Warning: Permanently added '[localhost]:48833' (ED25519) to the list of known hosts.
2025/08/02 21:22:22 ignoring optional flag "sandboxArg"="0"
2025/08/02 21:22:23 parsed 1 programs
[ 135.895082][ T5695] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 138.024079][ T1316] ieee802154 phy0 wpan0: encryption failed: -22
[ 138.027418][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[ 139.429915][ T5706] chnl_net:caif_netlink_parms(): no params data found
[ 139.517466][ T5706] bridge0: port 1(bridge_slave_0) entered blocking state
[ 139.520867][ T5706] bridge0: port 1(bridge_slave_0) entered disabled state
[ 139.525471][ T5706] bridge_slave_0: entered allmulticast mode
[ 139.530291][ T5706] bridge_slave_0: entered promiscuous mode
[ 139.535540][ T5706] bridge0: port 2(bridge_slave_1) entered blocking state
[ 139.538653][ T5706] bridge0: port 2(bridge_slave_1) entered disabled state
[ 139.543237][ T5706] bridge_slave_1: entered allmulticast mode
[ 139.547315][ T5706] bridge_slave_1: entered promiscuous mode
[ 139.575398][ T5706] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 139.583177][ T5706] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 139.610050][ T5706] team0: Port device team_slave_0 added
[ 139.614902][ T5706] team0: Port device team_slave_1 added
[ 139.637309][ T5706] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 139.640270][ T5706] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 139.653637][ T5706] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 139.660824][ T5706] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 139.664433][ T5706] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 139.676621][ T5706] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 139.716443][ T5706] hsr_slave_0: entered promiscuous mode
[ 139.719508][ T5706] hsr_slave_1: entered promiscuous mode
[ 140.385157][ T5706] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 140.413842][ T5706] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 140.419736][ T5706] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 140.437846][ T5706] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 140.593992][ T5706] 8021q: adding VLAN 0 to HW filter on device bond0
[ 140.619102][ T5706] 8021q: adding VLAN 0 to HW filter on device team0
[ 140.646942][ T1045] bridge0: port 1(bridge_slave_0) entered blocking state
[ 140.650079][ T1045] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 140.695476][ T1037] bridge0: port 2(bridge_slave_1) entered blocking state
[ 140.698654][ T1037] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 141.034250][ T5706] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 141.118247][ T5706] veth0_vlan: entered promiscuous mode
[ 141.146549][ T5706] veth1_vlan: entered promiscuous mode
[ 141.198319][ T5706] veth0_macvtap: entered promiscuous mode
[ 141.219606][ T5706] veth1_macvtap: entered promiscuous mode
[ 141.246068][ T5706] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 141.266347][ T5706] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 141.298893][ T1045] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 141.312531][ T1045] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 141.316416][ T1045] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 141.320267][ T1045] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 141.563911][ T1045] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 141.642922][ T1045] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 141.714270][ T1045] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 141.787933][ T1045] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 142.051124][ T5386] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 142.055920][ T5386] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 142.059540][ T5386] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 142.066243][ T5386] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 142.069850][ T5386] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 142.586180][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 142.589485][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 142.653356][ T1037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 142.657644][ T1037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 143.382069][ T1045] bridge_slave_1: left allmulticast mode
[ 143.384640][ T1045] bridge_slave_1: left promiscuous mode
[ 143.387311][ T1045] bridge0: port 2(bridge_slave_1) entered disabled state
[ 143.404447][ T1045] bridge_slave_0: left allmulticast mode
[ 143.407063][ T1045] bridge_slave_0: left promiscuous mode
[ 143.409677][ T1045] bridge0: port 1(bridge_slave_0) entered disabled state
[ 144.124449][ T1045] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 144.133720][ T1045] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 144.151698][ T1045] bond0 (unregistering): Released all slaves
[ 144.265690][ T1045] hsr_slave_0: left promiscuous mode
[ 144.279083][ T1045] hsr_slave_1: left promiscuous mode
[ 144.282940][ T1045] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 144.286442][ T1045] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 144.290693][ T1045] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 144.294540][ T1045] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 144.305056][ T1045] veth1_macvtap: left promiscuous mode
[ 144.307559][ T1045] veth0_macvtap: left promiscuous mode
[ 144.310110][ T1045] veth1_vlan: left promiscuous mode
[ 144.313624][ T1045] veth0_vlan: left promiscuous mode
[ 144.623292][ T1045] team0 (unregistering): Port device team_slave_1 removed
[ 144.643279][ T1045] team0 (unregistering): Port device team_slave_0 removed
2025/08/02 21:22:42 executed programs: 0
[ 150.595573][ T4701] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 150.600289][ T4701] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 150.605760][ T4701] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 150.609705][ T4701] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 150.613628][ T4701] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 150.992849][ T5914] chnl_net:caif_netlink_parms(): no params data found
[ 151.107679][ T5914] bridge0: port 1(bridge_slave_0) entered blocking state
[ 151.111028][ T5914] bridge0: port 1(bridge_slave_0) entered disabled state
[ 151.122604][ T5914] bridge_slave_0: entered allmulticast mode
[ 151.132523][ T5914] bridge_slave_0: entered promiscuous mode
[ 151.137084][ T5914] bridge0: port 2(bridge_slave_1) entered blocking state
[ 151.140303][ T5914] bridge0: port 2(bridge_slave_1) entered disabled state
[ 151.152395][ T5914] bridge_slave_1: entered allmulticast mode
[ 151.161673][ T5914] bridge_slave_1: entered promiscuous mode
[ 151.210763][ T5914] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 151.232988][ T5914] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 151.283464][ T5914] team0: Port device team_slave_0 added
[ 151.292945][ T5914] team0: Port device team_slave_1 added
[ 151.344992][ T5914] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 151.348424][ T5914] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 151.373658][ T5914] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 151.392966][ T5914] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 151.395912][ T5914] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 151.425137][ T5914] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 151.514022][ T5914] hsr_slave_0: entered promiscuous mode
[ 151.519871][ T5914] hsr_slave_1: entered promiscuous mode
[ 152.079930][ T5914] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 152.095248][ T5914] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 152.126342][ T5914] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 152.133305][ T5914] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 152.289231][ T5914] 8021q: adding VLAN 0 to HW filter on device bond0
[ 152.325593][ T5914] 8021q: adding VLAN 0 to HW filter on device team0
[ 152.340979][ T3100] bridge0: port 1(bridge_slave_0) entered blocking state
[ 152.344253][ T3100] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 152.373351][ T3100] bridge0: port 2(bridge_slave_1) entered blocking state
[ 152.377313][ T3100] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 152.661660][ T4701] Bluetooth: hci0: command tx timeout
[ 152.674809][ T5914] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 152.714237][ T5914] veth0_vlan: entered promiscuous mode
[ 152.723455][ T5914] veth1_vlan: entered promiscuous mode
[ 152.755158][ T5914] veth0_macvtap: entered promiscuous mode
[ 152.762410][ T5914] veth1_macvtap: entered promiscuous mode
[ 152.777493][ T5914] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 152.787856][ T5914] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 152.800146][ T3100] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 152.804786][ T3100] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 152.808859][ T3100] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 152.826532][ T3100] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 152.885638][ T3100] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 152.889159][ T3100] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 152.927311][ T1045] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 152.930750][ T1045] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 153.248403][ T5961] loop0: detected capacity change from 0 to 32768
[ 153.258013][ T5961] XFS: ikeep mount option is deprecated.
[ 153.286844][ T5961] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 153.348614][ T5961] XFS (loop0): Ending clean mount
[ 153.364447][ T5961] XFS (loop0): Quotacheck needed: Please wait.
[ 153.398846][ T5961] XFS (loop0): Quotacheck: Done.
[ 153.475494][ T5914] BUG: Bad page state in process syz-executor pfn:54401
[ 153.478803][ T5914] page does not match folio
[ 153.485165][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x54401
[ 153.489648][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 153.494568][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 153.498515][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 153.502871][ T5914] page dumped because: nonzero pincount
[ 153.505397][ T5914] page_owner tracks the page as allocated
[ 153.508090][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5961, tgid 5960 (syz.0.16), ts 153415026032, free_ts 143644080144
[ 153.523356][ T5914] post_alloc_hook+0x240/0x2a0
[ 153.525810][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 153.528313][ T5914] __alloc_frozen_pages_noprof+0x181/0x370
[ 153.530897][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 153.533741][ T5914] alloc_pages_noprof+0xa9/0x190
[ 153.535957][ T5914] folio_alloc_noprof+0x1e/0x30
[ 153.538158][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 153.540984][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 153.547545][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 153.549791][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 153.552631][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 153.555217][ T5914] vfs_write+0x54b/0xa90
[ 153.557132][ T5914] ksys_write+0x145/0x250
[ 153.559080][ T5914] do_syscall_64+0xfa/0x3b0
[ 153.561148][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.565610][ T5914] page last free pid 79 tgid 79 stack trace:
[ 153.568267][ T5914] free_unref_folios+0xdbd/0x1520
[ 153.570527][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 153.573995][ T5914] evict_folios+0x47f2/0x58b0
[ 153.576492][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 153.578791][ T5914] shrink_one+0x21b/0x7c0
[ 153.580723][ T5914] shrink_node+0x314e/0x3760
[ 153.583821][ T5914] kswapd+0x147c/0x2830
[ 153.585901][ T5914] kthread+0x711/0x8a0
[ 153.587759][ T5914] ret_from_fork+0x3f9/0x770
[ 153.589888][ T5914] ret_from_fork_asm+0x1a/0x30
[ 153.593465][ T5914] Modules linked in:
[ 153.595282][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 153.595296][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 153.595302][ T5914] Call Trace:
[ 153.595307][ T5914]
[ 153.595311][ T5914] dump_stack_lvl+0x189/0x250
[ 153.595329][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 153.595342][ T5914] ? __pfx_print_modules+0x10/0x10
[ 153.595355][ T5914] ? percpu_ref_put+0x19/0x180
[ 153.595368][ T5914] ? percpu_ref_put+0x19/0x180
[ 153.595381][ T5914] ? percpu_ref_put+0xf9/0x180
[ 153.595394][ T5914] bad_page+0x180/0x1c0
[ 153.595406][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 153.595420][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 153.595436][ T5914] __folio_put+0x21b/0x2c0
[ 153.595452][ T5914] ? __pfx___folio_put+0x10/0x10
[ 153.595471][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 153.595489][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 153.595503][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 153.595521][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 153.595533][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 153.595550][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 153.595559][ T5914] ? lockdep_unlock+0x89/0x120
[ 153.595589][ T5914] ? __lock_acquire+0xab9/0xd20
[ 153.595617][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.595636][ T5914] ? _raw_spin_unlock_irq+0x23/0x50
[ 153.595649][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.595660][ T5914] ? lockdep_hardirqs_on+0x9c/0x150
[ 153.595678][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.595689][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 153.595702][ T5914] evict+0x501/0x9c0
[ 153.595718][ T5914] ? __pfx_evict+0x10/0x10
[ 153.595733][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 153.595749][ T5914] evict_inodes+0x64c/0x6d0
[ 153.595764][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 153.595775][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 153.595793][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 153.595806][ T5914] kill_block_super+0x44/0x90
[ 153.595818][ T5914] xfs_kill_sb+0x15/0x50
[ 153.595829][ T5914] deactivate_locked_super+0xbc/0x130
[ 153.595846][ T5914] cleanup_mnt+0x425/0x4c0
[ 153.595861][ T5914] ? lockdep_hardirqs_on+0x9c/0x150
[ 153.595876][ T5914] task_work_run+0x1d1/0x260
[ 153.595891][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 153.595902][ T5914] ? __x64_sys_umount+0x122/0x160
[ 153.595915][ T5914] ? exit_to_user_mode_loop+0x40/0x110
[ 153.595931][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 153.595945][ T5914] do_syscall_64+0x2bd/0x3b0
[ 153.595954][ T5914] ? lockdep_hardirqs_on+0x9c/0x150
[ 153.595967][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.595977][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 153.595989][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.595998][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 153.596010][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 153.596018][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 153.596031][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 153.596037][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 153.596044][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 153.596050][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 153.596056][ T5914] R13: 00007f3f2201089d R14: 00000000000256b8 R15: 00007ffff66cd380
[ 153.596073][ T5914]
[ 153.596078][ T5914] Disabling lock debugging due to kernel taint
[ 153.764516][ T5914] BUG: Bad page state in process syz-executor pfn:54400
[ 153.768699][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x54400
[ 153.773084][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 153.776936][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 153.784241][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 153.788665][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 153.793159][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 153.796963][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 153.800703][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 153.805027][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 153.808810][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 153.813008][ T5914] page_owner tracks the page as allocated
[ 153.815989][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5961, tgid 5960 (syz.0.16), ts 153415026032, free_ts 143644088109
[ 153.826653][ T5914] post_alloc_hook+0x240/0x2a0
[ 153.828840][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 153.831747][ T5914] __alloc_frozen_pages_noprof+0x181/0x370
[ 153.834500][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 153.836949][ T5914] alloc_pages_noprof+0xa9/0x190
[ 153.839136][ T5914] folio_alloc_noprof+0x1e/0x30
[ 153.841979][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 153.844641][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 153.847173][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 153.849631][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 153.852639][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 153.855041][ T5914] vfs_write+0x54b/0xa90
[ 153.856969][ T5914] ksys_write+0x145/0x250
[ 153.858839][ T5914] do_syscall_64+0xfa/0x3b0
[ 153.860861][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.891650][ T5914] page last free pid 79 tgid 79 stack trace:
[ 153.894356][ T5914] free_unref_folios+0xdbd/0x1520
[ 153.896632][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 153.898932][ T5914] evict_folios+0x47f2/0x58b0
[ 153.901043][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 153.922024][ T5914] shrink_one+0x21b/0x7c0
[ 153.923983][ T5914] shrink_node+0x314e/0x3760
[ 153.926120][ T5914] kswapd+0x147c/0x2830
[ 153.927899][ T5914] kthread+0x711/0x8a0
[ 153.929932][ T5914] ret_from_fork+0x3f9/0x770
[ 153.947578][ T5914] ret_from_fork_asm+0x1a/0x30
[ 153.950421][ T5914] Modules linked in:
[ 153.953462][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 153.953479][ T5914] Tainted: [B]=BAD_PAGE
[ 153.953482][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 153.953488][ T5914] Call Trace:
[ 153.953493][ T5914]
[ 153.953497][ T5914] dump_stack_lvl+0x189/0x250
[ 153.953515][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 153.953526][ T5914] ? __pfx_print_modules+0x10/0x10
[ 153.953542][ T5914] bad_page+0x180/0x1c0
[ 153.953553][ T5914] __free_frozen_pages+0xce2/0xd30
[ 153.953567][ T5914] __folio_put+0x21b/0x2c0
[ 153.953581][ T5914] ? __pfx___folio_put+0x10/0x10
[ 153.953596][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 153.953610][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 153.953621][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 153.953637][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 153.953648][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 153.953660][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 153.953670][ T5914] ? lockdep_unlock+0x89/0x120
[ 153.953688][ T5914] ? __lock_acquire+0xab9/0xd20
[ 153.953706][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.953720][ T5914] ? _raw_spin_unlock_irq+0x23/0x50
[ 153.953734][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.953745][ T5914] ? lockdep_hardirqs_on+0x9c/0x150
[ 153.953759][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 153.953771][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 153.953792][ T5914] evict+0x501/0x9c0
[ 153.953803][ T5914] ? __pfx_evict+0x10/0x10
[ 153.953814][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 153.953826][ T5914] evict_inodes+0x64c/0x6d0
[ 153.953839][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 153.953850][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 153.953864][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 153.953875][ T5914] kill_block_super+0x44/0x90
[ 153.953885][ T5914] xfs_kill_sb+0x15/0x50
[ 153.953896][ T5914] deactivate_locked_super+0xbc/0x130
[ 153.953910][ T5914] cleanup_mnt+0x425/0x4c0
[ 153.953924][ T5914] ? lockdep_hardirqs_on+0x9c/0x150
[ 153.953937][ T5914] task_work_run+0x1d1/0x260
[ 153.953952][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 153.953963][ T5914] ? __x64_sys_umount+0x122/0x160
[ 153.953973][ T5914] ? exit_to_user_mode_loop+0x40/0x110
[ 153.953987][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 153.953999][ T5914] do_syscall_64+0x2bd/0x3b0
[ 153.954009][ T5914] ? lockdep_hardirqs_on+0x9c/0x150
[ 153.954021][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.954031][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 153.954040][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 153.954050][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 153.954060][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 153.954068][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 153.954080][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 153.954088][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 153.954093][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 153.954100][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 153.954106][ T5914] R13: 00007f3f2201089d R14: 00000000000256b8 R15: 00007ffff66cd380
[ 153.954116][ T5914]
[ 153.954574][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 154.363512][ T5971] loop0: detected capacity change from 0 to 32768
[ 154.373396][ T5971] XFS: ikeep mount option is deprecated.
