Warning: Permanently added '[localhost]:13223' (ED25519) to the list of known hosts.
2024/11/20 11:20:41 ignoring optional flag "sandboxArg"="0"
2024/11/20 11:20:42 parsed 1 programs
[  110.488972][ T5587] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  113.534125][ T5605] chnl_net:caif_netlink_parms(): no params data found
[  113.585057][ T5605] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.588009][ T5605] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.590860][ T5605] bridge_slave_0: entered allmulticast mode
[  113.595117][ T5605] bridge_slave_0: entered promiscuous mode
[  113.599059][ T5605] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.601981][ T5605] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.605614][ T5605] bridge_slave_1: entered allmulticast mode
[  113.608712][ T5605] bridge_slave_1: entered promiscuous mode
[  113.624226][ T5605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  113.629594][ T5605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  113.647353][ T5605] team0: Port device team_slave_0 added
[  113.651213][ T5605] team0: Port device team_slave_1 added
[  113.666381][ T5605] batman_adv: batadv0: Adding interface: batadv_slave_0
[  113.669135][ T5605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.681099][ T5605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  113.687268][ T5605] batman_adv: batadv0: Adding interface: batadv_slave_1
[  113.690075][ T5605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  113.700567][ T5605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  113.721980][ T5605] hsr_slave_0: entered promiscuous mode
[  113.724921][ T5605] hsr_slave_1: entered promiscuous mode
[  114.278249][ T5605] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  114.297384][ T5605] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  114.313760][ T5605] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  114.319299][ T5605] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  114.343463][ T5605] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.346200][ T5605] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.349096][ T5605] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.351850][ T5605] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.429096][ T5605] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.450056][ T5605] 8021q: adding VLAN 0 to HW filter on device team0
[  114.465036][ T1031] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.468374][ T1031] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.507379][ T1031] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.510176][ T1031] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.523479][ T1031] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.526374][ T1031] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.767343][ T5605] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.844311][ T5605] veth0_vlan: entered promiscuous mode
[  114.854879][ T5605] veth1_vlan: entered promiscuous mode
[  114.888995][ T5605] veth0_macvtap: entered promiscuous mode
[  114.897072][ T5605] veth1_macvtap: entered promiscuous mode
[  114.919813][ T5605] batman_adv: batadv0: Interface activated: batadv_slave_0
[  114.937662][ T5605] batman_adv: batadv0: Interface activated: batadv_slave_1
[  114.953856][ T5605] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.957252][ T5605] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.960417][ T5605] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.973096][ T5605] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.255275][   T46] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.337071][   T46] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.434893][   T46] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.516154][   T46] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  115.878213][   T30] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.881325][   T30] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.933296][   T30] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.939096][   T30] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.512330][   T46] bridge_slave_1: left allmulticast mode
[  117.514522][   T46] bridge_slave_1: left promiscuous mode
[  117.516594][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.533739][   T46] bridge_slave_0: left allmulticast mode
[  117.535880][   T46] bridge_slave_0: left promiscuous mode
[  117.538100][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.973771][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  117.978870][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  117.987651][   T46] bond0 (unregistering): Released all slaves
[  118.059879][   T46] hsr_slave_0: left promiscuous mode
[  118.070922][   T46] hsr_slave_1: left promiscuous mode
[  118.093984][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  118.096897][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  118.107514][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  118.110410][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  118.161807][   T46] veth1_macvtap: left promiscuous mode
[  118.182426][   T46] veth0_macvtap: left promiscuous mode
[  118.184739][   T46] veth1_vlan: left promiscuous mode
[  118.186853][   T46] veth0_vlan: left promiscuous mode
[  118.291775][ T4669] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  118.296386][ T4669] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  118.299755][ T4669] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  118.303645][ T4669] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  118.306714][ T4669] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  118.309564][ T4669] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  118.794983][   T46] team0 (unregistering): Port device team_slave_1 removed
[  118.836016][   T46] team0 (unregistering): Port device team_slave_0 removed
2024/11/20 11:20:57 executed programs: 0
[  121.100611][   T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  121.105797][   T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  121.109064][   T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  121.124191][   T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  121.128078][   T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  121.131052][   T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  121.475371][ T5793] chnl_net:caif_netlink_parms(): no params data found
[  121.546011][ T5793] bridge0: port 1(bridge_slave_0) entered blocking state
[  121.549346][ T5793] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.552007][ T5793] bridge_slave_0: entered allmulticast mode
[  121.563809][ T5793] bridge_slave_0: entered promiscuous mode
[  121.567456][ T5793] bridge0: port 2(bridge_slave_1) entered blocking state
[  121.570178][ T5793] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.587855][ T5793] bridge_slave_1: entered allmulticast mode
[  121.602624][ T5793] bridge_slave_1: entered promiscuous mode
[  121.624742][ T5793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  121.629546][ T5793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  121.668265][ T5793] team0: Port device team_slave_0 added
[  121.683034][ T5793] team0: Port device team_slave_1 added
[  121.705319][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_0
[  121.707889][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  121.733188][ T5793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  121.743595][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_1
[  121.746126][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  121.773019][ T5793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  121.830645][ T5793] hsr_slave_0: entered promiscuous mode
[  121.834286][ T5793] hsr_slave_1: entered promiscuous mode
[  122.137593][ T5793] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  122.157236][ T5793] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  122.164348][ T5793] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  122.176845][ T5793] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  122.201629][ T5793] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.204714][ T5793] bridge0: port 2(bridge_slave_1) entered forwarding state
[  122.208265][ T5793] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.210838][ T5793] bridge0: port 1(bridge_slave_0) entered forwarding state
[  122.244436][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.247877][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.321380][ T5793] 8021q: adding VLAN 0 to HW filter on device bond0
[  122.344104][ T5793] 8021q: adding VLAN 0 to HW filter on device team0
[  122.364257][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.366948][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  122.370611][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.373329][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  122.601092][ T5793] 8021q: adding VLAN 0 to HW filter on device batadv0
[  122.626759][ T5793] veth0_vlan: entered promiscuous mode
[  122.637203][ T5793] veth1_vlan: entered promiscuous mode
[  122.659655][ T5793] veth0_macvtap: entered promiscuous mode
[  122.667266][ T5793] veth1_macvtap: entered promiscuous mode
[  122.678512][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_0
[  122.687439][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_1
[  122.695623][ T5793] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  122.698915][ T5793] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  122.705041][ T5793] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  122.708373][ T5793] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  122.767264][ T1036] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.770462][ T1036] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.798570][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  122.803353][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  123.058424][ T5835] loop0: detected capacity change from 0 to 32768
[  123.083964][ T5835] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  123.137851][ T5835] XFS (loop0): Ending clean mount
[  123.182444][   T48] Bluetooth: hci0: command tx timeout
[  123.251340][ T5793] BUG: Bad page state in process syz-executor  pfn:54c01
[  123.254824][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x54c01
[  123.259122][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  123.265144][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  123.269003][ T5793] raw: 04fff00000000000 ffffea0001530001 ffffffffffffffff ffffffff00000000
[  123.274214][ T5793] raw: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  123.277506][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  123.280905][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  123.288117][ T5793] head: 04fff00000000000 ffffea0001530001 ffffffffffffffff ffffffff00000000
[  123.291491][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  123.295694][ T5793] page dumped because: nonzero pincount
[  123.297821][ T5793] page_owner tracks the page as allocated
[  123.300215][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5835, tgid 5834 (syz.0.15), ts 123151942771, free_ts 117023005490
[  123.310370][ T5793]  post_alloc_hook+0x1f3/0x230
[  123.312718][ T5793]  get_page_from_freelist+0x303f/0x3190
[  123.315023][ T5793]  __alloc_pages_noprof+0x292/0x710
[  123.317177][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  123.319331][ T5793]  folio_alloc_noprof+0x128/0x180
[  123.321292][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  123.325576][ T5793]  __filemap_get_folio+0x446/0xbd0
[  123.327642][ T5793]  iomap_write_begin+0x52a/0x16f0
[  123.329573][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  123.331795][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  123.335029][ T5793]  vfs_write+0xaeb/0xd30
[  123.336718][ T5793]  ksys_write+0x183/0x2b0
[  123.338409][ T5793]  do_syscall_64+0xf3/0x230
[  123.340790][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.346435][ T5793] page last free pid 79 tgid 79 stack trace:
[  123.348782][ T5793]  free_unref_folios+0xf12/0x18d0
[  123.350706][ T5793]  shrink_folio_list+0x2d3d/0x8cc0
[  123.353176][ T5793]  evict_folios+0x549b/0x7b50
[  123.355093][ T5793]  try_to_shrink_lruvec+0x9ab/0xbb0
[  123.357353][ T5793]  shrink_one+0x3b9/0x850
[  123.359066][ T5793]  shrink_node+0x3791/0x3e20
[  123.360867][ T5793]  kswapd+0x1ca3/0x3700
[  123.363756][ T5793]  kthread+0x2f0/0x390
[  123.365403][ T5793]  ret_from_fork+0x4b/0x80
[  123.367138][ T5793]  ret_from_fork_asm+0x1a/0x30
[  123.369115][ T5793] Modules linked in:
[  123.370652][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Not tainted 6.12.0-rc6-syzkaller #0
[  123.374098][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.378153][ T5793] Call Trace:
[  123.379520][ T5793]  <TASK>
[  123.380715][ T5793]  dump_stack_lvl+0x241/0x360
[  123.382552][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.384651][ T5793]  ? __pfx_print_modules+0x10/0x10
[  123.386617][ T5793]  ? percpu_ref_put+0x19/0x180
[  123.388496][ T5793]  bad_page+0x176/0x1d0
[  123.390105][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  123.392156][ T5793]  free_unref_page+0x7b2/0xf20
[  123.393985][ T5793]  __folio_put+0x2c7/0x440
[  123.395697][ T5793]  ? __pfx___folio_put+0x10/0x10
[  123.397564][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  123.399608][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  123.401564][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  123.403792][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  123.406245][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  123.408452][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  123.410733][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  123.412901][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  123.415118][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  123.417126][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  123.419176][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  123.421595][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  123.423656][ T5793]  ? _raw_spin_unlock_irq+0x23/0x50
[  123.425606][ T5793]  ? lockdep_hardirqs_on+0x99/0x150
[  123.427632][ T5793]  evict+0x4fd/0x9b0
[  123.429182][ T5793]  ? __pfx_evict+0x10/0x10
[  123.430956][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  123.432805][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  123.434636][ T5793]  evict_inodes+0x6f6/0x790
[  123.436369][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  123.438354][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  123.440227][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  123.442108][ T5793]  kill_block_super+0x44/0x90
[  123.443951][ T5793]  xfs_kill_sb+0x15/0x50
[  123.445551][ T5793]  deactivate_locked_super+0xc4/0x130
[  123.447835][ T5793]  cleanup_mnt+0x41f/0x4b0
[  123.449521][ T5793]  ? lockdep_hardirqs_on+0x99/0x150
[  123.451482][ T5793]  task_work_run+0x24f/0x310
[  123.453286][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  123.455318][ T5793]  ? __x64_sys_umount+0x123/0x170
[  123.457195][ T5793]  ? syscall_exit_to_user_mode+0xa3/0x370
[  123.459384][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  123.461502][ T5793]  do_syscall_64+0x100/0x230
[  123.463293][ T5793]  ? clear_bhb_loop+0x35/0x90
[  123.465093][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.467325][ T5793] RIP: 0033:0x7f451fb7fa47
[  123.469062][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  123.476628][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  123.480113][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  123.483208][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  123.486357][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  123.489400][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  123.492485][ T5793] R13: 00007f451fbf15fc R14: 000000000001df4b R15: 00007ffe39c14620
[  123.495401][ T5793]  </TASK>
[  123.505315][ T5793] Disabling lock debugging due to kernel taint
[  123.507737][ T5793] BUG: Bad page state in process syz-executor  pfn:54c00
[  123.510384][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x54c00
[  123.516696][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  123.520017][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  123.524523][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  123.527873][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  123.531149][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  123.535325][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  123.538631][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  123.541893][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  123.546024][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  123.548807][ T5793] page_owner tracks the page as allocated
[  123.550994][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5835, tgid 5834 (syz.0.15), ts 123151942771, free_ts 117002020712
[  123.560379][ T5793]  post_alloc_hook+0x1f3/0x230
[  123.562455][ T5793]  get_page_from_freelist+0x303f/0x3190
[  123.564594][ T5793]  __alloc_pages_noprof+0x292/0x710
[  123.566560][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  123.568583][ T5793]  folio_alloc_noprof+0x128/0x180
[  123.570612][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  123.573452][ T5793]  __filemap_get_folio+0x446/0xbd0
[  123.575403][ T5793]  iomap_write_begin+0x52a/0x16f0
[  123.577262][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  123.579548][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  123.581745][ T5793]  vfs_write+0xaeb/0xd30
[  123.586565][ T5793]  ksys_write+0x183/0x2b0
[  123.588249][ T5793]  do_syscall_64+0xf3/0x230
[  123.590011][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.593238][ T5793] page last free pid 79 tgid 79 stack trace:
[  123.595468][ T5793]  free_unref_folios+0xf12/0x18d0
[  123.597339][ T5793]  shrink_folio_list+0x2d3d/0x8cc0
[  123.599231][ T5793]  evict_folios+0x549b/0x7b50
[  123.601000][ T5793]  try_to_shrink_lruvec+0x9ab/0xbb0
[  123.604025][ T5793]  shrink_one+0x3b9/0x850
[  123.605688][ T5793]  shrink_node+0x3791/0x3e20
[  123.607423][ T5793]  kswapd+0x1ca3/0x3700
[  123.608920][ T5793]  kthread+0x2f0/0x390
[  123.610492][ T5793]  ret_from_fork+0x4b/0x80
[  123.612923][ T5793]  ret_from_fork_asm+0x1a/0x30
[  123.614764][ T5793] Modules linked in:
[  123.616231][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  123.620146][ T5793] Tainted: [B]=BAD_PAGE
[  123.621640][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.625666][ T5793] Call Trace:
[  123.626967][ T5793]  <TASK>
[  123.628101][ T5793]  dump_stack_lvl+0x241/0x360
[  123.629956][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.632018][ T5793]  ? __pfx_print_modules+0x10/0x10
[  123.634002][ T5793]  bad_page+0x176/0x1d0
[  123.635643][ T5793]  free_unref_page+0xed0/0xf20
[  123.637556][ T5793]  __folio_put+0x2c7/0x440
[  123.639251][ T5793]  ? __pfx___folio_put+0x10/0x10
[  123.641123][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  123.643051][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  123.644888][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  123.647087][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  123.649442][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  123.651582][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  123.653768][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  123.655797][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  123.657911][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  123.660153][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  123.662291][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  123.664667][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  123.666555][ T5793]  ? _raw_spin_unlock_irq+0x23/0x50
[  123.668480][ T5793]  ? lockdep_hardirqs_on+0x99/0x150
[  123.670405][ T5793]  evict+0x4fd/0x9b0
[  123.671841][ T5793]  ? __pfx_evict+0x10/0x10
[  123.673464][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  123.675361][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  123.677249][ T5793]  evict_inodes+0x6f6/0x790
[  123.678982][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  123.680833][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  123.682655][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  123.684597][ T5793]  kill_block_super+0x44/0x90
[  123.686368][ T5793]  xfs_kill_sb+0x15/0x50
[  123.687927][ T5793]  deactivate_locked_super+0xc4/0x130
[  123.689892][ T5793]  cleanup_mnt+0x41f/0x4b0
[  123.691541][ T5793]  ? lockdep_hardirqs_on+0x99/0x150
[  123.693648][ T5793]  task_work_run+0x24f/0x310
[  123.695679][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  123.697916][ T5793]  ? __x64_sys_umount+0x123/0x170
[  123.700078][ T5793]  ? syscall_exit_to_user_mode+0xa3/0x370
[  123.702574][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  123.705034][ T5793]  do_syscall_64+0x100/0x230
[  123.706894][ T5793]  ? clear_bhb_loop+0x35/0x90
