[ 406.183705][T10188] bridge_slave_1: left allmulticast mode
[ 406.189381][T10188] bridge_slave_1: left promiscuous mode
[ 406.195051][T10188] bridge0: port 2(bridge_slave_1) entered disabled state
[ 406.203526][T10188] bridge_slave_0: left allmulticast mode
[ 406.209179][T10188] bridge_slave_0: left promiscuous mode
[ 406.214870][T10188] bridge0: port 1(bridge_slave_0) entered disabled state
[ 406.303087][T10188] veth1_macvtap: left promiscuous mode
[ 406.308617][T10188] veth0_vlan: left promiscuous mode
Warning: Permanently added '10.128.1.26' (ED25519) to the list of known hosts.
executing program
executing program
[ 408.690849][ T36] audit: type=1400 audit(1758259028.690:114): avc: denied { mounton } for pid=23256 comm="syz-executor251" path="/root/file0" dev="sda1" ino=2028 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=file permissive=1
[ 408.714962][ T36] audit: type=1400 audit(1758259028.720:115): avc: denied { read } for pid=23257 comm="syz-executor251" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
executing program
executing program
executing program
[ 408.736102][ T36] audit: type=1400 audit(1758259028.720:116): avc: denied { mounton } for pid=23257 comm="syz-executor251" path="/root/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 408.760914][T23260] BUG: Bad page state in process syz-executor251 pfn:11132b
[ 408.768398][T23260] page: refcount:0 mapcount:0 mapping:ffff88813605b008 index:0x0 pfn:0x11132b
[ 408.777313][T23260] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 408.778532][ T36] audit: type=1400 audit(1758259028.780:117): avc: denied { read } for pid=92 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 408.784066][T23260] flags: 0x4000000000000001(locked|zone=1)
[ 408.806076][ T36] audit: type=1400 audit(1758259028.780:118): avc: denied { search } for pid=92 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 408.811934][T23260] raw: 4000000000000001 dead000000000100 dead000000000122 ffff88813605b008
[ 408.833168][ T36] audit: type=1400 audit(1758259028.780:119): avc: denied { write } for pid=92 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 408.841890][T23260] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 408.863081][ T36] audit: type=1400 audit(1758259028.780:120): avc: denied { add_name } for pid=92 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 408.871722][T23260] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 408.892289][ T36] audit: type=1400 audit(1758259028.780:121): avc: denied { create } for pid=92 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 408.899817][T23260] page_owner tracks the page as allocated
[ 408.920173][ T36] audit: type=1400 audit(1758259028.780:122): avc: denied { append open } for pid=92 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 408.926070][T23260] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23260, tgid 23260 (syz-executor251), ts 408760666439, free_ts 408753507377
[ 408.948973][ T36] audit: type=1400 audit(1758259028.810:123): avc: denied { getattr } for pid=92 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 408.968486][T23260] post_alloc_hook+0x3b9/0x3f0
[ 408.995563][T23260] prep_new_page+0x1c/0x120
[ 409.000076][T23260] get_page_from_freelist+0x48ce/0x4960
[ 409.005748][T23260] __alloc_pages_noprof+0x31f/0x7b0
[ 409.011093][T23260] __folio_alloc_noprof+0x14/0x80
[ 409.016158][T23260] __filemap_get_folio+0x54c/0x9d0
[ 409.021304][T23260] netfs_perform_write+0x4b2/0x1f70
[ 409.026558][T23260] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 409.032749][T23260] netfs_file_write_iter+0x189/0x440
[ 409.038065][T23260] v9fs_file_write_iter+0xac/0xe0
[ 409.043133][T23260] do_iter_readv_writev+0x4f2/0x6a0
[ 409.048356][T23260] vfs_writev+0x485/0xcf0
