Warning: Permanently added '[localhost]:22340' (ED25519) to the list of known hosts.
[ 81.522354][ T834] cfg80211: failed to load regulatory.db
2025/05/02 09:23:02 ignoring optional flag "sandboxArg"="0"
2025/05/02 09:23:03 parsed 1 programs
[ 85.402524][ T40] audit: type=1400 audit(1746177786.256:144): avc: denied { unlink } for pid=6211 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 86.536841][ T6211] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 88.509784][ T5961] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 88.513538][ T5961] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 88.517195][ T5961] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 88.522070][ T5961] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 88.525544][ T5961] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 88.806982][ T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 88.810257][ T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 88.837228][ T1139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 88.840636][ T1139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 89.010742][ T40] audit: type=1401 audit(1746177789.866:145): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 89.894987][ T6311] chnl_net:caif_netlink_parms(): no params data found
[ 89.986792][ T6311] bridge0: port 1(bridge_slave_0) entered blocking state
[ 89.989908][ T6311] bridge0: port 1(bridge_slave_0) entered disabled state
[ 89.993368][ T6311] bridge_slave_0: entered allmulticast mode
[ 89.997178][ T6311] bridge_slave_0: entered promiscuous mode
[ 90.002777][ T6311] bridge0: port 2(bridge_slave_1) entered blocking state
[ 90.005791][ T6311] bridge0: port 2(bridge_slave_1) entered disabled state
[ 90.008808][ T6311] bridge_slave_1: entered allmulticast mode
[ 90.011671][ T6311] bridge_slave_1: entered promiscuous mode
[ 90.058268][ T6311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 90.065376][ T6311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 90.126187][ T6311] team0: Port device team_slave_0 added
[ 90.133198][ T6311] team0: Port device team_slave_1 added
[ 90.166919][ T6311] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 90.169132][ T6311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 90.177140][ T6311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 90.182622][ T6311] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 90.184867][ T6311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 90.192958][ T6311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 90.244986][ T6311] hsr_slave_0: entered promiscuous mode
[ 90.248166][ T6311] hsr_slave_1: entered promiscuous mode
[ 90.797126][ T6311] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 90.801224][ T6311] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 90.805615][ T6311] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 90.811058][ T6311] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 90.826421][ T6311] bridge0: port 2(bridge_slave_1) entered blocking state
[ 90.828882][ T6311] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 90.831822][ T6311] bridge0: port 1(bridge_slave_0) entered blocking state
[ 90.834081][ T6311] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 90.881626][ T6311] 8021q: adding VLAN 0 to HW filter on device bond0
[ 90.885742][ T65] bridge0: port 1(bridge_slave_0) entered disabled state
[ 90.889243][ T65] bridge0: port 2(bridge_slave_1) entered disabled state
[ 90.909025][ T6311] 8021q: adding VLAN 0 to HW filter on device team0
[ 90.917072][ T1196] bridge0: port 1(bridge_slave_0) entered blocking state
[ 90.919466][ T1196] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 90.925117][ T1196] bridge0: port 2(bridge_slave_1) entered blocking state
[ 90.927455][ T1196] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 91.030438][ T6311] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 91.052938][ T6311] veth0_vlan: entered promiscuous mode
[ 91.058476][ T6311] veth1_vlan: entered promiscuous mode
[ 91.076244][ T6311] veth0_macvtap: entered promiscuous mode
[ 91.079904][ T6311] veth1_macvtap: entered promiscuous mode
[ 91.089965][ T6311] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 91.097642][ T6311] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 91.103660][ T6311] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.107227][ T6311] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.110350][ T6311] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.114258][ T6311] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 91.223632][ T101] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 91.301998][ T101] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 91.386668][ T101] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 91.474719][ T101] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/05/02 09:23:12 executed programs: 0
[ 91.865405][ T5288] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 91.868623][ T5288] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 91.871884][ T5288] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 91.877429][ T5288] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 91.881533][ T5288] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 91.994198][ T6404] chnl_net:caif_netlink_parms(): no params data found
[ 92.099866][ T6404] bridge0: port 1(bridge_slave_0) entered blocking state
[ 92.102272][ T6404] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.104827][ T6404] bridge_slave_0: entered allmulticast mode
[ 92.107492][ T6404] bridge_slave_0: entered promiscuous mode
[ 92.113817][ T6404] bridge0: port 2(bridge_slave_1) entered blocking state
[ 92.116324][ T6404] bridge0: port 2(bridge_slave_1) entered disabled state
[ 92.119068][ T6404] bridge_slave_1: entered allmulticast mode
[ 92.125133][ T6404] bridge_slave_1: entered promiscuous mode
[ 92.171547][ T6404] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 92.180402][ T6404] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 92.239763][ T6404] team0: Port device team_slave_0 added
[ 92.245810][ T6404] team0: Port device team_slave_1 added
[ 92.299015][ T6404] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 92.301498][ T6404] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.310368][ T6404] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 92.316159][ T6404] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 92.318420][ T6404] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 92.327370][ T6404] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 92.384541][ T6404] hsr_slave_0: entered promiscuous mode
[ 92.387555][ T6404] hsr_slave_1: entered promiscuous mode
[ 92.391060][ T6404] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 92.394184][ T6404] Cannot create hsr debugfs directory
[ 93.920740][ T5288] Bluetooth: hci0: command tx timeout
[ 94.887238][ T101] bridge_slave_1: left allmulticast mode
[ 94.889171][ T101] bridge_slave_1: left promiscuous mode
[ 94.891188][ T101] bridge0: port 2(bridge_slave_1) entered disabled state
[ 94.895316][ T101] bridge_slave_0: left allmulticast mode
[ 94.897115][ T101] bridge_slave_0: left promiscuous mode
[ 94.899040][ T101] bridge0: port 1(bridge_slave_0) entered disabled state
[ 95.079272][ T101] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 95.083407][ T101] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 95.086943][ T101] bond0 (unregistering): Released all slaves
[ 95.230697][ T101] hsr_slave_0: left promiscuous mode
[ 95.234649][ T101] hsr_slave_1: left promiscuous mode
[ 95.237523][ T101] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 95.240790][ T101] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 95.244580][ T101] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 95.247152][ T101] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 95.260247][ T101] veth1_macvtap: left promiscuous mode
[ 95.262484][ T101] veth0_macvtap: left promiscuous mode
[ 95.264287][ T101] veth1_vlan: left promiscuous mode
[ 95.265974][ T101] veth0_vlan: left promiscuous mode
[ 95.715770][ T101] team0 (unregistering): Port device team_slave_1 removed
[ 95.775338][ T101] team0 (unregistering): Port device team_slave_0 removed
[ 96.000711][ T5288] Bluetooth: hci0: command tx timeout
[ 96.516135][ T6404] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 96.520954][ T6404] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 96.526291][ T6404] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 96.530119][ T6404] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 96.570916][ T6404] 8021q: adding VLAN 0 to HW filter on device bond0
[ 96.579386][ T6404] 8021q: adding VLAN 0 to HW filter on device team0
[ 96.592126][ T65] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.594682][ T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 96.598069][ T65] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.600905][ T65] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 96.748408][ T6404] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 96.776709][ T6404] veth0_vlan: entered promiscuous mode
[ 96.786155][ T6404] veth1_vlan: entered promiscuous mode
[ 96.812502][ T6404] veth0_macvtap: entered promiscuous mode
[ 96.819536][ T6404] veth1_macvtap: entered promiscuous mode
[ 96.834790][ T6404] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 96.847398][ T6404] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 96.862737][ T6404] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.865446][ T6404] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.868081][ T6404] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.871154][ T6404] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 96.900086][ T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 96.904682][ T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 96.917490][ T1138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 96.920435][ T1138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/05/02 09:23:17 executed programs: 2
[ 96.974620][ T40] audit: type=1400 audit(1746177797.826:146): avc: denied { read write } for pid=6528 comm="syz.0.16" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 96.984979][ T40] audit: type=1400 audit(1746177797.826:147): avc: denied { open } for pid=6528 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 96.995221][ T40] audit: type=1400 audit(1746177797.826:148): avc: denied { map } for pid=6528 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 97.005364][ T40] audit: type=1400 audit(1746177797.826:149): avc: denied { execute } for pid=6528 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 97.015479][ T40] audit: type=1400 audit(1746177797.826:150): avc: denied { create } for pid=6528 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 97.023995][ T40] audit: type=1400 audit(1746177797.836:151): avc: denied { bind } for pid=6528 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 97.029344][ T6529] BUG: Bad page state in process syz.0.16 pfn:4ae01
[ 97.031725][ T40] audit: type=1400 audit(1746177797.836:152): avc: denied { write } for pid=6528 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 97.033461][ T6529] page does not match folio
[ 97.043733][ T6529] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4ae01
[ 97.047686][ T6529] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.050769][ T6529] raw: 00fff00000000000 ffffea00012b8000 00000000ffffffff ffffffffffffffff
[ 97.054222][ T6529] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.057671][ T6529] page dumped because: nonzero pincount
[ 97.059936][ T6529] page_owner tracks the page as allocated
[ 97.069254][ T6529] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6528, tgid 6528 (syz.0.16), ts 96978401088, free_ts 60314976314
[ 97.075572][ T6529] post_alloc_hook+0x181/0x1b0
[ 97.077092][ T6529] get_page_from_freelist+0x135c/0x3920
[ 97.078823][ T6529] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.080791][ T6529] alloc_pages_mpol+0x1fb/0x550
[ 97.082311][ T6529] folio_alloc_noprof+0x20/0x2d0
[ 97.083812][ T6529] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.085737][ T6529] page_cache_ra_order+0x4c0/0xd00
[ 97.087283][ T6529] filemap_fault+0x1a5e/0x2740
[ 97.088890][ T6529] __do_fault+0x10a/0x490
[ 97.090208][ T6529] do_pte_missing+0x1a6/0x3fb0
[ 97.091741][ T6529] __handle_mm_fault+0x103d/0x2a40
[ 97.093531][ T6529] handle_mm_fault+0x3fe/0xad0
[ 97.095065][ T6529] do_user_addr_fault+0x60c/0x1370
[ 97.096638][ T6529] exc_page_fault+0x5c/0xc0
[ 97.098131][ T6529] asm_exc_page_fault+0x26/0x30
[ 97.099663][ T6529] page last free pid 6017 tgid 6017 stack trace:
[ 97.101651][ T6529] __free_frozen_pages+0x69d/0xff0
[ 97.103229][ T6529] vfree+0x176/0x960
[ 97.104614][ T6529] kcov_close+0x34/0x60
[ 97.105926][ T6529] __fput+0x3ff/0xb70
[ 97.107174][ T6529] task_work_run+0x14d/0x240
[ 97.108688][ T6529] do_exit+0xafb/0x2c30
[ 97.109990][ T6529] do_group_exit+0xd3/0x2a0
[ 97.111603][ T6529] get_signal+0x2673/0x26d0
[ 97.112987][ T6529] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.114928][ T6529] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.116811][ T6529] do_syscall_64+0xda/0x260
[ 97.118207][ T6529] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.120400][ T6529] Modules linked in:
[ 97.121932][ T6529] CPU: 1 UID: 0 PID: 6529 Comm: syz.0.16 Not tainted 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 97.121946][ T6529] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.121952][ T6529] Call Trace:
[ 97.121955][ T6529]
[ 97.121959][ T6529] dump_stack_lvl+0x16c/0x1f0
[ 97.121974][ T6529] bad_page+0xb3/0x1f0
[ 97.121985][ T6529] ? __pfx_bad_page+0x10/0x10
[ 97.121996][ T6529] ? __mem_cgroup_uncharge+0xda/0x130
[ 97.122009][ T6529] free_tail_page_prepare+0x44f/0x5b0
[ 97.122023][ T6529] __free_frozen_pages+0x96a/0xff0
[ 97.122037][ T6529] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 97.122050][ T6529] __folio_put+0x329/0x450
[ 97.122061][ T6529] ? __pfx___folio_put+0x10/0x10
[ 97.122072][ T6529] ? find_held_lock+0x2b/0x80
[ 97.122085][ T6529] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.122096][ T6529] ? mark_held_locks+0x49/0x80
[ 97.122112][ T6529] filemap_free_folio+0x132/0x170
[ 97.122123][ T6529] delete_from_page_cache_batch+0x741/0x9b0
[ 97.122137][ T6529] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.122150][ T6529] ? __pfx_workingset_update_node+0x10/0x10
[ 97.122171][ T6529] truncate_inode_pages_range+0x279/0xe30
[ 97.122188][ T6529] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.122212][ T6529] ? __lock_acquire+0xaa4/0x1ba0
[ 97.122239][ T6529] ? __pfx_down_write+0x10/0x10
[ 97.122252][ T6529] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.122268][ T6529] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.122284][ T6529] blkdev_flush_mapping+0xe9/0x280
[ 97.122296][ T6529] ? filemap_check_errors+0xa9/0x160
[ 97.122312][ T6529] blkdev_put_whole+0xc4/0xf0
[ 97.122323][ T6529] bdev_release+0x47e/0x6d0
[ 97.122337][ T6529] ? __pfx_blkdev_release+0x10/0x10
[ 97.122350][ T6529] blkdev_release+0x15/0x20
[ 97.122361][ T6529] __fput+0x3ff/0xb70
[ 97.122375][ T6529] task_work_run+0x14d/0x240
[ 97.122386][ T6529] ? __pfx_task_work_run+0x10/0x10
[ 97.122397][ T6529] ? do_raw_spin_unlock+0x172/0x230
[ 97.122410][ T6529] do_exit+0xafb/0x2c30
[ 97.122424][ T6529] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.122442][ T6529] ? __pfx_do_exit+0x10/0x10
[ 97.122456][ T6529] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.122466][ T6529] ? find_held_lock+0x2b/0x80
[ 97.122479][ T6529] do_group_exit+0xd3/0x2a0
[ 97.122495][ T6529] get_signal+0x2673/0x26d0
[ 97.122512][ T6529] ? __pfx_get_signal+0x10/0x10
[ 97.122524][ T6529] ? do_futex+0x122/0x350
[ 97.122538][ T6529] ? __pfx_do_futex+0x10/0x10
[ 97.122552][ T6529] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.122569][ T6529] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.122596][ T6529] ? rcu_is_watching+0x12/0xc0
[ 97.122618][ T6529] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.122637][ T6529] do_syscall_64+0xda/0x260
[ 97.122657][ T6529] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.122673][ T6529] RIP: 0033:0x7f62ebd8e969
[ 97.122685][ T6529] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 97.122692][ T6529] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.122708][ T6529] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 97.122718][ T6529] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 97.122727][ T6529] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.122737][ T6529] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 97.122746][ T6529] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 97.122768][ T6529]
[ 97.122774][ T6529] Disabling lock debugging due to kernel taint
[ 97.232183][ T6529] BUG: Bad page state in process syz.0.16 pfn:4ae00
[ 97.234991][ T6529] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4ae00
[ 97.238461][ T6529] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 97.241899][ T6529] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 97.245539][ T6529] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.248855][ T6529] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.252480][ T6529] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.255978][ T6529] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.259344][ T6529] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.262724][ T6529] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.266098][ T6529] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 97.269007][ T6529] page_owner tracks the page as allocated
[ 97.271238][ T6529] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6528, tgid 6528 (syz.0.16), ts 96978401088, free_ts 60314965608
[ 97.278743][ T6529] post_alloc_hook+0x181/0x1b0
[ 97.280338][ T6529] get_page_from_freelist+0x135c/0x3920
[ 97.282809][ T6529] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.285352][ T6529] alloc_pages_mpol+0x1fb/0x550
[ 97.287242][ T6529] folio_alloc_noprof+0x20/0x2d0
[ 97.289165][ T6529] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.291708][ T6529] page_cache_ra_order+0x4c0/0xd00
[ 97.293711][ T6529] filemap_fault+0x1a5e/0x2740
[ 97.295677][ T6529] __do_fault+0x10a/0x490
[ 97.297224][ T6529] do_pte_missing+0x1a6/0x3fb0
[ 97.298719][ T6529] __handle_mm_fault+0x103d/0x2a40
[ 97.300319][ T6529] handle_mm_fault+0x3fe/0xad0
[ 97.302093][ T6529] do_user_addr_fault+0x60c/0x1370
[ 97.303337][ T40] audit: type=1400 audit(1746177798.156:153): avc: denied { rename } for pid=5330 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 97.303843][ T6529] exc_page_fault+0x5c/0xc0
[ 97.312472][ T40] audit: type=1400 audit(1746177798.156:154): avc: denied { unlink } for pid=5330 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 97.313749][ T6529] asm_exc_page_fault+0x26/0x30
[ 97.321742][ T40] audit: type=1400 audit(1746177798.156:155): avc: denied { create } for pid=5330 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 97.323483][ T6529] page last free pid 6017 tgid 6017 stack trace:
[ 97.334031][ T6529] __free_frozen_pages+0x69d/0xff0
[ 97.336076][ T6529] vfree+0x176/0x960
[ 97.337628][ T6529] kcov_close+0x34/0x60
[ 97.339057][ T6529] __fput+0x3ff/0xb70
[ 97.340555][ T6529] task_work_run+0x14d/0x240
[ 97.342309][ T6529] do_exit+0xafb/0x2c30
[ 97.343839][ T6529] do_group_exit+0xd3/0x2a0
[ 97.345688][ T6529] get_signal+0x2673/0x26d0
[ 97.347362][ T6529] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.349325][ T6529] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.351639][ T6529] do_syscall_64+0xda/0x260
[ 97.353488][ T6529] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.355684][ T6529] Modules linked in:
[ 97.357171][ T6529] CPU: 2 UID: 0 PID: 6529 Comm: syz.0.16 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 97.357187][ T6529] Tainted: [B]=BAD_PAGE
[ 97.357190][ T6529] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.357196][ T6529] Call Trace:
[ 97.357200][ T6529]
[ 97.357204][ T6529] dump_stack_lvl+0x16c/0x1f0
[ 97.357217][ T6529] bad_page+0xb3/0x1f0
[ 97.357228][ T6529] ? __pfx_bad_page+0x10/0x10
[ 97.357239][ T6529] ? page_bad_reason+0x9d/0x1e0
[ 97.357249][ T6529] __free_frozen_pages+0x76e/0xff0
[ 97.357264][ T6529] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 97.357275][ T6529] __folio_put+0x329/0x450
[ 97.357286][ T6529] ? __pfx___folio_put+0x10/0x10
[ 97.357296][ T6529] ? find_held_lock+0x2b/0x80
[ 97.357308][ T6529] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.357320][ T6529] ? mark_held_locks+0x49/0x80
[ 97.357334][ T6529] filemap_free_folio+0x132/0x170
[ 97.357345][ T6529] delete_from_page_cache_batch+0x741/0x9b0
[ 97.357357][ T6529] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.357368][ T6529] ? __pfx_workingset_update_node+0x10/0x10
[ 97.357386][ T6529] truncate_inode_pages_range+0x279/0xe30
[ 97.357401][ T6529] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.357418][ T6529] ? __lock_acquire+0xaa4/0x1ba0
[ 97.357436][ T6529] ? __pfx_down_write+0x10/0x10
[ 97.357449][ T6529] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.357465][ T6529] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.357479][ T6529] blkdev_flush_mapping+0xe9/0x280
[ 97.357491][ T6529] ? filemap_check_errors+0xa9/0x160
[ 97.357505][ T6529] blkdev_put_whole+0xc4/0xf0
[ 97.357516][ T6529] bdev_release+0x47e/0x6d0
[ 97.357529][ T6529] ? __pfx_blkdev_release+0x10/0x10
[ 97.357541][ T6529] blkdev_release+0x15/0x20
[ 97.357553][ T6529] __fput+0x3ff/0xb70
[ 97.357564][ T6529] task_work_run+0x14d/0x240
[ 97.357575][ T6529] ? __pfx_task_work_run+0x10/0x10
[ 97.357585][ T6529] ? do_raw_spin_unlock+0x172/0x230
[ 97.357596][ T6529] do_exit+0xafb/0x2c30
[ 97.357610][ T6529] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.357626][ T6529] ? __pfx_do_exit+0x10/0x10
[ 97.357640][ T6529] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.357649][ T6529] ? find_held_lock+0x2b/0x80
[ 97.357660][ T6529] do_group_exit+0xd3/0x2a0
[ 97.357675][ T6529] get_signal+0x2673/0x26d0
[ 97.357689][ T6529] ? __pfx_get_signal+0x10/0x10
[ 97.357701][ T6529] ? do_futex+0x122/0x350
[ 97.357713][ T6529] ? __pfx_do_futex+0x10/0x10
[ 97.357726][ T6529] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.357747][ T6529] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.357770][ T6529] ? rcu_is_watching+0x12/0xc0
[ 97.357791][ T6529] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.357810][ T6529] do_syscall_64+0xda/0x260
[ 97.357830][ T6529] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.357845][ T6529] RIP: 0033:0x7f62ebd8e969
[ 97.357856][ T6529] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 97.357863][ T6529] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.357876][ T6529] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 97.357886][ T6529] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 97.357895][ T6529] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.357904][ T6529] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 97.357912][ T6529] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 97.357926][ T6529]
[ 97.514259][ T6531] BUG: Bad page state in process syz.0.17 pfn:4c001
[ 97.516691][ T6531] page does not match folio
[ 97.518530][ T6531] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4c001
[ 97.523040][ T6531] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.526039][ T6531] raw: 00fff00000000000 ffffea0001300000 00000000ffffffff ffffffffffffffff
[ 97.529456][ T6531] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.533009][ T6531] page dumped because: nonzero pincount
[ 97.535200][ T6531] page_owner tracks the page as allocated
[ 97.537519][ T6531] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6530, tgid 6530 (syz.0.17), ts 97486462408, free_ts 97357975461
[ 97.545477][ T6531] post_alloc_hook+0x181/0x1b0
[ 97.547016][ T6531] get_page_from_freelist+0x135c/0x3920
[ 97.548750][ T6531] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.550789][ T6531] alloc_pages_mpol+0x1fb/0x550
[ 97.552282][ T6531] folio_alloc_noprof+0x20/0x2d0
[ 97.553779][ T6531] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.555545][ T6531] page_cache_ra_order+0x4c0/0xd00
[ 97.557092][ T6531] filemap_fault+0x1a5e/0x2740
[ 97.558560][ T6531] __do_fault+0x10a/0x490
[ 97.560138][ T6531] do_pte_missing+0x1a6/0x3fb0
[ 97.561864][ T6531] __handle_mm_fault+0x103d/0x2a40
[ 97.563413][ T6531] handle_mm_fault+0x3fe/0xad0
[ 97.564950][ T6531] do_user_addr_fault+0x60c/0x1370
[ 97.566859][ T6531] exc_page_fault+0x5c/0xc0
[ 97.568564][ T6531] asm_exc_page_fault+0x26/0x30
[ 97.570056][ T6531] page last free pid 6529 tgid 6528 stack trace:
[ 97.572265][ T6531] free_unref_folios+0x999/0x1630
[ 97.573806][ T6531] folios_put_refs+0x56f/0x740
[ 97.575301][ T6531] truncate_inode_pages_range+0x311/0xe30
[ 97.577059][ T6531] blkdev_flush_mapping+0xe9/0x280
[ 97.578975][ T6531] blkdev_put_whole+0xc4/0xf0
[ 97.580397][ T6531] bdev_release+0x47e/0x6d0
[ 97.582075][ T6531] blkdev_release+0x15/0x20
[ 97.583598][ T6531] __fput+0x3ff/0xb70
[ 97.585163][ T6531] task_work_run+0x14d/0x240
[ 97.586569][ T6531] do_exit+0xafb/0x2c30
[ 97.587848][ T6531] do_group_exit+0xd3/0x2a0
[ 97.589283][ T6531] get_signal+0x2673/0x26d0
[ 97.590937][ T6531] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.592633][ T6531] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.594323][ T6531] do_syscall_64+0xda/0x260
[ 97.595830][ T6531] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.598045][ T6531] Modules linked in:
[ 97.599449][ T6531] CPU: 1 UID: 0 PID: 6531 Comm: syz.0.17 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 97.599465][ T6531] Tainted: [B]=BAD_PAGE
[ 97.599468][ T6531] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.599474][ T6531] Call Trace:
[ 97.599478][ T6531]
[ 97.599482][ T6531] dump_stack_lvl+0x16c/0x1f0
[ 97.599496][ T6531] bad_page+0xb3/0x1f0
[ 97.599507][ T6531] ? __pfx_bad_page+0x10/0x10
[ 97.599517][ T6531] ? __mem_cgroup_uncharge+0xda/0x130
[ 97.599530][ T6531] free_tail_page_prepare+0x44f/0x5b0
[ 97.599543][ T6531] __free_frozen_pages+0x96a/0xff0
[ 97.599558][ T6531] __folio_put+0x329/0x450
[ 97.599569][ T6531] ? __pfx___folio_put+0x10/0x10
[ 97.599579][ T6531] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.599591][ T6531] ? rcu_is_watching+0x12/0xc0
[ 97.599602][ T6531] ? lock_release+0x201/0x2f0
[ 97.599618][ T6531] filemap_free_folio+0x132/0x170
[ 97.599628][ T6531] delete_from_page_cache_batch+0x741/0x9b0
[ 97.599640][ T6531] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.599652][ T6531] ? __pfx_workingset_update_node+0x10/0x10
[ 97.599663][ T6531] ? xas_move_index+0xb0/0x110
[ 97.599675][ T6531] truncate_inode_pages_range+0x279/0xe30
[ 97.599690][ T6531] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.599712][ T6531] ? __pfx_down_write+0x10/0x10
[ 97.599725][ T6531] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.599740][ T6531] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.599755][ T6531] blkdev_flush_mapping+0xe9/0x280
[ 97.599766][ T6531] ? filemap_check_errors+0xa9/0x160
[ 97.599781][ T6531] blkdev_put_whole+0xc4/0xf0
[ 97.599792][ T6531] bdev_release+0x47e/0x6d0
[ 97.599804][ T6531] ? __pfx_blkdev_release+0x10/0x10
[ 97.599816][ T6531] blkdev_release+0x15/0x20
[ 97.599828][ T6531] __fput+0x3ff/0xb70
[ 97.599840][ T6531] task_work_run+0x14d/0x240
[ 97.599850][ T6531] ? __pfx_task_work_run+0x10/0x10
[ 97.599860][ T6531] ? do_raw_spin_unlock+0x172/0x230
[ 97.599871][ T6531] do_exit+0xafb/0x2c30
[ 97.599884][ T6531] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.599900][ T6531] ? __pfx_do_exit+0x10/0x10
[ 97.599914][ T6531] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.599924][ T6531] ? get_signal+0x8f5/0x26d0
[ 97.599953][ T6531] ? rcu_is_watching+0x12/0xc0
[ 97.599969][ T6531] do_group_exit+0xd3/0x2a0
[ 97.599984][ T6531] get_signal+0x2673/0x26d0
[ 97.599998][ T6531] ? __pfx_get_signal+0x10/0x10
[ 97.600009][ T6531] ? do_futex+0x122/0x350
[ 97.600022][ T6531] ? __pfx_do_futex+0x10/0x10
[ 97.600035][ T6531] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.600049][ T6531] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.600064][ T6531] ? rcu_is_watching+0x12/0xc0
[ 97.600076][ T6531] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.600088][ T6531] do_syscall_64+0xda/0x260
[ 97.600099][ T6531] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.600109][ T6531] RIP: 0033:0x7f62ebd8e969
[ 97.600117][ T6531] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 97.600121][ T6531] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.600131][ T6531] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 97.600137][ T6531] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 97.600143][ T6531] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.600160][ T6531] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 97.600166][ T6531] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 97.600174][ T6531]
[ 97.600189][ T6531] BUG: Bad page state in process syz.0.17 pfn:4c000
[ 97.716152][ T6531] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4c000
[ 97.719354][ T6531] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 97.722339][ T6531] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 97.725109][ T6531] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.727697][ T6531] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.730398][ T6531] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.733020][ T6531] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.735651][ T6531] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.738133][ T6531] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.740693][ T6531] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 97.742879][ T6531] page_owner tracks the page as allocated
[ 97.744655][ T6531] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6530, tgid 6530 (syz.0.17), ts 97486462408, free_ts 97357975461
[ 97.750634][ T6531] post_alloc_hook+0x181/0x1b0
[ 97.752120][ T6531] get_page_from_freelist+0x135c/0x3920
[ 97.753737][ T6531] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.755471][ T6531] alloc_pages_mpol+0x1fb/0x550
[ 97.756901][ T6531] folio_alloc_noprof+0x20/0x2d0
[ 97.758364][ T6531] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.760114][ T6531] page_cache_ra_order+0x4c0/0xd00
[ 97.761783][ T6531] filemap_fault+0x1a5e/0x2740
[ 97.763296][ T6531] __do_fault+0x10a/0x490
[ 97.764671][ T6531] do_pte_missing+0x1a6/0x3fb0
[ 97.766157][ T6531] __handle_mm_fault+0x103d/0x2a40
[ 97.767695][ T6531] handle_mm_fault+0x3fe/0xad0
[ 97.769216][ T6531] do_user_addr_fault+0x60c/0x1370
[ 97.771142][ T6531] exc_page_fault+0x5c/0xc0
[ 97.772572][ T6531] asm_exc_page_fault+0x26/0x30
[ 97.774040][ T6531] page last free pid 6529 tgid 6528 stack trace:
[ 97.775988][ T6531] free_unref_folios+0x999/0x1630
[ 97.777526][ T6531] folios_put_refs+0x56f/0x740
[ 97.779015][ T6531] truncate_inode_pages_range+0x311/0xe30
[ 97.780799][ T6531] blkdev_flush_mapping+0xe9/0x280
[ 97.782397][ T6531] blkdev_put_whole+0xc4/0xf0
[ 97.784034][ T6531] bdev_release+0x47e/0x6d0
[ 97.785465][ T6531] blkdev_release+0x15/0x20
[ 97.786852][ T6531] __fput+0x3ff/0xb70
[ 97.788085][ T6531] task_work_run+0x14d/0x240
[ 97.789530][ T6531] do_exit+0xafb/0x2c30
[ 97.790853][ T6531] do_group_exit+0xd3/0x2a0
[ 97.792308][ T6531] get_signal+0x2673/0x26d0
[ 97.793693][ T6531] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.795395][ T6531] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.797087][ T6531] do_syscall_64+0xda/0x260
[ 97.798551][ T6531] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.800675][ T6531] Modules linked in:
[ 97.801893][ T6531] CPU: 1 UID: 0 PID: 6531 Comm: syz.0.17 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 97.801909][ T6531] Tainted: [B]=BAD_PAGE
[ 97.801913][ T6531] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.801918][ T6531] Call Trace:
[ 97.801922][ T6531]
[ 97.801926][ T6531] dump_stack_lvl+0x16c/0x1f0
[ 97.801939][ T6531] bad_page+0xb3/0x1f0
[ 97.801950][ T6531] ? __pfx_bad_page+0x10/0x10
[ 97.801960][ T6531] ? page_bad_reason+0x9d/0x1e0
[ 97.801970][ T6531] __free_frozen_pages+0x76e/0xff0
[ 97.801986][ T6531] __folio_put+0x329/0x450
[ 97.801997][ T6531] ? __pfx___folio_put+0x10/0x10
[ 97.802008][ T6531] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.802020][ T6531] ? rcu_is_watching+0x12/0xc0
[ 97.802032][ T6531] ? lock_release+0x201/0x2f0
[ 97.802047][ T6531] filemap_free_folio+0x132/0x170
[ 97.802057][ T6531] delete_from_page_cache_batch+0x741/0x9b0
[ 97.802069][ T6531] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.802081][ T6531] ? __pfx_workingset_update_node+0x10/0x10
[ 97.802092][ T6531] ? xas_move_index+0xb0/0x110
[ 97.802104][ T6531] truncate_inode_pages_range+0x279/0xe30
[ 97.802118][ T6531] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.802140][ T6531] ? __pfx_down_write+0x10/0x10
[ 97.802157][ T6531] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.802173][ T6531] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.802187][ T6531] blkdev_flush_mapping+0xe9/0x280
[ 97.802199][ T6531] ? filemap_check_errors+0xa9/0x160
[ 97.802213][ T6531] blkdev_put_whole+0xc4/0xf0
[ 97.802224][ T6531] bdev_release+0x47e/0x6d0
[ 97.802236][ T6531] ? __pfx_blkdev_release+0x10/0x10
[ 97.802248][ T6531] blkdev_release+0x15/0x20
[ 97.802260][ T6531] __fput+0x3ff/0xb70
[ 97.802272][ T6531] task_work_run+0x14d/0x240
[ 97.802282][ T6531] ? __pfx_task_work_run+0x10/0x10
[ 97.802292][ T6531] ? do_raw_spin_unlock+0x172/0x230
[ 97.802302][ T6531] do_exit+0xafb/0x2c30
[ 97.802316][ T6531] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.802333][ T6531] ? __pfx_do_exit+0x10/0x10
[ 97.802346][ T6531] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.802356][ T6531] ? get_signal+0x8f5/0x26d0
[ 97.802367][ T6531] ? rcu_is_watching+0x12/0xc0
[ 97.802379][ T6531] do_group_exit+0xd3/0x2a0
[ 97.802393][ T6531] get_signal+0x2673/0x26d0
[ 97.802407][ T6531] ? __pfx_get_signal+0x10/0x10
[ 97.802418][ T6531] ? do_futex+0x122/0x350
[ 97.802431][ T6531] ? __pfx_do_futex+0x10/0x10
[ 97.802444][ T6531] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.802458][ T6531] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.802473][ T6531] ? rcu_is_watching+0x12/0xc0
[ 97.802485][ T6531] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.802497][ T6531] do_syscall_64+0xda/0x260
[ 97.802509][ T6531] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.802518][ T6531] RIP: 0033:0x7f62ebd8e969
[ 97.802526][ T6531] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 97.802530][ T6531] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.802540][ T6531] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 97.802546][ T6531] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 97.802551][ T6531] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.802557][ T6531] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 97.802563][ T6531] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 97.802571][ T6531]
[ 97.828575][ T6533] BUG: Bad page state in process syz.0.18 pfn:4a601
[ 97.922017][ T6533] page does not match folio
[ 97.923726][ T6533] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4a601
[ 97.926658][ T6533] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.928935][ T6533] raw: 00fff00000000000 ffffea0001298000 00000000ffffffff ffffffffffffffff
[ 97.932110][ T6533] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.935433][ T6533] page dumped because: nonzero pincount
[ 97.937616][ T6533] page_owner tracks the page as allocated
