Warning: Permanently added '[localhost]:63542' (ED25519) to the list of known hosts.
2025/08/02 21:07:31 ignoring optional flag "sandboxArg"="0"
2025/08/02 21:07:33 parsed 1 programs
[ 135.487609][ T5645] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 137.995602][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[ 137.998521][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[ 141.135751][ T5679] chnl_net:caif_netlink_parms(): no params data found
[ 141.198111][ T5679] bridge0: port 1(bridge_slave_0) entered blocking state
[ 141.201429][ T5679] bridge0: port 1(bridge_slave_0) entered disabled state
[ 141.205821][ T5679] bridge_slave_0: entered allmulticast mode
[ 141.209793][ T5679] bridge_slave_0: entered promiscuous mode
[ 141.215542][ T5679] bridge0: port 2(bridge_slave_1) entered blocking state
[ 141.218713][ T5679] bridge0: port 2(bridge_slave_1) entered disabled state
[ 141.221859][ T5679] bridge_slave_1: entered allmulticast mode
[ 141.226275][ T5679] bridge_slave_1: entered promiscuous mode
[ 141.249514][ T5679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 141.257072][ T5679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 141.278804][ T5679] team0: Port device team_slave_0 added
[ 141.284515][ T5679] team0: Port device team_slave_1 added
[ 141.303762][ T5679] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 141.306848][ T5679] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 141.318517][ T5679] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 141.325498][ T5679] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 141.328387][ T5679] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 141.340506][ T5679] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 141.376118][ T5679] hsr_slave_0: entered promiscuous mode
[ 141.379443][ T5679] hsr_slave_1: entered promiscuous mode
[ 142.066429][ T5679] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 142.082304][ T5679] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 142.098503][ T5679] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 142.117995][ T5679] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 142.285815][ T5679] 8021q: adding VLAN 0 to HW filter on device bond0
[ 142.311879][ T5679] 8021q: adding VLAN 0 to HW filter on device team0
[ 142.329486][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 142.332828][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 142.352097][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 142.355886][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 142.696423][ T5679] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 142.757232][ T5679] veth0_vlan: entered promiscuous mode
[ 142.781007][ T5679] veth1_vlan: entered promiscuous mode
[ 142.836465][ T5679] veth0_macvtap: entered promiscuous mode
[ 142.842084][ T5679] veth1_macvtap: entered promiscuous mode
[ 142.889807][ T5679] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 142.912054][ T5679] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 142.936367][ T1042] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 142.970171][ T1042] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 143.002978][ T1042] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 143.023774][ T1042] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 143.136630][ T38] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 143.215685][ T38] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 143.309710][ T38] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 144.208510][ T38] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 145.196485][ T5437] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 145.201471][ T5437] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 145.205686][ T5437] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 145.209920][ T5437] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 145.215378][ T5437] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 145.817704][ T38] bridge_slave_1: left allmulticast mode
[ 145.820276][ T38] bridge_slave_1: left promiscuous mode
[ 145.823008][ T38] bridge0: port 2(bridge_slave_1) entered disabled state
[ 145.846369][ T38] bridge_slave_0: left allmulticast mode
[ 145.848995][ T38] bridge_slave_0: left promiscuous mode
[ 145.852086][ T38] bridge0: port 1(bridge_slave_0) entered disabled state
[ 146.374141][ T38] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 146.385970][ T38] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 146.398363][ T38] bond0 (unregistering): Released all slaves
[ 146.429827][ T1042] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 146.453717][ T1042] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 146.535216][ T38] hsr_slave_0: left promiscuous mode
[ 146.538766][ T38] hsr_slave_1: left promiscuous mode
[ 146.544155][ T38] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 146.547426][ T38] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 146.564559][ T38] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 146.568267][ T38] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 146.590143][ T38] veth1_macvtap: left promiscuous mode
[ 146.592769][ T38] veth0_macvtap: left promiscuous mode
[ 146.604034][ T38] veth1_vlan: left promiscuous mode
[ 146.606522][ T38] veth0_vlan: left promiscuous mode
[ 146.999751][ T38] team0 (unregistering): Port device team_slave_1 removed
[ 147.021720][ T38] team0 (unregistering): Port device team_slave_0 removed
[ 147.314841][ T1042] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 147.324049][ T1042] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/08/02 21:07:50 executed programs: 0
[ 148.590627][ T4704] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 148.598155][ T4704] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 148.603437][ T4704] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 148.612188][ T4704] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 148.616326][ T4704] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 149.267423][ T5810] chnl_net:caif_netlink_parms(): no params data found
[ 149.446091][ T5810] bridge0: port 1(bridge_slave_0) entered blocking state
[ 149.449667][ T5810] bridge0: port 1(bridge_slave_0) entered disabled state
[ 149.453059][ T5810] bridge_slave_0: entered allmulticast mode
[ 149.475195][ T5810] bridge_slave_0: entered promiscuous mode
[ 149.480123][ T5810] bridge0: port 2(bridge_slave_1) entered blocking state
[ 149.496736][ T5810] bridge0: port 2(bridge_slave_1) entered disabled state
[ 149.500727][ T5810] bridge_slave_1: entered allmulticast mode
[ 149.514545][ T5810] bridge_slave_1: entered promiscuous mode
[ 149.565625][ T5810] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 149.571993][ T5810] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 149.624521][ T5810] team0: Port device team_slave_0 added
[ 149.645310][ T5810] team0: Port device team_slave_1 added
[ 149.686197][ T5810] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 149.689206][ T5810] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 149.723434][ T5810] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 149.732764][ T5810] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 149.744436][ T5810] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 149.771879][ T5810] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 149.845825][ T5810] hsr_slave_0: entered promiscuous mode
[ 149.855302][ T5810] hsr_slave_1: entered promiscuous mode
[ 150.382060][ T5810] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 150.407266][ T5810] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 150.426399][ T5810] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 150.445441][ T5810] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 150.615055][ T5810] 8021q: adding VLAN 0 to HW filter on device bond0
[ 150.634153][ T4704] Bluetooth: hci0: command tx timeout
[ 150.656887][ T5810] 8021q: adding VLAN 0 to HW filter on device team0
[ 150.682178][ T1042] bridge0: port 1(bridge_slave_0) entered blocking state
[ 150.685400][ T1042] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 150.695766][ T1042] bridge0: port 2(bridge_slave_1) entered blocking state
[ 150.699194][ T1042] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 150.770042][ T5810] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 150.783375][ T5810] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 151.089712][ T5810] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 151.175518][ T5810] veth0_vlan: entered promiscuous mode
[ 151.197093][ T5810] veth1_vlan: entered promiscuous mode
[ 151.246029][ T5810] veth0_macvtap: entered promiscuous mode
[ 151.268032][ T5810] veth1_macvtap: entered promiscuous mode
[ 151.296274][ T5810] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 151.318319][ T5810] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 151.345009][ T1041] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 151.356876][ T1041] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 151.361413][ T1041] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 151.384082][ T1041] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 151.493119][ T38] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 151.513978][ T38] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 151.575786][ T38] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 151.579165][ T38] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 152.117980][ T5872] loop0: detected capacity change from 0 to 32768
[ 152.139339][ T5872] XFS: ikeep mount option is deprecated.
[ 152.183972][ T5872] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 152.292657][ T5872] XFS (loop0): Ending clean mount
[ 152.307163][ T5872] XFS (loop0): Quotacheck needed: Please wait.
[ 152.370807][ T5872] XFS (loop0): Quotacheck: Done.
[ 152.492854][ T5810] BUG: Bad page state in process syz-executor pfn:40a01
[ 152.503913][ T5810] page does not match folio
[ 152.506334][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x40a01
[ 152.511893][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 152.534949][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 152.539475][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 152.564087][ T5810] page dumped because: nonzero pincount
[ 152.566707][ T5810] page_owner tracks the page as allocated
[ 152.570185][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5872, tgid 5871 (syz.0.16), ts 152389719033, free_ts 145894520448
[ 152.603305][ T5810] post_alloc_hook+0x240/0x2a0
[ 152.606060][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 152.608918][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 152.611717][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 152.625152][ T5810] alloc_pages_noprof+0xa9/0x190
[ 152.627655][ T5810] folio_alloc_noprof+0x1e/0x30
[ 152.630156][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 152.632865][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 152.654016][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 152.656467][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 152.659035][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 152.661559][ T5810] vfs_write+0x54b/0xa90
[ 152.674477][ T5810] ksys_write+0x145/0x250
[ 152.676436][ T5810] do_syscall_64+0xfa/0x3b0
[ 152.683573][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 152.686307][ T5810] page last free pid 30 tgid 30 stack trace:
[ 152.689117][ T5810] free_unref_folios+0xdbd/0x1520
[ 152.691538][ T5810] folios_put_refs+0x559/0x640
[ 152.715700][ T4704] Bluetooth: hci0: command tx timeout
[ 152.718431][ T5810] folio_batch_move_lru+0x319/0x3a0
[ 152.720733][ T5810] __folio_batch_add_and_move+0x5ad/0xd20
[ 152.734202][ T5810] migrate_pages_batch+0x1f2c/0x3620
[ 152.736678][ T5810] migrate_pages+0x1bcc/0x2930
[ 152.738652][ T5810] compact_zone+0x23e1/0x4ab0
[ 152.740582][ T5810] compact_node+0x1d2/0x280
[ 152.742480][ T5810] kcompactd+0xbc8/0x1290
[ 152.754214][ T5810] kthread+0x711/0x8a0
[ 152.756158][ T5810] ret_from_fork+0x3f9/0x770
[ 152.758208][ T5810] ret_from_fork_asm+0x1a/0x30
[ 152.770758][ T5810] Modules linked in:
[ 152.772570][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 152.772587][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 152.772594][ T5810] Call Trace:
[ 152.772599][ T5810]
[ 152.772604][ T5810] dump_stack_lvl+0x189/0x250
[ 152.772624][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 152.772636][ T5810] ? __pfx_print_modules+0x10/0x10
[ 152.772651][ T5810] ? percpu_ref_put+0x19/0x180
[ 152.772663][ T5810] ? percpu_ref_put+0x19/0x180
[ 152.772675][ T5810] ? percpu_ref_put+0xf9/0x180
[ 152.772688][ T5810] bad_page+0x180/0x1c0
[ 152.772700][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 152.772714][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 152.772730][ T5810] __folio_put+0x21b/0x2c0
[ 152.772746][ T5810] ? __pfx___folio_put+0x10/0x10
[ 152.772766][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 152.772785][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 152.772797][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 152.772815][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 152.772827][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 152.772844][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 152.772854][ T5810] ? lockdep_unlock+0x89/0x120
[ 152.772884][ T5810] ? __lock_acquire+0xab9/0xd20
[ 152.772912][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 152.772930][ T5810] ? _raw_spin_unlock_irq+0x23/0x50
[ 152.772942][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 152.772953][ T5810] ? lockdep_hardirqs_on+0x9c/0x150
[ 152.772970][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 152.772980][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 152.772992][ T5810] evict+0x501/0x9c0
[ 152.773008][ T5810] ? __pfx_evict+0x10/0x10
[ 152.773024][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 152.773063][ T5810] evict_inodes+0x64c/0x6d0
[ 152.773081][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 152.773091][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 152.773109][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 152.773122][ T5810] kill_block_super+0x44/0x90
[ 152.773134][ T5810] xfs_kill_sb+0x15/0x50
[ 152.773145][ T5810] deactivate_locked_super+0xbc/0x130
[ 152.773161][ T5810] cleanup_mnt+0x425/0x4c0
[ 152.773194][ T5810] ? lockdep_hardirqs_on+0x9c/0x150
[ 152.773210][ T5810] task_work_run+0x1d1/0x260
[ 152.773227][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 152.773238][ T5810] ? __x64_sys_umount+0x122/0x160
[ 152.773253][ T5810] ? exit_to_user_mode_loop+0x40/0x110
[ 152.773269][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 152.773282][ T5810] do_syscall_64+0x2bd/0x3b0
[ 152.773297][ T5810] ? lockdep_hardirqs_on+0x9c/0x150
[ 152.773310][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 152.773321][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 152.773333][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 152.773342][ T5810] RIP: 0033:0x7ff3f858fc57
[ 152.773353][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 152.773362][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 152.773374][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 152.773381][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 152.773386][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 152.773392][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 152.773397][ T5810] R13: 00007ff3f861089d R14: 00000000000252d5 R15: 00007ffc70daa790
[ 152.773414][ T5810]
[ 153.044440][ T5810] Disabling lock debugging due to kernel taint
[ 153.047291][ T5810] BUG: Bad page state in process syz-executor pfn:40a00
[ 153.050817][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x40a00
[ 153.075063][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 153.078856][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 153.082922][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 153.108681][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 153.112607][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 153.128916][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 153.132982][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 153.139798][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 153.144452][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 153.148089][ T5810] page_owner tracks the page as allocated
[ 153.150545][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5872, tgid 5871 (syz.0.16), ts 152389719033, free_ts 145991042822
[ 153.161627][ T5810] post_alloc_hook+0x240/0x2a0
[ 153.164176][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 153.166594][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 153.169185][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 153.171497][ T5810] alloc_pages_noprof+0xa9/0x190
[ 153.174837][ T5810] folio_alloc_noprof+0x1e/0x30
[ 153.177347][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 153.180110][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 153.182429][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 153.185616][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 153.188112][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 153.191109][ T5810] vfs_write+0x54b/0xa90
[ 153.193081][ T5810] ksys_write+0x145/0x250
[ 153.196362][ T5810] do_syscall_64+0xfa/0x3b0
[ 153.198470][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.201128][ T5810] page last free pid 5783 tgid 5783 stack trace:
[ 153.204653][ T5810] free_unref_folios+0xdbd/0x1520
[ 153.207297][ T5810] folios_put_refs+0x559/0x640
[ 153.209499][ T5810] free_pages_and_swap_cache+0x4be/0x520
[ 153.212023][ T5810] tlb_flush_mmu+0x3a0/0x680
[ 153.214917][ T5810] tlb_finish_mmu+0xc3/0x1d0
[ 153.217016][ T5810] exit_mmap+0x44c/0xb50
[ 153.218925][ T5810] __mmput+0x118/0x430
[ 153.220813][ T5810] exit_mm+0x1da/0x2c0
[ 153.222581][ T5810] do_exit+0x648/0x2300
[ 153.224939][ T5810] do_group_exit+0x21c/0x2d0
[ 153.227148][ T5810] __x64_sys_exit_group+0x3f/0x40
[ 153.229340][ T5810] x64_sys_call+0x21f7/0x2200
[ 153.231479][ T5810] do_syscall_64+0xfa/0x3b0
[ 153.234174][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.236802][ T5810] Modules linked in:
[ 153.238545][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 153.238557][ T5810] Tainted: [B]=BAD_PAGE
[ 153.238559][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 153.238564][ T5810] Call Trace:
[ 153.238568][ T5810]
[ 153.238572][ T5810] dump_stack_lvl+0x189/0x250
[ 153.238583][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 153.238590][ T5810] ? __pfx_print_modules+0x10/0x10
[ 153.238600][ T5810] bad_page+0x180/0x1c0
[ 153.238607][ T5810] __free_frozen_pages+0xce2/0xd30
[ 153.238621][ T5810] __folio_put+0x21b/0x2c0
[ 153.238634][ T5810] ? __pfx___folio_put+0x10/0x10
[ 153.238647][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 153.238661][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 153.238673][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 153.238688][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 153.238698][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 153.238710][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 153.238719][ T5810] ? lockdep_unlock+0x89/0x120
[ 153.238735][ T5810] ? __lock_acquire+0xab9/0xd20
[ 153.238752][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.238767][ T5810] ? _raw_spin_unlock_irq+0x23/0x50
[ 153.238780][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.238790][ T5810] ? lockdep_hardirqs_on+0x9c/0x150
[ 153.238800][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.238807][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 153.238815][ T5810] evict+0x501/0x9c0
[ 153.238822][ T5810] ? __pfx_evict+0x10/0x10
[ 153.238828][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 153.238836][ T5810] evict_inodes+0x64c/0x6d0
[ 153.238844][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 153.238850][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 153.238858][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 153.238865][ T5810] kill_block_super+0x44/0x90
[ 153.238872][ T5810] xfs_kill_sb+0x15/0x50
[ 153.238879][ T5810] deactivate_locked_super+0xbc/0x130
[ 153.238888][ T5810] cleanup_mnt+0x425/0x4c0
[ 153.238900][ T5810] ? lockdep_hardirqs_on+0x9c/0x150
[ 153.238913][ T5810] task_work_run+0x1d1/0x260
[ 153.238925][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 153.238936][ T5810] ? __x64_sys_umount+0x122/0x160
[ 153.238946][ T5810] ? exit_to_user_mode_loop+0x40/0x110
[ 153.238961][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 153.238973][ T5810] do_syscall_64+0x2bd/0x3b0
[ 153.238982][ T5810] ? lockdep_hardirqs_on+0x9c/0x150
[ 153.238995][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.239004][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 153.239015][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.239024][ T5810] RIP: 0033:0x7ff3f858fc57
[ 153.239037][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 153.239045][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 153.239056][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 153.239063][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 153.239069][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 153.239074][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 153.239081][ T5810] R13: 00007ff3f861089d R14: 00000000000252d5 R15: 00007ffc70daa790
[ 153.239091][ T5810]
[ 153.239669][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 153.685254][ T5902] loop0: detected capacity change from 0 to 32768
[ 153.691971][ T5902] XFS: ikeep mount option is deprecated.