[  123.708643][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.710896][ T5793] RIP: 0033:0x7f451fb7fa47
[  123.712524][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  123.719517][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  123.722632][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  123.725677][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  123.728777][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  123.731693][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  123.734557][ T5793] R13: 00007f451fbf15fc R14: 000000000001df4b R15: 00007ffe39c14620
[  123.737503][ T5793]  </TASK>
[  123.747578][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  123.946915][ T5846] loop0: detected capacity change from 0 to 32768
[  123.966029][ T5846] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  123.987686][ T5846] XFS (loop0): Ending clean mount
[  124.031445][ T5793] BUG: Bad page state in process syz-executor  pfn:50201
[  124.034445][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x50201
[  124.037695][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  124.040959][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  124.045188][ T5793] raw: 04fff00000000000 ffffea0001408001 ffffffffffffffff ffffffff00000000
[  124.048203][ T5793] raw: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  124.051388][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  124.056140][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  124.059354][ T5793] head: 04fff00000000000 ffffea0001408001 ffffffffffffffff ffffffff00000000
[  124.065298][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  124.068561][ T5793] page dumped because: nonzero pincount
[  124.070734][ T5793] page_owner tracks the page as allocated
[  124.075309][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5846, tgid 5845 (syz.0.16), ts 123994600994, free_ts 123747208525
[  124.084474][ T5793]  post_alloc_hook+0x1f3/0x230
[  124.086391][ T5793]  get_page_from_freelist+0x303f/0x3190
[  124.088831][ T5793]  __alloc_pages_noprof+0x292/0x710
[  124.091020][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  124.094202][ T5793]  folio_alloc_noprof+0x128/0x180
[  124.096239][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  124.098245][ T5793]  __filemap_get_folio+0x446/0xbd0
[  124.100220][ T5793]  iomap_write_begin+0x52a/0x16f0
[  124.101974][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  124.104618][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  124.106702][ T5793]  vfs_write+0xaeb/0xd30
[  124.108275][ T5793]  ksys_write+0x183/0x2b0
[  124.109923][ T5793]  do_syscall_64+0xf3/0x230
[  124.111648][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.114978][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  124.117383][ T5793]  free_unref_folios+0xf12/0x18d0
[  124.119365][ T5793]  folios_put_refs+0x76c/0x860
[  124.121164][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  124.123872][ T5793]  evict+0x4fd/0x9b0
[  124.125418][ T5793]  evict_inodes+0x6f6/0x790
[  124.127169][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  124.129136][ T5793]  kill_block_super+0x44/0x90
[  124.131003][ T5793]  xfs_kill_sb+0x15/0x50
[  124.133545][ T5793]  deactivate_locked_super+0xc4/0x130
[  124.135608][ T5793]  cleanup_mnt+0x41f/0x4b0
[  124.137303][ T5793]  task_work_run+0x24f/0x310
[  124.138814][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  124.140714][ T5793]  do_syscall_64+0x100/0x230
[  124.144586][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.146930][ T5793] Modules linked in:
[  124.148536][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  124.152270][ T5793] Tainted: [B]=BAD_PAGE
[  124.153760][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.157815][ T5793] Call Trace:
[  124.159082][ T5793]  <TASK>
[  124.160222][ T5793]  dump_stack_lvl+0x241/0x360
[  124.162057][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.164109][ T5793]  ? __pfx_print_modules+0x10/0x10
[  124.166114][ T5793]  ? percpu_ref_put+0x19/0x180
[  124.168225][ T5793]  bad_page+0x176/0x1d0
[  124.169861][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  124.171934][ T5793]  free_unref_page+0x7b2/0xf20
[  124.173792][ T5793]  __folio_put+0x2c7/0x440
[  124.175547][ T5793]  ? __pfx___folio_put+0x10/0x10
[  124.177517][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  124.179417][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  124.181396][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  124.183689][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  124.186177][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  124.188518][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  124.190906][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  124.193011][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  124.195275][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  124.197399][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  124.199559][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  124.201766][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  124.204192][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  124.206090][ T5793]  ? rcu_is_watching+0x15/0xb0
[  124.207923][ T5793]  evict+0x4fd/0x9b0
[  124.209409][ T5793]  ? __pfx_evict+0x10/0x10
[  124.211150][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  124.213105][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  124.215075][ T5793]  evict_inodes+0x6f6/0x790
[  124.216822][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  124.218791][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  124.220617][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  124.222661][ T5793]  kill_block_super+0x44/0x90
[  124.224493][ T5793]  xfs_kill_sb+0x15/0x50
[  124.226110][ T5793]  deactivate_locked_super+0xc4/0x130
[  124.228174][ T5793]  cleanup_mnt+0x41f/0x4b0
[  124.229932][ T5793]  task_work_run+0x24f/0x310
[  124.231707][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  124.233645][ T5793]  ? __x64_sys_umount+0x123/0x170
[  124.235659][ T5793]  ? rcu_is_watching+0x15/0xb0
[  124.237441][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  124.239530][ T5793]  do_syscall_64+0x100/0x230
[  124.241246][ T5793]  ? clear_bhb_loop+0x35/0x90
[  124.243003][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.245248][ T5793] RIP: 0033:0x7f451fb7fa47
[  124.246896][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  124.253286][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  124.256063][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  124.258726][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  124.261390][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  124.264481][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  124.267562][ T5793] R13: 00007f451fbf15fc R14: 000000000001e320 R15: 00007ffe39c14620
[  124.270559][ T5793]  </TASK>
[  124.280567][ T5793] BUG: Bad page state in process syz-executor  pfn:50200
[  124.284736][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50200
[  124.288365][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  124.291625][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  124.296603][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  124.299943][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  124.305131][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  124.308439][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  124.311730][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  124.315911][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  124.319300][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  124.322536][ T5793] page_owner tracks the page as allocated
[  124.324756][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5846, tgid 5845 (syz.0.16), ts 123994600994, free_ts 123747208525
[  124.334301][ T5793]  post_alloc_hook+0x1f3/0x230
[  124.336197][ T5793]  get_page_from_freelist+0x303f/0x3190
[  124.338357][ T5793]  __alloc_pages_noprof+0x292/0x710
[  124.340537][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  124.343437][ T5793]  folio_alloc_noprof+0x128/0x180
[  124.345404][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  124.347523][ T5793]  __filemap_get_folio+0x446/0xbd0
[  124.349437][ T5793]  iomap_write_begin+0x52a/0x16f0
[  124.351318][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  124.354266][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  124.356420][ T5793]  vfs_write+0xaeb/0xd30
[  124.358044][ T5793]  ksys_write+0x183/0x2b0
[  124.359715][ T5793]  do_syscall_64+0xf3/0x230
[  124.361448][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.364995][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  124.367480][ T5793]  free_unref_folios+0xf12/0x18d0
[  124.369393][ T5793]  folios_put_refs+0x76c/0x860
[  124.371228][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  124.374008][ T5793]  evict+0x4fd/0x9b0
[  124.375503][ T5793]  evict_inodes+0x6f6/0x790
[  124.377199][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  124.379234][ T5793]  kill_block_super+0x44/0x90
[  124.380983][ T5793]  xfs_kill_sb+0x15/0x50
[  124.384788][ T5793]  deactivate_locked_super+0xc4/0x130
[  124.386830][ T5793]  cleanup_mnt+0x41f/0x4b0
[  124.388481][ T5793]  task_work_run+0x24f/0x310
[  124.390271][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  124.392927][ T5793]  do_syscall_64+0x100/0x230
[  124.394735][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.396803][ T5793] Modules linked in:
[  124.398150][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  124.401685][ T5793] Tainted: [B]=BAD_PAGE
[  124.403157][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.407085][ T5793] Call Trace:
[  124.408331][ T5793]  <TASK>
[  124.409461][ T5793]  dump_stack_lvl+0x241/0x360
[  124.411190][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.413145][ T5793]  ? __pfx_print_modules+0x10/0x10
[  124.415018][ T5793]  bad_page+0x176/0x1d0
[  124.416579][ T5793]  free_unref_page+0xed0/0xf20
[  124.418390][ T5793]  __folio_put+0x2c7/0x440
[  124.420012][ T5793]  ? __pfx___folio_put+0x10/0x10
[  124.422055][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  124.424016][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  124.425872][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  124.428075][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  124.430490][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  124.432496][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  124.434686][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  124.436709][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  124.438894][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  124.440888][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  124.442946][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  124.445147][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  124.447450][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  124.449349][ T5793]  ? rcu_is_watching+0x15/0xb0
[  124.451099][ T5793]  evict+0x4fd/0x9b0
[  124.452510][ T5793]  ? __pfx_evict+0x10/0x10
[  124.454102][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  124.456166][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  124.458366][ T5793]  evict_inodes+0x6f6/0x790
[  124.460103][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  124.462134][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  124.463915][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  124.466126][ T5793]  kill_block_super+0x44/0x90
[  124.467992][ T5793]  xfs_kill_sb+0x15/0x50
[  124.469487][ T5793]  deactivate_locked_super+0xc4/0x130
[  124.471432][ T5793]  cleanup_mnt+0x41f/0x4b0
[  124.473068][ T5793]  task_work_run+0x24f/0x310
[  124.474750][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  124.476546][ T5793]  ? __x64_sys_umount+0x123/0x170
[  124.478350][ T5793]  ? rcu_is_watching+0x15/0xb0
[  124.480064][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  124.481987][ T5793]  do_syscall_64+0x100/0x230
[  124.483626][ T5793]  ? clear_bhb_loop+0x35/0x90
[  124.485245][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.487366][ T5793] RIP: 0033:0x7f451fb7fa47
[  124.488980][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  124.495686][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  124.498690][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  124.501513][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  124.504507][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  124.507416][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  124.510355][ T5793] R13: 00007f451fbf15fc R14: 000000000001e320 R15: 00007ffe39c14620
[  124.513226][ T5793]  </TASK>
[  124.520410][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  124.699822][ T5856] loop0: detected capacity change from 0 to 32768
[  124.711416][ T5856] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  124.735280][ T5856] XFS (loop0): Ending clean mount
[  124.778171][ T5793] BUG: Bad page state in process syz-executor  pfn:4aa01
[  124.781026][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x4aa01
[  124.785889][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  124.789066][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  124.793454][ T5793] raw: 04fff00000000000 ffffea00012a8001 ffffffffffffffff ffffffff00000000
[  124.796825][ T5793] raw: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  124.799908][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  124.804026][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  124.807213][ T5793] head: 04fff00000000000 ffffea00012a8001 ffffffffffffffff ffffffff00000000
[  124.810360][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  124.813996][ T5793] page dumped because: nonzero pincount
[  124.816095][ T5793] page_owner tracks the page as allocated
[  124.818175][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5856, tgid 5855 (syz.0.17), ts 124740804218, free_ts 124519993940
[  124.829207][ T5793]  post_alloc_hook+0x1f3/0x230
[  124.831030][ T5793]  get_page_from_freelist+0x303f/0x3190
[  124.833527][ T5793]  __alloc_pages_noprof+0x292/0x710
[  124.835475][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  124.837525][ T5793]  folio_alloc_noprof+0x128/0x180
[  124.839456][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  124.841571][ T5793]  __filemap_get_folio+0x446/0xbd0
[  124.844800][ T5793]  iomap_write_begin+0x52a/0x16f0
[  124.846731][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  124.848829][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  124.850877][ T5793]  vfs_write+0xaeb/0xd30
[  124.853016][ T5793]  ksys_write+0x183/0x2b0
[  124.854645][ T5793]  do_syscall_64+0xf3/0x230
[  124.856398][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.858545][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  124.861048][ T5793]  free_unref_folios+0xf12/0x18d0
[  124.864605][ T5793]  folios_put_refs+0x76c/0x860
[  124.866446][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  124.868585][ T5793]  evict+0x4fd/0x9b0
[  124.870091][ T5793]  evict_inodes+0x6f6/0x790
[  124.871809][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  124.874296][ T5793]  kill_block_super+0x44/0x90
[  124.876704][ T5793]  xfs_kill_sb+0x15/0x50
[  124.878370][ T5793]  deactivate_locked_super+0xc4/0x130
[  124.880424][ T5793]  cleanup_mnt+0x41f/0x4b0
[  124.882811][ T5793]  task_work_run+0x24f/0x310
[  124.884624][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  124.886746][ T5793]  do_syscall_64+0x100/0x230
[  124.888516][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.891036][ T5793] Modules linked in:
[  124.892901][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  124.896860][ T5793] Tainted: [B]=BAD_PAGE
[  124.898457][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  124.902519][ T5793] Call Trace:
[  124.903843][ T5793]  <TASK>
[  124.905005][ T5793]  dump_stack_lvl+0x241/0x360
[  124.906806][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.908736][ T5793]  ? __pfx_print_modules+0x10/0x10
[  124.910662][ T5793]  ? percpu_ref_put+0x19/0x180
[  124.912449][ T5793]  bad_page+0x176/0x1d0
[  124.914057][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  124.916118][ T5793]  free_unref_page+0x7b2/0xf20
[  124.917983][ T5793]  __folio_put+0x2c7/0x440
[  124.919720][ T5793]  ? __pfx___folio_put+0x10/0x10
[  124.921565][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  124.923489][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  124.925494][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  124.927640][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  124.929931][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  124.932018][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  124.934218][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  124.936259][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  124.938517][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  124.940532][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  124.942765][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  124.945051][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  124.947481][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  124.949415][ T5793]  ? rcu_is_watching+0x15/0xb0
[  124.951287][ T5793]  evict+0x4fd/0x9b0
[  124.952768][ T5793]  ? __pfx_evict+0x10/0x10
[  124.954478][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  124.956361][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  124.958082][ T5793]  evict_inodes+0x6f6/0x790
[  124.959869][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  124.961776][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  124.963609][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  124.965583][ T5793]  kill_block_super+0x44/0x90
[  124.967370][ T5793]  xfs_kill_sb+0x15/0x50
[  124.969016][ T5793]  deactivate_locked_super+0xc4/0x130
[  124.971043][ T5793]  cleanup_mnt+0x41f/0x4b0
[  124.972782][ T5793]  task_work_run+0x24f/0x310
[  124.974577][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  124.976529][ T5793]  ? __x64_sys_umount+0x123/0x170
[  124.978484][ T5793]  ? rcu_is_watching+0x15/0xb0
[  124.980300][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  124.982353][ T5793]  do_syscall_64+0x100/0x230
[  124.984155][ T5793]  ? clear_bhb_loop+0x35/0x90
[  124.986010][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.988220][ T5793] RIP: 0033:0x7f451fb7fa47
[  124.989936][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  124.997137][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  125.000303][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  125.003243][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  125.006209][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  125.009174][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  125.012247][ T5793] R13: 00007f451fbf15fc R14: 000000000001e612 R15: 00007ffe39c14620
[  125.015319][ T5793]  </TASK>
[  125.020935][ T5793] BUG: Bad page state in process syz-executor  pfn:4aa00
[  125.024975][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4aa00
[  125.028275][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  125.031437][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  125.035979][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  125.039243][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  125.042896][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  125.046273][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  125.049604][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  125.053833][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  125.057087][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  125.059744][ T5793] page_owner tracks the page as allocated
[  125.061957][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5856, tgid 5855 (syz.0.17), ts 124740804218, free_ts 124519993940
[  125.071110][ T5793]  post_alloc_hook+0x1f3/0x230
[  125.073376][ T5793]  get_page_from_freelist+0x303f/0x3190
[  125.075435][ T5793]  __alloc_pages_noprof+0x292/0x710
[  125.077330][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  125.079823][ T5793]  folio_alloc_noprof+0x128/0x180
[  125.081726][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  125.084360][ T5793]  __filemap_get_folio+0x446/0xbd0
[  125.086354][ T5793]  iomap_write_begin+0x52a/0x16f0
[  125.088482][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  125.091054][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  125.094290][ T5793]  vfs_write+0xaeb/0xd30
[  125.096202][ T5793]  ksys_write+0x183/0x2b0
[  125.097866][ T5793]  do_syscall_64+0xf3/0x230
[  125.099606][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.101871][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  125.104734][ T5793]  free_unref_folios+0xf12/0x18d0
[  125.106727][ T5793]  folios_put_refs+0x76c/0x860
[  125.108524][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  125.110859][ T5793]  evict+0x4fd/0x9b0
