[ 86.756203][ T1464] cfg80211: failed to load regulatory.db
Warning: Permanently added '[localhost]:21356' (ED25519) to the list of known hosts.
2025/10/02 10:37:48 parsed 1 programs
[ 94.517427][ T40] audit: type=1400 audit(1759401471.042:115): avc: denied { unlink } for pid=6180 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 95.753173][ T6180] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 97.891724][ T5986] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 97.896323][ T5986] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 97.900160][ T5986] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 97.904675][ T5986] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 97.908693][ T5986] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 99.384756][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 99.387780][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 99.410071][ T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 99.414037][ T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 99.693966][ T6246] chnl_net:caif_netlink_parms(): no params data found
[ 99.843278][ T6246] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.846851][ T6246] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.849294][ T6246] bridge_slave_0: entered allmulticast mode
[ 99.852064][ T6246] bridge_slave_0: entered promiscuous mode
[ 99.875938][ T6246] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.879090][ T6246] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.881979][ T6246] bridge_slave_1: entered allmulticast mode
[ 99.885925][ T6246] bridge_slave_1: entered promiscuous mode
[ 99.941129][ T6246] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 99.963288][ T6246] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 100.021547][ T6246] team0: Port device team_slave_0 added
[ 100.028032][ T6246] team0: Port device team_slave_1 added
[ 100.097204][ T6246] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 100.100026][ T6246] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.111095][ T6246] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 100.119834][ T6246] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 100.122937][ T6246] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.132653][ T6246] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 100.210060][ T6246] hsr_slave_0: entered promiscuous mode
[ 100.213242][ T6246] hsr_slave_1: entered promiscuous mode
[ 100.821525][ T6246] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 100.827716][ T6246] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 100.833366][ T6246] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 100.842702][ T6246] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 100.891705][ T6246] 8021q: adding VLAN 0 to HW filter on device bond0
[ 100.908689][ T6246] 8021q: adding VLAN 0 to HW filter on device team0
[ 100.916621][ T1142] bridge0: port 1(bridge_slave_0) entered blocking state
[ 100.919541][ T1142] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 100.932077][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 100.935476][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 101.095256][ T6246] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 101.125749][ T6246] veth0_vlan: entered promiscuous mode
[ 101.137515][ T6246] veth1_vlan: entered promiscuous mode
[ 101.164095][ T6246] veth0_macvtap: entered promiscuous mode
[ 101.173266][ T6246] veth1_macvtap: entered promiscuous mode
[ 101.190087][ T6246] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 101.203688][ T6246] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 101.216629][ T80] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.220208][ T80] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.224105][ T80] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.228959][ T80] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 101.312329][ T80] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 101.376526][ T40] audit: type=1401 audit(1759401477.902:116): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 101.386856][ T80] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 101.470966][ T80] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 101.562935][ T80] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/10/02 10:37:58 executed programs: 0
[ 102.096635][ T62] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 102.101013][ T62] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 102.105045][ T62] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 102.109885][ T62] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 102.112841][ T62] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 102.266145][ T6335] chnl_net:caif_netlink_parms(): no params data found
[ 102.393671][ T6335] bridge0: port 1(bridge_slave_0) entered blocking state
[ 102.397263][ T6335] bridge0: port 1(bridge_slave_0) entered disabled state
[ 102.400250][ T6335] bridge_slave_0: entered allmulticast mode
[ 102.403850][ T6335] bridge_slave_0: entered promiscuous mode
[ 102.408483][ T6335] bridge0: port 2(bridge_slave_1) entered blocking state
[ 102.411480][ T6335] bridge0: port 2(bridge_slave_1) entered disabled state
[ 102.415198][ T6335] bridge_slave_1: entered allmulticast mode
[ 102.418833][ T6335] bridge_slave_1: entered promiscuous mode
[ 102.484194][ T6335] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 102.495435][ T6335] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 102.555300][ T6335] team0: Port device team_slave_0 added
[ 102.564005][ T6335] team0: Port device team_slave_1 added
[ 102.620198][ T6335] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 102.623198][ T6335] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 102.636659][ T6335] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 102.642675][ T6335] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 102.645489][ T6335] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 102.656664][ T6335] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 102.719083][ T6335] hsr_slave_0: entered promiscuous mode
[ 102.722306][ T6335] hsr_slave_1: entered promiscuous mode
[ 102.727767][ T6335] debugfs: 'hsr0' already exists in 'hsr'
[ 102.730475][ T6335] Cannot create hsr debugfs directory
[ 104.204566][ T62] Bluetooth: hci0: command tx timeout
[ 104.660427][ T80] bridge_slave_1: left allmulticast mode
[ 104.662242][ T80] bridge_slave_1: left promiscuous mode
[ 104.664636][ T80] bridge0: port 2(bridge_slave_1) entered disabled state
[ 104.670733][ T80] bridge_slave_0: left allmulticast mode
[ 104.673116][ T80] bridge_slave_0: left promiscuous mode
[ 104.675727][ T80] bridge0: port 1(bridge_slave_0) entered disabled state
[ 104.939444][ T80] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 104.943518][ T80] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 104.947628][ T80] bond0 (unregistering): Released all slaves
[ 105.079105][ T80] hsr_slave_0: left promiscuous mode
[ 105.082149][ T80] hsr_slave_1: left promiscuous mode
[ 105.085802][ T80] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 105.088698][ T80] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 105.091649][ T80] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 105.094018][ T80] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 105.114191][ T80] veth1_macvtap: left promiscuous mode
[ 105.120477][ T80] veth0_macvtap: left promiscuous mode
[ 105.123007][ T80] veth1_vlan: left promiscuous mode
[ 105.126782][ T80] veth0_vlan: left promiscuous mode
[ 105.658821][ T80] team0 (unregistering): Port device team_slave_1 removed
[ 105.719888][ T80] team0 (unregistering): Port device team_slave_0 removed
[ 106.274851][ T62] Bluetooth: hci0: command tx timeout
[ 106.546335][ T6335] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 106.553752][ T6335] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 106.564090][ T6335] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 106.572625][ T6335] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 106.632158][ T6335] 8021q: adding VLAN 0 to HW filter on device bond0
[ 106.648082][ T6335] 8021q: adding VLAN 0 to HW filter on device team0
[ 106.658659][ T1142] bridge0: port 1(bridge_slave_0) entered blocking state
[ 106.661970][ T1142] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 106.673377][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state
[ 106.677365][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 106.871050][ T6335] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 106.908157][ T6335] veth0_vlan: entered promiscuous mode
[ 106.916612][ T6335] veth1_vlan: entered promiscuous mode
[ 106.950066][ T6335] veth0_macvtap: entered promiscuous mode
[ 106.955418][ T6335] veth1_macvtap: entered promiscuous mode
[ 106.969674][ T6335] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 106.983725][ T6335] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 106.999433][ T60] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.004681][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.008415][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.015301][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 107.061582][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.064983][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 107.081056][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 107.084934][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/10/02 10:38:03 executed programs: 2
[ 107.111673][ T40] audit: type=1400 audit(1759401483.632:117): avc: denied { prog_load } for pid=6389 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 107.121599][ T40] audit: type=1400 audit(1759401483.632:118): avc: denied { bpf } for pid=6389 comm="syz.0.16" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 107.122792][ T6390] BUG: Bad page state in process syz.0.16 pfn:50b6a
[ 107.128400][ T40] audit: type=1400 audit(1759401483.632:119): avc: denied { perfmon } for pid=6389 comm="syz.0.16" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 107.130978][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x50b6a
[ 107.145660][ T40] audit: type=1400 audit(1759401483.632:120): avc: denied { prog_run } for pid=6389 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 107.148538][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 107.156542][ T40] audit: type=1400 audit(1759401483.682:121): avc: denied { read } for pid=5335 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 107.159276][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 107.169830][ T40] audit: type=1400 audit(1759401483.682:122): avc: denied { search } for pid=5335 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 107.173305][ T6390] raw: ffff888000000000 3fffffffffffffff 00000000ffffffff 0000000000000000
[ 107.182978][ T40] audit: type=1400 audit(1759401483.682:123): avc: denied { search } for pid=5335 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 107.187157][ T6390] page dumped because: page_pool leak
[ 107.187173][ T6390] page_owner tracks the page as allocated
[ 107.187182][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122681840, free_ts 106557446705
[ 107.187211][ T6390] post_alloc_hook+0x1c0/0x230
[ 107.187235][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 107.196607][ T40] audit: type=1400 audit(1759401483.682:124): avc: denied { add_name } for pid=5335 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 107.198576][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 107.201404][ T40] audit: type=1400 audit(1759401483.682:125): avc: denied { create } for pid=5335 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 107.210310][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 107.212365][ T40] audit: type=1400 audit(1759401483.682:126): avc: denied { append open } for pid=5335 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 107.214717][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 107.214745][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 107.214762][ T6390] page_pool_alloc_frag_netmem+0x219/0x9c0
[ 107.256758][ T6390] skb_pp_cow_data+0x584/0xff0
[ 107.258834][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 107.261054][ T6390] do_xdp_generic+0x530/0x1320
[ 107.262903][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 107.264740][ T6390] tun_chr_write_iter+0xdc/0x210
[ 107.266584][ T6390] vfs_write+0x7d3/0x11d0
[ 107.268432][ T6390] ksys_write+0x12a/0x250
[ 107.270317][ T6390] do_syscall_64+0xcd/0x4e0
[ 107.272730][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 107.276214][ T6390] page last free pid 6335 tgid 6335 stack trace:
[ 107.279245][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 107.281426][ T6390] tlb_remove_table_rcu+0x116/0x1a0
[ 107.283517][ T6390] rcu_core+0x79c/0x1530
[ 107.285316][ T6390] handle_softirqs+0x216/0x8e0
[ 107.287488][ T6390] __irq_exit_rcu+0x109/0x170
[ 107.289486][ T6390] irq_exit_rcu+0x9/0x30
[ 107.291582][ T6390] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 107.293630][ T6390] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 107.295730][ T6390] Modules linked in:
[ 107.297404][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Not tainted syzkaller #0 PREEMPT(full)
[ 107.297426][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 107.297437][ T6390] Call Trace:
[ 107.297443][ T6390]
[ 107.297451][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 107.297479][ T6390] bad_page+0xcf/0x220
[ 107.297496][ T6390] ? __pfx_bad_page+0x10/0x10
[ 107.297512][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 107.297534][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 107.297564][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 107.297591][ T6390] page_frag_free+0x27f/0x2e0
[ 107.297608][ T6390] __xdp_return+0x3ab/0xab0
[ 107.297624][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 107.297644][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 107.297673][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 107.297688][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 107.297741][ T6390] do_xdp_generic+0x8e6/0x1320
[ 107.297765][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 107.297783][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 107.297828][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 107.297867][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 107.297894][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 107.297937][ T6390] ? find_held_lock+0x2b/0x80
[ 107.297969][ T6390] ? tun_get+0x191/0x370
[ 107.298009][ T6390] tun_chr_write_iter+0xdc/0x210
[ 107.298046][ T6390] vfs_write+0x7d3/0x11d0
[ 107.298081][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 107.298120][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 107.298150][ T6390] ? find_held_lock+0x2b/0x80
[ 107.298202][ T6390] ksys_write+0x12a/0x250
[ 107.298234][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 107.298276][ T6390] do_syscall_64+0xcd/0x4e0
[ 107.298312][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 107.298373][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 107.298394][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 107.298415][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 107.298437][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 107.298452][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 107.298467][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 107.298481][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 107.298494][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 107.298526][ T6390]
[ 107.298535][ T6390] Disabling lock debugging due to kernel taint
[ 107.410015][ T6390] BUG: Bad page state in process syz.0.16 pfn:50ebd
[ 107.413617][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888031a0d600 pfn:0x50ebd
