][ T6572] __fput+0x3ff/0xb70
[ 102.358599][ T6572] task_work_run+0x14d/0x240
[ 102.358614][ T6572] ? __pfx_task_work_run+0x10/0x10
[ 102.358631][ T6572] ? do_raw_spin_unlock+0x172/0x230
[ 102.358650][ T6572] do_exit+0xafb/0x2c30
[ 102.358672][ T6572] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.358698][ T6572] ? __pfx_do_exit+0x10/0x10
[ 102.358717][ T6572] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.358731][ T6572] ? get_signal+0x8f5/0x26d0
[ 102.358747][ T6572] ? rcu_is_watching+0x12/0xc0
[ 102.358764][ T6572] do_group_exit+0xd3/0x2a0
[ 102.358785][ T6572] get_signal+0x2673/0x26d0
[ 102.358806][ T6572] ? __pfx_get_signal+0x10/0x10
[ 102.358823][ T6572] ? do_futex+0x122/0x350
[ 102.358844][ T6572] ? __pfx_do_futex+0x10/0x10
[ 102.358867][ T6572] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.358889][ T6572] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.358910][ T6572] ? rcu_is_watching+0x12/0xc0
[ 102.358927][ T6572] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.358949][ T6572] do_syscall_64+0xda/0x260
[ 102.358970][ T6572] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.358984][ T6572] RIP: 0033:0x7f9fe6f8e969
[ 102.358998][ T6572] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 102.359005][ T6572] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.359020][ T6572] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 102.359032][ T6572] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 102.359043][ T6572] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.359052][ T6572] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 102.359061][ T6572] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 102.359075][ T6572]
[ 102.530479][ T6574] BUG: Bad page state in process syz.0.35 pfn:4fe01
[ 102.532466][ T6574] page does not match folio
[ 102.533804][ T6574] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4fe01
[ 102.536766][ T6574] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.539034][ T6574] raw: 00fff00000000000 ffffea00013f8000 00000000ffffffff ffffffffffffffff
[ 102.541526][ T6574] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.543976][ T6574] page dumped because: nonzero pincount
[ 102.545638][ T6574] page_owner tracks the page as allocated
[ 102.547384][ T6574] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6573, tgid 6573 (syz.0.35), ts 102507834317, free_ts 101480755545
[ 102.554865][ T6574] post_alloc_hook+0x181/0x1b0
[ 102.556791][ T6574] get_page_from_freelist+0x135c/0x3920
[ 102.559252][ T6574] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.561581][ T6574] alloc_pages_mpol+0x1fb/0x550
[ 102.563482][ T6574] folio_alloc_noprof+0x20/0x2d0
[ 102.565433][ T6574] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.573172][ T6574] page_cache_ra_order+0x4c0/0xd00
[ 102.575170][ T6574] filemap_fault+0x1a5e/0x2740
[ 102.577050][ T6574] __do_fault+0x10a/0x490
[ 102.579052][ T6574] do_pte_missing+0x1a6/0x3fb0
[ 102.580917][ T6574] __handle_mm_fault+0x103d/0x2a40
[ 102.582874][ T6574] handle_mm_fault+0x3fe/0xad0
[ 102.584751][ T6574] do_user_addr_fault+0x60c/0x1370
[ 102.586728][ T6574] exc_page_fault+0x5c/0xc0
[ 102.588606][ T6574] asm_exc_page_fault+0x26/0x30
[ 102.590496][ T6574] page last free pid 6568 tgid 6567 stack trace:
[ 102.592936][ T6574] free_unref_folios+0x999/0x1630
[ 102.594887][ T6574] folios_put_refs+0x56f/0x740
[ 102.596742][ T6574] truncate_inode_pages_range+0x311/0xe30
[ 102.599078][ T6574] blkdev_flush_mapping+0xe9/0x280
[ 102.601111][ T6574] blkdev_put_whole+0xc4/0xf0
[ 102.602981][ T6574] bdev_release+0x47e/0x6d0
[ 102.604758][ T6574] blkdev_release+0x15/0x20
[ 102.606524][ T6574] __fput+0x3ff/0xb70
[ 102.608171][ T6574] task_work_run+0x14d/0x240
[ 102.609954][ T6574] do_exit+0xafb/0x2c30
[ 102.611606][ T6574] do_group_exit+0xd3/0x2a0
[ 102.613385][ T6574] get_signal+0x2673/0x26d0
[ 102.615156][ T6574] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.617418][ T6574] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.619672][ T6574] do_syscall_64+0xda/0x260
[ 102.621510][ T6574] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.623895][ T6574] Modules linked in:
[ 102.625494][ T6574] CPU: 2 UID: 0 PID: 6574 Comm: syz.0.35 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 102.625518][ T6574] Tainted: [B]=BAD_PAGE
[ 102.625524][ T6574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.625534][ T6574] Call Trace:
[ 102.625540][ T6574]
[ 102.625547][ T6574] dump_stack_lvl+0x16c/0x1f0
[ 102.625567][ T6574] bad_page+0xb3/0x1f0
[ 102.625585][ T6574] ? __pfx_bad_page+0x10/0x10
[ 102.625603][ T6574] ? __mem_cgroup_uncharge+0xda/0x130
[ 102.625624][ T6574] free_tail_page_prepare+0x44f/0x5b0
[ 102.625645][ T6574] __free_frozen_pages+0x96a/0xff0
[ 102.625670][ T6574] __folio_put+0x329/0x450
[ 102.625688][ T6574] ? __pfx___folio_put+0x10/0x10
[ 102.625706][ T6574] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.625725][ T6574] ? rcu_is_watching+0x12/0xc0
[ 102.625742][ T6574] ? lock_release+0x201/0x2f0
[ 102.625764][ T6574] filemap_free_folio+0x132/0x170
[ 102.625780][ T6574] delete_from_page_cache_batch+0x741/0x9b0
[ 102.625799][ T6574] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.625817][ T6574] ? __pfx_workingset_update_node+0x10/0x10
[ 102.625833][ T6574] ? xas_move_index+0xb0/0x110
[ 102.625851][ T6574] truncate_inode_pages_range+0x279/0xe30
[ 102.625871][ T6574] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.625902][ T6574] ? __pfx_down_write+0x10/0x10
[ 102.625920][ T6574] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.625941][ T6574] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.625960][ T6574] blkdev_flush_mapping+0xe9/0x280
[ 102.625975][ T6574] ? filemap_check_errors+0xa9/0x160
[ 102.625995][ T6574] blkdev_put_whole+0xc4/0xf0
[ 102.626009][ T6574] bdev_release+0x47e/0x6d0
[ 102.626027][ T6574] ? __pfx_blkdev_release+0x10/0x10
[ 102.626044][ T6574] blkdev_release+0x15/0x20
[ 102.626061][ T6574] __fput+0x3ff/0xb70
[ 102.626079][ T6574] task_work_run+0x14d/0x240
[ 102.626094][ T6574] ? __pfx_task_work_run+0x10/0x10
[ 102.626108][ T6574] ? do_raw_spin_unlock+0x172/0x230
[ 102.626128][ T6574] do_exit+0xafb/0x2c30