[ 97.939829][ T6533] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6532, tgid 6532 (syz.0.18), ts 97809861193, free_ts 97802601188
[ 97.950718][ T6533] post_alloc_hook+0x181/0x1b0
[ 97.952494][ T6533] get_page_from_freelist+0x135c/0x3920
[ 97.954133][ T6533] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.956414][ T6533] alloc_pages_mpol+0x1fb/0x550
[ 97.958382][ T6533] folio_alloc_noprof+0x20/0x2d0
[ 97.960362][ T6533] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.962821][ T6533] page_cache_ra_order+0x4c0/0xd00
[ 97.964879][ T6533] filemap_fault+0x1a5e/0x2740
[ 97.966796][ T6533] __do_fault+0x10a/0x490
[ 97.968550][ T6533] do_pte_missing+0x1a6/0x3fb0
[ 97.970611][ T6533] __handle_mm_fault+0x103d/0x2a40
[ 97.972218][ T6533] handle_mm_fault+0x3fe/0xad0
[ 97.973668][ T6533] do_user_addr_fault+0x60c/0x1370
[ 97.975224][ T6533] exc_page_fault+0x5c/0xc0
[ 97.976603][ T6533] asm_exc_page_fault+0x26/0x30
[ 97.978214][ T6533] page last free pid 6531 tgid 6530 stack trace:
[ 97.980540][ T6533] free_unref_folios+0x999/0x1630
[ 97.982045][ T6533] folios_put_refs+0x56f/0x740
[ 97.983471][ T6533] truncate_inode_pages_range+0x311/0xe30
[ 97.985183][ T6533] blkdev_flush_mapping+0xe9/0x280
[ 97.986669][ T6533] blkdev_put_whole+0xc4/0xf0
[ 97.988069][ T6533] bdev_release+0x47e/0x6d0
[ 97.989425][ T6533] blkdev_release+0x15/0x20
[ 97.990923][ T6533] __fput+0x3ff/0xb70
[ 97.992179][ T6533] task_work_run+0x14d/0x240
[ 97.993598][ T6533] do_exit+0xafb/0x2c30
[ 97.994817][ T6533] do_group_exit+0xd3/0x2a0
[ 97.996120][ T6533] get_signal+0x2673/0x26d0
[ 97.997495][ T6533] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.999333][ T6533] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.001225][ T6533] do_syscall_64+0xda/0x260
[ 98.002880][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.005055][ T6533] Modules linked in:
[ 98.006485][ T6533] CPU: 2 UID: 0 PID: 6533 Comm: syz.0.18 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 98.006501][ T6533] Tainted: [B]=BAD_PAGE
[ 98.006504][ T6533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.006510][ T6533] Call Trace:
[ 98.006514][ T6533]
[ 98.006517][ T6533] dump_stack_lvl+0x16c/0x1f0
[ 98.006531][ T6533] bad_page+0xb3/0x1f0
[ 98.006542][ T6533] ? __pfx_bad_page+0x10/0x10
[ 98.006552][ T6533] ? __mem_cgroup_uncharge+0xda/0x130
[ 98.006564][ T6533] free_tail_page_prepare+0x44f/0x5b0
[ 98.006584][ T6533] __free_frozen_pages+0x96a/0xff0
[ 98.006605][ T6533] __folio_put+0x329/0x450
[ 98.006620][ T6533] ? __pfx___folio_put+0x10/0x10
[ 98.006636][ T6533] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.006649][ T6533] ? rcu_is_watching+0x12/0xc0
[ 98.006666][ T6533] ? lock_release+0x201/0x2f0
[ 98.006687][ T6533] filemap_free_folio+0x132/0x170
[ 98.006703][ T6533] delete_from_page_cache_batch+0x741/0x9b0
[ 98.006720][ T6533] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.006737][ T6533] ? __pfx_workingset_update_node+0x10/0x10
[ 98.006752][ T6533] ? xas_move_index+0xb0/0x110
[ 98.006767][ T6533] truncate_inode_pages_range+0x279/0xe30
[ 98.006781][ T6533] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.006803][ T6533] ? __pfx_down_write+0x10/0x10
[ 98.006816][ T6533] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.006832][ T6533] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.006846][ T6533] blkdev_flush_mapping+0xe9/0x280
[ 98.006858][ T6533] ? filemap_check_errors+0xa9/0x160
[ 98.006873][ T6533] blkdev_put_whole+0xc4/0xf0
[ 98.006883][ T6533] bdev_release+0x47e/0x6d0
[ 98.006896][ T6533] ? __pfx_blkdev_release+0x10/0x10
[ 98.006907][ T6533] blkdev_release+0x15/0x20
[ 98.006919][ T6533] __fput+0x3ff/0xb70
[ 98.006930][ T6533] task_work_run+0x14d/0x240
[ 98.006941][ T6533] ? __pfx_task_work_run+0x10/0x10
[ 98.006950][ T6533] ? do_raw_spin_unlock+0x172/0x230
[ 98.006961][ T6533] do_exit+0xafb/0x2c30
[ 98.006975][ T6533] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.006992][ T6533] ? __pfx_do_exit+0x10/0x10
[ 98.007005][ T6533] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.007015][ T6533] ? get_signal+0x8f5/0x26d0
[ 98.007028][ T6533] ? rcu_is_watching+0x12/0xc0
[ 98.007045][ T6533] do_group_exit+0xd3/0x2a0
[ 98.007067][ T6533] get_signal+0x2673/0x26d0
[ 98.007087][ T6533] ? __pfx_get_signal+0x10/0x10
[ 98.007104][ T6533] ? do_futex+0x122/0x350
[ 98.007123][ T6533] ? __pfx_do_futex+0x10/0x10
[ 98.007141][ T6533] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.007163][ T6533] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.007185][ T6533] ? rcu_is_watching+0x12/0xc0
[ 98.007207][ T6533] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.007224][ T6533] do_syscall_64+0xda/0x260
[ 98.007241][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.007256][ T6533] RIP: 0033:0x7f62ebd8e969
[ 98.007267][ T6533] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 98.007272][ T6533] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.007281][ T6533] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 98.007288][ T6533] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 98.007293][ T6533] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.007300][ T6533] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 98.007309][ T6533] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 98.007322][ T6533]
[ 98.007350][ T6533] BUG: Bad page state in process syz.0.18 pfn:4a600
[ 98.090618][ T5288] Bluetooth: hci0: command tx timeout
[ 98.090911][ T6533] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4a600
[ 98.128356][ T6533] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 98.131582][ T6533] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 98.134897][ T6533] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.138057][ T6533] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.141030][ T6533] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.143732][ T6533] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.147103][ T6533] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.149800][ T6533] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.152498][ T6533] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 98.154711][ T6533] page_owner tracks the page as allocated
[ 98.156862][ T6533] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6532, tgid 6532 (syz.0.18), ts 97809861193, free_ts 97802601188
[ 98.163734][ T6533] post_alloc_hook+0x181/0x1b0
[ 98.165759][ T6533] get_page_from_freelist+0x135c/0x3920
[ 98.167964][ T6533] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.170569][ T6533] alloc_pages_mpol+0x1fb/0x550
[ 98.173005][ T6533] folio_alloc_noprof+0x20/0x2d0
[ 98.175440][ T6533] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.178026][ T6533] page_cache_ra_order+0x4c0/0xd00
[ 98.180124][ T6533] filemap_fault+0x1a5e/0x2740
[ 98.182066][ T6533] __do_fault+0x10a/0x490
[ 98.183771][ T6533] do_pte_missing+0x1a6/0x3fb0
[ 98.185816][ T6533] __handle_mm_fault+0x103d/0x2a40
[ 98.187864][ T6533] handle_mm_fault+0x3fe/0xad0
[ 98.189512][ T6533] do_user_addr_fault+0x60c/0x1370
[ 98.191711][ T6533] exc_page_fault+0x5c/0xc0
[ 98.193755][ T6533] asm_exc_page_fault+0x26/0x30
[ 98.195678][ T6533] page last free pid 6531 tgid 6530 stack trace:
[ 98.198048][ T6533] free_unref_folios+0x999/0x1630
[ 98.199988][ T6533] folios_put_refs+0x56f/0x740
[ 98.201884][ T6533] truncate_inode_pages_range+0x311/0xe30
[ 98.204360][ T6533] blkdev_flush_mapping+0xe9/0x280
[ 98.206290][ T6533] blkdev_put_whole+0xc4/0xf0
[ 98.207980][ T6533] bdev_release+0x47e/0x6d0
[ 98.209729][ T6533] blkdev_release+0x15/0x20
[ 98.211501][ T6533] __fput+0x3ff/0xb70
[ 98.213036][ T6533] task_work_run+0x14d/0x240
[ 98.214756][ T6533] do_exit+0xafb/0x2c30
[ 98.216370][ T6533] do_group_exit+0xd3/0x2a0
[ 98.218087][ T6533] get_signal+0x2673/0x26d0
[ 98.219823][ T6533] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.222157][ T6533] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.224274][ T6533] do_syscall_64+0xda/0x260
[ 98.225982][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.228187][ T6533] Modules linked in:
[ 98.229675][ T6533] CPU: 3 UID: 0 PID: 6533 Comm: syz.0.18 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 98.229697][ T6533] Tainted: [B]=BAD_PAGE
[ 98.229702][ T6533] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.229711][ T6533] Call Trace:
[ 98.229715][ T6533]
[ 98.229720][ T6533] dump_stack_lvl+0x16c/0x1f0
[ 98.229738][ T6533] bad_page+0xb3/0x1f0
[ 98.229754][ T6533] ? __pfx_bad_page+0x10/0x10
[ 98.229769][ T6533] ? page_bad_reason+0x9d/0x1e0
[ 98.229785][ T6533] __free_frozen_pages+0x76e/0xff0
[ 98.229808][ T6533] __folio_put+0x329/0x450
[ 98.229824][ T6533] ? __pfx___folio_put+0x10/0x10
[ 98.229841][ T6533] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.229858][ T6533] ? rcu_is_watching+0x12/0xc0
[ 98.229874][ T6533] ? lock_release+0x201/0x2f0
[ 98.229897][ T6533] filemap_free_folio+0x132/0x170
[ 98.229912][ T6533] delete_from_page_cache_batch+0x741/0x9b0
[ 98.229931][ T6533] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.229949][ T6533] ? __pfx_workingset_update_node+0x10/0x10
[ 98.229965][ T6533] ? xas_move_index+0xb0/0x110
[ 98.229983][ T6533] truncate_inode_pages_range+0x279/0xe30
[ 98.230005][ T6533] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.230042][ T6533] ? __pfx_down_write+0x10/0x10
[ 98.230061][ T6533] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.230085][ T6533] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.230106][ T6533] blkdev_flush_mapping+0xe9/0x280
[ 98.230123][ T6533] ? filemap_check_errors+0xa9/0x160
[ 98.230144][ T6533] blkdev_put_whole+0xc4/0xf0
[ 98.230165][ T6533] bdev_release+0x47e/0x6d0
[ 98.230184][ T6533] ? __pfx_blkdev_release+0x10/0x10
[ 98.230202][ T6533] blkdev_release+0x15/0x20
[ 98.230220][ T6533] __fput+0x3ff/0xb70
[ 98.230237][ T6533] task_work_run+0x14d/0x240
[ 98.230253][ T6533] ? __pfx_task_work_run+0x10/0x10
[ 98.230268][ T6533] ? do_raw_spin_unlock+0x172/0x230
[ 98.230284][ T6533] do_exit+0xafb/0x2c30
[ 98.230305][ T6533] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.230330][ T6533] ? __pfx_do_exit+0x10/0x10
[ 98.230350][ T6533] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.230365][ T6533] ? get_signal+0x8f5/0x26d0
[ 98.230382][ T6533] ? rcu_is_watching+0x12/0xc0
[ 98.230399][ T6533] do_group_exit+0xd3/0x2a0
[ 98.230420][ T6533] get_signal+0x2673/0x26d0
[ 98.230441][ T6533] ? __pfx_get_signal+0x10/0x10
[ 98.230472][ T6533] ? do_futex+0x122/0x350
[ 98.230491][ T6533] ? __pfx_do_futex+0x10/0x10
[ 98.230510][ T6533] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.230532][ T6533] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.230556][ T6533] ? rcu_is_watching+0x12/0xc0
[ 98.230573][ T6533] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.230591][ T6533] do_syscall_64+0xda/0x260
[ 98.230608][ T6533] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.230623][ T6533] RIP: 0033:0x7f62ebd8e969
[ 98.230634][ T6533] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 98.230640][ T6533] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.230653][ T6533] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 98.230663][ T6533] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 98.230672][ T6533] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.230680][ T6533] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 98.230689][ T6533] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 98.230702][ T6533]
[ 98.370677][ T6535] BUG: Bad page state in process syz.0.19 pfn:4e201
[ 98.373161][ T6535] page does not match folio
[ 98.374801][ T6535] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4e201
[ 98.378355][ T6535] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 98.380728][ T6535] raw: 00fff00000000000 ffffea0001388000 00000000ffffffff ffffffffffffffff
[ 98.383370][ T6535] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.386092][ T6535] page dumped because: nonzero pincount
[ 98.387757][ T6535] page_owner tracks the page as allocated
[ 98.389549][ T6535] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6534, tgid 6534 (syz.0.19), ts 98348777646, free_ts 98341942711
[ 98.395626][ T6535] post_alloc_hook+0x181/0x1b0
[ 98.397263][ T6535] get_page_from_freelist+0x135c/0x3920
[ 98.399079][ T6535] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.401191][ T6535] alloc_pages_mpol+0x1fb/0x550
[ 98.402690][ T6535] folio_alloc_noprof+0x20/0x2d0
[ 98.404203][ T6535] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.405988][ T6535] page_cache_ra_order+0x4c0/0xd00
[ 98.407534][ T6535] filemap_fault+0x1a5e/0x2740
[ 98.409228][ T6535] __do_fault+0x10a/0x490
[ 98.410611][ T6535] do_pte_missing+0x1a6/0x3fb0
[ 98.412287][ T6535] __handle_mm_fault+0x103d/0x2a40
[ 98.414278][ T6535] handle_mm_fault+0x3fe/0xad0
[ 98.416099][ T6535] do_user_addr_fault+0x60c/0x1370
[ 98.418041][ T6535] exc_page_fault+0x5c/0xc0
[ 98.419775][ T6535] asm_exc_page_fault+0x26/0x30
[ 98.421901][ T6535] page last free pid 6533 tgid 6532 stack trace:
[ 98.424282][ T6535] free_unref_folios+0x999/0x1630
[ 98.426190][ T6535] folios_put_refs+0x56f/0x740
[ 98.428047][ T6535] truncate_inode_pages_range+0x311/0xe30
[ 98.430258][ T6535] blkdev_flush_mapping+0xe9/0x280
[ 98.432295][ T6535] blkdev_put_whole+0xc4/0xf0
[ 98.434057][ T6535] bdev_release+0x47e/0x6d0
[ 98.435800][ T6535] blkdev_release+0x15/0x20
[ 98.437575][ T6535] __fput+0x3ff/0xb70
[ 98.439169][ T6535] task_work_run+0x14d/0x240
[ 98.441247][ T6535] do_exit+0xafb/0x2c30
[ 98.442855][ T6535] do_group_exit+0xd3/0x2a0
[ 98.444645][ T6535] get_signal+0x2673/0x26d0
[ 98.446352][ T6535] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.448500][ T6535] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.450754][ T6535] do_syscall_64+0xda/0x260
[ 98.452530][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.454838][ T6535] Modules linked in:
[ 98.456346][ T6535] CPU: 2 UID: 0 PID: 6535 Comm: syz.0.19 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 98.456371][ T6535] Tainted: [B]=BAD_PAGE
[ 98.456376][ T6535] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.456386][ T6535] Call Trace:
[ 98.456392][ T6535]
[ 98.456397][ T6535] dump_stack_lvl+0x16c/0x1f0
[ 98.456418][ T6535] bad_page+0xb3/0x1f0
[ 98.456433][ T6535] ? __pfx_bad_page+0x10/0x10
[ 98.456450][ T6535] ? __mem_cgroup_uncharge+0xda/0x130
[ 98.456469][ T6535] free_tail_page_prepare+0x44f/0x5b0
[ 98.456489][ T6535] __free_frozen_pages+0x96a/0xff0
[ 98.456512][ T6535] __folio_put+0x329/0x450
[ 98.456531][ T6535] ? __pfx___folio_put+0x10/0x10
[ 98.456548][ T6535] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.456565][ T6535] ? rcu_is_watching+0x12/0xc0
[ 98.456583][ T6535] ? lock_release+0x201/0x2f0
[ 98.456606][ T6535] filemap_free_folio+0x132/0x170
[ 98.456622][ T6535] delete_from_page_cache_batch+0x741/0x9b0
[ 98.456641][ T6535] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.456658][ T6535] ? __pfx_workingset_update_node+0x10/0x10
[ 98.456675][ T6535] ? xas_move_index+0xb0/0x110
[ 98.456692][ T6535] truncate_inode_pages_range+0x279/0xe30
[ 98.456715][ T6535] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.456750][ T6535] ? __pfx_down_write+0x10/0x10
[ 98.456770][ T6535] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.456793][ T6535] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.456815][ T6535] blkdev_flush_mapping+0xe9/0x280
[ 98.456833][ T6535] ? filemap_check_errors+0xa9/0x160
[ 98.456854][ T6535] blkdev_put_whole+0xc4/0xf0
[ 98.456870][ T6535] bdev_release+0x47e/0x6d0
[ 98.456888][ T6535] ? __pfx_blkdev_release+0x10/0x10
[ 98.456907][ T6535] blkdev_release+0x15/0x20
[ 98.456925][ T6535] __fput+0x3ff/0xb70
[ 98.456942][ T6535] task_work_run+0x14d/0x240
[ 98.456960][ T6535] ? __pfx_task_work_run+0x10/0x10
[ 98.456975][ T6535] ? do_raw_spin_unlock+0x172/0x230
[ 98.456992][ T6535] do_exit+0xafb/0x2c30
[ 98.457014][ T6535] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.457038][ T6535] ? __pfx_do_exit+0x10/0x10
[ 98.457058][ T6535] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.457074][ T6535] ? get_signal+0x8f5/0x26d0
[ 98.457091][ T6535] ? rcu_is_watching+0x12/0xc0
[ 98.457109][ T6535] do_group_exit+0xd3/0x2a0
[ 98.457136][ T6535] get_signal+0x2673/0x26d0
[ 98.457158][ T6535] ? __pfx_get_signal+0x10/0x10
[ 98.457176][ T6535] ? do_futex+0x122/0x350
[ 98.457194][ T6535] ? __pfx_do_futex+0x10/0x10
[ 98.457215][ T6535] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.457238][ T6535] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.457261][ T6535] ? rcu_is_watching+0x12/0xc0
[ 98.457280][ T6535] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.457297][ T6535] do_syscall_64+0xda/0x260
[ 98.457316][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.457331][ T6535] RIP: 0033:0x7f62ebd8e969
[ 98.457344][ T6535] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 98.457350][ T6535] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.457365][ T6535] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 98.457375][ T6535] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 98.457383][ T6535] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.457392][ T6535] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 98.457402][ T6535] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 98.457414][ T6535]
[ 98.457440][ T6535] BUG: Bad page state in process syz.0.19 pfn:4e200
[ 98.591599][ T6535] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4e200
[ 98.595052][ T6535] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 98.598380][ T6535] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 98.602027][ T6535] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.605419][ T6535] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.608757][ T6535] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.612243][ T6535] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.615844][ T6535] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.619255][ T6535] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.622804][ T6535] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 98.625721][ T6535] page_owner tracks the page as allocated
[ 98.627999][ T6535] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6534, tgid 6534 (syz.0.19), ts 98348777646, free_ts 98341942711
[ 98.635787][ T6535] post_alloc_hook+0x181/0x1b0
[ 98.637710][ T6535] get_page_from_freelist+0x135c/0x3920
[ 98.639899][ T6535] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.642619][ T6535] alloc_pages_mpol+0x1fb/0x550
[ 98.644590][ T6535] folio_alloc_noprof+0x20/0x2d0
[ 98.646595][ T6535] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.648843][ T6535] page_cache_ra_order+0x4c0/0xd00
[ 98.650923][ T6535] filemap_fault+0x1a5e/0x2740
[ 98.652874][ T6535] __do_fault+0x10a/0x490
[ 98.654618][ T6535] do_pte_missing+0x1a6/0x3fb0
[ 98.656558][ T6535] __handle_mm_fault+0x103d/0x2a40
[ 98.658617][ T6535] handle_mm_fault+0x3fe/0xad0
[ 98.660678][ T6535] do_user_addr_fault+0x60c/0x1370
[ 98.662700][ T6535] exc_page_fault+0x5c/0xc0
[ 98.664550][ T6535] asm_exc_page_fault+0x26/0x30
[ 98.666518][ T6535] page last free pid 6533 tgid 6532 stack trace:
[ 98.669015][ T6535] free_unref_folios+0x999/0x1630
[ 98.671136][ T6535] folios_put_refs+0x56f/0x740
[ 98.673106][ T6535] truncate_inode_pages_range+0x311/0xe30
[ 98.675400][ T6535] blkdev_flush_mapping+0xe9/0x280
[ 98.677476][ T6535] blkdev_put_whole+0xc4/0xf0
[ 98.679411][ T6535] bdev_release+0x47e/0x6d0
[ 98.681355][ T6535] blkdev_release+0x15/0x20
[ 98.683210][ T6535] __fput+0x3ff/0xb70
[ 98.684847][ T6535] task_work_run+0x14d/0x240
[ 98.686735][ T6535] do_exit+0xafb/0x2c30
[ 98.688458][ T6535] do_group_exit+0xd3/0x2a0
[ 98.690303][ T6535] get_signal+0x2673/0x26d0
[ 98.692267][ T6535] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.694580][ T6535] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.696913][ T6535] do_syscall_64+0xda/0x260
[ 98.698787][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.701245][ T6535] Modules linked in:
[ 98.702864][ T6535] CPU: 3 UID: 0 PID: 6535 Comm: syz.0.19 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 98.702903][ T6535] Tainted: [B]=BAD_PAGE
[ 98.702908][ T6535] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.702918][ T6535] Call Trace:
[ 98.702924][ T6535]
[ 98.702930][ T6535] dump_stack_lvl+0x16c/0x1f0
[ 98.702949][ T6535] bad_page+0xb3/0x1f0
[ 98.702967][ T6535] ? __pfx_bad_page+0x10/0x10
[ 98.702984][ T6535] ? page_bad_reason+0x9d/0x1e0
[ 98.703000][ T6535] __free_frozen_pages+0x76e/0xff0
[ 98.703024][ T6535] __folio_put+0x329/0x450
[ 98.703041][ T6535] ? __pfx___folio_put+0x10/0x10
[ 98.703058][ T6535] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.703076][ T6535] ? rcu_is_watching+0x12/0xc0
[ 98.703094][ T6535] ? lock_release+0x201/0x2f0
[ 98.703122][ T6535] filemap_free_folio+0x132/0x170
[ 98.703139][ T6535] delete_from_page_cache_batch+0x741/0x9b0
[ 98.703158][ T6535] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.703177][ T6535] ? __pfx_workingset_update_node+0x10/0x10
[ 98.703195][ T6535] ? xas_move_index+0xb0/0x110
[ 98.703214][ T6535] truncate_inode_pages_range+0x279/0xe30
[ 98.703238][ T6535] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.703276][ T6535] ? __pfx_down_write+0x10/0x10
[ 98.703297][ T6535] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.703320][ T6535] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.703343][ T6535] blkdev_flush_mapping+0xe9/0x280
[ 98.703361][ T6535] ? filemap_check_errors+0xa9/0x160
[ 98.703384][ T6535] blkdev_put_whole+0xc4/0xf0
[ 98.703401][ T6535] bdev_release+0x47e/0x6d0
[ 98.703421][ T6535] ? __pfx_blkdev_release+0x10/0x10
[ 98.703441][ T6535] blkdev_release+0x15/0x20
[ 98.703458][ T6535] __fput+0x3ff/0xb70
[ 98.703478][ T6535] task_work_run+0x14d/0x240
[ 98.703495][ T6535] ? __pfx_task_work_run+0x10/0x10
[ 98.703511][ T6535] ? do_raw_spin_unlock+0x172/0x230
[ 98.703529][ T6535] do_exit+0xafb/0x2c30
[ 98.703550][ T6535] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.703575][ T6535] ? __pfx_do_exit+0x10/0x10
[ 98.703596][ T6535] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.703613][ T6535] ? get_signal+0x8f5/0x26d0
[ 98.703631][ T6535] ? rcu_is_watching+0x12/0xc0
[ 98.703649][ T6535] do_group_exit+0xd3/0x2a0
[ 98.703673][ T6535] get_signal+0x2673/0x26d0
[ 98.703694][ T6535] ? __pfx_get_signal+0x10/0x10
[ 98.703713][ T6535] ? do_futex+0x122/0x350
[ 98.703733][ T6535] ? __pfx_do_futex+0x10/0x10
[ 98.703753][ T6535] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.703777][ T6535] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.703802][ T6535] ? rcu_is_watching+0x12/0xc0
[ 98.703821][ T6535] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.703840][ T6535] do_syscall_64+0xda/0x260
[ 98.703859][ T6535] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.703875][ T6535] RIP: 0033:0x7f62ebd8e969
[ 98.703887][ T6535] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 98.703894][ T6535] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.703908][ T6535] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 98.703919][ T6535] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 98.703947][ T6535] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.703958][ T6535] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 98.703967][ T6535] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 98.703981][ T6535]
[ 98.869240][ T6537] BUG: Bad page state in process syz.0.20 pfn:4a201
[ 98.871882][ T6537] page does not match folio
[ 98.873681][ T6537] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4a201
[ 98.877311][ T6537] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 98.879846][ T6537] raw: 00fff00000000000 ffffea0001288000 00000000ffffffff ffffffffffffffff
[ 98.883283][ T6537] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.886666][ T6537] page dumped because: nonzero pincount
[ 98.888893][ T6537] page_owner tracks the page as allocated
[ 98.891197][ T6537] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6536, tgid 6536 (syz.0.20), ts 98838150361, free_ts 98704053158
[ 98.898938][ T6537] post_alloc_hook+0x181/0x1b0
[ 98.900961][ T6537] get_page_from_freelist+0x135c/0x3920
[ 98.903110][ T6537] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.905464][ T6537] alloc_pages_mpol+0x1fb/0x550
[ 98.907029][ T6537] folio_alloc_noprof+0x20/0x2d0
[ 98.908522][ T6537] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.910234][ T6537] page_cache_ra_order+0x4c0/0xd00
[ 98.912299][ T6537] filemap_fault+0x1a5e/0x2740
[ 98.914136][ T6537] __do_fault+0x10a/0x490
[ 98.915911][ T6537] do_pte_missing+0x1a6/0x3fb0
[ 98.917872][ T6537] __handle_mm_fault+0x103d/0x2a40
[ 98.919972][ T6537] handle_mm_fault+0x3fe/0xad0
[ 98.922295][ T6537] do_user_addr_fault+0x60c/0x1370
[ 98.924394][ T6537] exc_page_fault+0x5c/0xc0
[ 98.926238][ T6537] asm_exc_page_fault+0x26/0x30
[ 98.928223][ T6537] page last free pid 6535 tgid 6534 stack trace:
[ 98.930834][ T6537] free_unref_folios+0x999/0x1630
[ 98.932884][ T6537] folios_put_refs+0x56f/0x740
[ 98.934765][ T6537] truncate_inode_pages_range+0x311/0xe30
[ 98.936991][ T6537] blkdev_flush_mapping+0xe9/0x280
[ 98.939059][ T6537] blkdev_put_whole+0xc4/0xf0
[ 98.941055][ T6537] bdev_release+0x47e/0x6d0
[ 98.942491][ T6537] blkdev_release+0x15/0x20
[ 98.943851][ T6537] __fput+0x3ff/0xb70
[ 98.945061][ T6537] task_work_run+0x14d/0x240
[ 98.946369][ T6537] do_exit+0xafb/0x2c30
[ 98.947635][ T6537] do_group_exit+0xd3/0x2a0
[ 98.949046][ T6537] get_signal+0x2673/0x26d0
[ 98.950491][ T6537] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.952578][ T6537] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.954210][ T6537] do_syscall_64+0xda/0x260
[ 98.955541][ T6537] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.957269][ T6537] Modules linked in:
[ 98.958418][ T6537] CPU: 2 UID: 0 PID: 6537 Comm: syz.0.20 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 98.958434][ T6537] Tainted: [B]=BAD_PAGE
[ 98.958437][ T6537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.958443][ T6537] Call Trace:
[ 98.958447][ T6537]
[ 98.958451][ T6537] dump_stack_lvl+0x16c/0x1f0
[ 98.958463][ T6537] bad_page+0xb3/0x1f0
[ 98.958474][ T6537] ? __pfx_bad_page+0x10/0x10
[ 98.958484][ T6537] ? __mem_cgroup_uncharge+0xda/0x130
[ 98.958496][ T6537] free_tail_page_prepare+0x44f/0x5b0
[ 98.958510][ T6537] __free_frozen_pages+0x96a/0xff0
[ 98.958524][ T6537] __folio_put+0x329/0x450
[ 98.958535][ T6537] ? __pfx___folio_put+0x10/0x10
[ 98.958546][ T6537] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.958557][ T6537] ? rcu_is_watching+0x12/0xc0
[ 98.958568][ T6537] ? lock_release+0x201/0x2f0
[ 98.958584][ T6537] filemap_free_folio+0x132/0x170
[ 98.958594][ T6537] delete_from_page_cache_batch+0x741/0x9b0
[ 98.958606][ T6537] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.958618][ T6537] ? __pfx_workingset_update_node+0x10/0x10
[ 98.958628][ T6537] ? xas_move_index+0xb0/0x110
[ 98.958640][ T6537] truncate_inode_pages_range+0x279/0xe30
[ 98.958655][ T6537] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.958677][ T6537] ? __pfx_down_write+0x10/0x10
[ 98.958689][ T6537] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.958705][ T6537] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.958720][ T6537] blkdev_flush_mapping+0xe9/0x280
[ 98.958731][ T6537] ? filemap_check_errors+0xa9/0x160
[ 98.958746][ T6537] blkdev_put_whole+0xc4/0xf0
[ 98.958756][ T6537] bdev_release+0x47e/0x6d0
[ 98.958768][ T6537] ? __pfx_blkdev_release+0x10/0x10
[ 98.958780][ T6537] blkdev_release+0x15/0x20
[ 98.958792][ T6537] __fput+0x3ff/0xb70
[ 98.958803][ T6537] task_work_run+0x14d/0x240
[ 98.958814][ T6537] ? __pfx_task_work_run+0x10/0x10
[ 98.958823][ T6537] ? do_raw_spin_unlock+0x172/0x230
[ 98.958834][ T6537] do_exit+0xafb/0x2c30
[ 98.958849][ T6537] ? __pfx___might_resched+0x10/0x10
[ 98.958862][ T6537] ? rcu_is_watching+0x12/0xc0
[ 98.958873][ T6537] ? __pfx_do_exit+0x10/0x10
[ 98.958887][ T6537] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.958896][ T6537] ? get_signal+0x8f5/0x26d0
[ 98.958908][ T6537] ? rcu_is_watching+0x12/0xc0
[ 98.958919][ T6537] do_group_exit+0xd3/0x2a0
[ 98.958935][ T6537] get_signal+0x2673/0x26d0
[ 98.958948][ T6537] ? __pfx_get_signal+0x10/0x10
[ 98.958959][ T6537] ? do_futex+0x122/0x350
[ 98.958972][ T6537] ? __pfx_do_futex+0x10/0x10
[ 98.958985][ T6537] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.959000][ T6537] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.959015][ T6537] ? rcu_is_watching+0x12/0xc0
[ 98.959026][ T6537] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.959038][ T6537] do_syscall_64+0xda/0x260
[ 98.959050][ T6537] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.959060][ T6537] RIP: 0033:0x7f62ebd8e969
[ 98.959067][ T6537] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 98.959071][ T6537] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.959081][ T6537] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 98.959087][ T6537] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 98.959093][ T6537] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.959098][ T6537] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 98.959104][ T6537] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 98.959112][ T6537]
[ 98.959126][ T6537] BUG: Bad page state in process syz.0.20 pfn:4a200
[ 99.074244][ T6537] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4a200
[ 99.076818][ T6537] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 99.079306][ T6537] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 99.082487][ T6537] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.085028][ T6537] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.087511][ T6537] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.090143][ T6537] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.092899][ T6537] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.095555][ T6537] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.098232][ T6537] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 99.100606][ T6537] page_owner tracks the page as allocated
[ 99.102844][ T6537] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6536, tgid 6536 (syz.0.20), ts 98838150361, free_ts 98704053158
[ 99.109056][ T6537] post_alloc_hook+0x181/0x1b0
[ 99.110664][ T6537] get_page_from_freelist+0x135c/0x3920
[ 99.112545][ T6537] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.114393][ T6537] alloc_pages_mpol+0x1fb/0x550
[ 99.115952][ T6537] folio_alloc_noprof+0x20/0x2d0
[ 99.117491][ T6537] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.119252][ T6537] page_cache_ra_order+0x4c0/0xd00
[ 99.120932][ T6537] filemap_fault+0x1a5e/0x2740
[ 99.122359][ T6537] __do_fault+0x10a/0x490
[ 99.123678][ T6537] do_pte_missing+0x1a6/0x3fb0
[ 99.125176][ T6537] __handle_mm_fault+0x103d/0x2a40
[ 99.126898][ T6537] handle_mm_fault+0x3fe/0xad0
[ 99.128335][ T6537] do_user_addr_fault+0x60c/0x1370
[ 99.129896][ T6537] exc_page_fault+0x5c/0xc0
[ 99.131407][ T6537] asm_exc_page_fault+0x26/0x30
[ 99.132901][ T6537] page last free pid 6535 tgid 6534 stack trace:
[ 99.134813][ T6537] free_unref_folios+0x999/0x1630
[ 99.136350][ T6537] folios_put_refs+0x56f/0x740
[ 99.137784][ T6537] truncate_inode_pages_range+0x311/0xe30
[ 99.139489][ T6537] blkdev_flush_mapping+0xe9/0x280
[ 99.141121][ T6537] blkdev_put_whole+0xc4/0xf0
[ 99.142482][ T6537] bdev_release+0x47e/0x6d0
[ 99.143816][ T6537] blkdev_release+0x15/0x20
[ 99.145190][ T6537] __fput+0x3ff/0xb70
[ 99.146363][ T6537] task_work_run+0x14d/0x240
[ 99.147736][ T6537] do_exit+0xafb/0x2c30
[ 99.148991][ T6537] do_group_exit+0xd3/0x2a0
[ 99.150366][ T6537] get_signal+0x2673/0x26d0
[ 99.151807][ T6537] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.153447][ T6537] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.155119][ T6537] do_syscall_64+0xda/0x260
[ 99.156469][ T6537] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.158239][ T6537] Modules linked in:
[ 99.159414][ T6537] CPU: 2 UID: 0 PID: 6537 Comm: syz.0.20 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 99.159430][ T6537] Tainted: [B]=BAD_PAGE
[ 99.159434][ T6537] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.159440][ T6537] Call Trace:
[ 99.159443][ T6537]
[ 99.159447][ T6537] dump_stack_lvl+0x16c/0x1f0
[ 99.159460][ T6537] bad_page+0xb3/0x1f0
[ 99.159471][ T6537] ? __pfx_bad_page+0x10/0x10
[ 99.159481][ T6537] ? page_bad_reason+0x9d/0x1e0
[ 99.159492][ T6537] __free_frozen_pages+0x76e/0xff0
[ 99.159506][ T6537] __folio_put+0x329/0x450
[ 99.159518][ T6537] ? __pfx___folio_put+0x10/0x10
[ 99.159529][ T6537] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.159540][ T6537] ? rcu_is_watching+0x12/0xc0
[ 99.159552][ T6537] ? lock_release+0x201/0x2f0
[ 99.159567][ T6537] filemap_free_folio+0x132/0x170
[ 99.159577][ T6537] delete_from_page_cache_batch+0x741/0x9b0
[ 99.159589][ T6537] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.159601][ T6537] ? __pfx_workingset_update_node+0x10/0x10
[ 99.159612][ T6537] ? xas_move_index+0xb0/0x110
[ 99.159624][ T6537] truncate_inode_pages_range+0x279/0xe30
[ 99.159639][ T6537] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.159660][ T6537] ? __pfx_down_write+0x10/0x10
[ 99.159673][ T6537] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.159689][ T6537] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.159703][ T6537] blkdev_flush_mapping+0xe9/0x280
[ 99.159715][ T6537] ? filemap_check_errors+0xa9/0x160
[ 99.159729][ T6537] blkdev_put_whole+0xc4/0xf0
[ 99.159740][ T6537] bdev_release+0x47e/0x6d0
[ 99.159753][ T6537] ? __pfx_blkdev_release+0x10/0x10
[ 99.159765][ T6537] blkdev_release+0x15/0x20
[ 99.159781][ T6537] __fput+0x3ff/0xb70
[ 99.159792][ T6537] task_work_run+0x14d/0x240
[ 99.159803][ T6537] ? __pfx_task_work_run+0x10/0x10
[ 99.159812][ T6537] ? do_raw_spin_unlock+0x172/0x230
[ 99.159823][ T6537] do_exit+0xafb/0x2c30
[ 99.159837][ T6537] ? __pfx___might_resched+0x10/0x10
[ 99.159851][ T6537] ? rcu_is_watching+0x12/0xc0
[ 99.159862][ T6537] ? __pfx_do_exit+0x10/0x10
[ 99.159875][ T6537] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.159885][ T6537] ? get_signal+0x8f5/0x26d0
[ 99.159896][ T6537] ? rcu_is_watching+0x12/0xc0
[ 99.159907][ T6537] do_group_exit+0xd3/0x2a0
[ 99.159942][ T6537] get_signal+0x2673/0x26d0
[ 99.159956][ T6537] ? __pfx_get_signal+0x10/0x10
[ 99.159968][ T6537] ? do_futex+0x122/0x350
[ 99.159981][ T6537] ? __pfx_do_futex+0x10/0x10
[ 99.159994][ T6537] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.160008][ T6537] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.160023][ T6537] ? rcu_is_watching+0x12/0xc0
[ 99.160035][ T6537] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.160047][ T6537] do_syscall_64+0xda/0x260
[ 99.160059][ T6537] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.160069][ T6537] RIP: 0033:0x7f62ebd8e969
[ 99.160076][ T6537] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 99.160080][ T6537] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 99.160090][ T6537] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 99.160096][ T6537] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 99.160101][ T6537] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 99.160107][ T6537] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 99.160113][ T6537] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 99.160121][ T6537]
[ 99.186113][ T6538] BUG: Bad page state in process syz.0.21 pfn:4da01
[ 99.273814][ T6538] page does not match folio
[ 99.275262][ T6538] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4da01