[ 107.417796][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 107.420490][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 107.423936][ T6390] raw: ffff888031a0d600 0000000000000001 00000000ffffffff 0000000000000000
[ 107.427382][ T6390] page dumped because: page_pool leak
[ 107.429571][ T6390] page_owner tracks the page as allocated
[ 107.431921][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122669459, free_ts 106557465671
[ 107.437933][ T6390] post_alloc_hook+0x1c0/0x230
[ 107.439518][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 107.441373][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 107.443832][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 107.446269][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 107.448589][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 107.450703][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 107.452859][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 107.455120][ T6390] do_xdp_generic+0x530/0x1320
[ 107.456592][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 107.458364][ T6390] tun_chr_write_iter+0xdc/0x210
[ 107.459957][ T6390] vfs_write+0x7d3/0x11d0
[ 107.461699][ T6390] ksys_write+0x12a/0x250
[ 107.463434][ T6390] do_syscall_64+0xcd/0x4e0
[ 107.465262][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 107.467292][ T6390] page last free pid 6335 tgid 6335 stack trace:
[ 107.469356][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 107.471466][ T6390] tlb_remove_table_rcu+0x116/0x1a0
[ 107.473923][ T6390] rcu_core+0x79c/0x1530
[ 107.475759][ T6390] handle_softirqs+0x216/0x8e0
[ 107.477425][ T6390] __irq_exit_rcu+0x109/0x170
[ 107.479273][ T6390] irq_exit_rcu+0x9/0x30
[ 107.480790][ T6390] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 107.482590][ T6390] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 107.484575][ T6390] Modules linked in:
[ 107.486122][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 107.486148][ T6390] Tainted: [B]=BAD_PAGE
[ 107.486154][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 107.486165][ T6390] Call Trace:
[ 107.486172][ T6390]
[ 107.486179][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 107.486206][ T6390] bad_page+0xcf/0x220
[ 107.486219][ T6390] ? __pfx_bad_page+0x10/0x10
[ 107.486233][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 107.486249][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 107.486270][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 107.486293][ T6390] page_frag_free+0x27f/0x2e0
[ 107.486304][ T6390] __xdp_return+0x3ab/0xab0
[ 107.486315][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 107.486327][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 107.486370][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 107.486385][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 107.486409][ T6390] do_xdp_generic+0x8e6/0x1320
[ 107.486428][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 107.486446][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 107.486463][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 107.486484][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 107.486501][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 107.486519][ T6390] ? find_held_lock+0x2b/0x80
[ 107.486533][ T6390] ? tun_get+0x191/0x370
[ 107.486550][ T6390] tun_chr_write_iter+0xdc/0x210
[ 107.486567][ T6390] vfs_write+0x7d3/0x11d0
[ 107.486584][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 107.486602][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 107.486617][ T6390] ? find_held_lock+0x2b/0x80
[ 107.486636][ T6390] ksys_write+0x12a/0x250
[ 107.486658][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 107.486683][ T6390] do_syscall_64+0xcd/0x4e0
[ 107.486706][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 107.486722][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 107.486735][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 107.486750][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 107.486766][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 107.486777][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 107.486793][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 107.486803][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 107.486813][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 107.486827][ T6390]
[ 107.486837][ T6390] BUG: Bad page state in process syz.0.16 pfn:3a402
[ 107.585921][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3a402
[ 107.589629][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 107.591957][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 107.594988][ T6390] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 107.598137][ T6390] page dumped because: page_pool leak
[ 107.600672][ T6390] page_owner tracks the page as allocated
[ 107.603057][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122658092, free_ts 106557490056
[ 107.609588][ T6390] post_alloc_hook+0x1c0/0x230
[ 107.611287][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 107.613150][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 107.615159][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 107.617086][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 107.620131][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 107.623121][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 107.625130][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 107.627072][ T6390] do_xdp_generic+0x530/0x1320
[ 107.628576][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 107.630061][ T6390] tun_chr_write_iter+0xdc/0x210
[ 107.631895][ T6390] vfs_write+0x7d3/0x11d0
[ 107.633677][ T6390] ksys_write+0x12a/0x250
[ 107.635423][ T6390] do_syscall_64+0xcd/0x4e0
[ 107.637161][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 107.639278][ T6390] page last free pid 6335 tgid 6335 stack trace:
[ 107.641701][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 107.643891][ T6390] tlb_remove_table_rcu+0x116/0x1a0
[ 107.645867][ T6390] rcu_core+0x79c/0x1530
[ 107.647561][ T6390] handle_softirqs+0x216/0x8e0
[ 107.649136][ T6390] __irq_exit_rcu+0x109/0x170
[ 107.650797][ T6390] irq_exit_rcu+0x9/0x30
[ 107.652321][ T6390] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 107.654471][ T6390] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 107.656381][ T6390] Modules linked in:
[ 107.657809][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 107.657841][ T6390] Tainted: [B]=BAD_PAGE
[ 107.657846][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 107.657853][ T6390] Call Trace:
[ 107.657859][ T6390]
[ 107.657864][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 107.657898][ T6390] bad_page+0xcf/0x220
[ 107.657913][ T6390] ? __pfx_bad_page+0x10/0x10
[ 107.657924][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 107.657936][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 107.657953][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 107.657972][ T6390] page_frag_free+0x27f/0x2e0
[ 107.657983][ T6390] __xdp_return+0x3ab/0xab0
[ 107.657996][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 107.658010][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 107.658025][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 107.658035][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 107.658055][ T6390] do_xdp_generic+0x8e6/0x1320
[ 107.658069][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 107.658083][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 107.658102][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 107.658125][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 107.658144][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 107.658164][ T6390] ? find_held_lock+0x2b/0x80
[ 107.658181][ T6390] ? tun_get+0x191/0x370
[ 107.658199][ T6390] tun_chr_write_iter+0xdc/0x210
[ 107.658219][ T6390] vfs_write+0x7d3/0x11d0
[ 107.658238][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 107.658258][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 107.658276][ T6390] ? find_held_lock+0x2b/0x80
[ 107.658296][ T6390] ksys_write+0x12a/0x250
[ 107.658314][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 107.658360][ T6390] do_syscall_64+0xcd/0x4e0
[ 107.658383][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 107.658397][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 107.658407][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 107.658419][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 107.658430][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 107.658438][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 107.658446][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 107.658453][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 107.658460][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 107.658471][ T6390]
[ 107.658492][ T6390] BUG: Bad page state in process syz.0.16 pfn:3a7e9
[ 107.763041][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3a7e9
[ 107.766954][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 107.769635][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 107.772891][ T6390] raw: ffffffffffffffff 0000000000000001 00000000ffffffff 0000000000000000
[ 107.776380][ T6390] page dumped because: page_pool leak
[ 107.778990][ T6390] page_owner tracks the page as allocated
[ 107.781611][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122646554, free_ts 106557498634
[ 107.787527][ T6390] post_alloc_hook+0x1c0/0x230
[ 107.789369][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 107.791467][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 107.793694][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 107.795769][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 107.797608][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 107.799627][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 107.801577][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 107.804070][ T6390] do_xdp_generic+0x530/0x1320
[ 107.806107][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 107.807778][ T6390] tun_chr_write_iter+0xdc/0x210
[ 107.809395][ T6390] vfs_write+0x7d3/0x11d0
[ 107.810832][ T6390] ksys_write+0x12a/0x250
[ 107.812152][ T6390] do_syscall_64+0xcd/0x4e0
[ 107.814043][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 107.817238][ T6390] page last free pid 6335 tgid 6335 stack trace:
[ 107.820061][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 107.822571][ T6390] tlb_remove_table_rcu+0x116/0x1a0
[ 107.825736][ T6390] rcu_core+0x79c/0x1530
[ 107.828006][ T6390] handle_softirqs+0x216/0x8e0
[ 107.829919][ T6390] __irq_exit_rcu+0x109/0x170
[ 107.832097][ T6390] irq_exit_rcu+0x9/0x30
[ 107.834017][ T6390] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 107.836439][ T6390] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 107.838905][ T6390] Modules linked in:
[ 107.840554][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 107.840580][ T6390] Tainted: [B]=BAD_PAGE
[ 107.840585][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 107.840596][ T6390] Call Trace:
[ 107.840602][ T6390]
[ 107.840610][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 107.840637][ T6390] bad_page+0xcf/0x220
[ 107.840655][ T6390] ? __pfx_bad_page+0x10/0x10
[ 107.840673][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 107.840689][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 107.840711][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 107.840736][ T6390] page_frag_free+0x27f/0x2e0
[ 107.840752][ T6390] __xdp_return+0x3ab/0xab0
[ 107.840768][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 107.840786][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 107.840809][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 107.840823][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 107.840848][ T6390] do_xdp_generic+0x8e6/0x1320
[ 107.840869][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 107.840886][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 107.840906][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 107.840937][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 107.840964][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 107.840989][ T6390] ? find_held_lock+0x2b/0x80
[ 107.841011][ T6390] ? tun_get+0x191/0x370
[ 107.841041][ T6390] tun_chr_write_iter+0xdc/0x210
[ 107.841066][ T6390] vfs_write+0x7d3/0x11d0
[ 107.841091][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 107.841119][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 107.841141][ T6390] ? find_held_lock+0x2b/0x80
[ 107.841169][ T6390] ksys_write+0x12a/0x250
[ 107.841193][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 107.841219][ T6390] do_syscall_64+0xcd/0x4e0
[ 107.841249][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 107.841267][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 107.841285][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 107.841301][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 107.841317][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 107.841328][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 107.841339][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 107.841348][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 107.841359][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 107.841375][ T6390]
[ 107.841385][ T6390] BUG: Bad page state in process syz.0.16 pfn:386d5
[ 107.953403][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x386d5
[ 107.956975][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 107.959798][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 107.963345][ T6390] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 107.967448][ T6390] page dumped because: page_pool leak
[ 107.969928][ T6390] page_owner tracks the page as allocated
[ 107.972165][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122634345, free_ts 106557511553
[ 107.978897][ T6390] post_alloc_hook+0x1c0/0x230
[ 107.980992][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 107.983608][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 107.986762][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 107.989086][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 107.991529][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 107.993701][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 107.995779][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 107.997832][ T6390] do_xdp_generic+0x530/0x1320
[ 107.999902][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.002177][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.005580][ T6390] vfs_write+0x7d3/0x11d0
[ 108.008040][ T6390] ksys_write+0x12a/0x250
[ 108.009844][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.011868][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.014457][ T6390] page last free pid 6335 tgid 6335 stack trace:
[ 108.016928][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 108.019061][ T6390] rcu_core+0x79c/0x1530
[ 108.020779][ T6390] handle_softirqs+0x216/0x8e0
[ 108.022784][ T6390] __irq_exit_rcu+0x109/0x170
[ 108.025198][ T6390] irq_exit_rcu+0x9/0x30
[ 108.027253][ T6390] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 108.029900][ T6390] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 108.032722][ T6390] Modules linked in:
[ 108.034844][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 108.034873][ T6390] Tainted: [B]=BAD_PAGE
[ 108.034879][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 108.034890][ T6390] Call Trace:
[ 108.034896][ T6390]
[ 108.034904][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 108.034927][ T6390] bad_page+0xcf/0x220
[ 108.034940][ T6390] ? __pfx_bad_page+0x10/0x10