[ 102.626147][ T6574] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.626172][ T6574] ? __pfx_do_exit+0x10/0x10
[ 102.626193][ T6574] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.626208][ T6574] ? get_signal+0x8f5/0x26d0
[ 102.626226][ T6574] ? rcu_is_watching+0x12/0xc0
[ 102.626244][ T6574] do_group_exit+0xd3/0x2a0
[ 102.626263][ T6574] get_signal+0x2673/0x26d0
[ 102.626277][ T6574] ? __pfx_get_signal+0x10/0x10
[ 102.626288][ T6574] ? do_futex+0x122/0x350
[ 102.626302][ T6574] ? __pfx_do_futex+0x10/0x10
[ 102.626315][ T6574] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.626334][ T6574] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.626350][ T6574] ? madvise_unlock+0xc6/0x190
[ 102.626361][ T6574] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.626374][ T6574] do_syscall_64+0xda/0x260
[ 102.626386][ T6574] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.626396][ T6574] RIP: 0033:0x7f9fe6f8e969
[ 102.626404][ T6574] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 102.626408][ T6574] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.626418][ T6574] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 102.626424][ T6574] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 102.626430][ T6574] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.626436][ T6574] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 102.626442][ T6574] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 102.626450][ T6574]
[ 102.626465][ T6574] BUG: Bad page state in process syz.0.35 pfn:4fe00
[ 102.743522][ T6574] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4fe00
[ 102.746203][ T6574] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 102.748814][ T6574] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 102.751426][ T6574] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.753881][ T6574] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.756808][ T6574] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.759469][ T6574] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.762022][ T6574] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.764683][ T6574] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.767496][ T6574] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 102.769660][ T6574] page_owner tracks the page as allocated
[ 102.771392][ T6574] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6573, tgid 6573 (syz.0.35), ts 102507834317, free_ts 101480755545
[ 102.778601][ T6574] post_alloc_hook+0x181/0x1b0
[ 102.780074][ T6574] get_page_from_freelist+0x135c/0x3920
[ 102.781758][ T6574] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.783542][ T6574] alloc_pages_mpol+0x1fb/0x550
[ 102.785087][ T6574] folio_alloc_noprof+0x20/0x2d0
[ 102.786769][ T6574] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.789111][ T6574] page_cache_ra_order+0x4c0/0xd00
[ 102.791149][ T6574] filemap_fault+0x1a5e/0x2740
[ 102.793076][ T6574] __do_fault+0x10a/0x490
[ 102.794797][ T6574] do_pte_missing+0x1a6/0x3fb0
[ 102.796716][ T6574] __handle_mm_fault+0x103d/0x2a40
[ 102.798825][ T6574] handle_mm_fault+0x3fe/0xad0
[ 102.800744][ T6574] do_user_addr_fault+0x60c/0x1370
[ 102.802763][ T6574] exc_page_fault+0x5c/0xc0
[ 102.804319][ T6574] asm_exc_page_fault+0x26/0x30
[ 102.805775][ T6574] page last free pid 6568 tgid 6567 stack trace:
[ 102.807666][ T6574] free_unref_folios+0x999/0x1630
[ 102.809153][ T6574] folios_put_refs+0x56f/0x740
[ 102.810566][ T6574] truncate_inode_pages_range+0x311/0xe30
[ 102.812211][ T6574] blkdev_flush_mapping+0xe9/0x280
[ 102.813881][ T6574] blkdev_put_whole+0xc4/0xf0
[ 102.815774][ T6574] bdev_release+0x47e/0x6d0
[ 102.817372][ T6574] blkdev_release+0x15/0x20
[ 102.818709][ T6574] __fput+0x3ff/0xb70
[ 102.819902][ T6574] task_work_run+0x14d/0x240
[ 102.821269][ T6574] do_exit+0xafb/0x2c30
[ 102.822547][ T6574] do_group_exit+0xd3/0x2a0
[ 102.823992][ T6574] get_signal+0x2673/0x26d0
[ 102.825319][ T6574] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.826960][ T6574] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.828699][ T6574] do_syscall_64+0xda/0x260
[ 102.830044][ T6574] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.831810][ T6574] Modules linked in:
[ 102.833006][ T6574] CPU: 2 UID: 0 PID: 6574 Comm: syz.0.35 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 102.833033][ T6574] Tainted: [B]=BAD_PAGE
[ 102.833037][ T6574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.833044][ T6574] Call Trace:
[ 102.833048][ T6574]
[ 102.833051][ T6574] dump_stack_lvl+0x16c/0x1f0
[ 102.833064][ T6574] bad_page+0xb3/0x1f0
[ 102.833075][ T6574] ? __pfx_bad_page+0x10/0x10
[ 102.833085][ T6574] ? page_bad_reason+0x9d/0x1e0
[ 102.833095][ T6574] __free_frozen_pages+0x76e/0xff0
[ 102.833111][ T6574] __folio_put+0x329/0x450
[ 102.833121][ T6574] ? __pfx___folio_put+0x10/0x10
[ 102.833132][ T6574] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.833144][ T6574] ? rcu_is_watching+0x12/0xc0
[ 102.833155][ T6574] ? lock_release+0x201/0x2f0
[ 102.833170][ T6574] filemap_free_folio+0x132/0x170
[ 102.833180][ T6574] delete_from_page_cache_batch+0x741/0x9b0
[ 102.833193][ T6574] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.833205][ T6574] ? __pfx_workingset_update_node+0x10/0x10
[ 102.833215][ T6574] ? xas_move_index+0xb0/0x110
[ 102.833227][ T6574] truncate_inode_pages_range+0x279/0xe30
[ 102.833243][ T6574] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.833265][ T6574] ? __pfx_down_write+0x10/0x10
[ 102.833278][ T6574] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.833294][ T6574] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.833313][ T6574] blkdev_flush_mapping+0xe9/0x280
[ 102.833333][ T6574] ? filemap_check_errors+0xa9/0x160
[ 102.833353][ T6574] blkdev_put_whole+0xc4/0xf0
[ 102.833372][ T6574] bdev_release+0x47e/0x6d0
[ 102.833392][ T6574] ? __pfx_blkdev_release+0x10/0x10
[ 102.833412][ T6574] blkdev_release+0x15/0x20
[ 102.833429][ T6574] __fput+0x3ff/0xb70
[ 102.833447][ T6574] task_work_run+0x14d/0x240
[ 102.833462][ T6574] ? __pfx_task_work_run+0x10/0x10
[ 102.833479][ T6574] ? do_raw_spin_unlock+0x172/0x230
[ 102.833496][ T6574] do_exit+0xafb/0x2c30