[ 154.398318][ T5971] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 154.454564][ T5971] XFS (loop0): Ending clean mount
[ 154.462291][ T5971] XFS (loop0): Quotacheck needed: Please wait.
[ 154.486340][ T5971] XFS (loop0): Quotacheck: Done.
[ 154.540512][ T5914] BUG: Bad page state in process syz-executor pfn:54001
[ 154.549843][ T5914] page does not match folio
[ 154.553171][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x54001
[ 154.557456][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 154.560823][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 154.565979][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 154.569725][ T5914] page dumped because: nonzero pincount
[ 154.572597][ T5914] page_owner tracks the page as allocated
[ 154.575158][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5971, tgid 5970 (syz.0.17), ts 154512465808, free_ts 153954212192
[ 154.591672][ T5914] post_alloc_hook+0x240/0x2a0
[ 154.593868][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 154.596204][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 154.598708][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 154.602129][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 154.604943][ T5914] alloc_pages_noprof+0xa9/0x190
[ 154.607391][ T5914] folio_alloc_noprof+0x1e/0x30
[ 154.609594][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 154.612832][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 154.615289][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 154.617517][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 154.619912][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 154.623019][ T5914] vfs_write+0x54b/0xa90
[ 154.624953][ T5914] ksys_write+0x145/0x250
[ 154.626764][ T5914] do_syscall_64+0xfa/0x3b0
[ 154.628748][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.632111][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 154.634955][ T5914] free_unref_folios+0xdbd/0x1520
[ 154.637142][ T5914] folios_put_refs+0x559/0x640
[ 154.639212][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 154.642736][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 154.645131][ T5914] evict+0x501/0x9c0
[ 154.647079][ T5914] evict_inodes+0x64c/0x6d0
[ 154.649278][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 154.652526][ T5914] kill_block_super+0x44/0x90
[ 154.654582][ T5914] xfs_kill_sb+0x15/0x50
[ 154.656475][ T5914] deactivate_locked_super+0xbc/0x130
[ 154.658791][ T5914] cleanup_mnt+0x425/0x4c0
[ 154.660763][ T5914] task_work_run+0x1d1/0x260
[ 154.664342][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 154.666765][ T5914] do_syscall_64+0x2bd/0x3b0
[ 154.668750][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.671697][ T5914] Modules linked in:
[ 154.673438][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 154.673454][ T5914] Tainted: [B]=BAD_PAGE
[ 154.673458][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 154.673464][ T5914] Call Trace:
[ 154.673470][ T5914]
[ 154.673475][ T5914] dump_stack_lvl+0x189/0x250
[ 154.673490][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 154.673501][ T5914] ? __pfx_print_modules+0x10/0x10
[ 154.673516][ T5914] ? percpu_ref_put+0x19/0x180
[ 154.673527][ T5914] ? percpu_ref_put+0xf9/0x180
[ 154.673537][ T5914] bad_page+0x180/0x1c0
[ 154.673546][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 154.673558][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 154.673571][ T5914] __folio_put+0x21b/0x2c0
[ 154.673585][ T5914] ? __pfx___folio_put+0x10/0x10
[ 154.673600][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 154.673614][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 154.673623][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 154.673635][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 154.673642][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 154.673649][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 154.673660][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 154.673674][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 154.673689][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.673702][ T5914] ? rcu_is_watching+0x15/0xb0
[ 154.673713][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.673726][ T5914] ? rcu_is_watching+0x15/0xb0
[ 154.673736][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.673748][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 154.673760][ T5914] evict+0x501/0x9c0
[ 154.673772][ T5914] ? __pfx_evict+0x10/0x10
[ 154.673781][ T5914] ? rcu_is_watching+0x15/0xb0
[ 154.673791][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 154.673813][ T5914] evict_inodes+0x64c/0x6d0
[ 154.673833][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 154.673845][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 154.673858][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 154.673869][ T5914] kill_block_super+0x44/0x90
[ 154.673880][ T5914] xfs_kill_sb+0x15/0x50
[ 154.673891][ T5914] deactivate_locked_super+0xbc/0x130
[ 154.673906][ T5914] cleanup_mnt+0x425/0x4c0
[ 154.673922][ T5914] task_work_run+0x1d1/0x260
[ 154.673937][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 154.673950][ T5914] ? __x64_sys_umount+0x122/0x160
[ 154.673962][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 154.673972][ T5914] ? rcu_is_watching+0x15/0xb0
[ 154.673982][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 154.673997][ T5914] do_syscall_64+0x2bd/0x3b0
[ 154.674008][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.674019][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 154.674030][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.674040][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 154.674052][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 154.674061][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 154.674075][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 154.674082][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 154.674088][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 154.674094][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 154.674099][ T5914] R13: 00007f3f2201089d R14: 0000000000025ad2 R15: 00007ffff66cd380
[ 154.674106][ T5914]
[ 154.674125][ T5914] BUG: Bad page state in process syz-executor pfn:54000
[ 154.838269][ T4701] Bluetooth: hci0: command tx timeout
[ 154.840864][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x54000
[ 154.845633][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 154.849579][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 154.854497][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 154.858140][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 154.862435][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 154.866299][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 154.870279][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 154.875184][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 154.879375][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 154.883048][ T5914] page_owner tracks the page as allocated
[ 154.885564][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5971, tgid 5970 (syz.0.17), ts 154512465808, free_ts 153954212192
[ 154.896553][ T5914] post_alloc_hook+0x240/0x2a0
[ 154.898667][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 154.901033][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 154.904055][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 154.906684][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 154.908914][ T5914] alloc_pages_noprof+0xa9/0x190
[ 154.911166][ T5914] folio_alloc_noprof+0x1e/0x30
[ 154.914297][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 154.916835][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 154.919042][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 154.921160][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 154.924016][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 154.926329][ T5914] vfs_write+0x54b/0xa90
[ 154.928163][ T5914] ksys_write+0x145/0x250
[ 154.930068][ T5914] do_syscall_64+0xfa/0x3b0
[ 154.932695][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.935310][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 154.937983][ T5914] free_unref_folios+0xdbd/0x1520
[ 154.940231][ T5914] folios_put_refs+0x559/0x640
[ 154.943525][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 154.946241][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 154.948479][ T5914] evict+0x501/0x9c0
[ 154.950258][ T5914] evict_inodes+0x64c/0x6d0
[ 154.952928][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 154.955188][ T5914] kill_block_super+0x44/0x90
[ 154.957187][ T5914] xfs_kill_sb+0x15/0x50
[ 154.959039][ T5914] deactivate_locked_super+0xbc/0x130
[ 154.961780][ T5914] cleanup_mnt+0x425/0x4c0
[ 154.963682][ T5914] task_work_run+0x1d1/0x260
[ 154.965678][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 154.967921][ T5914] do_syscall_64+0x2bd/0x3b0
[ 154.969956][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.973334][ T5914] Modules linked in:
[ 154.975095][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 154.975112][ T5914] Tainted: [B]=BAD_PAGE
[ 154.975115][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 154.975121][ T5914] Call Trace:
[ 154.975127][ T5914]
[ 154.975131][ T5914] dump_stack_lvl+0x189/0x250
[ 154.975147][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 154.975156][ T5914] ? __pfx_print_modules+0x10/0x10
[ 154.975170][ T5914] bad_page+0x180/0x1c0
[ 154.975181][ T5914] __free_frozen_pages+0xce2/0xd30
[ 154.975194][ T5914] __folio_put+0x21b/0x2c0
[ 154.975208][ T5914] ? __pfx___folio_put+0x10/0x10
[ 154.975222][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 154.975236][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 154.975247][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 154.975262][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 154.975273][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 154.975284][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 154.975297][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 154.975313][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 154.975328][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.975340][ T5914] ? rcu_is_watching+0x15/0xb0
[ 154.975349][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.975360][ T5914] ? rcu_is_watching+0x15/0xb0
[ 154.975369][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 154.975379][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 154.975391][ T5914] evict+0x501/0x9c0
[ 154.975401][ T5914] ? __pfx_evict+0x10/0x10
[ 154.975409][ T5914] ? rcu_is_watching+0x15/0xb0
[ 154.975418][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 154.975431][ T5914] evict_inodes+0x64c/0x6d0
[ 154.975444][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 154.975454][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 154.975467][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 154.975476][ T5914] kill_block_super+0x44/0x90
[ 154.975487][ T5914] xfs_kill_sb+0x15/0x50
[ 154.975497][ T5914] deactivate_locked_super+0xbc/0x130
[ 154.975512][ T5914] cleanup_mnt+0x425/0x4c0
[ 154.975527][ T5914] task_work_run+0x1d1/0x260
[ 154.975542][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 154.975553][ T5914] ? __x64_sys_umount+0x122/0x160
[ 154.975561][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 154.975571][ T5914] ? rcu_is_watching+0x15/0xb0
[ 154.975579][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 154.975594][ T5914] do_syscall_64+0x2bd/0x3b0
[ 154.975605][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.975614][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 154.975625][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 154.975635][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 154.975644][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 154.975652][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 154.975663][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 154.975669][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 154.975674][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 154.975679][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 154.975685][ T5914] R13: 00007f3f2201089d R14: 0000000000025ad2 R15: 00007ffff66cd380
[ 154.975695][ T5914]
[ 154.976108][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 155.337972][ T5981] loop0: detected capacity change from 0 to 32768
[ 155.345965][ T5981] XFS: ikeep mount option is deprecated.
[ 155.356522][ T5981] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 155.383623][ T5981] XFS (loop0): Ending clean mount
[ 155.393048][ T5981] XFS (loop0): Quotacheck needed: Please wait.
[ 155.405959][ T5981] XFS (loop0): Quotacheck: Done.