[ 108.034954][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 108.034970][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 108.034993][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 108.035026][ T6390] page_frag_free+0x27f/0x2e0
[ 108.035042][ T6390] __xdp_return+0x3ab/0xab0
[ 108.035059][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 108.035078][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 108.035098][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 108.035112][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 108.035137][ T6390] do_xdp_generic+0x8e6/0x1320
[ 108.035157][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 108.035176][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 108.035203][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.035235][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 108.035331][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 108.035359][ T6390] ? find_held_lock+0x2b/0x80
[ 108.035382][ T6390] ? tun_get+0x191/0x370
[ 108.035408][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.035435][ T6390] vfs_write+0x7d3/0x11d0
[ 108.035460][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 108.035485][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 108.035507][ T6390] ? find_held_lock+0x2b/0x80
[ 108.035535][ T6390] ksys_write+0x12a/0x250
[ 108.035561][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 108.035587][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.035615][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.035633][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 108.035649][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 108.035665][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 108.035683][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 108.035696][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 108.035707][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 108.035719][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 108.035729][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 108.035744][ T6390]
[ 108.035760][ T6390] BUG: Bad page state in process syz.0.16 pfn:285ea
[ 108.146391][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x285ea
[ 108.150039][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 108.153303][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 108.157310][ T6390] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 108.160918][ T6390] page dumped because: page_pool leak
[ 108.163044][ T6390] page_owner tracks the page as allocated
[ 108.165357][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122622500, free_ts 106559310976
[ 108.171766][ T6390] post_alloc_hook+0x1c0/0x230
[ 108.173910][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 108.176694][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 108.179676][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 108.182204][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 108.184662][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 108.186864][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 108.188760][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 108.190786][ T6390] do_xdp_generic+0x530/0x1320
[ 108.192726][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.194721][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.196712][ T6390] vfs_write+0x7d3/0x11d0
[ 108.198453][ T6390] ksys_write+0x12a/0x250
[ 108.200295][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.202404][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.205253][ T6390] page last free pid 29 tgid 29 stack trace:
[ 108.208059][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 108.210195][ T6390] vfree+0x1fd/0xb50
[ 108.211808][ T6390] delayed_vfree_work+0x56/0x70
[ 108.213772][ T6390] process_one_work+0x9cf/0x1b70
[ 108.215840][ T6390] worker_thread+0x6c8/0xf10
[ 108.217726][ T6390] kthread+0x3c5/0x780
[ 108.219464][ T6390] ret_from_fork+0x56a/0x730
[ 108.221425][ T6390] ret_from_fork_asm+0x1a/0x30
[ 108.223726][ T6390] Modules linked in:
[ 108.225668][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 108.225699][ T6390] Tainted: [B]=BAD_PAGE
[ 108.225706][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 108.225718][ T6390] Call Trace:
[ 108.225727][ T6390]
[ 108.225736][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 108.225769][ T6390] bad_page+0xcf/0x220
[ 108.225798][ T6390] ? __pfx_bad_page+0x10/0x10
[ 108.225815][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 108.225831][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 108.225855][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 108.225881][ T6390] page_frag_free+0x27f/0x2e0
[ 108.225898][ T6390] __xdp_return+0x3ab/0xab0
[ 108.225916][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 108.225937][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 108.225960][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 108.225975][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 108.226002][ T6390] do_xdp_generic+0x8e6/0x1320
[ 108.226024][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 108.226043][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 108.226070][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.226105][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 108.226131][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 108.226154][ T6390] ? find_held_lock+0x2b/0x80
[ 108.226175][ T6390] ? tun_get+0x191/0x370
[ 108.226201][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.226230][ T6390] vfs_write+0x7d3/0x11d0
[ 108.226259][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 108.226287][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 108.226311][ T6390] ? find_held_lock+0x2b/0x80
[ 108.226363][ T6390] ksys_write+0x12a/0x250
[ 108.226390][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 108.226421][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.226448][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.226466][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 108.226481][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 108.226498][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 108.226515][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 108.226527][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 108.226540][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 108.226551][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 108.226562][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 108.226579][ T6390]
[ 108.226589][ T6390] BUG: Bad page state in process syz.0.16 pfn:285e8
[ 108.335892][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8880285ee000 pfn:0x285e8
[ 108.340104][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 108.343458][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 108.347575][ T6390] raw: ffff8880285ee000 0000000000000001 00000000ffffffff 0000000000000000
[ 108.351081][ T6390] page dumped because: page_pool leak
[ 108.353254][ T6390] page_owner tracks the page as allocated
[ 108.355783][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122609691, free_ts 106559322364
[ 108.363365][ T6390] post_alloc_hook+0x1c0/0x230
[ 108.364435][ T62] Bluetooth: hci0: command tx timeout
[ 108.365523][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 108.370046][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 108.372758][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 108.375554][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 108.378216][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 108.380431][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 108.382358][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 108.384417][ T6390] do_xdp_generic+0x530/0x1320
[ 108.386462][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.388458][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.390693][ T6390] vfs_write+0x7d3/0x11d0
[ 108.392758][ T6390] ksys_write+0x12a/0x250
[ 108.395057][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.397200][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.399673][ T6390] page last free pid 29 tgid 29 stack trace:
[ 108.401984][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 108.404141][ T6390] vfree+0x1fd/0xb50
[ 108.405735][ T6390] delayed_vfree_work+0x56/0x70
[ 108.407658][ T6390] process_one_work+0x9cf/0x1b70
[ 108.410096][ T6390] worker_thread+0x6c8/0xf10
[ 108.412642][ T6390] kthread+0x3c5/0x780
[ 108.415038][ T6390] ret_from_fork+0x56a/0x730
[ 108.417240][ T6390] ret_from_fork_asm+0x1a/0x30
[ 108.419181][ T6390] Modules linked in:
[ 108.420760][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 108.420791][ T6390] Tainted: [B]=BAD_PAGE
[ 108.420797][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 108.420808][ T6390] Call Trace:
[ 108.420816][ T6390]
[ 108.420824][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 108.420851][ T6390] bad_page+0xcf/0x220
[ 108.420867][ T6390] ? __pfx_bad_page+0x10/0x10
[ 108.420883][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 108.420899][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 108.420921][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 108.420948][ T6390] page_frag_free+0x27f/0x2e0
[ 108.420965][ T6390] __xdp_return+0x3ab/0xab0
[ 108.420982][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 108.421000][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 108.421020][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 108.421034][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 108.421060][ T6390] do_xdp_generic+0x8e6/0x1320
[ 108.421080][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 108.421100][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 108.421128][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.421155][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 108.421179][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 108.421204][ T6390] ? find_held_lock+0x2b/0x80
[ 108.421226][ T6390] ? tun_get+0x191/0x370
[ 108.421252][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.421279][ T6390] vfs_write+0x7d3/0x11d0
[ 108.421304][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 108.421331][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 108.421353][ T6390] ? find_held_lock+0x2b/0x80
[ 108.421380][ T6390] ksys_write+0x12a/0x250
[ 108.421406][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 108.421434][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.421458][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.421476][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 108.421490][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 108.421507][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 108.421523][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 108.421534][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 108.421545][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 108.421556][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 108.421566][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 108.421583][ T6390]
[ 108.421593][ T6390] BUG: Bad page state in process syz.0.16 pfn:36e9f
[ 108.533317][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x36e9f
[ 108.537040][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 108.540137][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 108.544138][ T6390] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 108.547671][ T6390] page dumped because: page_pool leak
[ 108.549810][ T6390] page_owner tracks the page as allocated
[ 108.552091][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122597072, free_ts 106559329800
[ 108.559232][ T6390] post_alloc_hook+0x1c0/0x230
[ 108.561524][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 108.564100][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 108.566482][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 108.568698][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 108.571174][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 108.573387][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 108.575493][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 108.577649][ T6390] do_xdp_generic+0x530/0x1320
[ 108.580034][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.582216][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.584724][ T6390] vfs_write+0x7d3/0x11d0
[ 108.586851][ T6390] ksys_write+0x12a/0x250
[ 108.588707][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.590565][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.593167][ T6390] page last free pid 29 tgid 29 stack trace:
[ 108.595879][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 108.597982][ T6390] vfree+0x1fd/0xb50
[ 108.599626][ T6390] delayed_vfree_work+0x56/0x70
[ 108.601757][ T6390] process_one_work+0x9cf/0x1b70
[ 108.604097][ T6390] worker_thread+0x6c8/0xf10
[ 108.606569][ T6390] kthread+0x3c5/0x780
[ 108.608472][ T6390] ret_from_fork+0x56a/0x730
[ 108.610389][ T6390] ret_from_fork_asm+0x1a/0x30
[ 108.612337][ T6390] Modules linked in:
[ 108.613981][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 108.614008][ T6390] Tainted: [B]=BAD_PAGE
[ 108.614014][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 108.614025][ T6390] Call Trace:
[ 108.614032][ T6390]
[ 108.614040][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 108.614067][ T6390] bad_page+0xcf/0x220
[ 108.614091][ T6390] ? __pfx_bad_page+0x10/0x10
[ 108.614106][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 108.614128][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 108.614152][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 108.614178][ T6390] page_frag_free+0x27f/0x2e0
[ 108.614195][ T6390] __xdp_return+0x3ab/0xab0
[ 108.614212][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 108.614230][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 108.614270][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 108.614286][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 108.614313][ T6390] do_xdp_generic+0x8e6/0x1320
[ 108.614356][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 108.614375][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 108.614401][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.614434][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 108.614462][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 108.614489][ T6390] ? find_held_lock+0x2b/0x80
[ 108.614512][ T6390] ? tun_get+0x191/0x370
[ 108.614536][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.614563][ T6390] vfs_write+0x7d3/0x11d0
[ 108.614588][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 108.614616][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 108.614640][ T6390] ? find_held_lock+0x2b/0x80
[ 108.614669][ T6390] ksys_write+0x12a/0x250
[ 108.614692][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 108.614718][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.614747][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.614766][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 108.614783][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 108.614798][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 108.614814][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 108.614825][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 108.614835][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 108.614845][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 108.614855][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 108.614871][ T6390]
[ 108.718977][ T6390] BUG: Bad page state in process syz.0.16 pfn:36e9e
[ 108.721860][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x36e9e