[ 102.833519][ T6574] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.833544][ T6574] ? __pfx_do_exit+0x10/0x10
[ 102.833565][ T6574] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.833580][ T6574] ? get_signal+0x8f5/0x26d0
[ 102.833597][ T6574] ? rcu_is_watching+0x12/0xc0
[ 102.833618][ T6574] do_group_exit+0xd3/0x2a0
[ 102.833639][ T6574] get_signal+0x2673/0x26d0
[ 102.833661][ T6574] ? __pfx_get_signal+0x10/0x10
[ 102.833682][ T6574] ? do_futex+0x122/0x350
[ 102.833700][ T6574] ? __pfx_do_futex+0x10/0x10
[ 102.833721][ T6574] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.833742][ T6574] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.833767][ T6574] ? madvise_unlock+0xc6/0x190
[ 102.833787][ T6574] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.833805][ T6574] do_syscall_64+0xda/0x260
[ 102.833820][ T6574] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.833837][ T6574] RIP: 0033:0x7f9fe6f8e969
[ 102.833849][ T6574] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 102.833857][ T6574] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.833873][ T6574] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 102.833886][ T6574] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 102.833895][ T6574] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.833903][ T6574] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 102.833911][ T6574] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 102.833924][ T6574]
[ 102.975697][ T6576] BUG: Bad page state in process syz.0.36 pfn:41401
[ 102.977855][ T6576] page does not match folio
[ 102.979427][ T6576] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x41401
[ 102.983190][ T6576] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.986232][ T6576] raw: 00fff00000000000 ffffea0001050000 00000000ffffffff ffffffffffffffff
[ 102.989795][ T6576] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.993248][ T6576] page dumped because: nonzero pincount
[ 102.994936][ T6576] page_owner tracks the page as allocated
[ 102.996672][ T6576] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6575, tgid 6575 (syz.0.36), ts 102957056222, free_ts 102833977738
[ 103.002805][ T6576] post_alloc_hook+0x181/0x1b0
[ 103.004276][ T6576] get_page_from_freelist+0x135c/0x3920
[ 103.005934][ T6576] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.008124][ T6576] alloc_pages_mpol+0x1fb/0x550
[ 103.009583][ T6576] folio_alloc_noprof+0x20/0x2d0
[ 103.011066][ T6576] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.012898][ T6576] page_cache_ra_order+0x4c0/0xd00
[ 103.014494][ T6576] filemap_fault+0x1a5e/0x2740
[ 103.016175][ T6576] __do_fault+0x10a/0x490
[ 103.017569][ T6576] do_pte_missing+0x1a6/0x3fb0
[ 103.018987][ T6576] __handle_mm_fault+0x103d/0x2a40
[ 103.020516][ T6576] handle_mm_fault+0x3fe/0xad0
[ 103.021992][ T6576] do_user_addr_fault+0x60c/0x1370
[ 103.023562][ T6576] exc_page_fault+0x5c/0xc0
[ 103.025255][ T6576] asm_exc_page_fault+0x26/0x30
[ 103.027080][ T6576] page last free pid 6574 tgid 6573 stack trace:
[ 103.029563][ T6576] free_unref_folios+0x999/0x1630
[ 103.031479][ T6576] folios_put_refs+0x56f/0x740
[ 103.033320][ T6576] truncate_inode_pages_range+0x311/0xe30
[ 103.035587][ T6576] blkdev_flush_mapping+0xe9/0x280
[ 103.037634][ T6576] blkdev_put_whole+0xc4/0xf0
[ 103.039410][ T6576] bdev_release+0x47e/0x6d0
[ 103.040782][ T6576] blkdev_release+0x15/0x20
[ 103.042130][ T6576] __fput+0x3ff/0xb70
[ 103.043333][ T6576] task_work_run+0x14d/0x240
[ 103.044685][ T6576] do_exit+0xafb/0x2c30
[ 103.046047][ T6576] do_group_exit+0xd3/0x2a0
[ 103.047563][ T6576] get_signal+0x2673/0x26d0
[ 103.049278][ T6576] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.051310][ T6576] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.053105][ T6576] do_syscall_64+0xda/0x260
[ 103.054433][ T6576] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.056226][ T6576] Modules linked in:
[ 103.057492][ T6576] CPU: 1 UID: 0 PID: 6576 Comm: syz.0.36 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 103.057518][ T6576] Tainted: [B]=BAD_PAGE
[ 103.057524][ T6576] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.057530][ T6576] Call Trace:
[ 103.057534][ T6576]
[ 103.057538][ T6576] dump_stack_lvl+0x16c/0x1f0
[ 103.057553][ T6576] bad_page+0xb3/0x1f0
[ 103.057564][ T6576] ? __pfx_bad_page+0x10/0x10
[ 103.057574][ T6576] ? __mem_cgroup_uncharge+0xda/0x130
[ 103.057586][ T6576] free_tail_page_prepare+0x44f/0x5b0
[ 103.057600][ T6576] __free_frozen_pages+0x96a/0xff0
[ 103.057615][ T6576] __folio_put+0x329/0x450
[ 103.057626][ T6576] ? __pfx___folio_put+0x10/0x10
[ 103.057637][ T6576] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.057648][ T6576] ? rcu_is_watching+0x12/0xc0
[ 103.057661][ T6576] ? lock_release+0x201/0x2f0
[ 103.057676][ T6576] filemap_free_folio+0x132/0x170
[ 103.057686][ T6576] delete_from_page_cache_batch+0x741/0x9b0
[ 103.057698][ T6576] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.057710][ T6576] ? __pfx_workingset_update_node+0x10/0x10
[ 103.057721][ T6576] ? xas_move_index+0xb0/0x110
[ 103.057733][ T6576] truncate_inode_pages_range+0x279/0xe30
[ 103.057748][ T6576] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.057771][ T6576] ? __pfx_down_write+0x10/0x10
[ 103.057784][ T6576] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.057803][ T6576] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.057823][ T6576] blkdev_flush_mapping+0xe9/0x280
[ 103.057839][ T6576] ? filemap_check_errors+0xa9/0x160
[ 103.057856][ T6576] blkdev_put_whole+0xc4/0xf0
[ 103.057867][ T6576] bdev_release+0x47e/0x6d0
[ 103.057880][ T6576] ? __pfx_blkdev_release+0x10/0x10
[ 103.057893][ T6576] blkdev_release+0x15/0x20
[ 103.057904][ T6576] __fput+0x3ff/0xb70
[ 103.057916][ T6576] task_work_run+0x14d/0x240
[ 103.057927][ T6576] ? __pfx_task_work_run+0x10/0x10
[ 103.057937][ T6576] ? do_raw_spin_unlock+0x172/0x230
[ 103.057948][ T6576] do_exit+0xafb/0x2c30
[ 103.057962][ T6576] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.057979][ T6576] ? __pfx_do_exit+0x10/0x10
[ 103.057993][ T6576] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.058002][ T6576] ? get_signal+0x8f5/0x26d0