[ 155.447476][ T5914] BUG: Bad page state in process syz-executor pfn:54201
[ 155.450620][ T5914] page does not match folio
[ 155.453643][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x54201
[ 155.458032][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 155.462652][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 155.466754][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 155.470772][ T5914] page dumped because: nonzero pincount
[ 155.474442][ T5914] page_owner tracks the page as allocated
[ 155.476964][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5981, tgid 5980 (syz.0.18), ts 155422722908, free_ts 154975771302
[ 155.488064][ T5914] post_alloc_hook+0x240/0x2a0
[ 155.490340][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 155.499556][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 155.502529][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 155.505211][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 155.508057][ T5914] alloc_pages_noprof+0xa9/0x190
[ 155.510324][ T5914] folio_alloc_noprof+0x1e/0x30
[ 155.513085][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 155.515680][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 155.518016][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 155.520305][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 155.523495][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 155.526175][ T5914] vfs_write+0x54b/0xa90
[ 155.528287][ T5914] ksys_write+0x145/0x250
[ 155.530441][ T5914] do_syscall_64+0xfa/0x3b0
[ 155.532939][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.535631][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 155.538499][ T5914] free_unref_folios+0xdbd/0x1520
[ 155.540808][ T5914] folios_put_refs+0x559/0x640
[ 155.544790][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 155.547403][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 155.549616][ T5914] evict+0x501/0x9c0
[ 155.551689][ T5914] evict_inodes+0x64c/0x6d0
[ 155.553749][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 155.556188][ T5914] kill_block_super+0x44/0x90
[ 155.558321][ T5914] xfs_kill_sb+0x15/0x50
[ 155.560355][ T5914] deactivate_locked_super+0xbc/0x130
[ 155.563783][ T5914] cleanup_mnt+0x425/0x4c0
[ 155.565961][ T5914] task_work_run+0x1d1/0x260
[ 155.568124][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 155.570438][ T5914] do_syscall_64+0x2bd/0x3b0
[ 155.574170][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.576862][ T5914] Modules linked in:
[ 155.578643][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 155.578659][ T5914] Tainted: [B]=BAD_PAGE
[ 155.578663][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 155.578670][ T5914] Call Trace:
[ 155.578676][ T5914]
[ 155.578681][ T5914] dump_stack_lvl+0x189/0x250
[ 155.578699][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 155.578711][ T5914] ? __pfx_print_modules+0x10/0x10
[ 155.578727][ T5914] ? percpu_ref_put+0x19/0x180
[ 155.578741][ T5914] ? percpu_ref_put+0xf9/0x180
[ 155.578754][ T5914] bad_page+0x180/0x1c0
[ 155.578765][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 155.578778][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 155.578794][ T5914] __folio_put+0x21b/0x2c0
[ 155.578808][ T5914] ? __pfx___folio_put+0x10/0x10
[ 155.578824][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 155.578838][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 155.578852][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 155.578868][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 155.578879][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 155.578892][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 155.578907][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 155.578924][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 155.578942][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.578956][ T5914] ? rcu_is_watching+0x15/0xb0
[ 155.578966][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.578980][ T5914] ? rcu_is_watching+0x15/0xb0
[ 155.578991][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.579003][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 155.579017][ T5914] evict+0x501/0x9c0
[ 155.579029][ T5914] ? __pfx_evict+0x10/0x10
[ 155.579039][ T5914] ? rcu_is_watching+0x15/0xb0
[ 155.579049][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 155.579064][ T5914] evict_inodes+0x64c/0x6d0
[ 155.579084][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 155.579096][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 155.579111][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 155.579122][ T5914] kill_block_super+0x44/0x90
[ 155.579135][ T5914] xfs_kill_sb+0x15/0x50
[ 155.579146][ T5914] deactivate_locked_super+0xbc/0x130
[ 155.579163][ T5914] cleanup_mnt+0x425/0x4c0
[ 155.579179][ T5914] task_work_run+0x1d1/0x260
[ 155.579195][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 155.579207][ T5914] ? __x64_sys_umount+0x122/0x160
[ 155.579217][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 155.579229][ T5914] ? rcu_is_watching+0x15/0xb0
[ 155.579239][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 155.579255][ T5914] do_syscall_64+0x2bd/0x3b0
[ 155.579267][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.579278][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 155.579290][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.579301][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 155.579312][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 155.579321][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 155.579333][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 155.579341][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 155.579347][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 155.579354][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 155.579361][ T5914] R13: 00007f3f2201089d R14: 0000000000025e7c R15: 00007ffff66cd380
[ 155.579372][ T5914]
[ 155.579400][ T5914] BUG: Bad page state in process syz-executor pfn:54200
[ 155.743704][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x54200
[ 155.747468][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 155.751153][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 155.757297][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 155.762319][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 155.766126][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 155.769918][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 155.774465][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 155.778130][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 155.782164][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 155.785167][ T5914] page_owner tracks the page as allocated
[ 155.787506][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5981, tgid 5980 (syz.0.18), ts 155422722908, free_ts 154975771302
[ 155.798238][ T5914] post_alloc_hook+0x240/0x2a0
[ 155.800478][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 155.803205][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 155.805602][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 155.808167][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 155.810307][ T5914] alloc_pages_noprof+0xa9/0x190
[ 155.813184][ T5914] folio_alloc_noprof+0x1e/0x30
[ 155.815992][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 155.818588][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 155.820868][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 155.823551][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 155.826009][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 155.828441][ T5914] vfs_write+0x54b/0xa90
[ 155.830351][ T5914] ksys_write+0x145/0x250
[ 155.832901][ T5914] do_syscall_64+0xfa/0x3b0
[ 155.834905][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.837494][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 155.840226][ T5914] free_unref_folios+0xdbd/0x1520
[ 155.842974][ T5914] folios_put_refs+0x559/0x640
[ 155.845175][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 155.847716][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 155.849861][ T5914] evict+0x501/0x9c0
[ 155.852979][ T5914] evict_inodes+0x64c/0x6d0
[ 155.855004][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 155.857352][ T5914] kill_block_super+0x44/0x90
[ 155.859405][ T5914] xfs_kill_sb+0x15/0x50
[ 155.861987][ T5914] deactivate_locked_super+0xbc/0x130
[ 155.864319][ T5914] cleanup_mnt+0x425/0x4c0
[ 155.866325][ T5914] task_work_run+0x1d1/0x260
[ 155.868428][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 155.870766][ T5914] do_syscall_64+0x2bd/0x3b0
[ 155.873513][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.876044][ T5914] Modules linked in:
[ 155.877811][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 155.877834][ T5914] Tainted: [B]=BAD_PAGE
[ 155.877838][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 155.877845][ T5914] Call Trace:
[ 155.877851][ T5914]
[ 155.877856][ T5914] dump_stack_lvl+0x189/0x250
[ 155.877874][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 155.877886][ T5914] ? __pfx_print_modules+0x10/0x10
[ 155.877903][ T5914] bad_page+0x180/0x1c0
[ 155.877913][ T5914] __free_frozen_pages+0xce2/0xd30
[ 155.877929][ T5914] __folio_put+0x21b/0x2c0
[ 155.877944][ T5914] ? __pfx___folio_put+0x10/0x10
[ 155.877957][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 155.877971][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 155.877982][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 155.877999][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 155.878008][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 155.878020][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 155.878033][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 155.878049][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 155.878066][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.878078][ T5914] ? rcu_is_watching+0x15/0xb0
[ 155.878087][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.878099][ T5914] ? rcu_is_watching+0x15/0xb0
[ 155.878109][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 155.878120][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 155.878132][ T5914] evict+0x501/0x9c0
[ 155.878143][ T5914] ? __pfx_evict+0x10/0x10
[ 155.878152][ T5914] ? rcu_is_watching+0x15/0xb0
[ 155.878162][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 155.878176][ T5914] evict_inodes+0x64c/0x6d0
[ 155.878189][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 155.878202][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 155.878214][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 155.878226][ T5914] kill_block_super+0x44/0x90
[ 155.878237][ T5914] xfs_kill_sb+0x15/0x50
[ 155.878249][ T5914] deactivate_locked_super+0xbc/0x130
[ 155.878265][ T5914] cleanup_mnt+0x425/0x4c0
[ 155.878281][ T5914] task_work_run+0x1d1/0x260
[ 155.878295][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 155.878307][ T5914] ? __x64_sys_umount+0x122/0x160
[ 155.878318][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 155.878330][ T5914] ? rcu_is_watching+0x15/0xb0
[ 155.878341][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 155.878356][ T5914] do_syscall_64+0x2bd/0x3b0
[ 155.878367][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.878378][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 155.878390][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.878401][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 155.878423][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 155.878433][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 155.878445][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 155.878452][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 155.878459][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 155.878466][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 155.878472][ T5914] R13: 00007f3f2201089d R14: 0000000000025e7c R15: 00007ffff66cd380
[ 155.878483][ T5914]
[ 155.878907][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 156.210950][ T5991] loop0: detected capacity change from 0 to 32768
[ 156.217591][ T5991] XFS: ikeep mount option is deprecated.
[ 156.229405][ T5991] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 156.269538][ T5991] XFS (loop0): Ending clean mount
[ 156.279163][ T5991] XFS (loop0): Quotacheck needed: Please wait.
[ 156.286336][ T5991] XFS (loop0): Quotacheck: Done.
[ 156.324280][ T5914] BUG: Bad page state in process syz-executor pfn:4c201
[ 156.328059][ T5914] page does not match folio
[ 156.330115][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4c201
[ 156.337847][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 156.341168][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 156.347007][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 156.350734][ T5914] page dumped because: nonzero pincount
[ 156.353551][ T5914] page_owner tracks the page as allocated
[ 156.356050][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5991, tgid 5990 (syz.0.19), ts 156304100604, free_ts 156296601703
[ 156.367777][ T5914] post_alloc_hook+0x240/0x2a0
[ 156.369874][ T5914] get_page_from_freelist+0x21e4/0x22c0
2025/08/02 21:22:48 executed programs: 6
[ 156.374930][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 156.377424][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 156.380592][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 156.383458][ T5914] alloc_pages_noprof+0xa9/0x190
[ 156.385738][ T5914] folio_alloc_noprof+0x1e/0x30
[ 156.387984][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 156.390553][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 156.393365][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 156.395745][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 156.398262][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 156.400721][ T5914] vfs_write+0x54b/0xa90
[ 156.403238][ T5914] ksys_write+0x145/0x250
[ 156.405194][ T5914] do_syscall_64+0xfa/0x3b0
[ 156.407160][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.409704][ T5914] page last free pid 79 tgid 79 stack trace:
[ 156.412956][ T5914] free_unref_folios+0xdbd/0x1520
[ 156.415207][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 156.417472][ T5914] evict_folios+0x47f2/0x58b0
[ 156.419515][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 156.422376][ T5914] shrink_one+0x21b/0x7c0
[ 156.424311][ T5914] shrink_node+0x314e/0x3760
[ 156.426326][ T5914] kswapd+0x147c/0x2830
[ 156.428196][ T5914] kthread+0x711/0x8a0
[ 156.430585][ T5914] ret_from_fork+0x3f9/0x770
[ 156.433245][ T5914] ret_from_fork_asm+0x1a/0x30
[ 156.435460][ T5914] Modules linked in:
[ 156.437177][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 156.437194][ T5914] Tainted: [B]=BAD_PAGE
[ 156.437198][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 156.437204][ T5914] Call Trace:
[ 156.437210][ T5914]
[ 156.437215][ T5914] dump_stack_lvl+0x189/0x250
[ 156.437230][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 156.437240][ T5914] ? __pfx_print_modules+0x10/0x10
[ 156.437254][ T5914] ? percpu_ref_put+0x19/0x180
[ 156.437265][ T5914] ? percpu_ref_put+0xf9/0x180
[ 156.437275][ T5914] bad_page+0x180/0x1c0
[ 156.437285][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 156.437297][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 156.437311][ T5914] __folio_put+0x21b/0x2c0
[ 156.437325][ T5914] ? __pfx___folio_put+0x10/0x10
[ 156.437339][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 156.437350][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 156.437357][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 156.437372][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 156.437380][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 156.437391][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 156.437403][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 156.437418][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 156.437432][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.437444][ T5914] ? rcu_is_watching+0x15/0xb0
[ 156.437454][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.437466][ T5914] ? rcu_is_watching+0x15/0xb0
[ 156.437476][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.437486][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 156.437499][ T5914] evict+0x501/0x9c0
[ 156.437510][ T5914] ? __pfx_evict+0x10/0x10
[ 156.437518][ T5914] ? rcu_is_watching+0x15/0xb0
[ 156.437527][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 156.437539][ T5914] evict_inodes+0x64c/0x6d0
[ 156.437551][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 156.437562][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 156.437575][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 156.437585][ T5914] kill_block_super+0x44/0x90
[ 156.437596][ T5914] xfs_kill_sb+0x15/0x50
[ 156.437605][ T5914] deactivate_locked_super+0xbc/0x130
[ 156.437620][ T5914] cleanup_mnt+0x425/0x4c0
[ 156.437635][ T5914] task_work_run+0x1d1/0x260
[ 156.437648][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 156.437660][ T5914] ? __x64_sys_umount+0x122/0x160
[ 156.437670][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 156.437681][ T5914] ? rcu_is_watching+0x15/0xb0
[ 156.437689][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 156.437703][ T5914] do_syscall_64+0x2bd/0x3b0
[ 156.437714][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.437723][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 156.437735][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.437745][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 156.437755][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 156.437762][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 156.437773][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 156.437780][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 156.437785][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 156.437791][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 156.437797][ T5914] R13: 00007f3f2201089d R14: 00000000000261da R15: 00007ffff66cd380
[ 156.437807][ T5914]
[ 156.437843][ T5914] BUG: Bad page state in process syz-executor pfn:4c200
[ 156.602568][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4c200
[ 156.606306][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 156.609921][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 156.614649][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 156.618251][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 156.622049][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 156.625795][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 156.629495][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 156.634321][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 156.637861][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 156.640964][ T5914] page_owner tracks the page as allocated
[ 156.643884][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5991, tgid 5990 (syz.0.19), ts 156304100604, free_ts 156296597145
[ 156.654772][ T5914] post_alloc_hook+0x240/0x2a0
[ 156.656945][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 156.659296][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 156.662794][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 156.665320][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 156.667394][ T5914] alloc_pages_noprof+0xa9/0x190
[ 156.669575][ T5914] folio_alloc_noprof+0x1e/0x30
[ 156.672372][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 156.674977][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 156.677324][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 156.679418][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 156.682257][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 156.684636][ T5914] vfs_write+0x54b/0xa90
[ 156.686447][ T5914] ksys_write+0x145/0x250
[ 156.688322][ T5914] do_syscall_64+0xfa/0x3b0
[ 156.690312][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.693609][ T5914] page last free pid 79 tgid 79 stack trace:
[ 156.696704][ T5914] free_unref_folios+0xdbd/0x1520
[ 156.698905][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 156.701104][ T5914] evict_folios+0x47f2/0x58b0
[ 156.704216][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 156.706404][ T5914] shrink_one+0x21b/0x7c0
[ 156.708284][ T5914] shrink_node+0x314e/0x3760
[ 156.710358][ T5914] kswapd+0x147c/0x2830
[ 156.712893][ T5914] kthread+0x711/0x8a0
[ 156.714725][ T5914] ret_from_fork+0x3f9/0x770
[ 156.716766][ T5914] ret_from_fork_asm+0x1a/0x30
[ 156.718935][ T5914] Modules linked in:
[ 156.720821][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 156.720839][ T5914] Tainted: [B]=BAD_PAGE
[ 156.720842][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 156.720850][ T5914] Call Trace:
[ 156.720857][ T5914]
[ 156.720863][ T5914] dump_stack_lvl+0x189/0x250
[ 156.720881][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 156.720893][ T5914] ? __pfx_print_modules+0x10/0x10
[ 156.720912][ T5914] bad_page+0x180/0x1c0
[ 156.720924][ T5914] __free_frozen_pages+0xce2/0xd30
[ 156.720939][ T5914] __folio_put+0x21b/0x2c0
[ 156.720954][ T5914] ? __pfx___folio_put+0x10/0x10
[ 156.720970][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 156.720986][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 156.720999][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 156.721015][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 156.721026][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 156.721038][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 156.721054][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 156.721070][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 156.721088][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.721101][ T5914] ? rcu_is_watching+0x15/0xb0
[ 156.721111][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.721124][ T5914] ? rcu_is_watching+0x15/0xb0
[ 156.721135][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 156.721147][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 156.721158][ T5914] evict+0x501/0x9c0
[ 156.721171][ T5914] ? __pfx_evict+0x10/0x10
[ 156.721180][ T5914] ? rcu_is_watching+0x15/0xb0
[ 156.721191][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 156.721205][ T5914] evict_inodes+0x64c/0x6d0
[ 156.721240][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 156.721252][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 156.721267][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 156.721278][ T5914] kill_block_super+0x44/0x90
[ 156.721289][ T5914] xfs_kill_sb+0x15/0x50
[ 156.721301][ T5914] deactivate_locked_super+0xbc/0x130
[ 156.721316][ T5914] cleanup_mnt+0x425/0x4c0
[ 156.721334][ T5914] task_work_run+0x1d1/0x260
[ 156.721348][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 156.721360][ T5914] ? __x64_sys_umount+0x122/0x160
[ 156.721370][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 156.721381][ T5914] ? rcu_is_watching+0x15/0xb0
[ 156.721391][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 156.721406][ T5914] do_syscall_64+0x2bd/0x3b0
[ 156.721419][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.721430][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 156.721441][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.721451][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 156.721462][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 156.721471][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 156.721483][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 156.721491][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 156.721498][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 156.721504][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 156.721512][ T5914] R13: 00007f3f2201089d R14: 00000000000261da R15: 00007ffff66cd380
[ 156.721523][ T5914]
[ 156.870716][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 156.903154][ T4701] Bluetooth: hci0: command tx timeout
[ 157.065811][ T6001] loop0: detected capacity change from 0 to 32768
[ 157.075417][ T6001] XFS: ikeep mount option is deprecated.