[ 153.703881][ T5902] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 153.735309][ T5902] XFS (loop0): Ending clean mount
[ 153.742352][ T5902] XFS (loop0): Quotacheck needed: Please wait.
[ 153.750668][ T5902] XFS (loop0): Quotacheck: Done.
[ 153.793899][ T5810] BUG: Bad page state in process syz-executor pfn:40401
[ 153.797719][ T5810] page does not match folio
[ 153.800254][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x40401
[ 153.806371][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 153.809719][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 153.815223][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 153.819563][ T5810] page dumped because: nonzero pincount
[ 153.822238][ T5810] page_owner tracks the page as allocated
[ 153.825288][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5902, tgid 5901 (syz.0.17), ts 153774001435, free_ts 153239376034
2025/08/02 21:07:56 executed programs: 4
[ 153.842851][ T5810] post_alloc_hook+0x240/0x2a0
[ 153.845279][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 153.847712][ T5810] __alloc_pages_slowpath+0x2fe/0xce0
[ 153.850046][ T5810] __alloc_frozen_pages_noprof+0x319/0x370
[ 153.852675][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 153.855878][ T5810] alloc_pages_noprof+0xa9/0x190
[ 153.858230][ T5810] folio_alloc_noprof+0x1e/0x30
[ 153.860446][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 153.862980][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 153.865711][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 153.867927][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 153.870500][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 153.872942][ T5810] vfs_write+0x54b/0xa90
[ 153.875825][ T5810] ksys_write+0x145/0x250
[ 153.877721][ T5810] do_syscall_64+0xfa/0x3b0
[ 153.879715][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.882312][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 153.885507][ T5810] free_unref_folios+0xdbd/0x1520
[ 153.887696][ T5810] folios_put_refs+0x559/0x640
[ 153.889785][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 153.892397][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 153.895201][ T5810] evict+0x501/0x9c0
[ 153.896964][ T5810] evict_inodes+0x64c/0x6d0
[ 153.899011][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 153.901383][ T5810] kill_block_super+0x44/0x90
[ 153.904022][ T5810] xfs_kill_sb+0x15/0x50
[ 153.906561][ T5810] deactivate_locked_super+0xbc/0x130
[ 153.909069][ T5810] cleanup_mnt+0x425/0x4c0
[ 153.911398][ T5810] task_work_run+0x1d1/0x260
[ 153.914359][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 153.916700][ T5810] do_syscall_64+0x2bd/0x3b0
[ 153.918737][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.921344][ T5810] Modules linked in:
[ 153.923004][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 153.923022][ T5810] Tainted: [B]=BAD_PAGE
[ 153.923025][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 153.923031][ T5810] Call Trace:
[ 153.923038][ T5810]
[ 153.923043][ T5810] dump_stack_lvl+0x189/0x250
[ 153.923059][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 153.923069][ T5810] ? __pfx_print_modules+0x10/0x10
[ 153.923083][ T5810] ? percpu_ref_put+0x19/0x180
[ 153.923094][ T5810] ? percpu_ref_put+0xf9/0x180
[ 153.923106][ T5810] bad_page+0x180/0x1c0
[ 153.923115][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 153.923128][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 153.923142][ T5810] __folio_put+0x21b/0x2c0
[ 153.923155][ T5810] ? __pfx___folio_put+0x10/0x10
[ 153.923164][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 153.923195][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 153.923205][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 153.923219][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 153.923229][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 153.923241][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 153.923254][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 153.923269][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 153.923284][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.923296][ T5810] ? rcu_is_watching+0x15/0xb0
[ 153.923305][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.923316][ T5810] ? rcu_is_watching+0x15/0xb0
[ 153.923324][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.923334][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 153.923346][ T5810] evict+0x501/0x9c0
[ 153.923357][ T5810] ? __pfx_evict+0x10/0x10
[ 153.923365][ T5810] ? rcu_is_watching+0x15/0xb0
[ 153.923374][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 153.923387][ T5810] evict_inodes+0x64c/0x6d0
[ 153.923399][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 153.923411][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 153.923423][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 153.923433][ T5810] kill_block_super+0x44/0x90
[ 153.923444][ T5810] xfs_kill_sb+0x15/0x50
[ 153.923454][ T5810] deactivate_locked_super+0xbc/0x130
[ 153.923470][ T5810] cleanup_mnt+0x425/0x4c0
[ 153.923485][ T5810] task_work_run+0x1d1/0x260
[ 153.923498][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 153.923509][ T5810] ? __x64_sys_umount+0x122/0x160
[ 153.923519][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 153.923528][ T5810] ? rcu_is_watching+0x15/0xb0
[ 153.923537][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 153.923558][ T5810] do_syscall_64+0x2bd/0x3b0
[ 153.923569][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.923579][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 153.923588][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.923598][ T5810] RIP: 0033:0x7ff3f858fc57
[ 153.923609][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 153.923616][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 153.923627][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 153.923634][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 153.923640][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 153.923647][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 153.923652][ T5810] R13: 00007ff3f861089d R14: 00000000000257ef R15: 00007ffc70daa790
[ 153.923661][ T5810]
[ 154.083898][ T5810] BUG: Bad page state in process syz-executor pfn:40400
[ 154.086901][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x40400
[ 154.090722][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 154.095223][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 154.100227][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 154.105072][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 154.108846][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 154.114582][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 154.118145][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 154.121562][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 154.125507][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 154.128513][ T5810] page_owner tracks the page as allocated
[ 154.130790][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5902, tgid 5901 (syz.0.17), ts 153774001435, free_ts 153239376034
[ 154.141476][ T5810] post_alloc_hook+0x240/0x2a0
[ 154.143957][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 154.146447][ T5810] __alloc_pages_slowpath+0x2fe/0xce0
[ 154.148792][ T5810] __alloc_frozen_pages_noprof+0x319/0x370
[ 154.151458][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 154.154353][ T5810] alloc_pages_noprof+0xa9/0x190
[ 154.156515][ T5810] folio_alloc_noprof+0x1e/0x30
[ 154.158544][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 154.161069][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 154.163742][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 154.165953][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 154.168393][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 154.170782][ T5810] vfs_write+0x54b/0xa90
[ 154.172596][ T5810] ksys_write+0x145/0x250
[ 154.175173][ T5810] do_syscall_64+0xfa/0x3b0
[ 154.177213][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.179788][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 154.182498][ T5810] free_unref_folios+0xdbd/0x1520
[ 154.185786][ T5810] folios_put_refs+0x559/0x640
[ 154.187862][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 154.190350][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 154.192555][ T5810] evict+0x501/0x9c0
[ 154.195036][ T5810] evict_inodes+0x64c/0x6d0
[ 154.196952][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 154.199328][ T5810] kill_block_super+0x44/0x90
[ 154.201620][ T5810] xfs_kill_sb+0x15/0x50
[ 154.204030][ T5810] deactivate_locked_super+0xbc/0x130
[ 154.206565][ T5810] cleanup_mnt+0x425/0x4c0
[ 154.208506][ T5810] task_work_run+0x1d1/0x260
[ 154.210532][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 154.214074][ T5810] do_syscall_64+0x2bd/0x3b0
[ 154.215921][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.218419][ T5810] Modules linked in:
[ 154.220155][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 154.220171][ T5810] Tainted: [B]=BAD_PAGE
[ 154.220175][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 154.220181][ T5810] Call Trace:
[ 154.220189][ T5810]
[ 154.220195][ T5810] dump_stack_lvl+0x189/0x250
[ 154.220210][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 154.220221][ T5810] ? __pfx_print_modules+0x10/0x10
[ 154.220238][ T5810] bad_page+0x180/0x1c0
[ 154.220247][ T5810] __free_frozen_pages+0xce2/0xd30
[ 154.220263][ T5810] __folio_put+0x21b/0x2c0
[ 154.220276][ T5810] ? __pfx___folio_put+0x10/0x10
[ 154.220289][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 154.220310][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 154.220321][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 154.220336][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 154.220347][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 154.220358][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 154.220370][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 154.220384][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 154.220400][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.220412][ T5810] ? rcu_is_watching+0x15/0xb0
[ 154.220422][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.220433][ T5810] ? rcu_is_watching+0x15/0xb0
[ 154.220443][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.220454][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 154.220465][ T5810] evict+0x501/0x9c0
[ 154.220477][ T5810] ? __pfx_evict+0x10/0x10
[ 154.220486][ T5810] ? rcu_is_watching+0x15/0xb0
[ 154.220495][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 154.220508][ T5810] evict_inodes+0x64c/0x6d0
[ 154.220520][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 154.220530][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 154.220543][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 154.220554][ T5810] kill_block_super+0x44/0x90
[ 154.220565][ T5810] xfs_kill_sb+0x15/0x50
[ 154.220575][ T5810] deactivate_locked_super+0xbc/0x130
[ 154.220590][ T5810] cleanup_mnt+0x425/0x4c0
[ 154.220602][ T5810] task_work_run+0x1d1/0x260
[ 154.220615][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 154.220625][ T5810] ? __x64_sys_umount+0x122/0x160
[ 154.220634][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 154.220644][ T5810] ? rcu_is_watching+0x15/0xb0
[ 154.220654][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 154.220667][ T5810] do_syscall_64+0x2bd/0x3b0
[ 154.220678][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.220688][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 154.220698][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.220706][ T5810] RIP: 0033:0x7ff3f858fc57
[ 154.220717][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 154.220725][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 154.220736][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 154.220742][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 154.220748][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 154.220755][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 154.220763][ T5810] R13: 00007ff3f861089d R14: 00000000000257ef R15: 00007ffc70daa790
[ 154.220774][ T5810]
[ 154.221167][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 154.573855][ T5912] loop0: detected capacity change from 0 to 32768
[ 154.586934][ T5912] XFS: ikeep mount option is deprecated.
[ 154.621249][ T5912] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 154.637119][ T5912] XFS (loop0): Ending clean mount
[ 154.640070][ T5912] XFS (loop0): Quotacheck needed: Please wait.
[ 154.649010][ T5912] XFS (loop0): Quotacheck: Done.