[  125.113040][ T5793]  evict_inodes+0x6f6/0x790
[  125.114762][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  125.116679][ T5793]  kill_block_super+0x44/0x90
[  125.118435][ T5793]  xfs_kill_sb+0x15/0x50
[  125.120051][ T5793]  deactivate_locked_super+0xc4/0x130
[  125.123560][ T5793]  cleanup_mnt+0x41f/0x4b0
[  125.125456][ T5793]  task_work_run+0x24f/0x310
[  125.127362][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  125.129383][ T5793]  do_syscall_64+0x100/0x230
[  125.131101][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.134226][ T5793] Modules linked in:
[  125.135717][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  125.139553][ T5793] Tainted: [B]=BAD_PAGE
[  125.141068][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.145154][ T5793] Call Trace:
[  125.146620][ T5793]  <TASK>
[  125.147977][ T5793]  dump_stack_lvl+0x241/0x360
[  125.149931][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.151922][ T5793]  ? __pfx_print_modules+0x10/0x10
[  125.153696][ T5793]  bad_page+0x176/0x1d0
[  125.155256][ T5793]  free_unref_page+0xed0/0xf20
[  125.157037][ T5793]  __folio_put+0x2c7/0x440
[  125.158704][ T5793]  ? __pfx___folio_put+0x10/0x10
[  125.160433][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  125.162349][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  125.164261][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  125.166433][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  125.168943][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  125.171049][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  125.173235][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  125.175219][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  125.177364][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  125.179419][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  125.181398][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  125.183622][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  125.185854][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  125.187470][ T5793]  ? rcu_is_watching+0x15/0xb0
[  125.189017][ T5793]  evict+0x4fd/0x9b0
[  125.190452][ T5793]  ? __pfx_evict+0x10/0x10
[  125.192063][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  125.193945][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  125.195778][ T5793]  evict_inodes+0x6f6/0x790
[  125.197451][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  125.199447][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  125.201435][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  125.203779][ T5793]  kill_block_super+0x44/0x90
[  125.205878][ T5793]  xfs_kill_sb+0x15/0x50
[  125.207762][ T5793]  deactivate_locked_super+0xc4/0x130
[  125.209727][ T5793]  cleanup_mnt+0x41f/0x4b0
[  125.211340][ T5793]  task_work_run+0x24f/0x310
[  125.213024][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  125.214878][ T5793]  ? __x64_sys_umount+0x123/0x170
[  125.216675][ T5793]  ? rcu_is_watching+0x15/0xb0
[  125.218439][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  125.220533][ T5793]  do_syscall_64+0x100/0x230
[  125.222246][ T5793]  ? clear_bhb_loop+0x35/0x90
[  125.224008][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.226149][ T5793] RIP: 0033:0x7f451fb7fa47
[  125.227792][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  125.234778][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  125.237831][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  125.240876][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  125.243772][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  125.246674][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  125.249489][ T5793] R13: 00007f451fbf15fc R14: 000000000001e612 R15: 00007ffe39c14620
[  125.252364][ T5793]  </TASK>
[  125.258638][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  125.262392][   T48] Bluetooth: hci0: command tx timeout
[  125.450979][ T5866] loop0: detected capacity change from 0 to 32768
[  125.460516][ T5866] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  125.489897][ T5866] XFS (loop0): Ending clean mount
[  125.532548][ T5793] BUG: Bad page state in process syz-executor  pfn:4a601
[  125.535219][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x4a601
[  125.538722][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  125.542027][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  125.546362][ T5793] raw: 04fff00000000000 ffffea0001298001 ffffffffffffffff ffffffff00000000
[  125.549533][ T5793] raw: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  125.553698][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  125.556893][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  125.560177][ T5793] head: 04fff00000000000 ffffea0001298001 ffffffffffffffff ffffffff00000000
[  125.563925][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  125.567118][ T5793] page dumped because: nonzero pincount
[  125.569118][ T5793] page_owner tracks the page as allocated
[  125.571155][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5866, tgid 5865 (syz.0.18), ts 125496541014, free_ts 125257934266
[  125.581732][ T5793]  post_alloc_hook+0x1f3/0x230
[  125.584401][ T5793]  get_page_from_freelist+0x303f/0x3190
[  125.586442][ T5793]  __alloc_pages_noprof+0x292/0x710
[  125.588277][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  125.590262][ T5793]  folio_alloc_noprof+0x128/0x180
[  125.593219][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  125.595801][ T5793]  __filemap_get_folio+0x446/0xbd0
[  125.597883][ T5793]  iomap_write_begin+0x52a/0x16f0
[  125.599809][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  125.602013][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  125.604639][ T5793]  vfs_write+0xaeb/0xd30
[  125.606372][ T5793]  ksys_write+0x183/0x2b0
[  125.608001][ T5793]  do_syscall_64+0xf3/0x230
[  125.609761][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.611945][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  125.615149][ T5793]  free_unref_folios+0xf12/0x18d0
[  125.617086][ T5793]  folios_put_refs+0x76c/0x860
[  125.618898][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  125.620989][ T5793]  evict+0x4fd/0x9b0
[  125.622972][ T5793]  evict_inodes+0x6f6/0x790
[  125.624689][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  125.626701][ T5793]  kill_block_super+0x44/0x90
[  125.628498][ T5793]  xfs_kill_sb+0x15/0x50
[  125.630120][ T5793]  deactivate_locked_super+0xc4/0x130
[  125.633055][ T5793]  cleanup_mnt+0x41f/0x4b0
[  125.634805][ T5793]  task_work_run+0x24f/0x310
[  125.636649][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  125.638828][ T5793]  do_syscall_64+0x100/0x230
[  125.640657][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.643383][ T5793] Modules linked in:
[  125.645081][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  125.649407][ T5793] Tainted: [B]=BAD_PAGE
[  125.650980][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.655019][ T5793] Call Trace:
[  125.656317][ T5793]  <TASK>
[  125.657538][ T5793]  dump_stack_lvl+0x241/0x360
[  125.659412][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.661408][ T5793]  ? __pfx_print_modules+0x10/0x10
[  125.663363][ T5793]  ? percpu_ref_put+0x19/0x180
[  125.665318][ T5793]  bad_page+0x176/0x1d0
[  125.666981][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  125.669076][ T5793]  free_unref_page+0x7b2/0xf20
[  125.670972][ T5793]  __folio_put+0x2c7/0x440
[  125.672713][ T5793]  ? __pfx___folio_put+0x10/0x10
[  125.674612][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  125.676584][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  125.678598][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  125.681191][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  125.683873][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  125.685993][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  125.688276][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  125.690450][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  125.692697][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  125.694949][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  125.697172][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  125.699709][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  125.702476][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  125.704802][ T5793]  ? rcu_is_watching+0x15/0xb0
[  125.706667][ T5793]  evict+0x4fd/0x9b0
[  125.708189][ T5793]  ? __pfx_evict+0x10/0x10
[  125.709906][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  125.711871][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  125.713928][ T5793]  evict_inodes+0x6f6/0x790
[  125.715999][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  125.718356][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  125.720340][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  125.722455][ T5793]  kill_block_super+0x44/0x90
[  125.724373][ T5793]  xfs_kill_sb+0x15/0x50
[  125.725877][ T5793]  deactivate_locked_super+0xc4/0x130
[  125.728017][ T5793]  cleanup_mnt+0x41f/0x4b0
[  125.729789][ T5793]  task_work_run+0x24f/0x310
[  125.731602][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  125.733689][ T5793]  ? __x64_sys_umount+0x123/0x170
[  125.735674][ T5793]  ? rcu_is_watching+0x15/0xb0
[  125.737504][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  125.739604][ T5793]  do_syscall_64+0x100/0x230
[  125.741359][ T5793]  ? clear_bhb_loop+0x35/0x90
[  125.743161][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.745582][ T5793] RIP: 0033:0x7f451fb7fa47
[  125.747306][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  125.754880][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  125.758151][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  125.761191][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  125.764948][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  125.767974][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  125.770941][ T5793] R13: 00007f451fbf15fc R14: 000000000001e8fe R15: 00007ffe39c14620
[  125.773938][ T5793]  </TASK>
[  125.782172][ T5793] BUG: Bad page state in process syz-executor  pfn:4a600
[  125.785200][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4a600
[  125.788580][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  125.791848][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  125.797543][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  125.800841][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  125.804558][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  125.807797][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  125.811047][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  125.815151][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  125.818495][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  125.821234][ T5793] page_owner tracks the page as allocated
[  125.824205][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5866, tgid 5865 (syz.0.18), ts 125496541014, free_ts 125257934266
[  125.833604][ T5793]  post_alloc_hook+0x1f3/0x230
[  125.835538][ T5793]  get_page_from_freelist+0x303f/0x3190
[  125.837736][ T5793]  __alloc_pages_noprof+0x292/0x710
[  125.839781][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  125.841908][ T5793]  folio_alloc_noprof+0x128/0x180
[  125.845403][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  125.847443][ T5793]  __filemap_get_folio+0x446/0xbd0
[  125.849430][ T5793]  iomap_write_begin+0x52a/0x16f0
[  125.851361][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  125.854221][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  125.856324][ T5793]  vfs_write+0xaeb/0xd30
[  125.857936][ T5793]  ksys_write+0x183/0x2b0
[  125.859617][ T5793]  do_syscall_64+0xf3/0x230
[  125.861322][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.864136][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  125.866495][ T5793]  free_unref_folios+0xf12/0x18d0
[  125.868379][ T5793]  folios_put_refs+0x76c/0x860
[  125.870117][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  125.872938][ T5793]  evict+0x4fd/0x9b0
[  125.874393][ T5793]  evict_inodes+0x6f6/0x790
[  125.876002][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  125.877819][ T5793]  kill_block_super+0x44/0x90
[  125.879503][ T5793]  xfs_kill_sb+0x15/0x50
[  125.881027][ T5793]  deactivate_locked_super+0xc4/0x130
[  125.884043][ T5793]  cleanup_mnt+0x41f/0x4b0
[  125.885644][ T5793]  task_work_run+0x24f/0x310
[  125.887342][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  125.889384][ T5793]  do_syscall_64+0x100/0x230
[  125.891153][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.893957][ T5793] Modules linked in:
[  125.895369][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  125.899125][ T5793] Tainted: [B]=BAD_PAGE
[  125.900563][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  125.904299][ T5793] Call Trace:
[  125.905495][ T5793]  <TASK>
[  125.906721][ T5793]  dump_stack_lvl+0x241/0x360
[  125.908426][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.910365][ T5793]  ? __pfx_print_modules+0x10/0x10
[  125.912253][ T5793]  bad_page+0x176/0x1d0
[  125.913767][ T5793]  free_unref_page+0xed0/0xf20
[  125.915439][ T5793]  __folio_put+0x2c7/0x440
[  125.917006][ T5793]  ? __pfx___folio_put+0x10/0x10
[  125.918790][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  125.920575][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  125.922499][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  125.924577][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  125.926825][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  125.928758][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  125.930923][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  125.932822][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  125.934927][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  125.936850][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  125.938860][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  125.940943][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  125.943170][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  125.944921][ T5793]  ? rcu_is_watching+0x15/0xb0
[  125.946614][ T5793]  evict+0x4fd/0x9b0
[  125.947962][ T5793]  ? __pfx_evict+0x10/0x10
[  125.949573][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  125.951407][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  125.953175][ T5793]  evict_inodes+0x6f6/0x790
[  125.954779][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  125.956539][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  125.958231][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  125.960078][ T5793]  kill_block_super+0x44/0x90
[  125.961838][ T5793]  xfs_kill_sb+0x15/0x50
[  125.963425][ T5793]  deactivate_locked_super+0xc4/0x130
[  125.965424][ T5793]  cleanup_mnt+0x41f/0x4b0
[  125.967015][ T5793]  task_work_run+0x24f/0x310
[  125.968607][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  125.970414][ T5793]  ? __x64_sys_umount+0x123/0x170
[  125.972180][ T5793]  ? rcu_is_watching+0x15/0xb0
[  125.973926][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  125.976060][ T5793]  do_syscall_64+0x100/0x230
[  125.977828][ T5793]  ? clear_bhb_loop+0x35/0x90
[  125.979697][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.981918][ T5793] RIP: 0033:0x7f451fb7fa47
[  125.983619][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  125.990709][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  125.993640][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  125.996484][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  125.999445][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  126.002289][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  126.005306][ T5793] R13: 00007f451fbf15fc R14: 000000000001e8fe R15: 00007ffe39c14620
[  126.008196][ T5793]  </TASK>
[  126.013264][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  126.194666][ T5876] loop0: detected capacity change from 0 to 32768
[  126.206747][ T5876] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  126.235736][ T5876] XFS (loop0): Ending clean mount
[  126.279309][ T5793] BUG: Bad page state in process syz-executor  pfn:57a01
[  126.281966][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x57a01
[  126.285902][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  126.289067][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  126.293272][ T5793] raw: 04fff00000000000 ffffea00015e8001 ffffffffffffffff ffffffff00000000
[  126.296417][ T5793] raw: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  126.299573][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  126.306519][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  126.310224][ T5793] head: 04fff00000000000 ffffea00015e8001 ffffffffffffffff ffffffff00000000
[  126.313875][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  126.317112][ T5793] page dumped because: nonzero pincount
[  126.319197][ T5793] page_owner tracks the page as allocated
[  126.321327][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5876, tgid 5875 (syz.0.19), ts 126241083065, free_ts 126012308444
2024/11/20 11:21:02 executed programs: 7
[  126.333643][ T5793]  post_alloc_hook+0x1f3/0x230
[  126.335469][ T5793]  get_page_from_freelist+0x303f/0x3190
[  126.337517][ T5793]  __alloc_pages_noprof+0x292/0x710
[  126.339493][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  126.341585][ T5793]  folio_alloc_noprof+0x128/0x180
[  126.344213][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  126.346421][ T5793]  __filemap_get_folio+0x446/0xbd0
[  126.348399][ T5793]  iomap_write_begin+0x52a/0x16f0
[  126.350287][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  126.353190][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  126.355276][ T5793]  vfs_write+0xaeb/0xd30
[  126.356889][ T5793]  ksys_write+0x183/0x2b0
[  126.358543][ T5793]  do_syscall_64+0xf3/0x230
[  126.360266][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.363052][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  126.365515][ T5793]  free_unref_folios+0xf12/0x18d0
[  126.367749][ T5793]  folios_put_refs+0x76c/0x860
[  126.369611][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  126.371773][ T5793]  evict+0x4fd/0x9b0
[  126.374023][ T5793]  evict_inodes+0x6f6/0x790
[  126.375832][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  126.377839][ T5793]  kill_block_super+0x44/0x90
[  126.379672][ T5793]  xfs_kill_sb+0x15/0x50
[  126.381300][ T5793]  deactivate_locked_super+0xc4/0x130
[  126.384423][ T5793]  cleanup_mnt+0x41f/0x4b0
[  126.386180][ T5793]  task_work_run+0x24f/0x310
[  126.387993][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  126.390204][ T5793]  do_syscall_64+0x100/0x230
[  126.391947][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.394977][ T5793] Modules linked in:
[  126.396472][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  126.400489][ T5793] Tainted: [B]=BAD_PAGE
[  126.402088][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.406216][ T5793] Call Trace:
[  126.407494][ T5793]  <TASK>
[  126.408625][ T5793]  dump_stack_lvl+0x241/0x360
[  126.410481][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.412486][ T5793]  ? __pfx_print_modules+0x10/0x10
[  126.414471][ T5793]  ? percpu_ref_put+0x19/0x180
[  126.416265][ T5793]  bad_page+0x176/0x1d0
[  126.417743][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  126.419835][ T5793]  free_unref_page+0x7b2/0xf20
[  126.421681][ T5793]  __folio_put+0x2c7/0x440
[  126.423480][ T5793]  ? __pfx___folio_put+0x10/0x10
[  126.425439][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  126.427467][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  126.429524][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  126.431841][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  126.434342][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  126.436521][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  126.438837][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  126.440980][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  126.443280][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  126.445478][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  126.447760][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  126.450066][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  126.452504][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  126.454528][ T5793]  ? rcu_is_watching+0x15/0xb0
[  126.456403][ T5793]  evict+0x4fd/0x9b0
[  126.457961][ T5793]  ? __pfx_evict+0x10/0x10
[  126.459735][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  126.461691][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  126.463658][ T5793]  evict_inodes+0x6f6/0x790
[  126.465378][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  126.467343][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  126.469254][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  126.471344][ T5793]  kill_block_super+0x44/0x90