[ 157.086397][ T6001] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 157.115089][ T6001] XFS (loop0): Ending clean mount
[ 157.118143][ T6001] XFS (loop0): Quotacheck needed: Please wait.
[ 157.128485][ T6001] XFS (loop0): Quotacheck: Done.
[ 157.157627][ T5914] BUG: Bad page state in process syz-executor pfn:53601
[ 157.160490][ T5914] page does not match folio
[ 157.163107][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x53601
[ 157.167361][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 157.170539][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 157.174668][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 157.178502][ T5914] page dumped because: nonzero pincount
[ 157.181006][ T5914] page_owner tracks the page as allocated
[ 157.185007][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6001, tgid 6000 (syz.0.20), ts 157143763191, free_ts 157136969578
[ 157.196724][ T5914] post_alloc_hook+0x240/0x2a0
[ 157.198924][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 157.201168][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 157.205424][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 157.207721][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 157.209616][ T5914] alloc_pages_noprof+0xa9/0x190
[ 157.211798][ T5914] folio_alloc_noprof+0x1e/0x30
[ 157.213747][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 157.215935][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 157.217909][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 157.219787][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 157.222813][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 157.224894][ T5914] vfs_write+0x54b/0xa90
[ 157.226461][ T5914] ksys_write+0x145/0x250
[ 157.228216][ T5914] do_syscall_64+0xfa/0x3b0
[ 157.230127][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.233283][ T5914] page last free pid 79 tgid 79 stack trace:
[ 157.236006][ T5914] free_unref_folios+0xdbd/0x1520
[ 157.238153][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 157.240435][ T5914] evict_folios+0x47f2/0x58b0
[ 157.243271][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 157.245602][ T5914] shrink_one+0x21b/0x7c0
[ 157.247569][ T5914] shrink_node+0x314e/0x3760
[ 157.250165][ T5914] kswapd+0x147c/0x2830
[ 157.252392][ T5914] kthread+0x711/0x8a0
[ 157.254184][ T5914] ret_from_fork+0x3f9/0x770
[ 157.256251][ T5914] ret_from_fork_asm+0x1a/0x30
[ 157.258436][ T5914] Modules linked in:
[ 157.260234][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 157.260250][ T5914] Tainted: [B]=BAD_PAGE
[ 157.260254][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 157.260259][ T5914] Call Trace:
[ 157.260266][ T5914]
[ 157.260271][ T5914] dump_stack_lvl+0x189/0x250
[ 157.260285][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 157.260295][ T5914] ? __pfx_print_modules+0x10/0x10
[ 157.260309][ T5914] ? percpu_ref_put+0x19/0x180
[ 157.260324][ T5914] ? percpu_ref_put+0xf9/0x180
[ 157.260335][ T5914] bad_page+0x180/0x1c0
[ 157.260344][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 157.260356][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 157.260370][ T5914] __folio_put+0x21b/0x2c0
[ 157.260384][ T5914] ? __pfx___folio_put+0x10/0x10
[ 157.260398][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 157.260412][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 157.260423][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 157.260438][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 157.260448][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 157.260459][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 157.260472][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 157.260486][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 157.260502][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.260514][ T5914] ? rcu_is_watching+0x15/0xb0
[ 157.260523][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.260558][ T5914] ? rcu_is_watching+0x15/0xb0
[ 157.260571][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.260582][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 157.260594][ T5914] evict+0x501/0x9c0
[ 157.260605][ T5914] ? __pfx_evict+0x10/0x10
[ 157.260614][ T5914] ? rcu_is_watching+0x15/0xb0
[ 157.260623][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 157.260635][ T5914] evict_inodes+0x64c/0x6d0
[ 157.260648][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 157.260659][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 157.260671][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 157.260681][ T5914] kill_block_super+0x44/0x90
[ 157.260692][ T5914] xfs_kill_sb+0x15/0x50
[ 157.260703][ T5914] deactivate_locked_super+0xbc/0x130
[ 157.260718][ T5914] cleanup_mnt+0x425/0x4c0
[ 157.260732][ T5914] task_work_run+0x1d1/0x260
[ 157.260746][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 157.260757][ T5914] ? __x64_sys_umount+0x122/0x160
[ 157.260767][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 157.260778][ T5914] ? rcu_is_watching+0x15/0xb0
[ 157.260787][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 157.260799][ T5914] do_syscall_64+0x2bd/0x3b0
[ 157.260810][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.260820][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 157.260831][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.260847][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 157.260858][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 157.260866][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 157.260878][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 157.260884][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 157.260890][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 157.260896][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 157.260903][ T5914] R13: 00007f3f2201089d R14: 000000000002652d R15: 00007ffff66cd380
[ 157.260913][ T5914]
[ 157.260943][ T5914] BUG: Bad page state in process syz-executor pfn:53600
[ 157.429308][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x53600
[ 157.433446][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 157.436901][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 157.442096][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 157.446519][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 157.450431][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 157.455043][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 157.458873][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 157.463450][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 157.467374][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 157.470600][ T5914] page_owner tracks the page as allocated
[ 157.473467][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6001, tgid 6000 (syz.0.20), ts 157143763191, free_ts 157136965736
[ 157.483567][ T5914] post_alloc_hook+0x240/0x2a0
[ 157.485624][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 157.488173][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 157.490794][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 157.494082][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 157.496197][ T5914] alloc_pages_noprof+0xa9/0x190
[ 157.498344][ T5914] folio_alloc_noprof+0x1e/0x30
[ 157.500365][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 157.503368][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 157.505520][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 157.507719][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 157.510161][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 157.513042][ T5914] vfs_write+0x54b/0xa90
[ 157.515004][ T5914] ksys_write+0x145/0x250
[ 157.516930][ T5914] do_syscall_64+0xfa/0x3b0
[ 157.518980][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.522191][ T5914] page last free pid 79 tgid 79 stack trace:
[ 157.524980][ T5914] free_unref_folios+0xdbd/0x1520
[ 157.527276][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 157.529414][ T5914] evict_folios+0x47f2/0x58b0
[ 157.532514][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 157.534805][ T5914] shrink_one+0x21b/0x7c0
[ 157.536659][ T5914] shrink_node+0x314e/0x3760
[ 157.538648][ T5914] kswapd+0x147c/0x2830
[ 157.540422][ T5914] kthread+0x711/0x8a0
[ 157.543273][ T5914] ret_from_fork+0x3f9/0x770
[ 157.545302][ T5914] ret_from_fork_asm+0x1a/0x30
[ 157.547316][ T5914] Modules linked in:
[ 157.548950][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 157.548966][ T5914] Tainted: [B]=BAD_PAGE
[ 157.548970][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 157.548976][ T5914] Call Trace:
[ 157.548981][ T5914]
[ 157.548984][ T5914] dump_stack_lvl+0x189/0x250
[ 157.548995][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 157.549005][ T5914] ? __pfx_print_modules+0x10/0x10
[ 157.549020][ T5914] bad_page+0x180/0x1c0
[ 157.549031][ T5914] __free_frozen_pages+0xce2/0xd30
[ 157.549044][ T5914] __folio_put+0x21b/0x2c0
[ 157.549058][ T5914] ? __pfx___folio_put+0x10/0x10
[ 157.549083][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 157.549098][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 157.549109][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 157.549126][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 157.549136][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 157.549150][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 157.549163][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 157.549178][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 157.549195][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.549207][ T5914] ? rcu_is_watching+0x15/0xb0
[ 157.549216][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.549227][ T5914] ? rcu_is_watching+0x15/0xb0
[ 157.549237][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 157.549249][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 157.549260][ T5914] evict+0x501/0x9c0
[ 157.549271][ T5914] ? __pfx_evict+0x10/0x10
[ 157.549279][ T5914] ? rcu_is_watching+0x15/0xb0
[ 157.549289][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 157.549301][ T5914] evict_inodes+0x64c/0x6d0
[ 157.549313][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 157.549324][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 157.549338][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 157.549347][ T5914] kill_block_super+0x44/0x90
[ 157.549357][ T5914] xfs_kill_sb+0x15/0x50
[ 157.549366][ T5914] deactivate_locked_super+0xbc/0x130
[ 157.549381][ T5914] cleanup_mnt+0x425/0x4c0
[ 157.549394][ T5914] task_work_run+0x1d1/0x260
[ 157.549407][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 157.549418][ T5914] ? __x64_sys_umount+0x122/0x160
[ 157.549428][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 157.549439][ T5914] ? rcu_is_watching+0x15/0xb0
[ 157.549449][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 157.549462][ T5914] do_syscall_64+0x2bd/0x3b0
[ 157.549472][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.549481][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 157.549490][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 157.549499][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 157.549510][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 157.549518][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 157.549530][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 157.549537][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 157.549542][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 157.549548][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 157.549553][ T5914] R13: 00007f3f2201089d R14: 000000000002652d R15: 00007ffff66cd380
[ 157.549562][ T5914]
[ 157.549945][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 157.907183][ T6011] loop0: detected capacity change from 0 to 32768
[ 157.933253][ T6011] XFS: ikeep mount option is deprecated.
[ 157.946337][ T6011] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 157.973926][ T6011] XFS (loop0): Ending clean mount
[ 157.976876][ T6011] XFS (loop0): Quotacheck needed: Please wait.
[ 157.986423][ T6011] XFS (loop0): Quotacheck: Done.