[ 409.052747][T23260] __se_sys_pwritev2+0x1ad/0x2b0
[ 409.057700][T23260] __x64_sys_pwritev2+0xc3/0xf0
[ 409.062578][T23260] x64_sys_call+0x2938/0x2ee0
[ 409.067280][T23260] do_syscall_64+0x58/0xf0
[ 409.071732][T23260] page last free pid 23259 tgid 23259 stack trace:
[ 409.078285][T23260] free_unref_folios+0xcfe/0x1680
[ 409.083359][T23260] folios_put_refs+0x4c9/0x5c0
[ 409.088152][T23260] free_pages_and_swap_cache+0x3f7/0x460
[ 409.093916][T23260] tlb_flush_mmu+0x7ce/0xaf0
[ 409.098542][T23260] tlb_finish_mmu+0xcf/0x1d0
[ 409.103257][T23260] exit_mmap+0x405/0xb60
[ 409.107572][T23260] __mmput+0x93/0x320
[ 409.111633][T23260] mmput+0x55/0x170
[ 409.115462][T23260] do_exit+0x918/0x2630
[ 409.119623][T23260] do_group_exit+0x22a/0x300
[ 409.124263][T23260] __x64_sys_exit_group+0x43/0x50
[ 409.129321][T23260] x64_sys_call+0x2ed2/0x2ee0
[ 409.134058][T23260] do_syscall_64+0x58/0xf0
[ 409.138502][T23260] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 409.144469][T23260] Modules linked in:
[ 409.148417][T23260] CPU: 0 UID: 0 PID: 23260 Comm: syz-executor251 Not tainted syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 409.148444][T23260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 409.148460][T23260] Call Trace:
[ 409.148466][T23260]
[ 409.148473][T23260] __dump_stack+0x21/0x30
[ 409.148499][T23260] dump_stack_lvl+0x10c/0x190
[ 409.148521][T23260] ? __cfi_dump_stack_lvl+0x10/0x10
[ 409.148544][T23260] ? uncharge_batch+0x224/0x3f0
[ 409.148560][T23260] dump_stack+0x19/0x20
[ 409.148580][T23260] bad_page+0x169/0x1c0
[ 409.148595][T23260] free_page_is_bad_report+0x123/0x1d0
[ 409.148610][T23260] free_unref_page+0xe88/0xee0
[ 409.148631][T23260] ? __cfi_free_unref_page+0x10/0x10
[ 409.148652][T23260] ? trace_raw_output_emulate_vsyscall+0x70/0xe0
[ 409.148671][T23260] __folio_put+0x24f/0x2a0
[ 409.148690][T23260] ? __cfi___folio_put+0x10/0x10
[ 409.148709][T23260] ? __kasan_check_read+0x15/0x20
[ 409.148734][T23260] netfs_perform_write+0x1aae/0x1f70
[ 409.148764][T23260] ? __cfi_netfs_perform_write+0x10/0x10
[ 409.148794][T23260] ? __cfi_downgrade_write+0x10/0x10
[ 409.148816][T23260] ? down_write_killable+0xe9/0x2d0
[ 409.148840][T23260] ? file_update_time+0xa3/0x220
[ 409.148863][T23260] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 409.148879][T23260] ? netfs_file_write_iter+0x173/0x440
[ 409.148894][T23260] netfs_file_write_iter+0x189/0x440
[ 409.148910][T23260] v9fs_file_write_iter+0xac/0xe0
[ 409.148933][T23260] vfs_write+0x697/0xe80
[ 409.148949][T23260] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 409.148971][T23260] ? __cfi_vfs_write+0x10/0x10
[ 409.148986][T23260] ? kmem_cache_free+0x1c1/0x510
[ 409.149003][T23260] ? __kasan_check_read+0x15/0x20
[ 409.149027][T23260] ksys_write+0x141/0x250
[ 409.149043][T23260] ? __cfi_ksys_write+0x10/0x10
[ 409.149059][T23260] ? __kasan_check_read+0x15/0x20
[ 409.149083][T23260] __x64_sys_write+0x7f/0x90
[ 409.149098][T23260] x64_sys_call+0x271c/0x2ee0
[ 409.149122][T23260] do_syscall_64+0x58/0xf0
[ 409.149139][T23260] ? clear_bhb_loop+0x50/0xa0
[ 409.149162][T23260] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 409.149185][T23260] RIP: 0033:0x7f49ca52bf79
[ 409.149206][T23260] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 409.149219][T23260] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 409.149237][T23260] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
executing program
[ 409.149249][T23260] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
[ 409.149260][T23260] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[ 409.149270][T23260] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 409.149281][T23260] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 409.149294][T23260]