[ 154.686174][ T5810] BUG: Bad page state in process syz-executor pfn:40601
[ 154.689294][ T5810] page does not match folio
[ 154.691277][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x40601
[ 154.713756][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 154.717052][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 154.720826][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 154.729575][ T5810] page dumped because: nonzero pincount
[ 154.732086][ T5810] page_owner tracks the page as allocated
[ 154.739860][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5912, tgid 5911 (syz.0.18), ts 154661825299, free_ts 154636023410
[ 154.750310][ T5810] post_alloc_hook+0x240/0x2a0
[ 154.752698][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 154.756015][ T5810] __alloc_pages_slowpath+0x2fe/0xce0
[ 154.758556][ T5810] __alloc_frozen_pages_noprof+0x319/0x370
[ 154.761246][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 154.763874][ T5810] alloc_pages_noprof+0xa9/0x190
[ 154.766147][ T5810] folio_alloc_noprof+0x1e/0x30
[ 154.768327][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 154.770872][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 154.773905][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 154.776230][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 154.778711][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 154.780955][ T5810] vfs_write+0x54b/0xa90
[ 154.782824][ T5810] ksys_write+0x145/0x250
[ 154.785283][ T5810] do_syscall_64+0xfa/0x3b0
[ 154.787337][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.790181][ T5810] page last free pid 5912 tgid 5911 stack trace:
[ 154.794128][ T4704] Bluetooth: hci0: command tx timeout
[ 154.797902][ T5810] __free_frozen_pages+0xbc4/0xd30
[ 154.800285][ T5810] free_large_kmalloc+0x13a/0x1f0
[ 154.802632][ T5810] xlog_write_log_records+0x349/0x3c0
[ 154.805504][ T5810] xlog_clear_stale_blocks+0x1d9/0x3c0
[ 154.808062][ T5810] xlog_find_tail+0x655/0x840
[ 154.810338][ T5810] xlog_recover+0x4b/0x3e0
[ 154.812573][ T5810] xfs_log_mount+0x253/0x3e0
[ 154.816241][ T5810] xfs_mountfs+0xe5e/0x2330
[ 154.818365][ T5810] xfs_fs_fill_super+0x11b3/0x1600
[ 154.820643][ T5810] get_tree_bdev_flags+0x40b/0x4d0
[ 154.822673][ T5810] vfs_get_tree+0x8f/0x2b0
[ 154.825188][ T5810] do_new_mount+0x2a2/0x9e0
[ 154.827914][ T5810] __se_sys_mount+0x317/0x410
[ 154.830107][ T5810] do_syscall_64+0xfa/0x3b0
[ 154.832254][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.835770][ T5810] Modules linked in:
[ 154.837729][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 154.837749][ T5810] Tainted: [B]=BAD_PAGE
[ 154.837753][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 154.837760][ T5810] Call Trace:
[ 154.837767][ T5810]
[ 154.837772][ T5810] dump_stack_lvl+0x189/0x250
[ 154.837790][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 154.837804][ T5810] ? __pfx_print_modules+0x10/0x10
[ 154.837821][ T5810] ? percpu_ref_put+0x19/0x180
[ 154.837834][ T5810] ? percpu_ref_put+0xf9/0x180
[ 154.837847][ T5810] bad_page+0x180/0x1c0
[ 154.837859][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 154.837874][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 154.837890][ T5810] __folio_put+0x21b/0x2c0
[ 154.837907][ T5810] ? __pfx___folio_put+0x10/0x10
[ 154.837923][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 154.837941][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 154.837956][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 154.837975][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 154.837985][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 154.837998][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 154.838015][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 154.838034][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 154.838054][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.838069][ T5810] ? rcu_is_watching+0x15/0xb0
[ 154.838080][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.838095][ T5810] ? rcu_is_watching+0x15/0xb0
[ 154.838107][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.838121][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 154.838133][ T5810] evict+0x501/0x9c0
[ 154.838146][ T5810] ? __pfx_evict+0x10/0x10
[ 154.838155][ T5810] ? rcu_is_watching+0x15/0xb0
[ 154.838166][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 154.838180][ T5810] evict_inodes+0x64c/0x6d0
[ 154.838192][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 154.838204][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 154.838218][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 154.838228][ T5810] kill_block_super+0x44/0x90
[ 154.838240][ T5810] xfs_kill_sb+0x15/0x50
[ 154.838251][ T5810] deactivate_locked_super+0xbc/0x130
[ 154.838268][ T5810] cleanup_mnt+0x425/0x4c0
[ 154.838284][ T5810] task_work_run+0x1d1/0x260
[ 154.838299][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 154.838311][ T5810] ? __x64_sys_umount+0x122/0x160
[ 154.838321][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 154.838333][ T5810] ? rcu_is_watching+0x15/0xb0
[ 154.838341][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 154.838356][ T5810] do_syscall_64+0x2bd/0x3b0
[ 154.838368][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.838379][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 154.838391][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.838400][ T5810] RIP: 0033:0x7ff3f858fc57
[ 154.838409][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 154.838422][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 154.838432][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 154.838442][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 154.838448][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 154.838454][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 154.838461][ T5810] R13: 00007ff3f861089d R14: 0000000000025b84 R15: 00007ffc70daa790
[ 154.838472][ T5810]
[ 154.838508][ T5810] BUG: Bad page state in process syz-executor pfn:40600
[ 155.005888][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x40600
[ 155.010059][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 155.014510][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 155.019077][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 155.022961][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 155.027282][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 155.031093][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 155.036060][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 155.040118][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 155.044456][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 155.047430][ T5810] page_owner tracks the page as allocated
[ 155.049755][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5912, tgid 5911 (syz.0.18), ts 154661825299, free_ts 154636023410
[ 155.060071][ T5810] post_alloc_hook+0x240/0x2a0
[ 155.062269][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 155.065247][ T5810] __alloc_pages_slowpath+0x2fe/0xce0
[ 155.067708][ T5810] __alloc_frozen_pages_noprof+0x319/0x370
[ 155.070512][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 155.072824][ T5810] alloc_pages_noprof+0xa9/0x190
[ 155.075659][ T5810] folio_alloc_noprof+0x1e/0x30
[ 155.077801][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 155.080210][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 155.082388][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 155.085201][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 155.087639][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 155.090124][ T5810] vfs_write+0x54b/0xa90
[ 155.091967][ T5810] ksys_write+0x145/0x250
[ 155.094285][ T5810] do_syscall_64+0xfa/0x3b0
[ 155.096272][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.098816][ T5810] page last free pid 5912 tgid 5911 stack trace:
[ 155.101519][ T5810] __free_frozen_pages+0xbc4/0xd30
[ 155.104852][ T5810] free_large_kmalloc+0x13a/0x1f0
[ 155.107083][ T5810] xlog_write_log_records+0x349/0x3c0
[ 155.109418][ T5810] xlog_clear_stale_blocks+0x1d9/0x3c0
[ 155.111786][ T5810] xlog_find_tail+0x655/0x840
[ 155.115705][ T5810] xlog_recover+0x4b/0x3e0
[ 155.117918][ T5810] xfs_log_mount+0x253/0x3e0
[ 155.120153][ T5810] xfs_mountfs+0xe5e/0x2330
[ 155.122164][ T5810] xfs_fs_fill_super+0x11b3/0x1600
[ 155.124865][ T5810] get_tree_bdev_flags+0x40b/0x4d0
[ 155.127028][ T5810] vfs_get_tree+0x8f/0x2b0
[ 155.129085][ T5810] do_new_mount+0x2a2/0x9e0
[ 155.131047][ T5810] __se_sys_mount+0x317/0x410
[ 155.133144][ T5810] do_syscall_64+0xfa/0x3b0
[ 155.136294][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.138894][ T5810] Modules linked in:
[ 155.140685][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 155.140701][ T5810] Tainted: [B]=BAD_PAGE
[ 155.140704][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 155.140711][ T5810] Call Trace:
[ 155.140717][ T5810]
[ 155.140723][ T5810] dump_stack_lvl+0x189/0x250
[ 155.140739][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 155.140748][ T5810] ? __pfx_print_modules+0x10/0x10
[ 155.140764][ T5810] bad_page+0x180/0x1c0
[ 155.140778][ T5810] __free_frozen_pages+0xce2/0xd30
[ 155.140792][ T5810] __folio_put+0x21b/0x2c0
[ 155.140805][ T5810] ? __pfx___folio_put+0x10/0x10
[ 155.140819][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 155.140833][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 155.140843][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 155.140860][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 155.140870][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 155.140881][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 155.140893][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 155.140907][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 155.140922][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.140935][ T5810] ? rcu_is_watching+0x15/0xb0
[ 155.140944][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.140956][ T5810] ? rcu_is_watching+0x15/0xb0
[ 155.140965][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.140975][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 155.140987][ T5810] evict+0x501/0x9c0
[ 155.140997][ T5810] ? __pfx_evict+0x10/0x10
[ 155.141005][ T5810] ? rcu_is_watching+0x15/0xb0
[ 155.141013][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 155.141053][ T5810] evict_inodes+0x64c/0x6d0
[ 155.141064][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 155.141074][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 155.141086][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 155.141097][ T5810] kill_block_super+0x44/0x90
[ 155.141108][ T5810] xfs_kill_sb+0x15/0x50
[ 155.141118][ T5810] deactivate_locked_super+0xbc/0x130
[ 155.141134][ T5810] cleanup_mnt+0x425/0x4c0
[ 155.141148][ T5810] task_work_run+0x1d1/0x260
[ 155.141162][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 155.141173][ T5810] ? __x64_sys_umount+0x122/0x160
[ 155.141183][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 155.141194][ T5810] ? rcu_is_watching+0x15/0xb0
[ 155.141203][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 155.141215][ T5810] do_syscall_64+0x2bd/0x3b0
[ 155.141225][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.141234][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 155.141244][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.141261][ T5810] RIP: 0033:0x7ff3f858fc57
[ 155.141271][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 155.141280][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 155.141292][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 155.141299][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 155.141305][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 155.141311][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 155.141317][ T5810] R13: 00007ff3f861089d R14: 0000000000025b84 R15: 00007ffc70daa790
[ 155.141326][ T5810]
[ 155.141765][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 155.636237][ T5922] loop0: detected capacity change from 0 to 32768
[ 155.647818][ T5922] XFS: ikeep mount option is deprecated.
[ 155.674437][ T5922] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 155.709692][ T5922] XFS (loop0): Ending clean mount
[ 155.712671][ T5922] XFS (loop0): Quotacheck needed: Please wait.
[ 155.721349][ T5922] XFS (loop0): Quotacheck: Done.
[ 155.740107][ T5810] BUG: Bad page state in process syz-executor pfn:54001
[ 155.743124][ T5810] page does not match folio
[ 155.746082][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x54001
[ 155.750907][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 155.755120][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 155.758562][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 155.762393][ T5810] page dumped because: nonzero pincount
[ 155.766620][ T5810] page_owner tracks the page as allocated
[ 155.769138][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5922, tgid 5921 (syz.0.19), ts 155726933992, free_ts 155141395154
[ 155.779740][ T5810] post_alloc_hook+0x240/0x2a0
[ 155.781972][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 155.787004][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 155.789558][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 155.791672][ T5810] alloc_pages_noprof+0xa9/0x190
[ 155.794254][ T5810] folio_alloc_noprof+0x1e/0x30
[ 155.796379][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 155.798792][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 155.800989][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 155.803807][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 155.806243][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 155.808584][ T5810] vfs_write+0x54b/0xa90
[ 155.810460][ T5810] ksys_write+0x145/0x250
[ 155.812314][ T5810] do_syscall_64+0xfa/0x3b0
[ 155.814950][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.817553][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 155.820410][ T5810] free_unref_folios+0xdbd/0x1520
[ 155.822799][ T5810] folios_put_refs+0x559/0x640
[ 155.825731][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 155.828205][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 155.830401][ T5810] evict+0x501/0x9c0
[ 155.832102][ T5810] evict_inodes+0x64c/0x6d0
[ 155.835090][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 155.837480][ T5810] kill_block_super+0x44/0x90
[ 155.839508][ T5810] xfs_kill_sb+0x15/0x50
[ 155.841398][ T5810] deactivate_locked_super+0xbc/0x130
[ 155.844551][ T5810] cleanup_mnt+0x425/0x4c0
[ 155.846638][ T5810] task_work_run+0x1d1/0x260
[ 155.848789][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 155.851828][ T5810] do_syscall_64+0x2bd/0x3b0
[ 155.854679][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.857396][ T5810] Modules linked in:
[ 155.859240][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 155.859258][ T5810] Tainted: [B]=BAD_PAGE
[ 155.859261][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 155.859267][ T5810] Call Trace:
[ 155.859274][ T5810]
[ 155.859279][ T5810] dump_stack_lvl+0x189/0x250
[ 155.859347][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 155.859358][ T5810] ? __pfx_print_modules+0x10/0x10
[ 155.859372][ T5810] ? percpu_ref_put+0x19/0x180
[ 155.859385][ T5810] ? percpu_ref_put+0xf9/0x180
[ 155.859396][ T5810] bad_page+0x180/0x1c0
[ 155.859406][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 155.859420][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 155.859433][ T5810] __folio_put+0x21b/0x2c0
[ 155.859445][ T5810] ? __pfx___folio_put+0x10/0x10
[ 155.859458][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 155.859472][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 155.859484][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 155.859499][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 155.859509][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 155.859521][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 155.859534][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 155.859549][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 155.859571][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.859583][ T5810] ? rcu_is_watching+0x15/0xb0
[ 155.859593][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.859604][ T5810] ? rcu_is_watching+0x15/0xb0
[ 155.859614][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.859626][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 155.859637][ T5810] evict+0x501/0x9c0
[ 155.859648][ T5810] ? __pfx_evict+0x10/0x10
[ 155.859657][ T5810] ? rcu_is_watching+0x15/0xb0
[ 155.859666][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 155.859678][ T5810] evict_inodes+0x64c/0x6d0
[ 155.859690][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 155.859701][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 155.859714][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 155.859724][ T5810] kill_block_super+0x44/0x90
[ 155.859734][ T5810] xfs_kill_sb+0x15/0x50
[ 155.859744][ T5810] deactivate_locked_super+0xbc/0x130
[ 155.859759][ T5810] cleanup_mnt+0x425/0x4c0
[ 155.859774][ T5810] task_work_run+0x1d1/0x260
[ 155.859788][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 155.859799][ T5810] ? __x64_sys_umount+0x122/0x160
[ 155.859809][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 155.859819][ T5810] ? rcu_is_watching+0x15/0xb0
[ 155.859828][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 155.859841][ T5810] do_syscall_64+0x2bd/0x3b0
[ 155.859851][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.859860][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 155.859870][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.859880][ T5810] RIP: 0033:0x7ff3f858fc57
[ 155.859891][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 155.859898][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 155.859910][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 155.859917][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 155.859922][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 155.859928][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 155.859934][ T5810] R13: 00007ff3f861089d R14: 0000000000025fa4 R15: 00007ffc70daa790
[ 155.859945][ T5810]
[ 155.859976][ T5810] BUG: Bad page state in process syz-executor pfn:54000
[ 156.024847][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x54000