[ 158.019839][ T5914] BUG: Bad page state in process syz-executor pfn:53201
[ 158.024359][ T5914] page does not match folio
[ 158.026451][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x53201
[ 158.030965][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 158.035084][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 158.038739][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 158.044413][ T5914] page dumped because: nonzero pincount
[ 158.046859][ T5914] page_owner tracks the page as allocated
[ 158.049263][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6011, tgid 6010 (syz.0.21), ts 158006087893, free_ts 157998024066
[ 158.059827][ T5914] post_alloc_hook+0x240/0x2a0
[ 158.064308][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 158.066780][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 158.069748][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 158.072929][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 158.075053][ T5914] alloc_pages_noprof+0xa9/0x190
[ 158.077245][ T5914] folio_alloc_noprof+0x1e/0x30
[ 158.079364][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 158.082315][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 158.084623][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 158.086813][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 158.089233][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 158.092214][ T5914] vfs_write+0x54b/0xa90
[ 158.094082][ T5914] ksys_write+0x145/0x250
[ 158.095994][ T5914] do_syscall_64+0xfa/0x3b0
[ 158.098000][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.100701][ T5914] page last free pid 79 tgid 79 stack trace:
[ 158.107284][ T5914] free_unref_folios+0xdbd/0x1520
[ 158.109450][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 158.112215][ T5914] evict_folios+0x47f2/0x58b0
[ 158.114270][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 158.116488][ T5914] shrink_one+0x21b/0x7c0
[ 158.118372][ T5914] shrink_node+0x314e/0x3760
[ 158.120325][ T5914] kswapd+0x147c/0x2830
[ 158.122958][ T5914] kthread+0x711/0x8a0
[ 158.125205][ T5914] ret_from_fork+0x3f9/0x770
[ 158.127261][ T5914] ret_from_fork_asm+0x1a/0x30
[ 158.129460][ T5914] Modules linked in:
[ 158.132005][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 158.132023][ T5914] Tainted: [B]=BAD_PAGE
[ 158.132027][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 158.132034][ T5914] Call Trace:
[ 158.132038][ T5914]
[ 158.132043][ T5914] dump_stack_lvl+0x189/0x250
[ 158.132930][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 158.132942][ T5914] ? __pfx_print_modules+0x10/0x10
[ 158.132957][ T5914] ? percpu_ref_put+0x19/0x180
[ 158.132971][ T5914] ? percpu_ref_put+0xf9/0x180
[ 158.132982][ T5914] bad_page+0x180/0x1c0
[ 158.132992][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 158.133006][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 158.133020][ T5914] __folio_put+0x21b/0x2c0
[ 158.133035][ T5914] ? __pfx___folio_put+0x10/0x10
[ 158.133049][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 158.133064][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 158.133075][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 158.133092][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 158.133102][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 158.133114][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 158.133128][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 158.133141][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 158.133152][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.133168][ T5914] ? rcu_is_watching+0x15/0xb0
[ 158.133178][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.133190][ T5914] ? rcu_is_watching+0x15/0xb0
[ 158.133199][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.133210][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 158.133222][ T5914] evict+0x501/0x9c0
[ 158.133235][ T5914] ? __pfx_evict+0x10/0x10
[ 158.133244][ T5914] ? rcu_is_watching+0x15/0xb0
[ 158.133252][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 158.133266][ T5914] evict_inodes+0x64c/0x6d0
[ 158.133278][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 158.133288][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 158.133299][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 158.133308][ T5914] kill_block_super+0x44/0x90
[ 158.133318][ T5914] xfs_kill_sb+0x15/0x50
[ 158.133328][ T5914] deactivate_locked_super+0xbc/0x130
[ 158.133345][ T5914] cleanup_mnt+0x425/0x4c0
[ 158.133360][ T5914] task_work_run+0x1d1/0x260
[ 158.133374][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 158.133385][ T5914] ? __x64_sys_umount+0x122/0x160
[ 158.133395][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 158.133405][ T5914] ? rcu_is_watching+0x15/0xb0
[ 158.133414][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 158.133427][ T5914] do_syscall_64+0x2bd/0x3b0
[ 158.133441][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.133451][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 158.133463][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.133472][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 158.133484][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 158.133493][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 158.133505][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 158.133509][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 158.133514][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 158.133517][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 158.133522][ T5914] R13: 00007f3f2201089d R14: 000000000002688a R15: 00007ffff66cd380
[ 158.133528][ T5914]
[ 158.133548][ T5914] BUG: Bad page state in process syz-executor pfn:53200
[ 158.295390][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x53200
[ 158.299075][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 158.303037][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 158.307370][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 158.310945][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 158.315278][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 158.318458][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 158.322432][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 158.326022][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 158.329640][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 158.333605][ T5914] page_owner tracks the page as allocated
[ 158.336398][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6011, tgid 6010 (syz.0.21), ts 158006087893, free_ts 157998018995
[ 158.347364][ T5914] post_alloc_hook+0x240/0x2a0
[ 158.349437][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 158.352445][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 158.354655][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 158.357172][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 158.359255][ T5914] alloc_pages_noprof+0xa9/0x190
[ 158.361785][ T5914] folio_alloc_noprof+0x1e/0x30
[ 158.363945][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 158.366394][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 158.368654][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 158.370818][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 158.373900][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 158.376847][ T5914] vfs_write+0x54b/0xa90
[ 158.378661][ T5914] ksys_write+0x145/0x250
[ 158.380582][ T5914] do_syscall_64+0xfa/0x3b0
[ 158.382927][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.385453][ T5914] page last free pid 79 tgid 79 stack trace:
[ 158.388058][ T5914] free_unref_folios+0xdbd/0x1520
[ 158.390185][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 158.393058][ T5914] evict_folios+0x47f2/0x58b0
[ 158.395304][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 158.397652][ T5914] shrink_one+0x21b/0x7c0
[ 158.399530][ T5914] shrink_node+0x314e/0x3760
[ 158.402979][ T5914] kswapd+0x147c/0x2830
[ 158.404783][ T5914] kthread+0x711/0x8a0
[ 158.406561][ T5914] ret_from_fork+0x3f9/0x770
[ 158.408570][ T5914] ret_from_fork_asm+0x1a/0x30
[ 158.410833][ T5914] Modules linked in:
[ 158.413245][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 158.413261][ T5914] Tainted: [B]=BAD_PAGE
[ 158.413264][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 158.413270][ T5914] Call Trace:
[ 158.413273][ T5914]
[ 158.413277][ T5914] dump_stack_lvl+0x189/0x250
[ 158.413291][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 158.413301][ T5914] ? __pfx_print_modules+0x10/0x10
[ 158.413316][ T5914] bad_page+0x180/0x1c0
[ 158.413325][ T5914] __free_frozen_pages+0xce2/0xd30
[ 158.413336][ T5914] __folio_put+0x21b/0x2c0
[ 158.413349][ T5914] ? __pfx___folio_put+0x10/0x10
[ 158.413361][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 158.413378][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 158.413392][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 158.413407][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 158.413417][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 158.413430][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 158.413444][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 158.413459][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 158.413476][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.413491][ T5914] ? rcu_is_watching+0x15/0xb0
[ 158.413501][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.413512][ T5914] ? rcu_is_watching+0x15/0xb0
[ 158.413523][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 158.413534][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 158.413546][ T5914] evict+0x501/0x9c0
[ 158.413559][ T5914] ? __pfx_evict+0x10/0x10
[ 158.413568][ T5914] ? rcu_is_watching+0x15/0xb0
[ 158.413577][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 158.413593][ T5914] evict_inodes+0x64c/0x6d0
[ 158.413607][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 158.413619][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 158.413634][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 158.413646][ T5914] kill_block_super+0x44/0x90
[ 158.413658][ T5914] xfs_kill_sb+0x15/0x50
[ 158.413670][ T5914] deactivate_locked_super+0xbc/0x130
[ 158.413688][ T5914] cleanup_mnt+0x425/0x4c0
[ 158.413705][ T5914] task_work_run+0x1d1/0x260
[ 158.413721][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 158.413735][ T5914] ? __x64_sys_umount+0x122/0x160
[ 158.413746][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 158.413759][ T5914] ? rcu_is_watching+0x15/0xb0
[ 158.413770][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 158.413786][ T5914] do_syscall_64+0x2bd/0x3b0
[ 158.413798][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.413818][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 158.413830][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.413840][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 158.413851][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 158.413861][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 158.413874][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 158.413882][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 158.413889][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 158.413896][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 158.413903][ T5914] R13: 00007f3f2201089d R14: 000000000002688a R15: 00007ffff66cd380
[ 158.413915][ T5914]
[ 158.414326][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 158.774589][ T6021] loop0: detected capacity change from 0 to 32768
[ 158.785441][ T6021] XFS: ikeep mount option is deprecated.
[ 158.797415][ T6021] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 158.832148][ T6021] XFS (loop0): Ending clean mount
[ 158.838738][ T6021] XFS (loop0): Quotacheck needed: Please wait.
[ 158.848709][ T6021] XFS (loop0): Quotacheck: Done.
[ 158.885450][ T5914] BUG: Bad page state in process syz-executor pfn:53801
[ 158.889353][ T5914] page does not match folio
[ 158.893093][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x53801
[ 158.897646][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 158.900997][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 158.906295][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 158.910091][ T5914] page dumped because: nonzero pincount
[ 158.913172][ T5914] page_owner tracks the page as allocated
[ 158.915762][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6021, tgid 6020 (syz.0.22), ts 158862156939, free_ts 158413968876
[ 158.926356][ T5914] post_alloc_hook+0x240/0x2a0
[ 158.928439][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 158.930806][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 158.934885][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 158.937436][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 158.939584][ T5914] alloc_pages_noprof+0xa9/0x190
[ 158.942295][ T5914] folio_alloc_noprof+0x1e/0x30
[ 158.944385][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 158.946803][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 158.949062][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 158.951724][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 158.954288][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 158.956614][ T5914] vfs_write+0x54b/0xa90
[ 158.958529][ T5914] ksys_write+0x145/0x250
[ 158.960351][ T5914] do_syscall_64+0xfa/0x3b0
[ 158.963062][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 158.965926][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 158.968508][ T5914] free_unref_folios+0xdbd/0x1520
[ 158.970688][ T5914] folios_put_refs+0x559/0x640
[ 158.973128][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 158.975587][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 158.977643][ T5914] evict+0x501/0x9c0
[ 158.979427][ T5914] evict_inodes+0x64c/0x6d0
[ 158.984027][ T4701] Bluetooth: hci0: command tx timeout
[ 158.987699][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 158.990935][ T5914] kill_block_super+0x44/0x90
[ 158.993255][ T5914] xfs_kill_sb+0x15/0x50
[ 158.995147][ T5914] deactivate_locked_super+0xbc/0x130
[ 158.997463][ T5914] cleanup_mnt+0x425/0x4c0
[ 158.999433][ T5914] task_work_run+0x1d1/0x260
[ 159.002656][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 159.004952][ T5914] do_syscall_64+0x2bd/0x3b0
[ 159.006949][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.009513][ T5914] Modules linked in:
[ 159.011702][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 159.011720][ T5914] Tainted: [B]=BAD_PAGE
[ 159.011723][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 159.011729][ T5914] Call Trace:
[ 159.011733][ T5914]
[ 159.011736][ T5914] dump_stack_lvl+0x189/0x250
[ 159.011800][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 159.011810][ T5914] ? __pfx_print_modules+0x10/0x10
[ 159.011825][ T5914] ? percpu_ref_put+0x19/0x180
[ 159.011837][ T5914] ? percpu_ref_put+0xf9/0x180
[ 159.011852][ T5914] bad_page+0x180/0x1c0
[ 159.011861][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 159.011874][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 159.011886][ T5914] __folio_put+0x21b/0x2c0
[ 159.011901][ T5914] ? __pfx___folio_put+0x10/0x10
[ 159.011915][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 159.011931][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 159.011943][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 159.011958][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 159.011972][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 159.011985][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 159.011999][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 159.012015][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 159.012029][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.012041][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.012050][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.012062][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.012073][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.012088][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 159.012100][ T5914] evict+0x501/0x9c0
[ 159.012116][ T5914] ? __pfx_evict+0x10/0x10
[ 159.012125][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.012138][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 159.012152][ T5914] evict_inodes+0x64c/0x6d0
[ 159.012165][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 159.012175][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 159.012193][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 159.012204][ T5914] kill_block_super+0x44/0x90
[ 159.012214][ T5914] xfs_kill_sb+0x15/0x50
[ 159.012225][ T5914] deactivate_locked_super+0xbc/0x130
[ 159.012240][ T5914] cleanup_mnt+0x425/0x4c0
[ 159.012255][ T5914] task_work_run+0x1d1/0x260
[ 159.012273][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 159.012288][ T5914] ? __x64_sys_umount+0x122/0x160
[ 159.012298][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 159.012309][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.012318][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 159.012331][ T5914] do_syscall_64+0x2bd/0x3b0
[ 159.012342][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.012351][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 159.012361][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.012370][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 159.012380][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 159.012389][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 159.012402][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 159.012409][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 159.012415][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 159.012421][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 159.012427][ T5914] R13: 00007f3f2201089d R14: 0000000000026be2 R15: 00007ffff66cd380
[ 159.012437][ T5914]
[ 159.012462][ T5914] BUG: Bad page state in process syz-executor pfn:53800
[ 159.177001][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x53800
[ 159.180734][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 159.184452][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 159.188600][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 159.193030][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 159.197539][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 159.201142][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 159.205042][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 159.208763][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 159.213131][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 159.216386][ T5914] page_owner tracks the page as allocated
[ 159.218778][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6021, tgid 6020 (syz.0.22), ts 158862156939, free_ts 158413968876
[ 159.228892][ T5914] post_alloc_hook+0x240/0x2a0
[ 159.230942][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 159.233812][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 159.236049][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 159.238543][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 159.240602][ T5914] alloc_pages_noprof+0xa9/0x190
[ 159.243116][ T5914] folio_alloc_noprof+0x1e/0x30
[ 159.245205][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 159.247534][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 159.249671][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 159.252456][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 159.255037][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 159.257488][ T5914] vfs_write+0x54b/0xa90
[ 159.259294][ T5914] ksys_write+0x145/0x250
[ 159.261076][ T5914] do_syscall_64+0xfa/0x3b0
[ 159.263456][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.265950][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 159.268581][ T5914] free_unref_folios+0xdbd/0x1520
[ 159.270693][ T5914] folios_put_refs+0x559/0x640
[ 159.273339][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 159.275844][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 159.277911][ T5914] evict+0x501/0x9c0
[ 159.279638][ T5914] evict_inodes+0x64c/0x6d0
[ 159.282744][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 159.285022][ T5914] kill_block_super+0x44/0x90
[ 159.287033][ T5914] xfs_kill_sb+0x15/0x50
[ 159.289011][ T5914] deactivate_locked_super+0xbc/0x130
[ 159.292278][ T5914] cleanup_mnt+0x425/0x4c0
[ 159.294601][ T5914] task_work_run+0x1d1/0x260
[ 159.297401][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 159.299640][ T5914] do_syscall_64+0x2bd/0x3b0
[ 159.302589][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.305193][ T5914] Modules linked in:
[ 159.306904][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 159.306920][ T5914] Tainted: [B]=BAD_PAGE
[ 159.306923][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 159.306930][ T5914] Call Trace:
[ 159.306936][ T5914]
[ 159.306941][ T5914] dump_stack_lvl+0x189/0x250
[ 159.306967][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 159.306978][ T5914] ? __pfx_print_modules+0x10/0x10
[ 159.306995][ T5914] bad_page+0x180/0x1c0
[ 159.307004][ T5914] __free_frozen_pages+0xce2/0xd30
[ 159.307013][ T5914] __folio_put+0x21b/0x2c0
[ 159.307022][ T5914] ? __pfx___folio_put+0x10/0x10
[ 159.307034][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 159.307048][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 159.307059][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 159.307074][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 159.307085][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 159.307095][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 159.307111][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 159.307134][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 159.307150][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.307162][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.307174][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.307185][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.307194][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.307204][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 159.307217][ T5914] evict+0x501/0x9c0
[ 159.307228][ T5914] ? __pfx_evict+0x10/0x10
[ 159.307236][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.307245][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 159.307257][ T5914] evict_inodes+0x64c/0x6d0
[ 159.307269][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 159.307280][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 159.307293][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 159.307302][ T5914] kill_block_super+0x44/0x90
[ 159.307313][ T5914] xfs_kill_sb+0x15/0x50
[ 159.307323][ T5914] deactivate_locked_super+0xbc/0x130
[ 159.307338][ T5914] cleanup_mnt+0x425/0x4c0
[ 159.307353][ T5914] task_work_run+0x1d1/0x260
[ 159.307366][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 159.307377][ T5914] ? __x64_sys_umount+0x122/0x160
[ 159.307386][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 159.307395][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.307405][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 159.307418][ T5914] do_syscall_64+0x2bd/0x3b0
[ 159.307428][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.307438][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 159.307449][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.307456][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 159.307512][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 159.307522][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 159.307534][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 159.307541][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 159.307547][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 159.307553][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 159.307560][ T5914] R13: 00007f3f2201089d R14: 0000000000026be2 R15: 00007ffff66cd380
[ 159.307570][ T5914]
[ 159.307979][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 159.680808][ T6031] loop0: detected capacity change from 0 to 32768
[ 159.693124][ T6031] XFS: ikeep mount option is deprecated.
[ 159.704341][ T6031] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 159.732700][ T6031] XFS (loop0): Ending clean mount
[ 159.740968][ T6031] XFS (loop0): Quotacheck needed: Please wait.
[ 159.749453][ T6031] XFS (loop0): Quotacheck: Done.