[  126.473141][ T5793]  xfs_kill_sb+0x15/0x50
[  126.474863][ T5793]  deactivate_locked_super+0xc4/0x130
[  126.477149][ T5793]  cleanup_mnt+0x41f/0x4b0
[  126.479088][ T5793]  task_work_run+0x24f/0x310
[  126.481134][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  126.483411][ T5793]  ? __x64_sys_umount+0x123/0x170
[  126.485762][ T5793]  ? rcu_is_watching+0x15/0xb0
[  126.487946][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  126.490540][ T5793]  do_syscall_64+0x100/0x230
[  126.492402][ T5793]  ? clear_bhb_loop+0x35/0x90
[  126.494225][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.496518][ T5793] RIP: 0033:0x7f451fb7fa47
[  126.498244][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  126.505533][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  126.508583][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  126.511421][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  126.514388][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  126.517378][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  126.520344][ T5793] R13: 00007f451fbf15fc R14: 000000000001ebea R15: 00007ffe39c14620
[  126.523286][ T5793]  </TASK>
[  126.533843][ T5793] BUG: Bad page state in process syz-executor  pfn:57a00
[  126.536448][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x57a00
[  126.539816][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  126.556127][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  126.559965][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  126.575687][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  126.579029][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  126.582029][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  126.586717][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  126.589973][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  126.593771][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  126.596574][ T5793] page_owner tracks the page as allocated
[  126.598698][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5876, tgid 5875 (syz.0.19), ts 126241083065, free_ts 126012308444
[  126.607519][ T5793]  post_alloc_hook+0x1f3/0x230
[  126.609311][ T5793]  get_page_from_freelist+0x303f/0x3190
[  126.611238][ T5793]  __alloc_pages_noprof+0x292/0x710
[  126.613470][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  126.615853][ T5793]  folio_alloc_noprof+0x128/0x180
[  126.617700][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  126.619572][ T5793]  __filemap_get_folio+0x446/0xbd0
[  126.621229][ T5793]  iomap_write_begin+0x52a/0x16f0
[  126.623605][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  126.625622][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  126.627617][ T5793]  vfs_write+0xaeb/0xd30
[  126.629155][ T5793]  ksys_write+0x183/0x2b0
[  126.630758][ T5793]  do_syscall_64+0xf3/0x230
[  126.633427][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.635670][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  126.638034][ T5793]  free_unref_folios+0xf12/0x18d0
[  126.639985][ T5793]  folios_put_refs+0x76c/0x860
[  126.641647][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  126.644669][ T5793]  evict+0x4fd/0x9b0
[  126.646136][ T5793]  evict_inodes+0x6f6/0x790
[  126.647846][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  126.649851][ T5793]  kill_block_super+0x44/0x90
[  126.651549][ T5793]  xfs_kill_sb+0x15/0x50
[  126.653636][ T5793]  deactivate_locked_super+0xc4/0x130
[  126.655607][ T5793]  cleanup_mnt+0x41f/0x4b0
[  126.657130][ T5793]  task_work_run+0x24f/0x310
[  126.658729][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  126.660772][ T5793]  do_syscall_64+0x100/0x230
[  126.663216][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.665461][ T5793] Modules linked in:
[  126.666907][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  126.670411][ T5793] Tainted: [B]=BAD_PAGE
[  126.672000][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  126.675793][ T5793] Call Trace:
[  126.677117][ T5793]  <TASK>
[  126.678114][ T5793]  dump_stack_lvl+0x241/0x360
[  126.679615][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.681204][ T5793]  ? __pfx_print_modules+0x10/0x10
[  126.682806][ T5793]  bad_page+0x176/0x1d0
[  126.684067][ T5793]  free_unref_page+0xed0/0xf20
[  126.685737][ T5793]  __folio_put+0x2c7/0x440
[  126.687240][ T5793]  ? __pfx___folio_put+0x10/0x10
[  126.689008][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  126.690788][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  126.692545][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  126.694571][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  126.696788][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  126.698797][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  126.700921][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  126.702764][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  126.704977][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  126.707023][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  126.709053][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  126.711217][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  126.713361][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  126.715106][ T5793]  ? rcu_is_watching+0x15/0xb0
[  126.716885][ T5793]  evict+0x4fd/0x9b0
[  126.718187][ T5793]  ? __pfx_evict+0x10/0x10
[  126.719761][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  126.721618][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  126.723636][ T5793]  evict_inodes+0x6f6/0x790
[  126.725409][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  126.727173][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  126.728836][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  126.730705][ T5793]  kill_block_super+0x44/0x90
[  126.732387][ T5793]  xfs_kill_sb+0x15/0x50
[  126.733892][ T5793]  deactivate_locked_super+0xc4/0x130
[  126.735677][ T5793]  cleanup_mnt+0x41f/0x4b0
[  126.737282][ T5793]  task_work_run+0x24f/0x310
[  126.738903][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  126.740770][ T5793]  ? __x64_sys_umount+0x123/0x170
[  126.742508][ T5793]  ? rcu_is_watching+0x15/0xb0
[  126.744034][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  126.746092][ T5793]  do_syscall_64+0x100/0x230
[  126.747779][ T5793]  ? clear_bhb_loop+0x35/0x90
[  126.749409][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.751517][ T5793] RIP: 0033:0x7f451fb7fa47
[  126.753110][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  126.759858][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  126.762576][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  126.765456][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  126.768327][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  126.771288][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  126.774125][ T5793] R13: 00007f451fbf15fc R14: 000000000001ebea R15: 00007ffe39c14620
[  126.776946][ T5793]  </TASK>
[  126.784354][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  126.961088][ T5886] loop0: detected capacity change from 0 to 32768
[  126.989885][ T5886] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  127.004552][ T5886] XFS (loop0): Ending clean mount
[  127.047629][ T5793] BUG: Bad page state in process syz-executor  pfn:58401
[  127.050220][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x58401
[  127.053995][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  127.057147][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  127.060759][ T5793] raw: 04fff00000000000 ffffea0001610001 ffffffffffffffff ffffffff00000000
[  127.065104][ T5793] raw: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  127.068193][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  127.071357][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  127.075438][ T5793] head: 04fff00000000000 ffffea0001610001 ffffffffffffffff ffffffff00000000
[  127.078633][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  127.081780][ T5793] page dumped because: nonzero pincount
[  127.084320][ T5793] page_owner tracks the page as allocated
[  127.086442][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5886, tgid 5885 (syz.0.20), ts 127010154149, free_ts 126783942765
[  127.104873][ T5793]  post_alloc_hook+0x1f3/0x230
[  127.106916][ T5793]  get_page_from_freelist+0x303f/0x3190
[  127.109037][ T5793]  __alloc_pages_noprof+0x292/0x710
[  127.111067][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  127.117496][ T5793]  folio_alloc_noprof+0x128/0x180
[  127.122999][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  127.126279][ T5793]  __filemap_get_folio+0x446/0xbd0
[  127.137802][ T5793]  iomap_write_begin+0x52a/0x16f0
[  127.145138][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  127.147436][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  127.149518][ T5793]  vfs_write+0xaeb/0xd30
[  127.151263][ T5793]  ksys_write+0x183/0x2b0
[  127.162373][ T5793]  do_syscall_64+0xf3/0x230
[  127.164254][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.172160][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  127.174610][ T5793]  free_unref_folios+0xf12/0x18d0
[  127.176580][ T5793]  folios_put_refs+0x76c/0x860
[  127.182805][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  127.185046][ T5793]  evict+0x4fd/0x9b0
[  127.186603][ T5793]  evict_inodes+0x6f6/0x790
[  127.188356][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  127.203697][ T5793]  kill_block_super+0x44/0x90
[  127.205603][ T5793]  xfs_kill_sb+0x15/0x50
[  127.207271][ T5793]  deactivate_locked_super+0xc4/0x130
[  127.209353][ T5793]  cleanup_mnt+0x41f/0x4b0
[  127.211087][ T5793]  task_work_run+0x24f/0x310
[  127.222630][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  127.225014][ T5793]  do_syscall_64+0x100/0x230
[  127.226830][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.229188][ T5793] Modules linked in:
[  127.231196][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  127.235231][ T5793] Tainted: [B]=BAD_PAGE
[  127.236739][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.240783][ T5793] Call Trace:
[  127.242073][ T5793]  <TASK>
[  127.243201][ T5793]  dump_stack_lvl+0x241/0x360
[  127.245227][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.247251][ T5793]  ? __pfx_print_modules+0x10/0x10
[  127.249080][ T5793]  ? percpu_ref_put+0x19/0x180
[  127.250963][ T5793]  bad_page+0x176/0x1d0
[  127.252493][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  127.254562][ T5793]  free_unref_page+0x7b2/0xf20
[  127.256435][ T5793]  __folio_put+0x2c7/0x440
[  127.258162][ T5793]  ? __pfx___folio_put+0x10/0x10
[  127.260057][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  127.261982][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  127.264038][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  127.266343][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  127.268827][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  127.270932][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  127.273175][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  127.275238][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  127.277500][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  127.279646][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  127.281758][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  127.284017][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  127.286368][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  127.288369][ T5793]  ? rcu_is_watching+0x15/0xb0
[  127.290158][ T5793]  evict+0x4fd/0x9b0
[  127.291616][ T5793]  ? __pfx_evict+0x10/0x10
[  127.293325][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  127.295413][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  127.297508][ T5793]  evict_inodes+0x6f6/0x790
[  127.299455][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  127.301417][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  127.303312][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  127.305335][ T5793]  kill_block_super+0x44/0x90
[  127.307138][ T5793]  xfs_kill_sb+0x15/0x50
[  127.308767][ T5793]  deactivate_locked_super+0xc4/0x130
[  127.310828][ T5793]  cleanup_mnt+0x41f/0x4b0
[  127.312549][ T5793]  task_work_run+0x24f/0x310
[  127.314352][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  127.316294][ T5793]  ? __x64_sys_umount+0x123/0x170
[  127.318217][ T5793]  ? rcu_is_watching+0x15/0xb0
[  127.320147][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  127.322293][ T5793]  do_syscall_64+0x100/0x230
[  127.324107][ T5793]  ? clear_bhb_loop+0x35/0x90
[  127.325947][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.328234][ T5793] RIP: 0033:0x7f451fb7fa47
[  127.329996][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  127.337136][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  127.340224][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  127.343002][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  127.345835][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  127.348719][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  127.351726][ T5793] R13: 00007f451fbf15fc R14: 000000000001eee8 R15: 00007ffe39c14620
[  127.354656][ T5793]  </TASK>
[  127.356472][   T48] Bluetooth: hci0: command tx timeout
[  127.360748][ T5793] BUG: Bad page state in process syz-executor  pfn:58400
[  127.365898][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x58400
[  127.369086][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  127.372019][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  127.376201][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  127.379690][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  127.383486][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  127.386773][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  127.389938][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  127.393941][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  127.397174][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  127.399917][ T5793] page_owner tracks the page as allocated
[  127.402813][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5886, tgid 5885 (syz.0.20), ts 127010154149, free_ts 126783942765
[  127.411420][ T5793]  post_alloc_hook+0x1f3/0x230
[  127.413607][ T5793]  get_page_from_freelist+0x303f/0x3190
[  127.415502][ T5793]  __alloc_pages_noprof+0x292/0x710
[  127.417332][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  127.419270][ T5793]  folio_alloc_noprof+0x128/0x180
[  127.420977][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  127.423434][ T5793]  __filemap_get_folio+0x446/0xbd0
[  127.425228][ T5793]  iomap_write_begin+0x52a/0x16f0
[  127.426985][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  127.428923][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  127.430803][ T5793]  vfs_write+0xaeb/0xd30
[  127.432947][ T5793]  ksys_write+0x183/0x2b0
[  127.434901][ T5793]  do_syscall_64+0xf3/0x230
[  127.436495][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.438564][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  127.440704][ T5793]  free_unref_folios+0xf12/0x18d0
[  127.442925][ T5793]  folios_put_refs+0x76c/0x860
[  127.444605][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  127.446589][ T5793]  evict+0x4fd/0x9b0
[  127.447973][ T5793]  evict_inodes+0x6f6/0x790
[  127.449541][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  127.451380][ T5793]  kill_block_super+0x44/0x90
[  127.453697][ T5793]  xfs_kill_sb+0x15/0x50
[  127.455379][ T5793]  deactivate_locked_super+0xc4/0x130
[  127.457347][ T5793]  cleanup_mnt+0x41f/0x4b0
[  127.459013][ T5793]  task_work_run+0x24f/0x310
[  127.460721][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  127.463957][ T5793]  do_syscall_64+0x100/0x230
[  127.465701][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.467875][ T5793] Modules linked in:
[  127.469333][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  127.473459][ T5793] Tainted: [B]=BAD_PAGE
[  127.475272][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.479562][ T5793] Call Trace:
[  127.480741][ T5793]  <TASK>
[  127.481826][ T5793]  dump_stack_lvl+0x241/0x360
[  127.483646][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.485603][ T5793]  ? __pfx_print_modules+0x10/0x10
[  127.487534][ T5793]  bad_page+0x176/0x1d0
[  127.489074][ T5793]  free_unref_page+0xed0/0xf20
[  127.490852][ T5793]  __folio_put+0x2c7/0x440
[  127.492559][ T5793]  ? __pfx___folio_put+0x10/0x10
[  127.494402][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  127.496301][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  127.498245][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  127.500380][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  127.502784][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  127.504823][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  127.507012][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  127.508937][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  127.511133][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  127.513134][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  127.515227][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  127.517560][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  127.519830][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  127.521757][ T5793]  ? rcu_is_watching+0x15/0xb0
[  127.523613][ T5793]  evict+0x4fd/0x9b0
[  127.525028][ T5793]  ? __pfx_evict+0x10/0x10
[  127.526681][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  127.528552][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  127.530418][ T5793]  evict_inodes+0x6f6/0x790
[  127.532144][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  127.533982][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  127.535816][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  127.537797][ T5793]  kill_block_super+0x44/0x90
[  127.539577][ T5793]  xfs_kill_sb+0x15/0x50
[  127.541133][ T5793]  deactivate_locked_super+0xc4/0x130
[  127.543094][ T5793]  cleanup_mnt+0x41f/0x4b0
[  127.544792][ T5793]  task_work_run+0x24f/0x310
[  127.546432][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  127.548178][ T5793]  ? __x64_sys_umount+0x123/0x170
[  127.549963][ T5793]  ? rcu_is_watching+0x15/0xb0
[  127.551875][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  127.553927][ T5793]  do_syscall_64+0x100/0x230
[  127.555679][ T5793]  ? clear_bhb_loop+0x35/0x90
[  127.557409][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.559658][ T5793] RIP: 0033:0x7f451fb7fa47
[  127.561300][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  127.568092][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  127.571074][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  127.573874][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  127.576786][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  127.579618][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  127.582442][ T5793] R13: 00007f451fbf15fc R14: 000000000001eee8 R15: 00007ffe39c14620
[  127.585262][ T5793]  </TASK>
[  127.591633][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  127.763356][ T5896] loop0: detected capacity change from 0 to 32768
[  127.792301][ T5896] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  127.807256][ T5896] XFS (loop0): Ending clean mount
[  127.857845][ T5793] BUG: Bad page state in process syz-executor  pfn:49001
[  127.860605][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x49001
[  127.872871][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  127.876129][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  127.879802][ T5793] raw: 04fff00000000000 ffffea0001240001 ffffffffffffffff ffffffff00000000
[  127.886596][ T5793] raw: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  127.889817][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  127.893634][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  127.896809][ T5793] head: 04fff00000000000 ffffea0001240001 ffffffffffffffff ffffffff00000000
[  127.900030][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  127.904866][ T5793] page dumped because: nonzero pincount
[  127.907031][ T5793] page_owner tracks the page as allocated
[  127.909215][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5896, tgid 5895 (syz.0.21), ts 127813472637, free_ts 127590962633
[  127.920057][ T5793]  post_alloc_hook+0x1f3/0x230
[  127.922490][ T5793]  get_page_from_freelist+0x303f/0x3190
[  127.924646][ T5793]  __alloc_pages_noprof+0x292/0x710
[  127.926678][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  127.928772][ T5793]  folio_alloc_noprof+0x128/0x180
[  127.930768][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  127.933668][ T5793]  __filemap_get_folio+0x446/0xbd0
[  127.935607][ T5793]  iomap_write_begin+0x52a/0x16f0