[ 103.058014][ T6576] ? rcu_is_watching+0x12/0xc0
[ 103.058025][ T6576] do_group_exit+0xd3/0x2a0
[ 103.058040][ T6576] get_signal+0x2673/0x26d0
[ 103.058053][ T6576] ? __pfx_get_signal+0x10/0x10
[ 103.058065][ T6576] ? do_futex+0x122/0x350
[ 103.058078][ T6576] ? __pfx_do_futex+0x10/0x10
[ 103.058092][ T6576] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.058106][ T6576] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.058122][ T6576] ? madvise_unlock+0xc6/0x190
[ 103.058133][ T6576] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.058145][ T6576] do_syscall_64+0xda/0x260
[ 103.058157][ T6576] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.058167][ T6576] RIP: 0033:0x7f9fe6f8e969
[ 103.058175][ T6576] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 103.058179][ T6576] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.058189][ T6576] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 103.058195][ T6576] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 103.058202][ T6576] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.058207][ T6576] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 103.058213][ T6576] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 103.058222][ T6576]
[ 103.058248][ T6576] BUG: Bad page state in process syz.0.36 pfn:41400
[ 103.174898][ T6576] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x41400
[ 103.178494][ T6576] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 103.181825][ T6576] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 103.185445][ T6576] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.195037][ T6576] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.198636][ T6576] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.201364][ T6576] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.204513][ T6576] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.207959][ T6576] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.211301][ T6576] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 103.214069][ T6576] page_owner tracks the page as allocated
[ 103.216352][ T6576] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6575, tgid 6575 (syz.0.36), ts 102957056222, free_ts 102833977738
[ 103.224121][ T6576] post_alloc_hook+0x181/0x1b0
[ 103.226105][ T6576] get_page_from_freelist+0x135c/0x3920
[ 103.228394][ T6576] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.230792][ T6576] alloc_pages_mpol+0x1fb/0x550
[ 103.232690][ T6576] folio_alloc_noprof+0x20/0x2d0
[ 103.234660][ T6576] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.236897][ T6576] page_cache_ra_order+0x4c0/0xd00
[ 103.238654][ T6576] filemap_fault+0x1a5e/0x2740
[ 103.240048][ T6576] __do_fault+0x10a/0x490
[ 103.241346][ T6576] do_pte_missing+0x1a6/0x3fb0
[ 103.242769][ T6576] __handle_mm_fault+0x103d/0x2a40
[ 103.244326][ T6576] handle_mm_fault+0x3fe/0xad0
[ 103.245760][ T6576] do_user_addr_fault+0x60c/0x1370
[ 103.247856][ T6576] exc_page_fault+0x5c/0xc0
[ 103.249634][ T6576] asm_exc_page_fault+0x26/0x30
[ 103.251518][ T6576] page last free pid 6574 tgid 6573 stack trace:
[ 103.253945][ T6576] free_unref_folios+0x999/0x1630
[ 103.255929][ T6576] folios_put_refs+0x56f/0x740
[ 103.257941][ T6576] truncate_inode_pages_range+0x311/0xe30
[ 103.260196][ T6576] blkdev_flush_mapping+0xe9/0x280
[ 103.261888][ T6576] blkdev_put_whole+0xc4/0xf0
[ 103.263265][ T6576] bdev_release+0x47e/0x6d0
[ 103.264598][ T6576] blkdev_release+0x15/0x20
[ 103.265948][ T6576] __fput+0x3ff/0xb70
[ 103.267170][ T6576] task_work_run+0x14d/0x240
[ 103.268600][ T6576] do_exit+0xafb/0x2c30
[ 103.269834][ T6576] do_group_exit+0xd3/0x2a0
[ 103.271207][ T6576] get_signal+0x2673/0x26d0
[ 103.272554][ T6576] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.274188][ T6576] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.275880][ T6576] do_syscall_64+0xda/0x260
[ 103.277227][ T6576] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.279020][ T6576] Modules linked in:
[ 103.280183][ T6576] CPU: 1 UID: 0 PID: 6576 Comm: syz.0.36 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 103.280200][ T6576] Tainted: [B]=BAD_PAGE
[ 103.280203][ T6576] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.280210][ T6576] Call Trace:
[ 103.280213][ T6576]
[ 103.280217][ T6576] dump_stack_lvl+0x16c/0x1f0
[ 103.280230][ T6576] bad_page+0xb3/0x1f0
[ 103.280241][ T6576] ? __pfx_bad_page+0x10/0x10
[ 103.280251][ T6576] ? page_bad_reason+0x9d/0x1e0
[ 103.280262][ T6576] __free_frozen_pages+0x76e/0xff0
[ 103.280277][ T6576] __folio_put+0x329/0x450
[ 103.280288][ T6576] ? __pfx___folio_put+0x10/0x10
[ 103.280303][ T6576] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.280315][ T6576] ? rcu_is_watching+0x12/0xc0
[ 103.280328][ T6576] ? lock_release+0x201/0x2f0
[ 103.280343][ T6576] filemap_free_folio+0x132/0x170
[ 103.280355][ T6576] delete_from_page_cache_batch+0x741/0x9b0
[ 103.280367][ T6576] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.280379][ T6576] ? __pfx_workingset_update_node+0x10/0x10
[ 103.280390][ T6576] ? xas_move_index+0xb0/0x110
[ 103.280402][ T6576] truncate_inode_pages_range+0x279/0xe30
[ 103.280418][ T6576] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.280440][ T6576] ? __pfx_down_write+0x10/0x10
[ 103.280453][ T6576] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.280469][ T6576] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.280484][ T6576] blkdev_flush_mapping+0xe9/0x280
[ 103.280496][ T6576] ? filemap_check_errors+0xa9/0x160
[ 103.280511][ T6576] blkdev_put_whole+0xc4/0xf0
[ 103.280521][ T6576] bdev_release+0x47e/0x6d0
[ 103.280534][ T6576] ? __pfx_blkdev_release+0x10/0x10
[ 103.280547][ T6576] blkdev_release+0x15/0x20
[ 103.280558][ T6576] __fput+0x3ff/0xb70
[ 103.280570][ T6576] task_work_run+0x14d/0x240
[ 103.280581][ T6576] ? __pfx_task_work_run+0x10/0x10
[ 103.280592][ T6576] ? do_raw_spin_unlock+0x172/0x230
[ 103.280603][ T6576] do_exit+0xafb/0x2c30
[ 103.280617][ T6576] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.280633][ T6576] ? __pfx_do_exit+0x10/0x10
[ 103.280647][ T6576] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.280657][ T6576] ? get_signal+0x8f5/0x26d0