[ 156.028843][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 156.032708][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 156.037756][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 156.041469][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 156.045282][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 156.048749][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 156.052710][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 156.057646][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 156.061208][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 156.065302][ T5810] page_owner tracks the page as allocated
[ 156.067696][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5922, tgid 5921 (syz.0.19), ts 155726933992, free_ts 155141395154
[ 156.078131][ T5810] post_alloc_hook+0x240/0x2a0
[ 156.080235][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 156.082585][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 156.085406][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 156.087493][ T5810] alloc_pages_noprof+0xa9/0x190
[ 156.089672][ T5810] folio_alloc_noprof+0x1e/0x30
[ 156.093908][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 156.096348][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 156.098518][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 156.100676][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 156.103093][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 156.106069][ T5810] vfs_write+0x54b/0xa90
[ 156.107933][ T5810] ksys_write+0x145/0x250
[ 156.109843][ T5810] do_syscall_64+0xfa/0x3b0
[ 156.111951][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.115192][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 156.117893][ T5810] free_unref_folios+0xdbd/0x1520
[ 156.120029][ T5810] folios_put_refs+0x559/0x640
[ 156.122134][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 156.125821][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 156.127928][ T5810] evict+0x501/0x9c0
[ 156.129587][ T5810] evict_inodes+0x64c/0x6d0
[ 156.131605][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 156.134602][ T5810] kill_block_super+0x44/0x90
[ 156.136714][ T5810] xfs_kill_sb+0x15/0x50
[ 156.138631][ T5810] deactivate_locked_super+0xbc/0x130
[ 156.140955][ T5810] cleanup_mnt+0x425/0x4c0
[ 156.142918][ T5810] task_work_run+0x1d1/0x260
[ 156.145457][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 156.147746][ T5810] do_syscall_64+0x2bd/0x3b0
[ 156.150420][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.156348][ T5810] Modules linked in:
[ 156.158712][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 156.158733][ T5810] Tainted: [B]=BAD_PAGE
[ 156.158737][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 156.158744][ T5810] Call Trace:
[ 156.158748][ T5810]
[ 156.158752][ T5810] dump_stack_lvl+0x189/0x250
[ 156.158776][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 156.158787][ T5810] ? __pfx_print_modules+0x10/0x10
[ 156.158803][ T5810] bad_page+0x180/0x1c0
[ 156.158819][ T5810] __free_frozen_pages+0xce2/0xd30
[ 156.158832][ T5810] __folio_put+0x21b/0x2c0
[ 156.158844][ T5810] ? __pfx___folio_put+0x10/0x10
[ 156.158858][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 156.158873][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 156.158886][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 156.158901][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 156.158912][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 156.158924][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 156.158939][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 156.158954][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 156.158971][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.158984][ T5810] ? rcu_is_watching+0x15/0xb0
[ 156.158994][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.159004][ T5810] ? rcu_is_watching+0x15/0xb0
[ 156.159015][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.159027][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 156.159039][ T5810] evict+0x501/0x9c0
[ 156.159049][ T5810] ? __pfx_evict+0x10/0x10
[ 156.159058][ T5810] ? rcu_is_watching+0x15/0xb0
[ 156.159069][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 156.159082][ T5810] evict_inodes+0x64c/0x6d0
[ 156.159095][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 156.159107][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 156.159122][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 156.159134][ T5810] kill_block_super+0x44/0x90
[ 156.159144][ T5810] xfs_kill_sb+0x15/0x50
[ 156.159153][ T5810] deactivate_locked_super+0xbc/0x130
[ 156.159168][ T5810] cleanup_mnt+0x425/0x4c0
[ 156.159181][ T5810] task_work_run+0x1d1/0x260
[ 156.159194][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 156.159205][ T5810] ? __x64_sys_umount+0x122/0x160
[ 156.159214][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 156.159223][ T5810] ? rcu_is_watching+0x15/0xb0
[ 156.159232][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 156.159245][ T5810] do_syscall_64+0x2bd/0x3b0
[ 156.159267][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.159277][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 156.159288][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.159298][ T5810] RIP: 0033:0x7ff3f858fc57
[ 156.159309][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 156.159317][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 156.159329][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 156.159336][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 156.159345][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 156.159352][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 156.159359][ T5810] R13: 00007ff3f861089d R14: 0000000000025fa4 R15: 00007ffc70daa790
[ 156.159370][ T5810]
[ 156.159878][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 156.509423][ T5932] loop0: detected capacity change from 0 to 32768
[ 156.519232][ T5932] XFS: ikeep mount option is deprecated.
[ 156.531460][ T5932] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 156.566984][ T5932] XFS (loop0): Ending clean mount
[ 156.571498][ T5932] XFS (loop0): Quotacheck needed: Please wait.
[ 156.579230][ T5932] XFS (loop0): Quotacheck: Done.
[ 156.598699][ T5810] BUG: Bad page state in process syz-executor pfn:42c01
[ 156.601859][ T5810] page does not match folio
[ 156.604546][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x42c01
[ 156.608882][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 156.612350][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 156.616552][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 156.620258][ T5810] page dumped because: nonzero pincount
[ 156.622628][ T5810] page_owner tracks the page as allocated
[ 156.626396][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5932, tgid 5931 (syz.0.20), ts 156585520864, free_ts 156159453675
[ 156.639203][ T5810] post_alloc_hook+0x240/0x2a0
[ 156.641423][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 156.645983][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 156.648425][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 156.650531][ T5810] alloc_pages_noprof+0xa9/0x190
[ 156.652715][ T5810] folio_alloc_noprof+0x1e/0x30
[ 156.655281][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 156.657745][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 156.659801][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 156.661869][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 156.664779][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 156.667247][ T5810] vfs_write+0x54b/0xa90
[ 156.669468][ T5810] ksys_write+0x145/0x250
[ 156.672208][ T5810] do_syscall_64+0xfa/0x3b0
[ 156.674780][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.677258][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 156.679847][ T5810] free_unref_folios+0xdbd/0x1520
[ 156.682055][ T5810] folios_put_refs+0x559/0x640
[ 156.684933][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 156.687459][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 156.689410][ T5810] evict+0x501/0x9c0
[ 156.691148][ T5810] evict_inodes+0x64c/0x6d0
[ 156.693127][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 156.695866][ T5810] kill_block_super+0x44/0x90
[ 156.697699][ T5810] xfs_kill_sb+0x15/0x50
[ 156.699517][ T5810] deactivate_locked_super+0xbc/0x130
[ 156.701900][ T5810] cleanup_mnt+0x425/0x4c0
[ 156.704563][ T5810] task_work_run+0x1d1/0x260
[ 156.706510][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 156.708768][ T5810] do_syscall_64+0x2bd/0x3b0
[ 156.710703][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.714811][ T5810] Modules linked in:
[ 156.717105][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 156.717126][ T5810] Tainted: [B]=BAD_PAGE
[ 156.717130][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 156.717138][ T5810] Call Trace:
[ 156.717144][ T5810]
[ 156.717150][ T5810] dump_stack_lvl+0x189/0x250
[ 156.717169][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 156.717183][ T5810] ? __pfx_print_modules+0x10/0x10
[ 156.717199][ T5810] ? percpu_ref_put+0x19/0x180
[ 156.717213][ T5810] ? percpu_ref_put+0xf9/0x180
[ 156.717225][ T5810] bad_page+0x180/0x1c0
[ 156.717236][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 156.717250][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 156.717264][ T5810] __folio_put+0x21b/0x2c0
[ 156.717279][ T5810] ? __pfx___folio_put+0x10/0x10
[ 156.717295][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 156.717312][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 156.717324][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 156.717359][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 156.717369][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 156.717381][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 156.717394][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 156.717409][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 156.717427][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.717441][ T5810] ? rcu_is_watching+0x15/0xb0
[ 156.717452][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.717466][ T5810] ? rcu_is_watching+0x15/0xb0
[ 156.717476][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.717489][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 156.717503][ T5810] evict+0x501/0x9c0
[ 156.717515][ T5810] ? __pfx_evict+0x10/0x10
[ 156.717525][ T5810] ? rcu_is_watching+0x15/0xb0
[ 156.717536][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 156.717549][ T5810] evict_inodes+0x64c/0x6d0
[ 156.717563][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 156.717574][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 156.717589][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 156.717600][ T5810] kill_block_super+0x44/0x90
[ 156.717612][ T5810] xfs_kill_sb+0x15/0x50
[ 156.717624][ T5810] deactivate_locked_super+0xbc/0x130
[ 156.717641][ T5810] cleanup_mnt+0x425/0x4c0
[ 156.717656][ T5810] task_work_run+0x1d1/0x260
[ 156.717670][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 156.717681][ T5810] ? __x64_sys_umount+0x122/0x160
[ 156.717692][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 156.717703][ T5810] ? rcu_is_watching+0x15/0xb0
[ 156.717714][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 156.717729][ T5810] do_syscall_64+0x2bd/0x3b0
[ 156.717741][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.717752][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 156.717764][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.717775][ T5810] RIP: 0033:0x7ff3f858fc57
[ 156.717786][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 156.717795][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 156.717808][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 156.717815][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 156.717821][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 156.717827][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 156.717834][ T5810] R13: 00007ff3f861089d R14: 0000000000026305 R15: 00007ffc70daa790
[ 156.717844][ T5810]
[ 156.717880][ T5810] BUG: Bad page state in process syz-executor pfn:42c00
[ 156.885533][ T4704] Bluetooth: hci0: command tx timeout
[ 156.887888][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x42c00
[ 156.891701][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 156.895878][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 156.900048][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 156.904091][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 156.907708][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 156.911425][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 156.915878][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 156.919555][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 156.923609][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 156.926732][ T5810] page_owner tracks the page as allocated
[ 156.929092][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5932, tgid 5931 (syz.0.20), ts 156585520864, free_ts 156159453675
[ 156.939508][ T5810] post_alloc_hook+0x240/0x2a0
[ 156.941765][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 156.944739][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 156.947294][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 156.949246][ T5810] alloc_pages_noprof+0xa9/0x190
[ 156.951306][ T5810] folio_alloc_noprof+0x1e/0x30
[ 156.956172][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 156.958494][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 156.960759][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 156.962879][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 156.965891][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 156.968399][ T5810] vfs_write+0x54b/0xa90
[ 156.970373][ T5810] ksys_write+0x145/0x250
[ 156.972244][ T5810] do_syscall_64+0xfa/0x3b0
[ 156.974786][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.977827][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 156.981851][ T5810] free_unref_folios+0xdbd/0x1520
[ 156.984753][ T5810] folios_put_refs+0x559/0x640
[ 156.986788][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 156.989313][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 156.991451][ T5810] evict+0x501/0x9c0
[ 156.993155][ T5810] evict_inodes+0x64c/0x6d0
[ 156.996216][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 156.998424][ T5810] kill_block_super+0x44/0x90
[ 157.000335][ T5810] xfs_kill_sb+0x15/0x50
[ 157.002192][ T5810] deactivate_locked_super+0xbc/0x130
[ 157.004982][ T5810] cleanup_mnt+0x425/0x4c0
[ 157.006954][ T5810] task_work_run+0x1d1/0x260
[ 157.008934][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 157.011185][ T5810] do_syscall_64+0x2bd/0x3b0
[ 157.013781][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.016429][ T5810] Modules linked in:
[ 157.018202][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 157.018234][ T5810] Tainted: [B]=BAD_PAGE
[ 157.018238][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 157.018245][ T5810] Call Trace:
[ 157.018251][ T5810]
[ 157.018257][ T5810] dump_stack_lvl+0x189/0x250
[ 157.018272][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 157.018284][ T5810] ? __pfx_print_modules+0x10/0x10
[ 157.018300][ T5810] bad_page+0x180/0x1c0
[ 157.018309][ T5810] __free_frozen_pages+0xce2/0xd30
[ 157.018324][ T5810] __folio_put+0x21b/0x2c0
[ 157.018337][ T5810] ? __pfx___folio_put+0x10/0x10
[ 157.018352][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 157.018366][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 157.018378][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 157.018394][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 157.018404][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 157.018415][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 157.018430][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 157.018445][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 157.018461][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.018473][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.018483][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.018495][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.018505][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.018517][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 157.018529][ T5810] evict+0x501/0x9c0
[ 157.018541][ T5810] ? __pfx_evict+0x10/0x10
[ 157.018550][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.018559][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 157.018571][ T5810] evict_inodes+0x64c/0x6d0
[ 157.018584][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 157.018594][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 157.018606][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 157.018618][ T5810] kill_block_super+0x44/0x90
[ 157.018628][ T5810] xfs_kill_sb+0x15/0x50
[ 157.018639][ T5810] deactivate_locked_super+0xbc/0x130
[ 157.018654][ T5810] cleanup_mnt+0x425/0x4c0
[ 157.018670][ T5810] task_work_run+0x1d1/0x260
[ 157.018684][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 157.018695][ T5810] ? __x64_sys_umount+0x122/0x160
[ 157.018705][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 157.018716][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.018726][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 157.018739][ T5810] do_syscall_64+0x2bd/0x3b0
[ 157.018751][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.018761][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 157.018771][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.018781][ T5810] RIP: 0033:0x7ff3f858fc57
[ 157.018792][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 157.018800][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 157.018812][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 157.018819][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 157.018825][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 157.018831][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 157.018838][ T5810] R13: 00007ff3f861089d R14: 0000000000026305 R15: 00007ffc70daa790
[ 157.018848][ T5810]
[ 157.019303][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 157.378576][ T5942] loop0: detected capacity change from 0 to 32768
[ 157.386187][ T5942] XFS: ikeep mount option is deprecated.
[ 157.397969][ T5942] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 157.424949][ T5942] XFS (loop0): Ending clean mount
[ 157.436135][ T5942] XFS (loop0): Quotacheck needed: Please wait.
[ 157.444367][ T5942] XFS (loop0): Quotacheck: Done.