[ 159.779765][ T5914] BUG: Bad page state in process syz-executor pfn:52a01
[ 159.784317][ T5914] page does not match folio
[ 159.786328][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52a01
[ 159.790526][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 159.794731][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 159.798665][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 159.803500][ T5914] page dumped because: nonzero pincount
[ 159.806041][ T5914] page_owner tracks the page as allocated
[ 159.809011][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6031, tgid 6030 (syz.0.23), ts 159766489783, free_ts 159758260641
[ 159.819476][ T5914] post_alloc_hook+0x240/0x2a0
[ 159.823735][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 159.826168][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 159.828484][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 159.830978][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 159.833664][ T5914] alloc_pages_noprof+0xa9/0x190
[ 159.835947][ T5914] folio_alloc_noprof+0x1e/0x30
[ 159.838271][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 159.840868][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 159.843623][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 159.845954][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 159.848417][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 159.850774][ T5914] vfs_write+0x54b/0xa90
[ 159.853227][ T5914] ksys_write+0x145/0x250
[ 159.855151][ T5914] do_syscall_64+0xfa/0x3b0
[ 159.857269][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.859974][ T5914] page last free pid 79 tgid 79 stack trace:
[ 159.863194][ T5914] free_unref_folios+0xdbd/0x1520
[ 159.866140][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 159.868438][ T5914] evict_folios+0x47f2/0x58b0
[ 159.870559][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 159.875175][ T5914] shrink_one+0x21b/0x7c0
[ 159.877101][ T5914] shrink_node+0x314e/0x3760
[ 159.879592][ T5914] kswapd+0x147c/0x2830
[ 159.883060][ T5914] kthread+0x711/0x8a0
[ 159.885561][ T5914] ret_from_fork+0x3f9/0x770
[ 159.887559][ T5914] ret_from_fork_asm+0x1a/0x30
[ 159.889757][ T5914] Modules linked in:
[ 159.893729][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 159.893747][ T5914] Tainted: [B]=BAD_PAGE
[ 159.893750][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 159.893757][ T5914] Call Trace:
[ 159.893760][ T5914]
[ 159.893766][ T5914] dump_stack_lvl+0x189/0x250
[ 159.893827][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 159.893845][ T5914] ? __pfx_print_modules+0x10/0x10
[ 159.893858][ T5914] ? percpu_ref_put+0x19/0x180
[ 159.893870][ T5914] ? percpu_ref_put+0xf9/0x180
[ 159.893879][ T5914] bad_page+0x180/0x1c0
[ 159.893888][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 159.893900][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 159.893913][ T5914] __folio_put+0x21b/0x2c0
[ 159.893926][ T5914] ? __pfx___folio_put+0x10/0x10
[ 159.893938][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 159.893952][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 159.893963][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 159.893978][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 159.893988][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 159.894000][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 159.894012][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 159.894024][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 159.894040][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.894053][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.894062][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.894074][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.894084][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 159.894095][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 159.894106][ T5914] evict+0x501/0x9c0
[ 159.894117][ T5914] ? __pfx_evict+0x10/0x10
[ 159.894125][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.894135][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 159.894146][ T5914] evict_inodes+0x64c/0x6d0
[ 159.894159][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 159.894170][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 159.894182][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 159.894191][ T5914] kill_block_super+0x44/0x90
[ 159.894201][ T5914] xfs_kill_sb+0x15/0x50
[ 159.894211][ T5914] deactivate_locked_super+0xbc/0x130
[ 159.894226][ T5914] cleanup_mnt+0x425/0x4c0
[ 159.894240][ T5914] task_work_run+0x1d1/0x260
[ 159.894253][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 159.894263][ T5914] ? __x64_sys_umount+0x122/0x160
[ 159.894272][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 159.894282][ T5914] ? rcu_is_watching+0x15/0xb0
[ 159.894291][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 159.894305][ T5914] do_syscall_64+0x2bd/0x3b0
[ 159.894323][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.894332][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 159.894342][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 159.894352][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 159.894362][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 159.894370][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 159.894382][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 159.894389][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 159.894395][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 159.894401][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 159.894407][ T5914] R13: 00007f3f2201089d R14: 0000000000026f6a R15: 00007ffff66cd380
[ 159.894418][ T5914]
[ 159.894444][ T5914] BUG: Bad page state in process syz-executor pfn:52a00
[ 160.058373][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52a00
[ 160.062367][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 160.065939][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 160.070183][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 160.074439][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 160.078095][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 160.082727][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 160.087166][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 160.090923][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 160.095396][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 160.098658][ T5914] page_owner tracks the page as allocated
[ 160.101605][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6031, tgid 6030 (syz.0.23), ts 159766489783, free_ts 159758257034
[ 160.111935][ T5914] post_alloc_hook+0x240/0x2a0
[ 160.114185][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 160.117473][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 160.119941][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 160.122887][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 160.125019][ T5914] alloc_pages_noprof+0xa9/0x190
[ 160.127160][ T5914] folio_alloc_noprof+0x1e/0x30
[ 160.129531][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 160.132395][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 160.134627][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 160.136811][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 160.139170][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 160.142059][ T5914] vfs_write+0x54b/0xa90
[ 160.143908][ T5914] ksys_write+0x145/0x250
[ 160.145894][ T5914] do_syscall_64+0xfa/0x3b0
[ 160.147934][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.150714][ T5914] page last free pid 79 tgid 79 stack trace:
[ 160.153869][ T5914] free_unref_folios+0xdbd/0x1520
[ 160.156028][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 160.158457][ T5914] evict_folios+0x47f2/0x58b0
[ 160.161104][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 160.165187][ T5914] shrink_one+0x21b/0x7c0
[ 160.167526][ T5914] shrink_node+0x314e/0x3760
[ 160.169614][ T5914] kswapd+0x147c/0x2830
[ 160.172023][ T5914] kthread+0x711/0x8a0
[ 160.173798][ T5914] ret_from_fork+0x3f9/0x770
[ 160.175886][ T5914] ret_from_fork_asm+0x1a/0x30
[ 160.177990][ T5914] Modules linked in:
[ 160.179685][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 160.179702][ T5914] Tainted: [B]=BAD_PAGE
[ 160.179706][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 160.179713][ T5914] Call Trace:
[ 160.179720][ T5914]
[ 160.179726][ T5914] dump_stack_lvl+0x189/0x250
[ 160.179753][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 160.179766][ T5914] ? __pfx_print_modules+0x10/0x10
[ 160.179784][ T5914] bad_page+0x180/0x1c0
[ 160.179796][ T5914] __free_frozen_pages+0xce2/0xd30
[ 160.179812][ T5914] __folio_put+0x21b/0x2c0
[ 160.179835][ T5914] ? __pfx___folio_put+0x10/0x10
[ 160.179851][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 160.179868][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 160.179881][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 160.179898][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 160.179910][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 160.179923][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 160.179938][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 160.179955][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 160.179973][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.179988][ T5914] ? rcu_is_watching+0x15/0xb0
[ 160.179998][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.180012][ T5914] ? rcu_is_watching+0x15/0xb0
[ 160.180023][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.180036][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 160.180049][ T5914] evict+0x501/0x9c0
[ 160.180062][ T5914] ? __pfx_evict+0x10/0x10
[ 160.180071][ T5914] ? rcu_is_watching+0x15/0xb0
[ 160.180081][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 160.180095][ T5914] evict_inodes+0x64c/0x6d0
[ 160.180108][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 160.180121][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 160.180136][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 160.180147][ T5914] kill_block_super+0x44/0x90
[ 160.180160][ T5914] xfs_kill_sb+0x15/0x50
[ 160.180171][ T5914] deactivate_locked_super+0xbc/0x130
[ 160.180188][ T5914] cleanup_mnt+0x425/0x4c0
[ 160.180205][ T5914] task_work_run+0x1d1/0x260
[ 160.180220][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 160.180233][ T5914] ? __x64_sys_umount+0x122/0x160
[ 160.180244][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 160.180256][ T5914] ? rcu_is_watching+0x15/0xb0
[ 160.180267][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 160.180282][ T5914] do_syscall_64+0x2bd/0x3b0
[ 160.180295][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.180306][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 160.180317][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.180328][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 160.180340][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 160.180349][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 160.180362][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 160.180369][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 160.180376][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 160.180382][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 160.180390][ T5914] R13: 00007f3f2201089d R14: 0000000000026f6a R15: 00007ffff66cd380
[ 160.180401][ T5914]
[ 160.180951][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 160.540687][ T6041] loop0: detected capacity change from 0 to 32768
[ 160.563219][ T6041] XFS: ikeep mount option is deprecated.
[ 160.573765][ T6041] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 160.606314][ T6041] XFS (loop0): Ending clean mount
[ 160.612574][ T6041] XFS (loop0): Quotacheck needed: Please wait.
[ 160.622783][ T6041] XFS (loop0): Quotacheck: Done.
[ 160.653219][ T5914] BUG: Bad page state in process syz-executor pfn:53a01
[ 160.656212][ T5914] page does not match folio
[ 160.658181][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x53a01
[ 160.664836][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 160.668017][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 160.673320][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 160.677074][ T5914] page dumped because: nonzero pincount
[ 160.679516][ T5914] page_owner tracks the page as allocated
[ 160.682615][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6041, tgid 6040 (syz.0.24), ts 160632136016, free_ts 160180457985
[ 160.694722][ T5914] post_alloc_hook+0x240/0x2a0
[ 160.696894][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 160.699213][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 160.702457][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 160.704953][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 160.707029][ T5914] alloc_pages_noprof+0xa9/0x190
[ 160.709198][ T5914] folio_alloc_noprof+0x1e/0x30
[ 160.711736][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 160.714144][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 160.716311][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 160.718501][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 160.720942][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 160.724088][ T5914] vfs_write+0x54b/0xa90
[ 160.725965][ T5914] ksys_write+0x145/0x250
[ 160.727919][ T5914] do_syscall_64+0xfa/0x3b0
[ 160.730474][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.733386][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 160.736086][ T5914] free_unref_folios+0xdbd/0x1520
[ 160.738423][ T5914] folios_put_refs+0x559/0x640
[ 160.740637][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 160.743826][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 160.745935][ T5914] evict+0x501/0x9c0
[ 160.748018][ T5914] evict_inodes+0x64c/0x6d0
[ 160.750126][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 160.752837][ T5914] kill_block_super+0x44/0x90
[ 160.754868][ T5914] xfs_kill_sb+0x15/0x50
[ 160.756734][ T5914] deactivate_locked_super+0xbc/0x130
[ 160.759148][ T5914] cleanup_mnt+0x425/0x4c0
[ 160.761093][ T5914] task_work_run+0x1d1/0x260
[ 160.764033][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 160.766626][ T5914] do_syscall_64+0x2bd/0x3b0
[ 160.768595][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.771060][ T5914] Modules linked in:
[ 160.773268][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 160.773284][ T5914] Tainted: [B]=BAD_PAGE
[ 160.773288][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 160.773294][ T5914] Call Trace:
[ 160.773298][ T5914]
[ 160.773302][ T5914] dump_stack_lvl+0x189/0x250
[ 160.773331][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 160.773343][ T5914] ? __pfx_print_modules+0x10/0x10
[ 160.773358][ T5914] ? percpu_ref_put+0x19/0x180
[ 160.773371][ T5914] ? percpu_ref_put+0xf9/0x180
[ 160.773383][ T5914] bad_page+0x180/0x1c0
[ 160.773394][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 160.773406][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 160.773420][ T5914] __folio_put+0x21b/0x2c0
[ 160.773435][ T5914] ? __pfx___folio_put+0x10/0x10
[ 160.773450][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 160.773465][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 160.773478][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 160.773491][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 160.773498][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 160.773505][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 160.773515][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 160.773528][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 160.773543][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.773556][ T5914] ? rcu_is_watching+0x15/0xb0
[ 160.773566][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.773577][ T5914] ? rcu_is_watching+0x15/0xb0
[ 160.773587][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 160.773597][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 160.773610][ T5914] evict+0x501/0x9c0
[ 160.773621][ T5914] ? __pfx_evict+0x10/0x10
[ 160.773629][ T5914] ? rcu_is_watching+0x15/0xb0
[ 160.773638][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 160.773651][ T5914] evict_inodes+0x64c/0x6d0
[ 160.773665][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 160.773677][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 160.773690][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 160.773700][ T5914] kill_block_super+0x44/0x90
[ 160.773711][ T5914] xfs_kill_sb+0x15/0x50
[ 160.773722][ T5914] deactivate_locked_super+0xbc/0x130
[ 160.773737][ T5914] cleanup_mnt+0x425/0x4c0
[ 160.773752][ T5914] task_work_run+0x1d1/0x260
[ 160.773767][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 160.773779][ T5914] ? __x64_sys_umount+0x122/0x160
[ 160.773789][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 160.773800][ T5914] ? rcu_is_watching+0x15/0xb0
[ 160.773809][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 160.773818][ T5914] do_syscall_64+0x2bd/0x3b0
[ 160.773826][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.773833][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 160.773841][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 160.773848][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 160.773857][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 160.773865][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 160.773877][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 160.773884][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 160.773890][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 160.773895][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 160.773902][ T5914] R13: 00007f3f2201089d R14: 00000000000272c3 R15: 00007ffff66cd380
[ 160.773913][ T5914]
[ 160.773941][ T5914] BUG: Bad page state in process syz-executor pfn:53a00
[ 160.935041][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x53a00
[ 160.938758][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 160.942949][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 160.947443][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 160.950931][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 160.954868][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 160.958379][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 160.962651][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 160.966589][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 160.970221][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 160.974257][ T5914] page_owner tracks the page as allocated
[ 160.977109][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6041, tgid 6040 (syz.0.24), ts 160632136016, free_ts 160180457985
[ 160.990091][ T5914] post_alloc_hook+0x240/0x2a0
[ 160.992302][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 160.994326][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 160.996180][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 160.998368][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 161.000410][ T5914] alloc_pages_noprof+0xa9/0x190
[ 161.002889][ T5914] folio_alloc_noprof+0x1e/0x30
[ 161.004827][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 161.006816][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 161.008815][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 161.010622][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 161.012969][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 161.015204][ T5914] vfs_write+0x54b/0xa90
[ 161.016783][ T5914] ksys_write+0x145/0x250
[ 161.018352][ T5914] do_syscall_64+0xfa/0x3b0
[ 161.020038][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.024903][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 161.027151][ T5914] free_unref_folios+0xdbd/0x1520
[ 161.029129][ T5914] folios_put_refs+0x559/0x640
[ 161.030818][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 161.033463][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 161.035290][ T5914] evict+0x501/0x9c0
[ 161.037902][ T5914] evict_inodes+0x64c/0x6d0
[ 161.039596][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 161.042731][ T5914] kill_block_super+0x44/0x90
[ 161.044561][ T5914] xfs_kill_sb+0x15/0x50
[ 161.046115][ T5914] deactivate_locked_super+0xbc/0x130
[ 161.047997][ T5914] cleanup_mnt+0x425/0x4c0
[ 161.049615][ T5914] task_work_run+0x1d1/0x260
[ 161.051948][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 161.053880][ T5914] do_syscall_64+0x2bd/0x3b0
[ 161.055707][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.057873][ T5914] Modules linked in:
[ 161.059315][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 161.059327][ T5914] Tainted: [B]=BAD_PAGE
[ 161.059329][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 161.059334][ T5914] Call Trace:
[ 161.059339][ T5914]
[ 161.059343][ T5914] dump_stack_lvl+0x189/0x250
[ 161.060141][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 161.060152][ T5914] ? __pfx_print_modules+0x10/0x10
[ 161.060168][ T5914] bad_page+0x180/0x1c0
[ 161.060178][ T5914] __free_frozen_pages+0xce2/0xd30
[ 161.060192][ T5914] __folio_put+0x21b/0x2c0
[ 161.060206][ T5914] ? __pfx___folio_put+0x10/0x10
[ 161.060219][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 161.060233][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 161.060244][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 161.060259][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 161.060270][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 161.060281][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 161.060294][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 161.060309][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 161.060326][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.060339][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.060349][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.060361][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.060371][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.060382][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 161.060394][ T5914] evict+0x501/0x9c0
[ 161.060403][ T5914] ? __pfx_evict+0x10/0x10
[ 161.060412][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.060422][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 161.060435][ T5914] evict_inodes+0x64c/0x6d0
[ 161.060448][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 161.060459][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 161.060472][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 161.060482][ T5914] kill_block_super+0x44/0x90
[ 161.060493][ T5914] xfs_kill_sb+0x15/0x50
[ 161.060527][ T5914] deactivate_locked_super+0xbc/0x130
[ 161.060544][ T5914] cleanup_mnt+0x425/0x4c0
[ 161.060559][ T5914] task_work_run+0x1d1/0x260
[ 161.060574][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 161.060586][ T5914] ? __x64_sys_umount+0x122/0x160
[ 161.060596][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 161.060605][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.060615][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 161.060637][ T5914] do_syscall_64+0x2bd/0x3b0
[ 161.060648][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.060658][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 161.060669][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.060679][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 161.060690][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 161.060699][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 161.060711][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 161.060717][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 161.060724][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 161.060729][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 161.060736][ T5914] R13: 00007f3f2201089d R14: 00000000000272c3 R15: 00007ffff66cd380
[ 161.060746][ T5914]
[ 161.206893][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 161.410324][ T6051] loop0: detected capacity change from 0 to 32768
[ 161.417510][ T6051] XFS: ikeep mount option is deprecated.