[ 103.280669][ T6576] ? rcu_is_watching+0x12/0xc0
[ 103.280680][ T6576] do_group_exit+0xd3/0x2a0
[ 103.280696][ T6576] get_signal+0x2673/0x26d0
[ 103.280709][ T6576] ? __pfx_get_signal+0x10/0x10
[ 103.280721][ T6576] ? do_futex+0x122/0x350
[ 103.280734][ T6576] ? __pfx_do_futex+0x10/0x10
[ 103.280747][ T6576] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.280762][ T6576] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.280777][ T6576] ? madvise_unlock+0xc6/0x190
[ 103.280789][ T6576] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.280801][ T6576] do_syscall_64+0xda/0x260
[ 103.280813][ T6576] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.280823][ T6576] RIP: 0033:0x7f9fe6f8e969
[ 103.280831][ T6576] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 103.280835][ T6576] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.280845][ T6576] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 103.280851][ T6576] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 103.280857][ T6576] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.280863][ T6576] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 103.280869][ T6576] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 103.280878][ T6576]
[ 103.326715][ T6578] BUG: Bad page state in process syz.0.37 pfn:41801
[ 103.415841][ T6578] page does not match folio
[ 103.417458][ T6578] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x41801
[ 103.421020][ T6578] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.423703][ T6578] raw: 00fff00000000000 ffffea0001060000 00000000ffffffff ffffffffffffffff
[ 103.426777][ T6578] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.429883][ T6578] page dumped because: nonzero pincount
[ 103.431801][ T6578] page_owner tracks the page as allocated
[ 103.433866][ T6578] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6577, tgid 6577 (syz.0.37), ts 103294220375, free_ts 83380043814
[ 103.441544][ T6578] post_alloc_hook+0x181/0x1b0
[ 103.443585][ T6578] get_page_from_freelist+0x135c/0x3920
[ 103.445934][ T6578] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.448491][ T6578] alloc_pages_mpol+0x1fb/0x550
[ 103.450458][ T6578] folio_alloc_noprof+0x20/0x2d0
[ 103.452492][ T6578] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.454729][ T6578] page_cache_ra_order+0x4c0/0xd00
[ 103.456784][ T6578] filemap_fault+0x1a5e/0x2740
[ 103.458741][ T6578] __do_fault+0x10a/0x490
[ 103.460509][ T6578] do_pte_missing+0x1a6/0x3fb0
[ 103.462379][ T6578] __handle_mm_fault+0x103d/0x2a40
[ 103.464444][ T6578] handle_mm_fault+0x3fe/0xad0
[ 103.466359][ T6578] do_user_addr_fault+0x60c/0x1370
[ 103.468522][ T6578] exc_page_fault+0x5c/0xc0
[ 103.470345][ T6578] asm_exc_page_fault+0x26/0x30
[ 103.472215][ T6578] page last free pid 6205 tgid 6205 stack trace:
[ 103.474650][ T6578] free_unref_folios+0x999/0x1630
[ 103.476636][ T6578] folios_put_refs+0x56f/0x740
[ 103.478588][ T6578] free_pages_and_swap_cache+0x245/0x4a0
[ 103.480810][ T6578] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 103.483255][ T6578] tlb_finish_mmu+0x168/0x7b0
[ 103.485123][ T6578] vms_clear_ptes+0x55e/0x770
[ 103.487022][ T6578] vms_complete_munmap_vmas+0x1ca/0x970
[ 103.489322][ T6578] do_vmi_align_munmap+0x43b/0x7d0
[ 103.491361][ T6578] do_vmi_munmap+0x208/0x3e0
[ 103.493198][ T6578] __vm_munmap+0x19a/0x390
[ 103.494938][ T6578] __x64_sys_munmap+0x59/0x80
[ 103.496847][ T6578] do_syscall_64+0xcd/0x260
[ 103.498765][ T6578] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.501101][ T6578] Modules linked in:
[ 103.502678][ T6578] CPU: 2 UID: 0 PID: 6578 Comm: syz.0.37 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 103.502704][ T6578] Tainted: [B]=BAD_PAGE
[ 103.502709][ T6578] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.502720][ T6578] Call Trace:
[ 103.502726][ T6578]
[ 103.502732][ T6578] dump_stack_lvl+0x16c/0x1f0
[ 103.502752][ T6578] bad_page+0xb3/0x1f0
[ 103.502770][ T6578] ? __pfx_bad_page+0x10/0x10
[ 103.502785][ T6578] ? __mem_cgroup_uncharge+0xda/0x130
[ 103.502805][ T6578] free_tail_page_prepare+0x44f/0x5b0
[ 103.502827][ T6578] __free_frozen_pages+0x96a/0xff0
[ 103.502851][ T6578] __folio_put+0x329/0x450
[ 103.502870][ T6578] ? __pfx___folio_put+0x10/0x10
[ 103.502887][ T6578] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.502907][ T6578] ? rcu_is_watching+0x12/0xc0
[ 103.502927][ T6578] ? lock_release+0x201/0x2f0
[ 103.502950][ T6578] filemap_free_folio+0x132/0x170
[ 103.502968][ T6578] delete_from_page_cache_batch+0x741/0x9b0
[ 103.502987][ T6578] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.503007][ T6578] ? __pfx_workingset_update_node+0x10/0x10
[ 103.503025][ T6578] ? xas_move_index+0xb0/0x110
[ 103.503046][ T6578] truncate_inode_pages_range+0x279/0xe30
[ 103.503068][ T6578] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.503124][ T6578] ? __pfx_down_write+0x10/0x10
[ 103.503146][ T6578] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.503170][ T6578] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.503194][ T6578] blkdev_flush_mapping+0xe9/0x280
[ 103.503210][ T6578] ? filemap_check_errors+0xa9/0x160
[ 103.503235][ T6578] blkdev_put_whole+0xc4/0xf0
[ 103.503252][ T6578] bdev_release+0x47e/0x6d0
[ 103.503272][ T6578] ? __pfx_blkdev_release+0x10/0x10
[ 103.503297][ T6578] blkdev_release+0x15/0x20
[ 103.503316][ T6578] __fput+0x3ff/0xb70
[ 103.503336][ T6578] task_work_run+0x14d/0x240
[ 103.503356][ T6578] ? __pfx_task_work_run+0x10/0x10
[ 103.503372][ T6578] ? do_raw_spin_unlock+0x172/0x230
[ 103.503388][ T6578] do_exit+0xafb/0x2c30
[ 103.503409][ T6578] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.503436][ T6578] ? __pfx_do_exit+0x10/0x10
[ 103.503458][ T6578] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.503473][ T6578] ? get_signal+0x8f5/0x26d0
[ 103.503491][ T6578] ? rcu_is_watching+0x12/0xc0
[ 103.503510][ T6578] do_group_exit+0xd3/0x2a0
[ 103.503533][ T6578] get_signal+0x2673/0x26d0
[ 103.503555][ T6578] ? __pfx_get_signal+0x10/0x10
[ 103.503573][ T6578] ? do_futex+0x122/0x350
[ 103.503594][ T6578] ? __pfx_do_futex+0x10/0x10