[ 108.725623][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 108.728477][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 108.731377][ T6390] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 108.735345][ T6390] page dumped because: page_pool leak
[ 108.737685][ T6390] page_owner tracks the page as allocated
[ 108.739984][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122584609, free_ts 106559336426
[ 108.746282][ T6390] post_alloc_hook+0x1c0/0x230
[ 108.748186][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 108.750068][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 108.752707][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 108.754954][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 108.757012][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 108.758770][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 108.760624][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 108.762442][ T6390] do_xdp_generic+0x530/0x1320
[ 108.764186][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.766099][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.768158][ T6390] vfs_write+0x7d3/0x11d0
[ 108.769792][ T6390] ksys_write+0x12a/0x250
[ 108.771414][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.772949][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.774785][ T6390] page last free pid 29 tgid 29 stack trace:
[ 108.776585][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 108.778172][ T6390] vfree+0x1fd/0xb50
[ 108.779365][ T6390] delayed_vfree_work+0x56/0x70
[ 108.780900][ T6390] process_one_work+0x9cf/0x1b70
[ 108.782534][ T6390] worker_thread+0x6c8/0xf10
[ 108.784493][ T6390] kthread+0x3c5/0x780
[ 108.786305][ T6390] ret_from_fork+0x56a/0x730
[ 108.788533][ T6390] ret_from_fork_asm+0x1a/0x30
[ 108.789992][ T6390] Modules linked in:
[ 108.791206][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 108.791223][ T6390] Tainted: [B]=BAD_PAGE
[ 108.791227][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 108.791233][ T6390] Call Trace:
[ 108.791238][ T6390]
[ 108.791243][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 108.791260][ T6390] bad_page+0xcf/0x220
[ 108.791272][ T6390] ? __pfx_bad_page+0x10/0x10
[ 108.791282][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 108.791292][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 108.791306][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 108.791323][ T6390] page_frag_free+0x27f/0x2e0
[ 108.791333][ T6390] __xdp_return+0x3ab/0xab0
[ 108.791343][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 108.791354][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 108.791367][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 108.791376][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 108.791392][ T6390] do_xdp_generic+0x8e6/0x1320
[ 108.791405][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 108.791417][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 108.791433][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.791453][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 108.791470][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 108.791487][ T6390] ? find_held_lock+0x2b/0x80
[ 108.791501][ T6390] ? tun_get+0x191/0x370
[ 108.791518][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.791535][ T6390] vfs_write+0x7d3/0x11d0
[ 108.791551][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 108.791568][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 108.791583][ T6390] ? find_held_lock+0x2b/0x80
[ 108.791601][ T6390] ksys_write+0x12a/0x250
[ 108.791616][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 108.791634][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.791650][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.791662][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 108.791671][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 108.791681][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 108.791692][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 108.791699][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 108.791705][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 108.791711][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 108.791717][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 108.791726][ T6390]
[ 108.791734][ T6390] BUG: Bad page state in process syz.0.16 pfn:36e9d
[ 108.887791][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x36e9d
[ 108.891659][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 108.894767][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 108.898055][ T6390] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 108.901230][ T6390] page dumped because: page_pool leak
[ 108.903279][ T6390] page_owner tracks the page as allocated
[ 108.905073][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122574602, free_ts 106559342806
[ 108.910099][ T6390] post_alloc_hook+0x1c0/0x230
[ 108.911702][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 108.913745][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 108.915928][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 108.917855][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 108.920279][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 108.922346][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 108.924033][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 108.925735][ T6390] do_xdp_generic+0x530/0x1320
[ 108.927691][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.929539][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.931327][ T6390] vfs_write+0x7d3/0x11d0
[ 108.933062][ T6390] ksys_write+0x12a/0x250
[ 108.935127][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.937189][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.939464][ T6390] page last free pid 29 tgid 29 stack trace:
[ 108.941816][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 108.943880][ T6390] vfree+0x1fd/0xb50
[ 108.945516][ T6390] delayed_vfree_work+0x56/0x70
[ 108.947433][ T6390] process_one_work+0x9cf/0x1b70
[ 108.948933][ T6390] worker_thread+0x6c8/0xf10
[ 108.950478][ T6390] kthread+0x3c5/0x780
[ 108.952087][ T6390] ret_from_fork+0x56a/0x730
[ 108.954130][ T6390] ret_from_fork_asm+0x1a/0x30
[ 108.956531][ T6390] Modules linked in:
[ 108.958084][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 108.958103][ T6390] Tainted: [B]=BAD_PAGE
[ 108.958109][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 108.958120][ T6390] Call Trace:
[ 108.958126][ T6390]
[ 108.958132][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 108.958160][ T6390] bad_page+0xcf/0x220
[ 108.958177][ T6390] ? __pfx_bad_page+0x10/0x10
[ 108.958195][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 108.958212][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 108.958238][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 108.958265][ T6390] page_frag_free+0x27f/0x2e0
[ 108.958282][ T6390] __xdp_return+0x3ab/0xab0
[ 108.958299][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 108.958339][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 108.958365][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 108.958380][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 108.958406][ T6390] do_xdp_generic+0x8e6/0x1320
[ 108.958428][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 108.958447][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 108.958474][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 108.958505][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 108.958532][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 108.958558][ T6390] ? find_held_lock+0x2b/0x80
[ 108.958581][ T6390] ? tun_get+0x191/0x370
[ 108.958607][ T6390] tun_chr_write_iter+0xdc/0x210
[ 108.958634][ T6390] vfs_write+0x7d3/0x11d0
[ 108.958664][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 108.958692][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 108.958715][ T6390] ? find_held_lock+0x2b/0x80
[ 108.958743][ T6390] ksys_write+0x12a/0x250
[ 108.958767][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 108.958795][ T6390] do_syscall_64+0xcd/0x4e0
[ 108.958826][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.958844][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 108.958859][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 108.958875][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 108.958892][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 108.958904][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 108.958915][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 108.958925][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 108.958935][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 108.958951][ T6390]
[ 108.958963][ T6390] BUG: Bad page state in process syz.0.16 pfn:5077c
[ 109.056417][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88802c116b80 pfn:0x5077c
[ 109.060118][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 109.062728][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 109.067145][ T6390] raw: ffff88802c116b80 0000000000000001 00000000ffffffff 0000000000000000
[ 109.070166][ T6390] page dumped because: page_pool leak
[ 109.071903][ T6390] page_owner tracks the page as allocated
[ 109.073812][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122563277, free_ts 106671406776
[ 109.079433][ T6390] post_alloc_hook+0x1c0/0x230
[ 109.080784][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 109.082623][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 109.085018][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 109.087422][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 109.089742][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 109.091585][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 109.092990][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 109.094699][ T6390] do_xdp_generic+0x530/0x1320
[ 109.096445][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 109.097970][ T6390] tun_chr_write_iter+0xdc/0x210
[ 109.099522][ T6390] vfs_write+0x7d3/0x11d0
[ 109.100888][ T6390] ksys_write+0x12a/0x250
[ 109.102189][ T6390] do_syscall_64+0xcd/0x4e0
[ 109.103625][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.105454][ T6390] page last free pid 6372 tgid 6372 stack trace:
[ 109.107325][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 109.109184][ T6390] tlb_finish_mmu+0x237/0x7c0
[ 109.111135][ T6390] exit_mmap+0x403/0xb90
[ 109.113046][ T6390] __mmput+0x12a/0x410
[ 109.114748][ T6390] mmput+0x62/0x70
[ 109.115860][ T6390] do_exit+0x7c7/0x2bf0
[ 109.117241][ T6390] do_group_exit+0xd3/0x2a0
[ 109.118999][ T6390] __x64_sys_exit_group+0x3e/0x50
[ 109.120906][ T6390] x64_sys_call+0x150b/0x1730
[ 109.122580][ T6390] do_syscall_64+0xcd/0x4e0
[ 109.123959][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.126547][ T6390] Modules linked in:
[ 109.128677][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 109.128714][ T6390] Tainted: [B]=BAD_PAGE
[ 109.128721][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 109.128735][ T6390] Call Trace:
[ 109.128743][ T6390]
[ 109.128751][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 109.128786][ T6390] bad_page+0xcf/0x220
[ 109.128814][ T6390] ? __pfx_bad_page+0x10/0x10
[ 109.128834][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 109.128854][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 109.128882][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 109.128914][ T6390] page_frag_free+0x27f/0x2e0
[ 109.128935][ T6390] __xdp_return+0x3ab/0xab0
[ 109.128956][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 109.128978][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 109.129005][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 109.129023][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 109.129055][ T6390] do_xdp_generic+0x8e6/0x1320
[ 109.129080][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 109.129103][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 109.129136][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 109.129175][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 109.129207][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 109.129240][ T6390] ? find_held_lock+0x2b/0x80
[ 109.129268][ T6390] ? tun_get+0x191/0x370
[ 109.129300][ T6390] tun_chr_write_iter+0xdc/0x210
[ 109.129333][ T6390] vfs_write+0x7d3/0x11d0
[ 109.129366][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 109.129399][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 109.129428][ T6390] ? find_held_lock+0x2b/0x80
[ 109.129463][ T6390] ksys_write+0x12a/0x250
[ 109.129494][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 109.129529][ T6390] do_syscall_64+0xcd/0x4e0
[ 109.129560][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.129583][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 109.129602][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 109.129622][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 109.129645][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 109.129659][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 109.129673][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 109.129687][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 109.129701][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 109.129720][ T6390]
[ 109.129734][ T6390] BUG: Bad page state in process syz.0.16 pfn:36e9b
[ 109.224336][ T6390] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x36e9b
[ 109.227979][ T6390] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 109.230840][ T6390] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 109.233930][ T6390] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 109.237050][ T6390] page dumped because: page_pool leak
[ 109.239051][ T6390] page_owner tracks the page as allocated
[ 109.241147][ T6390] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122550704, free_ts 106671414266
[ 109.247728][ T6390] post_alloc_hook+0x1c0/0x230
[ 109.249376][ T6390] get_page_from_freelist+0x132b/0x38e0
[ 109.251226][ T6390] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 109.253542][ T6390] alloc_pages_bulk_noprof+0x71c/0x1410
[ 109.255665][ T6390] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 109.257745][ T6390] page_pool_alloc_netmems+0xc4/0x190
[ 109.259433][ T6390] skb_pp_cow_data+0x7c0/0xff0
[ 109.260923][ T6390] skb_cow_data_for_xdp+0x88/0xb0
[ 109.262573][ T6390] do_xdp_generic+0x530/0x1320
[ 109.264133][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 109.265857][ T6390] tun_chr_write_iter+0xdc/0x210
[ 109.267497][ T6390] vfs_write+0x7d3/0x11d0
[ 109.269055][ T6390] ksys_write+0x12a/0x250
[ 109.270689][ T6390] do_syscall_64+0xcd/0x4e0
[ 109.272725][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.274894][ T6390] page last free pid 6372 tgid 6372 stack trace:
[ 109.277071][ T6390] __free_frozen_pages+0x7d5/0x10f0
[ 109.278835][ T6390] tlb_finish_mmu+0x237/0x7c0
[ 109.280625][ T6390] exit_mmap+0x403/0xb90
[ 109.282229][ T6390] __mmput+0x12a/0x410
[ 109.283678][ T6390] mmput+0x62/0x70
[ 109.285382][ T6390] do_exit+0x7c7/0x2bf0
[ 109.287128][ T6390] do_group_exit+0xd3/0x2a0
[ 109.288971][ T6390] __x64_sys_exit_group+0x3e/0x50
[ 109.290885][ T6390] x64_sys_call+0x150b/0x1730
[ 109.292575][ T6390] do_syscall_64+0xcd/0x4e0
[ 109.294180][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.296338][ T6390] Modules linked in:
[ 109.297827][ T6390] CPU: 1 UID: 0 PID: 6390 Comm: syz.0.16 Tainted: G B syzkaller #0 PREEMPT(full)
[ 109.297852][ T6390] Tainted: [B]=BAD_PAGE
[ 109.297858][ T6390] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 109.297867][ T6390] Call Trace:
[ 109.297873][ T6390]
[ 109.297880][ T6390] dump_stack_lvl+0x16c/0x1f0
[ 109.297905][ T6390] bad_page+0xcf/0x220
[ 109.297921][ T6390] ? __pfx_bad_page+0x10/0x10
[ 109.297935][ T6390] ? page_bad_reason+0x9d/0x1f0