[ 99.278331][ T6538] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 99.282026][ T6538] raw: 00fff00000000000 ffffea0001368000 00000000ffffffff ffffffffffffffff
[ 99.284646][ T6538] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.287746][ T6538] page dumped because: nonzero pincount
[ 99.289787][ T6538] page_owner tracks the page as allocated
[ 99.291619][ T6538] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6538, tgid 6538 (syz.0.21), ts 99166745204, free_ts 60320359324
[ 99.297879][ T6538] post_alloc_hook+0x181/0x1b0
[ 99.299570][ T6538] get_page_from_freelist+0x135c/0x3920
[ 99.301359][ T6538] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.303505][ T6538] alloc_pages_mpol+0x1fb/0x550
[ 99.305333][ T6538] folio_alloc_noprof+0x20/0x2d0
[ 99.306967][ T6538] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.308699][ T6538] page_cache_ra_order+0x4c0/0xd00
[ 99.310272][ T6538] filemap_fault+0x1a5e/0x2740
[ 99.312758][ T6538] __do_fault+0x10a/0x490
[ 99.314031][ T6538] do_pte_missing+0x1a6/0x3fb0
[ 99.315487][ T6538] __handle_mm_fault+0x103d/0x2a40
[ 99.317029][ T6538] handle_mm_fault+0x3fe/0xad0
[ 99.318477][ T6538] do_user_addr_fault+0x60c/0x1370
[ 99.320082][ T6538] exc_page_fault+0x5c/0xc0
[ 99.321557][ T6538] asm_exc_page_fault+0x26/0x30
[ 99.323114][ T6538] page last free pid 6017 tgid 6017 stack trace:
[ 99.324993][ T6538] __free_frozen_pages+0x69d/0xff0
[ 99.326512][ T6538] vfree+0x176/0x960
[ 99.327680][ T6538] kcov_close+0x34/0x60
[ 99.329015][ T6538] __fput+0x3ff/0xb70
[ 99.330368][ T6538] task_work_run+0x14d/0x240
[ 99.332050][ T6538] do_exit+0xafb/0x2c30
[ 99.333478][ T6538] do_group_exit+0xd3/0x2a0
[ 99.335034][ T6538] get_signal+0x2673/0x26d0
[ 99.336406][ T6538] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.338042][ T6538] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.339748][ T6538] do_syscall_64+0xda/0x260
[ 99.341237][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.343171][ T6538] Modules linked in:
[ 99.344430][ T6538] CPU: 1 UID: 0 PID: 6538 Comm: syz.0.21 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 99.344454][ T6538] Tainted: [B]=BAD_PAGE
[ 99.344460][ T6538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.344469][ T6538] Call Trace:
[ 99.344475][ T6538]
[ 99.344480][ T6538] dump_stack_lvl+0x16c/0x1f0
[ 99.344501][ T6538] bad_page+0xb3/0x1f0
[ 99.344517][ T6538] ? __pfx_bad_page+0x10/0x10
[ 99.344528][ T6538] ? __mem_cgroup_uncharge+0xda/0x130
[ 99.344540][ T6538] free_tail_page_prepare+0x44f/0x5b0
[ 99.344553][ T6538] __free_frozen_pages+0x96a/0xff0
[ 99.344568][ T6538] __folio_put+0x329/0x450
[ 99.344579][ T6538] ? __pfx___folio_put+0x10/0x10
[ 99.344589][ T6538] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.344601][ T6538] ? rcu_is_watching+0x12/0xc0
[ 99.344612][ T6538] ? lock_release+0x201/0x2f0
[ 99.344627][ T6538] filemap_free_folio+0x132/0x170
[ 99.344638][ T6538] delete_from_page_cache_batch+0x741/0x9b0
[ 99.344650][ T6538] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.344662][ T6538] ? __pfx_workingset_update_node+0x10/0x10
[ 99.344672][ T6538] ? xas_move_index+0xb0/0x110
[ 99.344685][ T6538] truncate_inode_pages_range+0x279/0xe30
[ 99.344699][ T6538] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.344722][ T6538] ? __pfx_down_write+0x10/0x10
[ 99.344735][ T6538] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.344752][ T6538] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.344766][ T6538] blkdev_flush_mapping+0xe9/0x280
[ 99.344779][ T6538] blkdev_put_whole+0xc4/0xf0
[ 99.344789][ T6538] bdev_release+0x47e/0x6d0
[ 99.344802][ T6538] ? __pfx_blkdev_release+0x10/0x10
[ 99.344814][ T6538] blkdev_release+0x15/0x20
[ 99.344826][ T6538] __fput+0x3ff/0xb70
[ 99.344837][ T6538] task_work_run+0x14d/0x240
[ 99.344848][ T6538] ? __pfx_task_work_run+0x10/0x10
[ 99.344857][ T6538] ? do_raw_spin_unlock+0x172/0x230
[ 99.344868][ T6538] do_exit+0xafb/0x2c30
[ 99.344884][ T6538] ? __pfx_do_exit+0x10/0x10
[ 99.344898][ T6538] ? preempt_schedule_thunk+0x16/0x30
[ 99.344908][ T6538] do_group_exit+0xd3/0x2a0
[ 99.344923][ T6538] __x64_sys_exit_group+0x3e/0x50
[ 99.344938][ T6538] x64_sys_call+0x1530/0x1730
[ 99.344952][ T6538] do_syscall_64+0xcd/0x260
[ 99.344964][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.344988][ T6538] RIP: 0033:0x7f62ebd8e969
[ 99.344996][ T6538] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 99.345000][ T6538] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 99.345010][ T6538] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 99.345016][ T6538] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 99.345022][ T6538] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 99.345028][ T6538] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000005
[ 99.345034][ T6538] R13: 00000000000927c0 R14: 000000000001819d R15: 00007ffdd5f716a0
[ 99.345042][ T6538]
[ 99.345057][ T6538] BUG: Bad page state in process syz.0.21 pfn:4da00
[ 99.448844][ T6538] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4da00
[ 99.451519][ T6538] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 99.454216][ T6538] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 99.457612][ T6538] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.460960][ T6538] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.464124][ T6538] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.466762][ T6538] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.469676][ T6538] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.472626][ T6538] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.475175][ T6538] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 99.477303][ T6538] page_owner tracks the page as allocated
[ 99.479014][ T6538] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6538, tgid 6538 (syz.0.21), ts 99166745204, free_ts 60320348533
[ 99.484952][ T6538] post_alloc_hook+0x181/0x1b0
[ 99.486362][ T6538] get_page_from_freelist+0x135c/0x3920
[ 99.488010][ T6538] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.489843][ T6538] alloc_pages_mpol+0x1fb/0x550
[ 99.491374][ T6538] folio_alloc_noprof+0x20/0x2d0
[ 99.492824][ T6538] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.494487][ T6538] page_cache_ra_order+0x4c0/0xd00
[ 99.496033][ T6538] filemap_fault+0x1a5e/0x2740
[ 99.497439][ T6538] __do_fault+0x10a/0x490
[ 99.498741][ T6538] do_pte_missing+0x1a6/0x3fb0
[ 99.500216][ T6538] __handle_mm_fault+0x103d/0x2a40
[ 99.501821][ T6538] handle_mm_fault+0x3fe/0xad0
[ 99.503225][ T6538] do_user_addr_fault+0x60c/0x1370
[ 99.504750][ T6538] exc_page_fault+0x5c/0xc0
[ 99.506378][ T6538] asm_exc_page_fault+0x26/0x30
[ 99.507947][ T6538] page last free pid 6017 tgid 6017 stack trace:
[ 99.510027][ T6538] __free_frozen_pages+0x69d/0xff0
[ 99.512017][ T6538] vfree+0x176/0x960
[ 99.513542][ T6538] kcov_close+0x34/0x60
[ 99.514849][ T6538] __fput+0x3ff/0xb70
[ 99.516110][ T6538] task_work_run+0x14d/0x240
[ 99.517530][ T6538] do_exit+0xafb/0x2c30
[ 99.518888][ T6538] do_group_exit+0xd3/0x2a0
[ 99.520846][ T6538] get_signal+0x2673/0x26d0
[ 99.522470][ T6538] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.524266][ T6538] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.525973][ T6538] do_syscall_64+0xda/0x260
[ 99.527378][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.529363][ T6538] Modules linked in:
[ 99.530998][ T6538] CPU: 1 UID: 0 PID: 6538 Comm: syz.0.21 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 99.531023][ T6538] Tainted: [B]=BAD_PAGE
[ 99.531028][ T6538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.531038][ T6538] Call Trace:
[ 99.531045][ T6538]
[ 99.531051][ T6538] dump_stack_lvl+0x16c/0x1f0
[ 99.531071][ T6538] bad_page+0xb3/0x1f0
[ 99.531087][ T6538] ? __pfx_bad_page+0x10/0x10
[ 99.531103][ T6538] ? page_bad_reason+0x9d/0x1e0
[ 99.531120][ T6538] __free_frozen_pages+0x76e/0xff0
[ 99.531149][ T6538] __folio_put+0x329/0x450
[ 99.531167][ T6538] ? __pfx___folio_put+0x10/0x10
[ 99.531184][ T6538] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.531202][ T6538] ? rcu_is_watching+0x12/0xc0
[ 99.531220][ T6538] ? lock_release+0x201/0x2f0
[ 99.531243][ T6538] filemap_free_folio+0x132/0x170
[ 99.531260][ T6538] delete_from_page_cache_batch+0x741/0x9b0
[ 99.531280][ T6538] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.531299][ T6538] ? __pfx_workingset_update_node+0x10/0x10
[ 99.531318][ T6538] ? xas_move_index+0xb0/0x110
[ 99.531338][ T6538] truncate_inode_pages_range+0x279/0xe30
[ 99.531361][ T6538] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.531398][ T6538] ? __pfx_down_write+0x10/0x10
[ 99.531417][ T6538] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.531442][ T6538] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.531464][ T6538] blkdev_flush_mapping+0xe9/0x280
[ 99.531484][ T6538] blkdev_put_whole+0xc4/0xf0
[ 99.531500][ T6538] bdev_release+0x47e/0x6d0
[ 99.531520][ T6538] ? __pfx_blkdev_release+0x10/0x10
[ 99.531537][ T6538] blkdev_release+0x15/0x20
[ 99.531555][ T6538] __fput+0x3ff/0xb70
[ 99.531573][ T6538] task_work_run+0x14d/0x240
[ 99.531589][ T6538] ? __pfx_task_work_run+0x10/0x10
[ 99.531605][ T6538] ? do_raw_spin_unlock+0x172/0x230
[ 99.531622][ T6538] do_exit+0xafb/0x2c30
[ 99.531644][ T6538] ? __pfx_do_exit+0x10/0x10
[ 99.531666][ T6538] ? preempt_schedule_thunk+0x16/0x30
[ 99.531683][ T6538] do_group_exit+0xd3/0x2a0
[ 99.531705][ T6538] __x64_sys_exit_group+0x3e/0x50
[ 99.531727][ T6538] x64_sys_call+0x1530/0x1730
[ 99.531749][ T6538] do_syscall_64+0xcd/0x260
[ 99.531769][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.531785][ T6538] RIP: 0033:0x7f62ebd8e969
[ 99.531797][ T6538] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 99.531804][ T6538] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 99.531820][ T6538] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 99.531831][ T6538] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 99.531841][ T6538] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 99.531851][ T6538] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000005
[ 99.531861][ T6538] R13: 00000000000927c0 R14: 000000000001819d R15: 00007ffdd5f716a0
[ 99.531876][ T6538]
[ 99.573296][ T6540] BUG: Bad page state in process syz.0.22 pfn:4d801
[ 99.648775][ T6540] page does not match folio
[ 99.650607][ T6540] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4d801
[ 99.654431][ T6540] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 99.656989][ T6540] raw: 00fff00000000000 ffffea0001360000 00000000ffffffff ffffffffffffffff
[ 99.659540][ T6540] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.662129][ T6540] page dumped because: nonzero pincount
[ 99.663755][ T6540] page_owner tracks the page as allocated
[ 99.665634][ T6540] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6540, tgid 6540 (syz.0.22), ts 99541678810, free_ts 99160156593
[ 99.671455][ T6540] post_alloc_hook+0x181/0x1b0
[ 99.672913][ T6540] get_page_from_freelist+0x135c/0x3920
[ 99.674668][ T6540] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.676950][ T6540] alloc_pages_mpol+0x1fb/0x550
[ 99.678832][ T6540] folio_alloc_noprof+0x20/0x2d0
[ 99.680512][ T6540] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.682654][ T6540] page_cache_ra_order+0x4c0/0xd00
[ 99.684738][ T6540] filemap_fault+0x1a5e/0x2740
[ 99.686495][ T6540] __do_fault+0x10a/0x490
[ 99.687909][ T6540] do_pte_missing+0x1a6/0x3fb0
[ 99.689391][ T6540] __handle_mm_fault+0x103d/0x2a40
[ 99.691019][ T6540] handle_mm_fault+0x3fe/0xad0
[ 99.692523][ T6540] do_user_addr_fault+0x60c/0x1370
[ 99.694018][ T6540] exc_page_fault+0x5c/0xc0
[ 99.695591][ T6540] asm_exc_page_fault+0x26/0x30
[ 99.697324][ T6540] page last free pid 6537 tgid 6536 stack trace:
[ 99.699478][ T6540] free_unref_folios+0x999/0x1630
[ 99.701328][ T6540] folios_put_refs+0x56f/0x740
[ 99.702755][ T6540] truncate_inode_pages_range+0x311/0xe30
[ 99.704429][ T6540] blkdev_flush_mapping+0xe9/0x280
[ 99.706441][ T6540] blkdev_put_whole+0xc4/0xf0
[ 99.708249][ T6540] bdev_release+0x47e/0x6d0
[ 99.709867][ T6540] blkdev_release+0x15/0x20
[ 99.711711][ T6540] __fput+0x3ff/0xb70
[ 99.713272][ T6540] task_work_run+0x14d/0x240
[ 99.715037][ T6540] do_exit+0xafb/0x2c30
[ 99.716581][ T6540] do_group_exit+0xd3/0x2a0
[ 99.718099][ T6540] get_signal+0x2673/0x26d0
[ 99.719630][ T6540] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.721389][ T6540] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.723090][ T6540] do_syscall_64+0xda/0x260
[ 99.724547][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.726722][ T6540] Modules linked in:
[ 99.728107][ T6540] CPU: 2 UID: 0 PID: 6540 Comm: syz.0.22 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 99.728123][ T6540] Tainted: [B]=BAD_PAGE
[ 99.728127][ T6540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.728133][ T6540] Call Trace:
[ 99.728138][ T6540]
[ 99.728141][ T6540] dump_stack_lvl+0x16c/0x1f0
[ 99.728155][ T6540] bad_page+0xb3/0x1f0
[ 99.728169][ T6540] ? __pfx_bad_page+0x10/0x10
[ 99.728184][ T6540] ? __mem_cgroup_uncharge+0xda/0x130
[ 99.728203][ T6540] free_tail_page_prepare+0x44f/0x5b0
[ 99.728225][ T6540] __free_frozen_pages+0x96a/0xff0
[ 99.728247][ T6540] __folio_put+0x329/0x450
[ 99.728262][ T6540] ? __pfx___folio_put+0x10/0x10
[ 99.728278][ T6540] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.728294][ T6540] ? rcu_is_watching+0x12/0xc0
[ 99.728307][ T6540] ? lock_release+0x201/0x2f0
[ 99.728322][ T6540] filemap_free_folio+0x132/0x170
[ 99.728332][ T6540] delete_from_page_cache_batch+0x741/0x9b0
[ 99.728350][ T6540] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.728362][ T6540] ? __pfx_workingset_update_node+0x10/0x10
[ 99.728373][ T6540] ? xas_move_index+0xb0/0x110
[ 99.728389][ T6540] truncate_inode_pages_range+0x279/0xe30
[ 99.728412][ T6540] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.728449][ T6540] ? __pfx_down_write+0x10/0x10
[ 99.728470][ T6540] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.728495][ T6540] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.728518][ T6540] blkdev_flush_mapping+0xe9/0x280
[ 99.728536][ T6540] blkdev_put_whole+0xc4/0xf0
[ 99.728552][ T6540] bdev_release+0x47e/0x6d0
[ 99.728570][ T6540] ? __pfx_blkdev_release+0x10/0x10
[ 99.728587][ T6540] blkdev_release+0x15/0x20
[ 99.728604][ T6540] __fput+0x3ff/0xb70
[ 99.728622][ T6540] task_work_run+0x14d/0x240
[ 99.728641][ T6540] ? __pfx_task_work_run+0x10/0x10
[ 99.728656][ T6540] ? do_raw_spin_unlock+0x172/0x230
[ 99.728673][ T6540] do_exit+0xafb/0x2c30
[ 99.728697][ T6540] ? __pfx_do_exit+0x10/0x10
[ 99.728716][ T6540] ? preempt_schedule_thunk+0x16/0x30
[ 99.728732][ T6540] do_group_exit+0xd3/0x2a0
[ 99.728753][ T6540] __x64_sys_exit_group+0x3e/0x50
[ 99.728773][ T6540] x64_sys_call+0x1530/0x1730
[ 99.728793][ T6540] do_syscall_64+0xcd/0x260
[ 99.728805][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.728816][ T6540] RIP: 0033:0x7f62ebd8e969
[ 99.728823][ T6540] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 99.728828][ T6540] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 99.728838][ T6540] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 99.728844][ T6540] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 99.728850][ T6540] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 99.728856][ T6540] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000006
[ 99.728862][ T6540] R13: 00000000000927c0 R14: 00000000000182e3 R15: 00007ffdd5f716a0
[ 99.728870][ T6540]
[ 99.728886][ T6540] BUG: Bad page state in process syz.0.22 pfn:4d800
[ 99.831836][ T6540] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4d800
[ 99.835321][ T6540] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 99.838525][ T6540] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 99.842409][ T6540] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.845791][ T6540] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.849063][ T6540] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.852432][ T6540] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.855718][ T6540] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.859110][ T6540] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.862505][ T6540] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 99.865353][ T6540] page_owner tracks the page as allocated
[ 99.867625][ T6540] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6540, tgid 6540 (syz.0.22), ts 99541678810, free_ts 99160156593
[ 99.875579][ T6540] post_alloc_hook+0x181/0x1b0
[ 99.877546][ T6540] get_page_from_freelist+0x135c/0x3920
[ 99.879785][ T6540] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.882302][ T6540] alloc_pages_mpol+0x1fb/0x550
[ 99.884292][ T6540] folio_alloc_noprof+0x20/0x2d0
[ 99.886415][ T6540] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.888716][ T6540] page_cache_ra_order+0x4c0/0xd00
[ 99.890863][ T6540] filemap_fault+0x1a5e/0x2740
[ 99.892938][ T6540] __do_fault+0x10a/0x490
[ 99.894649][ T6540] do_pte_missing+0x1a6/0x3fb0
[ 99.896620][ T6540] __handle_mm_fault+0x103d/0x2a40
[ 99.898627][ T6540] handle_mm_fault+0x3fe/0xad0
[ 99.900596][ T6540] do_user_addr_fault+0x60c/0x1370
[ 99.902605][ T6540] exc_page_fault+0x5c/0xc0
[ 99.904434][ T6540] asm_exc_page_fault+0x26/0x30
[ 99.906367][ T6540] page last free pid 6537 tgid 6536 stack trace:
[ 99.908882][ T6540] free_unref_folios+0x999/0x1630
[ 99.910940][ T6540] folios_put_refs+0x56f/0x740
[ 99.912864][ T6540] truncate_inode_pages_range+0x311/0xe30
[ 99.915114][ T6540] blkdev_flush_mapping+0xe9/0x280
[ 99.917119][ T6540] blkdev_put_whole+0xc4/0xf0
[ 99.919053][ T6540] bdev_release+0x47e/0x6d0
[ 99.921045][ T6540] blkdev_release+0x15/0x20
[ 99.922836][ T6540] __fput+0x3ff/0xb70
[ 99.924419][ T6540] task_work_run+0x14d/0x240
[ 99.926059][ T6540] do_exit+0xafb/0x2c30
[ 99.927322][ T6540] do_group_exit+0xd3/0x2a0
[ 99.928683][ T6540] get_signal+0x2673/0x26d0
[ 99.930146][ T6540] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.931864][ T6540] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.933504][ T6540] do_syscall_64+0xda/0x260
[ 99.934824][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.936806][ T6540] Modules linked in:
[ 99.938370][ T6540] CPU: 3 UID: 0 PID: 6540 Comm: syz.0.22 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 99.938394][ T6540] Tainted: [B]=BAD_PAGE
[ 99.938399][ T6540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.938408][ T6540] Call Trace:
[ 99.938414][ T6540]
[ 99.938419][ T6540] dump_stack_lvl+0x16c/0x1f0
[ 99.938436][ T6540] bad_page+0xb3/0x1f0
[ 99.938453][ T6540] ? __pfx_bad_page+0x10/0x10
[ 99.938468][ T6540] ? page_bad_reason+0x9d/0x1e0
[ 99.938484][ T6540] __free_frozen_pages+0x76e/0xff0
[ 99.938504][ T6540] __folio_put+0x329/0x450
[ 99.938517][ T6540] ? __pfx___folio_put+0x10/0x10
[ 99.938534][ T6540] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.938550][ T6540] ? rcu_is_watching+0x12/0xc0
[ 99.938566][ T6540] ? lock_release+0x201/0x2f0
[ 99.938588][ T6540] filemap_free_folio+0x132/0x170
[ 99.938599][ T6540] delete_from_page_cache_batch+0x741/0x9b0
[ 99.938617][ T6540] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.938635][ T6540] ? __pfx_workingset_update_node+0x10/0x10
[ 99.938651][ T6540] ? xas_move_index+0xb0/0x110
[ 99.938668][ T6540] truncate_inode_pages_range+0x279/0xe30
[ 99.938686][ T6540] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.938720][ T6540] ? __pfx_down_write+0x10/0x10
[ 99.938738][ T6540] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.938760][ T6540] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.938782][ T6540] blkdev_flush_mapping+0xe9/0x280
[ 99.938803][ T6540] blkdev_put_whole+0xc4/0xf0
[ 99.938819][ T6540] bdev_release+0x47e/0x6d0
[ 99.938837][ T6540] ? __pfx_blkdev_release+0x10/0x10
[ 99.938854][ T6540] blkdev_release+0x15/0x20
[ 99.938871][ T6540] __fput+0x3ff/0xb70
[ 99.938886][ T6540] task_work_run+0x14d/0x240
[ 99.938896][ T6540] ? __pfx_task_work_run+0x10/0x10
[ 99.938906][ T6540] ? do_raw_spin_unlock+0x172/0x230
[ 99.938917][ T6540] do_exit+0xafb/0x2c30
[ 99.938933][ T6540] ? __pfx_do_exit+0x10/0x10
[ 99.938946][ T6540] ? preempt_schedule_thunk+0x16/0x30
[ 99.938958][ T6540] do_group_exit+0xd3/0x2a0
[ 99.938973][ T6540] __x64_sys_exit_group+0x3e/0x50
[ 99.938988][ T6540] x64_sys_call+0x1530/0x1730
[ 99.939002][ T6540] do_syscall_64+0xcd/0x260
[ 99.939014][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.939024][ T6540] RIP: 0033:0x7f62ebd8e969
[ 99.939032][ T6540] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 99.939036][ T6540] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 99.939046][ T6540] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 99.939052][ T6540] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 99.939058][ T6540] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 99.939064][ T6540] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000006
[ 99.939070][ T6540] R13: 00000000000927c0 R14: 00000000000182e3 R15: 00007ffdd5f716a0
[ 99.939078][ T6540]
[ 100.050125][ T6543] BUG: Bad page state in process syz.0.23 pfn:48801
[ 100.052455][ T6543] page does not match folio
[ 100.054001][ T6543] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x48801
[ 100.057478][ T6543] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 100.059898][ T6543] raw: 00fff00000000000 ffffea0001220000 00000000ffffffff ffffffffffffffff
[ 100.062452][ T6543] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.065071][ T6543] page dumped because: nonzero pincount
[ 100.066788][ T6543] page_owner tracks the page as allocated
[ 100.068638][ T6543] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6542, tgid 6542 (syz.0.23), ts 100031874534, free_ts 87843189283
[ 100.075343][ T6543] post_alloc_hook+0x181/0x1b0
[ 100.077005][ T6543] get_page_from_freelist+0x135c/0x3920
[ 100.079070][ T6543] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.081035][ T6543] alloc_pages_mpol+0x1fb/0x550
[ 100.082467][ T6543] folio_alloc_noprof+0x20/0x2d0
[ 100.083950][ T6543] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.085637][ T6543] page_cache_ra_order+0x4c0/0xd00
[ 100.087109][ T6543] filemap_fault+0x1a5e/0x2740
[ 100.088538][ T6543] __do_fault+0x10a/0x490
[ 100.089851][ T6543] do_pte_missing+0x1a6/0x3fb0
[ 100.091365][ T6543] __handle_mm_fault+0x103d/0x2a40
[ 100.092869][ T6543] handle_mm_fault+0x3fe/0xad0
[ 100.094308][ T6543] do_user_addr_fault+0x60c/0x1370
[ 100.095818][ T6543] exc_page_fault+0x5c/0xc0
[ 100.097184][ T6543] asm_exc_page_fault+0x26/0x30
[ 100.098628][ T6543] page last free pid 6211 tgid 6211 stack trace:
[ 100.100603][ T6543] free_unref_folios+0x999/0x1630
[ 100.102111][ T6543] folios_put_refs+0x56f/0x740
[ 100.103512][ T6543] free_pages_and_swap_cache+0x245/0x4a0
[ 100.105167][ T6543] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 100.106891][ T6543] tlb_finish_mmu+0x168/0x7b0
[ 100.108272][ T6543] vms_clear_ptes+0x55e/0x770
[ 100.109697][ T6543] vms_complete_munmap_vmas+0x1ca/0x970
[ 100.111424][ T6543] do_vmi_align_munmap+0x43b/0x7d0
[ 100.112942][ T6543] do_vmi_munmap+0x208/0x3e0
[ 100.114307][ T6543] __vm_munmap+0x19a/0x390
[ 100.115623][ T6543] __x64_sys_munmap+0x59/0x80
[ 100.117061][ T6543] do_syscall_64+0xcd/0x260
[ 100.118414][ T6543] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.120199][ T6543] Modules linked in:
[ 100.121718][ T6543] CPU: 1 UID: 0 PID: 6543 Comm: syz.0.23 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 100.121735][ T6543] Tainted: [B]=BAD_PAGE
[ 100.121739][ T6543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.121745][ T6543] Call Trace:
[ 100.121749][ T6543]
[ 100.121752][ T6543] dump_stack_lvl+0x16c/0x1f0
[ 100.121766][ T6543] bad_page+0xb3/0x1f0
[ 100.121777][ T6543] ? __pfx_bad_page+0x10/0x10
[ 100.121787][ T6543] ? __mem_cgroup_uncharge+0xda/0x130
[ 100.121799][ T6543] free_tail_page_prepare+0x44f/0x5b0
[ 100.121813][ T6543] __free_frozen_pages+0x96a/0xff0
[ 100.121832][ T6543] __folio_put+0x329/0x450
[ 100.121846][ T6543] ? __pfx___folio_put+0x10/0x10
[ 100.121857][ T6543] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.121868][ T6543] ? rcu_is_watching+0x12/0xc0
[ 100.121881][ T6543] ? lock_release+0x201/0x2f0
[ 100.121897][ T6543] filemap_free_folio+0x132/0x170
[ 100.121907][ T6543] delete_from_page_cache_batch+0x741/0x9b0
[ 100.121920][ T6543] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.121931][ T6543] ? __pfx_workingset_update_node+0x10/0x10
[ 100.121943][ T6543] ? xas_move_index+0xb0/0x110
[ 100.121955][ T6543] truncate_inode_pages_range+0x279/0xe30
[ 100.121970][ T6543] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.121992][ T6543] ? __pfx_down_write+0x10/0x10
[ 100.122005][ T6543] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.122021][ T6543] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.122036][ T6543] blkdev_flush_mapping+0xe9/0x280
[ 100.122048][ T6543] ? filemap_check_errors+0xa9/0x160
[ 100.122062][ T6543] blkdev_put_whole+0xc4/0xf0
[ 100.122073][ T6543] bdev_release+0x47e/0x6d0
[ 100.122086][ T6543] ? __pfx_blkdev_release+0x10/0x10
[ 100.122098][ T6543] blkdev_release+0x15/0x20
[ 100.122110][ T6543] __fput+0x3ff/0xb70
[ 100.122121][ T6543] task_work_run+0x14d/0x240
[ 100.122132][ T6543] ? __pfx_task_work_run+0x10/0x10
[ 100.122145][ T6543] ? do_raw_spin_unlock+0x172/0x230
[ 100.122156][ T6543] do_exit+0xafb/0x2c30
[ 100.122170][ T6543] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.122186][ T6543] ? __pfx_do_exit+0x10/0x10
[ 100.122200][ T6543] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.122210][ T6543] ? get_signal+0x8f5/0x26d0
[ 100.122221][ T6543] ? rcu_is_watching+0x12/0xc0
[ 100.122232][ T6543] do_group_exit+0xd3/0x2a0
[ 100.122248][ T6543] get_signal+0x2673/0x26d0
[ 100.122261][ T6543] ? __pfx_get_signal+0x10/0x10
[ 100.122273][ T6543] ? do_futex+0x122/0x350
[ 100.122286][ T6543] ? __pfx_do_futex+0x10/0x10
[ 100.122299][ T6543] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.122313][ T6543] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.122329][ T6543] ? madvise_unlock+0xc6/0x190
[ 100.122342][ T6543] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.122358][ T6543] do_syscall_64+0xda/0x260
[ 100.122374][ T6543] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.122390][ T6543] RIP: 0033:0x7f62ebd8e969
[ 100.122398][ T6543] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 100.122403][ T6543] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.122412][ T6543] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 100.122419][ T6543] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 100.122425][ T6543] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.122431][ T6543] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 100.122436][ T6543] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 100.122445][ T6543]
[ 100.122460][ T6543] BUG: Bad page state in process syz.0.23 pfn:48800
[ 100.170535][ T5288] Bluetooth: hci0: command tx timeout
[ 100.170708][ T6543] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x48800
[ 100.243098][ T6543] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 100.245687][ T6543] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 100.248761][ T6543] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.251645][ T6543] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.254167][ T6543] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.256695][ T6543] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.259191][ T6543] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.261793][ T6543] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.264325][ T6543] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 100.266481][ T6543] page_owner tracks the page as allocated
[ 100.268157][ T6543] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6542, tgid 6542 (syz.0.23), ts 100031874534, free_ts 87843184058
[ 100.273980][ T6543] post_alloc_hook+0x181/0x1b0
[ 100.275388][ T6543] get_page_from_freelist+0x135c/0x3920
[ 100.277048][ T6543] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.278804][ T6543] alloc_pages_mpol+0x1fb/0x550
[ 100.280308][ T6543] folio_alloc_noprof+0x20/0x2d0
[ 100.281913][ T6543] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.283591][ T6543] page_cache_ra_order+0x4c0/0xd00
[ 100.285119][ T6543] filemap_fault+0x1a5e/0x2740
[ 100.286549][ T6543] __do_fault+0x10a/0x490
[ 100.287816][ T6543] do_pte_missing+0x1a6/0x3fb0
[ 100.289250][ T6543] __handle_mm_fault+0x103d/0x2a40
[ 100.290861][ T6543] handle_mm_fault+0x3fe/0xad0
[ 100.292311][ T6543] do_user_addr_fault+0x60c/0x1370
[ 100.293831][ T6543] exc_page_fault+0x5c/0xc0
[ 100.295179][ T6543] asm_exc_page_fault+0x26/0x30
[ 100.296642][ T6543] page last free pid 6211 tgid 6211 stack trace:
[ 100.298469][ T6543] free_unref_folios+0x999/0x1630
[ 100.300021][ T6543] folios_put_refs+0x56f/0x740
[ 100.301539][ T6543] free_pages_and_swap_cache+0x245/0x4a0
[ 100.303249][ T6543] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 100.304992][ T6543] tlb_finish_mmu+0x168/0x7b0
[ 100.306361][ T6543] vms_clear_ptes+0x55e/0x770
[ 100.307751][ T6543] vms_complete_munmap_vmas+0x1ca/0x970
[ 100.309369][ T6543] do_vmi_align_munmap+0x43b/0x7d0
[ 100.310912][ T6543] do_vmi_munmap+0x208/0x3e0
[ 100.312289][ T6543] __vm_munmap+0x19a/0x390
[ 100.313594][ T6543] __x64_sys_munmap+0x59/0x80
[ 100.314995][ T6543] do_syscall_64+0xcd/0x260
[ 100.316323][ T6543] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.318022][ T6543] Modules linked in:
[ 100.319331][ T6543] CPU: 1 UID: 0 PID: 6543 Comm: syz.0.23 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 100.319348][ T6543] Tainted: [B]=BAD_PAGE
[ 100.319351][ T6543] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.319358][ T6543] Call Trace:
[ 100.319363][ T6543]
[ 100.319367][ T6543] dump_stack_lvl+0x16c/0x1f0
[ 100.319382][ T6543] bad_page+0xb3/0x1f0
[ 100.319393][ T6543] ? __pfx_bad_page+0x10/0x10
[ 100.319403][ T6543] ? page_bad_reason+0x9d/0x1e0
[ 100.319414][ T6543] __free_frozen_pages+0x76e/0xff0
[ 100.319429][ T6543] __folio_put+0x329/0x450
[ 100.319439][ T6543] ? __pfx___folio_put+0x10/0x10
[ 100.319450][ T6543] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.319462][ T6543] ? rcu_is_watching+0x12/0xc0
[ 100.319474][ T6543] ? lock_release+0x201/0x2f0
[ 100.319489][ T6543] filemap_free_folio+0x132/0x170
[ 100.319500][ T6543] delete_from_page_cache_batch+0x741/0x9b0
[ 100.319512][ T6543] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.319524][ T6543] ? __pfx_workingset_update_node+0x10/0x10
[ 100.319535][ T6543] ? xas_move_index+0xb0/0x110
[ 100.319547][ T6543] truncate_inode_pages_range+0x279/0xe30
[ 100.319562][ T6543] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.319584][ T6543] ? __pfx_down_write+0x10/0x10
[ 100.319597][ T6543] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.319613][ T6543] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.319627][ T6543] blkdev_flush_mapping+0xe9/0x280
[ 100.319640][ T6543] ? filemap_check_errors+0xa9/0x160
[ 100.319654][ T6543] blkdev_put_whole+0xc4/0xf0
[ 100.319665][ T6543] bdev_release+0x47e/0x6d0
[ 100.319678][ T6543] ? __pfx_blkdev_release+0x10/0x10
[ 100.319690][ T6543] blkdev_release+0x15/0x20
[ 100.319701][ T6543] __fput+0x3ff/0xb70
[ 100.319713][ T6543] task_work_run+0x14d/0x240
[ 100.319724][ T6543] ? __pfx_task_work_run+0x10/0x10
[ 100.319734][ T6543] ? do_raw_spin_unlock+0x172/0x230
[ 100.319745][ T6543] do_exit+0xafb/0x2c30
[ 100.319759][ T6543] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.319776][ T6543] ? __pfx_do_exit+0x10/0x10
[ 100.319789][ T6543] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.319799][ T6543] ? get_signal+0x8f5/0x26d0
[ 100.319811][ T6543] ? rcu_is_watching+0x12/0xc0
[ 100.319822][ T6543] do_group_exit+0xd3/0x2a0
[ 100.319837][ T6543] get_signal+0x2673/0x26d0
[ 100.319850][ T6543] ? __pfx_get_signal+0x10/0x10
[ 100.319862][ T6543] ? do_futex+0x122/0x350
[ 100.319875][ T6543] ? __pfx_do_futex+0x10/0x10
[ 100.319888][ T6543] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.319908][ T6543] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.319945][ T6543] ? madvise_unlock+0xc6/0x190
[ 100.319958][ T6543] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.319971][ T6543] do_syscall_64+0xda/0x260
[ 100.319983][ T6543] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.319993][ T6543] RIP: 0033:0x7f62ebd8e969
[ 100.320001][ T6543] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 100.320006][ T6543] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.320016][ T6543] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 100.320022][ T6543] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 100.320028][ T6543] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.320034][ T6543] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 100.320040][ T6543] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 100.320048][ T6543]
[ 100.453402][ T6545] BUG: Bad page state in process syz.0.24 pfn:48a01
[ 100.456076][ T6545] page does not match folio
[ 100.457844][ T6545] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x48a01
[ 100.465864][ T6545] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 100.468822][ T6545] raw: 00fff00000000000 ffffea0001228000 00000000ffffffff ffffffffffffffff
[ 100.472231][ T6545] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.475636][ T6545] page dumped because: nonzero pincount
[ 100.477489][ T6545] page_owner tracks the page as allocated
[ 100.479261][ T6545] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6544, tgid 6544 (syz.0.24), ts 100427364064, free_ts 87846321352
[ 100.485755][ T6545] post_alloc_hook+0x181/0x1b0
[ 100.487184][ T6545] get_page_from_freelist+0x135c/0x3920
[ 100.488932][ T6545] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.490939][ T6545] alloc_pages_mpol+0x1fb/0x550
[ 100.492886][ T6545] folio_alloc_noprof+0x20/0x2d0
[ 100.494873][ T6545] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.497122][ T6545] page_cache_ra_order+0x4c0/0xd00
[ 100.499151][ T6545] filemap_fault+0x1a5e/0x2740
[ 100.501144][ T6545] __do_fault+0x10a/0x490
[ 100.502866][ T6545] do_pte_missing+0x1a6/0x3fb0
[ 100.504763][ T6545] __handle_mm_fault+0x103d/0x2a40
[ 100.506752][ T6545] handle_mm_fault+0x3fe/0xad0
[ 100.508643][ T6545] do_user_addr_fault+0x60c/0x1370
[ 100.510782][ T6545] exc_page_fault+0x5c/0xc0
[ 100.512614][ T6545] asm_exc_page_fault+0x26/0x30
[ 100.514549][ T6545] page last free pid 6211 tgid 6211 stack trace:
[ 100.516975][ T6545] free_unref_folios+0x999/0x1630
[ 100.518973][ T6545] folios_put_refs+0x56f/0x740
[ 100.520936][ T6545] free_pages_and_swap_cache+0x245/0x4a0
[ 100.523051][ T6545] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 100.525298][ T6545] tlb_finish_mmu+0x168/0x7b0
[ 100.527137][ T6545] vms_clear_ptes+0x55e/0x770
[ 100.529044][ T6545] vms_complete_munmap_vmas+0x1ca/0x970
[ 100.531353][ T6545] do_vmi_align_munmap+0x43b/0x7d0
[ 100.533204][ T6545] do_vmi_munmap+0x208/0x3e0
[ 100.534868][ T6545] __vm_munmap+0x19a/0x390
[ 100.536558][ T6545] __x64_sys_munmap+0x59/0x80
[ 100.538493][ T6545] do_syscall_64+0xcd/0x260
[ 100.540384][ T6545] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.542866][ T6545] Modules linked in:
[ 100.544467][ T6545] CPU: 2 UID: 0 PID: 6545 Comm: syz.0.24 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 100.544493][ T6545] Tainted: [B]=BAD_PAGE
[ 100.544498][ T6545] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.544508][ T6545] Call Trace:
[ 100.544514][ T6545]
[ 100.544520][ T6545] dump_stack_lvl+0x16c/0x1f0
[ 100.544541][ T6545] bad_page+0xb3/0x1f0
[ 100.544558][ T6545] ? __pfx_bad_page+0x10/0x10
[ 100.544576][ T6545] ? __mem_cgroup_uncharge+0xda/0x130