[  127.937473][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  127.939685][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  127.944121][ T5793]  vfs_write+0xaeb/0xd30
[  127.945767][ T5793]  ksys_write+0x183/0x2b0
[  127.947879][ T5793]  do_syscall_64+0xf3/0x230
[  127.949631][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.951879][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  127.955044][ T5793]  free_unref_folios+0xf12/0x18d0
[  127.956985][ T5793]  folios_put_refs+0x76c/0x860
[  127.958828][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  127.960995][ T5793]  evict+0x4fd/0x9b0
[  127.962979][ T5793]  evict_inodes+0x6f6/0x790
[  127.964767][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  127.966796][ T5793]  kill_block_super+0x44/0x90
[  127.968535][ T5793]  xfs_kill_sb+0x15/0x50
[  127.970142][ T5793]  deactivate_locked_super+0xc4/0x130
[  127.973220][ T5793]  cleanup_mnt+0x41f/0x4b0
[  127.975031][ T5793]  task_work_run+0x24f/0x310
[  127.976802][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  127.979006][ T5793]  do_syscall_64+0x100/0x230
[  127.980814][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.984493][ T5793] Modules linked in:
[  127.986075][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  127.990128][ T5793] Tainted: [B]=BAD_PAGE
[  127.991776][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.995984][ T5793] Call Trace:
[  127.997258][ T5793]  <TASK>
[  127.998434][ T5793]  dump_stack_lvl+0x241/0x360
[  128.000289][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.002287][ T5793]  ? __pfx_print_modules+0x10/0x10
[  128.004293][ T5793]  ? percpu_ref_put+0x19/0x180
[  128.006053][ T5793]  bad_page+0x176/0x1d0
[  128.007607][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  128.009653][ T5793]  free_unref_page+0x7b2/0xf20
[  128.011548][ T5793]  __folio_put+0x2c7/0x440
[  128.013273][ T5793]  ? __pfx___folio_put+0x10/0x10
[  128.015156][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  128.017485][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  128.019721][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  128.021933][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  128.024438][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  128.026608][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  128.028828][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  128.030974][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  128.033260][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  128.035344][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  128.037473][ T5793]  ? blk_mq_submit_bio+0x130b/0x2500
[  128.039435][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  128.041603][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  128.043511][ T5793]  ? rcu_is_watching+0x15/0xb0
[  128.045399][ T5793]  evict+0x4fd/0x9b0
[  128.046830][ T5793]  ? __pfx_evict+0x10/0x10
[  128.048443][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  128.050175][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  128.052019][ T5793]  ? xlog_state_release_iclog+0x425/0x7b0
[  128.054098][ T5793]  evict_inodes+0x6f6/0x790
[  128.055837][ T5793]  ? xfs_log_force+0x4cb/0x960
[  128.057592][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  128.059399][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  128.061260][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  128.063268][ T5793]  kill_block_super+0x44/0x90
[  128.065110][ T5793]  xfs_kill_sb+0x15/0x50
[  128.066614][ T5793]  deactivate_locked_super+0xc4/0x130
[  128.068660][ T5793]  cleanup_mnt+0x41f/0x4b0
[  128.070350][ T5793]  task_work_run+0x24f/0x310
[  128.072139][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  128.074122][ T5793]  ? __x64_sys_umount+0x123/0x170
[  128.076096][ T5793]  ? rcu_is_watching+0x15/0xb0
[  128.077941][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  128.080315][ T5793]  do_syscall_64+0x100/0x230
[  128.081957][ T5793]  ? clear_bhb_loop+0x35/0x90
[  128.083837][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.086219][ T5793] RIP: 0033:0x7f451fb7fa47
[  128.087922][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  128.094602][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  128.097530][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  128.100402][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  128.103249][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  128.106079][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  128.108943][ T5793] R13: 00007f451fbf15fc R14: 000000000001f20c R15: 00007ffe39c14620
[  128.111851][ T5793]  </TASK>
[  128.118978][ T5793] BUG: Bad page state in process syz-executor  pfn:49000
[  128.121541][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x49000
[  128.125328][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  128.128447][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  128.132009][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  128.135900][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  128.139205][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  128.145470][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  128.148632][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  128.152924][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  128.156605][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  128.159531][ T5793] page_owner tracks the page as allocated
[  128.161623][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5896, tgid 5895 (syz.0.21), ts 127813472637, free_ts 127590962633
[  128.170525][ T5793]  post_alloc_hook+0x1f3/0x230
[  128.172922][ T5793]  get_page_from_freelist+0x303f/0x3190
[  128.174887][ T5793]  __alloc_pages_noprof+0x292/0x710
[  128.176838][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  128.178812][ T5793]  folio_alloc_noprof+0x128/0x180
[  128.180753][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  128.183399][ T5793]  __filemap_get_folio+0x446/0xbd0
[  128.185248][ T5793]  iomap_write_begin+0x52a/0x16f0
[  128.187080][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  128.189047][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  128.191061][ T5793]  vfs_write+0xaeb/0xd30
[  128.193359][ T5793]  ksys_write+0x183/0x2b0
[  128.194962][ T5793]  do_syscall_64+0xf3/0x230
[  128.196661][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.198959][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  128.201256][ T5793]  free_unref_folios+0xf12/0x18d0
[  128.203670][ T5793]  folios_put_refs+0x76c/0x860
[  128.205315][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  128.207478][ T5793]  evict+0x4fd/0x9b0
[  128.208928][ T5793]  evict_inodes+0x6f6/0x790
[  128.210617][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  128.213208][ T5793]  kill_block_super+0x44/0x90
[  128.215017][ T5793]  xfs_kill_sb+0x15/0x50
[  128.216542][ T5793]  deactivate_locked_super+0xc4/0x130
[  128.218443][ T5793]  cleanup_mnt+0x41f/0x4b0
[  128.220033][ T5793]  task_work_run+0x24f/0x310
[  128.221673][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  128.225407][ T5793]  do_syscall_64+0x100/0x230
[  128.227126][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.229254][ T5793] Modules linked in:
[  128.230708][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  128.234565][ T5793] Tainted: [B]=BAD_PAGE
[  128.236103][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.239887][ T5793] Call Trace:
[  128.241099][ T5793]  <TASK>
[  128.242168][ T5793]  dump_stack_lvl+0x241/0x360
[  128.243857][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.245721][ T5793]  ? __pfx_print_modules+0x10/0x10
[  128.247671][ T5793]  bad_page+0x176/0x1d0
[  128.249161][ T5793]  free_unref_page+0xed0/0xf20
[  128.250881][ T5793]  __folio_put+0x2c7/0x440
[  128.252548][ T5793]  ? __pfx___folio_put+0x10/0x10
[  128.254372][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  128.256222][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  128.258104][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  128.260344][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  128.262678][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  128.264752][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  128.267136][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  128.269137][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  128.271290][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  128.273520][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  128.275600][ T5793]  ? blk_mq_submit_bio+0x130b/0x2500
[  128.277556][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  128.279917][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  128.281780][ T5793]  ? rcu_is_watching+0x15/0xb0
[  128.283551][ T5793]  evict+0x4fd/0x9b0
[  128.285244][ T5793]  ? __pfx_evict+0x10/0x10
[  128.286935][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  128.288794][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  128.290583][ T5793]  ? xlog_state_release_iclog+0x425/0x7b0
[  128.292679][ T5793]  evict_inodes+0x6f6/0x790
[  128.294391][ T5793]  ? xfs_log_force+0x4cb/0x960
[  128.296184][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  128.298021][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  128.299851][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  128.301793][ T5793]  kill_block_super+0x44/0x90
[  128.303543][ T5793]  xfs_kill_sb+0x15/0x50
[  128.305140][ T5793]  deactivate_locked_super+0xc4/0x130
[  128.307189][ T5793]  cleanup_mnt+0x41f/0x4b0
[  128.308843][ T5793]  task_work_run+0x24f/0x310
[  128.310551][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  128.312465][ T5793]  ? __x64_sys_umount+0x123/0x170
[  128.314232][ T5793]  ? rcu_is_watching+0x15/0xb0
[  128.315982][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  128.318007][ T5793]  do_syscall_64+0x100/0x230
[  128.319762][ T5793]  ? clear_bhb_loop+0x35/0x90
[  128.321568][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.323744][ T5793] RIP: 0033:0x7f451fb7fa47
[  128.325382][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  128.332347][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  128.335427][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  128.338267][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  128.341150][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  128.344062][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  128.346951][ T5793] R13: 00007f451fbf15fc R14: 000000000001f20c R15: 00007ffe39c14620
[  128.349808][ T5793]  </TASK>
[  128.357705][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  128.526066][ T5906] loop0: detected capacity change from 0 to 32768
[  128.551094][ T5906] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  128.565649][ T5906] XFS (loop0): Ending clean mount
[  128.607724][ T5793] BUG: Bad page state in process syz-executor  pfn:49201
[  128.610183][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x49201
[  128.613904][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  128.617215][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  128.620989][ T5793] raw: 04fff00000000000 ffffea0001248001 ffffffffffffffff ffffffff00000000
[  128.624963][ T5793] raw: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  128.628171][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  128.631456][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  128.635650][ T5793] head: 04fff00000000000 ffffea0001248001 ffffffffffffffff ffffffff00000000
[  128.638937][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  128.642953][ T5793] page dumped because: nonzero pincount
[  128.645072][ T5793] page_owner tracks the page as allocated
[  128.647070][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5906, tgid 5905 (syz.0.22), ts 128571070611, free_ts 128355326639
[  128.657000][ T5793]  post_alloc_hook+0x1f3/0x230
[  128.658859][ T5793]  get_page_from_freelist+0x303f/0x3190
[  128.660640][ T5793]  __alloc_pages_noprof+0x292/0x710
[  128.662916][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  128.665359][ T5793]  folio_alloc_noprof+0x128/0x180
[  128.667272][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  128.669428][ T5793]  __filemap_get_folio+0x446/0xbd0
[  128.671414][ T5793]  iomap_write_begin+0x52a/0x16f0
[  128.673836][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  128.675900][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  128.677724][ T5793]  vfs_write+0xaeb/0xd30
[  128.679204][ T5793]  ksys_write+0x183/0x2b0
[  128.680824][ T5793]  do_syscall_64+0xf3/0x230
[  128.683750][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.686032][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  128.688449][ T5793]  free_unref_folios+0xf12/0x18d0
[  128.690427][ T5793]  folios_put_refs+0x76c/0x860
[  128.692661][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  128.694815][ T5793]  evict+0x4fd/0x9b0
[  128.696328][ T5793]  evict_inodes+0x6f6/0x790
[  128.698010][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  128.700073][ T5793]  kill_block_super+0x44/0x90
[  128.701878][ T5793]  xfs_kill_sb+0x15/0x50
[  128.705939][ T5793]  deactivate_locked_super+0xc4/0x130
[  128.707999][ T5793]  cleanup_mnt+0x41f/0x4b0
[  128.709712][ T5793]  task_work_run+0x24f/0x310
[  128.711474][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  128.714049][ T5793]  do_syscall_64+0x100/0x230
[  128.715723][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.717978][ T5793] Modules linked in:
[  128.719387][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  128.723423][ T5793] Tainted: [B]=BAD_PAGE
[  128.725018][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.729036][ T5793] Call Trace:
[  128.730356][ T5793]  <TASK>
[  128.731454][ T5793]  dump_stack_lvl+0x241/0x360
[  128.733346][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.735343][ T5793]  ? __pfx_print_modules+0x10/0x10
[  128.737296][ T5793]  ? percpu_ref_put+0x19/0x180
[  128.739090][ T5793]  bad_page+0x176/0x1d0
[  128.740616][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  128.742670][ T5793]  free_unref_page+0x7b2/0xf20
[  128.744527][ T5793]  __folio_put+0x2c7/0x440
[  128.746254][ T5793]  ? __pfx___folio_put+0x10/0x10
[  128.748155][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  128.750059][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  128.752044][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  128.754302][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  128.756772][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  128.758861][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  128.761033][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  128.763132][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  128.765423][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  128.767632][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  128.769830][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  128.771994][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  128.774275][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  128.776145][ T5793]  ? rcu_is_watching+0x15/0xb0
[  128.777799][ T5793]  evict+0x4fd/0x9b0
[  128.779281][ T5793]  ? __pfx_evict+0x10/0x10
[  128.780977][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  128.783023][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  128.784947][ T5793]  evict_inodes+0x6f6/0x790
[  128.786893][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  128.788840][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  128.790806][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  128.792835][ T5793]  kill_block_super+0x44/0x90
[  128.794628][ T5793]  xfs_kill_sb+0x15/0x50
[  128.796217][ T5793]  deactivate_locked_super+0xc4/0x130
[  128.798278][ T5793]  cleanup_mnt+0x41f/0x4b0
[  128.800005][ T5793]  task_work_run+0x24f/0x310
[  128.801831][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  128.803753][ T5793]  ? __x64_sys_umount+0x123/0x170
[  128.805560][ T5793]  ? rcu_is_watching+0x15/0xb0
[  128.807413][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  128.809533][ T5793]  do_syscall_64+0x100/0x230
[  128.811291][ T5793]  ? clear_bhb_loop+0x35/0x90
[  128.813127][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.815421][ T5793] RIP: 0033:0x7f451fb7fa47
[  128.817134][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  128.824439][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  128.827777][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  128.830917][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  128.834346][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  128.837747][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  128.841376][ T5793] R13: 00007f451fbf15fc R14: 000000000001f50d R15: 00007ffe39c14620
[  128.844707][ T5793]  </TASK>
[  128.848695][ T5793] BUG: Bad page state in process syz-executor  pfn:49200
[  128.851669][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x49200
[  128.857128][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  128.861080][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  128.869738][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  128.873153][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  128.876249][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  128.879431][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  128.883299][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  128.886474][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  128.889630][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  128.893570][ T5793] page_owner tracks the page as allocated
[  128.895844][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5906, tgid 5905 (syz.0.22), ts 128571070611, free_ts 128355326639
[  128.905017][ T5793]  post_alloc_hook+0x1f3/0x230
[  128.906992][ T5793]  get_page_from_freelist+0x303f/0x3190
[  128.909018][ T5793]  __alloc_pages_noprof+0x292/0x710
[  128.910854][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  128.913214][ T5793]  folio_alloc_noprof+0x128/0x180
[  128.915244][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  128.917434][ T5793]  __filemap_get_folio+0x446/0xbd0
[  128.919332][ T5793]  iomap_write_begin+0x52a/0x16f0
[  128.921167][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  128.923954][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  128.934809][ T5793]  vfs_write+0xaeb/0xd30
[  128.936376][ T5793]  ksys_write+0x183/0x2b0
[  128.938004][ T5793]  do_syscall_64+0xf3/0x230
[  128.939686][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.941841][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  128.945611][ T5793]  free_unref_folios+0xf12/0x18d0
[  128.947428][ T5793]  folios_put_refs+0x76c/0x860
[  128.949179][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  128.951345][ T5793]  evict+0x4fd/0x9b0
[  128.953870][ T5793]  evict_inodes+0x6f6/0x790
[  128.955578][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  128.957423][ T5793]  kill_block_super+0x44/0x90
[  128.959049][ T5793]  xfs_kill_sb+0x15/0x50
[  128.960593][ T5793]  deactivate_locked_super+0xc4/0x130
[  128.963445][ T5793]  cleanup_mnt+0x41f/0x4b0
[  128.965150][ T5793]  task_work_run+0x24f/0x310
[  128.966822][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  128.968744][ T5793]  do_syscall_64+0x100/0x230
[  128.970950][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.973638][ T5793] Modules linked in:
[  128.975073][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  128.978962][ T5793] Tainted: [B]=BAD_PAGE
[  128.980562][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.984599][ T5793] Call Trace:
[  128.985803][ T5793]  <TASK>
[  128.986858][ T5793]  dump_stack_lvl+0x241/0x360
[  128.988513][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.990463][ T5793]  ? __pfx_print_modules+0x10/0x10
[  128.992439][ T5793]  bad_page+0x176/0x1d0
[  128.994011][ T5793]  free_unref_page+0xed0/0xf20
[  128.995790][ T5793]  __folio_put+0x2c7/0x440
[  128.997432][ T5793]  ? __pfx___folio_put+0x10/0x10
[  128.999272][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  129.001156][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  129.003051][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  129.005190][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  129.007450][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  129.009451][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  129.011706][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  129.013605][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  129.015607][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  129.017576][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  129.019686][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  129.021833][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  129.024195][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  129.026034][ T5793]  ? rcu_is_watching+0x15/0xb0
[  129.027820][ T5793]  evict+0x4fd/0x9b0
[  129.029273][ T5793]  ? __pfx_evict+0x10/0x10