[ 157.465801][ T5810] BUG: Bad page state in process syz-executor pfn:41001
[ 157.469024][ T5810] page does not match folio
[ 157.470994][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x41001
[ 157.476102][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 157.479257][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 157.483005][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 157.487900][ T5810] page dumped because: nonzero pincount
[ 157.491070][ T5810] page_owner tracks the page as allocated
[ 157.494504][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5942, tgid 5941 (syz.0.21), ts 157452270515, free_ts 157018924817
[ 157.505230][ T5810] post_alloc_hook+0x240/0x2a0
[ 157.507259][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 157.509776][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 157.512309][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 157.517268][ T5810] alloc_pages_noprof+0xa9/0x190
[ 157.519405][ T5810] folio_alloc_noprof+0x1e/0x30
[ 157.521529][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 157.524466][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 157.526705][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 157.529238][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 157.531573][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 157.534555][ T5810] vfs_write+0x54b/0xa90
[ 157.536368][ T5810] ksys_write+0x145/0x250
[ 157.538295][ T5810] do_syscall_64+0xfa/0x3b0
[ 157.540299][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.543000][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 157.546125][ T5810] free_unref_folios+0xdbd/0x1520
[ 157.548224][ T5810] folios_put_refs+0x559/0x640
[ 157.550321][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 157.552694][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 157.555449][ T5810] evict+0x501/0x9c0
[ 157.557151][ T5810] evict_inodes+0x64c/0x6d0
[ 157.559033][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 157.561360][ T5810] kill_block_super+0x44/0x90
[ 157.563826][ T5810] xfs_kill_sb+0x15/0x50
[ 157.565645][ T5810] deactivate_locked_super+0xbc/0x130
[ 157.567849][ T5810] cleanup_mnt+0x425/0x4c0
[ 157.569725][ T5810] task_work_run+0x1d1/0x260
[ 157.571636][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 157.574488][ T5810] do_syscall_64+0x2bd/0x3b0
[ 157.576474][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.579086][ T5810] Modules linked in:
[ 157.580911][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 157.580929][ T5810] Tainted: [B]=BAD_PAGE
[ 157.580933][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 157.580939][ T5810] Call Trace:
[ 157.580946][ T5810]
[ 157.580952][ T5810] dump_stack_lvl+0x189/0x250
[ 157.580980][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 157.580991][ T5810] ? __pfx_print_modules+0x10/0x10
[ 157.581032][ T5810] ? percpu_ref_put+0x19/0x180
[ 157.581044][ T5810] ? percpu_ref_put+0xf9/0x180
[ 157.581056][ T5810] bad_page+0x180/0x1c0
[ 157.581065][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 157.581078][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 157.581092][ T5810] __folio_put+0x21b/0x2c0
[ 157.581106][ T5810] ? __pfx___folio_put+0x10/0x10
[ 157.581118][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 157.581132][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 157.581144][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 157.581159][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 157.581168][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 157.581179][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 157.581193][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 157.581208][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 157.581226][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.581238][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.581246][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.581254][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.581262][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.581273][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 157.581284][ T5810] evict+0x501/0x9c0
[ 157.581296][ T5810] ? __pfx_evict+0x10/0x10
[ 157.581305][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.581320][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 157.581332][ T5810] evict_inodes+0x64c/0x6d0
[ 157.581345][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 157.581355][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 157.581368][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 157.581378][ T5810] kill_block_super+0x44/0x90
[ 157.581390][ T5810] xfs_kill_sb+0x15/0x50
[ 157.581401][ T5810] deactivate_locked_super+0xbc/0x130
[ 157.581416][ T5810] cleanup_mnt+0x425/0x4c0
[ 157.581431][ T5810] task_work_run+0x1d1/0x260
[ 157.581450][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 157.581460][ T5810] ? __x64_sys_umount+0x122/0x160
[ 157.581475][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 157.581485][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.581494][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 157.581507][ T5810] do_syscall_64+0x2bd/0x3b0
[ 157.581524][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.581534][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 157.581543][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.581552][ T5810] RIP: 0033:0x7ff3f858fc57
[ 157.581562][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 157.581570][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 157.581582][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 157.581589][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 157.581596][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 157.581602][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 157.581609][ T5810] R13: 00007ff3f861089d R14: 0000000000026665 R15: 00007ffc70daa790
[ 157.581619][ T5810]
[ 157.581640][ T5810] BUG: Bad page state in process syz-executor pfn:41000
[ 157.747529][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x41000
[ 157.751375][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 157.755516][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 157.759965][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 157.764175][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 157.767791][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 157.771593][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 157.776169][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 157.779779][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 157.784172][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 157.787132][ T5810] page_owner tracks the page as allocated
[ 157.789530][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5942, tgid 5941 (syz.0.21), ts 157452270515, free_ts 157018924817
[ 157.800453][ T5810] post_alloc_hook+0x240/0x2a0
[ 157.802519][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 157.805455][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 157.807870][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 157.809997][ T5810] alloc_pages_noprof+0xa9/0x190
[ 157.812224][ T5810] folio_alloc_noprof+0x1e/0x30
[ 157.814674][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 157.816960][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 157.819133][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 157.821377][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 157.824400][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 157.826774][ T5810] vfs_write+0x54b/0xa90
[ 157.828665][ T5810] ksys_write+0x145/0x250
[ 157.830574][ T5810] do_syscall_64+0xfa/0x3b0
[ 157.832403][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.835339][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 157.838126][ T5810] free_unref_folios+0xdbd/0x1520
[ 157.840289][ T5810] folios_put_refs+0x559/0x640
[ 157.842370][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 157.846066][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 157.848445][ T5810] evict+0x501/0x9c0
[ 157.850175][ T5810] evict_inodes+0x64c/0x6d0
[ 157.852272][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 157.855836][ T5810] kill_block_super+0x44/0x90
[ 157.857830][ T5810] xfs_kill_sb+0x15/0x50
[ 157.859641][ T5810] deactivate_locked_super+0xbc/0x130
[ 157.861886][ T5810] cleanup_mnt+0x425/0x4c0
[ 157.864252][ T5810] task_work_run+0x1d1/0x260
[ 157.866177][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 157.868522][ T5810] do_syscall_64+0x2bd/0x3b0
[ 157.870714][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.873798][ T5810] Modules linked in:
[ 157.875491][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 157.875509][ T5810] Tainted: [B]=BAD_PAGE
[ 157.875512][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 157.875518][ T5810] Call Trace:
[ 157.875524][ T5810]
[ 157.875529][ T5810] dump_stack_lvl+0x189/0x250
[ 157.875545][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 157.875555][ T5810] ? __pfx_print_modules+0x10/0x10
[ 157.875570][ T5810] bad_page+0x180/0x1c0
[ 157.875586][ T5810] __free_frozen_pages+0xce2/0xd30
[ 157.875600][ T5810] __folio_put+0x21b/0x2c0
[ 157.875614][ T5810] ? __pfx___folio_put+0x10/0x10
[ 157.875627][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 157.875642][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 157.875654][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 157.875670][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 157.875680][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 157.875692][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 157.875706][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 157.875721][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 157.875736][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.875748][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.875757][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.875767][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.875776][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.875787][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 157.875799][ T5810] evict+0x501/0x9c0
[ 157.875810][ T5810] ? __pfx_evict+0x10/0x10
[ 157.875819][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.875828][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 157.875839][ T5810] evict_inodes+0x64c/0x6d0
[ 157.875850][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 157.875860][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 157.875872][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 157.875883][ T5810] kill_block_super+0x44/0x90
[ 157.875893][ T5810] xfs_kill_sb+0x15/0x50
[ 157.875903][ T5810] deactivate_locked_super+0xbc/0x130
[ 157.875918][ T5810] cleanup_mnt+0x425/0x4c0
[ 157.875933][ T5810] task_work_run+0x1d1/0x260
[ 157.875947][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 157.875958][ T5810] ? __x64_sys_umount+0x122/0x160
[ 157.875968][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 157.875979][ T5810] ? rcu_is_watching+0x15/0xb0
[ 157.875988][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 157.876001][ T5810] do_syscall_64+0x2bd/0x3b0
[ 157.876012][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.876022][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 157.876032][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.876041][ T5810] RIP: 0033:0x7ff3f858fc57
[ 157.876052][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 157.876061][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 157.876072][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 157.876078][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 157.876084][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 157.876090][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 157.876097][ T5810] R13: 00007ff3f861089d R14: 0000000000026665 R15: 00007ffc70daa790
[ 157.876106][ T5810]
[ 157.876541][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 158.218970][ T5952] loop0: detected capacity change from 0 to 32768
[ 158.226345][ T5952] XFS: ikeep mount option is deprecated.
[ 158.239147][ T5952] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 158.276216][ T5952] XFS (loop0): Ending clean mount
[ 158.279454][ T5952] XFS (loop0): Quotacheck needed: Please wait.
[ 158.290085][ T5952] XFS (loop0): Quotacheck: Done.
[ 158.310008][ T5810] BUG: Bad page state in process syz-executor pfn:41201
[ 158.313032][ T5810] page does not match folio
[ 158.316079][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x41201
[ 158.320275][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 158.323792][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 158.327418][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 158.330927][ T5810] page dumped because: nonzero pincount
[ 158.334579][ T5810] page_owner tracks the page as allocated
[ 158.336947][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5952, tgid 5951 (syz.0.22), ts 158296483594, free_ts 157876185521
[ 158.346938][ T5810] post_alloc_hook+0x240/0x2a0
[ 158.349018][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 158.351440][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 158.356894][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 158.359635][ T5810] alloc_pages_noprof+0xa9/0x190
[ 158.361838][ T5810] folio_alloc_noprof+0x1e/0x30
[ 158.364872][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 158.367269][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 158.369493][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 158.371588][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 158.374599][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 158.376935][ T5810] vfs_write+0x54b/0xa90
[ 158.378867][ T5810] ksys_write+0x145/0x250
[ 158.380713][ T5810] do_syscall_64+0xfa/0x3b0
[ 158.382663][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.385679][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 158.388283][ T5810] free_unref_folios+0xdbd/0x1520
[ 158.390444][ T5810] folios_put_refs+0x559/0x640
[ 158.392459][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 158.395548][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 158.397752][ T5810] evict+0x501/0x9c0
[ 158.399528][ T5810] evict_inodes+0x64c/0x6d0
[ 158.401540][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 158.404116][ T5810] kill_block_super+0x44/0x90
[ 158.406104][ T5810] xfs_kill_sb+0x15/0x50
[ 158.407920][ T5810] deactivate_locked_super+0xbc/0x130
[ 158.410141][ T5810] cleanup_mnt+0x425/0x4c0
[ 158.412630][ T5810] task_work_run+0x1d1/0x260
[ 158.415282][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 158.417859][ T5810] do_syscall_64+0x2bd/0x3b0
[ 158.420215][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.423712][ T5810] Modules linked in:
[ 158.425560][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 158.425584][ T5810] Tainted: [B]=BAD_PAGE
[ 158.425588][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 158.425595][ T5810] Call Trace:
[ 158.425600][ T5810]
[ 158.425606][ T5810] dump_stack_lvl+0x189/0x250
[ 158.425631][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 158.425642][ T5810] ? __pfx_print_modules+0x10/0x10
[ 158.425657][ T5810] ? percpu_ref_put+0x19/0x180
[ 158.425670][ T5810] ? percpu_ref_put+0xf9/0x180
[ 158.425680][ T5810] bad_page+0x180/0x1c0
[ 158.425689][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 158.425701][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 158.425716][ T5810] __folio_put+0x21b/0x2c0
[ 158.425729][ T5810] ? __pfx___folio_put+0x10/0x10
[ 158.425744][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 158.425758][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 158.425768][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 158.425778][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 158.425785][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 158.425792][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 158.425801][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 158.425810][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 158.425821][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.425828][ T5810] ? rcu_is_watching+0x15/0xb0
[ 158.425834][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.425842][ T5810] ? rcu_is_watching+0x15/0xb0
[ 158.425848][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.425855][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 158.425865][ T5810] evict+0x501/0x9c0
[ 158.425875][ T5810] ? __pfx_evict+0x10/0x10
[ 158.425883][ T5810] ? rcu_is_watching+0x15/0xb0
[ 158.425892][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 158.425905][ T5810] evict_inodes+0x64c/0x6d0
[ 158.425918][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 158.425929][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 158.425942][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 158.425952][ T5810] kill_block_super+0x44/0x90
[ 158.425962][ T5810] xfs_kill_sb+0x15/0x50
[ 158.425973][ T5810] deactivate_locked_super+0xbc/0x130
[ 158.425988][ T5810] cleanup_mnt+0x425/0x4c0
[ 158.426004][ T5810] task_work_run+0x1d1/0x260
[ 158.426017][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 158.426027][ T5810] ? __x64_sys_umount+0x122/0x160
[ 158.426036][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 158.426047][ T5810] ? rcu_is_watching+0x15/0xb0
[ 158.426057][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 158.426072][ T5810] do_syscall_64+0x2bd/0x3b0
[ 158.426083][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.426093][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 158.426104][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.426114][ T5810] RIP: 0033:0x7ff3f858fc57
[ 158.426124][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 158.426132][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 158.426144][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 158.426150][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 158.426157][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 158.426163][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 158.426169][ T5810] R13: 00007ff3f861089d R14: 00000000000269ab R15: 00007ffc70daa790
[ 158.426179][ T5810]
[ 158.426209][ T5810] BUG: Bad page state in process syz-executor pfn:41200
[ 158.584701][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x41200
[ 158.588443][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 158.592097][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 158.597289][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 158.601016][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 158.605077][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 158.608898][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 158.612592][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 158.617558][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 158.621246][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 158.624615][ T5810] page_owner tracks the page as allocated
[ 158.627144][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5952, tgid 5951 (syz.0.22), ts 158296483594, free_ts 157876185521
[ 158.638289][ T5810] post_alloc_hook+0x240/0x2a0
[ 158.640634][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 158.643503][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 158.646063][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 158.648173][ T5810] alloc_pages_noprof+0xa9/0x190
[ 158.650458][ T5810] folio_alloc_noprof+0x1e/0x30
[ 158.652942][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 158.656434][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 158.658642][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 158.660837][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 158.663809][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 158.666169][ T5810] vfs_write+0x54b/0xa90
[ 158.667979][ T5810] ksys_write+0x145/0x250
[ 158.669962][ T5810] do_syscall_64+0xfa/0x3b0
[ 158.672132][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.675375][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 158.678028][ T5810] free_unref_folios+0xdbd/0x1520
[ 158.680174][ T5810] folios_put_refs+0x559/0x640
[ 158.682317][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 158.686453][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 158.688627][ T5810] evict+0x501/0x9c0
[ 158.690276][ T5810] evict_inodes+0x64c/0x6d0
[ 158.692351][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 158.695237][ T5810] kill_block_super+0x44/0x90
[ 158.697364][ T5810] xfs_kill_sb+0x15/0x50
[ 158.699199][ T5810] deactivate_locked_super+0xbc/0x130
[ 158.701609][ T5810] cleanup_mnt+0x425/0x4c0
[ 158.703942][ T5810] task_work_run+0x1d1/0x260
[ 158.705912][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 158.708090][ T5810] do_syscall_64+0x2bd/0x3b0
[ 158.710126][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.712902][ T5810] Modules linked in:
[ 158.715385][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 158.715401][ T5810] Tainted: [B]=BAD_PAGE
[ 158.715404][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 158.715410][ T5810] Call Trace:
[ 158.715415][ T5810]
[ 158.715420][ T5810] dump_stack_lvl+0x189/0x250
[ 158.715437][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 158.715449][ T5810] ? __pfx_print_modules+0x10/0x10
[ 158.715466][ T5810] bad_page+0x180/0x1c0
[ 158.715475][ T5810] __free_frozen_pages+0xce2/0xd30
[ 158.715484][ T5810] __folio_put+0x21b/0x2c0
[ 158.715496][ T5810] ? __pfx___folio_put+0x10/0x10
[ 158.715510][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 158.715524][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 158.715536][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 158.715553][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 158.715564][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 158.715686][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 158.715703][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 158.715719][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 158.715735][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.715745][ T5810] ? rcu_is_watching+0x15/0xb0
[ 158.715752][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.715760][ T5810] ? rcu_is_watching+0x15/0xb0
[ 158.715770][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.715781][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 158.715793][ T5810] evict+0x501/0x9c0
[ 158.715804][ T5810] ? __pfx_evict+0x10/0x10
[ 158.715813][ T5810] ? rcu_is_watching+0x15/0xb0
[ 158.715823][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 158.715835][ T5810] evict_inodes+0x64c/0x6d0
[ 158.715847][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 158.715859][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 158.715871][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 158.715881][ T5810] kill_block_super+0x44/0x90
[ 158.715894][ T5810] xfs_kill_sb+0x15/0x50
[ 158.715905][ T5810] deactivate_locked_super+0xbc/0x130
[ 158.715921][ T5810] cleanup_mnt+0x425/0x4c0
[ 158.715937][ T5810] task_work_run+0x1d1/0x260
[ 158.715946][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 158.715956][ T5810] ? __x64_sys_umount+0x122/0x160
[ 158.715966][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 158.715976][ T5810] ? rcu_is_watching+0x15/0xb0
[ 158.715984][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 158.715998][ T5810] do_syscall_64+0x2bd/0x3b0
[ 158.716008][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.716019][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 158.716030][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.716040][ T5810] RIP: 0033:0x7ff3f858fc57
[ 158.716051][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 158.716062][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 158.716074][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 158.716082][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 158.716088][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 158.716095][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 158.716103][ T5810] R13: 00007ff3f861089d R14: 00000000000269ab R15: 00007ffc70daa790
[ 158.716114][ T5810]
[ 158.716567][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 159.079136][ T5962] loop0: detected capacity change from 0 to 32768
[ 159.089560][ T5962] XFS: ikeep mount option is deprecated.