[ 100.544595][ T6545] free_tail_page_prepare+0x44f/0x5b0
[ 100.544617][ T6545] __free_frozen_pages+0x96a/0xff0
[ 100.544641][ T6545] __folio_put+0x329/0x450
[ 100.544659][ T6545] ? __pfx___folio_put+0x10/0x10
[ 100.544678][ T6545] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.544695][ T6545] ? rcu_is_watching+0x12/0xc0
[ 100.544713][ T6545] ? lock_release+0x201/0x2f0
[ 100.544737][ T6545] filemap_free_folio+0x132/0x170
[ 100.544755][ T6545] delete_from_page_cache_batch+0x741/0x9b0
[ 100.544775][ T6545] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.544794][ T6545] ? __pfx_workingset_update_node+0x10/0x10
[ 100.544813][ T6545] ? xas_move_index+0xb0/0x110
[ 100.544833][ T6545] truncate_inode_pages_range+0x279/0xe30
[ 100.544857][ T6545] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.544902][ T6545] ? __pfx_down_write+0x10/0x10
[ 100.544923][ T6545] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.544948][ T6545] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.544984][ T6545] blkdev_flush_mapping+0xe9/0x280
[ 100.545003][ T6545] ? filemap_check_errors+0xa9/0x160
[ 100.545026][ T6545] blkdev_put_whole+0xc4/0xf0
[ 100.545044][ T6545] bdev_release+0x47e/0x6d0
[ 100.545064][ T6545] ? __pfx_blkdev_release+0x10/0x10
[ 100.545082][ T6545] blkdev_release+0x15/0x20
[ 100.545102][ T6545] __fput+0x3ff/0xb70
[ 100.545121][ T6545] task_work_run+0x14d/0x240
[ 100.545138][ T6545] ? __pfx_task_work_run+0x10/0x10
[ 100.545155][ T6545] ? do_raw_spin_unlock+0x172/0x230
[ 100.545172][ T6545] do_exit+0xafb/0x2c30
[ 100.545195][ T6545] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.545220][ T6545] ? __pfx_do_exit+0x10/0x10
[ 100.545243][ T6545] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.545258][ T6545] ? get_signal+0x8f5/0x26d0
[ 100.545277][ T6545] ? rcu_is_watching+0x12/0xc0
[ 100.545296][ T6545] do_group_exit+0xd3/0x2a0
[ 100.545319][ T6545] get_signal+0x2673/0x26d0
[ 100.545342][ T6545] ? __pfx_get_signal+0x10/0x10
[ 100.545360][ T6545] ? do_futex+0x122/0x350
[ 100.545387][ T6545] ? __pfx_do_futex+0x10/0x10
[ 100.545408][ T6545] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.545433][ T6545] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.545457][ T6545] ? madvise_unlock+0xc6/0x190
[ 100.545477][ T6545] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.545497][ T6545] do_syscall_64+0xda/0x260
[ 100.545517][ T6545] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.545533][ T6545] RIP: 0033:0x7f62ebd8e969
[ 100.545545][ T6545] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 100.545552][ T6545] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.545574][ T6545] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 100.545587][ T6545] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 100.545597][ T6545] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.545607][ T6545] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 100.545618][ T6545] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 100.545631][ T6545]
[ 100.545659][ T6545] BUG: Bad page state in process syz.0.24 pfn:48a00
[ 100.678951][ T6545] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x48a00
[ 100.682087][ T6545] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 100.685419][ T6545] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 100.688952][ T6545] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.692408][ T6545] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.695903][ T6545] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.698568][ T6545] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.702096][ T6545] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.705573][ T6545] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.709133][ T6545] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 100.712120][ T6545] page_owner tracks the page as allocated
[ 100.714341][ T6545] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6544, tgid 6544 (syz.0.24), ts 100427364064, free_ts 87846316449
[ 100.721717][ T6545] post_alloc_hook+0x181/0x1b0
[ 100.723697][ T6545] get_page_from_freelist+0x135c/0x3920
[ 100.725725][ T6545] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.728085][ T6545] alloc_pages_mpol+0x1fb/0x550
[ 100.729989][ T6545] folio_alloc_noprof+0x20/0x2d0
[ 100.731977][ T6545] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.734172][ T6545] page_cache_ra_order+0x4c0/0xd00
[ 100.736224][ T6545] filemap_fault+0x1a5e/0x2740
[ 100.738166][ T6545] __do_fault+0x10a/0x490
[ 100.739883][ T6545] do_pte_missing+0x1a6/0x3fb0
[ 100.741930][ T6545] __handle_mm_fault+0x103d/0x2a40
[ 100.744019][ T6545] handle_mm_fault+0x3fe/0xad0
[ 100.745976][ T6545] do_user_addr_fault+0x60c/0x1370
[ 100.748038][ T6545] exc_page_fault+0x5c/0xc0
[ 100.749827][ T6545] asm_exc_page_fault+0x26/0x30
[ 100.751787][ T6545] page last free pid 6211 tgid 6211 stack trace:
[ 100.754202][ T6545] free_unref_folios+0x999/0x1630
[ 100.756214][ T6545] folios_put_refs+0x56f/0x740
[ 100.758117][ T6545] free_pages_and_swap_cache+0x245/0x4a0
[ 100.760088][ T6545] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 100.762225][ T6545] tlb_finish_mmu+0x168/0x7b0
[ 100.764024][ T6545] vms_clear_ptes+0x55e/0x770
[ 100.765737][ T6545] vms_complete_munmap_vmas+0x1ca/0x970
[ 100.767793][ T6545] do_vmi_align_munmap+0x43b/0x7d0
[ 100.769828][ T6545] do_vmi_munmap+0x208/0x3e0
[ 100.771782][ T6545] __vm_munmap+0x19a/0x390
[ 100.773604][ T6545] __x64_sys_munmap+0x59/0x80
[ 100.775517][ T6545] do_syscall_64+0xcd/0x260
[ 100.777415][ T6545] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.779794][ T6545] Modules linked in:
[ 100.781536][ T6545] CPU: 3 UID: 0 PID: 6545 Comm: syz.0.24 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 100.781576][ T6545] Tainted: [B]=BAD_PAGE
[ 100.781583][ T6545] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.781593][ T6545] Call Trace:
[ 100.781603][ T6545]
[ 100.781610][ T6545] dump_stack_lvl+0x16c/0x1f0
[ 100.781630][ T6545] bad_page+0xb3/0x1f0
[ 100.781647][ T6545] ? __pfx_bad_page+0x10/0x10
[ 100.781663][ T6545] ? page_bad_reason+0x9d/0x1e0
[ 100.781680][ T6545] __free_frozen_pages+0x76e/0xff0
[ 100.781704][ T6545] __folio_put+0x329/0x450
[ 100.781721][ T6545] ? __pfx___folio_put+0x10/0x10
[ 100.781738][ T6545] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.781756][ T6545] ? rcu_is_watching+0x12/0xc0
[ 100.781776][ T6545] ? lock_release+0x201/0x2f0
[ 100.781799][ T6545] filemap_free_folio+0x132/0x170
[ 100.781817][ T6545] delete_from_page_cache_batch+0x741/0x9b0
[ 100.781836][ T6545] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.781855][ T6545] ? __pfx_workingset_update_node+0x10/0x10
[ 100.781872][ T6545] ? xas_move_index+0xb0/0x110
[ 100.781892][ T6545] truncate_inode_pages_range+0x279/0xe30
[ 100.781915][ T6545] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.781952][ T6545] ? __pfx_down_write+0x10/0x10
[ 100.781973][ T6545] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.781997][ T6545] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.782020][ T6545] blkdev_flush_mapping+0xe9/0x280
[ 100.782039][ T6545] ? filemap_check_errors+0xa9/0x160
[ 100.782062][ T6545] blkdev_put_whole+0xc4/0xf0
[ 100.782079][ T6545] bdev_release+0x47e/0x6d0
[ 100.782099][ T6545] ? __pfx_blkdev_release+0x10/0x10
[ 100.782118][ T6545] blkdev_release+0x15/0x20
[ 100.782137][ T6545] __fput+0x3ff/0xb70
[ 100.782155][ T6545] task_work_run+0x14d/0x240
[ 100.782173][ T6545] ? __pfx_task_work_run+0x10/0x10
[ 100.782189][ T6545] ? do_raw_spin_unlock+0x172/0x230
[ 100.782207][ T6545] do_exit+0xafb/0x2c30
[ 100.782228][ T6545] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.782252][ T6545] ? __pfx_do_exit+0x10/0x10
[ 100.782272][ T6545] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.782287][ T6545] ? get_signal+0x8f5/0x26d0
[ 100.782303][ T6545] ? rcu_is_watching+0x12/0xc0
[ 100.782319][ T6545] do_group_exit+0xd3/0x2a0
[ 100.782340][ T6545] get_signal+0x2673/0x26d0
[ 100.782361][ T6545] ? __pfx_get_signal+0x10/0x10
[ 100.782378][ T6545] ? do_futex+0x122/0x350
[ 100.782403][ T6545] ? __pfx_do_futex+0x10/0x10
[ 100.782422][ T6545] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.782446][ T6545] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.782471][ T6545] ? madvise_unlock+0xc6/0x190
[ 100.782490][ T6545] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.782510][ T6545] do_syscall_64+0xda/0x260
[ 100.782528][ T6545] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.782546][ T6545] RIP: 0033:0x7f62ebd8e969
[ 100.782558][ T6545] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 100.782567][ T6545] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.782583][ T6545] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 100.782594][ T6545] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 100.782605][ T6545] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.782613][ T6545] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 100.782622][ T6545] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 100.782635][ T6545]
[ 100.813497][ T6547] BUG: Bad page state in process syz.0.25 pfn:50201
[ 100.908958][ T6547] page does not match folio
[ 100.910568][ T6547] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50201
[ 100.913607][ T6547] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 100.915778][ T6547] raw: 00fff00000000000 ffffea0001408000 00000000ffffffff ffffffffffffffff
[ 100.918304][ T6547] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.921337][ T6547] page dumped because: nonzero pincount
[ 100.923406][ T6547] page_owner tracks the page as allocated
[ 100.925361][ T6547] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6546, tgid 6546 (syz.0.25), ts 100792502024, free_ts 0
[ 100.932182][ T6547] post_alloc_hook+0x181/0x1b0
[ 100.933955][ T6547] get_page_from_freelist+0x135c/0x3920
[ 100.935877][ T6547] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.937966][ T6547] alloc_pages_mpol+0x1fb/0x550
[ 100.939721][ T6547] folio_alloc_noprof+0x20/0x2d0
[ 100.941421][ T6547] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.943353][ T6547] page_cache_ra_order+0x4c0/0xd00
[ 100.945168][ T6547] filemap_fault+0x1a5e/0x2740
[ 100.946868][ T6547] __do_fault+0x10a/0x490
[ 100.948397][ T6547] do_pte_missing+0x1a6/0x3fb0
[ 100.950177][ T6547] __handle_mm_fault+0x103d/0x2a40
[ 100.952147][ T6547] handle_mm_fault+0x3fe/0xad0
[ 100.953814][ T6547] do_user_addr_fault+0x60c/0x1370
[ 100.955631][ T6547] exc_page_fault+0x5c/0xc0
[ 100.957393][ T6547] asm_exc_page_fault+0x26/0x30
[ 100.959170][ T6547] page_owner free stack trace missing
[ 100.961162][ T6547] Modules linked in:
[ 100.962630][ T6547] CPU: 2 UID: 0 PID: 6547 Comm: syz.0.25 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 100.962646][ T6547] Tainted: [B]=BAD_PAGE
[ 100.962650][ T6547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.962656][ T6547] Call Trace:
[ 100.962660][ T6547]
[ 100.962664][ T6547] dump_stack_lvl+0x16c/0x1f0
[ 100.962678][ T6547] bad_page+0xb3/0x1f0
[ 100.962689][ T6547] ? __pfx_bad_page+0x10/0x10
[ 100.962699][ T6547] ? __mem_cgroup_uncharge+0xda/0x130
[ 100.962712][ T6547] free_tail_page_prepare+0x44f/0x5b0
[ 100.962725][ T6547] __free_frozen_pages+0x96a/0xff0
[ 100.962740][ T6547] __folio_put+0x329/0x450
[ 100.962751][ T6547] ? __pfx___folio_put+0x10/0x10
[ 100.962762][ T6547] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.962774][ T6547] ? rcu_is_watching+0x12/0xc0
[ 100.962785][ T6547] ? lock_release+0x201/0x2f0
[ 100.962800][ T6547] filemap_free_folio+0x132/0x170
[ 100.962811][ T6547] delete_from_page_cache_batch+0x741/0x9b0
[ 100.962823][ T6547] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.962835][ T6547] ? __pfx_workingset_update_node+0x10/0x10
[ 100.962846][ T6547] ? xas_move_index+0xb0/0x110
[ 100.962858][ T6547] truncate_inode_pages_range+0x279/0xe30
[ 100.962873][ T6547] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.962895][ T6547] ? __pfx_down_write+0x10/0x10
[ 100.962909][ T6547] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.962925][ T6547] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.962940][ T6547] blkdev_flush_mapping+0xe9/0x280
[ 100.962952][ T6547] ? filemap_check_errors+0xa9/0x160
[ 100.962966][ T6547] blkdev_put_whole+0xc4/0xf0
[ 100.962977][ T6547] bdev_release+0x47e/0x6d0
[ 100.962989][ T6547] ? __pfx_blkdev_release+0x10/0x10
[ 100.963001][ T6547] blkdev_release+0x15/0x20
[ 100.963013][ T6547] __fput+0x3ff/0xb70
[ 100.963025][ T6547] task_work_run+0x14d/0x240
[ 100.963035][ T6547] ? __pfx_task_work_run+0x10/0x10
[ 100.963045][ T6547] ? do_raw_spin_unlock+0x172/0x230
[ 100.963056][ T6547] do_exit+0xafb/0x2c30
[ 100.963071][ T6547] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.963087][ T6547] ? __pfx_do_exit+0x10/0x10
[ 100.963106][ T6547] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.963116][ T6547] ? get_signal+0x8f5/0x26d0
[ 100.963128][ T6547] ? rcu_is_watching+0x12/0xc0
[ 100.963139][ T6547] do_group_exit+0xd3/0x2a0
[ 100.963155][ T6547] get_signal+0x2673/0x26d0
[ 100.963168][ T6547] ? __pfx_get_signal+0x10/0x10
[ 100.963180][ T6547] ? do_futex+0x122/0x350
[ 100.963193][ T6547] ? __pfx_do_futex+0x10/0x10
[ 100.963206][ T6547] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.963221][ T6547] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.963236][ T6547] ? madvise_unlock+0xc6/0x190
[ 100.963247][ T6547] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.963260][ T6547] do_syscall_64+0xda/0x260
[ 100.963271][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.963282][ T6547] RIP: 0033:0x7f62ebd8e969
[ 100.963289][ T6547] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 100.963294][ T6547] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.963303][ T6547] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 100.963309][ T6547] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 100.963315][ T6547] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.963321][ T6547] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 100.963327][ T6547] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 100.963336][ T6547]
[ 100.963352][ T6547] BUG: Bad page state in process syz.0.25 pfn:50200
[ 101.078432][ T6547] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50200
[ 101.082476][ T6547] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 101.085503][ T6547] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 101.088368][ T6547] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.090939][ T6547] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.093422][ T6547] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.096637][ T6547] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.100109][ T6547] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.103578][ T6547] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.106990][ T6547] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 101.109893][ T6547] page_owner tracks the page as allocated
[ 101.112342][ T6547] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6546, tgid 6546 (syz.0.25), ts 100792502024, free_ts 0
[ 101.119748][ T6547] post_alloc_hook+0x181/0x1b0
[ 101.121804][ T6547] get_page_from_freelist+0x135c/0x3920
[ 101.124004][ T6547] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.126352][ T6547] alloc_pages_mpol+0x1fb/0x550
[ 101.128293][ T6547] folio_alloc_noprof+0x20/0x2d0
[ 101.130303][ T6547] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.132693][ T6547] page_cache_ra_order+0x4c0/0xd00
[ 101.134745][ T6547] filemap_fault+0x1a5e/0x2740
[ 101.136667][ T6547] __do_fault+0x10a/0x490
[ 101.138402][ T6547] do_pte_missing+0x1a6/0x3fb0
[ 101.140307][ T6547] __handle_mm_fault+0x103d/0x2a40
[ 101.142415][ T6547] handle_mm_fault+0x3fe/0xad0
[ 101.144240][ T6547] do_user_addr_fault+0x60c/0x1370
[ 101.146217][ T6547] exc_page_fault+0x5c/0xc0
[ 101.148005][ T6547] asm_exc_page_fault+0x26/0x30
[ 101.149797][ T6547] page_owner free stack trace missing
[ 101.151860][ T6547] Modules linked in:
[ 101.153299][ T6547] CPU: 3 UID: 0 PID: 6547 Comm: syz.0.25 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 101.153315][ T6547] Tainted: [B]=BAD_PAGE
[ 101.153319][ T6547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.153325][ T6547] Call Trace:
[ 101.153329][ T6547]
[ 101.153333][ T6547] dump_stack_lvl+0x16c/0x1f0
[ 101.153347][ T6547] bad_page+0xb3/0x1f0
[ 101.153359][ T6547] ? __pfx_bad_page+0x10/0x10
[ 101.153369][ T6547] ? page_bad_reason+0x9d/0x1e0
[ 101.153380][ T6547] __free_frozen_pages+0x76e/0xff0
[ 101.153395][ T6547] __folio_put+0x329/0x450
[ 101.153406][ T6547] ? __pfx___folio_put+0x10/0x10
[ 101.153419][ T6547] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.153431][ T6547] ? rcu_is_watching+0x12/0xc0
[ 101.153443][ T6547] ? lock_release+0x201/0x2f0
[ 101.153458][ T6547] filemap_free_folio+0x132/0x170
[ 101.153468][ T6547] delete_from_page_cache_batch+0x741/0x9b0
[ 101.153480][ T6547] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.153493][ T6547] ? __pfx_workingset_update_node+0x10/0x10
[ 101.153503][ T6547] ? xas_move_index+0xb0/0x110
[ 101.153516][ T6547] truncate_inode_pages_range+0x279/0xe30
[ 101.153531][ T6547] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.153553][ T6547] ? __pfx_down_write+0x10/0x10
[ 101.153567][ T6547] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.153583][ T6547] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.153598][ T6547] blkdev_flush_mapping+0xe9/0x280
[ 101.153610][ T6547] ? filemap_check_errors+0xa9/0x160
[ 101.153624][ T6547] blkdev_put_whole+0xc4/0xf0
[ 101.153635][ T6547] bdev_release+0x47e/0x6d0
[ 101.153647][ T6547] ? __pfx_blkdev_release+0x10/0x10
[ 101.153660][ T6547] blkdev_release+0x15/0x20
[ 101.153671][ T6547] __fput+0x3ff/0xb70
[ 101.153683][ T6547] task_work_run+0x14d/0x240
[ 101.153694][ T6547] ? __pfx_task_work_run+0x10/0x10
[ 101.153708][ T6547] ? do_raw_spin_unlock+0x172/0x230
[ 101.153725][ T6547] do_exit+0xafb/0x2c30
[ 101.153746][ T6547] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.153771][ T6547] ? __pfx_do_exit+0x10/0x10
[ 101.153792][ T6547] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.153808][ T6547] ? get_signal+0x8f5/0x26d0
[ 101.153826][ T6547] ? rcu_is_watching+0x12/0xc0
[ 101.153845][ T6547] do_group_exit+0xd3/0x2a0
[ 101.153867][ T6547] get_signal+0x2673/0x26d0
[ 101.153888][ T6547] ? __pfx_get_signal+0x10/0x10
[ 101.153906][ T6547] ? do_futex+0x122/0x350
[ 101.153926][ T6547] ? __pfx_do_futex+0x10/0x10
[ 101.153947][ T6547] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.153971][ T6547] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.153996][ T6547] ? madvise_unlock+0xc6/0x190
[ 101.154014][ T6547] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.154035][ T6547] do_syscall_64+0xda/0x260
[ 101.154053][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.154069][ T6547] RIP: 0033:0x7f62ebd8e969
[ 101.154081][ T6547] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 101.154088][ T6547] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.154104][ T6547] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 101.154114][ T6547] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 101.154122][ T6547] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.154128][ T6547] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 101.154136][ T6547] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 101.154150][ T6547]
[ 101.190246][ T6549] BUG: Bad page state in process syz.0.26 pfn:48c01
[ 101.278214][ T6549] page does not match folio
[ 101.279645][ T6549] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x48c01
[ 101.282850][ T6549] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 101.285319][ T6549] raw: 00fff00000000000 ffffea0001230000 00000000ffffffff ffffffffffffffff
[ 101.288011][ T6549] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.291061][ T6549] page dumped because: nonzero pincount
[ 101.292749][ T6549] page_owner tracks the page as allocated
[ 101.294625][ T6549] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6548, tgid 6548 (syz.0.26), ts 101163717347, free_ts 101154231291
[ 101.300708][ T6549] post_alloc_hook+0x181/0x1b0
[ 101.302272][ T6549] get_page_from_freelist+0x135c/0x3920
[ 101.304070][ T6549] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.305891][ T6549] alloc_pages_mpol+0x1fb/0x550
[ 101.307348][ T6549] folio_alloc_noprof+0x20/0x2d0
[ 101.308949][ T6549] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.310792][ T6549] page_cache_ra_order+0x4c0/0xd00
[ 101.312465][ T6549] filemap_fault+0x1a5e/0x2740
[ 101.314015][ T6549] __do_fault+0x10a/0x490
[ 101.315355][ T6549] do_pte_missing+0x1a6/0x3fb0
[ 101.316821][ T6549] __handle_mm_fault+0x103d/0x2a40
[ 101.318360][ T6549] handle_mm_fault+0x3fe/0xad0
[ 101.319898][ T6549] do_user_addr_fault+0x60c/0x1370
[ 101.321535][ T6549] exc_page_fault+0x5c/0xc0
[ 101.322971][ T6549] asm_exc_page_fault+0x26/0x30
[ 101.324656][ T6549] page last free pid 6547 tgid 6546 stack trace:
[ 101.326593][ T6549] free_unref_folios+0x999/0x1630
[ 101.328130][ T6549] folios_put_refs+0x56f/0x740
[ 101.329595][ T6549] truncate_inode_pages_range+0x311/0xe30
[ 101.331406][ T6549] blkdev_flush_mapping+0xe9/0x280
[ 101.333020][ T6549] blkdev_put_whole+0xc4/0xf0
[ 101.334780][ T6549] bdev_release+0x47e/0x6d0
[ 101.336420][ T6549] blkdev_release+0x15/0x20
[ 101.337798][ T6549] __fput+0x3ff/0xb70
[ 101.339040][ T6549] task_work_run+0x14d/0x240
[ 101.340555][ T6549] do_exit+0xafb/0x2c30
[ 101.341796][ T6549] do_group_exit+0xd3/0x2a0
[ 101.343196][ T6549] get_signal+0x2673/0x26d0
[ 101.344733][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.346432][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.348162][ T6549] do_syscall_64+0xda/0x260
[ 101.349583][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.351462][ T6549] Modules linked in:
[ 101.352721][ T6549] CPU: 1 UID: 0 PID: 6549 Comm: syz.0.26 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 101.352737][ T6549] Tainted: [B]=BAD_PAGE
[ 101.352741][ T6549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.352747][ T6549] Call Trace:
[ 101.352751][ T6549]
[ 101.352755][ T6549] dump_stack_lvl+0x16c/0x1f0
[ 101.352768][ T6549] bad_page+0xb3/0x1f0
[ 101.352779][ T6549] ? __pfx_bad_page+0x10/0x10
[ 101.352789][ T6549] ? __mem_cgroup_uncharge+0xda/0x130
[ 101.352802][ T6549] free_tail_page_prepare+0x44f/0x5b0
[ 101.352815][ T6549] __free_frozen_pages+0x96a/0xff0
[ 101.352830][ T6549] __folio_put+0x329/0x450
[ 101.352841][ T6549] ? __pfx___folio_put+0x10/0x10
[ 101.352852][ T6549] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.352864][ T6549] ? rcu_is_watching+0x12/0xc0
[ 101.352875][ T6549] ? lock_release+0x201/0x2f0
[ 101.352891][ T6549] filemap_free_folio+0x132/0x170
[ 101.352901][ T6549] delete_from_page_cache_batch+0x741/0x9b0
[ 101.352914][ T6549] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.352925][ T6549] ? __pfx_workingset_update_node+0x10/0x10
[ 101.352936][ T6549] ? xas_move_index+0xb0/0x110
[ 101.352948][ T6549] truncate_inode_pages_range+0x279/0xe30
[ 101.352964][ T6549] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.352985][ T6549] ? __pfx_down_write+0x10/0x10
[ 101.352999][ T6549] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.353015][ T6549] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.353035][ T6549] blkdev_flush_mapping+0xe9/0x280
[ 101.353053][ T6549] ? filemap_check_errors+0xa9/0x160
[ 101.353076][ T6549] blkdev_put_whole+0xc4/0xf0
[ 101.353093][ T6549] bdev_release+0x47e/0x6d0
[ 101.353112][ T6549] ? __pfx_blkdev_release+0x10/0x10
[ 101.353131][ T6549] blkdev_release+0x15/0x20
[ 101.353150][ T6549] __fput+0x3ff/0xb70
[ 101.353164][ T6549] task_work_run+0x14d/0x240
[ 101.353175][ T6549] ? __pfx_task_work_run+0x10/0x10
[ 101.353185][ T6549] ? do_raw_spin_unlock+0x172/0x230
[ 101.353197][ T6549] do_exit+0xafb/0x2c30
[ 101.353211][ T6549] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.353228][ T6549] ? __pfx_do_exit+0x10/0x10
[ 101.353242][ T6549] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.353251][ T6549] ? get_signal+0x8f5/0x26d0
[ 101.353263][ T6549] ? rcu_is_watching+0x12/0xc0
[ 101.353274][ T6549] do_group_exit+0xd3/0x2a0
[ 101.353289][ T6549] get_signal+0x2673/0x26d0
[ 101.353302][ T6549] ? __pfx_get_signal+0x10/0x10
[ 101.353314][ T6549] ? do_futex+0x122/0x350
[ 101.353327][ T6549] ? __pfx_do_futex+0x10/0x10
[ 101.353340][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.353354][ T6549] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.353370][ T6549] ? madvise_unlock+0xc6/0x190
[ 101.353381][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.353393][ T6549] do_syscall_64+0xda/0x260
[ 101.353405][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.353416][ T6549] RIP: 0033:0x7f62ebd8e969
[ 101.353423][ T6549] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 101.353429][ T6549] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.353449][ T6549] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 101.353459][ T6549] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 101.353468][ T6549] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.353477][ T6549] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 101.353488][ T6549] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 101.353502][ T6549]
[ 101.353528][ T6549] BUG: Bad page state in process syz.0.26 pfn:48c00
[ 101.477479][ T6549] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x48c00
[ 101.480934][ T6549] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 101.484179][ T6549] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 101.487641][ T6549] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.496172][ T6549] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.499533][ T6549] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.503002][ T6549] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.506335][ T6549] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.509762][ T6549] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.513198][ T6549] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 101.516151][ T6549] page_owner tracks the page as allocated
[ 101.518446][ T6549] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6548, tgid 6548 (syz.0.26), ts 101163717347, free_ts 101154231291
[ 101.526173][ T6549] post_alloc_hook+0x181/0x1b0
[ 101.528071][ T6549] get_page_from_freelist+0x135c/0x3920
[ 101.530245][ T6549] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.532674][ T6549] alloc_pages_mpol+0x1fb/0x550
[ 101.534592][ T6549] folio_alloc_noprof+0x20/0x2d0
[ 101.536586][ T6549] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.538845][ T6549] page_cache_ra_order+0x4c0/0xd00
[ 101.540995][ T6549] filemap_fault+0x1a5e/0x2740
[ 101.542926][ T6549] __do_fault+0x10a/0x490
[ 101.544680][ T6549] do_pte_missing+0x1a6/0x3fb0
[ 101.546628][ T6549] __handle_mm_fault+0x103d/0x2a40
[ 101.548713][ T6549] handle_mm_fault+0x3fe/0xad0
[ 101.550771][ T6549] do_user_addr_fault+0x60c/0x1370
[ 101.552865][ T6549] exc_page_fault+0x5c/0xc0
[ 101.554680][ T6549] asm_exc_page_fault+0x26/0x30
[ 101.556482][ T6549] page last free pid 6547 tgid 6546 stack trace:
[ 101.558305][ T6549] free_unref_folios+0x999/0x1630
[ 101.559814][ T6549] folios_put_refs+0x56f/0x740
[ 101.561315][ T6549] truncate_inode_pages_range+0x311/0xe30
[ 101.563036][ T6549] blkdev_flush_mapping+0xe9/0x280
[ 101.564914][ T6549] blkdev_put_whole+0xc4/0xf0
[ 101.566297][ T6549] bdev_release+0x47e/0x6d0
[ 101.567626][ T6549] blkdev_release+0x15/0x20
[ 101.568997][ T6549] __fput+0x3ff/0xb70
[ 101.570180][ T6549] task_work_run+0x14d/0x240
[ 101.571595][ T6549] do_exit+0xafb/0x2c30
[ 101.572841][ T6549] do_group_exit+0xd3/0x2a0
[ 101.574412][ T6549] get_signal+0x2673/0x26d0
[ 101.576274][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.578461][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.580816][ T6549] do_syscall_64+0xda/0x260
[ 101.582619][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.584629][ T6549] Modules linked in:
[ 101.585924][ T6549] CPU: 1 UID: 0 PID: 6549 Comm: syz.0.26 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 101.585950][ T6549] Tainted: [B]=BAD_PAGE
[ 101.585955][ T6549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.585965][ T6549] Call Trace:
[ 101.585971][ T6549]
[ 101.585977][ T6549] dump_stack_lvl+0x16c/0x1f0
[ 101.585997][ T6549] bad_page+0xb3/0x1f0
[ 101.586015][ T6549] ? __pfx_bad_page+0x10/0x10
[ 101.586032][ T6549] ? page_bad_reason+0x9d/0x1e0
[ 101.586049][ T6549] __free_frozen_pages+0x76e/0xff0
[ 101.586073][ T6549] __folio_put+0x329/0x450
[ 101.586090][ T6549] ? __pfx___folio_put+0x10/0x10
[ 101.586108][ T6549] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.586126][ T6549] ? rcu_is_watching+0x12/0xc0
[ 101.586145][ T6549] ? lock_release+0x201/0x2f0
[ 101.586168][ T6549] filemap_free_folio+0x132/0x170
[ 101.586186][ T6549] delete_from_page_cache_batch+0x741/0x9b0
[ 101.586205][ T6549] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.586224][ T6549] ? __pfx_workingset_update_node+0x10/0x10
[ 101.586241][ T6549] ? xas_move_index+0xb0/0x110
[ 101.586260][ T6549] truncate_inode_pages_range+0x279/0xe30
[ 101.586284][ T6549] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.586322][ T6549] ? __pfx_down_write+0x10/0x10
[ 101.586342][ T6549] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.586367][ T6549] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.586391][ T6549] blkdev_flush_mapping+0xe9/0x280
[ 101.586410][ T6549] ? filemap_check_errors+0xa9/0x160
[ 101.586433][ T6549] blkdev_put_whole+0xc4/0xf0
[ 101.586455][ T6549] bdev_release+0x47e/0x6d0
[ 101.586475][ T6549] ? __pfx_blkdev_release+0x10/0x10
[ 101.586494][ T6549] blkdev_release+0x15/0x20
[ 101.586513][ T6549] __fput+0x3ff/0xb70
[ 101.586533][ T6549] task_work_run+0x14d/0x240
[ 101.586550][ T6549] ? __pfx_task_work_run+0x10/0x10
[ 101.586566][ T6549] ? do_raw_spin_unlock+0x172/0x230
[ 101.586585][ T6549] do_exit+0xafb/0x2c30
[ 101.586606][ T6549] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.586632][ T6549] ? __pfx_do_exit+0x10/0x10
[ 101.586653][ T6549] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.586669][ T6549] ? get_signal+0x8f5/0x26d0
[ 101.586687][ T6549] ? rcu_is_watching+0x12/0xc0
[ 101.586706][ T6549] do_group_exit+0xd3/0x2a0
[ 101.586729][ T6549] get_signal+0x2673/0x26d0
[ 101.586751][ T6549] ? __pfx_get_signal+0x10/0x10
[ 101.586769][ T6549] ? do_futex+0x122/0x350
[ 101.586789][ T6549] ? __pfx_do_futex+0x10/0x10
[ 101.586810][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.586833][ T6549] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.586859][ T6549] ? madvise_unlock+0xc6/0x190
[ 101.586877][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.586897][ T6549] do_syscall_64+0xda/0x260
[ 101.586916][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.586933][ T6549] RIP: 0033:0x7f62ebd8e969
[ 101.586945][ T6549] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 101.586952][ T6549] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.586967][ T6549] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 101.586977][ T6549] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 101.586987][ T6549] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.586996][ T6549] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 101.587006][ T6549] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 101.587021][ T6549]
[ 101.611938][ T6550] BUG: Bad page state in process syz.0.27 pfn:50001
[ 101.694583][ T6550] page does not match folio
[ 101.695816][ T6550] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50001
[ 101.698577][ T6550] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 101.700667][ T6550] raw: 00fff00000000000 ffffea0001400000 00000000ffffffff ffffffffffffffff
[ 101.703072][ T6550] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.705430][ T6550] page dumped because: nonzero pincount
[ 101.706888][ T6550] page_owner tracks the page as allocated
[ 101.708481][ T6550] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6550, tgid 6550 (syz.0.27), ts 101594996389, free_ts 0
[ 101.714438][ T6550] post_alloc_hook+0x181/0x1b0
[ 101.716040][ T6550] get_page_from_freelist+0x135c/0x3920
[ 101.717578][ T6550] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.719234][ T6550] alloc_pages_mpol+0x1fb/0x550
[ 101.720662][ T6550] folio_alloc_noprof+0x20/0x2d0
[ 101.722040][ T6550] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.723554][ T6550] page_cache_ra_order+0x4c0/0xd00
[ 101.724933][ T6550] filemap_fault+0x1a5e/0x2740
[ 101.726621][ T6550] __do_fault+0x10a/0x490
[ 101.727788][ T6550] do_pte_missing+0x1a6/0x3fb0
[ 101.729148][ T6550] __handle_mm_fault+0x103d/0x2a40
[ 101.730652][ T6550] handle_mm_fault+0x3fe/0xad0
[ 101.731972][ T6550] do_user_addr_fault+0x60c/0x1370
[ 101.733351][ T6550] exc_page_fault+0x5c/0xc0
[ 101.734542][ T6550] asm_exc_page_fault+0x26/0x30
[ 101.735823][ T6550] page_owner free stack trace missing
[ 101.737279][ T6550] Modules linked in:
[ 101.738345][ T6550] CPU: 0 UID: 0 PID: 6550 Comm: syz.0.27 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 101.738370][ T6550] Tainted: [B]=BAD_PAGE
[ 101.738376][ T6550] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.738385][ T6550] Call Trace:
[ 101.738390][ T6550]
[ 101.738396][ T6550] dump_stack_lvl+0x16c/0x1f0
[ 101.738413][ T6550] bad_page+0xb3/0x1f0
[ 101.738432][ T6550] ? __pfx_bad_page+0x10/0x10
[ 101.738447][ T6550] ? __mem_cgroup_uncharge+0xda/0x130
[ 101.738460][ T6550] free_tail_page_prepare+0x44f/0x5b0
[ 101.738473][ T6550] __free_frozen_pages+0x96a/0xff0
[ 101.738488][ T6550] __folio_put+0x329/0x450
[ 101.738499][ T6550] ? __pfx___folio_put+0x10/0x10
[ 101.738510][ T6550] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.738521][ T6550] ? rcu_is_watching+0x12/0xc0
[ 101.738533][ T6550] ? lock_release+0x201/0x2f0
[ 101.738548][ T6550] filemap_free_folio+0x132/0x170
[ 101.738558][ T6550] delete_from_page_cache_batch+0x741/0x9b0
[ 101.738570][ T6550] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.738583][ T6550] ? __pfx_workingset_update_node+0x10/0x10
[ 101.738594][ T6550] ? xas_move_index+0xb0/0x110
[ 101.738606][ T6550] truncate_inode_pages_range+0x279/0xe30
[ 101.738620][ T6550] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.738643][ T6550] ? __pfx_down_write+0x10/0x10
[ 101.738656][ T6550] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.738672][ T6550] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.738686][ T6550] blkdev_flush_mapping+0xe9/0x280
[ 101.738700][ T6550] blkdev_put_whole+0xc4/0xf0
[ 101.738710][ T6550] bdev_release+0x47e/0x6d0
[ 101.738723][ T6550] ? __pfx_blkdev_release+0x10/0x10
[ 101.738740][ T6550] blkdev_release+0x15/0x20
[ 101.738757][ T6550] __fput+0x3ff/0xb70
[ 101.738777][ T6550] task_work_run+0x14d/0x240
[ 101.738792][ T6550] ? __pfx_task_work_run+0x10/0x10
[ 101.738807][ T6550] ? do_raw_spin_unlock+0x172/0x230
[ 101.738822][ T6550] do_exit+0xafb/0x2c30
[ 101.738845][ T6550] ? __pfx_do_exit+0x10/0x10
[ 101.738865][ T6550] ? preempt_schedule_thunk+0x16/0x30
[ 101.738882][ T6550] do_group_exit+0xd3/0x2a0
[ 101.738903][ T6550] __x64_sys_exit_group+0x3e/0x50
[ 101.738926][ T6550] x64_sys_call+0x1530/0x1730
[ 101.738947][ T6550] do_syscall_64+0xcd/0x260
[ 101.738967][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.738983][ T6550] RIP: 0033:0x7f62ebd8e969