[ 161.428113][ T6051] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 161.463911][ T6051] XFS (loop0): Ending clean mount
[ 161.471040][ T6051] XFS (loop0): Quotacheck needed: Please wait.
[ 161.479321][ T6051] XFS (loop0): Quotacheck: Done.
[ 161.508160][ T5914] BUG: Bad page state in process syz-executor pfn:40401
[ 161.511140][ T5914] page does not match folio
[ 161.513747][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x40401
[ 161.518214][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 161.521877][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 161.525573][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 161.529196][ T5914] page dumped because: nonzero pincount
[ 161.533425][ T5914] page_owner tracks the page as allocated
[ 161.535862][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6051, tgid 6050 (syz.0.25), ts 161491992667, free_ts 161060851658
[ 161.546252][ T5914] post_alloc_hook+0x240/0x2a0
[ 161.548637][ T5914] get_page_from_freelist+0x21e4/0x22c0
2025/08/02 21:22:53 executed programs: 12
[ 161.554525][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 161.556815][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 161.559657][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 161.563113][ T5914] alloc_pages_noprof+0xa9/0x190
[ 161.565905][ T5914] folio_alloc_noprof+0x1e/0x30
[ 161.568560][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 161.570692][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 161.573438][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 161.575689][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 161.578109][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 161.580462][ T5914] vfs_write+0x54b/0xa90
[ 161.582874][ T5914] ksys_write+0x145/0x250
[ 161.585145][ T5914] do_syscall_64+0xfa/0x3b0
[ 161.587921][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.591973][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 161.594708][ T5914] free_unref_folios+0xdbd/0x1520
[ 161.596846][ T5914] folios_put_refs+0x559/0x640
[ 161.598904][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 161.602227][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 161.604355][ T5914] evict+0x501/0x9c0
[ 161.605989][ T5914] evict_inodes+0x64c/0x6d0
[ 161.607951][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 161.610214][ T5914] kill_block_super+0x44/0x90
[ 161.612876][ T5914] xfs_kill_sb+0x15/0x50
[ 161.614711][ T5914] deactivate_locked_super+0xbc/0x130
[ 161.616991][ T5914] cleanup_mnt+0x425/0x4c0
[ 161.618901][ T5914] task_work_run+0x1d1/0x260
[ 161.620907][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 161.624548][ T5914] do_syscall_64+0x2bd/0x3b0
[ 161.627173][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.630047][ T5914] Modules linked in:
[ 161.632240][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 161.632258][ T5914] Tainted: [B]=BAD_PAGE
[ 161.632262][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 161.632269][ T5914] Call Trace:
[ 161.632280][ T5914]
[ 161.632284][ T5914] dump_stack_lvl+0x189/0x250
[ 161.632314][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 161.632324][ T5914] ? __pfx_print_modules+0x10/0x10
[ 161.632339][ T5914] ? percpu_ref_put+0x19/0x180
[ 161.632352][ T5914] ? percpu_ref_put+0xf9/0x180
[ 161.632364][ T5914] bad_page+0x180/0x1c0
[ 161.632373][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 161.632385][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 161.632397][ T5914] __folio_put+0x21b/0x2c0
[ 161.632411][ T5914] ? __pfx___folio_put+0x10/0x10
[ 161.632424][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 161.632440][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 161.632452][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 161.632468][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 161.632479][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 161.632491][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 161.632534][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 161.632550][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 161.632568][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.632581][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.632591][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.632603][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.632613][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.632624][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 161.632636][ T5914] evict+0x501/0x9c0
[ 161.632647][ T5914] ? __pfx_evict+0x10/0x10
[ 161.632655][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.632665][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 161.632678][ T5914] evict_inodes+0x64c/0x6d0
[ 161.632691][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 161.632702][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 161.632715][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 161.632725][ T5914] kill_block_super+0x44/0x90
[ 161.632735][ T5914] xfs_kill_sb+0x15/0x50
[ 161.632752][ T5914] deactivate_locked_super+0xbc/0x130
[ 161.632766][ T5914] cleanup_mnt+0x425/0x4c0
[ 161.632780][ T5914] task_work_run+0x1d1/0x260
[ 161.632794][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 161.632805][ T5914] ? __x64_sys_umount+0x122/0x160
[ 161.632815][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 161.632826][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.632836][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 161.632849][ T5914] do_syscall_64+0x2bd/0x3b0
[ 161.632859][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.632869][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 161.632878][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.632886][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 161.632896][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 161.632905][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 161.632916][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 161.632923][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 161.632929][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 161.632936][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 161.632943][ T5914] R13: 00007f3f2201089d R14: 000000000002762b R15: 00007ffff66cd380
[ 161.632952][ T5914]
[ 161.632983][ T5914] BUG: Bad page state in process syz-executor pfn:40400
[ 161.790895][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x40400
[ 161.794683][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 161.798063][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 161.802585][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 161.806057][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 161.809527][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 161.813427][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 161.816977][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 161.820528][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 161.824555][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 161.827536][ T5914] page_owner tracks the page as allocated
[ 161.829871][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6051, tgid 6050 (syz.0.25), ts 161491992667, free_ts 161060851658
[ 161.840932][ T5914] post_alloc_hook+0x240/0x2a0
[ 161.843510][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 161.845894][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 161.848150][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 161.850537][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 161.853074][ T5914] alloc_pages_noprof+0xa9/0x190
[ 161.855179][ T5914] folio_alloc_noprof+0x1e/0x30
[ 161.857675][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 161.860033][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 161.862804][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 161.865022][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 161.867423][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 161.869767][ T5914] vfs_write+0x54b/0xa90
[ 161.872033][ T5914] ksys_write+0x145/0x250
[ 161.873975][ T5914] do_syscall_64+0xfa/0x3b0
[ 161.875989][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.878498][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 161.881200][ T5914] free_unref_folios+0xdbd/0x1520
[ 161.884122][ T5914] folios_put_refs+0x559/0x640
[ 161.886231][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 161.888926][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 161.891099][ T5914] evict+0x501/0x9c0
[ 161.894290][ T5914] evict_inodes+0x64c/0x6d0
[ 161.896282][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 161.898519][ T5914] kill_block_super+0x44/0x90
[ 161.900494][ T5914] xfs_kill_sb+0x15/0x50
[ 161.903037][ T5914] deactivate_locked_super+0xbc/0x130
[ 161.905430][ T5914] cleanup_mnt+0x425/0x4c0
[ 161.907342][ T5914] task_work_run+0x1d1/0x260
[ 161.909343][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 161.912082][ T5914] do_syscall_64+0x2bd/0x3b0
[ 161.914160][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.916733][ T5914] Modules linked in:
[ 161.918435][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 161.918452][ T5914] Tainted: [B]=BAD_PAGE
[ 161.918456][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 161.918463][ T5914] Call Trace:
[ 161.918469][ T5914]
[ 161.918475][ T5914] dump_stack_lvl+0x189/0x250
[ 161.918499][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 161.918510][ T5914] ? __pfx_print_modules+0x10/0x10
[ 161.918527][ T5914] bad_page+0x180/0x1c0
[ 161.918537][ T5914] __free_frozen_pages+0xce2/0xd30
[ 161.918550][ T5914] __folio_put+0x21b/0x2c0
[ 161.918564][ T5914] ? __pfx___folio_put+0x10/0x10
[ 161.918578][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 161.918592][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 161.918604][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 161.918620][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 161.918631][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 161.918642][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 161.918654][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 161.918667][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 161.918682][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.918695][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.918704][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.918722][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.918732][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 161.918743][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 161.918754][ T5914] evict+0x501/0x9c0
[ 161.918764][ T5914] ? __pfx_evict+0x10/0x10
[ 161.918772][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.918781][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 161.918793][ T5914] evict_inodes+0x64c/0x6d0
[ 161.918805][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 161.918815][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 161.918828][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 161.918839][ T5914] kill_block_super+0x44/0x90
[ 161.918849][ T5914] xfs_kill_sb+0x15/0x50
[ 161.918859][ T5914] deactivate_locked_super+0xbc/0x130
[ 161.918873][ T5914] cleanup_mnt+0x425/0x4c0
[ 161.918889][ T5914] task_work_run+0x1d1/0x260
[ 161.918902][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 161.918913][ T5914] ? __x64_sys_umount+0x122/0x160
[ 161.918923][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 161.918933][ T5914] ? rcu_is_watching+0x15/0xb0
[ 161.918943][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 161.918956][ T5914] do_syscall_64+0x2bd/0x3b0
[ 161.918967][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.918976][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 161.918987][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 161.918997][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 161.919054][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 161.919065][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 161.919077][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 161.919084][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 161.919090][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 161.919096][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 161.919102][ T5914] R13: 00007f3f2201089d R14: 000000000002762b R15: 00007ffff66cd380
[ 161.919112][ T5914]
[ 161.919639][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 162.270110][ T6061] loop0: detected capacity change from 0 to 32768
[ 162.281146][ T6061] XFS: ikeep mount option is deprecated.
[ 162.297648][ T6061] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 162.333835][ T6061] XFS (loop0): Ending clean mount
[ 162.336865][ T6061] XFS (loop0): Quotacheck needed: Please wait.
[ 162.345785][ T6061] XFS (loop0): Quotacheck: Done.