[ 109.297950][ T6390] __free_frozen_pages+0x7f7/0x10f0
[ 109.297970][ T6390] ? kasan_quarantine_put+0x10a/0x240
[ 109.297993][ T6390] page_frag_free+0x27f/0x2e0
[ 109.298008][ T6390] __xdp_return+0x3ab/0xab0
[ 109.298023][ T6390] ? kfree_skbmem+0x1a4/0x1f0
[ 109.298039][ T6390] bpf_xdp_adjust_tail+0x887/0xcb0
[ 109.298058][ T6390] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 109.298071][ T6390] bpf_prog_run_generic_xdp+0x626/0x1530
[ 109.298094][ T6390] do_xdp_generic+0x8e6/0x1320
[ 109.298112][ T6390] ? __pfx_do_xdp_generic+0x10/0x10
[ 109.298129][ T6390] ? __lock_acquire+0x62e/0x1ce0
[ 109.298152][ T6390] tun_get_user+0x1d4a/0x3cd0
[ 109.298181][ T6390] ? __pfx_tun_get_user+0x10/0x10
[ 109.298204][ T6390] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 109.298227][ T6390] ? find_held_lock+0x2b/0x80
[ 109.298248][ T6390] ? tun_get+0x191/0x370
[ 109.298270][ T6390] tun_chr_write_iter+0xdc/0x210
[ 109.298294][ T6390] vfs_write+0x7d3/0x11d0
[ 109.298338][ T6390] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 109.298364][ T6390] ? __pfx_vfs_write+0x10/0x10
[ 109.298384][ T6390] ? find_held_lock+0x2b/0x80
[ 109.298409][ T6390] ksys_write+0x12a/0x250
[ 109.298431][ T6390] ? __pfx_ksys_write+0x10/0x10
[ 109.298455][ T6390] do_syscall_64+0xcd/0x4e0
[ 109.298478][ T6390] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.298494][ T6390] RIP: 0033:0x7fc0fbb8bc1f
[ 109.298506][ T6390] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 109.298521][ T6390] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 109.298536][ T6390] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 109.298546][ T6390] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 109.298556][ T6390] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 109.298565][ T6390] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 109.298575][ T6390] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 109.298589][ T6390]
[ 109.401620][ T6392] BUG: Bad page state in process syz.0.17 pfn:33317
[ 109.404462][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x33317
[ 109.407981][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 109.410361][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 109.413171][ T6392] raw: 0000000000000000 3fffffffffffffff 00000000ffffffff 0000000000000000
[ 109.415896][ T6392] page dumped because: page_pool leak
[ 109.417646][ T6392] page_owner tracks the page as allocated
[ 109.419588][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401574425, free_ts 106644805585
[ 109.426509][ T6392] post_alloc_hook+0x1c0/0x230
[ 109.428059][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 109.429728][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 109.431510][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 109.433508][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 109.435877][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 109.437640][ T6392] page_pool_alloc_frag_netmem+0x219/0x9c0
[ 109.439794][ T6392] skb_pp_cow_data+0x584/0xff0
[ 109.441467][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 109.443000][ T6392] do_xdp_generic+0x530/0x1320
[ 109.444762][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 109.446588][ T6392] tun_chr_write_iter+0xdc/0x210
[ 109.448156][ T6392] vfs_write+0x7d3/0x11d0
[ 109.449454][ T6392] ksys_write+0x12a/0x250
[ 109.450758][ T6392] do_syscall_64+0xcd/0x4e0
[ 109.452210][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.454072][ T6392] page last free pid 837 tgid 837 stack trace:
[ 109.456342][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 109.459089][ T6392] vfree+0x1fd/0xb50
[ 109.460565][ T6392] delayed_vfree_work+0x56/0x70
[ 109.462236][ T6392] process_one_work+0x9cf/0x1b70
[ 109.463975][ T6392] worker_thread+0x6c8/0xf10
[ 109.465842][ T6392] kthread+0x3c5/0x780
[ 109.467087][ T6392] ret_from_fork+0x56a/0x730
[ 109.468474][ T6392] ret_from_fork_asm+0x1a/0x30
[ 109.469912][ T6392] Modules linked in:
[ 109.471159][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 109.471176][ T6392] Tainted: [B]=BAD_PAGE
[ 109.471180][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 109.471186][ T6392] Call Trace:
[ 109.471191][ T6392]
[ 109.471196][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 109.471214][ T6392] bad_page+0xcf/0x220
[ 109.471224][ T6392] ? __pfx_bad_page+0x10/0x10
[ 109.471234][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 109.471243][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 109.471257][ T6392] ? rcu_is_watching+0x12/0xc0
[ 109.471274][ T6392] page_frag_free+0x27f/0x2e0
[ 109.471284][ T6392] __xdp_return+0x3ab/0xab0
[ 109.471294][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 109.471305][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 109.471318][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 109.471327][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 109.471344][ T6392] do_xdp_generic+0x8e6/0x1320
[ 109.471356][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 109.471368][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 109.471388][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 109.471408][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 109.471425][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 109.471442][ T6392] ? tun_get+0x191/0x370
[ 109.471456][ T6392] ? rcu_is_watching+0x12/0xc0
[ 109.471471][ T6392] ? lock_release+0x201/0x2f0
[ 109.471483][ T6392] tun_chr_write_iter+0xdc/0x210
[ 109.471500][ T6392] vfs_write+0x7d3/0x11d0
[ 109.471517][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 109.471534][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 109.471550][ T6392] ? lock_release+0x201/0x2f0
[ 109.471563][ T6392] ksys_write+0x12a/0x250
[ 109.471579][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 109.471596][ T6392] do_syscall_64+0xcd/0x4e0
[ 109.471613][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.471624][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 109.471633][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 109.471643][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 109.471653][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 109.471660][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 109.471666][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 109.471672][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 109.471679][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 109.471688][ T6392]
[ 109.471695][ T6392] BUG: Bad page state in process syz.0.17 pfn:33316
[ 109.560674][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x33316
[ 109.563421][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 109.566278][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 109.569356][ T6392] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 109.571929][ T6392] page dumped because: page_pool leak
[ 109.573528][ T6392] page_owner tracks the page as allocated
[ 109.575421][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401569063, free_ts 106644812978
[ 109.581636][ T6392] post_alloc_hook+0x1c0/0x230
[ 109.583326][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 109.585406][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 109.587457][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 109.589233][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 109.591719][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 109.594125][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 109.596183][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 109.598165][ T6392] do_xdp_generic+0x530/0x1320
[ 109.600238][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 109.602010][ T6392] tun_chr_write_iter+0xdc/0x210
[ 109.603899][ T6392] vfs_write+0x7d3/0x11d0
[ 109.606048][ T6392] ksys_write+0x12a/0x250
[ 109.608668][ T6392] do_syscall_64+0xcd/0x4e0
[ 109.610790][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.613123][ T6392] page last free pid 837 tgid 837 stack trace:
[ 109.615661][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 109.617671][ T6392] vfree+0x1fd/0xb50
[ 109.619172][ T6392] delayed_vfree_work+0x56/0x70
[ 109.621047][ T6392] process_one_work+0x9cf/0x1b70
[ 109.622993][ T6392] worker_thread+0x6c8/0xf10
[ 109.624901][ T6392] kthread+0x3c5/0x780
[ 109.626440][ T6392] ret_from_fork+0x56a/0x730
[ 109.628127][ T6392] ret_from_fork_asm+0x1a/0x30
[ 109.629857][ T6392] Modules linked in:
[ 109.631329][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 109.631349][ T6392] Tainted: [B]=BAD_PAGE
[ 109.631353][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 109.631361][ T6392] Call Trace:
[ 109.631367][ T6392]
[ 109.631373][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 109.631395][ T6392] bad_page+0xcf/0x220
[ 109.631407][ T6392] ? __pfx_bad_page+0x10/0x10
[ 109.631419][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 109.631431][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 109.631448][ T6392] ? rcu_is_watching+0x12/0xc0
[ 109.631468][ T6392] page_frag_free+0x27f/0x2e0
[ 109.631479][ T6392] __xdp_return+0x3ab/0xab0
[ 109.631492][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 109.631505][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 109.631521][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 109.631532][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 109.631551][ T6392] do_xdp_generic+0x8e6/0x1320
[ 109.631567][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 109.631581][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 109.631605][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 109.631630][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 109.631650][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 109.631670][ T6392] ? tun_get+0x191/0x370
[ 109.631687][ T6392] ? rcu_is_watching+0x12/0xc0
[ 109.631704][ T6392] ? lock_release+0x201/0x2f0
[ 109.631718][ T6392] tun_chr_write_iter+0xdc/0x210
[ 109.631737][ T6392] vfs_write+0x7d3/0x11d0
[ 109.631757][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 109.631777][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 109.631795][ T6392] ? lock_release+0x201/0x2f0
[ 109.631809][ T6392] ksys_write+0x12a/0x250
[ 109.631827][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 109.631847][ T6392] do_syscall_64+0xcd/0x4e0
[ 109.631866][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.631879][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 109.631889][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 109.631900][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 109.631912][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 109.631919][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 109.631926][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 109.631933][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 109.631940][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 109.631951][ T6392]
[ 109.631960][ T6392] BUG: Bad page state in process syz.0.17 pfn:33315
[ 109.724605][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x33315
[ 109.728007][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 109.730804][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 109.735021][ T6392] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 109.738631][ T6392] page dumped because: page_pool leak
[ 109.740742][ T6392] page_owner tracks the page as allocated
[ 109.743133][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401564087, free_ts 106644820957
[ 109.749765][ T6392] post_alloc_hook+0x1c0/0x230
[ 109.752366][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 109.755338][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 109.757996][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 109.760135][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 109.762623][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 109.764808][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 109.766747][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 109.768744][ T6392] do_xdp_generic+0x530/0x1320
[ 109.770654][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 109.772629][ T6392] tun_chr_write_iter+0xdc/0x210
[ 109.775009][ T6392] vfs_write+0x7d3/0x11d0
[ 109.777240][ T6392] ksys_write+0x12a/0x250
[ 109.779369][ T6392] do_syscall_64+0xcd/0x4e0
[ 109.781486][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.784095][ T6392] page last free pid 837 tgid 837 stack trace:
[ 109.786595][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 109.788675][ T6392] vfree+0x1fd/0xb50
[ 109.790234][ T6392] delayed_vfree_work+0x56/0x70
[ 109.792163][ T6392] process_one_work+0x9cf/0x1b70
[ 109.794228][ T6392] worker_thread+0x6c8/0xf10
[ 109.796225][ T6392] kthread+0x3c5/0x780
[ 109.797984][ T6392] ret_from_fork+0x56a/0x730
[ 109.800037][ T6392] ret_from_fork_asm+0x1a/0x30
[ 109.802131][ T6392] Modules linked in:
[ 109.803766][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 109.803792][ T6392] Tainted: [B]=BAD_PAGE
[ 109.803803][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 109.803813][ T6392] Call Trace:
[ 109.803820][ T6392]
[ 109.803829][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 109.803855][ T6392] bad_page+0xcf/0x220
[ 109.803871][ T6392] ? __pfx_bad_page+0x10/0x10
[ 109.803887][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 109.803903][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 109.803925][ T6392] ? rcu_is_watching+0x12/0xc0
[ 109.803950][ T6392] page_frag_free+0x27f/0x2e0
[ 109.803966][ T6392] __xdp_return+0x3ab/0xab0
[ 109.803982][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 109.804000][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 109.804022][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 109.804037][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 109.804062][ T6392] do_xdp_generic+0x8e6/0x1320
[ 109.804082][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 109.804100][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 109.804132][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 109.804163][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 109.804188][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 109.804214][ T6392] ? tun_get+0x191/0x370
[ 109.804250][ T6392] ? rcu_is_watching+0x12/0xc0
[ 109.804273][ T6392] ? lock_release+0x201/0x2f0
[ 109.804293][ T6392] tun_chr_write_iter+0xdc/0x210
[ 109.804319][ T6392] vfs_write+0x7d3/0x11d0
[ 109.804345][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 109.804371][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 109.804395][ T6392] ? lock_release+0x201/0x2f0
[ 109.804417][ T6392] ksys_write+0x12a/0x250
[ 109.804441][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 109.804468][ T6392] do_syscall_64+0xcd/0x4e0
[ 109.804494][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.804512][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 109.804526][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 109.804543][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 109.804560][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 109.804571][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 109.804582][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 109.804592][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 109.804602][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 109.804618][ T6392]
[ 109.909599][ T6392] BUG: Bad page state in process syz.0.17 pfn:24074
[ 109.912179][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x24074
[ 109.915718][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 109.918618][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 109.922462][ T6392] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 109.925930][ T6392] page dumped because: page_pool leak
[ 109.928045][ T6392] page_owner tracks the page as allocated