[ 101.738994][ T6550] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 101.739002][ T6550] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 101.739016][ T6550] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 101.739025][ T6550] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 101.739034][ T6550] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 101.739042][ T6550] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000b
[ 101.739051][ T6550] R13: 00000000000927c0 R14: 0000000000018ab0 R15: 00007ffdd5f716a0
[ 101.739065][ T6550]
[ 101.739100][ T6550] BUG: Bad page state in process syz.0.27 pfn:50000
[ 101.818758][ T6550] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50000
[ 101.821269][ T6550] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 101.823460][ T6550] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 101.825778][ T6550] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.828043][ T6550] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.830419][ T6550] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.835291][ T6550] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.837611][ T6550] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.839869][ T6550] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.842574][ T6550] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 101.844482][ T6550] page_owner tracks the page as allocated
[ 101.845973][ T6550] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6550, tgid 6550 (syz.0.27), ts 101594996389, free_ts 0
[ 101.851246][ T6550] post_alloc_hook+0x181/0x1b0
[ 101.852536][ T6550] get_page_from_freelist+0x135c/0x3920
[ 101.854006][ T6550] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.855562][ T6550] alloc_pages_mpol+0x1fb/0x550
[ 101.856849][ T6550] folio_alloc_noprof+0x20/0x2d0
[ 101.858165][ T6550] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.859798][ T6550] page_cache_ra_order+0x4c0/0xd00
[ 101.861257][ T6550] filemap_fault+0x1a5e/0x2740
[ 101.862533][ T6550] __do_fault+0x10a/0x490
[ 101.863672][ T6550] do_pte_missing+0x1a6/0x3fb0
[ 101.864967][ T6550] __handle_mm_fault+0x103d/0x2a40
[ 101.866320][ T6550] handle_mm_fault+0x3fe/0xad0
[ 101.867620][ T6550] do_user_addr_fault+0x60c/0x1370
[ 101.869061][ T6550] exc_page_fault+0x5c/0xc0
[ 101.870375][ T6550] asm_exc_page_fault+0x26/0x30
[ 101.871769][ T6550] page_owner free stack trace missing
[ 101.873213][ T6550] Modules linked in:
[ 101.874268][ T6550] CPU: 0 UID: 0 PID: 6550 Comm: syz.0.27 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 101.874284][ T6550] Tainted: [B]=BAD_PAGE
[ 101.874287][ T6550] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.874293][ T6550] Call Trace:
[ 101.874297][ T6550]
[ 101.874300][ T6550] dump_stack_lvl+0x16c/0x1f0
[ 101.874314][ T6550] bad_page+0xb3/0x1f0
[ 101.874325][ T6550] ? __pfx_bad_page+0x10/0x10
[ 101.874336][ T6550] ? page_bad_reason+0x9d/0x1e0
[ 101.874346][ T6550] __free_frozen_pages+0x76e/0xff0
[ 101.874362][ T6550] __folio_put+0x329/0x450
[ 101.874372][ T6550] ? __pfx___folio_put+0x10/0x10
[ 101.874383][ T6550] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.874394][ T6550] ? rcu_is_watching+0x12/0xc0
[ 101.874406][ T6550] ? lock_release+0x201/0x2f0
[ 101.874422][ T6550] filemap_free_folio+0x132/0x170
[ 101.874433][ T6550] delete_from_page_cache_batch+0x741/0x9b0
[ 101.874445][ T6550] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.874457][ T6550] ? __pfx_workingset_update_node+0x10/0x10
[ 101.874468][ T6550] ? xas_move_index+0xb0/0x110
[ 101.874480][ T6550] truncate_inode_pages_range+0x279/0xe30
[ 101.874496][ T6550] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.874517][ T6550] ? __pfx_down_write+0x10/0x10
[ 101.874531][ T6550] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.874547][ T6550] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.874562][ T6550] blkdev_flush_mapping+0xe9/0x280
[ 101.874575][ T6550] blkdev_put_whole+0xc4/0xf0
[ 101.874585][ T6550] bdev_release+0x47e/0x6d0
[ 101.874598][ T6550] ? __pfx_blkdev_release+0x10/0x10
[ 101.874610][ T6550] blkdev_release+0x15/0x20
[ 101.874622][ T6550] __fput+0x3ff/0xb70
[ 101.874634][ T6550] task_work_run+0x14d/0x240
[ 101.874644][ T6550] ? __pfx_task_work_run+0x10/0x10
[ 101.874654][ T6550] ? do_raw_spin_unlock+0x172/0x230
[ 101.874665][ T6550] do_exit+0xafb/0x2c30
[ 101.874681][ T6550] ? __pfx_do_exit+0x10/0x10
[ 101.874695][ T6550] ? preempt_schedule_thunk+0x16/0x30
[ 101.874706][ T6550] do_group_exit+0xd3/0x2a0
[ 101.874720][ T6550] __x64_sys_exit_group+0x3e/0x50
[ 101.874735][ T6550] x64_sys_call+0x1530/0x1730
[ 101.874749][ T6550] do_syscall_64+0xcd/0x260
[ 101.874761][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.874772][ T6550] RIP: 0033:0x7f62ebd8e969
[ 101.874779][ T6550] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 101.874784][ T6550] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 101.874793][ T6550] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 101.874799][ T6550] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 101.874805][ T6550] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 101.874812][ T6550] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000b
[ 101.874817][ T6550] R13: 00000000000927c0 R14: 0000000000018ab0 R15: 00007ffdd5f716a0
[ 101.874826][ T6550]
[ 102.004832][ T6552] BUG: Bad page state in process syz.0.28 pfn:48e01
[ 102.007068][ T6552] page does not match folio
[ 102.008703][ T6552] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x48e01
[ 102.012021][ T6552] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.014263][ T6552] raw: 00fff00000000000 ffffea0001238000 00000000ffffffff ffffffffffffffff
[ 102.016746][ T6552] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.019308][ T6552] page dumped because: nonzero pincount
[ 102.021622][ T6552] page_owner tracks the page as allocated
[ 102.023923][ T6552] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6552, tgid 6552 (syz.0.28), ts 101972566440, free_ts 101587065807
[ 102.031954][ T6552] post_alloc_hook+0x181/0x1b0
[ 102.033876][ T6552] get_page_from_freelist+0x135c/0x3920
[ 102.036059][ T6552] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.038378][ T6552] alloc_pages_mpol+0x1fb/0x550
[ 102.040343][ T6552] folio_alloc_noprof+0x20/0x2d0
[ 102.042351][ T6552] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.044606][ T6552] page_cache_ra_order+0x4c0/0xd00
[ 102.046622][ T6552] filemap_fault+0x1a5e/0x2740
[ 102.048528][ T6552] __do_fault+0x10a/0x490
[ 102.050255][ T6552] do_pte_missing+0x1a6/0x3fb0
[ 102.052309][ T6552] __handle_mm_fault+0x103d/0x2a40
[ 102.054322][ T6552] handle_mm_fault+0x3fe/0xad0
[ 102.056087][ T6552] do_user_addr_fault+0x60c/0x1370
[ 102.057853][ T6552] exc_page_fault+0x5c/0xc0
[ 102.059598][ T6552] asm_exc_page_fault+0x26/0x30
[ 102.061663][ T6552] page last free pid 6549 tgid 6548 stack trace:
[ 102.064159][ T6552] free_unref_folios+0x999/0x1630
[ 102.066219][ T6552] folios_put_refs+0x56f/0x740
[ 102.068130][ T6552] truncate_inode_pages_range+0x311/0xe30
[ 102.070411][ T6552] blkdev_flush_mapping+0xe9/0x280
[ 102.072540][ T6552] blkdev_put_whole+0xc4/0xf0
[ 102.074447][ T6552] bdev_release+0x47e/0x6d0
[ 102.076306][ T6552] blkdev_release+0x15/0x20
[ 102.078126][ T6552] __fput+0x3ff/0xb70
[ 102.079720][ T6552] task_work_run+0x14d/0x240
[ 102.081681][ T6552] do_exit+0xafb/0x2c30
[ 102.083350][ T6552] do_group_exit+0xd3/0x2a0
[ 102.085197][ T6552] get_signal+0x2673/0x26d0
[ 102.087009][ T6552] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.089141][ T6552] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.091282][ T6552] do_syscall_64+0xda/0x260
[ 102.093158][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.095502][ T6552] Modules linked in:
[ 102.097129][ T6552] CPU: 1 UID: 0 PID: 6552 Comm: syz.0.28 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 102.097157][ T6552] Tainted: [B]=BAD_PAGE
[ 102.097163][ T6552] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.097173][ T6552] Call Trace:
[ 102.097179][ T6552]
[ 102.097193][ T6552] dump_stack_lvl+0x16c/0x1f0
[ 102.097212][ T6552] bad_page+0xb3/0x1f0
[ 102.097231][ T6552] ? __pfx_bad_page+0x10/0x10
[ 102.097248][ T6552] ? __mem_cgroup_uncharge+0xda/0x130
[ 102.097269][ T6552] free_tail_page_prepare+0x44f/0x5b0
[ 102.097288][ T6552] __free_frozen_pages+0x96a/0xff0
[ 102.097312][ T6552] __folio_put+0x329/0x450
[ 102.097330][ T6552] ? __pfx___folio_put+0x10/0x10
[ 102.097349][ T6552] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.097365][ T6552] ? rcu_is_watching+0x12/0xc0
[ 102.097385][ T6552] ? lock_release+0x201/0x2f0
[ 102.097410][ T6552] filemap_free_folio+0x132/0x170
[ 102.097426][ T6552] delete_from_page_cache_batch+0x741/0x9b0
[ 102.097444][ T6552] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.097465][ T6552] ? __pfx_workingset_update_node+0x10/0x10
[ 102.097482][ T6552] ? xas_move_index+0xb0/0x110
[ 102.097502][ T6552] truncate_inode_pages_range+0x279/0xe30
[ 102.097524][ T6552] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.097560][ T6552] ? __pfx_down_write+0x10/0x10
[ 102.097579][ T6552] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.097604][ T6552] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.097627][ T6552] blkdev_flush_mapping+0xe9/0x280
[ 102.097647][ T6552] blkdev_put_whole+0xc4/0xf0
[ 102.097665][ T6552] bdev_release+0x47e/0x6d0
[ 102.097686][ T6552] ? __pfx_blkdev_release+0x10/0x10
[ 102.097705][ T6552] blkdev_release+0x15/0x20
[ 102.097725][ T6552] __fput+0x3ff/0xb70
[ 102.097743][ T6552] task_work_run+0x14d/0x240
[ 102.097762][ T6552] ? __pfx_task_work_run+0x10/0x10
[ 102.097780][ T6552] ? do_raw_spin_unlock+0x172/0x230
[ 102.097799][ T6552] do_exit+0xafb/0x2c30
[ 102.097822][ T6552] ? __pfx_do_exit+0x10/0x10
[ 102.097843][ T6552] ? preempt_schedule_thunk+0x16/0x30
[ 102.097859][ T6552] do_group_exit+0xd3/0x2a0
[ 102.097884][ T6552] __x64_sys_exit_group+0x3e/0x50
[ 102.097906][ T6552] x64_sys_call+0x1530/0x1730
[ 102.097927][ T6552] do_syscall_64+0xcd/0x260
[ 102.097946][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.097963][ T6552] RIP: 0033:0x7f62ebd8e969
[ 102.097974][ T6552] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 102.097981][ T6552] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 102.097997][ T6552] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 102.098008][ T6552] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 102.098018][ T6552] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 102.098030][ T6552] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000c
[ 102.098038][ T6552] R13: 00000000000927c0 R14: 0000000000018c60 R15: 00007ffdd5f716a0
[ 102.098053][ T6552]
[ 102.098081][ T6552] BUG: Bad page state in process syz.0.28 pfn:48e00
[ 102.207333][ T6552] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x48e00
[ 102.210944][ T6552] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 102.214270][ T6552] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 102.217750][ T6552] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.222857][ T6552] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.225964][ T6552] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.228478][ T6552] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.231153][ T6552] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.233677][ T6552] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.236924][ T6552] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 102.239695][ T6552] page_owner tracks the page as allocated
[ 102.241960][ T6552] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6552, tgid 6552 (syz.0.28), ts 101972566440, free_ts 101587065807
[ 102.248729][ T6552] post_alloc_hook+0x181/0x1b0
[ 102.250712][ T6552] get_page_from_freelist+0x135c/0x3920
[ 102.252903][ T6552] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.255212][ T6552] alloc_pages_mpol+0x1fb/0x550
[ 102.257132][ T6552] folio_alloc_noprof+0x20/0x2d0
[ 102.259076][ T6552] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.261385][ T6552] page_cache_ra_order+0x4c0/0xd00
[ 102.263336][ T6552] filemap_fault+0x1a5e/0x2740
[ 102.265151][ T6552] __do_fault+0x10a/0x490
[ 102.266753][ T6552] do_pte_missing+0x1a6/0x3fb0
[ 102.268666][ T6552] __handle_mm_fault+0x103d/0x2a40
[ 102.270805][ T6552] handle_mm_fault+0x3fe/0xad0
[ 102.272611][ T6552] do_user_addr_fault+0x60c/0x1370
[ 102.274565][ T6552] exc_page_fault+0x5c/0xc0
[ 102.276377][ T6552] asm_exc_page_fault+0x26/0x30
[ 102.278237][ T6552] page last free pid 6549 tgid 6548 stack trace:
[ 102.280691][ T6552] free_unref_folios+0x999/0x1630
[ 102.282641][ T6552] folios_put_refs+0x56f/0x740
[ 102.284477][ T6552] truncate_inode_pages_range+0x311/0xe30
[ 102.286706][ T6552] blkdev_flush_mapping+0xe9/0x280
[ 102.288674][ T6552] blkdev_put_whole+0xc4/0xf0
[ 102.290583][ T6552] bdev_release+0x47e/0x6d0
[ 102.292358][ T6552] blkdev_release+0x15/0x20
[ 102.294127][ T6552] __fput+0x3ff/0xb70
[ 102.295670][ T6552] task_work_run+0x14d/0x240
[ 102.297445][ T6552] do_exit+0xafb/0x2c30
[ 102.299110][ T6552] do_group_exit+0xd3/0x2a0
[ 102.300933][ T6552] get_signal+0x2673/0x26d0
[ 102.302651][ T6552] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.304725][ T6552] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.306836][ T6552] do_syscall_64+0xda/0x260
[ 102.308542][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.310862][ T6552] Modules linked in:
[ 102.312349][ T6552] CPU: 1 UID: 0 PID: 6552 Comm: syz.0.28 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 102.312375][ T6552] Tainted: [B]=BAD_PAGE
[ 102.312382][ T6552] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.312392][ T6552] Call Trace:
[ 102.312398][ T6552]
[ 102.312403][ T6552] dump_stack_lvl+0x16c/0x1f0
[ 102.312424][ T6552] bad_page+0xb3/0x1f0
[ 102.312443][ T6552] ? __pfx_bad_page+0x10/0x10
[ 102.312462][ T6552] ? page_bad_reason+0x9d/0x1e0
[ 102.312478][ T6552] __free_frozen_pages+0x76e/0xff0
[ 102.312499][ T6552] __folio_put+0x329/0x450
[ 102.312517][ T6552] ? __pfx___folio_put+0x10/0x10
[ 102.312533][ T6552] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.312550][ T6552] ? rcu_is_watching+0x12/0xc0
[ 102.312566][ T6552] ? lock_release+0x201/0x2f0
[ 102.312587][ T6552] filemap_free_folio+0x132/0x170
[ 102.312602][ T6552] delete_from_page_cache_batch+0x741/0x9b0
[ 102.312622][ T6552] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.312638][ T6552] ? __pfx_workingset_update_node+0x10/0x10
[ 102.312652][ T6552] ? xas_move_index+0xb0/0x110
[ 102.312672][ T6552] truncate_inode_pages_range+0x279/0xe30
[ 102.312693][ T6552] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.312727][ T6552] ? __pfx_down_write+0x10/0x10
[ 102.312750][ T6552] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.312775][ T6552] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.312795][ T6552] blkdev_flush_mapping+0xe9/0x280
[ 102.312815][ T6552] blkdev_put_whole+0xc4/0xf0
[ 102.312831][ T6552] bdev_release+0x47e/0x6d0
[ 102.312848][ T6552] ? __pfx_blkdev_release+0x10/0x10
[ 102.312864][ T6552] blkdev_release+0x15/0x20
2025/05/02 09:23:23 executed programs: 15
[ 102.312880][ T6552] __fput+0x3ff/0xb70
[ 102.312897][ T6552] task_work_run+0x14d/0x240
[ 102.312912][ T6552] ? __pfx_task_work_run+0x10/0x10
[ 102.312930][ T6552] ? do_raw_spin_unlock+0x172/0x230
[ 102.312950][ T6552] do_exit+0xafb/0x2c30
[ 102.312975][ T6552] ? __pfx_do_exit+0x10/0x10
[ 102.312994][ T6552] ? preempt_schedule_thunk+0x16/0x30
[ 102.313011][ T6552] do_group_exit+0xd3/0x2a0
[ 102.313031][ T6552] __x64_sys_exit_group+0x3e/0x50
[ 102.313051][ T6552] x64_sys_call+0x1530/0x1730
[ 102.313070][ T6552] do_syscall_64+0xcd/0x260
[ 102.313087][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.313101][ T6552] RIP: 0033:0x7f62ebd8e969
[ 102.313113][ T6552] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 102.313120][ T6552] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 102.313136][ T6552] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 102.313146][ T6552] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 102.313157][ T6552] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 102.313174][ T6552] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000c
[ 102.313183][ T6552] R13: 00000000000927c0 R14: 0000000000018c60 R15: 00007ffdd5f716a0
[ 102.313198][ T6552]
[ 102.452459][ T6556] BUG: Bad page state in process syz.0.29 pfn:50a01
[ 102.454958][ T6556] page does not match folio
[ 102.456590][ T6556] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50a01
[ 102.460247][ T6556] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.463291][ T6556] raw: 00fff00000000000 ffffea0001428000 00000000ffffffff ffffffffffffffff
[ 102.466399][ T6556] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.469649][ T6556] page dumped because: nonzero pincount
[ 102.471542][ T6556] page_owner tracks the page as allocated
[ 102.473254][ T6556] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6555, tgid 6555 (syz.0.29), ts 102431324522, free_ts 0
[ 102.478997][ T6556] post_alloc_hook+0x181/0x1b0
[ 102.481212][ T6556] get_page_from_freelist+0x135c/0x3920
[ 102.483458][ T6556] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.485581][ T6556] alloc_pages_mpol+0x1fb/0x550
[ 102.486998][ T6556] folio_alloc_noprof+0x20/0x2d0
[ 102.488414][ T6556] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.491055][ T6556] page_cache_ra_order+0x4c0/0xd00
[ 102.492642][ T6556] filemap_fault+0x1a5e/0x2740
[ 102.494093][ T6556] __do_fault+0x10a/0x490
[ 102.495626][ T6556] do_pte_missing+0x1a6/0x3fb0
[ 102.497539][ T6556] __handle_mm_fault+0x103d/0x2a40
[ 102.499328][ T6556] handle_mm_fault+0x3fe/0xad0
[ 102.501015][ T6556] do_user_addr_fault+0x60c/0x1370
[ 102.502565][ T6556] exc_page_fault+0x5c/0xc0
[ 102.503942][ T6556] asm_exc_page_fault+0x26/0x30
[ 102.505454][ T6556] page_owner free stack trace missing
[ 102.507150][ T6556] Modules linked in:
[ 102.508352][ T6556] CPU: 0 UID: 0 PID: 6556 Comm: syz.0.29 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 102.508372][ T6556] Tainted: [B]=BAD_PAGE
[ 102.508376][ T6556] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.508382][ T6556] Call Trace:
[ 102.508386][ T6556]
[ 102.508390][ T6556] dump_stack_lvl+0x16c/0x1f0
[ 102.508404][ T6556] bad_page+0xb3/0x1f0
[ 102.508416][ T6556] ? __pfx_bad_page+0x10/0x10
[ 102.508426][ T6556] ? __mem_cgroup_uncharge+0xda/0x130
[ 102.508438][ T6556] free_tail_page_prepare+0x44f/0x5b0
[ 102.508452][ T6556] __free_frozen_pages+0x96a/0xff0
[ 102.508467][ T6556] __folio_put+0x329/0x450
[ 102.508478][ T6556] ? __pfx___folio_put+0x10/0x10
[ 102.508489][ T6556] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.508500][ T6556] ? rcu_is_watching+0x12/0xc0
[ 102.508512][ T6556] ? lock_release+0x201/0x2f0
[ 102.508528][ T6556] filemap_free_folio+0x132/0x170
[ 102.508538][ T6556] delete_from_page_cache_batch+0x741/0x9b0
[ 102.508550][ T6556] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.508562][ T6556] ? __pfx_workingset_update_node+0x10/0x10
[ 102.508573][ T6556] ? xas_move_index+0xb0/0x110
[ 102.508585][ T6556] truncate_inode_pages_range+0x279/0xe30
[ 102.508600][ T6556] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.508618][ T6556] ? __pfx___send_ipi_mask+0x10/0x10
[ 102.508635][ T6556] ? __pfx_down_write+0x10/0x10
[ 102.508649][ T6556] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.508665][ T6556] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.508679][ T6556] blkdev_flush_mapping+0xe9/0x280
[ 102.508691][ T6556] ? filemap_check_errors+0xa9/0x160
[ 102.508706][ T6556] blkdev_put_whole+0xc4/0xf0
[ 102.508717][ T6556] bdev_release+0x47e/0x6d0
[ 102.508730][ T6556] ? __pfx_blkdev_release+0x10/0x10
[ 102.508742][ T6556] blkdev_release+0x15/0x20
[ 102.508754][ T6556] __fput+0x3ff/0xb70
[ 102.508765][ T6556] task_work_run+0x14d/0x240
[ 102.508776][ T6556] ? __pfx_task_work_run+0x10/0x10
[ 102.508786][ T6556] ? do_raw_spin_unlock+0x172/0x230
[ 102.508796][ T6556] do_exit+0xafb/0x2c30
[ 102.508811][ T6556] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.508827][ T6556] ? __pfx_do_exit+0x10/0x10
[ 102.508840][ T6556] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.508850][ T6556] ? get_signal+0x8f5/0x26d0
[ 102.508862][ T6556] ? rcu_is_watching+0x12/0xc0
[ 102.508873][ T6556] do_group_exit+0xd3/0x2a0
[ 102.508889][ T6556] get_signal+0x2673/0x26d0
[ 102.508902][ T6556] ? __pfx_get_signal+0x10/0x10
[ 102.508914][ T6556] ? do_futex+0x122/0x350
[ 102.508928][ T6556] ? __pfx_do_futex+0x10/0x10
[ 102.508941][ T6556] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.508957][ T6556] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.508972][ T6556] ? rcu_is_watching+0x12/0xc0
[ 102.508983][ T6556] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.508996][ T6556] do_syscall_64+0xda/0x260
[ 102.509008][ T6556] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.509019][ T6556] RIP: 0033:0x7f62ebd8e969
[ 102.509026][ T6556] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 102.509031][ T6556] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.509040][ T6556] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 102.509046][ T6556] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 102.509052][ T6556] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.509058][ T6556] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 102.509064][ T6556] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 102.509072][ T6556]
[ 102.509087][ T6556] BUG: Bad page state in process syz.0.29 pfn:50a00
[ 102.647342][ T6556] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50a00
[ 102.651007][ T6556] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 102.654346][ T6556] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 102.657962][ T6556] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.661485][ T6556] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.664990][ T6556] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.668440][ T6556] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.671861][ T6556] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.674919][ T6556] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.678341][ T6556] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 102.681386][ T6556] page_owner tracks the page as allocated
[ 102.683562][ T6556] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6555, tgid 6555 (syz.0.29), ts 102431324522, free_ts 0
[ 102.689519][ T6556] post_alloc_hook+0x181/0x1b0
[ 102.691148][ T6556] get_page_from_freelist+0x135c/0x3920
[ 102.692829][ T6556] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.695018][ T6556] alloc_pages_mpol+0x1fb/0x550
[ 102.697039][ T6556] folio_alloc_noprof+0x20/0x2d0
[ 102.698996][ T6556] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.701470][ T6556] page_cache_ra_order+0x4c0/0xd00
[ 102.703558][ T6556] filemap_fault+0x1a5e/0x2740
[ 102.705574][ T6556] __do_fault+0x10a/0x490
[ 102.707376][ T6556] do_pte_missing+0x1a6/0x3fb0
[ 102.709706][ T6556] __handle_mm_fault+0x103d/0x2a40
[ 102.711872][ T6556] handle_mm_fault+0x3fe/0xad0
[ 102.713377][ T6556] do_user_addr_fault+0x60c/0x1370
[ 102.715408][ T6556] exc_page_fault+0x5c/0xc0
[ 102.717258][ T6556] asm_exc_page_fault+0x26/0x30
[ 102.719229][ T6556] page_owner free stack trace missing
[ 102.721941][ T6556] Modules linked in:
[ 102.723555][ T6556] CPU: 2 UID: 0 PID: 6556 Comm: syz.0.29 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 102.723579][ T6556] Tainted: [B]=BAD_PAGE
[ 102.723585][ T6556] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.723596][ T6556] Call Trace:
[ 102.723601][ T6556]
[ 102.723607][ T6556] dump_stack_lvl+0x16c/0x1f0
[ 102.723629][ T6556] bad_page+0xb3/0x1f0
[ 102.723648][ T6556] ? __pfx_bad_page+0x10/0x10
[ 102.723665][ T6556] ? page_bad_reason+0x9d/0x1e0
[ 102.723687][ T6556] __free_frozen_pages+0x76e/0xff0
[ 102.723712][ T6556] __folio_put+0x329/0x450
[ 102.723731][ T6556] ? __pfx___folio_put+0x10/0x10
[ 102.723749][ T6556] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.723768][ T6556] ? rcu_is_watching+0x12/0xc0
[ 102.723786][ T6556] ? lock_release+0x201/0x2f0
[ 102.723811][ T6556] filemap_free_folio+0x132/0x170
[ 102.723828][ T6556] delete_from_page_cache_batch+0x741/0x9b0
[ 102.723849][ T6556] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.723869][ T6556] ? __pfx_workingset_update_node+0x10/0x10
[ 102.723887][ T6556] ? xas_move_index+0xb0/0x110
[ 102.723930][ T6556] truncate_inode_pages_range+0x279/0xe30
[ 102.723954][ T6556] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.723984][ T6556] ? __pfx___send_ipi_mask+0x10/0x10
[ 102.724016][ T6556] ? __pfx_down_write+0x10/0x10
[ 102.724038][ T6556] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.724063][ T6556] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.724087][ T6556] blkdev_flush_mapping+0xe9/0x280
[ 102.724107][ T6556] ? filemap_check_errors+0xa9/0x160
[ 102.724130][ T6556] blkdev_put_whole+0xc4/0xf0
[ 102.724148][ T6556] bdev_release+0x47e/0x6d0
[ 102.724168][ T6556] ? __pfx_blkdev_release+0x10/0x10
[ 102.724194][ T6556] blkdev_release+0x15/0x20
[ 102.724214][ T6556] __fput+0x3ff/0xb70
[ 102.724234][ T6556] task_work_run+0x14d/0x240
[ 102.724252][ T6556] ? __pfx_task_work_run+0x10/0x10
[ 102.724269][ T6556] ? do_raw_spin_unlock+0x172/0x230
[ 102.724287][ T6556] do_exit+0xafb/0x2c30
[ 102.724310][ T6556] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.724336][ T6556] ? __pfx_do_exit+0x10/0x10
[ 102.724358][ T6556] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.724375][ T6556] ? get_signal+0x8f5/0x26d0
[ 102.724394][ T6556] ? rcu_is_watching+0x12/0xc0
[ 102.724412][ T6556] do_group_exit+0xd3/0x2a0
[ 102.724437][ T6556] get_signal+0x2673/0x26d0
[ 102.724457][ T6556] ? __pfx_get_signal+0x10/0x10
[ 102.724477][ T6556] ? do_futex+0x122/0x350
[ 102.724497][ T6556] ? __pfx_do_futex+0x10/0x10
[ 102.724519][ T6556] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.724542][ T6556] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.724568][ T6556] ? rcu_is_watching+0x12/0xc0
[ 102.724587][ T6556] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.724608][ T6556] do_syscall_64+0xda/0x260
[ 102.724628][ T6556] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.724645][ T6556] RIP: 0033:0x7f62ebd8e969
[ 102.724659][ T6556] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 102.724666][ T6556] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.724681][ T6556] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 102.724693][ T6556] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 102.724703][ T6556] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.724713][ T6556] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 102.724722][ T6556] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 102.724737][ T6556]
[ 102.761027][ T6558] BUG: Bad page state in process syz.0.30 pfn:50601
[ 102.850632][ T6558] page does not match folio
[ 102.852208][ T6558] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50601
[ 102.855627][ T6558] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.858582][ T6558] raw: 00fff00000000000 ffffea0001418000 00000000ffffffff ffffffffffffffff
[ 102.862308][ T6558] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.865102][ T6558] page dumped because: nonzero pincount
[ 102.866855][ T6558] page_owner tracks the page as allocated
[ 102.868592][ T6558] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6557, tgid 6557 (syz.0.30), ts 102734089685, free_ts 102313242048
[ 102.874826][ T6558] post_alloc_hook+0x181/0x1b0
[ 102.876267][ T6558] get_page_from_freelist+0x135c/0x3920
[ 102.877931][ T6558] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.879863][ T6558] alloc_pages_mpol+0x1fb/0x550
[ 102.881621][ T6558] folio_alloc_noprof+0x20/0x2d0
[ 102.883315][ T6558] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.885202][ T6558] page_cache_ra_order+0x4c0/0xd00
[ 102.886831][ T6558] filemap_fault+0x1a5e/0x2740
[ 102.888287][ T6558] __do_fault+0x10a/0x490
[ 102.889703][ T6558] do_pte_missing+0x1a6/0x3fb0
[ 102.891363][ T6558] __handle_mm_fault+0x103d/0x2a40
[ 102.892916][ T6558] handle_mm_fault+0x3fe/0xad0
[ 102.894497][ T6558] do_user_addr_fault+0x60c/0x1370
[ 102.896163][ T6558] exc_page_fault+0x5c/0xc0
[ 102.897508][ T6558] asm_exc_page_fault+0x26/0x30
[ 102.899031][ T6558] page last free pid 6552 tgid 6552 stack trace:
[ 102.901089][ T6558] free_unref_folios+0x999/0x1630
[ 102.902659][ T6558] folios_put_refs+0x56f/0x740
[ 102.904119][ T6558] truncate_inode_pages_range+0x311/0xe30
[ 102.905840][ T6558] blkdev_flush_mapping+0xe9/0x280
[ 102.907398][ T6558] blkdev_put_whole+0xc4/0xf0
[ 102.908904][ T6558] bdev_release+0x47e/0x6d0
[ 102.910372][ T6558] blkdev_release+0x15/0x20
[ 102.911924][ T6558] __fput+0x3ff/0xb70
[ 102.913145][ T6558] task_work_run+0x14d/0x240
[ 102.914819][ T6558] do_exit+0xafb/0x2c30
[ 102.916084][ T6558] do_group_exit+0xd3/0x2a0
[ 102.917431][ T6558] __x64_sys_exit_group+0x3e/0x50
[ 102.918955][ T6558] x64_sys_call+0x1530/0x1730
[ 102.920389][ T6558] do_syscall_64+0xcd/0x260
[ 102.922139][ T6558] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.924309][ T6558] Modules linked in:
[ 102.925690][ T6558] CPU: 3 UID: 0 PID: 6558 Comm: syz.0.30 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 102.925713][ T6558] Tainted: [B]=BAD_PAGE
[ 102.925718][ T6558] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.925728][ T6558] Call Trace:
[ 102.925734][ T6558]
[ 102.925739][ T6558] dump_stack_lvl+0x16c/0x1f0
[ 102.925757][ T6558] bad_page+0xb3/0x1f0
[ 102.925768][ T6558] ? __pfx_bad_page+0x10/0x10
[ 102.925778][ T6558] ? __mem_cgroup_uncharge+0xda/0x130
[ 102.925790][ T6558] free_tail_page_prepare+0x44f/0x5b0
[ 102.925804][ T6558] __free_frozen_pages+0x96a/0xff0
[ 102.925819][ T6558] __folio_put+0x329/0x450
[ 102.925830][ T6558] ? __pfx___folio_put+0x10/0x10
[ 102.925841][ T6558] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.925853][ T6558] ? rcu_is_watching+0x12/0xc0
[ 102.925865][ T6558] ? lock_release+0x201/0x2f0
[ 102.925880][ T6558] filemap_free_folio+0x132/0x170
[ 102.925890][ T6558] delete_from_page_cache_batch+0x741/0x9b0
[ 102.925903][ T6558] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.925914][ T6558] ? __pfx_workingset_update_node+0x10/0x10
[ 102.925926][ T6558] ? xas_move_index+0xb0/0x110
[ 102.925938][ T6558] truncate_inode_pages_range+0x279/0xe30
[ 102.925952][ T6558] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.925975][ T6558] ? __pfx_down_write+0x10/0x10
[ 102.925988][ T6558] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.926004][ T6558] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.926018][ T6558] blkdev_flush_mapping+0xe9/0x280
[ 102.926030][ T6558] ? filemap_check_errors+0xa9/0x160
[ 102.926045][ T6558] blkdev_put_whole+0xc4/0xf0
[ 102.926056][ T6558] bdev_release+0x47e/0x6d0
[ 102.926069][ T6558] ? __pfx_blkdev_release+0x10/0x10
[ 102.926081][ T6558] blkdev_release+0x15/0x20
[ 102.926093][ T6558] __fput+0x3ff/0xb70
[ 102.926104][ T6558] task_work_run+0x14d/0x240
[ 102.926115][ T6558] ? __pfx_task_work_run+0x10/0x10
[ 102.926125][ T6558] ? do_raw_spin_unlock+0x172/0x230
[ 102.926136][ T6558] do_exit+0xafb/0x2c30
[ 102.926150][ T6558] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.926166][ T6558] ? __pfx_do_exit+0x10/0x10
[ 102.926180][ T6558] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.926190][ T6558] ? get_signal+0x8f5/0x26d0
[ 102.926202][ T6558] ? rcu_is_watching+0x12/0xc0
[ 102.926213][ T6558] do_group_exit+0xd3/0x2a0
[ 102.926228][ T6558] get_signal+0x2673/0x26d0
[ 102.926241][ T6558] ? __pfx_get_signal+0x10/0x10
[ 102.926253][ T6558] ? do_futex+0x122/0x350
[ 102.926265][ T6558] ? __pfx_do_futex+0x10/0x10
[ 102.926278][ T6558] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.926293][ T6558] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.926308][ T6558] ? madvise_unlock+0xc6/0x190
[ 102.926320][ T6558] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.926332][ T6558] do_syscall_64+0xda/0x260
[ 102.926344][ T6558] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.926354][ T6558] RIP: 0033:0x7f62ebd8e969
[ 102.926362][ T6558] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 102.926366][ T6558] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.926376][ T6558] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 102.926382][ T6558] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 102.926388][ T6558] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.926394][ T6558] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 102.926400][ T6558] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 102.926408][ T6558]
[ 102.926427][ T6558] BUG: Bad page state in process syz.0.30 pfn:50600
[ 103.035384][ T6558] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50600
[ 103.038310][ T6558] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 103.041082][ T6558] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 103.044391][ T6558] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.046972][ T6558] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.050024][ T6558] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.052752][ T6558] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.055508][ T6558] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.058311][ T6558] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.061047][ T6558] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 103.063301][ T6558] page_owner tracks the page as allocated
[ 103.064996][ T6558] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6557, tgid 6557 (syz.0.30), ts 102734089685, free_ts 102313242048
[ 103.072214][ T6558] post_alloc_hook+0x181/0x1b0
[ 103.073676][ T6558] get_page_from_freelist+0x135c/0x3920
[ 103.075301][ T6558] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.077474][ T6558] alloc_pages_mpol+0x1fb/0x550
[ 103.079304][ T6558] folio_alloc_noprof+0x20/0x2d0
[ 103.080922][ T6558] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.083016][ T6558] page_cache_ra_order+0x4c0/0xd00
[ 103.084539][ T6558] filemap_fault+0x1a5e/0x2740
[ 103.085979][ T6558] __do_fault+0x10a/0x490
[ 103.087286][ T6558] do_pte_missing+0x1a6/0x3fb0
[ 103.088740][ T6558] __handle_mm_fault+0x103d/0x2a40
[ 103.090290][ T6558] handle_mm_fault+0x3fe/0xad0
[ 103.091878][ T6558] do_user_addr_fault+0x60c/0x1370
[ 103.093435][ T6558] exc_page_fault+0x5c/0xc0
[ 103.094788][ T6558] asm_exc_page_fault+0x26/0x30
[ 103.096289][ T6558] page last free pid 6552 tgid 6552 stack trace:
[ 103.098197][ T6558] free_unref_folios+0x999/0x1630
[ 103.099712][ T6558] folios_put_refs+0x56f/0x740
[ 103.101209][ T6558] truncate_inode_pages_range+0x311/0xe30
[ 103.102875][ T6558] blkdev_flush_mapping+0xe9/0x280
[ 103.104384][ T6558] blkdev_put_whole+0xc4/0xf0
[ 103.105754][ T6558] bdev_release+0x47e/0x6d0
[ 103.107097][ T6558] blkdev_release+0x15/0x20
[ 103.108495][ T6558] __fput+0x3ff/0xb70
[ 103.109688][ T6558] task_work_run+0x14d/0x240
[ 103.111230][ T6558] do_exit+0xafb/0x2c30
[ 103.112584][ T6558] do_group_exit+0xd3/0x2a0
[ 103.113934][ T6558] __x64_sys_exit_group+0x3e/0x50
[ 103.115397][ T6558] x64_sys_call+0x1530/0x1730
[ 103.116787][ T6558] do_syscall_64+0xcd/0x260
[ 103.118171][ T6558] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.120100][ T6558] Modules linked in:
[ 103.121414][ T6558] CPU: 3 UID: 0 PID: 6558 Comm: syz.0.30 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 103.121431][ T6558] Tainted: [B]=BAD_PAGE
[ 103.121434][ T6558] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.121441][ T6558] Call Trace:
[ 103.121444][ T6558]
[ 103.121448][ T6558] dump_stack_lvl+0x16c/0x1f0
[ 103.121461][ T6558] bad_page+0xb3/0x1f0
[ 103.121472][ T6558] ? __pfx_bad_page+0x10/0x10
[ 103.121483][ T6558] ? page_bad_reason+0x9d/0x1e0