[ 159.100247][ T5962] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 159.147743][ T5962] XFS (loop0): Ending clean mount
[ 159.150877][ T5962] XFS (loop0): Quotacheck needed: Please wait.
[ 159.159775][ T5962] XFS (loop0): Quotacheck: Done.
[ 159.188856][ T5810] BUG: Bad page state in process syz-executor pfn:40c01
[ 159.192017][ T5810] page does not match folio
[ 159.196352][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x40c01
[ 159.200604][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 159.204355][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 159.207935][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 159.211826][ T5810] page dumped because: nonzero pincount
[ 159.215452][ T5810] page_owner tracks the page as allocated
[ 159.217917][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5962, tgid 5961 (syz.0.23), ts 159166787551, free_ts 158716197917
[ 159.228205][ T5810] post_alloc_hook+0x240/0x2a0
[ 159.230887][ T5810] get_page_from_freelist+0x21e4/0x22c0
2025/08/02 21:08:01 executed programs: 10
[ 159.236887][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 159.239415][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 159.241564][ T5810] alloc_pages_noprof+0xa9/0x190
[ 159.244333][ T5810] folio_alloc_noprof+0x1e/0x30
[ 159.246530][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 159.248956][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 159.251195][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 159.253929][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 159.256274][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 159.258615][ T5810] vfs_write+0x54b/0xa90
[ 159.260445][ T5810] ksys_write+0x145/0x250
[ 159.262404][ T5810] do_syscall_64+0xfa/0x3b0
[ 159.265178][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.267717][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 159.270400][ T5810] free_unref_folios+0xdbd/0x1520
[ 159.272588][ T5810] folios_put_refs+0x559/0x640
[ 159.276021][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 159.278462][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 159.280646][ T5810] evict+0x501/0x9c0
[ 159.282349][ T5810] evict_inodes+0x64c/0x6d0
[ 159.285588][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 159.287824][ T5810] kill_block_super+0x44/0x90
[ 159.289853][ T5810] xfs_kill_sb+0x15/0x50
[ 159.291757][ T5810] deactivate_locked_super+0xbc/0x130
[ 159.294575][ T5810] cleanup_mnt+0x425/0x4c0
[ 159.296498][ T5810] task_work_run+0x1d1/0x260
[ 159.298547][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 159.300828][ T5810] do_syscall_64+0x2bd/0x3b0
[ 159.302888][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.306936][ T5810] Modules linked in:
[ 159.308688][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 159.308706][ T5810] Tainted: [B]=BAD_PAGE
[ 159.308710][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 159.308717][ T5810] Call Trace:
[ 159.308722][ T5810]
[ 159.308727][ T5810] dump_stack_lvl+0x189/0x250
[ 159.308743][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 159.308753][ T5810] ? __pfx_print_modules+0x10/0x10
[ 159.308767][ T5810] ? percpu_ref_put+0x19/0x180
[ 159.308780][ T5810] ? percpu_ref_put+0xf9/0x180
[ 159.308791][ T5810] bad_page+0x180/0x1c0
[ 159.308801][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 159.308813][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 159.308825][ T5810] __folio_put+0x21b/0x2c0
[ 159.308839][ T5810] ? __pfx___folio_put+0x10/0x10
[ 159.308852][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 159.308867][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 159.308879][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 159.308896][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 159.308908][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 159.308920][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 159.308935][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 159.308951][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 159.308970][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.309015][ T5810] ? rcu_is_watching+0x15/0xb0
[ 159.309026][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.309040][ T5810] ? rcu_is_watching+0x15/0xb0
[ 159.309051][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.309063][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 159.309076][ T5810] evict+0x501/0x9c0
[ 159.309089][ T5810] ? __pfx_evict+0x10/0x10
[ 159.309098][ T5810] ? rcu_is_watching+0x15/0xb0
[ 159.309109][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 159.309123][ T5810] evict_inodes+0x64c/0x6d0
[ 159.309137][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 159.309150][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 159.309163][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 159.309174][ T5810] kill_block_super+0x44/0x90
[ 159.309186][ T5810] xfs_kill_sb+0x15/0x50
[ 159.309198][ T5810] deactivate_locked_super+0xbc/0x130
[ 159.309214][ T5810] cleanup_mnt+0x425/0x4c0
[ 159.309231][ T5810] task_work_run+0x1d1/0x260
[ 159.309247][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 159.309259][ T5810] ? __x64_sys_umount+0x122/0x160
[ 159.309269][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 159.309281][ T5810] ? rcu_is_watching+0x15/0xb0
[ 159.309291][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 159.309307][ T5810] do_syscall_64+0x2bd/0x3b0
[ 159.309320][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.309332][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 159.309342][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.309352][ T5810] RIP: 0033:0x7ff3f858fc57
[ 159.309365][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 159.309374][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 159.309387][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 159.309394][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 159.309401][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 159.309408][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 159.309415][ T5810] R13: 00007ff3f861089d R14: 0000000000026d11 R15: 00007ffc70daa790
[ 159.309426][ T5810]
[ 159.309460][ T5810] BUG: Bad page state in process syz-executor pfn:40c00
[ 159.468922][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x40c00
[ 159.472720][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 159.476623][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 159.480800][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 159.485021][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 159.488847][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 159.492479][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 159.496886][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 159.501270][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 159.505526][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 159.508679][ T5810] page_owner tracks the page as allocated
[ 159.511119][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5962, tgid 5961 (syz.0.23), ts 159166787551, free_ts 158716197917
[ 159.521829][ T5810] post_alloc_hook+0x240/0x2a0
[ 159.524313][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 159.526653][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 159.529038][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 159.531233][ T5810] alloc_pages_noprof+0xa9/0x190
[ 159.533778][ T5810] folio_alloc_noprof+0x1e/0x30
[ 159.535720][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 159.538458][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 159.540667][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 159.542813][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 159.545698][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 159.548095][ T5810] vfs_write+0x54b/0xa90
[ 159.549934][ T5810] ksys_write+0x145/0x250
[ 159.551731][ T5810] do_syscall_64+0xfa/0x3b0
[ 159.554037][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.556587][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 159.559265][ T5810] free_unref_folios+0xdbd/0x1520
[ 159.561361][ T5810] folios_put_refs+0x559/0x640
[ 159.563954][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 159.566316][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 159.568359][ T5810] evict+0x501/0x9c0
[ 159.569923][ T5810] evict_inodes+0x64c/0x6d0
[ 159.571909][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 159.575361][ T5810] kill_block_super+0x44/0x90
[ 159.577130][ T5810] xfs_kill_sb+0x15/0x50
[ 159.578731][ T5810] deactivate_locked_super+0xbc/0x130
[ 159.580807][ T5810] cleanup_mnt+0x425/0x4c0
[ 159.582719][ T5810] task_work_run+0x1d1/0x260
[ 159.585394][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 159.587803][ T5810] do_syscall_64+0x2bd/0x3b0
[ 159.589710][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.592474][ T5810] Modules linked in:
[ 159.594591][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 159.594608][ T5810] Tainted: [B]=BAD_PAGE
[ 159.594612][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 159.594618][ T5810] Call Trace:
[ 159.594622][ T5810]
[ 159.594626][ T5810] dump_stack_lvl+0x189/0x250
[ 159.594645][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 159.594655][ T5810] ? __pfx_print_modules+0x10/0x10
[ 159.594673][ T5810] bad_page+0x180/0x1c0
[ 159.594682][ T5810] __free_frozen_pages+0xce2/0xd30
[ 159.594697][ T5810] __folio_put+0x21b/0x2c0
[ 159.594712][ T5810] ? __pfx___folio_put+0x10/0x10
[ 159.594726][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 159.594739][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 159.594750][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 159.594767][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 159.594776][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 159.594787][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 159.594801][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 159.594815][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 159.594830][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.594845][ T5810] ? rcu_is_watching+0x15/0xb0
[ 159.594853][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.594866][ T5810] ? rcu_is_watching+0x15/0xb0
[ 159.594876][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.594887][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 159.594900][ T5810] evict+0x501/0x9c0
[ 159.594911][ T5810] ? __pfx_evict+0x10/0x10
[ 159.594919][ T5810] ? rcu_is_watching+0x15/0xb0
[ 159.594930][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 159.594942][ T5810] evict_inodes+0x64c/0x6d0
[ 159.594954][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 159.594967][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 159.594980][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 159.594991][ T5810] kill_block_super+0x44/0x90
[ 159.595002][ T5810] xfs_kill_sb+0x15/0x50
[ 159.595012][ T5810] deactivate_locked_super+0xbc/0x130
[ 159.595027][ T5810] cleanup_mnt+0x425/0x4c0
[ 159.595041][ T5810] task_work_run+0x1d1/0x260
[ 159.595055][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 159.595067][ T5810] ? __x64_sys_umount+0x122/0x160
[ 159.595076][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 159.595085][ T5810] ? rcu_is_watching+0x15/0xb0
[ 159.595096][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 159.595109][ T5810] do_syscall_64+0x2bd/0x3b0
[ 159.595120][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.595130][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 159.595140][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.595148][ T5810] RIP: 0033:0x7ff3f858fc57
[ 159.595160][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 159.595168][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 159.595179][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 159.595187][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 159.595192][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 159.595198][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 159.595204][ T5810] R13: 00007ff3f861089d R14: 0000000000026d11 R15: 00007ffc70daa790
[ 159.595214][ T5810]
[ 159.595609][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 159.933622][ T5972] loop0: detected capacity change from 0 to 32768
[ 159.940877][ T5972] XFS: ikeep mount option is deprecated.
[ 159.951966][ T5972] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 159.983965][ T5972] XFS (loop0): Ending clean mount
[ 159.992019][ T5972] XFS (loop0): Quotacheck needed: Please wait.
[ 160.000438][ T5972] XFS (loop0): Quotacheck: Done.