[  129.030937][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  129.032879][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  129.034728][ T5793]  evict_inodes+0x6f6/0x790
[  129.036467][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  129.038346][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  129.040224][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  129.042121][ T5793]  kill_block_super+0x44/0x90
[  129.044040][ T5793]  xfs_kill_sb+0x15/0x50
[  129.045653][ T5793]  deactivate_locked_super+0xc4/0x130
[  129.047699][ T5793]  cleanup_mnt+0x41f/0x4b0
[  129.049335][ T5793]  task_work_run+0x24f/0x310
[  129.051051][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  129.052995][ T5793]  ? __x64_sys_umount+0x123/0x170
[  129.054887][ T5793]  ? rcu_is_watching+0x15/0xb0
[  129.056636][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  129.058751][ T5793]  do_syscall_64+0x100/0x230
[  129.060479][ T5793]  ? clear_bhb_loop+0x35/0x90
[  129.062241][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.064512][ T5793] RIP: 0033:0x7f451fb7fa47
[  129.066196][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  129.073317][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  129.076400][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  129.079360][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  129.082238][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  129.085141][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  129.088165][ T5793] R13: 00007f451fbf15fc R14: 000000000001f50d R15: 00007ffe39c14620
[  129.091150][ T5793]  </TASK>
[  129.098624][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  129.274077][ T5916] loop0: detected capacity change from 0 to 32768
[  129.291355][ T5916] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  129.311613][ T5916] XFS (loop0): Ending clean mount
[  129.364869][ T5793] BUG: Bad page state in process syz-executor  pfn:56201
[  129.367717][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x56201
[  129.371063][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  129.374787][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  129.378555][ T5793] raw: 04fff00000000000 ffffea0001588001 ffffffffffffffff ffffffff00000000
[  129.383229][ T5793] raw: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  129.386639][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  129.390128][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  129.394382][ T5793] head: 04fff00000000000 ffffea0001588001 ffffffffffffffff ffffffff00000000
[  129.397827][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  129.401111][ T5793] page dumped because: nonzero pincount
[  129.404997][ T5793] page_owner tracks the page as allocated
[  129.407165][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5916, tgid 5915 (syz.0.23), ts 129317984458, free_ts 129098187484
[  129.416371][ T5793]  post_alloc_hook+0x1f3/0x230
[  129.418232][ T5793]  get_page_from_freelist+0x303f/0x3190
[  129.420364][ T5793]  __alloc_pages_noprof+0x292/0x710
[  129.422685][   T48] Bluetooth: hci0: command tx timeout
[  129.425822][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  129.427979][ T5793]  folio_alloc_noprof+0x128/0x180
[  129.429909][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  129.432467][ T5793]  __filemap_get_folio+0x446/0xbd0
[  129.434448][ T5793]  iomap_write_begin+0x52a/0x16f0
[  129.436397][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  129.438503][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  129.440544][ T5793]  vfs_write+0xaeb/0xd30
[  129.442994][ T5793]  ksys_write+0x183/0x2b0
[  129.444701][ T5793]  do_syscall_64+0xf3/0x230
[  129.446486][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.448737][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  129.451165][ T5793]  free_unref_folios+0xf12/0x18d0
[  129.453576][ T5793]  folios_put_refs+0x76c/0x860
[  129.455355][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  129.457291][ T5793]  evict+0x4fd/0x9b0
[  129.458708][ T5793]  evict_inodes+0x6f6/0x790
[  129.460436][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  129.462977][ T5793]  kill_block_super+0x44/0x90
[  129.464831][ T5793]  xfs_kill_sb+0x15/0x50
[  129.466578][ T5793]  deactivate_locked_super+0xc4/0x130
[  129.468652][ T5793]  cleanup_mnt+0x41f/0x4b0
[  129.470377][ T5793]  task_work_run+0x24f/0x310
[  129.472737][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  129.474912][ T5793]  do_syscall_64+0x100/0x230
[  129.476761][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.478978][ T5793] Modules linked in:
[  129.480518][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  129.484578][ T5793] Tainted: [B]=BAD_PAGE
[  129.486190][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.490379][ T5793] Call Trace:
[  129.491701][ T5793]  <TASK>
[  129.492899][ T5793]  dump_stack_lvl+0x241/0x360
[  129.494872][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  129.496809][ T5793]  ? __pfx_print_modules+0x10/0x10
[  129.498783][ T5793]  ? percpu_ref_put+0x19/0x180
[  129.500655][ T5793]  bad_page+0x176/0x1d0
[  129.502285][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  129.504636][ T5793]  free_unref_page+0x7b2/0xf20
[  129.506455][ T5793]  __folio_put+0x2c7/0x440
[  129.508392][ T5793]  ? __pfx___folio_put+0x10/0x10
[  129.510301][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  129.512316][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  129.514416][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  129.516891][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  129.519521][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  129.521746][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  129.524035][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  129.526100][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  129.528315][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  129.530585][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  129.532966][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  129.535280][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  129.537693][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  129.539783][ T5793]  ? rcu_is_watching+0x15/0xb0
[  129.541601][ T5793]  evict+0x4fd/0x9b0
[  129.543193][ T5793]  ? __pfx_evict+0x10/0x10
[  129.545290][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  129.547388][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  129.549376][ T5793]  evict_inodes+0x6f6/0x790
[  129.551130][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  129.552920][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  129.554677][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  129.556638][ T5793]  kill_block_super+0x44/0x90
[  129.558434][ T5793]  xfs_kill_sb+0x15/0x50
[  129.560231][ T5793]  deactivate_locked_super+0xc4/0x130
[  129.562312][ T5793]  cleanup_mnt+0x41f/0x4b0
[  129.564066][ T5793]  task_work_run+0x24f/0x310
[  129.565806][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  129.567767][ T5793]  ? __x64_sys_umount+0x123/0x170
[  129.569715][ T5793]  ? rcu_is_watching+0x15/0xb0
[  129.571572][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  129.573739][ T5793]  do_syscall_64+0x100/0x230
[  129.575536][ T5793]  ? clear_bhb_loop+0x35/0x90
[  129.577300][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.579564][ T5793] RIP: 0033:0x7f451fb7fa47
[  129.581222][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  129.588669][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  129.591805][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  129.594814][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  129.597586][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  129.600720][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  129.603592][ T5793] R13: 00007f451fbf15fc R14: 000000000001f7f2 R15: 00007ffe39c14620
[  129.606536][ T5793]  </TASK>
[  129.612016][ T5793] BUG: Bad page state in process syz-executor  pfn:56200
[  129.614682][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x56200
[  129.617896][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  129.620957][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  129.625344][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  129.628645][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  129.631787][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  129.635510][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  129.638704][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  129.641881][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  129.645763][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  129.648489][ T5793] page_owner tracks the page as allocated
[  129.650556][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5916, tgid 5915 (syz.0.23), ts 129317984458, free_ts 129098187484
[  129.659586][ T5793]  post_alloc_hook+0x1f3/0x230
[  129.661411][ T5793]  get_page_from_freelist+0x303f/0x3190
[  129.663950][ T5793]  __alloc_pages_noprof+0x292/0x710
[  129.665639][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  129.667670][ T5793]  folio_alloc_noprof+0x128/0x180
[  129.669564][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  129.671679][ T5793]  __filemap_get_folio+0x446/0xbd0
[  129.674241][ T5793]  iomap_write_begin+0x52a/0x16f0
[  129.676185][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  129.678309][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  129.680336][ T5793]  vfs_write+0xaeb/0xd30
[  129.681971][ T5793]  ksys_write+0x183/0x2b0
[  129.684572][ T5793]  do_syscall_64+0xf3/0x230
[  129.686286][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.689192][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  129.691604][ T5793]  free_unref_folios+0xf12/0x18d0
[  129.693856][ T5793]  folios_put_refs+0x76c/0x860
[  129.695635][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  129.697735][ T5793]  evict+0x4fd/0x9b0
[  129.699255][ T5793]  evict_inodes+0x6f6/0x790
[  129.701021][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  129.703728][ T5793]  kill_block_super+0x44/0x90
[  129.705470][ T5793]  xfs_kill_sb+0x15/0x50
[  129.707082][ T5793]  deactivate_locked_super+0xc4/0x130
[  129.709142][ T5793]  cleanup_mnt+0x41f/0x4b0
[  129.710898][ T5793]  task_work_run+0x24f/0x310
[  129.713961][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  129.716371][ T5793]  do_syscall_64+0x100/0x230
[  129.718153][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.720445][ T5793] Modules linked in:
[  129.721858][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  129.725824][ T5793] Tainted: [B]=BAD_PAGE
[  129.727437][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  129.731436][ T5793] Call Trace:
[  129.732664][ T5793]  <TASK>
[  129.733745][ T5793]  dump_stack_lvl+0x241/0x360
[  129.735474][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  129.737383][ T5793]  ? __pfx_print_modules+0x10/0x10
[  129.739240][ T5793]  bad_page+0x176/0x1d0
[  129.740693][ T5793]  free_unref_page+0xed0/0xf20
[  129.742642][ T5793]  __folio_put+0x2c7/0x440
[  129.744307][ T5793]  ? __pfx___folio_put+0x10/0x10
[  129.746127][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  129.747790][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  129.749650][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  129.752046][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  129.754382][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  129.756368][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  129.758468][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  129.760480][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  129.762585][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  129.764619][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  129.766749][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  129.768944][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  129.771208][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  129.773047][ T5793]  ? rcu_is_watching+0x15/0xb0
[  129.774780][ T5793]  evict+0x4fd/0x9b0
[  129.776278][ T5793]  ? __pfx_evict+0x10/0x10
[  129.777950][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  129.779792][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  129.781609][ T5793]  evict_inodes+0x6f6/0x790
[  129.783316][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  129.785090][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  129.786963][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  129.789021][ T5793]  kill_block_super+0x44/0x90
[  129.790858][ T5793]  xfs_kill_sb+0x15/0x50
[  129.792525][ T5793]  deactivate_locked_super+0xc4/0x130
[  129.794431][ T5793]  cleanup_mnt+0x41f/0x4b0
[  129.796094][ T5793]  task_work_run+0x24f/0x310
[  129.798143][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  129.800048][ T5793]  ? __x64_sys_umount+0x123/0x170
[  129.801978][ T5793]  ? rcu_is_watching+0x15/0xb0
[  129.803733][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  129.805897][ T5793]  do_syscall_64+0x100/0x230
[  129.807537][ T5793]  ? clear_bhb_loop+0x35/0x90
[  129.809207][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.811358][ T5793] RIP: 0033:0x7f451fb7fa47
[  129.813020][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  129.819948][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  129.822937][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  129.825821][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  129.828696][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  129.831639][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  129.834559][ T5793] R13: 00007f451fbf15fc R14: 000000000001f7f2 R15: 00007ffe39c14620
[  129.837442][ T5793]  </TASK>
[  129.843709][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  130.021379][ T5926] loop0: detected capacity change from 0 to 32768
[  130.041504][ T5926] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  130.063909][ T5926] XFS (loop0): Ending clean mount
[  130.114837][ T5793] BUG: Bad page state in process syz-executor  pfn:55201
[  130.118066][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x55201
[  130.121969][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  130.126271][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  130.130579][ T5793] raw: 04fff00000000000 ffffea0001548001 ffffffffffffffff ffffffff00000000
[  130.134787][ T5793] raw: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  130.137966][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  130.141224][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  130.144925][ T5793] head: 04fff00000000000 ffffea0001548001 ffffffffffffffff ffffffff00000000
[  130.148210][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  130.151432][ T5793] page dumped because: nonzero pincount
[  130.155424][ T5793] page_owner tracks the page as allocated
[  130.157623][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5926, tgid 5925 (syz.0.24), ts 130069307459, free_ts 129841828495
[  130.167303][ T5793]  post_alloc_hook+0x1f3/0x230
[  130.169255][ T5793]  get_page_from_freelist+0x303f/0x3190
[  130.171401][ T5793]  __alloc_pages_noprof+0x292/0x710
[  130.174028][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  130.176233][ T5793]  folio_alloc_noprof+0x128/0x180
[  130.178202][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  130.180605][ T5793]  __filemap_get_folio+0x446/0xbd0
[  130.183143][ T5793]  iomap_write_begin+0x52a/0x16f0
[  130.185153][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  130.187303][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  130.189380][ T5793]  vfs_write+0xaeb/0xd30
[  130.191042][ T5793]  ksys_write+0x183/0x2b0
[  130.193694][ T5793]  do_syscall_64+0xf3/0x230
[  130.195473][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.197801][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  130.200784][ T5793]  free_unref_folios+0xf12/0x18d0
[  130.202975][ T5793]  folios_put_refs+0x76c/0x860
[  130.204894][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  130.207078][ T5793]  evict+0x4fd/0x9b0
[  130.208619][ T5793]  evict_inodes+0x6f6/0x790
[  130.210357][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  130.213094][ T5793]  kill_block_super+0x44/0x90
[  130.214933][ T5793]  xfs_kill_sb+0x15/0x50
[  130.216610][ T5793]  deactivate_locked_super+0xc4/0x130
[  130.218689][ T5793]  cleanup_mnt+0x41f/0x4b0
[  130.220419][ T5793]  task_work_run+0x24f/0x310
[  130.223338][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  130.225472][ T5793]  do_syscall_64+0x100/0x230
[  130.227266][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.229594][ T5793] Modules linked in:
[  130.231192][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  130.235067][ T5793] Tainted: [B]=BAD_PAGE
[  130.236533][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.240422][ T5793] Call Trace:
[  130.241746][ T5793]  <TASK>
[  130.242898][ T5793]  dump_stack_lvl+0x241/0x360
[  130.244750][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  130.246738][ T5793]  ? __pfx_print_modules+0x10/0x10
[  130.248734][ T5793]  ? percpu_ref_put+0x19/0x180
[  130.250597][ T5793]  bad_page+0x176/0x1d0
[  130.252178][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  130.254265][ T5793]  free_unref_page+0x7b2/0xf20
[  130.256212][ T5793]  __folio_put+0x2c7/0x440
[  130.257953][ T5793]  ? __pfx___folio_put+0x10/0x10
[  130.259888][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  130.261907][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  130.264034][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  130.266297][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  130.268670][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  130.270783][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  130.273014][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  130.275111][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  130.277302][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  130.279540][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  130.281712][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  130.283999][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  130.286345][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  130.288350][ T5793]  ? rcu_is_watching+0x15/0xb0
[  130.290225][ T5793]  evict+0x4fd/0x9b0
[  130.291776][ T5793]  ? __pfx_evict+0x10/0x10
[  130.293511][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  130.295510][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  130.297653][ T5793]  evict_inodes+0x6f6/0x790
[  130.299450][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  130.301391][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  130.303198][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  130.305268][ T5793]  kill_block_super+0x44/0x90
[  130.307100][ T5793]  xfs_kill_sb+0x15/0x50
[  130.308716][ T5793]  deactivate_locked_super+0xc4/0x130
[  130.310824][ T5793]  cleanup_mnt+0x41f/0x4b0
[  130.312556][ T5793]  task_work_run+0x24f/0x310
[  130.314438][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  130.316489][ T5793]  ? __x64_sys_umount+0x123/0x170
[  130.318498][ T5793]  ? rcu_is_watching+0x15/0xb0
[  130.320371][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  130.322585][ T5793]  do_syscall_64+0x100/0x230
[  130.324421][ T5793]  ? clear_bhb_loop+0x35/0x90
[  130.326305][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.328664][ T5793] RIP: 0033:0x7f451fb7fa47
[  130.330445][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  130.337980][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  130.341325][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  130.344398][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  130.347459][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  130.350458][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  130.353396][ T5793] R13: 00007f451fbf15fc R14: 000000000001fadf R15: 00007ffe39c14620
[  130.356314][ T5793]  </TASK>
[  130.359920][ T5793] BUG: Bad page state in process syz-executor  pfn:55200
[  130.365349][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x55200
[  130.368719][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  130.371849][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  130.375989][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  130.379197][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  130.383862][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  130.387058][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  130.390371][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  130.394150][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  130.397388][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  130.400057][ T5793] page_owner tracks the page as allocated
[  130.402525][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5926, tgid 5925 (syz.0.24), ts 130069307459, free_ts 129841828495
[  130.411422][ T5793]  post_alloc_hook+0x1f3/0x230