[ 103.121494][ T6558] __free_frozen_pages+0x76e/0xff0
[ 103.121508][ T6558] __folio_put+0x329/0x450
[ 103.121520][ T6558] ? __pfx___folio_put+0x10/0x10
[ 103.121530][ T6558] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.121542][ T6558] ? rcu_is_watching+0x12/0xc0
[ 103.121554][ T6558] ? lock_release+0x201/0x2f0
[ 103.121569][ T6558] filemap_free_folio+0x132/0x170
[ 103.121579][ T6558] delete_from_page_cache_batch+0x741/0x9b0
[ 103.121592][ T6558] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.121604][ T6558] ? __pfx_workingset_update_node+0x10/0x10
[ 103.121614][ T6558] ? xas_move_index+0xb0/0x110
[ 103.121626][ T6558] truncate_inode_pages_range+0x279/0xe30
[ 103.121641][ T6558] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.121663][ T6558] ? __pfx_down_write+0x10/0x10
[ 103.121676][ T6558] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.121692][ T6558] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.121707][ T6558] blkdev_flush_mapping+0xe9/0x280
[ 103.121718][ T6558] ? filemap_check_errors+0xa9/0x160
[ 103.121733][ T6558] blkdev_put_whole+0xc4/0xf0
[ 103.121743][ T6558] bdev_release+0x47e/0x6d0
[ 103.121756][ T6558] ? __pfx_blkdev_release+0x10/0x10
[ 103.121768][ T6558] blkdev_release+0x15/0x20
[ 103.121779][ T6558] __fput+0x3ff/0xb70
[ 103.121791][ T6558] task_work_run+0x14d/0x240
[ 103.121801][ T6558] ? __pfx_task_work_run+0x10/0x10
[ 103.121811][ T6558] ? do_raw_spin_unlock+0x172/0x230
[ 103.121822][ T6558] do_exit+0xafb/0x2c30
[ 103.121836][ T6558] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.121853][ T6558] ? __pfx_do_exit+0x10/0x10
[ 103.121866][ T6558] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.121876][ T6558] ? get_signal+0x8f5/0x26d0
[ 103.121887][ T6558] ? rcu_is_watching+0x12/0xc0
[ 103.121898][ T6558] do_group_exit+0xd3/0x2a0
[ 103.121913][ T6558] get_signal+0x2673/0x26d0
[ 103.121927][ T6558] ? __pfx_get_signal+0x10/0x10
[ 103.121938][ T6558] ? do_futex+0x122/0x350
[ 103.121951][ T6558] ? __pfx_do_futex+0x10/0x10
[ 103.121964][ T6558] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.121979][ T6558] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.121994][ T6558] ? madvise_unlock+0xc6/0x190
[ 103.122006][ T6558] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.122018][ T6558] do_syscall_64+0xda/0x260
[ 103.122029][ T6558] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.122039][ T6558] RIP: 0033:0x7f62ebd8e969
[ 103.122047][ T6558] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 103.122051][ T6558] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.122061][ T6558] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 103.122067][ T6558] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 103.122073][ T6558] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.122079][ T6558] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 103.122085][ T6558] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 103.122093][ T6558]
[ 103.159706][ T6559] BUG: Bad page state in process syz.0.31 pfn:50401
[ 103.246007][ T6559] page does not match folio
[ 103.247550][ T6559] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50401
[ 103.250802][ T6559] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.253081][ T6559] raw: 00fff00000000000 ffffea0001410000 00000000ffffffff ffffffffffffffff
[ 103.255782][ T6559] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.258250][ T6559] page dumped because: nonzero pincount
[ 103.259912][ T6559] page_owner tracks the page as allocated
[ 103.261766][ T6559] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6559, tgid 6559 (syz.0.31), ts 103129771812, free_ts 101874853570
[ 103.269176][ T6559] post_alloc_hook+0x181/0x1b0
[ 103.271324][ T6559] get_page_from_freelist+0x135c/0x3920
[ 103.273580][ T6559] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.276014][ T6559] alloc_pages_mpol+0x1fb/0x550
[ 103.277768][ T6559] folio_alloc_noprof+0x20/0x2d0
[ 103.279368][ T6559] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.281585][ T6559] page_cache_ra_order+0x4c0/0xd00
[ 103.283257][ T6559] filemap_fault+0x1a5e/0x2740
[ 103.284813][ T6559] __do_fault+0x10a/0x490
[ 103.286163][ T6559] do_pte_missing+0x1a6/0x3fb0
[ 103.287624][ T6559] __handle_mm_fault+0x103d/0x2a40
[ 103.289227][ T6559] handle_mm_fault+0x3fe/0xad0
[ 103.290831][ T6559] do_user_addr_fault+0x60c/0x1370
[ 103.292415][ T6559] exc_page_fault+0x5c/0xc0
[ 103.293841][ T6559] asm_exc_page_fault+0x26/0x30
[ 103.295398][ T6559] page last free pid 6550 tgid 6550 stack trace:
[ 103.297319][ T6559] free_unref_folios+0x999/0x1630
[ 103.298862][ T6559] folios_put_refs+0x56f/0x740
[ 103.300328][ T6559] truncate_inode_pages_range+0x311/0xe30
[ 103.302128][ T6559] blkdev_flush_mapping+0xe9/0x280
[ 103.303701][ T6559] blkdev_put_whole+0xc4/0xf0
[ 103.305156][ T6559] bdev_release+0x47e/0x6d0
[ 103.306597][ T6559] blkdev_release+0x15/0x20
[ 103.307974][ T6559] __fput+0x3ff/0xb70
[ 103.309221][ T6559] task_work_run+0x14d/0x240
[ 103.310731][ T6559] do_exit+0xafb/0x2c30
[ 103.312011][ T6559] do_group_exit+0xd3/0x2a0
[ 103.313416][ T6559] __x64_sys_exit_group+0x3e/0x50
[ 103.314983][ T6559] x64_sys_call+0x1530/0x1730
[ 103.316411][ T6559] do_syscall_64+0xcd/0x260
[ 103.318039][ T6559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.320070][ T6559] Modules linked in:
[ 103.321352][ T6559] CPU: 1 UID: 0 PID: 6559 Comm: syz.0.31 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 103.321369][ T6559] Tainted: [B]=BAD_PAGE
[ 103.321372][ T6559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.321378][ T6559] Call Trace:
[ 103.321382][ T6559]
[ 103.321385][ T6559] dump_stack_lvl+0x16c/0x1f0
[ 103.321400][ T6559] bad_page+0xb3/0x1f0
[ 103.321411][ T6559] ? __pfx_bad_page+0x10/0x10
[ 103.321421][ T6559] ? __mem_cgroup_uncharge+0xda/0x130
[ 103.321434][ T6559] free_tail_page_prepare+0x44f/0x5b0
[ 103.321447][ T6559] __free_frozen_pages+0x96a/0xff0
[ 103.321462][ T6559] __folio_put+0x329/0x450
[ 103.321473][ T6559] ? __pfx___folio_put+0x10/0x10
[ 103.321484][ T6559] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.321496][ T6559] ? rcu_is_watching+0x12/0xc0
[ 103.321508][ T6559] ? lock_release+0x201/0x2f0
[ 103.321523][ T6559] filemap_free_folio+0x132/0x170
[ 103.321534][ T6559] delete_from_page_cache_batch+0x741/0x9b0
[ 103.321546][ T6559] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.321558][ T6559] ? __pfx_workingset_update_node+0x10/0x10
[ 103.321569][ T6559] ? xas_move_index+0xb0/0x110
[ 103.321581][ T6559] truncate_inode_pages_range+0x279/0xe30
[ 103.321601][ T6559] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.321630][ T6559] ? __pfx_down_write+0x10/0x10
[ 103.321648][ T6559] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.321667][ T6559] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.321682][ T6559] blkdev_flush_mapping+0xe9/0x280
[ 103.321694][ T6559] blkdev_put_whole+0xc4/0xf0
[ 103.321705][ T6559] bdev_release+0x47e/0x6d0
[ 103.321718][ T6559] ? __pfx_blkdev_release+0x10/0x10
[ 103.321730][ T6559] blkdev_release+0x15/0x20
[ 103.321742][ T6559] __fput+0x3ff/0xb70
[ 103.321753][ T6559] task_work_run+0x14d/0x240
[ 103.321764][ T6559] ? __pfx_task_work_run+0x10/0x10
[ 103.321774][ T6559] ? do_raw_spin_unlock+0x172/0x230
[ 103.321785][ T6559] do_exit+0xafb/0x2c30
[ 103.321801][ T6559] ? __pfx_do_exit+0x10/0x10
[ 103.321815][ T6559] ? preempt_schedule_thunk+0x16/0x30
[ 103.321825][ T6559] do_group_exit+0xd3/0x2a0
[ 103.321840][ T6559] __x64_sys_exit_group+0x3e/0x50
[ 103.321855][ T6559] x64_sys_call+0x1530/0x1730
[ 103.321869][ T6559] do_syscall_64+0xcd/0x260
[ 103.321881][ T6559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.321891][ T6559] RIP: 0033:0x7f62ebd8e969
[ 103.321899][ T6559] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 103.321904][ T6559] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 103.321913][ T6559] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 103.321920][ T6559] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 103.321925][ T6559] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 103.321931][ T6559] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000f
[ 103.321937][ T6559] R13: 00000000000927c0 R14: 00000000000190d2 R15: 00007ffdd5f716a0
[ 103.321946][ T6559]
[ 103.321960][ T6559] BUG: Bad page state in process syz.0.31 pfn:50400
[ 103.435097][ T6559] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50400
[ 103.438376][ T6559] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 103.441711][ T6559] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 103.445125][ T6559] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.448356][ T6559] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.451756][ T6559] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.455060][ T6559] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.458323][ T6559] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.461743][ T6559] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.465051][ T6559] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 103.467791][ T6559] page_owner tracks the page as allocated
[ 103.469980][ T6559] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6559, tgid 6559 (syz.0.31), ts 103129771812, free_ts 101874853570
[ 103.476778][ T6559] post_alloc_hook+0x181/0x1b0
[ 103.478179][ T6559] get_page_from_freelist+0x135c/0x3920
[ 103.479942][ T6559] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.481752][ T6559] alloc_pages_mpol+0x1fb/0x550
[ 103.483278][ T6559] folio_alloc_noprof+0x20/0x2d0
[ 103.484978][ T6559] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.486888][ T6559] page_cache_ra_order+0x4c0/0xd00
[ 103.488698][ T6559] filemap_fault+0x1a5e/0x2740
[ 103.490300][ T6559] __do_fault+0x10a/0x490
[ 103.491879][ T6559] do_pte_missing+0x1a6/0x3fb0
[ 103.493570][ T6559] __handle_mm_fault+0x103d/0x2a40
[ 103.495592][ T6559] handle_mm_fault+0x3fe/0xad0
[ 103.497106][ T6559] do_user_addr_fault+0x60c/0x1370
[ 103.498626][ T6559] exc_page_fault+0x5c/0xc0
[ 103.500081][ T6559] asm_exc_page_fault+0x26/0x30
[ 103.501656][ T6559] page last free pid 6550 tgid 6550 stack trace:
[ 103.503560][ T6559] free_unref_folios+0x999/0x1630
[ 103.505149][ T6559] folios_put_refs+0x56f/0x740
[ 103.506569][ T6559] truncate_inode_pages_range+0x311/0xe30
[ 103.508287][ T6559] blkdev_flush_mapping+0xe9/0x280
[ 103.509793][ T6559] blkdev_put_whole+0xc4/0xf0
[ 103.511247][ T6559] bdev_release+0x47e/0x6d0
[ 103.512594][ T6559] blkdev_release+0x15/0x20
[ 103.514005][ T6559] __fput+0x3ff/0xb70
[ 103.515207][ T6559] task_work_run+0x14d/0x240
[ 103.516598][ T6559] do_exit+0xafb/0x2c30
[ 103.517847][ T6559] do_group_exit+0xd3/0x2a0
[ 103.519367][ T6559] __x64_sys_exit_group+0x3e/0x50
[ 103.522134][ T6559] x64_sys_call+0x1530/0x1730
[ 103.523551][ T6559] do_syscall_64+0xcd/0x260
[ 103.524931][ T6559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.526702][ T6559] Modules linked in:
[ 103.527877][ T6559] CPU: 1 UID: 0 PID: 6559 Comm: syz.0.31 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 103.527916][ T6559] Tainted: [B]=BAD_PAGE
[ 103.527921][ T6559] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.527930][ T6559] Call Trace:
[ 103.527935][ T6559]
[ 103.527940][ T6559] dump_stack_lvl+0x16c/0x1f0
[ 103.527953][ T6559] bad_page+0xb3/0x1f0
[ 103.527963][ T6559] ? __pfx_bad_page+0x10/0x10
[ 103.527974][ T6559] ? page_bad_reason+0x9d/0x1e0
[ 103.527985][ T6559] __free_frozen_pages+0x76e/0xff0
[ 103.528000][ T6559] __folio_put+0x329/0x450
[ 103.528011][ T6559] ? __pfx___folio_put+0x10/0x10
[ 103.528022][ T6559] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.528033][ T6559] ? rcu_is_watching+0x12/0xc0
[ 103.528045][ T6559] ? lock_release+0x201/0x2f0
[ 103.528061][ T6559] filemap_free_folio+0x132/0x170
[ 103.528071][ T6559] delete_from_page_cache_batch+0x741/0x9b0
[ 103.528084][ T6559] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.528096][ T6559] ? __pfx_workingset_update_node+0x10/0x10
[ 103.528106][ T6559] ? xas_move_index+0xb0/0x110
[ 103.528118][ T6559] truncate_inode_pages_range+0x279/0xe30
[ 103.528133][ T6559] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.528155][ T6559] ? __pfx_down_write+0x10/0x10
[ 103.528168][ T6559] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.528184][ T6559] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.528198][ T6559] blkdev_flush_mapping+0xe9/0x280
[ 103.528212][ T6559] blkdev_put_whole+0xc4/0xf0
[ 103.528222][ T6559] bdev_release+0x47e/0x6d0
[ 103.528235][ T6559] ? __pfx_blkdev_release+0x10/0x10
[ 103.528247][ T6559] blkdev_release+0x15/0x20
[ 103.528259][ T6559] __fput+0x3ff/0xb70
[ 103.528270][ T6559] task_work_run+0x14d/0x240
[ 103.528281][ T6559] ? __pfx_task_work_run+0x10/0x10
[ 103.528291][ T6559] ? do_raw_spin_unlock+0x172/0x230
[ 103.528302][ T6559] do_exit+0xafb/0x2c30
[ 103.528318][ T6559] ? __pfx_do_exit+0x10/0x10
[ 103.528332][ T6559] ? preempt_schedule_thunk+0x16/0x30
[ 103.528343][ T6559] do_group_exit+0xd3/0x2a0
[ 103.528358][ T6559] __x64_sys_exit_group+0x3e/0x50
[ 103.528373][ T6559] x64_sys_call+0x1530/0x1730
[ 103.528388][ T6559] do_syscall_64+0xcd/0x260
[ 103.528400][ T6559] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.528410][ T6559] RIP: 0033:0x7f62ebd8e969
[ 103.528422][ T6559] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 103.528426][ T6559] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 103.528436][ T6559] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 103.528443][ T6559] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 103.528449][ T6559] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 103.528455][ T6559] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000f
[ 103.528461][ T6559] R13: 00000000000927c0 R14: 00000000000190d2 R15: 00007ffdd5f716a0
[ 103.528470][ T6559]
[ 103.664750][ T6562] BUG: Bad page state in process syz.0.32 pfn:50c01
[ 103.667145][ T6562] page does not match folio
[ 103.668497][ T6562] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50c01
[ 103.671991][ T6562] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.674612][ T6562] raw: 00fff00000000000 ffffea0001430000 00000000ffffffff ffffffffffffffff
[ 103.677642][ T6562] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.681024][ T6562] page dumped because: nonzero pincount
[ 103.682912][ T6562] page_owner tracks the page as allocated
[ 103.684781][ T6562] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6561, tgid 6561 (syz.0.32), ts 103638561903, free_ts 103528520352
[ 103.691028][ T6562] post_alloc_hook+0x181/0x1b0
[ 103.692491][ T6562] get_page_from_freelist+0x135c/0x3920
[ 103.694186][ T6562] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.695998][ T6562] alloc_pages_mpol+0x1fb/0x550
[ 103.697465][ T6562] folio_alloc_noprof+0x20/0x2d0
[ 103.698982][ T6562] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.700763][ T6562] page_cache_ra_order+0x4c0/0xd00
[ 103.702379][ T6562] filemap_fault+0x1a5e/0x2740
[ 103.703809][ T6562] __do_fault+0x10a/0x490
[ 103.705113][ T6562] do_pte_missing+0x1a6/0x3fb0
[ 103.706517][ T6562] __handle_mm_fault+0x103d/0x2a40
[ 103.708029][ T6562] handle_mm_fault+0x3fe/0xad0
[ 103.709474][ T6562] do_user_addr_fault+0x60c/0x1370
[ 103.712164][ T6562] exc_page_fault+0x5c/0xc0
[ 103.714942][ T6562] asm_exc_page_fault+0x26/0x30
[ 103.716606][ T6562] page last free pid 6559 tgid 6559 stack trace:
[ 103.718901][ T6562] free_unref_folios+0x999/0x1630
[ 103.720991][ T6562] folios_put_refs+0x56f/0x740
[ 103.722696][ T6562] truncate_inode_pages_range+0x311/0xe30
[ 103.724395][ T6562] blkdev_flush_mapping+0xe9/0x280
[ 103.725949][ T6562] blkdev_put_whole+0xc4/0xf0
[ 103.727342][ T6562] bdev_release+0x47e/0x6d0
[ 103.728757][ T6562] blkdev_release+0x15/0x20
[ 103.730141][ T6562] __fput+0x3ff/0xb70
[ 103.731468][ T6562] task_work_run+0x14d/0x240
[ 103.733257][ T6562] do_exit+0xafb/0x2c30
[ 103.734665][ T6562] do_group_exit+0xd3/0x2a0
[ 103.736137][ T6562] __x64_sys_exit_group+0x3e/0x50
[ 103.737649][ T6562] x64_sys_call+0x1530/0x1730
[ 103.739072][ T6562] do_syscall_64+0xcd/0x260
[ 103.740567][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.742319][ T6562] Modules linked in:
[ 103.743509][ T6562] CPU: 0 UID: 0 PID: 6562 Comm: syz.0.32 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 103.743525][ T6562] Tainted: [B]=BAD_PAGE
[ 103.743529][ T6562] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.743546][ T6562] Call Trace:
[ 103.743551][ T6562]
[ 103.743555][ T6562] dump_stack_lvl+0x16c/0x1f0
[ 103.743569][ T6562] bad_page+0xb3/0x1f0
[ 103.743580][ T6562] ? __pfx_bad_page+0x10/0x10
[ 103.743591][ T6562] ? __mem_cgroup_uncharge+0xda/0x130
[ 103.743603][ T6562] free_tail_page_prepare+0x44f/0x5b0
[ 103.743616][ T6562] __free_frozen_pages+0x96a/0xff0
[ 103.743631][ T6562] __folio_put+0x329/0x450
[ 103.743642][ T6562] ? __pfx___folio_put+0x10/0x10
[ 103.743653][ T6562] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.743665][ T6562] ? rcu_is_watching+0x12/0xc0
[ 103.743677][ T6562] ? lock_release+0x201/0x2f0
[ 103.743693][ T6562] filemap_free_folio+0x132/0x170
[ 103.743703][ T6562] delete_from_page_cache_batch+0x741/0x9b0
[ 103.743716][ T6562] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.743727][ T6562] ? __pfx_workingset_update_node+0x10/0x10
[ 103.743739][ T6562] ? xas_move_index+0xb0/0x110
[ 103.743751][ T6562] truncate_inode_pages_range+0x279/0xe30
[ 103.743766][ T6562] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.743788][ T6562] ? __pfx_down_write+0x10/0x10
[ 103.743802][ T6562] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.743819][ T6562] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.743834][ T6562] blkdev_flush_mapping+0xe9/0x280
[ 103.743847][ T6562] ? filemap_check_errors+0xa9/0x160
[ 103.743861][ T6562] blkdev_put_whole+0xc4/0xf0
[ 103.743872][ T6562] bdev_release+0x47e/0x6d0
[ 103.743906][ T6562] ? __pfx_blkdev_release+0x10/0x10
[ 103.743920][ T6562] blkdev_release+0x15/0x20
[ 103.743932][ T6562] __fput+0x3ff/0xb70
[ 103.743944][ T6562] task_work_run+0x14d/0x240
[ 103.743954][ T6562] ? __pfx_task_work_run+0x10/0x10
[ 103.743964][ T6562] ? do_raw_spin_unlock+0x172/0x230
[ 103.743975][ T6562] do_exit+0xafb/0x2c30
[ 103.743990][ T6562] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.744006][ T6562] ? __pfx_do_exit+0x10/0x10
[ 103.744020][ T6562] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.744030][ T6562] ? get_signal+0x8f5/0x26d0
[ 103.744041][ T6562] ? rcu_is_watching+0x12/0xc0
[ 103.744052][ T6562] do_group_exit+0xd3/0x2a0
[ 103.744072][ T6562] get_signal+0x2673/0x26d0
[ 103.744085][ T6562] ? __pfx_get_signal+0x10/0x10
[ 103.744097][ T6562] ? do_futex+0x122/0x350
[ 103.744110][ T6562] ? __pfx_do_futex+0x10/0x10
[ 103.744123][ T6562] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.744139][ T6562] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.744154][ T6562] ? madvise_unlock+0xc6/0x190
[ 103.744165][ T6562] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.744178][ T6562] do_syscall_64+0xda/0x260
[ 103.744190][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.744200][ T6562] RIP: 0033:0x7f62ebd8e969
[ 103.744207][ T6562] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 103.744212][ T6562] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.744221][ T6562] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 103.744228][ T6562] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 103.744234][ T6562] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.744240][ T6562] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 103.744245][ T6562] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 103.744254][ T6562]
[ 103.744280][ T6562] BUG: Bad page state in process syz.0.32 pfn:50c00
[ 103.856791][ T6562] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50c00
[ 103.860359][ T6562] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 103.863856][ T6562] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 103.867533][ T6562] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.871185][ T6562] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.874552][ T6562] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.878000][ T6562] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.881632][ T6562] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.885132][ T6562] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.888535][ T6562] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 103.891585][ T6562] page_owner tracks the page as allocated
[ 103.893877][ T6562] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6561, tgid 6561 (syz.0.32), ts 103638561903, free_ts 103528520352
[ 103.902052][ T6562] post_alloc_hook+0x181/0x1b0
[ 103.904108][ T6562] get_page_from_freelist+0x135c/0x3920
[ 103.906347][ T6562] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.908778][ T6562] alloc_pages_mpol+0x1fb/0x550
[ 103.910829][ T6562] folio_alloc_noprof+0x20/0x2d0
[ 103.912860][ T6562] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.915133][ T6562] page_cache_ra_order+0x4c0/0xd00
[ 103.917256][ T6562] filemap_fault+0x1a5e/0x2740
[ 103.919273][ T6562] __do_fault+0x10a/0x490
[ 103.921243][ T6562] do_pte_missing+0x1a6/0x3fb0
[ 103.923214][ T6562] __handle_mm_fault+0x103d/0x2a40
[ 103.925288][ T6562] handle_mm_fault+0x3fe/0xad0
[ 103.927234][ T6562] do_user_addr_fault+0x60c/0x1370
[ 103.929325][ T6562] exc_page_fault+0x5c/0xc0
[ 103.931347][ T6562] asm_exc_page_fault+0x26/0x30
[ 103.933365][ T6562] page last free pid 6559 tgid 6559 stack trace:
[ 103.935906][ T6562] free_unref_folios+0x999/0x1630
[ 103.937982][ T6562] folios_put_refs+0x56f/0x740
[ 103.940056][ T6562] truncate_inode_pages_range+0x311/0xe30
[ 103.942549][ T6562] blkdev_flush_mapping+0xe9/0x280
[ 103.944600][ T6562] blkdev_put_whole+0xc4/0xf0
[ 103.946503][ T6562] bdev_release+0x47e/0x6d0
[ 103.948349][ T6562] blkdev_release+0x15/0x20
[ 103.950285][ T6562] __fput+0x3ff/0xb70
[ 103.952053][ T6562] task_work_run+0x14d/0x240
[ 103.953932][ T6562] do_exit+0xafb/0x2c30
[ 103.955671][ T6562] do_group_exit+0xd3/0x2a0
[ 103.957556][ T6562] __x64_sys_exit_group+0x3e/0x50
[ 103.959623][ T6562] x64_sys_call+0x1530/0x1730
[ 103.961708][ T6562] do_syscall_64+0xcd/0x260
[ 103.963585][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.965496][ T6562] Modules linked in:
[ 103.966644][ T6562] CPU: 1 UID: 0 PID: 6562 Comm: syz.0.32 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 103.966660][ T6562] Tainted: [B]=BAD_PAGE
[ 103.966663][ T6562] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.966670][ T6562] Call Trace:
[ 103.966673][ T6562]
[ 103.966677][ T6562] dump_stack_lvl+0x16c/0x1f0
[ 103.966690][ T6562] bad_page+0xb3/0x1f0
[ 103.966701][ T6562] ? __pfx_bad_page+0x10/0x10
[ 103.966712][ T6562] ? page_bad_reason+0x9d/0x1e0
[ 103.966723][ T6562] __free_frozen_pages+0x76e/0xff0
[ 103.966738][ T6562] __folio_put+0x329/0x450
[ 103.966750][ T6562] ? __pfx___folio_put+0x10/0x10
[ 103.966761][ T6562] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.966773][ T6562] ? rcu_is_watching+0x12/0xc0
[ 103.966785][ T6562] ? lock_release+0x201/0x2f0
[ 103.966800][ T6562] filemap_free_folio+0x132/0x170
[ 103.966810][ T6562] delete_from_page_cache_batch+0x741/0x9b0
[ 103.966823][ T6562] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.966840][ T6562] ? __pfx_workingset_update_node+0x10/0x10
[ 103.966855][ T6562] ? xas_move_index+0xb0/0x110
[ 103.966877][ T6562] truncate_inode_pages_range+0x279/0xe30
[ 103.966901][ T6562] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.966939][ T6562] ? __pfx_down_write+0x10/0x10
[ 103.966961][ T6562] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.966986][ T6562] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.967009][ T6562] blkdev_flush_mapping+0xe9/0x280
[ 103.967029][ T6562] ? filemap_check_errors+0xa9/0x160
[ 103.967051][ T6562] blkdev_put_whole+0xc4/0xf0
[ 103.967067][ T6562] bdev_release+0x47e/0x6d0
[ 103.967086][ T6562] ? __pfx_blkdev_release+0x10/0x10
[ 103.967110][ T6562] blkdev_release+0x15/0x20
[ 103.967127][ T6562] __fput+0x3ff/0xb70
[ 103.967145][ T6562] task_work_run+0x14d/0x240
[ 103.967161][ T6562] ? __pfx_task_work_run+0x10/0x10
[ 103.967176][ T6562] ? do_raw_spin_unlock+0x172/0x230
[ 103.967196][ T6562] do_exit+0xafb/0x2c30
[ 103.967218][ T6562] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.967242][ T6562] ? __pfx_do_exit+0x10/0x10
[ 103.967263][ T6562] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.967280][ T6562] ? get_signal+0x8f5/0x26d0
[ 103.967299][ T6562] ? rcu_is_watching+0x12/0xc0
[ 103.967318][ T6562] do_group_exit+0xd3/0x2a0
[ 103.967341][ T6562] get_signal+0x2673/0x26d0
[ 103.967364][ T6562] ? __pfx_get_signal+0x10/0x10
[ 103.967381][ T6562] ? do_futex+0x122/0x350
[ 103.967403][ T6562] ? __pfx_do_futex+0x10/0x10
[ 103.967425][ T6562] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.967448][ T6562] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.967474][ T6562] ? madvise_unlock+0xc6/0x190
[ 103.967492][ T6562] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.967513][ T6562] do_syscall_64+0xda/0x260
[ 103.967533][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.967549][ T6562] RIP: 0033:0x7f62ebd8e969
[ 103.967562][ T6562] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 103.967570][ T6562] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.967587][ T6562] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 103.967597][ T6562] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 103.967607][ T6562] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.967617][ T6562] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 103.967632][ T6562] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 103.967647][ T6562]
[ 104.122088][ T6564] BUG: Bad page state in process syz.0.33 pfn:50e01
[ 104.124547][ T6564] page does not match folio
[ 104.126171][ T6564] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50e01
[ 104.129035][ T6564] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 104.131738][ T6564] raw: 00fff00000000000 ffffea0001438000 00000000ffffffff ffffffffffffffff
[ 104.134587][ T6564] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 104.137141][ T6564] page dumped because: nonzero pincount
[ 104.138768][ T6564] page_owner tracks the page as allocated
[ 104.140417][ T6564] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6563, tgid 6563 (syz.0.33), ts 104103785636, free_ts 0
[ 104.146259][ T6564] post_alloc_hook+0x181/0x1b0
[ 104.147698][ T6564] get_page_from_freelist+0x135c/0x3920
[ 104.149375][ T6564] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 104.151359][ T6564] alloc_pages_mpol+0x1fb/0x550
[ 104.152806][ T6564] folio_alloc_noprof+0x20/0x2d0
[ 104.154301][ T6564] filemap_alloc_folio_noprof+0x3a1/0x470
[ 104.156027][ T6564] page_cache_ra_order+0x4c0/0xd00
[ 104.157540][ T6564] filemap_fault+0x1a5e/0x2740
[ 104.158980][ T6564] __do_fault+0x10a/0x490
[ 104.160276][ T6564] do_pte_missing+0x1a6/0x3fb0
[ 104.161879][ T6564] __handle_mm_fault+0x103d/0x2a40
[ 104.163393][ T6564] handle_mm_fault+0x3fe/0xad0
[ 104.164839][ T6564] do_user_addr_fault+0x60c/0x1370
[ 104.166328][ T6564] exc_page_fault+0x5c/0xc0
[ 104.167674][ T6564] asm_exc_page_fault+0x26/0x30
[ 104.169112][ T6564] page_owner free stack trace missing
[ 104.170754][ T6564] Modules linked in:
[ 104.171922][ T6564] CPU: 3 UID: 0 PID: 6564 Comm: syz.0.33 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 104.171938][ T6564] Tainted: [B]=BAD_PAGE
[ 104.171941][ T6564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 104.171948][ T6564] Call Trace:
[ 104.171952][ T6564]
[ 104.171956][ T6564] dump_stack_lvl+0x16c/0x1f0
[ 104.171969][ T6564] bad_page+0xb3/0x1f0
[ 104.171980][ T6564] ? __pfx_bad_page+0x10/0x10
[ 104.171990][ T6564] ? __mem_cgroup_uncharge+0xda/0x130
[ 104.172003][ T6564] free_tail_page_prepare+0x44f/0x5b0
[ 104.172016][ T6564] __free_frozen_pages+0x96a/0xff0
[ 104.172031][ T6564] __folio_put+0x329/0x450
[ 104.172042][ T6564] ? __pfx___folio_put+0x10/0x10
[ 104.172053][ T6564] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 104.172065][ T6564] ? rcu_is_watching+0x12/0xc0
[ 104.172077][ T6564] ? lock_release+0x201/0x2f0
[ 104.172092][ T6564] filemap_free_folio+0x132/0x170
[ 104.172102][ T6564] delete_from_page_cache_batch+0x741/0x9b0
[ 104.172115][ T6564] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 104.172127][ T6564] ? __pfx_workingset_update_node+0x10/0x10
[ 104.172138][ T6564] ? xas_move_index+0xb0/0x110
[ 104.172150][ T6564] truncate_inode_pages_range+0x279/0xe30
[ 104.172165][ T6564] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 104.172187][ T6564] ? __pfx_down_write+0x10/0x10
[ 104.172200][ T6564] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 104.172216][ T6564] ? __pfx_has_bh_in_lru+0x10/0x10
[ 104.172231][ T6564] blkdev_flush_mapping+0xe9/0x280
[ 104.172243][ T6564] ? filemap_check_errors+0xa9/0x160
[ 104.172258][ T6564] blkdev_put_whole+0xc4/0xf0
[ 104.172268][ T6564] bdev_release+0x47e/0x6d0
[ 104.172281][ T6564] ? __pfx_blkdev_release+0x10/0x10
[ 104.172293][ T6564] blkdev_release+0x15/0x20
[ 104.172305][ T6564] __fput+0x3ff/0xb70
[ 104.172317][ T6564] task_work_run+0x14d/0x240
[ 104.172327][ T6564] ? __pfx_task_work_run+0x10/0x10
[ 104.172337][ T6564] ? do_raw_spin_unlock+0x172/0x230
[ 104.172348][ T6564] do_exit+0xafb/0x2c30
[ 104.172362][ T6564] ? __pfx_futex_wake_mark+0x10/0x10
[ 104.172384][ T6564] ? __pfx_do_exit+0x10/0x10
[ 104.172398][ T6564] ? do_raw_spin_lock+0x12c/0x2b0
[ 104.172407][ T6564] ? get_signal+0x8f5/0x26d0
[ 104.172419][ T6564] ? rcu_is_watching+0x12/0xc0
[ 104.172430][ T6564] do_group_exit+0xd3/0x2a0
[ 104.172445][ T6564] get_signal+0x2673/0x26d0
[ 104.172459][ T6564] ? __pfx_get_signal+0x10/0x10
[ 104.172470][ T6564] ? do_futex+0x122/0x350
[ 104.172483][ T6564] ? __pfx_do_futex+0x10/0x10
[ 104.172496][ T6564] arch_do_signal_or_restart+0x8f/0x7d0
[ 104.172511][ T6564] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 104.172526][ T6564] ? madvise_unlock+0xc6/0x190
[ 104.172538][ T6564] syscall_exit_to_user_mode+0x150/0x2a0
[ 104.172549][ T6564] do_syscall_64+0xda/0x260
[ 104.172562][ T6564] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.172571][ T6564] RIP: 0033:0x7f62ebd8e969
[ 104.172579][ T6564] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 104.172584][ T6564] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 104.172593][ T6564] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 104.172599][ T6564] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 104.172605][ T6564] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 104.172611][ T6564] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 104.172617][ T6564] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 104.172625][ T6564]
[ 104.172639][ T6564] BUG: Bad page state in process syz.0.33 pfn:50e00
[ 104.290530][ T6564] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50e00
[ 104.293734][ T6564] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 104.296713][ T6564] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 104.299301][ T6564] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 104.301878][ T6564] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.304915][ T6564] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 104.307821][ T6564] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.311123][ T6564] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.314030][ T6564] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 104.316494][ T6564] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 104.318593][ T6564] page_owner tracks the page as allocated
[ 104.320270][ T6564] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6563, tgid 6563 (syz.0.33), ts 104103785636, free_ts 0
[ 104.325908][ T6564] post_alloc_hook+0x181/0x1b0
[ 104.327308][ T6564] get_page_from_freelist+0x135c/0x3920
[ 104.329007][ T6564] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 104.331208][ T6564] alloc_pages_mpol+0x1fb/0x550
[ 104.332884][ T6564] folio_alloc_noprof+0x20/0x2d0
[ 104.334658][ T6564] filemap_alloc_folio_noprof+0x3a1/0x470
[ 104.336698][ T6564] page_cache_ra_order+0x4c0/0xd00
[ 104.338363][ T6564] filemap_fault+0x1a5e/0x2740
[ 104.340155][ T6564] __do_fault+0x10a/0x490
[ 104.341568][ T6564] do_pte_missing+0x1a6/0x3fb0
[ 104.343242][ T6564] __handle_mm_fault+0x103d/0x2a40
[ 104.344742][ T6564] handle_mm_fault+0x3fe/0xad0
[ 104.346167][ T6564] do_user_addr_fault+0x60c/0x1370
[ 104.347738][ T6564] exc_page_fault+0x5c/0xc0
[ 104.349177][ T6564] asm_exc_page_fault+0x26/0x30
[ 104.350750][ T6564] page_owner free stack trace missing
[ 104.352369][ T6564] Modules linked in:
[ 104.353676][ T6564] CPU: 0 UID: 0 PID: 6564 Comm: syz.0.33 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 104.353693][ T6564] Tainted: [B]=BAD_PAGE
[ 104.353696][ T6564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 104.353703][ T6564] Call Trace:
[ 104.353707][ T6564]
[ 104.353711][ T6564] dump_stack_lvl+0x16c/0x1f0
[ 104.353725][ T6564] bad_page+0xb3/0x1f0
[ 104.353736][ T6564] ? __pfx_bad_page+0x10/0x10
[ 104.353747][ T6564] ? page_bad_reason+0x9d/0x1e0
[ 104.353758][ T6564] __free_frozen_pages+0x76e/0xff0
[ 104.353773][ T6564] __folio_put+0x329/0x450
[ 104.353784][ T6564] ? __pfx___folio_put+0x10/0x10
[ 104.353795][ T6564] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 104.353807][ T6564] ? rcu_is_watching+0x12/0xc0
[ 104.353818][ T6564] ? lock_release+0x201/0x2f0
[ 104.353834][ T6564] filemap_free_folio+0x132/0x170
[ 104.353844][ T6564] delete_from_page_cache_batch+0x741/0x9b0
[ 104.353856][ T6564] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 104.353873][ T6564] ? __pfx_workingset_update_node+0x10/0x10
[ 104.353888][ T6564] ? xas_move_index+0xb0/0x110
[ 104.353905][ T6564] truncate_inode_pages_range+0x279/0xe30
[ 104.353927][ T6564] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 104.353962][ T6564] ? __pfx_down_write+0x10/0x10
[ 104.353982][ T6564] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 104.354006][ T6564] ? __pfx_has_bh_in_lru+0x10/0x10
[ 104.354029][ T6564] blkdev_flush_mapping+0xe9/0x280
[ 104.354047][ T6564] ? filemap_check_errors+0xa9/0x160
[ 104.354070][ T6564] blkdev_put_whole+0xc4/0xf0
[ 104.354087][ T6564] bdev_release+0x47e/0x6d0
[ 104.354107][ T6564] ? __pfx_blkdev_release+0x10/0x10
[ 104.354125][ T6564] blkdev_release+0x15/0x20
[ 104.354150][ T6564] __fput+0x3ff/0xb70
[ 104.354169][ T6564] task_work_run+0x14d/0x240
[ 104.354185][ T6564] ? __pfx_task_work_run+0x10/0x10
[ 104.354201][ T6564] ? do_raw_spin_unlock+0x172/0x230
[ 104.354219][ T6564] do_exit+0xafb/0x2c30
[ 104.354241][ T6564] ? __pfx_futex_wake_mark+0x10/0x10
[ 104.354266][ T6564] ? __pfx_do_exit+0x10/0x10
[ 104.354288][ T6564] ? do_raw_spin_lock+0x12c/0x2b0
[ 104.354303][ T6564] ? get_signal+0x8f5/0x26d0
[ 104.354321][ T6564] ? rcu_is_watching+0x12/0xc0
[ 104.354340][ T6564] do_group_exit+0xd3/0x2a0
[ 104.354363][ T6564] get_signal+0x2673/0x26d0
[ 104.354385][ T6564] ? __pfx_get_signal+0x10/0x10
[ 104.354403][ T6564] ? do_futex+0x122/0x350
[ 104.354423][ T6564] ? __pfx_do_futex+0x10/0x10
[ 104.354444][ T6564] arch_do_signal_or_restart+0x8f/0x7d0
[ 104.354467][ T6564] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 104.354491][ T6564] ? madvise_unlock+0xc6/0x190
[ 104.354509][ T6564] syscall_exit_to_user_mode+0x150/0x2a0
[ 104.354527][ T6564] do_syscall_64+0xda/0x260
[ 104.354546][ T6564] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.354561][ T6564] RIP: 0033:0x7f62ebd8e969