[ 103.503615][ T6578] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.503637][ T6578] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.503662][ T6578] ? madvise_unlock+0xc6/0x190
[ 103.503679][ T6578] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.503699][ T6578] do_syscall_64+0xda/0x260
[ 103.503719][ T6578] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.503736][ T6578] RIP: 0033:0x7f9fe6f8e969
[ 103.503748][ T6578] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 103.503755][ T6578] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.503771][ T6578] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 103.503781][ T6578] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 103.503791][ T6578] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.503802][ T6578] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 103.503812][ T6578] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 103.503827][ T6578]
[ 103.503856][ T6578] BUG: Bad page state in process syz.0.37 pfn:41800
[ 103.642145][ T6578] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x41800
[ 103.645804][ T6578] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 103.650274][ T6578] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 103.652981][ T6578] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.656119][ T6578] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.659551][ T6578] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.662586][ T6578] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.665577][ T6578] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.668297][ T6578] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.671523][ T6578] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 103.674330][ T6578] page_owner tracks the page as allocated
[ 103.676544][ T6578] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6577, tgid 6577 (syz.0.37), ts 103294220375, free_ts 83380038300
[ 103.683654][ T6578] post_alloc_hook+0x181/0x1b0
[ 103.685567][ T6578] get_page_from_freelist+0x135c/0x3920
[ 103.687697][ T6578] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.689895][ T6578] alloc_pages_mpol+0x1fb/0x550
[ 103.691773][ T6578] folio_alloc_noprof+0x20/0x2d0
[ 103.693436][ T6578] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.695170][ T6578] page_cache_ra_order+0x4c0/0xd00
[ 103.696747][ T6578] filemap_fault+0x1a5e/0x2740
[ 103.698358][ T6578] __do_fault+0x10a/0x490
[ 103.699702][ T6578] do_pte_missing+0x1a6/0x3fb0
[ 103.701185][ T6578] __handle_mm_fault+0x103d/0x2a40
[ 103.702752][ T6578] handle_mm_fault+0x3fe/0xad0
[ 103.704553][ T6578] do_user_addr_fault+0x60c/0x1370
[ 103.706510][ T6578] exc_page_fault+0x5c/0xc0
[ 103.707995][ T6578] asm_exc_page_fault+0x26/0x30
[ 103.709452][ T6578] page last free pid 6205 tgid 6205 stack trace:
[ 103.711309][ T6578] free_unref_folios+0x999/0x1630
[ 103.712822][ T6578] folios_put_refs+0x56f/0x740
[ 103.714304][ T6578] free_pages_and_swap_cache+0x245/0x4a0
[ 103.716014][ T6578] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 103.717884][ T6578] tlb_finish_mmu+0x168/0x7b0
[ 103.719281][ T6578] vms_clear_ptes+0x55e/0x770
[ 103.720689][ T6578] vms_complete_munmap_vmas+0x1ca/0x970
[ 103.722304][ T6578] do_vmi_align_munmap+0x43b/0x7d0
[ 103.723827][ T6578] do_vmi_munmap+0x208/0x3e0
[ 103.725189][ T6578] __vm_munmap+0x19a/0x390
[ 103.726532][ T6578] __x64_sys_munmap+0x59/0x80
[ 103.727996][ T6578] do_syscall_64+0xcd/0x260
[ 103.729343][ T6578] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.731097][ T6578] Modules linked in:
[ 103.732280][ T6578] CPU: 1 UID: 0 PID: 6578 Comm: syz.0.37 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 103.732296][ T6578] Tainted: [B]=BAD_PAGE
[ 103.732300][ T6578] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.732306][ T6578] Call Trace:
[ 103.732310][ T6578]
[ 103.732314][ T6578] dump_stack_lvl+0x16c/0x1f0
[ 103.732326][ T6578] bad_page+0xb3/0x1f0
[ 103.732337][ T6578] ? __pfx_bad_page+0x10/0x10
[ 103.732347][ T6578] ? page_bad_reason+0x9d/0x1e0
[ 103.732358][ T6578] __free_frozen_pages+0x76e/0xff0
[ 103.732373][ T6578] __folio_put+0x329/0x450
[ 103.732384][ T6578] ? __pfx___folio_put+0x10/0x10
[ 103.732395][ T6578] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.732406][ T6578] ? rcu_is_watching+0x12/0xc0
[ 103.732418][ T6578] ? lock_release+0x201/0x2f0
[ 103.732433][ T6578] filemap_free_folio+0x132/0x170
[ 103.732444][ T6578] delete_from_page_cache_batch+0x741/0x9b0
[ 103.732456][ T6578] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.732467][ T6578] ? __pfx_workingset_update_node+0x10/0x10
[ 103.732478][ T6578] ? xas_move_index+0xb0/0x110
[ 103.732491][ T6578] truncate_inode_pages_range+0x279/0xe30
[ 103.732505][ T6578] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.732532][ T6578] ? __pfx_down_write+0x10/0x10
[ 103.732545][ T6578] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.732561][ T6578] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.732576][ T6578] blkdev_flush_mapping+0xe9/0x280
[ 103.732588][ T6578] ? filemap_check_errors+0xa9/0x160
[ 103.732603][ T6578] blkdev_put_whole+0xc4/0xf0
[ 103.732613][ T6578] bdev_release+0x47e/0x6d0
[ 103.732626][ T6578] ? __pfx_blkdev_release+0x10/0x10
[ 103.732638][ T6578] blkdev_release+0x15/0x20
[ 103.732650][ T6578] __fput+0x3ff/0xb70
[ 103.732661][ T6578] task_work_run+0x14d/0x240
[ 103.732673][ T6578] ? __pfx_task_work_run+0x10/0x10
[ 103.732683][ T6578] ? do_raw_spin_unlock+0x172/0x230
[ 103.732694][ T6578] do_exit+0xafb/0x2c30
[ 103.732708][ T6578] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.732724][ T6578] ? __pfx_do_exit+0x10/0x10
[ 103.732738][ T6578] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.732747][ T6578] ? get_signal+0x8f5/0x26d0
[ 103.732759][ T6578] ? rcu_is_watching+0x12/0xc0
[ 103.732770][ T6578] do_group_exit+0xd3/0x2a0
[ 103.732785][ T6578] get_signal+0x2673/0x26d0
[ 103.732799][ T6578] ? __pfx_get_signal+0x10/0x10
[ 103.732810][ T6578] ? do_futex+0x122/0x350
[ 103.732823][ T6578] ? __pfx_do_futex+0x10/0x10
[ 103.732836][ T6578] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.732851][ T6578] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.732867][ T6578] ? madvise_unlock+0xc6/0x190