[  130.413788][ T5793]  get_page_from_freelist+0x303f/0x3190
[  130.415923][ T5793]  __alloc_pages_noprof+0x292/0x710
[  130.417876][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  130.419954][ T5793]  folio_alloc_noprof+0x128/0x180
[  130.421895][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  130.424435][ T5793]  __filemap_get_folio+0x446/0xbd0
[  130.426340][ T5793]  iomap_write_begin+0x52a/0x16f0
[  130.428181][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  130.430198][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  130.432840][ T5793]  vfs_write+0xaeb/0xd30
[  130.434468][ T5793]  ksys_write+0x183/0x2b0
[  130.436049][ T5793]  do_syscall_64+0xf3/0x230
[  130.437782][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.439942][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  130.442808][ T5793]  free_unref_folios+0xf12/0x18d0
[  130.444700][ T5793]  folios_put_refs+0x76c/0x860
[  130.446472][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  130.448570][ T5793]  evict+0x4fd/0x9b0
[  130.450128][ T5793]  evict_inodes+0x6f6/0x790
[  130.451935][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  130.454830][ T5793]  kill_block_super+0x44/0x90
[  130.456604][ T5793]  xfs_kill_sb+0x15/0x50
[  130.458256][ T5793]  deactivate_locked_super+0xc4/0x130
[  130.460298][ T5793]  cleanup_mnt+0x41f/0x4b0
[  130.461999][ T5793]  task_work_run+0x24f/0x310
[  130.467572][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  130.469647][ T5793]  do_syscall_64+0x100/0x230
[  130.471449][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.474411][ T5793] Modules linked in:
[  130.475920][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  130.480120][ T5793] Tainted: [B]=BAD_PAGE
[  130.481684][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  130.485831][ T5793] Call Trace:
[  130.487150][ T5793]  <TASK>
[  130.488294][ T5793]  dump_stack_lvl+0x241/0x360
[  130.490081][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  130.492032][ T5793]  ? __pfx_print_modules+0x10/0x10
[  130.494009][ T5793]  bad_page+0x176/0x1d0
[  130.495601][ T5793]  free_unref_page+0xed0/0xf20
[  130.497390][ T5793]  __folio_put+0x2c7/0x440
[  130.499063][ T5793]  ? __pfx___folio_put+0x10/0x10
[  130.500901][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  130.502790][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  130.504768][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  130.506912][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  130.509365][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  130.511601][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  130.513787][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  130.515842][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  130.518051][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  130.519981][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  130.521983][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  130.524162][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  130.526604][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  130.528707][ T5793]  ? rcu_is_watching+0x15/0xb0
[  130.530429][ T5793]  evict+0x4fd/0x9b0
[  130.531864][ T5793]  ? __pfx_evict+0x10/0x10
[  130.533543][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  130.535465][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  130.537319][ T5793]  evict_inodes+0x6f6/0x790
[  130.539026][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  130.540864][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  130.542672][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  130.544577][ T5793]  kill_block_super+0x44/0x90
[  130.546343][ T5793]  xfs_kill_sb+0x15/0x50
[  130.547889][ T5793]  deactivate_locked_super+0xc4/0x130
[  130.549810][ T5793]  cleanup_mnt+0x41f/0x4b0
[  130.551447][ T5793]  task_work_run+0x24f/0x310
[  130.553140][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  130.555001][ T5793]  ? __x64_sys_umount+0x123/0x170
[  130.556890][ T5793]  ? rcu_is_watching+0x15/0xb0
[  130.558695][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  130.560802][ T5793]  do_syscall_64+0x100/0x230
[  130.562520][ T5793]  ? clear_bhb_loop+0x35/0x90
[  130.564381][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.566587][ T5793] RIP: 0033:0x7f451fb7fa47
[  130.568263][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  130.575339][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  130.578353][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  130.581214][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  130.584073][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  130.587012][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  130.589846][ T5793] R13: 00007f451fbf15fc R14: 000000000001fadf R15: 00007ffe39c14620
[  130.592861][ T5793]  </TASK>
[  130.597904][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  130.766790][ T5936] loop0: detected capacity change from 0 to 32768
[  130.782313][ T5936] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  130.795154][ T5936] XFS (loop0): Ending clean mount
[  130.866460][ T5793] BUG: Bad page state in process syz-executor  pfn:54a01
[  130.869013][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x54a01
[  130.882616][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  130.885792][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  130.889609][ T5793] raw: 04fff00000000000 ffffea0001528001 ffffffffffffffff ffffffff00000000
[  130.902157][ T5793] raw: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  130.905414][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  130.908566][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  130.912027][ T5793] head: 04fff00000000000 ffffea0001528001 ffffffffffffffff ffffffff00000000
[  130.919563][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  130.926076][ T5793] page dumped because: nonzero pincount
[  130.928171][ T5793] page_owner tracks the page as allocated
[  130.930123][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5936, tgid 5935 (syz.0.25), ts 130801182914, free_ts 130597234651
[  130.939585][ T5793]  post_alloc_hook+0x1f3/0x230
[  130.941438][ T5793]  get_page_from_freelist+0x303f/0x3190
[  130.945370][ T5793]  __alloc_pages_noprof+0x292/0x710
[  130.947383][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  130.949473][ T5793]  folio_alloc_noprof+0x128/0x180
[  130.951413][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  130.954353][ T5793]  __filemap_get_folio+0x446/0xbd0
[  130.956346][ T5793]  iomap_write_begin+0x52a/0x16f0
[  130.958268][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  130.960386][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  130.966460][ T5793]  vfs_write+0xaeb/0xd30
[  130.968142][ T5793]  ksys_write+0x183/0x2b0
[  130.969827][ T5793]  do_syscall_64+0xf3/0x230
[  130.971620][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.974458][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  130.976981][ T5793]  free_unref_folios+0xf12/0x18d0
[  130.978975][ T5793]  folios_put_refs+0x76c/0x860
[  130.980808][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  130.983510][ T5793]  evict+0x4fd/0x9b0
[  130.985029][ T5793]  evict_inodes+0x6f6/0x790
[  130.986803][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  130.988786][ T5793]  kill_block_super+0x44/0x90
[  130.990575][ T5793]  xfs_kill_sb+0x15/0x50
[  131.000275][ T5793]  deactivate_locked_super+0xc4/0x130
[  131.002674][ T5793]  cleanup_mnt+0x41f/0x4b0
[  131.004379][ T5793]  task_work_run+0x24f/0x310
[  131.006165][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  131.008347][ T5793]  do_syscall_64+0x100/0x230
[  131.010100][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.013737][ T5793] Modules linked in:
[  131.015803][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  131.019899][ T5793] Tainted: [B]=BAD_PAGE
[  131.021513][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.025635][ T5793] Call Trace:
[  131.027140][ T5793]  <TASK>
[  131.028287][ T5793]  dump_stack_lvl+0x241/0x360
[  131.030089][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.032109][ T5793]  ? __pfx_print_modules+0x10/0x10
[  131.034070][ T5793]  ? percpu_ref_put+0x19/0x180
[  131.035975][ T5793]  bad_page+0x176/0x1d0
[  131.037574][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  131.039586][ T5793]  free_unref_page+0x7b2/0xf20
[  131.041434][ T5793]  __folio_put+0x2c7/0x440
[  131.043160][ T5793]  ? __pfx___folio_put+0x10/0x10
[  131.045104][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  131.047025][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  131.048998][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  131.051364][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  131.053816][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  131.055948][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  131.058217][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  131.060360][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  131.062657][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  131.064698][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  131.066902][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  131.069135][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  131.071537][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  131.073555][ T5793]  ? rcu_is_watching+0x15/0xb0
[  131.075761][ T5793]  evict+0x4fd/0x9b0
[  131.077319][ T5793]  ? __pfx_evict+0x10/0x10
[  131.079284][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  131.081311][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  131.083275][ T5793]  evict_inodes+0x6f6/0x790
[  131.085050][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  131.087039][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  131.088933][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  131.090990][ T5793]  kill_block_super+0x44/0x90
[  131.092792][ T5793]  xfs_kill_sb+0x15/0x50
[  131.094465][ T5793]  deactivate_locked_super+0xc4/0x130
[  131.096502][ T5793]  cleanup_mnt+0x41f/0x4b0
[  131.098235][ T5793]  task_work_run+0x24f/0x310
[  131.100014][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  131.101951][ T5793]  ? __x64_sys_umount+0x123/0x170
[  131.103931][ T5793]  ? rcu_is_watching+0x15/0xb0
[  131.105754][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  131.107944][ T5793]  do_syscall_64+0x100/0x230
[  131.109780][ T5793]  ? clear_bhb_loop+0x35/0x90
[  131.111583][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.113688][ T5793] RIP: 0033:0x7f451fb7fa47
[  131.115422][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  131.123113][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  131.126810][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  131.129874][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  131.132866][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  131.135893][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  131.138784][ T5793] R13: 00007f451fbf15fc R14: 000000000001fdca R15: 00007ffe39c14620
[  131.141810][ T5793]  </TASK>
[  131.148201][ T5793] BUG: Bad page state in process syz-executor  pfn:54a00
[  131.150967][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x54a00
[  131.154651][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  131.157767][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  131.161537][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  131.165661][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  131.168904][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  131.172574][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  131.176008][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  131.179506][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  131.184806][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  131.188029][ T5793] page_owner tracks the page as allocated
[  131.190224][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5936, tgid 5935 (syz.0.25), ts 130801182914, free_ts 130597234651
[  131.199413][ T5793]  post_alloc_hook+0x1f3/0x230
[  131.201256][ T5793]  get_page_from_freelist+0x303f/0x3190
[  131.203899][ T5793]  __alloc_pages_noprof+0x292/0x710
[  131.205855][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  131.207854][ T5793]  folio_alloc_noprof+0x128/0x180
[  131.209749][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  131.211811][ T5793]  __filemap_get_folio+0x446/0xbd0
[  131.214080][ T5793]  iomap_write_begin+0x52a/0x16f0
[  131.216068][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  131.218234][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  131.220341][ T5793]  vfs_write+0xaeb/0xd30
[  131.221877][ T5793]  ksys_write+0x183/0x2b0
[  131.225045][ T5793]  do_syscall_64+0xf3/0x230
[  131.227170][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.229239][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  131.231494][ T5793]  free_unref_folios+0xf12/0x18d0
[  131.233704][ T5793]  folios_put_refs+0x76c/0x860
[  131.235483][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  131.237550][ T5793]  evict+0x4fd/0x9b0
[  131.238980][ T5793]  evict_inodes+0x6f6/0x790
[  131.240607][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  131.243339][ T5793]  kill_block_super+0x44/0x90
[  131.245113][ T5793]  xfs_kill_sb+0x15/0x50
[  131.246636][ T5793]  deactivate_locked_super+0xc4/0x130
[  131.248587][ T5793]  cleanup_mnt+0x41f/0x4b0
[  131.250311][ T5793]  task_work_run+0x24f/0x310
[  131.252029][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  131.254883][ T5793]  do_syscall_64+0x100/0x230
[  131.256619][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.258695][ T5793] Modules linked in:
[  131.260186][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  131.263881][ T5793] Tainted: [B]=BAD_PAGE
[  131.265457][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.269452][ T5793] Call Trace:
[  131.270813][ T5793]  <TASK>
[  131.271909][ T5793]  dump_stack_lvl+0x241/0x360
[  131.273641][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.275566][ T5793]  ? __pfx_print_modules+0x10/0x10
[  131.277372][ T5793]  bad_page+0x176/0x1d0
[  131.278867][ T5793]  free_unref_page+0xed0/0xf20
[  131.280678][ T5793]  __folio_put+0x2c7/0x440
[  131.282229][ T5793]  ? __pfx___folio_put+0x10/0x10
[  131.284154][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  131.286062][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  131.287956][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  131.290060][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  131.292465][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  131.294498][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  131.296684][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  131.298727][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  131.300895][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  131.303023][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  131.304919][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  131.307089][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  131.309351][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  131.311223][ T5793]  ? rcu_is_watching+0x15/0xb0
[  131.312968][ T5793]  evict+0x4fd/0x9b0
[  131.314402][ T5793]  ? __pfx_evict+0x10/0x10
[  131.316007][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  131.317843][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  131.319589][ T5793]  evict_inodes+0x6f6/0x790
[  131.321195][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  131.323051][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  131.324846][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  131.326801][ T5793]  kill_block_super+0x44/0x90
[  131.328579][ T5793]  xfs_kill_sb+0x15/0x50
[  131.330133][ T5793]  deactivate_locked_super+0xc4/0x130
[  131.332149][ T5793]  cleanup_mnt+0x41f/0x4b0
[  131.333994][ T5793]  task_work_run+0x24f/0x310
[  131.335664][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  131.337513][ T5793]  ? __x64_sys_umount+0x123/0x170
[  131.339308][ T5793]  ? rcu_is_watching+0x15/0xb0
[  131.341015][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  131.343060][ T5793]  do_syscall_64+0x100/0x230
[  131.344669][ T5793]  ? clear_bhb_loop+0x35/0x90
[  131.346505][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.348715][ T5793] RIP: 0033:0x7f451fb7fa47
[  131.350360][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  131.357219][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  131.360508][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  131.363831][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  131.367036][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  131.369876][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  131.372754][ T5793] R13: 00007f451fbf15fc R14: 000000000001fdca R15: 00007ffe39c14620
[  131.375503][ T5793]  </TASK>
[  131.384020][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  131.557673][ T5946] loop0: detected capacity change from 0 to 32768
[  131.567829][ T5946] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  131.591065][ T5946] XFS (loop0): Ending clean mount
[  131.663331][ T5793] BUG: Bad page state in process syz-executor  pfn:4a201
[  131.665946][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x4a201
[  131.669354][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  131.683093][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  131.686922][ T5793] raw: 04fff00000000000 ffffea0001288001 ffffffffffffffff ffffffff00000000
[  131.690064][ T5793] raw: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  131.694443][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  131.697712][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  131.700932][ T5793] head: 04fff00000000000 ffffea0001288001 ffffffffffffffff ffffffff00000000
2024/11/20 11:21:07 executed programs: 14
[  131.707822][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  131.711231][ T5793] page dumped because: nonzero pincount
[  131.713609][ T5793] page_owner tracks the page as allocated
[  131.715837][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5946, tgid 5945 (syz.0.26), ts 131597838547, free_ts 131381352788
[  131.725412][ T5793]  post_alloc_hook+0x1f3/0x230
[  131.727308][ T5793]  get_page_from_freelist+0x303f/0x3190
[  131.729384][ T5793]  __alloc_pages_noprof+0x292/0x710
[  131.731357][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  131.733908][ T5793]  folio_alloc_noprof+0x128/0x180
[  131.736317][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  131.738445][ T5793]  __filemap_get_folio+0x446/0xbd0
[  131.740391][ T5793]  iomap_write_begin+0x52a/0x16f0
[  131.743135][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  131.745277][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  131.747365][ T5793]  vfs_write+0xaeb/0xd30
[  131.748988][ T5793]  ksys_write+0x183/0x2b0
[  131.750666][ T5793]  do_syscall_64+0xf3/0x230
[  131.752962][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.755297][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  131.757731][ T5793]  free_unref_folios+0xf12/0x18d0
[  131.759757][ T5793]  folios_put_refs+0x76c/0x860
[  131.761645][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  131.764554][ T5793]  evict+0x4fd/0x9b0
[  131.766113][ T5793]  evict_inodes+0x6f6/0x790
[  131.767871][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  131.769925][ T5793]  kill_block_super+0x44/0x90
[  131.771836][ T5793]  xfs_kill_sb+0x15/0x50
[  131.773947][ T5793]  deactivate_locked_super+0xc4/0x130
[  131.776056][ T5793]  cleanup_mnt+0x41f/0x4b0
[  131.777851][ T5793]  task_work_run+0x24f/0x310
[  131.779649][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  131.781742][ T5793]  do_syscall_64+0x100/0x230
[  131.784228][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.786533][ T5793] Modules linked in:
[  131.788068][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  131.792140][ T5793] Tainted: [B]=BAD_PAGE
[  131.793701][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  131.797817][ T5793] Call Trace:
[  131.799045][ T5793]  <TASK>
[  131.800246][ T5793]  dump_stack_lvl+0x241/0x360
[  131.802071][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.804108][ T5793]  ? __pfx_print_modules+0x10/0x10
[  131.806107][ T5793]  ? percpu_ref_put+0x19/0x180
[  131.807917][ T5793]  bad_page+0x176/0x1d0
[  131.809492][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  131.811524][ T5793]  free_unref_page+0x7b2/0xf20
[  131.813380][ T5793]  __folio_put+0x2c7/0x440
[  131.815058][ T5793]  ? __pfx___folio_put+0x10/0x10