[ 109.930293][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401559041, free_ts 106681101285
[ 109.938266][ T6392] post_alloc_hook+0x1c0/0x230
[ 109.940744][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 109.943189][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 109.945573][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 109.947792][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 109.950175][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 109.952363][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 109.954327][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 109.956242][ T6392] do_xdp_generic+0x530/0x1320
[ 109.958244][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 109.960458][ T6392] tun_chr_write_iter+0xdc/0x210
[ 109.962756][ T6392] vfs_write+0x7d3/0x11d0
[ 109.964726][ T6392] ksys_write+0x12a/0x250
[ 109.966383][ T6392] do_syscall_64+0xcd/0x4e0
[ 109.968119][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.970384][ T6392] page last free pid 15 tgid 15 stack trace:
[ 109.972715][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 109.975144][ T6392] tlb_remove_table_rcu+0x116/0x1a0
[ 109.977208][ T6392] rcu_core+0x79c/0x1530
[ 109.978993][ T6392] handle_softirqs+0x216/0x8e0
[ 109.981256][ T6392] run_ksoftirqd+0x3a/0x60
[ 109.982994][ T6392] smpboot_thread_fn+0x3f4/0xae0
[ 109.985290][ T6392] kthread+0x3c5/0x780
[ 109.987037][ T6392] ret_from_fork+0x56a/0x730
[ 109.988881][ T6392] ret_from_fork_asm+0x1a/0x30
[ 109.990770][ T6392] Modules linked in:
[ 109.992305][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 109.992332][ T6392] Tainted: [B]=BAD_PAGE
[ 109.992337][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 109.992346][ T6392] Call Trace:
[ 109.992354][ T6392]
[ 109.992361][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 109.992387][ T6392] bad_page+0xcf/0x220
[ 109.992404][ T6392] ? __pfx_bad_page+0x10/0x10
[ 109.992419][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 109.992436][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 109.992458][ T6392] ? rcu_is_watching+0x12/0xc0
[ 109.992485][ T6392] page_frag_free+0x27f/0x2e0
[ 109.992501][ T6392] __xdp_return+0x3ab/0xab0
[ 109.992517][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 109.992534][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 109.992555][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 109.992569][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 109.992594][ T6392] do_xdp_generic+0x8e6/0x1320
[ 109.992614][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 109.992632][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 109.992663][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 109.992694][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 109.992720][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 109.992747][ T6392] ? tun_get+0x191/0x370
[ 109.992769][ T6392] ? rcu_is_watching+0x12/0xc0
[ 109.992791][ T6392] ? lock_release+0x201/0x2f0
[ 109.992816][ T6392] tun_chr_write_iter+0xdc/0x210
[ 109.992842][ T6392] vfs_write+0x7d3/0x11d0
[ 109.992867][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 109.992893][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 109.992918][ T6392] ? lock_release+0x201/0x2f0
[ 109.992939][ T6392] ksys_write+0x12a/0x250
[ 109.992963][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 109.992990][ T6392] do_syscall_64+0xcd/0x4e0
[ 109.993015][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.993033][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 109.993047][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 109.993063][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 109.993079][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 109.993091][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 109.993102][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 109.993113][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 109.993123][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 109.993140][ T6392]
[ 109.993152][ T6392] BUG: Bad page state in process syz.0.17 pfn:299ab
[ 110.104335][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x299ab
[ 110.108403][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 110.111268][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 110.115006][ T6392] raw: ffff888000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 110.118509][ T6392] page dumped because: page_pool leak
[ 110.120852][ T6392] page_owner tracks the page as allocated
[ 110.123392][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401554132, free_ts 106681123497
[ 110.129864][ T6392] post_alloc_hook+0x1c0/0x230
[ 110.131837][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 110.134139][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 110.137380][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 110.140666][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 110.143431][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 110.145757][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 110.147731][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 110.149757][ T6392] do_xdp_generic+0x530/0x1320
[ 110.151774][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 110.153820][ T6392] tun_chr_write_iter+0xdc/0x210
[ 110.156064][ T6392] vfs_write+0x7d3/0x11d0
[ 110.157817][ T6392] ksys_write+0x12a/0x250
[ 110.159506][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.161390][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.163782][ T6392] page last free pid 15 tgid 15 stack trace:
[ 110.166662][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 110.169203][ T6392] tlb_remove_table_rcu+0x116/0x1a0
[ 110.171733][ T6392] rcu_core+0x79c/0x1530
[ 110.173735][ T6392] handle_softirqs+0x216/0x8e0
[ 110.176104][ T6392] run_ksoftirqd+0x3a/0x60
[ 110.177876][ T6392] smpboot_thread_fn+0x3f4/0xae0
[ 110.179821][ T6392] kthread+0x3c5/0x780
[ 110.181571][ T6392] ret_from_fork+0x56a/0x730
[ 110.183164][ T6392] ret_from_fork_asm+0x1a/0x30
[ 110.184696][ T6392] Modules linked in:
[ 110.185869][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 110.185885][ T6392] Tainted: [B]=BAD_PAGE
[ 110.185889][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 110.185896][ T6392] Call Trace:
[ 110.185900][ T6392]
[ 110.185904][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 110.185922][ T6392] bad_page+0xcf/0x220
[ 110.185933][ T6392] ? __pfx_bad_page+0x10/0x10
[ 110.185946][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 110.185960][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 110.185979][ T6392] ? rcu_is_watching+0x12/0xc0
[ 110.186004][ T6392] page_frag_free+0x27f/0x2e0
[ 110.186021][ T6392] __xdp_return+0x3ab/0xab0
[ 110.186036][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 110.186058][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 110.186079][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 110.186093][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 110.186117][ T6392] do_xdp_generic+0x8e6/0x1320
[ 110.186137][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 110.186155][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 110.186185][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 110.186217][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 110.186241][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 110.186266][ T6392] ? tun_get+0x191/0x370
[ 110.186287][ T6392] ? rcu_is_watching+0x12/0xc0
[ 110.186329][ T6392] ? lock_release+0x201/0x2f0
[ 110.186349][ T6392] tun_chr_write_iter+0xdc/0x210
[ 110.186374][ T6392] vfs_write+0x7d3/0x11d0
[ 110.186398][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 110.186423][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 110.186447][ T6392] ? lock_release+0x201/0x2f0
[ 110.186468][ T6392] ksys_write+0x12a/0x250
[ 110.186492][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 110.186519][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.186542][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.186558][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 110.186570][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 110.186586][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 110.186602][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 110.186613][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 110.186624][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 110.186634][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 110.186645][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 110.186661][ T6392]
[ 110.186672][ T6392] BUG: Bad page state in process syz.0.17 pfn:3b870
[ 110.287700][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x3b870
[ 110.291665][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 110.294681][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 110.298162][ T6392] raw: ffff888000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 110.302822][ T6392] page dumped because: page_pool leak
[ 110.305580][ T6392] page_owner tracks the page as allocated
[ 110.308218][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401549236, free_ts 106681140541
[ 110.314877][ T6392] post_alloc_hook+0x1c0/0x230
[ 110.316769][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 110.318984][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 110.321385][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 110.323699][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 110.326482][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 110.329048][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 110.331390][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 110.333675][ T6392] do_xdp_generic+0x530/0x1320
[ 110.335796][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 110.337891][ T6392] tun_chr_write_iter+0xdc/0x210
[ 110.340232][ T6392] vfs_write+0x7d3/0x11d0
[ 110.341966][ T6392] ksys_write+0x12a/0x250
[ 110.343624][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.345453][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.348166][ T6392] page last free pid 15 tgid 15 stack trace:
[ 110.351341][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 110.353866][ T6392] tlb_remove_table_rcu+0x116/0x1a0
[ 110.356054][ T6392] rcu_core+0x79c/0x1530
[ 110.358101][ T6392] handle_softirqs+0x216/0x8e0
[ 110.360097][ T6392] run_ksoftirqd+0x3a/0x60
[ 110.362151][ T6392] smpboot_thread_fn+0x3f4/0xae0
[ 110.364206][ T6392] kthread+0x3c5/0x780
[ 110.366118][ T6392] ret_from_fork+0x56a/0x730
[ 110.368329][ T6392] ret_from_fork_asm+0x1a/0x30
[ 110.370365][ T6392] Modules linked in:
[ 110.372229][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 110.372259][ T6392] Tainted: [B]=BAD_PAGE
[ 110.372267][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 110.372279][ T6392] Call Trace:
[ 110.372286][ T6392]
[ 110.372300][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 110.372329][ T6392] bad_page+0xcf/0x220
[ 110.372346][ T6392] ? __pfx_bad_page+0x10/0x10
[ 110.372363][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 110.372379][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 110.372402][ T6392] ? rcu_is_watching+0x12/0xc0
[ 110.372428][ T6392] page_frag_free+0x27f/0x2e0
[ 110.372444][ T6392] __xdp_return+0x3ab/0xab0
[ 110.372461][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 110.372479][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 110.372501][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 110.372516][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 110.372542][ T6392] do_xdp_generic+0x8e6/0x1320
[ 110.372562][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 110.372581][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 110.372613][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 110.372644][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 110.372670][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 110.372697][ T6392] ? tun_get+0x191/0x370
[ 110.372719][ T6392] ? rcu_is_watching+0x12/0xc0
[ 110.372742][ T6392] ? lock_release+0x201/0x2f0
[ 110.372762][ T6392] tun_chr_write_iter+0xdc/0x210
[ 110.372788][ T6392] vfs_write+0x7d3/0x11d0
[ 110.372813][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 110.372840][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 110.372864][ T6392] ? lock_release+0x201/0x2f0
[ 110.372885][ T6392] ksys_write+0x12a/0x250
[ 110.372909][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 110.372937][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.372963][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.372981][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 110.372995][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 110.373011][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 110.373029][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 110.373046][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 110.373057][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 110.373068][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 110.373078][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 110.373095][ T6392]
[ 110.373105][ T6392] BUG: Bad page state in process syz.0.17 pfn:2ba32
[ 110.434515][ T62] Bluetooth: hci0: command tx timeout
[ 110.435132][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88802b334080 pfn:0x2ba32
[ 110.486209][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 110.489052][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 110.492963][ T6392] raw: ffff88802b334080 0000000000000001 00000000ffffffff 0000000000000000
[ 110.497065][ T6392] page dumped because: page_pool leak
[ 110.499589][ T6392] page_owner tracks the page as allocated
[ 110.502115][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401543915, free_ts 106857670881
[ 110.508808][ T6392] post_alloc_hook+0x1c0/0x230
[ 110.510790][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 110.513038][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 110.515915][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 110.518730][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 110.521655][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 110.523824][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 110.525850][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 110.527906][ T6392] do_xdp_generic+0x530/0x1320
[ 110.529786][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 110.531682][ T6392] tun_chr_write_iter+0xdc/0x210
[ 110.533718][ T6392] vfs_write+0x7d3/0x11d0
[ 110.535690][ T6392] ksys_write+0x12a/0x250
[ 110.537644][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.540106][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.543000][ T6392] page last free pid 6387 tgid 6387 stack trace:
[ 110.545545][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 110.547647][ T6392] tlb_finish_mmu+0x237/0x7c0
[ 110.549569][ T6392] exit_mmap+0x403/0xb90
[ 110.551265][ T6392] __mmput+0x12a/0x410
[ 110.552943][ T6392] mmput+0x62/0x70
[ 110.554552][ T6392] do_exit+0x7c7/0x2bf0
[ 110.556280][ T6392] do_group_exit+0xd3/0x2a0
[ 110.558234][ T6392] __x64_sys_exit_group+0x3e/0x50
[ 110.560485][ T6392] x64_sys_call+0x150b/0x1730
[ 110.562925][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.565160][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.567809][ T6392] Modules linked in:
[ 110.569344][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 110.569370][ T6392] Tainted: [B]=BAD_PAGE
[ 110.569376][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 110.569387][ T6392] Call Trace:
[ 110.569395][ T6392]
[ 110.569403][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 110.569429][ T6392] bad_page+0xcf/0x220
[ 110.569446][ T6392] ? __pfx_bad_page+0x10/0x10