[ 103.732878][ T6578] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.732890][ T6578] do_syscall_64+0xda/0x260
[ 103.732902][ T6578] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.732912][ T6578] RIP: 0033:0x7f9fe6f8e969
[ 103.732920][ T6578] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 103.732924][ T6578] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.732934][ T6578] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 103.732940][ T6578] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 103.732946][ T6578] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.732952][ T6578] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 103.732958][ T6578] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 103.732966][ T6578]
[ 103.875788][ T6580] BUG: Bad page state in process syz.0.38 pfn:3d601
[ 103.878553][ T6580] page does not match folio
[ 103.880387][ T6580] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3d601
[ 103.884235][ T6580] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.887127][ T6580] raw: 00fff00000000000 ffffea0000f58000 00000000ffffffff ffffffffffffffff
[ 103.890545][ T6580] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.893834][ T6580] page dumped because: nonzero pincount
[ 103.896029][ T6580] page_owner tracks the page as allocated
[ 103.898367][ T6580] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6579, tgid 6579 (syz.0.38), ts 103842699460, free_ts 84867553840
[ 103.906236][ T6580] post_alloc_hook+0x181/0x1b0
[ 103.907823][ T6580] get_page_from_freelist+0x135c/0x3920
[ 103.909550][ T6580] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.911851][ T6580] alloc_pages_mpol+0x1fb/0x550
[ 103.913725][ T6580] folio_alloc_noprof+0x20/0x2d0
[ 103.915675][ T6580] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.918048][ T6580] page_cache_ra_order+0x4c0/0xd00
[ 103.920038][ T6580] filemap_fault+0x1a5e/0x2740
[ 103.921920][ T6580] __do_fault+0x10a/0x490
[ 103.923600][ T6580] do_pte_missing+0x1a6/0x3fb0
[ 103.925452][ T6580] __handle_mm_fault+0x103d/0x2a40
[ 103.927497][ T6580] handle_mm_fault+0x3fe/0xad0
[ 103.929355][ T6580] do_user_addr_fault+0x60c/0x1370
[ 103.931352][ T6580] exc_page_fault+0x5c/0xc0
[ 103.933161][ T6580] asm_exc_page_fault+0x26/0x30
[ 103.935065][ T6580] page last free pid 6205 tgid 6205 stack trace:
[ 103.937719][ T6580] free_unref_folios+0x999/0x1630
[ 103.939812][ T6580] folios_put_refs+0x56f/0x740
[ 103.941772][ T6580] free_pages_and_swap_cache+0x245/0x4a0
[ 103.944005][ T6580] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 103.946374][ T6580] tlb_finish_mmu+0x168/0x7b0
[ 103.948354][ T6580] vms_clear_ptes+0x55e/0x770
[ 103.950186][ T6580] vms_complete_munmap_vmas+0x1ca/0x970
[ 103.952387][ T6580] do_vmi_align_munmap+0x43b/0x7d0
[ 103.954327][ T6580] do_vmi_munmap+0x208/0x3e0
[ 103.956165][ T6580] __vm_munmap+0x19a/0x390
[ 103.958050][ T6580] __x64_sys_munmap+0x59/0x80
[ 103.959939][ T6580] do_syscall_64+0xcd/0x260
[ 103.961707][ T6580] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.964004][ T6580] Modules linked in:
[ 103.965553][ T6580] CPU: 2 UID: 0 PID: 6580 Comm: syz.0.38 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 103.965578][ T6580] Tainted: [B]=BAD_PAGE
[ 103.965583][ T6580] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.965592][ T6580] Call Trace:
[ 103.965597][ T6580]
[ 103.965604][ T6580] dump_stack_lvl+0x16c/0x1f0
[ 103.965623][ T6580] bad_page+0xb3/0x1f0
[ 103.965639][ T6580] ? __pfx_bad_page+0x10/0x10
[ 103.965654][ T6580] ? __mem_cgroup_uncharge+0xda/0x130
[ 103.965673][ T6580] free_tail_page_prepare+0x44f/0x5b0
[ 103.965694][ T6580] __free_frozen_pages+0x96a/0xff0
[ 103.965716][ T6580] __folio_put+0x329/0x450
[ 103.965733][ T6580] ? __pfx___folio_put+0x10/0x10
[ 103.965750][ T6580] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.965766][ T6580] ? rcu_is_watching+0x12/0xc0
[ 103.965785][ T6580] ? lock_release+0x201/0x2f0
[ 103.965808][ T6580] filemap_free_folio+0x132/0x170
[ 103.965823][ T6580] delete_from_page_cache_batch+0x741/0x9b0
[ 103.965843][ T6580] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.965862][ T6580] ? __pfx_workingset_update_node+0x10/0x10
[ 103.965878][ T6580] ? xas_move_index+0xb0/0x110
[ 103.965897][ T6580] truncate_inode_pages_range+0x279/0xe30
[ 103.965918][ T6580] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.965954][ T6580] ? __pfx_down_write+0x10/0x10
[ 103.965973][ T6580] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.965996][ T6580] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.966018][ T6580] blkdev_flush_mapping+0xe9/0x280
[ 103.966035][ T6580] ? filemap_check_errors+0xa9/0x160
[ 103.966057][ T6580] blkdev_put_whole+0xc4/0xf0
[ 103.966074][ T6580] bdev_release+0x47e/0x6d0
[ 103.966091][ T6580] ? __pfx_blkdev_release+0x10/0x10
[ 103.966110][ T6580] blkdev_release+0x15/0x20
[ 103.966129][ T6580] __fput+0x3ff/0xb70
[ 103.966145][ T6580] task_work_run+0x14d/0x240
[ 103.966163][ T6580] ? __pfx_task_work_run+0x10/0x10
[ 103.966179][ T6580] ? do_raw_spin_unlock+0x172/0x230
[ 103.966196][ T6580] do_exit+0xafb/0x2c30
[ 103.966217][ T6580] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.966242][ T6580] ? __pfx_do_exit+0x10/0x10
[ 103.966262][ T6580] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.966276][ T6580] ? get_signal+0x8f5/0x26d0
[ 103.966294][ T6580] ? rcu_is_watching+0x12/0xc0
[ 103.966312][ T6580] do_group_exit+0xd3/0x2a0
[ 103.966333][ T6580] get_signal+0x2673/0x26d0
[ 103.966354][ T6580] ? __pfx_get_signal+0x10/0x10
[ 103.966375][ T6580] ? do_futex+0x122/0x350
[ 103.966394][ T6580] ? __pfx_do_futex+0x10/0x10
[ 103.966413][ T6580] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.966436][ T6580] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.966460][ T6580] ? madvise_unlock+0xc6/0x190
[ 103.966478][ T6580] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.966496][ T6580] do_syscall_64+0xda/0x260
[ 103.966515][ T6580] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.966537][ T6580] RIP: 0033:0x7f9fe6f8e969
[ 103.966549][ T6580] Code: Unable to access opcode bytes at 0x7f9fe6f8e93f.