[ 162.379089][ T5914] BUG: Bad page state in process syz-executor pfn:51a01
[ 162.382466][ T5914] page does not match folio
[ 162.384554][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51a01
[ 162.388800][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 162.393763][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 162.397679][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 162.402737][ T5914] page dumped because: nonzero pincount
[ 162.405252][ T5914] page_owner tracks the page as allocated
[ 162.407887][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6061, tgid 6060 (syz.0.26), ts 162360491314, free_ts 162355206066
[ 162.418136][ T5914] post_alloc_hook+0x240/0x2a0
[ 162.420259][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 162.427908][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 162.430410][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 162.433337][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 162.435507][ T5914] alloc_pages_noprof+0xa9/0x190
[ 162.437670][ T5914] folio_alloc_noprof+0x1e/0x30
[ 162.439768][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 162.442817][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 162.445142][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 162.447569][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 162.450207][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 162.453233][ T5914] vfs_write+0x54b/0xa90
[ 162.455118][ T5914] ksys_write+0x145/0x250
[ 162.456993][ T5914] do_syscall_64+0xfa/0x3b0
[ 162.458977][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.462106][ T5914] page last free pid 79 tgid 79 stack trace:
[ 162.464667][ T5914] free_unref_folios+0xdbd/0x1520
[ 162.466866][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 162.469282][ T5914] evict_folios+0x47f2/0x58b0
[ 162.472366][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 162.474671][ T5914] shrink_one+0x21b/0x7c0
[ 162.476717][ T5914] shrink_node+0x314e/0x3760
[ 162.478713][ T5914] kswapd+0x147c/0x2830
[ 162.480453][ T5914] kthread+0x711/0x8a0
[ 162.483594][ T5914] ret_from_fork+0x3f9/0x770
[ 162.485639][ T5914] ret_from_fork_asm+0x1a/0x30
[ 162.487753][ T5914] Modules linked in:
[ 162.489477][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 162.489493][ T5914] Tainted: [B]=BAD_PAGE
[ 162.489497][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 162.489503][ T5914] Call Trace:
[ 162.489510][ T5914]
[ 162.489516][ T5914] dump_stack_lvl+0x189/0x250
[ 162.489542][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 162.489553][ T5914] ? __pfx_print_modules+0x10/0x10
[ 162.489567][ T5914] ? percpu_ref_put+0x19/0x180
[ 162.489580][ T5914] ? percpu_ref_put+0xf9/0x180
[ 162.489590][ T5914] bad_page+0x180/0x1c0
[ 162.489600][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 162.489612][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 162.489626][ T5914] __folio_put+0x21b/0x2c0
[ 162.489640][ T5914] ? __pfx___folio_put+0x10/0x10
[ 162.489652][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 162.489664][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 162.489674][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 162.489688][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 162.489698][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 162.489710][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 162.489724][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 162.489738][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 162.489753][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 162.489766][ T5914] ? rcu_is_watching+0x15/0xb0
[ 162.489776][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 162.489788][ T5914] ? rcu_is_watching+0x15/0xb0
[ 162.489796][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 162.489806][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 162.489819][ T5914] evict+0x501/0x9c0
[ 162.489830][ T5914] ? __pfx_evict+0x10/0x10
[ 162.489839][ T5914] ? rcu_is_watching+0x15/0xb0
[ 162.489848][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 162.489860][ T5914] evict_inodes+0x64c/0x6d0
[ 162.489873][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 162.489884][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 162.489898][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 162.489908][ T5914] kill_block_super+0x44/0x90
[ 162.489918][ T5914] xfs_kill_sb+0x15/0x50
[ 162.489928][ T5914] deactivate_locked_super+0xbc/0x130
[ 162.489943][ T5914] cleanup_mnt+0x425/0x4c0
[ 162.489958][ T5914] task_work_run+0x1d1/0x260
[ 162.489972][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 162.489983][ T5914] ? __x64_sys_umount+0x122/0x160
[ 162.489992][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 162.490003][ T5914] ? rcu_is_watching+0x15/0xb0
[ 162.490012][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 162.490026][ T5914] do_syscall_64+0x2bd/0x3b0
[ 162.490047][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.490057][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 162.490068][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.490078][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 162.490088][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 162.490097][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 162.490108][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 162.490113][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 162.490117][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 162.490121][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 162.490125][ T5914] R13: 00007f3f2201089d R14: 000000000002798d R15: 00007ffff66cd380
[ 162.490133][ T5914]
[ 162.490160][ T5914] BUG: Bad page state in process syz-executor pfn:51a00
[ 162.649779][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51a00
[ 162.653601][ T5914] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 162.657186][ T5914] flags: 0x4fff0800000004d(locked|referenced|uptodate|head|node=1|zone=1|lastcpupid=0x7ff)
[ 162.662474][ T5914] raw: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 162.665967][ T5914] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 162.669494][ T5914] head: 04fff0800000004d dead000000000100 dead000000000122 0000000000000000
[ 162.673385][ T5914] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 162.677452][ T5914] head: 04fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 162.681060][ T5914] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 162.685538][ T5914] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 162.688831][ T5914] page_owner tracks the page as allocated
[ 162.691174][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6061, tgid 6060 (syz.0.26), ts 162360491314, free_ts 162355202326
[ 162.701631][ T5914] post_alloc_hook+0x240/0x2a0
[ 162.703912][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 162.706239][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 162.708439][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 162.710843][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 162.713289][ T5914] alloc_pages_noprof+0xa9/0x190
[ 162.715421][ T5914] folio_alloc_noprof+0x1e/0x30
[ 162.717429][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 162.719767][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 162.722784][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 162.725319][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 162.727812][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 162.730034][ T5914] vfs_write+0x54b/0xa90
[ 162.732186][ T5914] ksys_write+0x145/0x250
[ 162.734010][ T5914] do_syscall_64+0xfa/0x3b0
[ 162.735944][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.738376][ T5914] page last free pid 79 tgid 79 stack trace:
[ 162.740828][ T5914] free_unref_folios+0xdbd/0x1520
[ 162.743652][ T5914] shrink_folio_list+0x2977/0x4cd0
[ 162.745890][ T5914] evict_folios+0x47f2/0x58b0
[ 162.747931][ T5914] try_to_shrink_lruvec+0x8a3/0xb50
[ 162.750079][ T5914] shrink_one+0x21b/0x7c0
[ 162.753180][ T5914] shrink_node+0x314e/0x3760
[ 162.755139][ T5914] kswapd+0x147c/0x2830
[ 162.756896][ T5914] kthread+0x711/0x8a0
[ 162.758644][ T5914] ret_from_fork+0x3f9/0x770
[ 162.760576][ T5914] ret_from_fork_asm+0x1a/0x30
[ 162.763351][ T5914] Modules linked in:
[ 162.765077][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 162.765092][ T5914] Tainted: [B]=BAD_PAGE
[ 162.765096][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 162.765102][ T5914] Call Trace:
[ 162.765107][ T5914]
[ 162.765111][ T5914] dump_stack_lvl+0x189/0x250
[ 162.765172][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 162.765183][ T5914] ? __pfx_print_modules+0x10/0x10
[ 162.765199][ T5914] bad_page+0x180/0x1c0
[ 162.765216][ T5914] __free_frozen_pages+0xce2/0xd30
[ 162.765237][ T5914] __folio_put+0x21b/0x2c0
[ 162.765254][ T5914] ? __pfx___folio_put+0x10/0x10
[ 162.765268][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 162.765287][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 162.765302][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 162.765318][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 162.765328][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 162.765339][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 162.765352][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 162.765366][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 162.765385][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 162.765399][ T5914] ? rcu_is_watching+0x15/0xb0
[ 162.765409][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 162.765421][ T5914] ? rcu_is_watching+0x15/0xb0
[ 162.765430][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 162.765441][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 162.765453][ T5914] evict+0x501/0x9c0
[ 162.765464][ T5914] ? __pfx_evict+0x10/0x10
[ 162.765473][ T5914] ? rcu_is_watching+0x15/0xb0
[ 162.765482][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 162.765496][ T5914] evict_inodes+0x64c/0x6d0
[ 162.765510][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 162.765521][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 162.765536][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 162.765549][ T5914] kill_block_super+0x44/0x90
[ 162.765562][ T5914] xfs_kill_sb+0x15/0x50
[ 162.765573][ T5914] deactivate_locked_super+0xbc/0x130
[ 162.765590][ T5914] cleanup_mnt+0x425/0x4c0
[ 162.765610][ T5914] task_work_run+0x1d1/0x260
[ 162.765623][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 162.765634][ T5914] ? __x64_sys_umount+0x122/0x160
[ 162.765644][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 162.765655][ T5914] ? rcu_is_watching+0x15/0xb0
[ 162.765664][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 162.765677][ T5914] do_syscall_64+0x2bd/0x3b0
[ 162.765687][ T5914] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.765697][ T5914] ? clear_bhb_loop+0x60/0xb0
[ 162.765707][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 162.765716][ T5914] RIP: 0033:0x7f3f21f8fc97
[ 162.765727][ T5914] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 162.765737][ T5914] RSP: 002b:00007ffff66cc1f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 162.765750][ T5914] RAX: 0000000000000000 RBX: 00007f3f2201089d RCX: 00007f3f21f8fc97
[ 162.765757][ T5914] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffff66cc2b0
[ 162.765763][ T5914] RBP: 00007ffff66cc2b0 R08: 0000000000000000 R09: 0000000000000000
[ 162.765771][ T5914] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffff66cd340
[ 162.765778][ T5914] R13: 00007f3f2201089d R14: 000000000002798d R15: 00007ffff66cd380
[ 162.765788][ T5914]
[ 162.766458][ T5914] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 163.152789][ T6071] loop0: detected capacity change from 0 to 32768
[ 163.163410][ T6071] XFS: ikeep mount option is deprecated.
[ 163.173823][ T6071] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 163.206045][ T6071] XFS (loop0): Ending clean mount
[ 163.209080][ T6071] XFS (loop0): Quotacheck needed: Please wait.
[ 163.219155][ T6071] XFS (loop0): Quotacheck: Done.
[ 163.254029][ T5914] BUG: Bad page state in process syz-executor pfn:52e01
[ 163.257154][ T5914] page does not match folio
[ 163.259132][ T5914] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52e01
[ 163.264243][ T5914] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[ 163.267449][ T5914] raw: 04fff00000000000 0000000000000000 00000000ffffffff ffffffffffffffff
[ 163.271067][ T5914] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 163.275920][ T5914] page dumped because: nonzero pincount
[ 163.278320][ T5914] page_owner tracks the page as allocated
[ 163.280794][ T5914] page last allocated via order 9, migratetype Movable, gfp_mask 0x153c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_MOVABLE|__GFP_WRITE|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6071, tgid 6070 (syz.0.27), ts 163231877455, free_ts 162765878808
[ 163.294638][ T5914] post_alloc_hook+0x240/0x2a0
[ 163.296837][ T5914] get_page_from_freelist+0x21e4/0x22c0
[ 163.299212][ T5914] __alloc_pages_slowpath+0x2fe/0xce0
[ 163.302059][ T5914] __alloc_frozen_pages_noprof+0x319/0x370
[ 163.304614][ T5914] alloc_pages_mpol+0x232/0x4a0
[ 163.306753][ T5914] alloc_pages_noprof+0xa9/0x190
[ 163.308929][ T5914] folio_alloc_noprof+0x1e/0x30
[ 163.311047][ T5914] filemap_alloc_folio_noprof+0xdf/0x470
[ 163.314163][ T5914] __filemap_get_folio+0x3f2/0xaf0
[ 163.316398][ T5914] iomap_write_begin+0x5d7/0x1c70
[ 163.318650][ T5914] iomap_file_buffered_write+0x441/0x9b0
[ 163.321003][ T5914] xfs_file_buffered_write+0x209/0x8a0
[ 163.323787][ T5914] vfs_write+0x54b/0xa90
[ 163.325645][ T5914] ksys_write+0x145/0x250
[ 163.327501][ T5914] do_syscall_64+0xfa/0x3b0
[ 163.329476][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 163.332705][ T5914] page last free pid 5914 tgid 5914 stack trace:
[ 163.335524][ T5914] free_unref_folios+0xdbd/0x1520
[ 163.337791][ T5914] folios_put_refs+0x559/0x640
[ 163.339913][ T5914] truncate_inode_pages_range+0x346/0xda0
[ 163.343287][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 163.346482][ T5914] evict+0x501/0x9c0
[ 163.348212][ T5914] evict_inodes+0x64c/0x6d0
[ 163.350193][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 163.353141][ T5914] kill_block_super+0x44/0x90
[ 163.355147][ T5914] xfs_kill_sb+0x15/0x50
[ 163.356958][ T5914] deactivate_locked_super+0xbc/0x130
[ 163.359222][ T5914] cleanup_mnt+0x425/0x4c0
[ 163.361115][ T5914] task_work_run+0x1d1/0x260
[ 163.364476][ T5914] exit_to_user_mode_loop+0xec/0x110
[ 163.366749][ T5914] do_syscall_64+0x2bd/0x3b0
[ 163.368709][ T5914] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 163.371774][ T5914] Modules linked in:
[ 163.373583][ T5914] CPU: 0 UID: 0 PID: 5914 Comm: syz-executor Tainted: G B 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 163.373596][ T5914] Tainted: [B]=BAD_PAGE
[ 163.373599][ T5914] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 163.373604][ T5914] Call Trace:
[ 163.373608][ T5914]
[ 163.373612][ T5914] dump_stack_lvl+0x189/0x250
[ 163.373656][ T5914] ? __pfx_dump_stack_lvl+0x10/0x10
[ 163.373663][ T5914] ? __pfx_print_modules+0x10/0x10
[ 163.373671][ T5914] ? percpu_ref_put+0x19/0x180
[ 163.373679][ T5914] ? percpu_ref_put+0xf9/0x180
[ 163.373688][ T5914] bad_page+0x180/0x1c0
[ 163.373698][ T5914] free_tail_page_prepare+0x2c3/0x4f0
[ 163.373710][ T5914] __free_frozen_pages+0x7b7/0xd30
[ 163.373727][ T5914] __folio_put+0x21b/0x2c0
[ 163.373740][ T5914] ? __pfx___folio_put+0x10/0x10
[ 163.373754][ T5914] delete_from_page_cache_batch+0x84c/0x9b0
[ 163.373764][ T5914] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 163.373772][ T5914] ? __pfx_workingset_update_node+0x10/0x10
[ 163.373789][ T5914] ? truncate_cleanup_folio+0x34a/0x430
[ 163.373799][ T5914] truncate_inode_pages_range+0x28a/0xda0
[ 163.373810][ T5914] ? filemap_get_folios_tag+0xed/0x630
[ 163.373825][ T5914] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 163.373841][ T5914] ? __pfx___filemap_fdatawait_range+0x10/0x10
[ 163.373860][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 163.373873][ T5914] ? rcu_is_watching+0x15/0xb0
[ 163.373882][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 163.373896][ T5914] ? rcu_is_watching+0x15/0xb0
[ 163.373905][ T5914] ? __pfx_xfs_fs_evict_inode+0x10/0x10
[ 163.373917][ T5914] xfs_fs_evict_inode+0x67/0x90
[ 163.373929][ T5914] evict+0x501/0x9c0
[ 163.373942][ T5914] ? __pfx_evict+0x10/0x10
[ 163.373951][ T5914] ? rcu_is_watching+0x15/0xb0
[ 163.373961][ T5914] ? do_raw_spin_unlock+0x4d/0x240
[ 163.373972][ T5914] evict_inodes+0x64c/0x6d0
[ 163.373983][ T5914] ? __pfx_evict_inodes+0x10/0x10
[ 163.373996][ T5914] ? xfs_fs_sync_fs+0x1cf/0x380
[ 163.374009][ T5914] generic_shutdown_super+0x9a/0x2c0
[ 163.374019][ T5914] kill_block_super+0x44/0x90
[ 163.374039][ T5914] xfs_kill_sb+0x15/0x50
[ 163.374049][ T5914] deactivate_locked_super+0xbc/0x130
[ 163.374064][ T5914] cleanup_mnt+0x425/0x4c0
[ 163.374079][ T5914] task_work_run+0x1d1/0x260
[ 163.374092][ T5914] ? __pfx_task_work_run+0x10/0x10
[ 163.374104][ T5914] ? __x64_sys_umount+0x122/0x160
[ 163.374114][ T5914] ? __pfx___x64_sys_umount+0x10/0x10
[ 163.374123][ T5914] ? rcu_is_watching+0x15/0xb0