[ 160.018837][ T5810] BUG: Bad page state in process syz-executor pfn:40e01
[ 160.021888][ T5810] page does not match folio
[ 160.025082][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x40e01
[ 160.029412][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 160.032558][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 160.036898][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 160.040575][ T5810] page dumped because: nonzero pincount
[ 160.042937][ T5810] page_owner tracks the page as allocated
[ 160.046602][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5972, tgid 5971 (syz.0.24), ts 160006530807, free_ts 159595289842
[ 160.057607][ T5810] post_alloc_hook+0x240/0x2a0
[ 160.059622][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 160.061962][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 160.066961][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 160.069093][ T5810] alloc_pages_noprof+0xa9/0x190
[ 160.071178][ T5810] folio_alloc_noprof+0x1e/0x30
[ 160.074252][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 160.076651][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 160.078783][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 160.080968][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 160.083976][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 160.086273][ T5810] vfs_write+0x54b/0xa90
[ 160.088074][ T5810] ksys_write+0x145/0x250
[ 160.089924][ T5810] do_syscall_64+0xfa/0x3b0
[ 160.091923][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.094934][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 160.097603][ T5810] free_unref_folios+0xdbd/0x1520
[ 160.100038][ T5810] folios_put_refs+0x559/0x640
[ 160.102216][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 160.105443][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 160.107631][ T5810] evict+0x501/0x9c0
[ 160.109446][ T5810] evict_inodes+0x64c/0x6d0
[ 160.111573][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 160.114287][ T5810] kill_block_super+0x44/0x90
[ 160.116362][ T5810] xfs_kill_sb+0x15/0x50
[ 160.118211][ T5810] deactivate_locked_super+0xbc/0x130
[ 160.120691][ T5810] cleanup_mnt+0x425/0x4c0
[ 160.122645][ T5810] task_work_run+0x1d1/0x260
[ 160.125423][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 160.127983][ T5810] do_syscall_64+0x2bd/0x3b0
[ 160.130219][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.132899][ T5810] Modules linked in:
[ 160.135238][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 160.135255][ T5810] Tainted: [B]=BAD_PAGE
[ 160.135258][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 160.135265][ T5810] Call Trace:
[ 160.135269][ T5810]
[ 160.135273][ T5810] dump_stack_lvl+0x189/0x250
[ 160.135298][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 160.135308][ T5810] ? __pfx_print_modules+0x10/0x10
[ 160.135323][ T5810] ? percpu_ref_put+0x19/0x180
[ 160.135334][ T5810] ? percpu_ref_put+0xf9/0x180
[ 160.135344][ T5810] bad_page+0x180/0x1c0
[ 160.135354][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 160.135365][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 160.135379][ T5810] __folio_put+0x21b/0x2c0
[ 160.135392][ T5810] ? __pfx___folio_put+0x10/0x10
[ 160.135406][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 160.135419][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 160.135431][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 160.135447][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 160.135456][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 160.135467][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 160.135480][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 160.135494][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 160.135510][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.135522][ T5810] ? rcu_is_watching+0x15/0xb0
[ 160.135532][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.135544][ T5810] ? rcu_is_watching+0x15/0xb0
[ 160.135554][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.135565][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 160.135577][ T5810] evict+0x501/0x9c0
[ 160.135588][ T5810] ? __pfx_evict+0x10/0x10
[ 160.135596][ T5810] ? rcu_is_watching+0x15/0xb0
[ 160.135605][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 160.135618][ T5810] evict_inodes+0x64c/0x6d0
[ 160.135631][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 160.135641][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 160.135655][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 160.135665][ T5810] kill_block_super+0x44/0x90
[ 160.135674][ T5810] xfs_kill_sb+0x15/0x50
[ 160.135684][ T5810] deactivate_locked_super+0xbc/0x130
[ 160.135698][ T5810] cleanup_mnt+0x425/0x4c0
[ 160.135714][ T5810] task_work_run+0x1d1/0x260
[ 160.135728][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 160.135739][ T5810] ? __x64_sys_umount+0x122/0x160
[ 160.135749][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 160.135760][ T5810] ? rcu_is_watching+0x15/0xb0
[ 160.135769][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 160.135783][ T5810] do_syscall_64+0x2bd/0x3b0
[ 160.135794][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.135804][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 160.135816][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.135825][ T5810] RIP: 0033:0x7ff3f858fc57
[ 160.135834][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 160.135842][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 160.135855][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 160.135862][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 160.135868][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 160.135874][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 160.135881][ T5810] R13: 00007ff3f861089d R14: 000000000002705f R15: 00007ffc70daa790
[ 160.135891][ T5810]
[ 160.135920][ T5810] BUG: Bad page state in process syz-executor pfn:40e00
[ 160.299198][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x40e00
[ 160.304643][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 160.309214][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 160.315191][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 160.318722][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 160.322629][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 160.327043][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 160.331429][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 160.336396][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 160.340623][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 160.344686][ T5810] page_owner tracks the page as allocated
[ 160.347395][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5972, tgid 5971 (syz.0.24), ts 160006530807, free_ts 159595289842
[ 160.358732][ T5810] post_alloc_hook+0x240/0x2a0
[ 160.360937][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 160.363524][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 160.365975][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 160.368060][ T5810] alloc_pages_noprof+0xa9/0x190
[ 160.370452][ T5810] folio_alloc_noprof+0x1e/0x30
[ 160.373072][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 160.376059][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 160.378363][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 160.380615][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 160.383056][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 160.385842][ T5810] vfs_write+0x54b/0xa90
[ 160.387711][ T5810] ksys_write+0x145/0x250
[ 160.389659][ T5810] do_syscall_64+0xfa/0x3b0
[ 160.391786][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.395322][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 160.398048][ T5810] free_unref_folios+0xdbd/0x1520
[ 160.400225][ T5810] folios_put_refs+0x559/0x640
[ 160.402376][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 160.406023][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 160.408206][ T5810] evict+0x501/0x9c0
[ 160.409893][ T5810] evict_inodes+0x64c/0x6d0
[ 160.411940][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 160.414988][ T5810] kill_block_super+0x44/0x90
[ 160.417029][ T5810] xfs_kill_sb+0x15/0x50
[ 160.418871][ T5810] deactivate_locked_super+0xbc/0x130
[ 160.421191][ T5810] cleanup_mnt+0x425/0x4c0
[ 160.423105][ T5810] task_work_run+0x1d1/0x260
[ 160.425557][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 160.427863][ T5810] do_syscall_64+0x2bd/0x3b0
[ 160.429886][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.432524][ T5810] Modules linked in:
[ 160.434993][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 160.435013][ T5810] Tainted: [B]=BAD_PAGE
[ 160.435017][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 160.435025][ T5810] Call Trace:
[ 160.435029][ T5810]
[ 160.435035][ T5810] dump_stack_lvl+0x189/0x250
[ 160.435054][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 160.435067][ T5810] ? __pfx_print_modules+0x10/0x10
[ 160.435085][ T5810] bad_page+0x180/0x1c0
[ 160.435097][ T5810] __free_frozen_pages+0xce2/0xd30
[ 160.435110][ T5810] __folio_put+0x21b/0x2c0
[ 160.435124][ T5810] ? __pfx___folio_put+0x10/0x10
[ 160.435138][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 160.435155][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 160.435166][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 160.435183][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 160.435195][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 160.435206][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 160.435220][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 160.435237][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 160.435255][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.435269][ T5810] ? rcu_is_watching+0x15/0xb0
[ 160.435279][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.435291][ T5810] ? rcu_is_watching+0x15/0xb0
[ 160.435302][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.435313][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 160.435325][ T5810] evict+0x501/0x9c0
[ 160.435336][ T5810] ? __pfx_evict+0x10/0x10
[ 160.435346][ T5810] ? rcu_is_watching+0x15/0xb0
[ 160.435357][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 160.435371][ T5810] evict_inodes+0x64c/0x6d0
[ 160.435386][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 160.435399][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 160.435415][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 160.435428][ T5810] kill_block_super+0x44/0x90
[ 160.435441][ T5810] xfs_kill_sb+0x15/0x50
[ 160.435452][ T5810] deactivate_locked_super+0xbc/0x130
[ 160.435467][ T5810] cleanup_mnt+0x425/0x4c0
[ 160.435484][ T5810] task_work_run+0x1d1/0x260
[ 160.435511][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 160.435526][ T5810] ? __x64_sys_umount+0x122/0x160
[ 160.435537][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 160.435549][ T5810] ? rcu_is_watching+0x15/0xb0
[ 160.435560][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 160.435574][ T5810] do_syscall_64+0x2bd/0x3b0
[ 160.435585][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.435596][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 160.435607][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.435618][ T5810] RIP: 0033:0x7ff3f858fc57
[ 160.435629][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 160.435639][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 160.435653][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 160.435661][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 160.435668][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 160.435675][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 160.435683][ T5810] R13: 00007ff3f861089d R14: 000000000002705f R15: 00007ffc70daa790
[ 160.435695][ T5810]
[ 160.436195][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 160.803040][ T5982] loop0: detected capacity change from 0 to 32768
[ 160.809859][ T5982] XFS: ikeep mount option is deprecated.
[ 160.821241][ T5982] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 160.854338][ T5982] XFS (loop0): Ending clean mount
[ 160.863084][ T5982] XFS (loop0): Quotacheck needed: Please wait.
[ 160.873671][ T5982] XFS (loop0): Quotacheck: Done.
[ 160.896130][ T5810] BUG: Bad page state in process syz-executor pfn:53c01
[ 160.899437][ T5810] page does not match folio
[ 160.901582][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x53c01
[ 160.906506][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 160.909690][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 160.915603][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 160.919231][ T5810] page dumped because: nonzero pincount
[ 160.921663][ T5810] page_owner tracks the page as allocated
[ 160.924587][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5982, tgid 5981 (syz.0.25), ts 160880247716, free_ts 160435785775
[ 160.937683][ T5810] post_alloc_hook+0x240/0x2a0
[ 160.939829][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 160.942258][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 160.945142][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 160.947286][ T5810] alloc_pages_noprof+0xa9/0x190
[ 160.949412][ T5810] folio_alloc_noprof+0x1e/0x30
[ 160.951618][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 160.957445][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 160.959585][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 160.961801][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 160.964790][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 160.967412][ T5810] vfs_write+0x54b/0xa90
[ 160.969314][ T5810] ksys_write+0x145/0x250
[ 160.971758][ T5810] do_syscall_64+0xfa/0x3b0
[ 160.974303][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.976786][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 160.979512][ T5810] free_unref_folios+0xdbd/0x1520
[ 160.981844][ T5810] folios_put_refs+0x559/0x640
[ 160.984282][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 160.987003][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 160.989168][ T5810] evict+0x501/0x9c0
[ 160.990910][ T5810] evict_inodes+0x64c/0x6d0
[ 160.992848][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 160.995801][ T5810] kill_block_super+0x44/0x90
[ 160.997890][ T5810] xfs_kill_sb+0x15/0x50
[ 160.999685][ T5810] deactivate_locked_super+0xbc/0x130
[ 161.002021][ T5810] cleanup_mnt+0x425/0x4c0
[ 161.004699][ T5810] task_work_run+0x1d1/0x260
[ 161.007205][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 161.009444][ T5810] do_syscall_64+0x2bd/0x3b0
[ 161.011466][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.014552][ T5810] Modules linked in:
[ 161.016314][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 161.016333][ T5810] Tainted: [B]=BAD_PAGE
[ 161.016338][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 161.016345][ T5810] Call Trace:
[ 161.016350][ T5810]
[ 161.016356][ T5810] dump_stack_lvl+0x189/0x250
[ 161.016373][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 161.016385][ T5810] ? __pfx_print_modules+0x10/0x10
[ 161.016399][ T5810] ? percpu_ref_put+0x19/0x180
[ 161.016412][ T5810] ? percpu_ref_put+0xf9/0x180
[ 161.016424][ T5810] bad_page+0x180/0x1c0
[ 161.016433][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 161.016445][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 161.016459][ T5810] __folio_put+0x21b/0x2c0
[ 161.016472][ T5810] ? __pfx___folio_put+0x10/0x10
[ 161.016488][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 161.016503][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 161.016515][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 161.016533][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 161.016544][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 161.016555][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 161.016567][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 161.016582][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 161.016601][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.016614][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.016625][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.016637][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.016646][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.016656][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 161.016668][ T5810] evict+0x501/0x9c0
[ 161.016678][ T5810] ? __pfx_evict+0x10/0x10
[ 161.016687][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.016697][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 161.016709][ T5810] evict_inodes+0x64c/0x6d0
[ 161.016722][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 161.016733][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 161.016747][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 161.016759][ T5810] kill_block_super+0x44/0x90
[ 161.016769][ T5810] xfs_kill_sb+0x15/0x50
[ 161.016780][ T5810] deactivate_locked_super+0xbc/0x130
[ 161.016795][ T5810] cleanup_mnt+0x425/0x4c0
[ 161.016811][ T5810] task_work_run+0x1d1/0x260
[ 161.016824][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 161.016835][ T5810] ? __x64_sys_umount+0x122/0x160
[ 161.016846][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 161.016856][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.016865][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 161.016879][ T5810] do_syscall_64+0x2bd/0x3b0
[ 161.016890][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.016901][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 161.016912][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.016922][ T5810] RIP: 0033:0x7ff3f858fc57
[ 161.016934][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 161.016942][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 161.016954][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 161.016962][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 161.017010][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 161.017016][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 161.017023][ T5810] R13: 00007ff3f861089d R14: 00000000000273c5 R15: 00007ffc70daa790
[ 161.017033][ T5810]
[ 161.017065][ T5810] BUG: Bad page state in process syz-executor pfn:53c00
[ 161.174752][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x53c00
[ 161.178701][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 161.181862][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 161.186745][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 161.190191][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 161.194052][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 161.197585][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 161.201163][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 161.204942][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 161.208218][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 161.210984][ T5810] page_owner tracks the page as allocated
[ 161.213928][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5982, tgid 5981 (syz.0.25), ts 160880247716, free_ts 160435785775
[ 161.225172][ T5810] post_alloc_hook+0x240/0x2a0
[ 161.227296][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 161.229851][ T5810] __alloc_frozen_pages_noprof+0x181/0x370
[ 161.232517][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 161.235239][ T5810] alloc_pages_noprof+0xa9/0x190
[ 161.237435][ T5810] folio_alloc_noprof+0x1e/0x30
[ 161.239541][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 161.241967][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 161.244782][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 161.247048][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 161.249451][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 161.251824][ T5810] vfs_write+0x54b/0xa90
[ 161.254104][ T5810] ksys_write+0x145/0x250
[ 161.255986][ T5810] do_syscall_64+0xfa/0x3b0
[ 161.258049][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.260846][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 161.264470][ T5810] free_unref_folios+0xdbd/0x1520
[ 161.266759][ T5810] folios_put_refs+0x559/0x640
[ 161.268861][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 161.271352][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 161.274690][ T5810] evict+0x501/0x9c0
[ 161.276387][ T5810] evict_inodes+0x64c/0x6d0
[ 161.278985][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 161.281354][ T5810] kill_block_super+0x44/0x90
[ 161.284021][ T5810] xfs_kill_sb+0x15/0x50
[ 161.285874][ T5810] deactivate_locked_super+0xbc/0x130
[ 161.288184][ T5810] cleanup_mnt+0x425/0x4c0
[ 161.290232][ T5810] task_work_run+0x1d1/0x260
[ 161.292382][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 161.295057][ T5810] do_syscall_64+0x2bd/0x3b0
[ 161.296912][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.299161][ T5810] Modules linked in:
[ 161.300613][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 161.300631][ T5810] Tainted: [B]=BAD_PAGE
[ 161.300636][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 161.300644][ T5810] Call Trace:
[ 161.300652][ T5810]
[ 161.300658][ T5810] dump_stack_lvl+0x189/0x250
[ 161.300674][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 161.300686][ T5810] ? __pfx_print_modules+0x10/0x10
[ 161.300704][ T5810] bad_page+0x180/0x1c0
[ 161.300714][ T5810] __free_frozen_pages+0xce2/0xd30
[ 161.300727][ T5810] __folio_put+0x21b/0x2c0
[ 161.300741][ T5810] ? __pfx___folio_put+0x10/0x10
[ 161.300754][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 161.300768][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 161.300780][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 161.300793][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 161.300803][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 161.300813][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 161.300825][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 161.300839][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 161.300854][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.300864][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.300873][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.300883][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.300894][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.300906][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 161.300918][ T5810] evict+0x501/0x9c0
[ 161.300930][ T5810] ? __pfx_evict+0x10/0x10
[ 161.300939][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.300949][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 161.300990][ T5810] evict_inodes+0x64c/0x6d0
[ 161.301006][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 161.301019][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 161.301033][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 161.301044][ T5810] kill_block_super+0x44/0x90
[ 161.301055][ T5810] xfs_kill_sb+0x15/0x50
[ 161.301067][ T5810] deactivate_locked_super+0xbc/0x130
[ 161.301082][ T5810] cleanup_mnt+0x425/0x4c0
[ 161.301097][ T5810] task_work_run+0x1d1/0x260
[ 161.301111][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 161.301121][ T5810] ? __x64_sys_umount+0x122/0x160
[ 161.301168][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 161.301182][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.301191][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 161.301284][ T5810] do_syscall_64+0x2bd/0x3b0
[ 161.301324][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.301335][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 161.301347][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.301358][ T5810] RIP: 0033:0x7ff3f858fc57
[ 161.301395][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 161.301460][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 161.301473][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 161.301480][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 161.301485][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 161.301492][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 161.301498][ T5810] R13: 00007ff3f861089d R14: 00000000000273c5 R15: 00007ffc70daa790
[ 161.301509][ T5810]
[ 161.301983][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 161.657029][ T5992] loop0: detected capacity change from 0 to 32768
[ 161.664012][ T5992] XFS: ikeep mount option is deprecated.