[ 103.966556][ T6580] RSP: 002b:00007f9fe61fe0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.966572][ T6580] RAX: fffffffffffffe00 RBX: 00007f9fe71b5fa8 RCX: 00007f9fe6f8e969
[ 103.966581][ T6580] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fe71b5fa8
[ 103.966590][ T6580] RBP: 00007f9fe71b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.966601][ T6580] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fe71b5fac
[ 103.966609][ T6580] R13: 0000000000000000 R14: 00007ffdca8b3850 R15: 00007ffdca8b3938
[ 103.966623][ T6580]
[ 103.966648][ T6580] BUG: Bad page state in process syz.0.38 pfn:3d600
[ 104.102463][ T6580] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3d600
[ 104.106035][ T6580] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 104.111065][ T6580] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 104.114625][ T6580] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 104.118079][ T6580] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.121518][ T6580] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 104.124904][ T6580] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.128464][ T6580] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.131928][ T6580] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 104.135381][ T6580] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 104.138381][ T6580] page_owner tracks the page as allocated
[ 104.140704][ T6580] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6579, tgid 6579 (syz.0.38), ts 103842699460, free_ts 84867548448
[ 104.148674][ T6580] post_alloc_hook+0x181/0x1b0
[ 104.150629][ T6580] get_page_from_freelist+0x135c/0x3920
[ 104.152863][ T6580] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 104.155256][ T6580] alloc_pages_mpol+0x1fb/0x550
[ 104.157206][ T6580] folio_alloc_noprof+0x20/0x2d0
[ 104.159389][ T6580] filemap_alloc_folio_noprof+0x3a1/0x470
[ 104.161716][ T6580] page_cache_ra_order+0x4c0/0xd00
[ 104.164229][ T6580] filemap_fault+0x1a5e/0x2740
[ 104.166193][ T6580] __do_fault+0x10a/0x490
[ 104.168127][ T6580] do_pte_missing+0x1a6/0x3fb0
[ 104.170231][ T6580] __handle_mm_fault+0x103d/0x2a40
[ 104.172353][ T6580] handle_mm_fault+0x3fe/0xad0
[ 104.174315][ T6580] do_user_addr_fault+0x60c/0x1370
[ 104.176419][ T6580] exc_page_fault+0x5c/0xc0
[ 104.178358][ T6580] asm_exc_page_fault+0x26/0x30
[ 104.180360][ T6580] page last free pid 6205 tgid 6205 stack trace:
[ 104.182745][ T6580] free_unref_folios+0x999/0x1630
[ 104.184685][ T6580] folios_put_refs+0x56f/0x740
[ 104.186533][ T6580] free_pages_and_swap_cache+0x245/0x4a0
[ 104.188832][ T6580] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 104.191241][ T6580] tlb_finish_mmu+0x168/0x7b0
[ 104.193086][ T6580] vms_clear_ptes+0x55e/0x770
[ 104.194931][ T6580] vms_complete_munmap_vmas+0x1ca/0x970
[ 104.197153][ T6580] do_vmi_align_munmap+0x43b/0x7d0
[ 104.199360][ T6580] do_vmi_munmap+0x208/0x3e0
[ 104.201263][ T6580] __vm_munmap+0x19a/0x390
[ 104.203067][ T6580] __x64_sys_munmap+0x59/0x80
[ 104.205005][ T6580] do_syscall_64+0xcd/0x260
[ 104.206823][ T6580] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.209293][ T6580] Modules linked in:
[ 104.210906][ T6580] CPU: 0 UID: 0 PID: 6580 Comm: syz.0.38 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 104.210933][ T6580] Tainted: [B]=BAD_PAGE
[ 104.210939][ T6580] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 104.210950][ T6580] Call Trace:
[ 104.210956][ T6580]
[ 104.210962][ T6580] dump_stack_lvl+0x16c/0x1f0
[ 104.210981][ T6580] bad_page+0xb3/0x1f0
[ 104.210998][ T6580] ? __pfx_bad_page+0x10/0x10
[ 104.211015][ T6580] ? page_bad_reason+0x9d/0x1e0
[ 104.211032][ T6580] __free_frozen_pages+0x76e/0xff0
[ 104.211055][ T6580] __folio_put+0x329/0x450
[ 104.211094][ T6580] ? __pfx___folio_put+0x10/0x10
[ 104.211115][ T6580] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 104.211135][ T6580] ? rcu_is_watching+0x12/0xc0
[ 104.211155][ T6580] ? lock_release+0x201/0x2f0
[ 104.211179][ T6580] filemap_free_folio+0x132/0x170
[ 104.211197][ T6580] delete_from_page_cache_batch+0x741/0x9b0
[ 104.211217][ T6580] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 104.211236][ T6580] ? __pfx_workingset_update_node+0x10/0x10
[ 104.211253][ T6580] ? xas_move_index+0xb0/0x110
[ 104.211275][ T6580] truncate_inode_pages_range+0x279/0xe30
[ 104.211300][ T6580] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 104.211347][ T6580] ? __pfx_down_write+0x10/0x10
[ 104.211369][ T6580] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 104.211394][ T6580] ? __pfx_has_bh_in_lru+0x10/0x10
[ 104.211417][ T6580] blkdev_flush_mapping+0xe9/0x280
[ 104.211436][ T6580] ? filemap_check_errors+0xa9/0x160
[ 104.211461][ T6580] blkdev_put_whole+0xc4/0xf0
[ 104.211480][ T6580] bdev_release+0x47e/0x6d0
[ 104.211501][ T6580] ? __pfx_blkdev_release+0x10/0x10
[ 104.211520][ T6580] blkdev_release+0x15/0x20
[ 104.211538][ T6580] __fput+0x3ff/0xb70
[ 104.211557][ T6580] task_work_run+0x14d/0x240
[ 104.211575][ T6580] ? __pfx_task_work_run+0x10/0x10
[ 104.211591][ T6580] ? do_raw_spin_unlock+0x172/0x230
[ 104.211610][ T6580] do_exit+0xafb/0x2c30
[ 104.211633][ T6580] ? __pfx_futex_wake_mark+0x10/0x10
[ 104.211660][ T6580] ? __pfx_do_exit+0x10/0x10
[ 104.211682][ T6580] ? do_raw_spin_lock+0x12c/0x2b0
[ 104.211698][ T6580] ? get_signal+0x8f5/0x26d0
[ 104.211717][ T6580] ? rcu_is_watching+0x12/0xc0
[ 104.211736][ T6580] do_group_exit+0xd3/0x2a0
[ 104.211760][ T6580] get_signal+0x2673/0x26d0
[ 104.211782][ T6580] ? __pfx_get_signal+0x10/0x10
[ 104.211802][ T6580] ? do_futex+0x122/0x350
[ 104.211824][ T6580] ? __pfx_do_futex+0x10/0x10