[  131.816977][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  131.818981][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  131.821006][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  131.823285][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  131.825765][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  131.827972][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  131.830704][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  131.833253][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  131.835724][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  131.837830][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  131.840029][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  131.842213][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  131.844574][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  131.846544][ T5793]  ? rcu_is_watching+0x15/0xb0
[  131.848528][ T5793]  evict+0x4fd/0x9b0
[  131.850059][ T5793]  ? __pfx_evict+0x10/0x10
[  131.851855][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  131.853848][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  131.855796][ T5793]  evict_inodes+0x6f6/0x790
[  131.857516][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  131.859445][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  131.861199][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  131.863257][ T5793]  kill_block_super+0x44/0x90
[  131.865003][ T5793]  xfs_kill_sb+0x15/0x50
[  131.866684][ T5793]  deactivate_locked_super+0xc4/0x130
[  131.868727][ T5793]  cleanup_mnt+0x41f/0x4b0
[  131.870441][ T5793]  task_work_run+0x24f/0x310
[  131.872300][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  131.874300][ T5793]  ? __x64_sys_umount+0x123/0x170
[  131.876243][ T5793]  ? rcu_is_watching+0x15/0xb0
[  131.878041][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  131.880158][ T5793]  do_syscall_64+0x100/0x230
[  131.881902][ T5793]  ? clear_bhb_loop+0x35/0x90
[  131.883748][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.885990][ T5793] RIP: 0033:0x7f451fb7fa47
[  131.887728][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  131.895008][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  131.898387][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  131.901396][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  131.904482][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  131.907550][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  131.910280][ T5793] R13: 00007f451fbf15fc R14: 00000000000200e0 R15: 00007ffe39c14620
[  131.913299][ T5793]  </TASK>
[  131.920218][ T5793] BUG: Bad page state in process syz-executor  pfn:4a200
[  131.923278][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4a200
[  131.926768][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  131.930027][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  131.934637][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  131.937914][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  131.941636][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  131.945398][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  131.948728][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  131.952043][ T5793] head: 0000000700000200 0000000000000000 00000000ffffffff 0000000000000000
[  131.956421][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  131.959189][ T5793] page_owner tracks the page as allocated
[  131.961310][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5946, tgid 5945 (syz.0.26), ts 131597838547, free_ts 131381352788
[  131.970567][ T5793]  post_alloc_hook+0x1f3/0x230
[  131.972890][ T5793]  get_page_from_freelist+0x303f/0x3190
[  131.974963][ T5793]  __alloc_pages_noprof+0x292/0x710
[  131.976898][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  131.978878][ T5793]  folio_alloc_noprof+0x128/0x180
[  131.980880][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  131.985841][ T5793]  __filemap_get_folio+0x446/0xbd0
[  131.987836][ T5793]  iomap_write_begin+0x52a/0x16f0
[  131.989654][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  131.991760][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  131.994499][ T5793]  vfs_write+0xaeb/0xd30
[  131.996045][ T5793]  ksys_write+0x183/0x2b0
[  131.997666][ T5793]  do_syscall_64+0xf3/0x230
[  131.999395][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.001579][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  132.004462][ T5793]  free_unref_folios+0xf12/0x18d0
[  132.006348][ T5793]  folios_put_refs+0x76c/0x860
[  132.008080][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  132.010158][ T5793]  evict+0x4fd/0x9b0
[  132.011568][ T5793]  evict_inodes+0x6f6/0x790
[  132.013879][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  132.015840][ T5793]  kill_block_super+0x44/0x90
[  132.017593][ T5793]  xfs_kill_sb+0x15/0x50
[  132.019446][ T5793]  deactivate_locked_super+0xc4/0x130
[  132.021611][ T5793]  cleanup_mnt+0x41f/0x4b0
[  132.024439][ T5793]  task_work_run+0x24f/0x310
[  132.026185][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  132.028184][ T5793]  do_syscall_64+0x100/0x230
[  132.029871][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.032020][ T5793] Modules linked in:
[  132.034223][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  132.037933][ T5793] Tainted: [B]=BAD_PAGE
[  132.039428][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.043265][ T5793] Call Trace:
[  132.044516][ T5793]  <TASK>
[  132.045591][ T5793]  dump_stack_lvl+0x241/0x360
[  132.047349][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.049336][ T5793]  ? __pfx_print_modules+0x10/0x10
[  132.051222][ T5793]  bad_page+0x176/0x1d0
[  132.052733][ T5793]  free_unref_page+0xed0/0xf20
[  132.054558][ T5793]  __folio_put+0x2c7/0x440
[  132.056186][ T5793]  ? __pfx___folio_put+0x10/0x10
[  132.058052][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  132.059892][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  132.061745][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  132.063874][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  132.066147][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  132.068208][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  132.070306][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  132.072346][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  132.074488][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  132.076434][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  132.078511][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  132.080795][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  132.083084][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  132.085130][ T5793]  ? rcu_is_watching+0x15/0xb0
[  132.086987][ T5793]  evict+0x4fd/0x9b0
[  132.088438][ T5793]  ? __pfx_evict+0x10/0x10
[  132.090074][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  132.091931][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  132.093804][ T5793]  evict_inodes+0x6f6/0x790
[  132.095436][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  132.097340][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  132.099106][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  132.101003][ T5793]  kill_block_super+0x44/0x90
[  132.102741][ T5793]  xfs_kill_sb+0x15/0x50
[  132.104271][ T5793]  deactivate_locked_super+0xc4/0x130
[  132.106188][ T5793]  cleanup_mnt+0x41f/0x4b0
[  132.107779][ T5793]  task_work_run+0x24f/0x310
[  132.109461][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  132.111305][ T5793]  ? __x64_sys_umount+0x123/0x170
[  132.113103][ T5793]  ? rcu_is_watching+0x15/0xb0
[  132.114906][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  132.116915][ T5793]  do_syscall_64+0x100/0x230
[  132.118668][ T5793]  ? clear_bhb_loop+0x35/0x90
[  132.120316][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.122492][ T5793] RIP: 0033:0x7f451fb7fa47
[  132.124163][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  132.131039][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  132.134045][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  132.136867][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  132.139757][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  132.142666][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  132.145423][ T5793] R13: 00007f451fbf15fc R14: 00000000000200e0 R15: 00007ffe39c14620
[  132.148259][ T5793]  </TASK>
[  132.156074][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  132.328192][ T5956] loop0: detected capacity change from 0 to 32768
[  132.349153][ T5956] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  132.376418][ T5956] XFS (loop0): Ending clean mount
[  132.419569][ T5793] BUG: Bad page state in process syz-executor  pfn:54601
[  132.422619][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x54601
[  132.425982][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  132.429210][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  132.433434][ T5793] raw: 04fff00000000000 ffffea0001518001 ffffffffffffffff ffffffff00000000
[  132.436678][ T5793] raw: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  132.439845][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  132.453376][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  132.456757][ T5793] head: 04fff00000000000 ffffea0001518001 ffffffffffffffff ffffffff00000000
[  132.460037][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  132.472812][ T5793] page dumped because: nonzero pincount
[  132.474906][ T5793] page_owner tracks the page as allocated
[  132.477067][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5956, tgid 5955 (syz.0.27), ts 132382041560, free_ts 132155019825
[  132.502162][ T5793]  post_alloc_hook+0x1f3/0x230
[  132.504089][ T5793]  get_page_from_freelist+0x303f/0x3190
[  132.506181][ T5793]  __alloc_pages_noprof+0x292/0x710
[  132.508700][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  132.511173][ T5793]  folio_alloc_noprof+0x128/0x180
[  132.522531][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  132.524791][ T5793]  __filemap_get_folio+0x446/0xbd0
[  132.526642][ T5793]  iomap_write_begin+0x52a/0x16f0
[  132.528542][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  132.530908][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  132.552358][ T5793]  vfs_write+0xaeb/0xd30
[  132.554065][ T5793]  ksys_write+0x183/0x2b0
[  132.556347][ T5793]  do_syscall_64+0xf3/0x230
[  132.558004][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.560149][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  132.572390][ T5793]  free_unref_folios+0xf12/0x18d0
[  132.574202][ T5793]  folios_put_refs+0x76c/0x860
[  132.575918][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  132.577902][ T5793]  evict+0x4fd/0x9b0
[  132.579284][ T5793]  evict_inodes+0x6f6/0x790
[  132.580892][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  132.592706][ T5793]  kill_block_super+0x44/0x90
[  132.594593][ T5793]  xfs_kill_sb+0x15/0x50
[  132.596228][ T5793]  deactivate_locked_super+0xc4/0x130
[  132.598386][ T5793]  cleanup_mnt+0x41f/0x4b0
[  132.600245][ T5793]  task_work_run+0x24f/0x310
[  132.602022][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  132.612366][ T5793]  do_syscall_64+0x100/0x230
[  132.614430][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.622464][ T5793] Modules linked in:
[  132.624080][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  132.628036][ T5793] Tainted: [B]=BAD_PAGE
[  132.629652][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.633789][ T5793] Call Trace:
[  132.635077][ T5793]  <TASK>
[  132.636187][ T5793]  dump_stack_lvl+0x241/0x360
[  132.637904][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.639921][ T5793]  ? __pfx_print_modules+0x10/0x10
[  132.641700][ T5793]  ? percpu_ref_put+0x19/0x180
[  132.643502][ T5793]  bad_page+0x176/0x1d0
[  132.645187][ T5793]  free_tail_page_prepare+0x277/0x4a0
[  132.647332][ T5793]  free_unref_page+0x7b2/0xf20
[  132.649254][ T5793]  __folio_put+0x2c7/0x440
[  132.651071][ T5793]  ? __pfx___folio_put+0x10/0x10
[  132.652935][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  132.654829][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  132.656856][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  132.659200][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  132.661724][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  132.663958][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  132.666363][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  132.668578][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  132.670923][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  132.673100][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  132.675414][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  132.677820][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  132.680405][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  132.682521][ T5793]  ? rcu_is_watching+0x15/0xb0
[  132.684466][ T5793]  evict+0x4fd/0x9b0
[  132.686004][ T5793]  ? __pfx_evict+0x10/0x10
[  132.687777][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  132.689801][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  132.692054][ T5793]  evict_inodes+0x6f6/0x790
[  132.693890][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  132.695846][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  132.697658][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  132.699740][ T5793]  kill_block_super+0x44/0x90
[  132.701501][ T5793]  xfs_kill_sb+0x15/0x50
[  132.703034][ T5793]  deactivate_locked_super+0xc4/0x130
[  132.704879][ T5793]  cleanup_mnt+0x41f/0x4b0
[  132.706453][ T5793]  task_work_run+0x24f/0x310
[  132.708154][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  132.709910][ T5793]  ? __x64_sys_umount+0x123/0x170
[  132.711662][ T5793]  ? rcu_is_watching+0x15/0xb0
[  132.713315][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  132.715285][ T5793]  do_syscall_64+0x100/0x230
[  132.716913][ T5793]  ? clear_bhb_loop+0x35/0x90
[  132.718630][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.720664][ T5793] RIP: 0033:0x7f451fb7fa47
[  132.722272][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  132.728896][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  132.731782][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  132.734510][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  132.737239][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  132.740037][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  132.742751][ T5793] R13: 00007f451fbf15fc R14: 00000000000203e2 R15: 00007ffe39c14620
[  132.745481][ T5793]  </TASK>
[  132.752529][ T5793] BUG: Bad page state in process syz-executor  pfn:54600
[  132.754907][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x54600
[  132.757932][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  132.761320][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[  132.765268][ T5793] raw: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  132.768281][ T5793] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  132.771190][ T5793] head: 04fff0000000004d dead000000000100 dead000000000122 0000000000000000
[  132.774854][ T5793] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[  132.778255][ T5793] head: 04fff00000000000 0000000000000000 ffffffffffffffff 0000000000000000
[  132.781311][ T5793] head: 0000000000000200 0000000000000000 00000000ffffffff 0000000000000000
[  132.784835][ T5793] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[  132.787378][ T5793] page_owner tracks the page as allocated
[  132.789406][ T5793] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE|__GFP_WRITE), pid 5956, tgid 5955 (syz.0.27), ts 132382041560, free_ts 132155019825
[  132.797708][ T5793]  post_alloc_hook+0x1f3/0x230
[  132.799406][ T5793]  get_page_from_freelist+0x303f/0x3190
[  132.801314][ T5793]  __alloc_pages_noprof+0x292/0x710
[  132.803891][ T5793]  alloc_pages_mpol_noprof+0x3e8/0x680
[  132.805796][ T5793]  folio_alloc_noprof+0x128/0x180
[  132.807615][ T5793]  filemap_alloc_folio_noprof+0xdf/0x500
[  132.809552][ T5793]  __filemap_get_folio+0x446/0xbd0
[  132.811340][ T5793]  iomap_write_begin+0x52a/0x16f0
[  132.813546][ T5793]  iomap_file_buffered_write+0x68f/0xe50
[  132.815532][ T5793]  xfs_file_buffered_write+0x2de/0xac0
[  132.817385][ T5793]  vfs_write+0xaeb/0xd30
[  132.818863][ T5793]  ksys_write+0x183/0x2b0
[  132.820349][ T5793]  do_syscall_64+0xf3/0x230
[  132.821937][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.824729][ T5793] page last free pid 5793 tgid 5793 stack trace:
[  132.826919][ T5793]  free_unref_folios+0xf12/0x18d0
[  132.828635][ T5793]  folios_put_refs+0x76c/0x860
[  132.830277][ T5793]  truncate_inode_pages_range+0x47b/0xfc0
[  132.832628][ T5793]  evict+0x4fd/0x9b0
[  132.834014][ T5793]  evict_inodes+0x6f6/0x790
[  132.835569][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  132.837394][ T5793]  kill_block_super+0x44/0x90
[  132.839009][ T5793]  xfs_kill_sb+0x15/0x50
[  132.840461][ T5793]  deactivate_locked_super+0xc4/0x130
[  132.842944][ T5793]  cleanup_mnt+0x41f/0x4b0
[  132.844529][ T5793]  task_work_run+0x24f/0x310
[  132.846143][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  132.848050][ T5793]  do_syscall_64+0x100/0x230
[  132.849633][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.851655][ T5793] Modules linked in:
[  132.854042][ T5793] CPU: 0 UID: 0 PID: 5793 Comm: syz-executor Tainted: G    B              6.12.0-rc6-syzkaller #0
[  132.857639][ T5793] Tainted: [B]=BAD_PAGE
[  132.859093][ T5793] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  132.862851][ T5793] Call Trace:
[  132.864012][ T5793]  <TASK>
[  132.865024][ T5793]  dump_stack_lvl+0x241/0x360
[  132.866688][ T5793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.868471][ T5793]  ? __pfx_print_modules+0x10/0x10
[  132.870225][ T5793]  bad_page+0x176/0x1d0
[  132.871662][ T5793]  free_unref_page+0xed0/0xf20
[  132.873310][ T5793]  __folio_put+0x2c7/0x440
[  132.874877][ T5793]  ? __pfx___folio_put+0x10/0x10
[  132.876574][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  132.878336][ T5793]  ? filemap_free_folio+0x1d1/0x3b0
[  132.880108][ T5793]  delete_from_page_cache_batch+0xaed/0xc70
[  132.882131][ T5793]  ? __pfx_delete_from_page_cache_batch+0x10/0x10
[  132.884363][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  132.886257][ T5793]  ? __pfx_workingset_update_node+0x10/0x10
[  132.888298][ T5793]  ? truncate_cleanup_folio+0x11a/0x450
[  132.890189][ T5793]  ? __pfx_iomap_invalidate_folio+0x10/0x10
[  132.892202][ T5793]  ? truncate_cleanup_folio+0x264/0x450
[  132.894099][ T5793]  truncate_inode_pages_range+0x364/0xfc0
[  132.896088][ T5793]  ? __pfx_filemap_get_folios_tag+0x10/0x10
[  132.898113][ T5793]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  132.900234][ T5793]  ? _raw_spin_lock_irq+0xdf/0x120
[  132.901992][ T5793]  ? rcu_is_watching+0x15/0xb0
[  132.903696][ T5793]  evict+0x4fd/0x9b0
[  132.905065][ T5793]  ? __pfx_evict+0x10/0x10
[  132.906634][ T5793]  ? do_raw_spin_unlock+0x58/0x8b0
[  132.908413][ T5793]  ? list_lru_del_obj+0x3b5/0x400
[  132.910161][ T5793]  evict_inodes+0x6f6/0x790
[  132.911759][ T5793]  ? __pfx_evict_inodes+0x10/0x10
[  132.913467][ T5793]  ? xfs_fs_sync_fs+0x1d0/0x390
[  132.915156][ T5793]  generic_shutdown_super+0xa0/0x2d0
[  132.916980][ T5793]  kill_block_super+0x44/0x90
[  132.918584][ T5793]  xfs_kill_sb+0x15/0x50
[  132.920052][ T5793]  deactivate_locked_super+0xc4/0x130
[  132.922041][ T5793]  cleanup_mnt+0x41f/0x4b0
[  132.923793][ T5793]  task_work_run+0x24f/0x310
[  132.925397][ T5793]  ? __pfx_task_work_run+0x10/0x10
[  132.927268][ T5793]  ? __x64_sys_umount+0x123/0x170
[  132.929057][ T5793]  ? rcu_is_watching+0x15/0xb0
[  132.930763][ T5793]  syscall_exit_to_user_mode+0x168/0x370
[  132.932704][ T5793]  do_syscall_64+0x100/0x230
[  132.934344][ T5793]  ? clear_bhb_loop+0x35/0x90
[  132.935996][ T5793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.938107][ T5793] RIP: 0033:0x7f451fb7fa47
[  132.939691][ T5793] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  132.946493][ T5793] RSP: 002b:00007ffe39c134a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  132.949492][ T5793] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f451fb7fa47
[  132.952274][ T5793] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe39c13560
[  132.955141][ T5793] RBP: 00007ffe39c13560 R08: 0000000000000000 R09: 0000000000000000
[  132.957902][ T5793] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe39c145e0
[  132.960710][ T5793] R13: 00007f451fbf15fc R14: 00000000000203e2 R15: 00007ffe39c14620
[  132.963460][ T5793]  </TASK>
[  132.970495][ T5793] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  133.137002][ T5966] loop0: detected capacity change from 0 to 32768
[  133.186635][ T5966] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  133.200247][ T5966] XFS (loop0): Ending clean mount
[  133.241857][ T5793] BUG: Bad page state in process syz-executor  pfn:54201
[  133.245147][ T5793] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x54201
[  133.248380][ T5793] head: order:0 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:-1
[  133.251422][ T5793] flags: 0x4fff0000000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)