[ 104.354573][ T6564] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 104.354580][ T6564] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 104.354595][ T6564] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 104.354605][ T6564] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 104.354615][ T6564] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 104.354624][ T6564] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 104.354633][ T6564] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 104.354647][ T6564]
[ 104.394533][ T6566] BUG: Bad page state in process syz.0.34 pfn:51401
[ 104.482641][ T6566] page does not match folio
[ 104.484364][ T6566] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51401
[ 104.487778][ T6566] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 104.490302][ T6566] raw: 00fff00000000000 ffffea0001450000 00000000ffffffff ffffffffffffffff
[ 104.493292][ T6566] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 104.496325][ T6566] page dumped because: nonzero pincount
[ 104.498336][ T6566] page_owner tracks the page as allocated
[ 104.500274][ T6566] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6565, tgid 6565 (syz.0.34), ts 104364495617, free_ts 0
[ 104.506472][ T6566] post_alloc_hook+0x181/0x1b0
[ 104.508246][ T6566] get_page_from_freelist+0x135c/0x3920
[ 104.510293][ T6566] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 104.512559][ T6566] alloc_pages_mpol+0x1fb/0x550
[ 104.514382][ T6566] folio_alloc_noprof+0x20/0x2d0
[ 104.516145][ T6566] filemap_alloc_folio_noprof+0x3a1/0x470
[ 104.517919][ T6566] page_cache_ra_order+0x4c0/0xd00
[ 104.519579][ T6566] filemap_fault+0x1a5e/0x2740
[ 104.521349][ T6566] __do_fault+0x10a/0x490
[ 104.522898][ T6566] do_pte_missing+0x1a6/0x3fb0
[ 104.524613][ T6566] __handle_mm_fault+0x103d/0x2a40
[ 104.526516][ T6566] handle_mm_fault+0x3fe/0xad0
[ 104.528183][ T6566] do_user_addr_fault+0x60c/0x1370
[ 104.529933][ T6566] exc_page_fault+0x5c/0xc0
[ 104.531650][ T6566] asm_exc_page_fault+0x26/0x30
[ 104.533400][ T6566] page_owner free stack trace missing
[ 104.535252][ T6566] Modules linked in:
[ 104.536590][ T6566] CPU: 3 UID: 0 PID: 6566 Comm: syz.0.34 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 104.536613][ T6566] Tainted: [B]=BAD_PAGE
[ 104.536618][ T6566] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 104.536627][ T6566] Call Trace:
[ 104.536634][ T6566]
[ 104.536638][ T6566] dump_stack_lvl+0x16c/0x1f0
[ 104.536651][ T6566] bad_page+0xb3/0x1f0
[ 104.536662][ T6566] ? __pfx_bad_page+0x10/0x10
[ 104.536672][ T6566] ? __mem_cgroup_uncharge+0xda/0x130
[ 104.536685][ T6566] free_tail_page_prepare+0x44f/0x5b0
[ 104.536698][ T6566] __free_frozen_pages+0x96a/0xff0
[ 104.536713][ T6566] __folio_put+0x329/0x450
[ 104.536724][ T6566] ? __pfx___folio_put+0x10/0x10
[ 104.536735][ T6566] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 104.536746][ T6566] ? rcu_is_watching+0x12/0xc0
[ 104.536758][ T6566] ? lock_release+0x201/0x2f0
[ 104.536775][ T6566] filemap_free_folio+0x132/0x170
[ 104.536785][ T6566] delete_from_page_cache_batch+0x741/0x9b0
[ 104.536797][ T6566] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 104.536809][ T6566] ? __pfx_workingset_update_node+0x10/0x10
[ 104.536820][ T6566] ? xas_move_index+0xb0/0x110
[ 104.536832][ T6566] truncate_inode_pages_range+0x279/0xe30
[ 104.536848][ T6566] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 104.536870][ T6566] ? __pfx_down_write+0x10/0x10
[ 104.536883][ T6566] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 104.536899][ T6566] ? __pfx_has_bh_in_lru+0x10/0x10
[ 104.536914][ T6566] blkdev_flush_mapping+0xe9/0x280
[ 104.536925][ T6566] ? filemap_check_errors+0xa9/0x160
[ 104.536940][ T6566] blkdev_put_whole+0xc4/0xf0
[ 104.536950][ T6566] bdev_release+0x47e/0x6d0
[ 104.536963][ T6566] ? __pfx_blkdev_release+0x10/0x10
[ 104.536975][ T6566] blkdev_release+0x15/0x20
[ 104.536987][ T6566] __fput+0x3ff/0xb70
[ 104.536998][ T6566] task_work_run+0x14d/0x240
[ 104.537009][ T6566] ? __pfx_task_work_run+0x10/0x10
[ 104.537019][ T6566] ? do_raw_spin_unlock+0x172/0x230
[ 104.537030][ T6566] do_exit+0xafb/0x2c30
[ 104.537044][ T6566] ? __pfx_futex_wake_mark+0x10/0x10
[ 104.537060][ T6566] ? __pfx_do_exit+0x10/0x10
[ 104.537074][ T6566] ? do_raw_spin_lock+0x12c/0x2b0
[ 104.537083][ T6566] ? get_signal+0x8f5/0x26d0
[ 104.537099][ T6566] ? rcu_is_watching+0x12/0xc0
[ 104.537110][ T6566] do_group_exit+0xd3/0x2a0
[ 104.537126][ T6566] get_signal+0x2673/0x26d0
[ 104.537139][ T6566] ? __pfx_get_signal+0x10/0x10
[ 104.537150][ T6566] ? do_futex+0x122/0x350
[ 104.537163][ T6566] ? __pfx_do_futex+0x10/0x10
[ 104.537176][ T6566] arch_do_signal_or_restart+0x8f/0x7d0
[ 104.537191][ T6566] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 104.537206][ T6566] ? rcu_is_watching+0x12/0xc0
[ 104.537218][ T6566] syscall_exit_to_user_mode+0x150/0x2a0
[ 104.537230][ T6566] do_syscall_64+0xda/0x260
[ 104.537243][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.537253][ T6566] RIP: 0033:0x7f62ebd8e969
[ 104.537261][ T6566] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 104.537265][ T6566] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 104.537274][ T6566] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 104.537281][ T6566] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 104.537287][ T6566] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 104.537293][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 104.537299][ T6566] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 104.537307][ T6566]
[ 104.537322][ T6566] BUG: Bad page state in process syz.0.34 pfn:51400
[ 104.646135][ T6566] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51400
[ 104.648878][ T6566] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 104.651692][ T6566] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 104.654684][ T6566] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 104.657999][ T6566] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.662902][ T6566] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 104.665594][ T6566] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.668104][ T6566] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.672195][ T6566] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 104.674701][ T6566] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 104.676809][ T6566] page_owner tracks the page as allocated
[ 104.678466][ T6566] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6565, tgid 6565 (syz.0.34), ts 104364495617, free_ts 0
[ 104.683985][ T6566] post_alloc_hook+0x181/0x1b0
[ 104.685393][ T6566] get_page_from_freelist+0x135c/0x3920
[ 104.687013][ T6566] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 104.688760][ T6566] alloc_pages_mpol+0x1fb/0x550
[ 104.690197][ T6566] folio_alloc_noprof+0x20/0x2d0
[ 104.691749][ T6566] filemap_alloc_folio_noprof+0x3a1/0x470
[ 104.693432][ T6566] page_cache_ra_order+0x4c0/0xd00
[ 104.694962][ T6566] filemap_fault+0x1a5e/0x2740
[ 104.696422][ T6566] __do_fault+0x10a/0x490
[ 104.697699][ T6566] do_pte_missing+0x1a6/0x3fb0
[ 104.699141][ T6566] __handle_mm_fault+0x103d/0x2a40
[ 104.700746][ T6566] handle_mm_fault+0x3fe/0xad0
[ 104.702151][ T6566] do_user_addr_fault+0x60c/0x1370
[ 104.703652][ T6566] exc_page_fault+0x5c/0xc0
[ 104.705020][ T6566] asm_exc_page_fault+0x26/0x30
[ 104.706455][ T6566] page_owner free stack trace missing
[ 104.708029][ T6566] Modules linked in:
[ 104.709195][ T6566] CPU: 3 UID: 0 PID: 6566 Comm: syz.0.34 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 104.709211][ T6566] Tainted: [B]=BAD_PAGE
[ 104.709214][ T6566] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 104.709221][ T6566] Call Trace:
[ 104.709225][ T6566]
[ 104.709229][ T6566] dump_stack_lvl+0x16c/0x1f0
[ 104.709243][ T6566] bad_page+0xb3/0x1f0
[ 104.709254][ T6566] ? __pfx_bad_page+0x10/0x10
[ 104.709264][ T6566] ? page_bad_reason+0x9d/0x1e0
[ 104.709275][ T6566] __free_frozen_pages+0x76e/0xff0
[ 104.709293][ T6566] __folio_put+0x329/0x450
[ 104.709304][ T6566] ? __pfx___folio_put+0x10/0x10
[ 104.709315][ T6566] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 104.709326][ T6566] ? rcu_is_watching+0x12/0xc0
[ 104.709338][ T6566] ? lock_release+0x201/0x2f0
[ 104.709354][ T6566] filemap_free_folio+0x132/0x170
[ 104.709365][ T6566] delete_from_page_cache_batch+0x741/0x9b0
[ 104.709377][ T6566] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 104.709389][ T6566] ? __pfx_workingset_update_node+0x10/0x10
[ 104.709400][ T6566] ? xas_move_index+0xb0/0x110
[ 104.709412][ T6566] truncate_inode_pages_range+0x279/0xe30
[ 104.709428][ T6566] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 104.709450][ T6566] ? __pfx_down_write+0x10/0x10
[ 104.709463][ T6566] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 104.709479][ T6566] ? __pfx_has_bh_in_lru+0x10/0x10
[ 104.709494][ T6566] blkdev_flush_mapping+0xe9/0x280
[ 104.709506][ T6566] ? filemap_check_errors+0xa9/0x160
[ 104.709521][ T6566] blkdev_put_whole+0xc4/0xf0
[ 104.709531][ T6566] bdev_release+0x47e/0x6d0
[ 104.709544][ T6566] ? __pfx_blkdev_release+0x10/0x10
[ 104.709556][ T6566] blkdev_release+0x15/0x20
[ 104.709568][ T6566] __fput+0x3ff/0xb70
[ 104.709579][ T6566] task_work_run+0x14d/0x240
[ 104.709590][ T6566] ? __pfx_task_work_run+0x10/0x10
[ 104.709600][ T6566] ? do_raw_spin_unlock+0x172/0x230
[ 104.709611][ T6566] do_exit+0xafb/0x2c30
[ 104.709625][ T6566] ? __pfx_futex_wake_mark+0x10/0x10
[ 104.709642][ T6566] ? __pfx_do_exit+0x10/0x10
[ 104.709655][ T6566] ? do_raw_spin_lock+0x12c/0x2b0
[ 104.709665][ T6566] ? get_signal+0x8f5/0x26d0
[ 104.709677][ T6566] ? rcu_is_watching+0x12/0xc0
[ 104.709688][ T6566] do_group_exit+0xd3/0x2a0
[ 104.709703][ T6566] get_signal+0x2673/0x26d0
[ 104.709716][ T6566] ? __pfx_get_signal+0x10/0x10
[ 104.709728][ T6566] ? do_futex+0x122/0x350
[ 104.709741][ T6566] ? __pfx_do_futex+0x10/0x10
[ 104.709754][ T6566] arch_do_signal_or_restart+0x8f/0x7d0
[ 104.709768][ T6566] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 104.709784][ T6566] ? rcu_is_watching+0x12/0xc0
[ 104.709795][ T6566] syscall_exit_to_user_mode+0x150/0x2a0
[ 104.709808][ T6566] do_syscall_64+0xda/0x260
[ 104.709820][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.709830][ T6566] RIP: 0033:0x7f62ebd8e969
[ 104.709838][ T6566] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 104.709842][ T6566] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 104.709852][ T6566] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 104.709858][ T6566] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 104.709864][ T6566] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 104.709870][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 104.709875][ T6566] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 104.709884][ T6566]
[ 104.737357][ T6568] BUG: Bad page state in process syz.0.35 pfn:51001
[ 104.820555][ T6568] page does not match folio
[ 104.822075][ T6568] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51001
[ 104.825134][ T6568] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 104.828003][ T6568] raw: 00fff00000000000 ffffea0001440000 00000000ffffffff ffffffffffffffff
[ 104.831436][ T6568] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 104.834314][ T6568] page dumped because: nonzero pincount
[ 104.836502][ T6568] page_owner tracks the page as allocated
[ 104.838730][ T6568] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6567, tgid 6567 (syz.0.35), ts 104718330700, free_ts 104354691230
[ 104.846356][ T6568] post_alloc_hook+0x181/0x1b0
[ 104.847783][ T6568] get_page_from_freelist+0x135c/0x3920
[ 104.849633][ T6568] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 104.852118][ T6568] alloc_pages_mpol+0x1fb/0x550
[ 104.854043][ T6568] folio_alloc_noprof+0x20/0x2d0
[ 104.856040][ T6568] filemap_alloc_folio_noprof+0x3a1/0x470
[ 104.858373][ T6568] page_cache_ra_order+0x4c0/0xd00
[ 104.860507][ T6568] filemap_fault+0x1a5e/0x2740
[ 104.862434][ T6568] __do_fault+0x10a/0x490
[ 104.864181][ T6568] do_pte_missing+0x1a6/0x3fb0
[ 104.866093][ T6568] __handle_mm_fault+0x103d/0x2a40
[ 104.868131][ T6568] handle_mm_fault+0x3fe/0xad0
[ 104.870110][ T6568] do_user_addr_fault+0x60c/0x1370
[ 104.872249][ T6568] exc_page_fault+0x5c/0xc0
[ 104.874028][ T6568] asm_exc_page_fault+0x26/0x30
[ 104.876018][ T6568] page last free pid 6564 tgid 6563 stack trace:
[ 104.878520][ T6568] free_unref_folios+0x999/0x1630
[ 104.880681][ T6568] folios_put_refs+0x56f/0x740
[ 104.882626][ T6568] truncate_inode_pages_range+0x311/0xe30
[ 104.884903][ T6568] blkdev_flush_mapping+0xe9/0x280
[ 104.886869][ T6568] blkdev_put_whole+0xc4/0xf0
[ 104.888494][ T6568] bdev_release+0x47e/0x6d0
[ 104.890049][ T6568] blkdev_release+0x15/0x20
[ 104.891852][ T6568] __fput+0x3ff/0xb70
[ 104.893215][ T6568] task_work_run+0x14d/0x240
[ 104.894719][ T6568] do_exit+0xafb/0x2c30
[ 104.896287][ T6568] do_group_exit+0xd3/0x2a0
[ 104.897653][ T6568] get_signal+0x2673/0x26d0
[ 104.899083][ T6568] arch_do_signal_or_restart+0x8f/0x7d0
[ 104.900878][ T6568] syscall_exit_to_user_mode+0x150/0x2a0
[ 104.902586][ T6568] do_syscall_64+0xda/0x260
[ 104.904013][ T6568] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.906221][ T6568] Modules linked in:
[ 104.907591][ T6568] CPU: 1 UID: 0 PID: 6568 Comm: syz.0.35 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 104.907607][ T6568] Tainted: [B]=BAD_PAGE
[ 104.907610][ T6568] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 104.907617][ T6568] Call Trace:
[ 104.907621][ T6568]
[ 104.907625][ T6568] dump_stack_lvl+0x16c/0x1f0
[ 104.907638][ T6568] bad_page+0xb3/0x1f0
[ 104.907649][ T6568] ? __pfx_bad_page+0x10/0x10
[ 104.907659][ T6568] ? __mem_cgroup_uncharge+0xda/0x130
[ 104.907672][ T6568] free_tail_page_prepare+0x44f/0x5b0
[ 104.907685][ T6568] __free_frozen_pages+0x96a/0xff0
[ 104.907700][ T6568] __folio_put+0x329/0x450
[ 104.907711][ T6568] ? __pfx___folio_put+0x10/0x10
[ 104.907722][ T6568] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 104.907733][ T6568] ? rcu_is_watching+0x12/0xc0
[ 104.907745][ T6568] ? lock_release+0x201/0x2f0
[ 104.907761][ T6568] filemap_free_folio+0x132/0x170
[ 104.907771][ T6568] delete_from_page_cache_batch+0x741/0x9b0
[ 104.907784][ T6568] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 104.907796][ T6568] ? __pfx_workingset_update_node+0x10/0x10
[ 104.907806][ T6568] ? xas_move_index+0xb0/0x110
[ 104.907818][ T6568] truncate_inode_pages_range+0x279/0xe30
[ 104.907833][ T6568] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 104.907855][ T6568] ? __pfx_down_write+0x10/0x10
[ 104.907868][ T6568] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 104.907908][ T6568] ? __pfx_has_bh_in_lru+0x10/0x10
[ 104.907923][ T6568] blkdev_flush_mapping+0xe9/0x280
[ 104.907934][ T6568] ? filemap_check_errors+0xa9/0x160
[ 104.907949][ T6568] blkdev_put_whole+0xc4/0xf0
[ 104.907960][ T6568] bdev_release+0x47e/0x6d0
[ 104.907973][ T6568] ? __pfx_blkdev_release+0x10/0x10
[ 104.907985][ T6568] blkdev_release+0x15/0x20
[ 104.907996][ T6568] __fput+0x3ff/0xb70
[ 104.908008][ T6568] task_work_run+0x14d/0x240
[ 104.908019][ T6568] ? __pfx_task_work_run+0x10/0x10
[ 104.908029][ T6568] ? do_raw_spin_unlock+0x172/0x230
[ 104.908040][ T6568] do_exit+0xafb/0x2c30
[ 104.908054][ T6568] ? __pfx_try_to_wake_up+0x10/0x10
[ 104.908071][ T6568] ? futex_wake+0x432/0x4e0
[ 104.908086][ T6568] ? __pfx_do_exit+0x10/0x10
[ 104.908099][ T6568] ? do_raw_spin_lock+0x12c/0x2b0
[ 104.908109][ T6568] ? get_signal+0x8f5/0x26d0
[ 104.908120][ T6568] ? rcu_is_watching+0x12/0xc0
[ 104.908132][ T6568] do_group_exit+0xd3/0x2a0
[ 104.908147][ T6568] get_signal+0x2673/0x26d0
[ 104.908160][ T6568] ? __pfx_get_signal+0x10/0x10
[ 104.908172][ T6568] ? do_futex+0x122/0x350
[ 104.908185][ T6568] ? __pfx_do_futex+0x10/0x10
[ 104.908198][ T6568] arch_do_signal_or_restart+0x8f/0x7d0
[ 104.908214][ T6568] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 104.908229][ T6568] ? rcu_is_watching+0x12/0xc0
[ 104.908241][ T6568] syscall_exit_to_user_mode+0x150/0x2a0
[ 104.908253][ T6568] do_syscall_64+0xda/0x260
[ 104.908265][ T6568] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.908276][ T6568] RIP: 0033:0x7f62ebd8e969
[ 104.908284][ T6568] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 104.908288][ T6568] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 104.908298][ T6568] RAX: 0000000000000001 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 104.908304][ T6568] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f62ebfb5fac
[ 104.908310][ T6568] RBP: 00007f62ebfb5fa0 R08: 00007f62eccc4000 R09: 0000000000000000
[ 104.908316][ T6568] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 104.908322][ T6568] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 104.908331][ T6568]
[ 104.908346][ T6568] BUG: Bad page state in process syz.0.35 pfn:51000
[ 105.023157][ T6568] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51000
[ 105.026552][ T6568] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 105.029817][ T6568] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 105.033396][ T6568] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 105.036728][ T6568] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 105.040233][ T6568] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 105.043793][ T6568] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 105.047309][ T6568] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 105.050845][ T6568] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 105.054243][ T6568] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 105.057099][ T6568] page_owner tracks the page as allocated
[ 105.059375][ T6568] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6567, tgid 6567 (syz.0.35), ts 104718330700, free_ts 104354691230
[ 105.066727][ T6568] post_alloc_hook+0x181/0x1b0
[ 105.068418][ T6568] get_page_from_freelist+0x135c/0x3920
[ 105.070194][ T6568] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 105.072094][ T6568] alloc_pages_mpol+0x1fb/0x550
[ 105.073524][ T6568] folio_alloc_noprof+0x20/0x2d0
[ 105.075090][ T6568] filemap_alloc_folio_noprof+0x3a1/0x470
[ 105.077200][ T6568] page_cache_ra_order+0x4c0/0xd00
[ 105.078784][ T6568] filemap_fault+0x1a5e/0x2740
[ 105.080227][ T6568] __do_fault+0x10a/0x490
[ 105.081603][ T6568] do_pte_missing+0x1a6/0x3fb0
[ 105.083026][ T6568] __handle_mm_fault+0x103d/0x2a40
[ 105.084581][ T6568] handle_mm_fault+0x3fe/0xad0
[ 105.086233][ T6568] do_user_addr_fault+0x60c/0x1370
[ 105.087756][ T6568] exc_page_fault+0x5c/0xc0
[ 105.089237][ T6568] asm_exc_page_fault+0x26/0x30
[ 105.091011][ T6568] page last free pid 6564 tgid 6563 stack trace:
[ 105.093407][ T6568] free_unref_folios+0x999/0x1630
[ 105.095249][ T6568] folios_put_refs+0x56f/0x740
[ 105.097003][ T6568] truncate_inode_pages_range+0x311/0xe30
[ 105.099205][ T6568] blkdev_flush_mapping+0xe9/0x280
[ 105.101256][ T6568] blkdev_put_whole+0xc4/0xf0
[ 105.103034][ T6568] bdev_release+0x47e/0x6d0
[ 105.104794][ T6568] blkdev_release+0x15/0x20
[ 105.106333][ T6568] __fput+0x3ff/0xb70
[ 105.107754][ T6568] task_work_run+0x14d/0x240
[ 105.109418][ T6568] do_exit+0xafb/0x2c30
[ 105.111006][ T6568] do_group_exit+0xd3/0x2a0
[ 105.112548][ T6568] get_signal+0x2673/0x26d0
[ 105.114205][ T6568] arch_do_signal_or_restart+0x8f/0x7d0
[ 105.116155][ T6568] syscall_exit_to_user_mode+0x150/0x2a0
[ 105.117811][ T6568] do_syscall_64+0xda/0x260
[ 105.119293][ T6568] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.121136][ T6568] Modules linked in:
[ 105.122317][ T6568] CPU: 1 UID: 0 PID: 6568 Comm: syz.0.35 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 105.122333][ T6568] Tainted: [B]=BAD_PAGE
[ 105.122337][ T6568] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 105.122343][ T6568] Call Trace:
[ 105.122347][ T6568]
[ 105.122351][ T6568] dump_stack_lvl+0x16c/0x1f0
[ 105.122364][ T6568] bad_page+0xb3/0x1f0
[ 105.122375][ T6568] ? __pfx_bad_page+0x10/0x10
[ 105.122386][ T6568] ? page_bad_reason+0x9d/0x1e0
[ 105.122396][ T6568] __free_frozen_pages+0x76e/0xff0
[ 105.122411][ T6568] __folio_put+0x329/0x450
[ 105.122422][ T6568] ? __pfx___folio_put+0x10/0x10
[ 105.122433][ T6568] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 105.122444][ T6568] ? rcu_is_watching+0x12/0xc0
[ 105.122456][ T6568] ? lock_release+0x201/0x2f0
[ 105.122473][ T6568] filemap_free_folio+0x132/0x170
[ 105.122483][ T6568] delete_from_page_cache_batch+0x741/0x9b0
[ 105.122495][ T6568] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 105.122507][ T6568] ? __pfx_workingset_update_node+0x10/0x10
[ 105.122518][ T6568] ? xas_move_index+0xb0/0x110
[ 105.122531][ T6568] truncate_inode_pages_range+0x279/0xe30
[ 105.122545][ T6568] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 105.122567][ T6568] ? __pfx_down_write+0x10/0x10
[ 105.122580][ T6568] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 105.122597][ T6568] ? __pfx_has_bh_in_lru+0x10/0x10
[ 105.122611][ T6568] blkdev_flush_mapping+0xe9/0x280
[ 105.122623][ T6568] ? filemap_check_errors+0xa9/0x160
[ 105.122638][ T6568] blkdev_put_whole+0xc4/0xf0
[ 105.122649][ T6568] bdev_release+0x47e/0x6d0
[ 105.122662][ T6568] ? __pfx_blkdev_release+0x10/0x10
[ 105.122674][ T6568] blkdev_release+0x15/0x20
[ 105.122686][ T6568] __fput+0x3ff/0xb70
[ 105.122698][ T6568] task_work_run+0x14d/0x240
[ 105.122709][ T6568] ? __pfx_task_work_run+0x10/0x10
[ 105.122719][ T6568] ? do_raw_spin_unlock+0x172/0x230
[ 105.122730][ T6568] do_exit+0xafb/0x2c30
[ 105.122745][ T6568] ? __pfx_try_to_wake_up+0x10/0x10
[ 105.122757][ T6568] ? futex_wake+0x432/0x4e0
[ 105.122772][ T6568] ? __pfx_do_exit+0x10/0x10
[ 105.122786][ T6568] ? do_raw_spin_lock+0x12c/0x2b0
[ 105.122795][ T6568] ? get_signal+0x8f5/0x26d0
[ 105.122807][ T6568] ? rcu_is_watching+0x12/0xc0
[ 105.122818][ T6568] do_group_exit+0xd3/0x2a0
[ 105.122833][ T6568] get_signal+0x2673/0x26d0
[ 105.122847][ T6568] ? __pfx_get_signal+0x10/0x10
[ 105.122858][ T6568] ? do_futex+0x122/0x350
[ 105.122871][ T6568] ? __pfx_do_futex+0x10/0x10
[ 105.122884][ T6568] arch_do_signal_or_restart+0x8f/0x7d0
[ 105.122900][ T6568] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 105.122916][ T6568] ? rcu_is_watching+0x12/0xc0
[ 105.122928][ T6568] syscall_exit_to_user_mode+0x150/0x2a0
[ 105.122940][ T6568] do_syscall_64+0xda/0x260
[ 105.122952][ T6568] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.122963][ T6568] RIP: 0033:0x7f62ebd8e969
[ 105.122970][ T6568] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 105.122975][ T6568] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 105.122985][ T6568] RAX: 0000000000000001 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 105.122991][ T6568] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f62ebfb5fac
[ 105.122997][ T6568] RBP: 00007f62ebfb5fa0 R08: 00007f62eccc4000 R09: 0000000000000000
[ 105.123003][ T6568] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 105.123009][ T6568] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 105.123017][ T6568]
[ 105.256300][ T6570] BUG: Bad page state in process syz.0.36 pfn:51201
[ 105.258292][ T6570] page does not match folio
[ 105.259644][ T6570] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51201
[ 105.262691][ T6570] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 105.265082][ T6570] raw: 00fff00000000000 ffffea0001448000 00000000ffffffff ffffffffffffffff
[ 105.267854][ T6570] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 105.270406][ T6570] page dumped because: nonzero pincount
[ 105.272166][ T6570] page_owner tracks the page as allocated
[ 105.273900][ T6570] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6569, tgid 6569 (syz.0.36), ts 105129704179, free_ts 105123061262
[ 105.280958][ T6570] post_alloc_hook+0x181/0x1b0
[ 105.282392][ T6570] get_page_from_freelist+0x135c/0x3920
[ 105.284044][ T6570] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 105.285929][ T6570] alloc_pages_mpol+0x1fb/0x550
[ 105.287678][ T6570] folio_alloc_noprof+0x20/0x2d0
[ 105.289203][ T6570] filemap_alloc_folio_noprof+0x3a1/0x470
[ 105.290960][ T6570] page_cache_ra_order+0x4c0/0xd00
[ 105.292609][ T6570] filemap_fault+0x1a5e/0x2740
[ 105.294413][ T6570] __do_fault+0x10a/0x490
[ 105.296084][ T6570] do_pte_missing+0x1a6/0x3fb0
[ 105.297937][ T6570] __handle_mm_fault+0x103d/0x2a40
[ 105.299922][ T6570] handle_mm_fault+0x3fe/0xad0
[ 105.301749][ T6570] do_user_addr_fault+0x60c/0x1370
[ 105.303460][ T6570] exc_page_fault+0x5c/0xc0
[ 105.304861][ T6570] asm_exc_page_fault+0x26/0x30
[ 105.306339][ T6570] page last free pid 6568 tgid 6567 stack trace:
[ 105.308206][ T6570] free_unref_folios+0x999/0x1630
[ 105.309846][ T6570] folios_put_refs+0x56f/0x740
[ 105.311479][ T6570] truncate_inode_pages_range+0x311/0xe30
[ 105.313244][ T6570] blkdev_flush_mapping+0xe9/0x280
[ 105.314797][ T6570] blkdev_put_whole+0xc4/0xf0
[ 105.316237][ T6570] bdev_release+0x47e/0x6d0
[ 105.317727][ T6570] blkdev_release+0x15/0x20
[ 105.319236][ T6570] __fput+0x3ff/0xb70
[ 105.320888][ T6570] task_work_run+0x14d/0x240
[ 105.322642][ T6570] do_exit+0xafb/0x2c30
[ 105.324275][ T6570] do_group_exit+0xd3/0x2a0
[ 105.325831][ T6570] get_signal+0x2673/0x26d0
[ 105.327424][ T6570] arch_do_signal_or_restart+0x8f/0x7d0
[ 105.329227][ T6570] syscall_exit_to_user_mode+0x150/0x2a0
[ 105.330986][ T6570] do_syscall_64+0xda/0x260
[ 105.332400][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.334217][ T6570] Modules linked in:
[ 105.335463][ T6570] CPU: 1 UID: 0 PID: 6570 Comm: syz.0.36 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 105.335479][ T6570] Tainted: [B]=BAD_PAGE
[ 105.335483][ T6570] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 105.335489][ T6570] Call Trace:
[ 105.335493][ T6570]
[ 105.335497][ T6570] dump_stack_lvl+0x16c/0x1f0
[ 105.335511][ T6570] bad_page+0xb3/0x1f0
[ 105.335522][ T6570] ? __pfx_bad_page+0x10/0x10
[ 105.335532][ T6570] ? __mem_cgroup_uncharge+0xda/0x130
[ 105.335545][ T6570] free_tail_page_prepare+0x44f/0x5b0
[ 105.335559][ T6570] __free_frozen_pages+0x96a/0xff0
[ 105.335575][ T6570] __folio_put+0x329/0x450
[ 105.335586][ T6570] ? __pfx___folio_put+0x10/0x10
[ 105.335596][ T6570] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 105.335608][ T6570] ? rcu_is_watching+0x12/0xc0
[ 105.335620][ T6570] ? lock_release+0x201/0x2f0
[ 105.335635][ T6570] filemap_free_folio+0x132/0x170
[ 105.335645][ T6570] delete_from_page_cache_batch+0x741/0x9b0
[ 105.335658][ T6570] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 105.335670][ T6570] ? __pfx_workingset_update_node+0x10/0x10
[ 105.335681][ T6570] ? xas_move_index+0xb0/0x110
[ 105.335693][ T6570] truncate_inode_pages_range+0x279/0xe30
[ 105.335708][ T6570] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 105.335730][ T6570] ? __pfx_down_write+0x10/0x10
[ 105.335743][ T6570] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 105.335759][ T6570] ? __pfx_has_bh_in_lru+0x10/0x10
[ 105.335774][ T6570] blkdev_flush_mapping+0xe9/0x280
[ 105.335786][ T6570] ? filemap_check_errors+0xa9/0x160
[ 105.335801][ T6570] blkdev_put_whole+0xc4/0xf0
[ 105.335811][ T6570] bdev_release+0x47e/0x6d0
[ 105.335824][ T6570] ? __pfx_blkdev_release+0x10/0x10
[ 105.335836][ T6570] blkdev_release+0x15/0x20
[ 105.335848][ T6570] __fput+0x3ff/0xb70
[ 105.335860][ T6570] task_work_run+0x14d/0x240
[ 105.335894][ T6570] ? __pfx_task_work_run+0x10/0x10
[ 105.335905][ T6570] ? do_raw_spin_unlock+0x172/0x230
[ 105.335916][ T6570] do_exit+0xafb/0x2c30
[ 105.335930][ T6570] ? __pfx_futex_wake_mark+0x10/0x10
[ 105.335947][ T6570] ? __pfx_do_exit+0x10/0x10
[ 105.335961][ T6570] ? do_raw_spin_lock+0x12c/0x2b0
[ 105.335971][ T6570] ? get_signal+0x8f5/0x26d0
[ 105.335983][ T6570] ? rcu_is_watching+0x12/0xc0
[ 105.335994][ T6570] do_group_exit+0xd3/0x2a0
[ 105.336009][ T6570] get_signal+0x2673/0x26d0
[ 105.336023][ T6570] ? __pfx_get_signal+0x10/0x10
[ 105.336034][ T6570] ? do_futex+0x122/0x350
[ 105.336047][ T6570] ? __pfx_do_futex+0x10/0x10
[ 105.336060][ T6570] arch_do_signal_or_restart+0x8f/0x7d0
[ 105.336075][ T6570] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 105.336090][ T6570] ? rcu_is_watching+0x12/0xc0
[ 105.336102][ T6570] syscall_exit_to_user_mode+0x150/0x2a0
[ 105.336114][ T6570] do_syscall_64+0xda/0x260
[ 105.336127][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.336137][ T6570] RIP: 0033:0x7f62ebd8e969
[ 105.336145][ T6570] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 105.336149][ T6570] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 105.336159][ T6570] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 105.336165][ T6570] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 105.336171][ T6570] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 105.336177][ T6570] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 105.336183][ T6570] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 105.336191][ T6570]
[ 105.336207][ T6570] BUG: Bad page state in process syz.0.36 pfn:51200
[ 105.459273][ T6570] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51200
[ 105.462780][ T6570] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 105.466122][ T6570] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 105.469672][ T6570] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 105.473058][ T6570] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 105.476679][ T6570] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 105.480112][ T6570] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 105.483694][ T6570] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 105.487149][ T6570] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 105.490636][ T6570] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 105.493048][ T6570] page_owner tracks the page as allocated
[ 105.494885][ T6570] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6569, tgid 6569 (syz.0.36), ts 105129704179, free_ts 105123061262
[ 105.501189][ T6570] post_alloc_hook+0x181/0x1b0
[ 105.502654][ T6570] get_page_from_freelist+0x135c/0x3920
[ 105.504668][ T6570] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 105.506461][ T6570] alloc_pages_mpol+0x1fb/0x550
[ 105.507899][ T6570] folio_alloc_noprof+0x20/0x2d0
[ 105.509389][ T6570] filemap_alloc_folio_noprof+0x3a1/0x470
[ 105.511613][ T6570] page_cache_ra_order+0x4c0/0xd00
[ 105.513292][ T6570] filemap_fault+0x1a5e/0x2740
[ 105.514726][ T6570] __do_fault+0x10a/0x490
[ 105.516025][ T6570] do_pte_missing+0x1a6/0x3fb0
[ 105.517717][ T6570] __handle_mm_fault+0x103d/0x2a40
[ 105.519678][ T6570] handle_mm_fault+0x3fe/0xad0
[ 105.521409][ T6570] do_user_addr_fault+0x60c/0x1370
[ 105.523141][ T6570] exc_page_fault+0x5c/0xc0
[ 105.524895][ T6570] asm_exc_page_fault+0x26/0x30
[ 105.526695][ T6570] page last free pid 6568 tgid 6567 stack trace:
[ 105.528560][ T6570] free_unref_folios+0x999/0x1630
[ 105.530048][ T6570] folios_put_refs+0x56f/0x740
[ 105.531757][ T6570] truncate_inode_pages_range+0x311/0xe30
[ 105.533499][ T6570] blkdev_flush_mapping+0xe9/0x280
[ 105.535033][ T6570] blkdev_put_whole+0xc4/0xf0
[ 105.536496][ T6570] bdev_release+0x47e/0x6d0
[ 105.537845][ T6570] blkdev_release+0x15/0x20
[ 105.539203][ T6570] __fput+0x3ff/0xb70
[ 105.540398][ T6570] task_work_run+0x14d/0x240
[ 105.541864][ T6570] do_exit+0xafb/0x2c30
[ 105.543100][ T6570] do_group_exit+0xd3/0x2a0
[ 105.544491][ T6570] get_signal+0x2673/0x26d0
[ 105.545851][ T6570] arch_do_signal_or_restart+0x8f/0x7d0
[ 105.547479][ T6570] syscall_exit_to_user_mode+0x150/0x2a0
[ 105.549559][ T6570] do_syscall_64+0xda/0x260
[ 105.551525][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.553573][ T6570] Modules linked in:
[ 105.554752][ T6570] CPU: 2 UID: 0 PID: 6570 Comm: syz.0.36 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 105.554769][ T6570] Tainted: [B]=BAD_PAGE
[ 105.554772][ T6570] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 105.554779][ T6570] Call Trace:
[ 105.554783][ T6570]
[ 105.554787][ T6570] dump_stack_lvl+0x16c/0x1f0
[ 105.554800][ T6570] bad_page+0xb3/0x1f0
[ 105.554811][ T6570] ? __pfx_bad_page+0x10/0x10
[ 105.554821][ T6570] ? page_bad_reason+0x9d/0x1e0
[ 105.554832][ T6570] __free_frozen_pages+0x76e/0xff0
[ 105.554847][ T6570] __folio_put+0x329/0x450
[ 105.554858][ T6570] ? __pfx___folio_put+0x10/0x10
[ 105.554869][ T6570] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 105.554881][ T6570] ? rcu_is_watching+0x12/0xc0
[ 105.554892][ T6570] ? lock_release+0x201/0x2f0
[ 105.554907][ T6570] filemap_free_folio+0x132/0x170
[ 105.554918][ T6570] delete_from_page_cache_batch+0x741/0x9b0
[ 105.554930][ T6570] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 105.554942][ T6570] ? __pfx_workingset_update_node+0x10/0x10
[ 105.554954][ T6570] ? xas_move_index+0xb0/0x110
[ 105.554965][ T6570] truncate_inode_pages_range+0x279/0xe30
[ 105.554981][ T6570] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 105.555003][ T6570] ? __pfx_down_write+0x10/0x10
[ 105.555015][ T6570] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 105.555032][ T6570] ? __pfx_has_bh_in_lru+0x10/0x10
[ 105.555046][ T6570] blkdev_flush_mapping+0xe9/0x280
[ 105.555058][ T6570] ? filemap_check_errors+0xa9/0x160
[ 105.555078][ T6570] blkdev_put_whole+0xc4/0xf0
[ 105.555089][ T6570] bdev_release+0x47e/0x6d0
[ 105.555101][ T6570] ? __pfx_blkdev_release+0x10/0x10
[ 105.555114][ T6570] blkdev_release+0x15/0x20
[ 105.555126][ T6570] __fput+0x3ff/0xb70
[ 105.555137][ T6570] task_work_run+0x14d/0x240
[ 105.555148][ T6570] ? __pfx_task_work_run+0x10/0x10
[ 105.555158][ T6570] ? do_raw_spin_unlock+0x172/0x230
[ 105.555169][ T6570] do_exit+0xafb/0x2c30
[ 105.555184][ T6570] ? __pfx_futex_wake_mark+0x10/0x10
[ 105.555200][ T6570] ? __pfx_do_exit+0x10/0x10
[ 105.555214][ T6570] ? do_raw_spin_lock+0x12c/0x2b0
[ 105.555223][ T6570] ? get_signal+0x8f5/0x26d0
[ 105.555236][ T6570] ? rcu_is_watching+0x12/0xc0
[ 105.555247][ T6570] do_group_exit+0xd3/0x2a0
[ 105.555262][ T6570] get_signal+0x2673/0x26d0
[ 105.555275][ T6570] ? __pfx_get_signal+0x10/0x10
[ 105.555287][ T6570] ? do_futex+0x122/0x350
[ 105.555300][ T6570] ? __pfx_do_futex+0x10/0x10
[ 105.555313][ T6570] arch_do_signal_or_restart+0x8f/0x7d0
[ 105.555327][ T6570] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 105.555343][ T6570] ? rcu_is_watching+0x12/0xc0
[ 105.555355][ T6570] syscall_exit_to_user_mode+0x150/0x2a0
[ 105.555367][ T6570] do_syscall_64+0xda/0x260
[ 105.555379][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.555390][ T6570] RIP: 0033:0x7f62ebd8e969
[ 105.555398][ T6570] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 105.555402][ T6570] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 105.555412][ T6570] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 105.555418][ T6570] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 105.555424][ T6570] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 105.555429][ T6570] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 105.555435][ T6570] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 105.555444][ T6570]
[ 105.597289][ T6572] BUG: Bad page state in process syz.0.37 pfn:51601
[ 105.688650][ T6572] page does not match folio
[ 105.690554][ T6572] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51601
[ 105.694077][ T6572] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 105.696506][ T6572] raw: 00fff00000000000 ffffea0001458000 00000000ffffffff ffffffffffffffff
[ 105.699748][ T6572] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 105.703474][ T6572] page dumped because: nonzero pincount
[ 105.705550][ T6572] page_owner tracks the page as allocated
[ 105.707683][ T6572] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6571, tgid 6571 (syz.0.37), ts 105567533595, free_ts 104709911191