[ 161.684113][ T5992] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 161.705850][ T5992] XFS (loop0): Ending clean mount
[ 161.708450][ T5992] XFS (loop0): Quotacheck needed: Please wait.
[ 161.724518][ T5992] XFS (loop0): Quotacheck: Done.
[ 161.778455][ T5810] BUG: Bad page state in process syz-executor pfn:41801
[ 161.781257][ T5810] page does not match folio
[ 161.784504][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x41801
[ 161.788996][ T5810] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 161.793051][ T5810] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 161.797442][ T5810] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 161.801249][ T5810] page dumped because: nonzero pincount
[ 161.804689][ T5810] page_owner tracks the page as allocated
[ 161.807087][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5992, tgid 5991 (syz.0.26), ts 161744188014, free_ts 161301596734
[ 161.817733][ T5810] post_alloc_hook+0x240/0x2a0
[ 161.819873][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 161.822300][ T5810] __alloc_pages_slowpath+0x2fe/0xce0
[ 161.827127][ T5810] __alloc_frozen_pages_noprof+0x319/0x370
[ 161.829752][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 161.831935][ T5810] alloc_pages_noprof+0xa9/0x190
[ 161.834782][ T5810] folio_alloc_noprof+0x1e/0x30
[ 161.837127][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 161.839701][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 161.842056][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 161.844706][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 161.847134][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 161.849480][ T5810] vfs_write+0x54b/0xa90
[ 161.851347][ T5810] ksys_write+0x145/0x250
[ 161.854149][ T5810] do_syscall_64+0xfa/0x3b0
[ 161.856429][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.858948][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 161.861678][ T5810] free_unref_folios+0xdbd/0x1520
[ 161.864344][ T5810] folios_put_refs+0x559/0x640
[ 161.866404][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 161.868787][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 161.870882][ T5810] evict+0x501/0x9c0
[ 161.872508][ T5810] evict_inodes+0x64c/0x6d0
[ 161.875938][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 161.878116][ T5810] kill_block_super+0x44/0x90
[ 161.880176][ T5810] xfs_kill_sb+0x15/0x50
[ 161.882220][ T5810] deactivate_locked_super+0xbc/0x130
[ 161.885229][ T5810] cleanup_mnt+0x425/0x4c0
[ 161.887446][ T5810] task_work_run+0x1d1/0x260
[ 161.889608][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 161.891750][ T5810] do_syscall_64+0x2bd/0x3b0
[ 161.894808][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.897397][ T5810] Modules linked in:
[ 161.899065][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 161.899083][ T5810] Tainted: [B]=BAD_PAGE
[ 161.899087][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 161.899093][ T5810] Call Trace:
[ 161.899099][ T5810]
[ 161.899104][ T5810] dump_stack_lvl+0x189/0x250
[ 161.899119][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 161.899130][ T5810] ? __pfx_print_modules+0x10/0x10
[ 161.899145][ T5810] ? percpu_ref_put+0x19/0x180
[ 161.899157][ T5810] ? percpu_ref_put+0xf9/0x180
[ 161.899168][ T5810] bad_page+0x180/0x1c0
[ 161.899178][ T5810] free_tail_page_prepare+0x2c3/0x4f0
[ 161.899190][ T5810] __free_frozen_pages+0x7b7/0xd30
[ 161.899204][ T5810] __folio_put+0x21b/0x2c0
[ 161.899216][ T5810] ? __pfx___folio_put+0x10/0x10
[ 161.899229][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 161.899242][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 161.899262][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 161.899281][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 161.899290][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 161.899301][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 161.899314][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 161.899330][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 161.899345][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.899359][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.899369][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.899380][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.899391][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.899402][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 161.899414][ T5810] evict+0x501/0x9c0
[ 161.899425][ T5810] ? __pfx_evict+0x10/0x10
[ 161.899434][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.899444][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 161.899456][ T5810] evict_inodes+0x64c/0x6d0
[ 161.899467][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 161.899478][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 161.899491][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 161.899501][ T5810] kill_block_super+0x44/0x90
[ 161.899512][ T5810] xfs_kill_sb+0x15/0x50
[ 161.899522][ T5810] deactivate_locked_super+0xbc/0x130
[ 161.899538][ T5810] cleanup_mnt+0x425/0x4c0
[ 161.899553][ T5810] task_work_run+0x1d1/0x260
[ 161.899566][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 161.899576][ T5810] ? __x64_sys_umount+0x122/0x160
[ 161.899583][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 161.899593][ T5810] ? rcu_is_watching+0x15/0xb0
[ 161.899601][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 161.899615][ T5810] do_syscall_64+0x2bd/0x3b0
[ 161.899627][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.899637][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 161.899647][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.899658][ T5810] RIP: 0033:0x7ff3f858fc57
[ 161.899668][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 161.899677][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 161.899689][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 161.899696][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 161.899702][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 161.899709][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 161.899715][ T5810] R13: 00007ff3f861089d R14: 0000000000027740 R15: 00007ffc70daa790
[ 161.899726][ T5810]
[ 161.899755][ T5810] BUG: Bad page state in process syz-executor pfn:41800
[ 162.058974][ T5810] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x41800
[ 162.062718][ T5810] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 162.067252][ T5810] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 162.072241][ T5810] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 162.076654][ T5810] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 162.080450][ T5810] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 162.084389][ T5810] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 162.088027][ T5810] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 162.091910][ T5810] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 162.096237][ T5810] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 162.099932][ T5810] page_owner tracks the page as allocated
[ 162.102481][ T5810] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5992, tgid 5991 (syz.0.26), ts 161744188014, free_ts 161301596734
[ 162.112810][ T5810] post_alloc_hook+0x240/0x2a0
[ 162.115437][ T5810] get_page_from_freelist+0x21e4/0x22c0
[ 162.117869][ T5810] __alloc_pages_slowpath+0x2fe/0xce0
[ 162.120213][ T5810] __alloc_frozen_pages_noprof+0x319/0x370
[ 162.122764][ T5810] alloc_pages_mpol+0x232/0x4a0
[ 162.125295][ T5810] alloc_pages_noprof+0xa9/0x190
[ 162.127397][ T5810] folio_alloc_noprof+0x1e/0x30
[ 162.129544][ T5810] filemap_alloc_folio_noprof+0xdf/0x470
[ 162.132025][ T5810] __filemap_get_folio+0x3f2/0xaf0
[ 162.134930][ T5810] iomap_write_begin+0x5d7/0x1c70
[ 162.137114][ T5810] iomap_file_buffered_write+0x441/0x9b0
[ 162.139576][ T5810] xfs_file_buffered_write+0x209/0x8a0
[ 162.142154][ T5810] vfs_write+0x54b/0xa90
[ 162.144545][ T5810] ksys_write+0x145/0x250
[ 162.146419][ T5810] do_syscall_64+0xfa/0x3b0
[ 162.148463][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.151044][ T5810] page last free pid 5810 tgid 5810 stack trace:
[ 162.154509][ T5810] free_unref_folios+0xdbd/0x1520
[ 162.156768][ T5810] folios_put_refs+0x559/0x640
[ 162.158909][ T5810] truncate_inode_pages_range+0x346/0xda0
[ 162.161431][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 162.164711][ T5810] evict+0x501/0x9c0
[ 162.166357][ T5810] evict_inodes+0x64c/0x6d0
[ 162.168282][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 162.170571][ T5810] kill_block_super+0x44/0x90
[ 162.172659][ T5810] xfs_kill_sb+0x15/0x50
[ 162.175248][ T5810] deactivate_locked_super+0xbc/0x130
[ 162.177814][ T5810] cleanup_mnt+0x425/0x4c0
[ 162.179889][ T5810] task_work_run+0x1d1/0x260
[ 162.182046][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 162.185378][ T5810] do_syscall_64+0x2bd/0x3b0
[ 162.187784][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.190450][ T5810] Modules linked in:
[ 162.192241][ T5810] CPU: 0 UID: 0 PID: 5810 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 162.192262][ T5810] Tainted: [B]=BAD_PAGE
[ 162.192266][ T5810] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 162.192275][ T5810] Call Trace:
[ 162.192282][ T5810]
[ 162.192288][ T5810] dump_stack_lvl+0x189/0x250
[ 162.192320][ T5810] ? __pfx_dump_stack_lvl+0x10/0x10
[ 162.192332][ T5810] ? __pfx_print_modules+0x10/0x10
[ 162.192350][ T5810] bad_page+0x180/0x1c0
[ 162.192361][ T5810] __free_frozen_pages+0xce2/0xd30
[ 162.192377][ T5810] __folio_put+0x21b/0x2c0
[ 162.192394][ T5810] ? __pfx___folio_put+0x10/0x10
[ 162.192409][ T5810] delete_from_page_cache_batch+0x84c/0x9b0
[ 162.192425][ T5810] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 162.192438][ T5810] ? __pfx_workingset_update_node+0x10/0x10
[ 162.192456][ T5810] ? truncate_cleanup_folio+0x34a/0x430
[ 162.192467][ T5810] truncate_inode_pages_range+0x28a/0xda0
[ 162.192480][ T5810] ? filemap_get_folios_tag+0xed/0x630
[ 162.192496][ T5810] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 162.192513][ T5810] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 162.192532][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 162.192545][ T5810] ? rcu_is_watching+0x15/0xb0
[ 162.192555][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 162.192569][ T5810] ? rcu_is_watching+0x15/0xb0
[ 162.192580][ T5810] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 162.192593][ T5810] xfs_fs_evict_inode+0x67/0x90
[ 162.192607][ T5810] evict+0x501/0x9c0
[ 162.192620][ T5810] ? __pfx_evict+0x10/0x10
[ 162.192630][ T5810] ? rcu_is_watching+0x15/0xb0
[ 162.192641][ T5810] ? do_raw_spin_unlock+0x4d/0x240
[ 162.192655][ T5810] evict_inodes+0x64c/0x6d0
[ 162.192669][ T5810] ? __pfx_evict_inodes+0x10/0x10
[ 162.192683][ T5810] ? xfs_fs_sync_fs+0x1cf/0x380
[ 162.192698][ T5810] generic_shutdown_super+0x9a/0x2c0
[ 162.192710][ T5810] kill_block_super+0x44/0x90
[ 162.192722][ T5810] xfs_kill_sb+0x15/0x50
[ 162.192733][ T5810] deactivate_locked_super+0xbc/0x130
[ 162.192750][ T5810] cleanup_mnt+0x425/0x4c0
[ 162.192766][ T5810] task_work_run+0x1d1/0x260
[ 162.192781][ T5810] ? __pfx_task_work_run+0x10/0x10
[ 162.192794][ T5810] ? __x64_sys_umount+0x122/0x160
[ 162.192805][ T5810] ? __pfx___x64_sys_umount+0x10/0x10
[ 162.192817][ T5810] ? rcu_is_watching+0x15/0xb0
[ 162.192828][ T5810] exit_to_user_mode_loop+0xec/0x110
[ 162.192843][ T5810] do_syscall_64+0x2bd/0x3b0
[ 162.192855][ T5810] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.192867][ T5810] ? clear_bhb_loop+0x60/0xb0
[ 162.192879][ T5810] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.192890][ T5810] RIP: 0033:0x7ff3f858fc57
[ 162.192903][ T5810] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 162.192913][ T5810] RSP: 002b:00007ffc70da9608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 162.192927][ T5810] RAX: 0000000000000000 RBX: 00007ff3f861089d RCX: 00007ff3f858fc57
[ 162.192935][ T5810] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc70da96c0
[ 162.192942][ T5810] RBP: 00007ffc70da96c0 R08: 0000000000000000 R09: 0000000000000000
[ 162.192949][ T5810] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc70daa750
[ 162.192982][ T5810] R13: 00007ff3f861089d R14: 0000000000027740 R15: 00007ffc70daa790
[ 162.192996][ T5810]
[ 162.366409][ T5810] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791