[ 110.569462][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 110.569479][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 110.569501][ T6392] ? rcu_is_watching+0x12/0xc0
[ 110.569526][ T6392] page_frag_free+0x27f/0x2e0
[ 110.569544][ T6392] __xdp_return+0x3ab/0xab0
[ 110.569560][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 110.569578][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 110.569600][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 110.569615][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 110.569642][ T6392] do_xdp_generic+0x8e6/0x1320
[ 110.569663][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 110.569681][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 110.569712][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 110.569744][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 110.569770][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 110.569802][ T6392] ? tun_get+0x191/0x370
[ 110.569824][ T6392] ? rcu_is_watching+0x12/0xc0
[ 110.569846][ T6392] ? lock_release+0x201/0x2f0
[ 110.569866][ T6392] tun_chr_write_iter+0xdc/0x210
[ 110.569892][ T6392] vfs_write+0x7d3/0x11d0
[ 110.569919][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 110.569946][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 110.569970][ T6392] ? lock_release+0x201/0x2f0
[ 110.569992][ T6392] ksys_write+0x12a/0x250
[ 110.570015][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 110.570042][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.570066][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.570084][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 110.570098][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 110.570114][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 110.570132][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 110.570143][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 110.570154][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 110.570163][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 110.570174][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 110.570190][ T6392]
[ 110.570201][ T6392] BUG: Bad page state in process syz.0.17 pfn:3887f
[ 110.682146][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888037540ac0 pfn:0x3887f
[ 110.686334][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 110.689125][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 110.692645][ T6392] raw: ffff888037540ac0 0000000000000001 00000000ffffffff 0000000000000000
[ 110.696417][ T6392] page dumped because: page_pool leak
[ 110.699054][ T6392] page_owner tracks the page as allocated
[ 110.701957][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401538250, free_ts 106857688240
[ 110.709597][ T6392] post_alloc_hook+0x1c0/0x230
[ 110.711585][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 110.713864][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 110.716250][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 110.718472][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 110.720854][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 110.723259][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 110.725916][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 110.728516][ T6392] do_xdp_generic+0x530/0x1320
[ 110.730751][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 110.732674][ T6392] tun_chr_write_iter+0xdc/0x210
[ 110.734780][ T6392] vfs_write+0x7d3/0x11d0
[ 110.736511][ T6392] ksys_write+0x12a/0x250
[ 110.738266][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.740114][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.742445][ T6392] page last free pid 6387 tgid 6387 stack trace:
[ 110.745026][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 110.747247][ T6392] tlb_finish_mmu+0x237/0x7c0
[ 110.749265][ T6392] exit_mmap+0x403/0xb90
[ 110.751162][ T6392] __mmput+0x12a/0x410
[ 110.752977][ T6392] mmput+0x62/0x70
[ 110.754602][ T6392] do_exit+0x7c7/0x2bf0
[ 110.756263][ T6392] do_group_exit+0xd3/0x2a0
[ 110.758096][ T6392] __x64_sys_exit_group+0x3e/0x50
[ 110.760094][ T6392] x64_sys_call+0x150b/0x1730
[ 110.761994][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.764203][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.767154][ T6392] Modules linked in:
[ 110.768820][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 110.768846][ T6392] Tainted: [B]=BAD_PAGE
[ 110.768852][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 110.768863][ T6392] Call Trace:
[ 110.768871][ T6392]
[ 110.768878][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 110.768907][ T6392] bad_page+0xcf/0x220
[ 110.768924][ T6392] ? __pfx_bad_page+0x10/0x10
[ 110.768939][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 110.768956][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 110.768978][ T6392] ? rcu_is_watching+0x12/0xc0
[ 110.769004][ T6392] page_frag_free+0x27f/0x2e0
[ 110.769019][ T6392] __xdp_return+0x3ab/0xab0
[ 110.769037][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 110.769054][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 110.769075][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 110.769090][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 110.769116][ T6392] do_xdp_generic+0x8e6/0x1320
[ 110.769136][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 110.769154][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 110.769186][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 110.769218][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 110.769243][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 110.769270][ T6392] ? tun_get+0x191/0x370
[ 110.769292][ T6392] ? rcu_is_watching+0x12/0xc0
[ 110.769315][ T6392] ? lock_release+0x201/0x2f0
[ 110.769336][ T6392] tun_chr_write_iter+0xdc/0x210
[ 110.769362][ T6392] vfs_write+0x7d3/0x11d0
[ 110.769389][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 110.769415][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 110.769440][ T6392] ? lock_release+0x201/0x2f0
[ 110.769461][ T6392] ksys_write+0x12a/0x250
[ 110.769485][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 110.769512][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.769537][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.769555][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 110.769569][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 110.769585][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 110.769602][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 110.769614][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 110.769625][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 110.769635][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 110.769645][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 110.769662][ T6392]
[ 110.769673][ T6392] BUG: Bad page state in process syz.0.17 pfn:4d60a
[ 110.879398][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888035275600 pfn:0x4d60a
[ 110.883413][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 110.886446][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 110.890321][ T6392] raw: ffff888035275600 0000000000000001 00000000ffffffff 0000000000000000
[ 110.894075][ T6392] page dumped because: page_pool leak
[ 110.896314][ T6392] page_owner tracks the page as allocated
[ 110.898569][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401533428, free_ts 106874765517
[ 110.905410][ T6392] post_alloc_hook+0x1c0/0x230
[ 110.907441][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 110.909825][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 110.912454][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 110.915090][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 110.917667][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 110.919909][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 110.921849][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 110.923963][ T6392] do_xdp_generic+0x530/0x1320
[ 110.926087][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 110.928370][ T6392] tun_chr_write_iter+0xdc/0x210
[ 110.930868][ T6392] vfs_write+0x7d3/0x11d0
[ 110.933018][ T6392] ksys_write+0x12a/0x250
[ 110.934908][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.936747][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.939107][ T6392] page last free pid 5342 tgid 5342 stack trace:
[ 110.941601][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 110.943767][ T6392] __mmdrop+0xd5/0x580
[ 110.945479][ T6392] finish_task_switch.isra.0+0x7a4/0xc10
[ 110.947897][ T6392] __schedule+0x1198/0x5de0
[ 110.949982][ T6392] preempt_schedule_irq+0x51/0x90
[ 110.952405][ T6392] irqentry_exit+0x36/0x90
[ 110.954791][ T6392] asm_sysvec_call_function_single+0x1a/0x20
[ 110.957331][ T6392] Modules linked in:
[ 110.959202][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 110.959229][ T6392] Tainted: [B]=BAD_PAGE
[ 110.959236][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 110.959246][ T6392] Call Trace:
[ 110.959254][ T6392]
[ 110.959262][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 110.959291][ T6392] bad_page+0xcf/0x220
[ 110.959308][ T6392] ? __pfx_bad_page+0x10/0x10
[ 110.959324][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 110.959341][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 110.959363][ T6392] ? rcu_is_watching+0x12/0xc0
[ 110.959389][ T6392] page_frag_free+0x27f/0x2e0
[ 110.959405][ T6392] __xdp_return+0x3ab/0xab0
[ 110.959422][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 110.959440][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 110.959462][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 110.959477][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 110.959499][ T6392] do_xdp_generic+0x8e6/0x1320
[ 110.959516][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 110.959531][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 110.959556][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 110.959582][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 110.959603][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 110.959629][ T6392] ? tun_get+0x191/0x370
[ 110.959646][ T6392] ? rcu_is_watching+0x12/0xc0
[ 110.959664][ T6392] ? lock_release+0x201/0x2f0
[ 110.959681][ T6392] tun_chr_write_iter+0xdc/0x210
[ 110.959705][ T6392] vfs_write+0x7d3/0x11d0
[ 110.959726][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 110.959750][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 110.959773][ T6392] ? lock_release+0x201/0x2f0
[ 110.959794][ T6392] ksys_write+0x12a/0x250
[ 110.959814][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 110.959839][ T6392] do_syscall_64+0xcd/0x4e0
[ 110.959862][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.959877][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 110.959890][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 110.959907][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 110.959922][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 110.959933][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 110.959943][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 110.959953][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 110.959962][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 110.959978][ T6392]
[ 110.959987][ T6392] BUG: Bad page state in process syz.0.17 pfn:507c8
[ 111.070604][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x507c8
[ 111.073990][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 111.077507][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 111.081043][ T6392] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 111.084767][ T6392] page dumped because: page_pool leak
[ 111.087056][ T6392] page_owner tracks the page as allocated
[ 111.089568][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401528408, free_ts 106894489627
[ 111.096840][ T6392] post_alloc_hook+0x1c0/0x230
[ 111.098867][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 111.101043][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 111.103459][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 111.105725][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 111.108190][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 111.110903][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 111.113317][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 111.115358][ T6392] do_xdp_generic+0x530/0x1320
[ 111.116841][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 111.118282][ T6392] tun_chr_write_iter+0xdc/0x210
[ 111.119844][ T6392] vfs_write+0x7d3/0x11d0
[ 111.121385][ T6392] ksys_write+0x12a/0x250
[ 111.122962][ T6392] do_syscall_64+0xcd/0x4e0
[ 111.124567][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.126557][ T6392] page last free pid 0 tgid 0 stack trace:
[ 111.128630][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 111.130459][ T6392] tlb_remove_table_rcu+0x116/0x1a0
[ 111.132463][ T6392] rcu_core+0x79c/0x1530
[ 111.134348][ T6392] handle_softirqs+0x216/0x8e0
[ 111.135917][ T6392] __irq_exit_rcu+0x109/0x170
[ 111.137343][ T6392] irq_exit_rcu+0x9/0x30
[ 111.138676][ T6392] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 111.140422][ T6392] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 111.142284][ T6392] Modules linked in:
[ 111.143700][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 111.143719][ T6392] Tainted: [B]=BAD_PAGE
[ 111.143724][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 111.143735][ T6392] Call Trace:
[ 111.143742][ T6392]
[ 111.143747][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 111.143768][ T6392] bad_page+0xcf/0x220
[ 111.143780][ T6392] ? __pfx_bad_page+0x10/0x10
[ 111.143791][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 111.143803][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 111.143820][ T6392] ? rcu_is_watching+0x12/0xc0
[ 111.143839][ T6392] page_frag_free+0x27f/0x2e0
[ 111.143850][ T6392] __xdp_return+0x3ab/0xab0
[ 111.143863][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 111.143876][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 111.143892][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 111.143903][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 111.143922][ T6392] do_xdp_generic+0x8e6/0x1320
[ 111.143937][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 111.143951][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 111.143974][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 111.143997][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 111.144017][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 111.144037][ T6392] ? tun_get+0x191/0x370
[ 111.144054][ T6392] ? rcu_is_watching+0x12/0xc0
[ 111.144071][ T6392] ? lock_release+0x201/0x2f0
[ 111.144085][ T6392] tun_chr_write_iter+0xdc/0x210
[ 111.144105][ T6392] vfs_write+0x7d3/0x11d0
[ 111.144125][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 111.144145][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 111.144164][ T6392] ? lock_release+0x201/0x2f0
[ 111.144179][ T6392] ksys_write+0x12a/0x250
[ 111.144198][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 111.144218][ T6392] do_syscall_64+0xcd/0x4e0
[ 111.144252][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.144266][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 111.144277][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 111.144290][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 111.144302][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 111.144310][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 111.144318][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 111.144325][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 111.144332][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 111.144344][ T6392]