[ 105.715254][ T6572] post_alloc_hook+0x181/0x1b0
[ 105.717230][ T6572] get_page_from_freelist+0x135c/0x3920
[ 105.719532][ T6572] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 105.722037][ T6572] alloc_pages_mpol+0x1fb/0x550
[ 105.724074][ T6572] folio_alloc_noprof+0x20/0x2d0
[ 105.726173][ T6572] filemap_alloc_folio_noprof+0x3a1/0x470
[ 105.728452][ T6572] page_cache_ra_order+0x4c0/0xd00
[ 105.730640][ T6572] filemap_fault+0x1a5e/0x2740
[ 105.732582][ T6572] __do_fault+0x10a/0x490
[ 105.734350][ T6572] do_pte_missing+0x1a6/0x3fb0
[ 105.736367][ T6572] __handle_mm_fault+0x103d/0x2a40
[ 105.738427][ T6572] handle_mm_fault+0x3fe/0xad0
[ 105.740347][ T6572] do_user_addr_fault+0x60c/0x1370
[ 105.742528][ T6572] exc_page_fault+0x5c/0xc0
[ 105.744352][ T6572] asm_exc_page_fault+0x26/0x30
[ 105.746289][ T6572] page last free pid 6566 tgid 6565 stack trace:
[ 105.748875][ T6572] free_unref_folios+0x999/0x1630
[ 105.750992][ T6572] folios_put_refs+0x56f/0x740
[ 105.752967][ T6572] truncate_inode_pages_range+0x311/0xe30
[ 105.755326][ T6572] blkdev_flush_mapping+0xe9/0x280
[ 105.757378][ T6572] blkdev_put_whole+0xc4/0xf0
[ 105.759401][ T6572] bdev_release+0x47e/0x6d0
[ 105.761406][ T6572] blkdev_release+0x15/0x20
[ 105.763254][ T6572] __fput+0x3ff/0xb70
[ 105.764859][ T6572] task_work_run+0x14d/0x240
[ 105.766707][ T6572] do_exit+0xafb/0x2c30
[ 105.768404][ T6572] do_group_exit+0xd3/0x2a0
[ 105.770348][ T6572] get_signal+0x2673/0x26d0
[ 105.772244][ T6572] arch_do_signal_or_restart+0x8f/0x7d0
[ 105.774468][ T6572] syscall_exit_to_user_mode+0x150/0x2a0
[ 105.776711][ T6572] do_syscall_64+0xda/0x260
[ 105.778549][ T6572] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.781254][ T6572] Modules linked in:
[ 105.782954][ T6572] CPU: 1 UID: 0 PID: 6572 Comm: syz.0.37 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 105.782980][ T6572] Tainted: [B]=BAD_PAGE
[ 105.782985][ T6572] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 105.782995][ T6572] Call Trace:
[ 105.783000][ T6572]
[ 105.783006][ T6572] dump_stack_lvl+0x16c/0x1f0
[ 105.783027][ T6572] bad_page+0xb3/0x1f0
[ 105.783044][ T6572] ? __pfx_bad_page+0x10/0x10
[ 105.783061][ T6572] ? __mem_cgroup_uncharge+0xda/0x130
[ 105.783087][ T6572] free_tail_page_prepare+0x44f/0x5b0
[ 105.783108][ T6572] __free_frozen_pages+0x96a/0xff0
[ 105.783131][ T6572] __folio_put+0x329/0x450
[ 105.783148][ T6572] ? __pfx___folio_put+0x10/0x10
[ 105.783166][ T6572] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 105.783184][ T6572] ? rcu_is_watching+0x12/0xc0
[ 105.783202][ T6572] ? lock_release+0x201/0x2f0
[ 105.783226][ T6572] filemap_free_folio+0x132/0x170
[ 105.783243][ T6572] delete_from_page_cache_batch+0x741/0x9b0
[ 105.783263][ T6572] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 105.783282][ T6572] ? __pfx_workingset_update_node+0x10/0x10
[ 105.783299][ T6572] ? xas_move_index+0xb0/0x110
[ 105.783318][ T6572] truncate_inode_pages_range+0x279/0xe30
[ 105.783341][ T6572] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 105.783378][ T6572] ? __pfx_down_write+0x10/0x10
[ 105.783398][ T6572] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 105.783423][ T6572] ? __pfx_has_bh_in_lru+0x10/0x10
[ 105.783445][ T6572] blkdev_flush_mapping+0xe9/0x280
[ 105.783463][ T6572] ? filemap_check_errors+0xa9/0x160
[ 105.783487][ T6572] blkdev_put_whole+0xc4/0xf0
[ 105.783504][ T6572] bdev_release+0x47e/0x6d0
[ 105.783524][ T6572] ? __pfx_blkdev_release+0x10/0x10
[ 105.783543][ T6572] blkdev_release+0x15/0x20
[ 105.783561][ T6572] __fput+0x3ff/0xb70
[ 105.783581][ T6572] task_work_run+0x14d/0x240
[ 105.783598][ T6572] ? __pfx_task_work_run+0x10/0x10
[ 105.783614][ T6572] ? do_raw_spin_unlock+0x172/0x230
[ 105.783632][ T6572] do_exit+0xafb/0x2c30
[ 105.783654][ T6572] ? __pfx_futex_wake_mark+0x10/0x10
[ 105.783679][ T6572] ? __pfx_do_exit+0x10/0x10
[ 105.783701][ T6572] ? do_raw_spin_lock+0x12c/0x2b0
[ 105.783716][ T6572] ? get_signal+0x8f5/0x26d0
[ 105.783734][ T6572] ? rcu_is_watching+0x12/0xc0
[ 105.783753][ T6572] do_group_exit+0xd3/0x2a0
[ 105.783776][ T6572] get_signal+0x2673/0x26d0
[ 105.783805][ T6572] ? __pfx_get_signal+0x10/0x10
[ 105.783823][ T6572] ? do_futex+0x122/0x350
[ 105.783844][ T6572] ? __pfx_do_futex+0x10/0x10
[ 105.783893][ T6572] arch_do_signal_or_restart+0x8f/0x7d0
[ 105.783917][ T6572] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 105.783942][ T6572] ? madvise_unlock+0xc6/0x190
[ 105.783961][ T6572] syscall_exit_to_user_mode+0x150/0x2a0
[ 105.783981][ T6572] do_syscall_64+0xda/0x260
[ 105.784000][ T6572] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.784017][ T6572] RIP: 0033:0x7f62ebd8e969
[ 105.784029][ T6572] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 105.784036][ T6572] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 105.784051][ T6572] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 105.784062][ T6572] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 105.784078][ T6572] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 105.784087][ T6572] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 105.784097][ T6572] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 105.784111][ T6572]
[ 105.784140][ T6572] BUG: Bad page state in process syz.0.37 pfn:51600
[ 105.905979][ T6572] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51600
[ 105.908532][ T6572] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 105.911063][ T6572] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 105.913679][ T6572] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 105.916220][ T6572] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 105.918733][ T6572] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 105.921368][ T6572] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 105.923888][ T6572] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 105.926461][ T6572] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 105.929062][ T6572] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 105.931309][ T6572] page_owner tracks the page as allocated
[ 105.933038][ T6572] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6571, tgid 6571 (syz.0.37), ts 105567533595, free_ts 104709911191
[ 105.939121][ T6572] post_alloc_hook+0x181/0x1b0
[ 105.940706][ T6572] get_page_from_freelist+0x135c/0x3920
[ 105.942468][ T6572] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 105.944441][ T6572] alloc_pages_mpol+0x1fb/0x550
[ 105.946063][ T6572] folio_alloc_noprof+0x20/0x2d0
[ 105.947734][ T6572] filemap_alloc_folio_noprof+0x3a1/0x470
[ 105.949605][ T6572] page_cache_ra_order+0x4c0/0xd00
[ 105.951541][ T6572] filemap_fault+0x1a5e/0x2740
[ 105.953205][ T6572] __do_fault+0x10a/0x490
[ 105.954579][ T6572] do_pte_missing+0x1a6/0x3fb0
[ 105.956208][ T6572] __handle_mm_fault+0x103d/0x2a40
[ 105.957865][ T6572] handle_mm_fault+0x3fe/0xad0
[ 105.959380][ T6572] do_user_addr_fault+0x60c/0x1370
[ 105.961220][ T6572] exc_page_fault+0x5c/0xc0
[ 105.962997][ T6572] asm_exc_page_fault+0x26/0x30
[ 105.964948][ T6572] page last free pid 6566 tgid 6565 stack trace:
[ 105.967381][ T6572] free_unref_folios+0x999/0x1630
[ 105.969342][ T6572] folios_put_refs+0x56f/0x740
[ 105.971319][ T6572] truncate_inode_pages_range+0x311/0xe30
[ 105.973531][ T6572] blkdev_flush_mapping+0xe9/0x280
[ 105.975536][ T6572] blkdev_put_whole+0xc4/0xf0
[ 105.977367][ T6572] bdev_release+0x47e/0x6d0
[ 105.979113][ T6572] blkdev_release+0x15/0x20
[ 105.980908][ T6572] __fput+0x3ff/0xb70
[ 105.982477][ T6572] task_work_run+0x14d/0x240
[ 105.984263][ T6572] do_exit+0xafb/0x2c30
[ 105.985763][ T6572] do_group_exit+0xd3/0x2a0
[ 105.987216][ T6572] get_signal+0x2673/0x26d0
[ 105.988607][ T6572] arch_do_signal_or_restart+0x8f/0x7d0
[ 105.990550][ T6572] syscall_exit_to_user_mode+0x150/0x2a0
[ 105.992317][ T6572] do_syscall_64+0xda/0x260
[ 105.993700][ T6572] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.995513][ T6572] Modules linked in:
[ 105.996793][ T6572] CPU: 1 UID: 0 PID: 6572 Comm: syz.0.37 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 105.996809][ T6572] Tainted: [B]=BAD_PAGE
[ 105.996812][ T6572] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 105.996818][ T6572] Call Trace:
[ 105.996823][ T6572]
[ 105.996827][ T6572] dump_stack_lvl+0x16c/0x1f0
[ 105.996840][ T6572] bad_page+0xb3/0x1f0
[ 105.996851][ T6572] ? __pfx_bad_page+0x10/0x10
[ 105.996862][ T6572] ? page_bad_reason+0x9d/0x1e0
[ 105.996873][ T6572] __free_frozen_pages+0x76e/0xff0
[ 105.996888][ T6572] __folio_put+0x329/0x450
[ 105.996899][ T6572] ? __pfx___folio_put+0x10/0x10
[ 105.996909][ T6572] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 105.996921][ T6572] ? rcu_is_watching+0x12/0xc0
[ 105.996933][ T6572] ? lock_release+0x201/0x2f0
[ 105.996948][ T6572] filemap_free_folio+0x132/0x170
[ 105.996959][ T6572] delete_from_page_cache_batch+0x741/0x9b0
[ 105.996971][ T6572] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 105.996983][ T6572] ? __pfx_workingset_update_node+0x10/0x10
[ 105.996994][ T6572] ? xas_move_index+0xb0/0x110
[ 105.997006][ T6572] truncate_inode_pages_range+0x279/0xe30
[ 105.997020][ T6572] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 105.997043][ T6572] ? __pfx_down_write+0x10/0x10
[ 105.997056][ T6572] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 105.997079][ T6572] ? __pfx_has_bh_in_lru+0x10/0x10
[ 105.997093][ T6572] blkdev_flush_mapping+0xe9/0x280
[ 105.997105][ T6572] ? filemap_check_errors+0xa9/0x160
[ 105.997120][ T6572] blkdev_put_whole+0xc4/0xf0
[ 105.997131][ T6572] bdev_release+0x47e/0x6d0
[ 105.997143][ T6572] ? __pfx_blkdev_release+0x10/0x10
[ 105.997155][ T6572] blkdev_release+0x15/0x20
[ 105.997167][ T6572] __fput+0x3ff/0xb70
[ 105.997179][ T6572] task_work_run+0x14d/0x240
[ 105.997190][ T6572] ? __pfx_task_work_run+0x10/0x10
[ 105.997200][ T6572] ? do_raw_spin_unlock+0x172/0x230
[ 105.997210][ T6572] do_exit+0xafb/0x2c30
[ 105.997225][ T6572] ? __pfx_futex_wake_mark+0x10/0x10
[ 105.997241][ T6572] ? __pfx_do_exit+0x10/0x10
[ 105.997255][ T6572] ? do_raw_spin_lock+0x12c/0x2b0
[ 105.997265][ T6572] ? get_signal+0x8f5/0x26d0
[ 105.997276][ T6572] ? rcu_is_watching+0x12/0xc0
[ 105.997287][ T6572] do_group_exit+0xd3/0x2a0
[ 105.997302][ T6572] get_signal+0x2673/0x26d0
[ 105.997316][ T6572] ? __pfx_get_signal+0x10/0x10
[ 105.997328][ T6572] ? do_futex+0x122/0x350
[ 105.997340][ T6572] ? __pfx_do_futex+0x10/0x10
[ 105.997353][ T6572] arch_do_signal_or_restart+0x8f/0x7d0
[ 105.997368][ T6572] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 105.997383][ T6572] ? madvise_unlock+0xc6/0x190
[ 105.997394][ T6572] syscall_exit_to_user_mode+0x150/0x2a0
[ 105.997407][ T6572] do_syscall_64+0xda/0x260
[ 105.997418][ T6572] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.997428][ T6572] RIP: 0033:0x7f62ebd8e969
[ 105.997436][ T6572] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 105.997440][ T6572] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 105.997450][ T6572] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 105.997456][ T6572] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 105.997462][ T6572] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 105.997468][ T6572] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 105.997474][ T6572] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 105.997482][ T6572]
[ 106.037796][ T6573] BUG: Bad page state in process syz.0.38 pfn:51c01
[ 106.121201][ T6573] page does not match folio
[ 106.122730][ T6573] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51c01
[ 106.126217][ T6573] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 106.128437][ T6573] raw: 00fff00000000000 ffffea0001470000 00000000ffffffff ffffffffffffffff
[ 106.131498][ T6573] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 106.134334][ T6573] page dumped because: nonzero pincount
[ 106.136378][ T6573] page_owner tracks the page as allocated
[ 106.138301][ T6573] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6573, tgid 6573 (syz.0.38), ts 106006964284, free_ts 0
[ 106.144291][ T6573] post_alloc_hook+0x181/0x1b0
[ 106.145754][ T6573] get_page_from_freelist+0x135c/0x3920
[ 106.147415][ T6573] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 106.149646][ T6573] alloc_pages_mpol+0x1fb/0x550
[ 106.151601][ T6573] folio_alloc_noprof+0x20/0x2d0
[ 106.153488][ T6573] filemap_alloc_folio_noprof+0x3a1/0x470
[ 106.155224][ T6573] page_cache_ra_order+0x4c0/0xd00
[ 106.156992][ T6573] filemap_fault+0x1a5e/0x2740
[ 106.158884][ T6573] __do_fault+0x10a/0x490
[ 106.160433][ T6573] do_pte_missing+0x1a6/0x3fb0
[ 106.161934][ T6573] __handle_mm_fault+0x103d/0x2a40
[ 106.163429][ T6573] handle_mm_fault+0x3fe/0xad0
[ 106.164872][ T6573] do_user_addr_fault+0x60c/0x1370
[ 106.166568][ T6573] exc_page_fault+0x5c/0xc0
[ 106.168376][ T6573] asm_exc_page_fault+0x26/0x30
[ 106.170227][ T6573] page_owner free stack trace missing
[ 106.172086][ T6573] Modules linked in:
[ 106.173241][ T6573] CPU: 0 UID: 0 PID: 6573 Comm: syz.0.38 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 106.173257][ T6573] Tainted: [B]=BAD_PAGE
[ 106.173260][ T6573] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 106.173267][ T6573] Call Trace:
[ 106.173271][ T6573]
[ 106.173274][ T6573] dump_stack_lvl+0x16c/0x1f0
[ 106.173288][ T6573] bad_page+0xb3/0x1f0
[ 106.173299][ T6573] ? __pfx_bad_page+0x10/0x10
[ 106.173309][ T6573] ? __mem_cgroup_uncharge+0xda/0x130
[ 106.173321][ T6573] free_tail_page_prepare+0x44f/0x5b0
[ 106.173335][ T6573] __free_frozen_pages+0x96a/0xff0
[ 106.173349][ T6573] __folio_put+0x329/0x450
[ 106.173360][ T6573] ? __pfx___folio_put+0x10/0x10
[ 106.173371][ T6573] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 106.173382][ T6573] ? rcu_is_watching+0x12/0xc0
[ 106.173394][ T6573] ? lock_release+0x201/0x2f0
[ 106.173409][ T6573] filemap_free_folio+0x132/0x170
[ 106.173420][ T6573] delete_from_page_cache_batch+0x741/0x9b0
[ 106.173432][ T6573] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 106.173444][ T6573] ? __pfx_workingset_update_node+0x10/0x10
[ 106.173455][ T6573] ? xas_move_index+0xb0/0x110
[ 106.173467][ T6573] truncate_inode_pages_range+0x279/0xe30
[ 106.173482][ T6573] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 106.173504][ T6573] ? __pfx_down_write+0x10/0x10
[ 106.173517][ T6573] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 106.173533][ T6573] ? __pfx_has_bh_in_lru+0x10/0x10
[ 106.173547][ T6573] blkdev_flush_mapping+0xe9/0x280
[ 106.173559][ T6573] blkdev_put_whole+0xc4/0xf0
[ 106.173569][ T6573] bdev_release+0x47e/0x6d0
[ 106.173582][ T6573] ? __pfx_blkdev_release+0x10/0x10
[ 106.173594][ T6573] blkdev_release+0x15/0x20
[ 106.173606][ T6573] __fput+0x3ff/0xb70
[ 106.173617][ T6573] task_work_run+0x14d/0x240
[ 106.173627][ T6573] ? __pfx_task_work_run+0x10/0x10
[ 106.173637][ T6573] ? do_raw_spin_unlock+0x172/0x230
[ 106.173648][ T6573] do_exit+0xafb/0x2c30
[ 106.173663][ T6573] ? __pfx_do_exit+0x10/0x10
[ 106.173677][ T6573] ? preempt_schedule_thunk+0x16/0x30
[ 106.173688][ T6573] do_group_exit+0xd3/0x2a0
[ 106.173702][ T6573] __x64_sys_exit_group+0x3e/0x50
[ 106.173717][ T6573] x64_sys_call+0x1530/0x1730
[ 106.173731][ T6573] do_syscall_64+0xcd/0x260
[ 106.173743][ T6573] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.173753][ T6573] RIP: 0033:0x7f62ebd8e969
[ 106.173761][ T6573] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 106.173765][ T6573] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 106.173774][ T6573] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 106.173780][ T6573] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 106.173786][ T6573] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 106.173793][ T6573] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000016
[ 106.173798][ T6573] R13: 00000000000927c0 R14: 0000000000019be3 R15: 00007ffdd5f716a0
[ 106.173807][ T6573]
[ 106.173821][ T6573] BUG: Bad page state in process syz.0.38 pfn:51c00
[ 106.276321][ T6573] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51c00
[ 106.279459][ T6573] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 106.282317][ T6573] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 106.285407][ T6573] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 106.288246][ T6573] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 106.291500][ T6573] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 106.294471][ T6573] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 106.297565][ T6573] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 106.300335][ T6573] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 106.303593][ T6573] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 106.306256][ T6573] page_owner tracks the page as allocated
[ 106.308336][ T6573] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6573, tgid 6573 (syz.0.38), ts 106006964284, free_ts 0
[ 106.315285][ T6573] post_alloc_hook+0x181/0x1b0
[ 106.317103][ T6573] get_page_from_freelist+0x135c/0x3920
[ 106.319184][ T6573] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 106.321512][ T6573] alloc_pages_mpol+0x1fb/0x550
[ 106.323329][ T6573] folio_alloc_noprof+0x20/0x2d0
[ 106.325262][ T6573] filemap_alloc_folio_noprof+0x3a1/0x470
[ 106.327264][ T6573] page_cache_ra_order+0x4c0/0xd00
[ 106.328949][ T6573] filemap_fault+0x1a5e/0x2740
[ 106.330675][ T6573] __do_fault+0x10a/0x490
[ 106.331973][ T6573] do_pte_missing+0x1a6/0x3fb0
[ 106.333494][ T6573] __handle_mm_fault+0x103d/0x2a40
[ 106.335198][ T6573] handle_mm_fault+0x3fe/0xad0
[ 106.336875][ T6573] do_user_addr_fault+0x60c/0x1370
[ 106.338592][ T6573] exc_page_fault+0x5c/0xc0
[ 106.340176][ T6573] asm_exc_page_fault+0x26/0x30
[ 106.341932][ T6573] page_owner free stack trace missing
[ 106.343903][ T6573] Modules linked in:
[ 106.345440][ T6573] CPU: 0 UID: 0 PID: 6573 Comm: syz.0.38 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 106.345464][ T6573] Tainted: [B]=BAD_PAGE
[ 106.345469][ T6573] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 106.345479][ T6573] Call Trace:
[ 106.345484][ T6573]
[ 106.345490][ T6573] dump_stack_lvl+0x16c/0x1f0
[ 106.345509][ T6573] bad_page+0xb3/0x1f0
[ 106.345525][ T6573] ? __pfx_bad_page+0x10/0x10
[ 106.345540][ T6573] ? page_bad_reason+0x9d/0x1e0
[ 106.345556][ T6573] __free_frozen_pages+0x76e/0xff0
[ 106.345578][ T6573] __folio_put+0x329/0x450
[ 106.345594][ T6573] ? __pfx___folio_put+0x10/0x10
[ 106.345610][ T6573] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 106.345627][ T6573] ? rcu_is_watching+0x12/0xc0
[ 106.345644][ T6573] ? lock_release+0x201/0x2f0
[ 106.345665][ T6573] filemap_free_folio+0x132/0x170
[ 106.345681][ T6573] delete_from_page_cache_batch+0x741/0x9b0
[ 106.345699][ T6573] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 106.345716][ T6573] ? __pfx_workingset_update_node+0x10/0x10
[ 106.345732][ T6573] ? xas_move_index+0xb0/0x110
[ 106.345750][ T6573] truncate_inode_pages_range+0x279/0xe30
[ 106.345772][ T6573] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 106.345806][ T6573] ? __pfx_down_write+0x10/0x10
[ 106.345828][ T6573] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 106.345851][ T6573] ? __pfx_has_bh_in_lru+0x10/0x10
[ 106.345871][ T6573] blkdev_flush_mapping+0xe9/0x280
[ 106.345890][ T6573] blkdev_put_whole+0xc4/0xf0
[ 106.345906][ T6573] bdev_release+0x47e/0x6d0
[ 106.345923][ T6573] ? __pfx_blkdev_release+0x10/0x10
[ 106.345941][ T6573] blkdev_release+0x15/0x20
[ 106.345957][ T6573] __fput+0x3ff/0xb70
[ 106.345975][ T6573] task_work_run+0x14d/0x240
[ 106.345990][ T6573] ? __pfx_task_work_run+0x10/0x10
[ 106.346002][ T6573] ? do_raw_spin_unlock+0x172/0x230
[ 106.346013][ T6573] do_exit+0xafb/0x2c30
[ 106.346028][ T6573] ? __pfx_do_exit+0x10/0x10
[ 106.346043][ T6573] ? preempt_schedule_thunk+0x16/0x30
[ 106.346059][ T6573] do_group_exit+0xd3/0x2a0
[ 106.346080][ T6573] __x64_sys_exit_group+0x3e/0x50
[ 106.346101][ T6573] x64_sys_call+0x1530/0x1730
[ 106.346121][ T6573] do_syscall_64+0xcd/0x260
[ 106.346139][ T6573] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.346154][ T6573] RIP: 0033:0x7f62ebd8e969
[ 106.346165][ T6573] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 106.346172][ T6573] RSP: 002b:00007ffdd5f715e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 106.346186][ T6573] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f62ebd8e969
[ 106.346197][ T6573] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 106.346205][ T6573] RBP: 00007ffdd5f7164c R08: 00000006d5f716df R09: 00000000000927c0
[ 106.346215][ T6573] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000016
[ 106.346223][ T6573] R13: 00000000000927c0 R14: 0000000000019be3 R15: 00007ffdd5f716a0
[ 106.346236][ T6573]
[ 106.478542][ T6576] BUG: Bad page state in process syz.0.39 pfn:51e01
[ 106.480735][ T6576] page does not match folio
[ 106.482553][ T6576] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51e01
[ 106.486199][ T6576] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 106.489193][ T6576] raw: 00fff00000000000 ffffea0001478000 00000000ffffffff ffffffffffffffff
[ 106.492421][ T6576] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 106.495169][ T6576] page dumped because: nonzero pincount
[ 106.496903][ T6576] page_owner tracks the page as allocated
[ 106.498981][ T6576] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6575, tgid 6575 (syz.0.39), ts 106449894888, free_ts 106346278661
[ 106.505266][ T6576] post_alloc_hook+0x181/0x1b0
[ 106.507258][ T6576] get_page_from_freelist+0x135c/0x3920
[ 106.509254][ T6576] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 106.511152][ T6576] alloc_pages_mpol+0x1fb/0x550
[ 106.512645][ T6576] folio_alloc_noprof+0x20/0x2d0
[ 106.514179][ T6576] filemap_alloc_folio_noprof+0x3a1/0x470
[ 106.516048][ T6576] page_cache_ra_order+0x4c0/0xd00
[ 106.517594][ T6576] filemap_fault+0x1a5e/0x2740
[ 106.519388][ T6576] __do_fault+0x10a/0x490
[ 106.521144][ T6576] do_pte_missing+0x1a6/0x3fb0
[ 106.522579][ T6576] __handle_mm_fault+0x103d/0x2a40
[ 106.524291][ T6576] handle_mm_fault+0x3fe/0xad0
[ 106.525776][ T6576] do_user_addr_fault+0x60c/0x1370
[ 106.527311][ T6576] exc_page_fault+0x5c/0xc0
[ 106.528994][ T6576] asm_exc_page_fault+0x26/0x30
[ 106.531174][ T6576] page last free pid 6573 tgid 6573 stack trace:
[ 106.533518][ T6576] free_unref_folios+0x999/0x1630
[ 106.535164][ T6576] folios_put_refs+0x56f/0x740
[ 106.537080][ T6576] truncate_inode_pages_range+0x311/0xe30
[ 106.539378][ T6576] blkdev_flush_mapping+0xe9/0x280
[ 106.541875][ T6576] blkdev_put_whole+0xc4/0xf0
[ 106.543735][ T6576] bdev_release+0x47e/0x6d0
[ 106.545557][ T6576] blkdev_release+0x15/0x20
[ 106.547398][ T6576] __fput+0x3ff/0xb70
[ 106.549034][ T6576] task_work_run+0x14d/0x240
[ 106.551329][ T6576] do_exit+0xafb/0x2c30
[ 106.553037][ T6576] do_group_exit+0xd3/0x2a0
[ 106.554954][ T6576] __x64_sys_exit_group+0x3e/0x50
[ 106.557048][ T6576] x64_sys_call+0x1530/0x1730
[ 106.558987][ T6576] do_syscall_64+0xcd/0x260
[ 106.561077][ T6576] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.563443][ T6576] Modules linked in:
[ 106.565052][ T6576] CPU: 3 UID: 0 PID: 6576 Comm: syz.0.39 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 106.565077][ T6576] Tainted: [B]=BAD_PAGE
[ 106.565082][ T6576] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 106.565092][ T6576] Call Trace:
[ 106.565098][ T6576]
[ 106.565105][ T6576] dump_stack_lvl+0x16c/0x1f0
[ 106.565130][ T6576] bad_page+0xb3/0x1f0
[ 106.565147][ T6576] ? __pfx_bad_page+0x10/0x10
[ 106.565164][ T6576] ? __mem_cgroup_uncharge+0xda/0x130
[ 106.565183][ T6576] free_tail_page_prepare+0x44f/0x5b0
[ 106.565204][ T6576] __free_frozen_pages+0x96a/0xff0
[ 106.565227][ T6576] __folio_put+0x329/0x450
[ 106.565243][ T6576] ? __pfx___folio_put+0x10/0x10
[ 106.565260][ T6576] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 106.565278][ T6576] ? rcu_is_watching+0x12/0xc0
[ 106.565295][ T6576] ? lock_release+0x201/0x2f0
[ 106.565318][ T6576] filemap_free_folio+0x132/0x170
[ 106.565335][ T6576] delete_from_page_cache_batch+0x741/0x9b0
[ 106.565356][ T6576] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 106.565374][ T6576] ? __pfx_workingset_update_node+0x10/0x10
[ 106.565390][ T6576] ? xas_move_index+0xb0/0x110
[ 106.565409][ T6576] truncate_inode_pages_range+0x279/0xe30
[ 106.565432][ T6576] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 106.565469][ T6576] ? __pfx_down_write+0x10/0x10
[ 106.565489][ T6576] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 106.565513][ T6576] ? __pfx_has_bh_in_lru+0x10/0x10
[ 106.565535][ T6576] blkdev_flush_mapping+0xe9/0x280
[ 106.565552][ T6576] ? filemap_check_errors+0xa9/0x160
[ 106.565575][ T6576] blkdev_put_whole+0xc4/0xf0
[ 106.565592][ T6576] bdev_release+0x47e/0x6d0
[ 106.565612][ T6576] ? __pfx_blkdev_release+0x10/0x10
[ 106.565630][ T6576] blkdev_release+0x15/0x20
[ 106.565648][ T6576] __fput+0x3ff/0xb70
[ 106.565667][ T6576] task_work_run+0x14d/0x240
[ 106.565684][ T6576] ? __pfx_task_work_run+0x10/0x10
[ 106.565700][ T6576] ? do_raw_spin_unlock+0x172/0x230
[ 106.565718][ T6576] do_exit+0xafb/0x2c30
[ 106.565739][ T6576] ? __pfx_futex_wake_mark+0x10/0x10
[ 106.565765][ T6576] ? __pfx_do_exit+0x10/0x10
[ 106.565786][ T6576] ? do_raw_spin_lock+0x12c/0x2b0
[ 106.565801][ T6576] ? get_signal+0x8f5/0x26d0
[ 106.565824][ T6576] ? rcu_is_watching+0x12/0xc0
[ 106.565843][ T6576] do_group_exit+0xd3/0x2a0
[ 106.565866][ T6576] get_signal+0x2673/0x26d0
[ 106.565888][ T6576] ? __pfx_get_signal+0x10/0x10
[ 106.565907][ T6576] ? do_futex+0x122/0x350
[ 106.565928][ T6576] ? __pfx_do_futex+0x10/0x10
[ 106.565949][ T6576] arch_do_signal_or_restart+0x8f/0x7d0
[ 106.565972][ T6576] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 106.565997][ T6576] ? madvise_unlock+0xc6/0x190
[ 106.566015][ T6576] syscall_exit_to_user_mode+0x150/0x2a0
[ 106.566035][ T6576] do_syscall_64+0xda/0x260
[ 106.566054][ T6576] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.566071][ T6576] RIP: 0033:0x7f62ebd8e969
[ 106.566083][ T6576] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 106.566090][ T6576] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 106.566106][ T6576] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 106.566122][ T6576] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 106.566132][ T6576] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 106.566142][ T6576] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 106.566152][ T6576] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 106.566166][ T6576]
[ 106.566197][ T6576] BUG: Bad page state in process syz.0.39 pfn:51e00
[ 106.704120][ T6576] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51e00
[ 106.706852][ T6576] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 106.710078][ T6576] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 106.713496][ T6576] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 106.716793][ T6576] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 106.720108][ T6576] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 106.723434][ T6576] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 106.726823][ T6576] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 106.730072][ T6576] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 106.733466][ T6576] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 106.736246][ T6576] page_owner tracks the page as allocated
[ 106.738512][ T6576] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6575, tgid 6575 (syz.0.39), ts 106449894888, free_ts 106346278661
[ 106.745872][ T6576] post_alloc_hook+0x181/0x1b0
[ 106.747750][ T6576] get_page_from_freelist+0x135c/0x3920
[ 106.749890][ T6576] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 106.752167][ T6576] alloc_pages_mpol+0x1fb/0x550
[ 106.754111][ T6576] folio_alloc_noprof+0x20/0x2d0
[ 106.756101][ T6576] filemap_alloc_folio_noprof+0x3a1/0x470
[ 106.758288][ T6576] page_cache_ra_order+0x4c0/0xd00
[ 106.760297][ T6576] filemap_fault+0x1a5e/0x2740
[ 106.762243][ T6576] __do_fault+0x10a/0x490
[ 106.763974][ T6576] do_pte_missing+0x1a6/0x3fb0
[ 106.765746][ T6576] __handle_mm_fault+0x103d/0x2a40
[ 106.767257][ T6576] handle_mm_fault+0x3fe/0xad0
[ 106.768675][ T6576] do_user_addr_fault+0x60c/0x1370
[ 106.770192][ T6576] exc_page_fault+0x5c/0xc0
[ 106.771802][ T6576] asm_exc_page_fault+0x26/0x30
[ 106.773744][ T6576] page last free pid 6573 tgid 6573 stack trace:
[ 106.776311][ T6576] free_unref_folios+0x999/0x1630
[ 106.778390][ T6576] folios_put_refs+0x56f/0x740
[ 106.780341][ T6576] truncate_inode_pages_range+0x311/0xe30
[ 106.782674][ T6576] blkdev_flush_mapping+0xe9/0x280
[ 106.784810][ T6576] blkdev_put_whole+0xc4/0xf0
[ 106.786749][ T6576] bdev_release+0x47e/0x6d0
[ 106.788260][ T6576] blkdev_release+0x15/0x20
[ 106.789623][ T6576] __fput+0x3ff/0xb70
[ 106.791162][ T6576] task_work_run+0x14d/0x240
[ 106.793025][ T6576] do_exit+0xafb/0x2c30
[ 106.794728][ T6576] do_group_exit+0xd3/0x2a0
[ 106.796599][ T6576] __x64_sys_exit_group+0x3e/0x50
[ 106.798654][ T6576] x64_sys_call+0x1530/0x1730
[ 106.801378][ T6576] do_syscall_64+0xcd/0x260
[ 106.803291][ T6576] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.805240][ T6576] Modules linked in:
[ 106.806416][ T6576] CPU: 1 UID: 0 PID: 6576 Comm: syz.0.39 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 106.806431][ T6576] Tainted: [B]=BAD_PAGE
[ 106.806435][ T6576] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 106.806441][ T6576] Call Trace:
[ 106.806445][ T6576]
[ 106.806450][ T6576] dump_stack_lvl+0x16c/0x1f0
[ 106.806464][ T6576] bad_page+0xb3/0x1f0
[ 106.806475][ T6576] ? __pfx_bad_page+0x10/0x10
[ 106.806485][ T6576] ? page_bad_reason+0x9d/0x1e0
[ 106.806496][ T6576] __free_frozen_pages+0x76e/0xff0
[ 106.806511][ T6576] __folio_put+0x329/0x450
[ 106.806522][ T6576] ? __pfx___folio_put+0x10/0x10
[ 106.806533][ T6576] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 106.806544][ T6576] ? rcu_is_watching+0x12/0xc0
[ 106.806556][ T6576] ? lock_release+0x201/0x2f0
[ 106.806572][ T6576] filemap_free_folio+0x132/0x170
[ 106.806582][ T6576] delete_from_page_cache_batch+0x741/0x9b0
[ 106.806595][ T6576] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 106.806606][ T6576] ? __pfx_workingset_update_node+0x10/0x10
[ 106.806617][ T6576] ? xas_move_index+0xb0/0x110
[ 106.806629][ T6576] truncate_inode_pages_range+0x279/0xe30
[ 106.806645][ T6576] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 106.806667][ T6576] ? __pfx_down_write+0x10/0x10
[ 106.806680][ T6576] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 106.806696][ T6576] ? __pfx_has_bh_in_lru+0x10/0x10
[ 106.806711][ T6576] blkdev_flush_mapping+0xe9/0x280
[ 106.806723][ T6576] ? filemap_check_errors+0xa9/0x160
[ 106.806738][ T6576] blkdev_put_whole+0xc4/0xf0
[ 106.806749][ T6576] bdev_release+0x47e/0x6d0
[ 106.806761][ T6576] ? __pfx_blkdev_release+0x10/0x10
[ 106.806774][ T6576] blkdev_release+0x15/0x20
[ 106.806785][ T6576] __fput+0x3ff/0xb70
[ 106.806797][ T6576] task_work_run+0x14d/0x240
[ 106.806808][ T6576] ? __pfx_task_work_run+0x10/0x10
[ 106.806817][ T6576] ? do_raw_spin_unlock+0x172/0x230
[ 106.806828][ T6576] do_exit+0xafb/0x2c30
[ 106.806842][ T6576] ? __pfx_futex_wake_mark+0x10/0x10
[ 106.806858][ T6576] ? __pfx_do_exit+0x10/0x10
[ 106.806872][ T6576] ? do_raw_spin_lock+0x12c/0x2b0
[ 106.806882][ T6576] ? get_signal+0x8f5/0x26d0
[ 106.806893][ T6576] ? rcu_is_watching+0x12/0xc0
[ 106.806904][ T6576] do_group_exit+0xd3/0x2a0
[ 106.806919][ T6576] get_signal+0x2673/0x26d0
[ 106.806932][ T6576] ? __pfx_get_signal+0x10/0x10
[ 106.806944][ T6576] ? do_futex+0x122/0x350
[ 106.806957][ T6576] ? __pfx_do_futex+0x10/0x10
[ 106.806970][ T6576] arch_do_signal_or_restart+0x8f/0x7d0
[ 106.806985][ T6576] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 106.807001][ T6576] ? madvise_unlock+0xc6/0x190
[ 106.807013][ T6576] syscall_exit_to_user_mode+0x150/0x2a0
[ 106.807025][ T6576] do_syscall_64+0xda/0x260
[ 106.807037][ T6576] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.807047][ T6576] RIP: 0033:0x7f62ebd8e969
[ 106.807055][ T6576] Code: Unable to access opcode bytes at 0x7f62ebd8e93f.
[ 106.807059][ T6576] RSP: 002b:00007f62eccc30e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 106.807069][ T6576] RAX: fffffffffffffe00 RBX: 00007f62ebfb5fa8 RCX: 00007f62ebd8e969
[ 106.807075][ T6576] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f62ebfb5fa8
[ 106.807081][ T6576] RBP: 00007f62ebfb5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 106.807087][ T6576] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f62ebfb5fac
[ 106.807092][ T6576] R13: 0000000000000000 R14: 00007ffdd5f711a0 R15: 00007ffdd5f71288
[ 106.807101][ T6576]
[ 106.938822][ T6578] BUG: Bad page state in process syz.0.40 pfn:50801
[ 106.940923][ T6578] page does not match folio
[ 106.942275][ T6578] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50801
[ 106.945535][ T6578] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 106.947825][ T6578] raw: 00fff00000000000 ffffea0001420000 00000000ffffffff ffffffffffffffff
[ 106.950394][ T6578] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 106.953070][ T6578] page dumped because: nonzero pincount
[ 106.955103][ T6578] page_owner tracks the page as allocated
[ 106.957026][ T6578] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6577, tgid 6577 (syz.0.40), ts 106921491049, free_ts 106807183276
[ 106.964215][ T6578] post_alloc_hook+0x181/0x1b0
[ 106.966047][ T6578] get_page_from_freelist+0x135c/0x3920
[ 106.967972][ T6578] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 106.969918][ T6578] alloc_pages_mpol+0x1fb/0x550
[ 106.971531][ T6578] folio_alloc_noprof+0x20/0x2d0
[ 106.973068][ T6578] filemap_alloc_folio_noprof+0x3a1/0x470
[ 106.974773][ T6578] page_cache_ra_order+0x4c0/0xd00
[ 106.976430][ T6578] filemap_fault+0x1a5e/0x2740
[ 106.977914][ T6578] __do_fault+0x10a/0x490
[ 106.979362][ T6578] do_pte_missing+0x1a6/0x3fb0
[ 106.983714][ T6578] __handle_mm_fault+0x103d/0x2a40
[ 106.985374][ T6578] handle_mm_fault+0x3fe/0xad0
[ 106.986889][ T6578] do_user_addr_fault+0x60c/0x1370
[ 106.988514][ T6578] exc_page_fault+0x5c/0xc0
[ 106.989927][ T6578] asm_exc_page_fault+0x26/0x30
[ 106.991505][ T6578] page last free pid 6576 tgid 6575 stack trace:
[ 106.993425][ T6578] free_unref_folios+0x999/0x1630
[ 106.994973][ T6578] folios_put_refs+0x56f/0x740
[ 106.996406][ T6578] truncate_inode_pages_range+0x311/0xe30
[ 106.998109][ T6578] blkdev_flush_mapping+0xe9/0x280
[ 106.999647][ T6578] blkdev_put_whole+0xc4/0xf0
[ 107.001184][ T6578] bdev_release+0x47e/0x6d0
[ 107.002533][ T6578] blkdev_release+0x15/0x20
[ 107.003947][ T6578] __fput+0x3ff/0xb70
[ 107.005184][ T6578] task_work_run+0x14d/0x240
[ 107.006574][ T6578] do_exit+0xafb/0x2c30
[ 107.007828][ T6578] do_group_exit+0xd3/0x2a0
[ 107.009269][ T6578] get_signal+0x2673/0x26d0
[ 107.010816][ T6578] arch_do_signal_or_restart+0x8f/0x7d0
[ 107.012607][ T6578] syscall_exit_to_user_mode+0x150/0x2a0
[ 107.014329][ T6578] do_syscall_64+0xda/0x260
[ 107.015721][ T6578] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 107.017534][ T6578] Modules linked in:
[ 107.018720][ T6578] CPU: 3 UID: 0 PID: 6578 Comm: syz.0.40 Tainted: G B 6.15.0-rc4-syzkaller-gebd297a2affa-dirty #0 PREEMPT(full)
[ 107.018736][ T6578] Tainted: [B]=BAD_PAGE
[ 107.018739][ T6578] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 107.018746][ T6578] Call Trace:
[ 107.018751][ T6578]
[ 107.018756][ T6578] dump_stack_lvl+0x16c/0x1f0
[ 107.018769][ T6578] bad_page+0xb3/0x1f0
[ 107.018780][ T6578] ? __pfx_bad_page+0x10/0x10