[ 111.239418][ T6392] BUG: Bad page state in process syz.0.17 pfn:502fe
[ 111.241811][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x502fe
[ 111.245921][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 111.248887][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 111.253172][ T6392] raw: ffff888000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 111.257498][ T6392] page dumped because: page_pool leak
[ 111.259792][ T6392] page_owner tracks the page as allocated
[ 111.262121][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401523481, free_ts 106894525868
[ 111.268837][ T6392] post_alloc_hook+0x1c0/0x230
[ 111.270860][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 111.273146][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 111.275584][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 111.277878][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 111.281183][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 111.284040][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 111.286061][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 111.288095][ T6392] do_xdp_generic+0x530/0x1320
[ 111.290069][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 111.292230][ T6392] tun_chr_write_iter+0xdc/0x210
[ 111.294418][ T6392] vfs_write+0x7d3/0x11d0
[ 111.296280][ T6392] ksys_write+0x12a/0x250
[ 111.298189][ T6392] do_syscall_64+0xcd/0x4e0
[ 111.300435][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.303280][ T6392] page last free pid 0 tgid 0 stack trace:
[ 111.305650][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 111.307758][ T6392] tlb_remove_table_rcu+0x116/0x1a0
[ 111.309841][ T6392] rcu_core+0x79c/0x1530
[ 111.311779][ T6392] handle_softirqs+0x216/0x8e0
[ 111.314076][ T6392] __irq_exit_rcu+0x109/0x170
[ 111.316669][ T6392] irq_exit_rcu+0x9/0x30
[ 111.318917][ T6392] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 111.321280][ T6392] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 111.323689][ T6392] Modules linked in:
[ 111.325381][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 111.325409][ T6392] Tainted: [B]=BAD_PAGE
[ 111.325414][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 111.325425][ T6392] Call Trace:
[ 111.325433][ T6392]
[ 111.325441][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 111.325470][ T6392] bad_page+0xcf/0x220
[ 111.325487][ T6392] ? __pfx_bad_page+0x10/0x10
[ 111.325503][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 111.325519][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 111.325541][ T6392] ? rcu_is_watching+0x12/0xc0
[ 111.325567][ T6392] page_frag_free+0x27f/0x2e0
[ 111.325583][ T6392] __xdp_return+0x3ab/0xab0
[ 111.325600][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 111.325618][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 111.325640][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 111.325654][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 111.325680][ T6392] do_xdp_generic+0x8e6/0x1320
[ 111.325700][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 111.325719][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 111.325751][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 111.325783][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 111.325809][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 111.325836][ T6392] ? tun_get+0x191/0x370
[ 111.325857][ T6392] ? rcu_is_watching+0x12/0xc0
[ 111.325879][ T6392] ? lock_release+0x201/0x2f0
[ 111.325899][ T6392] tun_chr_write_iter+0xdc/0x210
[ 111.325926][ T6392] vfs_write+0x7d3/0x11d0
[ 111.325952][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 111.325978][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 111.326012][ T6392] ? lock_release+0x201/0x2f0
[ 111.326033][ T6392] ksys_write+0x12a/0x250
[ 111.326057][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 111.326085][ T6392] do_syscall_64+0xcd/0x4e0
[ 111.326110][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.326128][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 111.326141][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 111.326158][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 111.326175][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 111.326187][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 111.326198][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 111.326209][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 111.326220][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 111.326236][ T6392]
[ 111.326249][ T6392] BUG: Bad page state in process syz.0.17 pfn:2502c
[ 111.437877][ T6392] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x2502c
[ 111.440963][ T6392] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 111.443874][ T6392] raw: 00fff00000000000 dead000000000040 ffff888021b3a000 0000000000000000
[ 111.447591][ T6392] raw: ffff888000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 111.450350][ T6392] page dumped because: page_pool leak
[ 111.452177][ T6392] page_owner tracks the page as allocated
[ 111.453912][ T6392] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6392, tgid 6391 (syz.0.17), ts 109401518192, free_ts 106894560876
[ 111.458886][ T6392] post_alloc_hook+0x1c0/0x230
[ 111.460369][ T6392] get_page_from_freelist+0x132b/0x38e0
[ 111.462324][ T6392] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 111.464112][ T6392] alloc_pages_bulk_noprof+0x71c/0x1410
[ 111.465982][ T6392] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 111.467908][ T6392] page_pool_alloc_netmems+0xc4/0x190
[ 111.469732][ T6392] skb_pp_cow_data+0x7c0/0xff0
[ 111.471410][ T6392] skb_cow_data_for_xdp+0x88/0xb0
[ 111.473641][ T6392] do_xdp_generic+0x530/0x1320
[ 111.476019][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 111.478398][ T6392] tun_chr_write_iter+0xdc/0x210
[ 111.480541][ T6392] vfs_write+0x7d3/0x11d0
[ 111.482373][ T6392] ksys_write+0x12a/0x250
[ 111.484120][ T6392] do_syscall_64+0xcd/0x4e0
[ 111.486341][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.489120][ T6392] page last free pid 0 tgid 0 stack trace:
[ 111.491936][ T6392] __free_frozen_pages+0x7d5/0x10f0
[ 111.494486][ T6392] rcu_core+0x79c/0x1530
[ 111.496206][ T6392] handle_softirqs+0x216/0x8e0
[ 111.498166][ T6392] __irq_exit_rcu+0x109/0x170
[ 111.500081][ T6392] irq_exit_rcu+0x9/0x30
[ 111.501835][ T6392] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 111.504107][ T6392] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 111.506631][ T6392] Modules linked in:
[ 111.508259][ T6392] CPU: 0 UID: 0 PID: 6392 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 111.508287][ T6392] Tainted: [B]=BAD_PAGE
[ 111.508293][ T6392] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 111.508303][ T6392] Call Trace:
[ 111.508309][ T6392]
[ 111.508315][ T6392] dump_stack_lvl+0x16c/0x1f0
[ 111.508341][ T6392] bad_page+0xcf/0x220
[ 111.508358][ T6392] ? __pfx_bad_page+0x10/0x10
[ 111.508374][ T6392] ? page_bad_reason+0x9d/0x1f0
[ 111.508389][ T6392] __free_frozen_pages+0x7f7/0x10f0
[ 111.508411][ T6392] ? rcu_is_watching+0x12/0xc0
[ 111.508434][ T6392] page_frag_free+0x27f/0x2e0
[ 111.508449][ T6392] __xdp_return+0x3ab/0xab0
[ 111.508464][ T6392] ? kfree_skbmem+0x1a4/0x1f0
[ 111.508483][ T6392] bpf_xdp_adjust_tail+0x887/0xcb0
[ 111.508504][ T6392] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 111.508518][ T6392] bpf_prog_run_generic_xdp+0x626/0x1530
[ 111.508543][ T6392] do_xdp_generic+0x8e6/0x1320
[ 111.508560][ T6392] ? __pfx_do_xdp_generic+0x10/0x10
[ 111.508578][ T6392] ? __pfx__copy_from_iter+0x10/0x10
[ 111.508616][ T6392] tun_get_user+0x1d4a/0x3cd0
[ 111.508651][ T6392] ? __pfx_tun_get_user+0x10/0x10
[ 111.508680][ T6392] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 111.508710][ T6392] ? tun_get+0x191/0x370
[ 111.508734][ T6392] ? rcu_is_watching+0x12/0xc0
[ 111.508761][ T6392] ? lock_release+0x201/0x2f0
[ 111.508785][ T6392] tun_chr_write_iter+0xdc/0x210
[ 111.508817][ T6392] vfs_write+0x7d3/0x11d0
[ 111.508844][ T6392] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 111.508875][ T6392] ? __pfx_vfs_write+0x10/0x10
[ 111.508904][ T6392] ? lock_release+0x201/0x2f0
[ 111.508930][ T6392] ksys_write+0x12a/0x250
[ 111.508958][ T6392] ? __pfx_ksys_write+0x10/0x10
[ 111.508994][ T6392] do_syscall_64+0xcd/0x4e0
[ 111.509023][ T6392] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.509043][ T6392] RIP: 0033:0x7fc0fbb8bc1f
[ 111.509059][ T6392] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 111.509080][ T6392] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 111.509100][ T6392] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 111.509114][ T6392] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 111.509124][ T6392] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 111.509136][ T6392] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 111.509148][ T6392] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 111.509168][ T6392]
[ 111.632146][ T6394] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x50b6a
[ 111.637362][ T6394] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 111.640550][ T6394] raw: 00fff00000000000 dead000000000040 ffff888021b3d000 0000000000000000
[ 111.643901][ T6394] raw: ffff888000000000 3fffffffffffffff 00000000ffffffff 0000000000000000
[ 111.647236][ T6394] page dumped because: VM_BUG_ON_PAGE(page_ref_count(page) == 0)
[ 111.650222][ T6394] page_owner tracks the page as allocated
[ 111.652692][ T6394] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6390, tgid 6389 (syz.0.16), ts 107122681840, free_ts 106557446705
[ 111.659451][ T6394] post_alloc_hook+0x1c0/0x230
[ 111.661700][ T6394] get_page_from_freelist+0x132b/0x38e0
[ 111.664595][ T6394] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 111.667275][ T6394] alloc_pages_bulk_noprof+0x71c/0x1410
[ 111.669068][ T6394] __page_pool_alloc_netmems_slow+0x193/0xc60
[ 111.670886][ T6394] page_pool_alloc_netmems+0xc4/0x190
[ 111.672505][ T6394] page_pool_alloc_frag_netmem+0x219/0x9c0
[ 111.674352][ T6394] skb_pp_cow_data+0x584/0xff0
[ 111.676291][ T6394] skb_cow_data_for_xdp+0x88/0xb0
[ 111.678344][ T6394] do_xdp_generic+0x530/0x1320
[ 111.680234][ T6394] tun_get_user+0x1d4a/0x3cd0
[ 111.682205][ T6394] tun_chr_write_iter+0xdc/0x210
[ 111.684367][ T6394] vfs_write+0x7d3/0x11d0
[ 111.686643][ T6394] ksys_write+0x12a/0x250
[ 111.688978][ T6394] do_syscall_64+0xcd/0x4e0
[ 111.691415][ T6394] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.693234][ T6394] page last free pid 6335 tgid 6335 stack trace:
[ 111.695462][ T6394] __free_frozen_pages+0x7d5/0x10f0
[ 111.697108][ T6394] tlb_remove_table_rcu+0x116/0x1a0
[ 111.698860][ T6394] rcu_core+0x79c/0x1530
[ 111.700581][ T6394] handle_softirqs+0x216/0x8e0
[ 111.702554][ T6394] __irq_exit_rcu+0x109/0x170
[ 111.704480][ T6394] irq_exit_rcu+0x9/0x30
[ 111.706050][ T6394] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 111.708291][ T6394] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 111.710937][ T6394] ------------[ cut here ]------------
[ 111.713275][ T6394] kernel BUG at ./include/linux/mm.h:1036!
[ 111.715854][ T6394] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[ 111.718574][ T6394] CPU: 1 UID: 0 PID: 6394 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 111.722823][ T6394] Tainted: [B]=BAD_PAGE
[ 111.724414][ T6394] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 111.727575][ T6394] RIP: 0010:page_frag_free+0x200/0x2e0
[ 111.729288][ T6394] Code: 24 ff e9 b8 fe ff ff e8 4e 0b a5 ff 49 8d 6d ff e9 aa fe ff ff e8 40 0b a5 ff 48 c7 c6 00 71 7c 8b 48 89 ef e8 d1 c8 ee ff 90 <0f> 0b e8 29 0b a5 ff be 08 00 00 00 48 89 ef e8 ac 8b 0c 00 48 89
[ 111.736402][ T6394] RSP: 0018:ffffc900038c7740 EFLAGS: 00010293
[ 111.738624][ T6394] RAX: 0000000000000000 RBX: ffffea000142dab4 RCX: ffffffff822e4687
[ 111.741021][ T6394] RDX: ffff88802e2c0000 RSI: ffffffff82160dcf RDI: ffff88802e2c0484
[ 111.743504][ T6394] RBP: ffffea000142da80 R08: 0000000000000005 R09: 0000000000000000
[ 111.746148][ T6394] R10: 0000000000000000 R11: 7379735f6d736120 R12: 0000000000000000
[ 111.748519][ T6394] R13: dead000000000040 R14: 0000000000000000 R15: ffff88803b8fbfe8
[ 111.751308][ T6394] FS: 00007fc0fadfe6c0(0000) GS:ffff8880d6f60000(0000) knlGS:0000000000000000
[ 111.754099][ T6394] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 111.756987][ T6394] CR2: 0000200000010000 CR3: 000000002a445000 CR4: 0000000000352ef0
[ 111.760785][ T6394] Call Trace:
[ 111.762593][ T6394]
[ 111.763798][ T6394] __xdp_return+0x3ab/0xab0
[ 111.765690][ T6394] ? kfree_skbmem+0x1a4/0x1f0
[ 111.767631][ T6394] bpf_xdp_adjust_tail+0x887/0xcb0
[ 111.769745][ T6394] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 111.771903][ T6394] bpf_prog_run_generic_xdp+0x626/0x1530
[ 111.774331][ T6394] do_xdp_generic+0x8e6/0x1320
[ 111.776068][ T6394] ? __pfx_do_xdp_generic+0x10/0x10
[ 111.777735][ T6394] ? __pfx__copy_from_iter+0x10/0x10
[ 111.779467][ T6394] tun_get_user+0x1d4a/0x3cd0
[ 111.780930][ T6394] ? trace_irq_enable.constprop.0+0xd4/0x120
[ 111.782815][ T6394] ? __pfx_tun_get_user+0x10/0x10
[ 111.784611][ T6394] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 111.786399][ T6394] ? tun_get+0x191/0x370
[ 111.787776][ T6394] ? rcu_is_watching+0x12/0xc0
[ 111.789386][ T6394] ? lock_release+0x201/0x2f0
[ 111.791438][ T6394] tun_chr_write_iter+0xdc/0x210
[ 111.793633][ T6394] vfs_write+0x7d3/0x11d0
[ 111.795422][ T6394] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 111.797635][ T6394] ? __pfx_vfs_write+0x10/0x10
[ 111.799560][ T6394] ? lock_release+0x201/0x2f0
[ 111.801601][ T6394] ksys_write+0x12a/0x250
[ 111.803147][ T6394] ? __pfx_ksys_write+0x10/0x10
[ 111.805010][ T6394] do_syscall_64+0xcd/0x4e0
[ 111.806813][ T6394] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 111.809156][ T6394] RIP: 0033:0x7fc0fbb8bc1f
[ 111.810974][ T6394] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 111.818948][ T6394] RSP: 002b:00007fc0fadfe000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 111.821755][ T6394] RAX: ffffffffffffffda RBX: 00007fc0fbda5fa0 RCX: 00007fc0fbb8bc1f
[ 111.824530][ T6394] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 111.827190][ T6394] RBP: 00007fc0fbc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 111.829513][ T6394] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000
[ 111.832019][ T6394] R13: 0000000000000000 R14: 00007fc0fbda5fa0 R15: 00007ffc4bbb8438
[ 111.834684][ T6394]
[ 111.836111][ T6394] Modules linked in:
[ 111.837607][ T6394] ---[ end trace 0000000000000000 ]---
[ 111.839393][ T6394] RIP: 0010:page_frag_free+0x200/0x2e0
[ 111.841027][ T6394] Code: 24 ff e9 b8 fe ff ff e8 4e 0b a5 ff 49 8d 6d ff e9 aa fe ff ff e8 40 0b a5 ff 48 c7 c6 00 71 7c 8b 48 89 ef e8 d1 c8 ee ff 90 <0f> 0b e8 29 0b a5 ff be 08 00 00 00 48 89 ef e8 ac 8b 0c 00 48 89
[ 111.847808][ T6394] RSP: 0018:ffffc900038c7740 EFLAGS: 00010293
[ 111.850024][ T6394] RAX: 0000000000000000 RBX: ffffea000142dab4 RCX: ffffffff822e4687
[ 111.852793][ T6394] RDX: ffff88802e2c0000 RSI: ffffffff82160dcf RDI: ffff88802e2c0484
[ 111.856533][ T6394] RBP: ffffea000142da80 R08: 0000000000000005 R09: 0000000000000000
[ 111.859707][ T6394] R10: 0000000000000000 R11: 7379735f6d736120 R12: 0000000000000000
[ 111.862702][ T6394] R13: dead000000000040 R14: 0000000000000000 R15: ffff88803b8fbfe8
[ 111.865361][ T6394] FS: 00007fc0fadfe6c0(0000) GS:ffff8880d6f60000(0000) knlGS:0000000000000000
[ 111.868081][ T6394] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 111.870056][ T6394] CR2: 0000200000010000 CR3: 000000002a445000 CR4: 0000000000352ef0
[ 111.872677][ T6394] Kernel panic - not syncing: Fatal exception in interrupt
[ 111.875940][ T6394] Kernel Offset: disabled
[ 111.877433][ T6394] Rebooting in 86400 seconds..