[ 409.149300][T23260] Disabling lock debugging due to kernel taint
[ 409.440125][T23261] BUG: Bad page state in process syz-executor251 pfn:127442
[ 409.447697][T23261] page: refcount:0 mapcount:0 mapping:ffff88813605a848 index:0x0 pfn:0x127442
[ 409.456611][T23261] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 409.463358][T23261] flags: 0x4000000000000001(locked|zone=1)
[ 409.469192][T23261] raw: 4000000000000001 dead000000000100 dead000000000122 ffff88813605a848
[ 409.477989][T23261] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 409.486605][T23261] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 409.493913][T23261] page_owner tracks the page as allocated
[ 409.499681][T23261] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23261, tgid 23261 (syz-executor251), ts 409439837639, free_ts 408680269252
[ 409.519082][T23261] post_alloc_hook+0x3b9/0x3f0
[ 409.523890][T23261] prep_new_page+0x1c/0x120
[ 409.528400][T23261] get_page_from_freelist+0x48ce/0x4960
[ 409.533979][T23261] __alloc_pages_noprof+0x31f/0x7b0
[ 409.539208][T23261] __folio_alloc_noprof+0x14/0x80
[ 409.544271][T23261] __filemap_get_folio+0x54c/0x9d0
[ 409.549405][T23261] netfs_perform_write+0x4b2/0x1f70
[ 409.554662][T23261] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 409.560848][T23261] netfs_file_write_iter+0x189/0x440
[ 409.566137][T23261] v9fs_file_write_iter+0xac/0xe0
[ 409.571245][T23261] do_iter_readv_writev+0x4f2/0x6a0
[ 409.576469][T23261] vfs_writev+0x485/0xcf0
[ 409.580855][T23261] __se_sys_pwritev2+0x1ad/0x2b0
[ 409.585822][T23261] __x64_sys_pwritev2+0xc3/0xf0
[ 409.590718][T23261] x64_sys_call+0x2938/0x2ee0
[ 409.595429][T23261] do_syscall_64+0x58/0xf0
[ 409.599850][T23261] page last free pid 23255 tgid 23255 stack trace:
[ 409.606391][T23261] free_unref_folios+0xcfe/0x1680
[ 409.611478][T23261] folios_put_refs+0x4c9/0x5c0
[ 409.616252][T23261] free_pages_and_swap_cache+0x272/0x460
[ 409.621914][T23261] tlb_flush_mmu+0x7ce/0xaf0
[ 409.626527][T23261] tlb_finish_mmu+0xcf/0x1d0
[ 409.631156][T23261] exit_mmap+0x405/0xb60
[ 409.635421][T23261] __mmput+0x93/0x320
[ 409.639404][T23261] mmput+0x55/0x170
[ 409.643271][T23261] exec_mmap+0x37c/0x420
[ 409.647541][T23261] begin_new_exec+0x11f0/0x1ee0
[ 409.652515][T23261] load_elf_binary+0x806/0x2b40
[ 409.657391][T23261] bprm_execve+0x6e9/0x1380
[ 409.661925][T23261] do_execveat_common+0x929/0xa80
[ 409.673429][T23261] __x64_sys_execve+0x96/0xb0
[ 409.678130][T23261] x64_sys_call+0x12c4/0x2ee0
[ 409.682846][T23261] do_syscall_64+0x58/0xf0
[ 409.687285][T23261] Modules linked in:
[ 409.691367][T23261] CPU: 1 UID: 0 PID: 23261 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 409.691402][T23261] Tainted: [B]=BAD_PAGE
[ 409.691408][T23261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 409.691418][T23261] Call Trace:
[ 409.691423][T23261]
[ 409.691429][T23261] __dump_stack+0x21/0x30
[ 409.691464][T23261] dump_stack_lvl+0x10c/0x190
[ 409.691486][T23261] ? __cfi_dump_stack_lvl+0x10/0x10
[ 409.691509][T23261] ? uncharge_batch+0x224/0x3f0
[ 409.691525][T23261] dump_stack+0x19/0x20
[ 409.691546][T23261] bad_page+0x169/0x1c0
[ 409.691560][T23261] free_page_is_bad_report+0x123/0x1d0
[ 409.691576][T23261] free_unref_page+0xe88/0xee0
[ 409.691597][T23261] ? __cfi_free_unref_page+0x10/0x10
[ 409.691617][T23261] ? folios_put_refs+0x580/0x5c0
[ 409.691640][T23261] __folio_put+0x24f/0x2a0
[ 409.691659][T23261] ? __cfi___folio_put+0x10/0x10
[ 409.691678][T23261] ? __kasan_check_read+0x15/0x20
[ 409.691702][T23261] netfs_perform_write+0x1aae/0x1f70
[ 409.691733][T23261] ? __cfi_netfs_perform_write+0x10/0x10
[ 409.691763][T23261] ? __cfi_downgrade_write+0x10/0x10
[ 409.691785][T23261] ? down_write_killable+0xe9/0x2d0
[ 409.691810][T23261] ? file_update_time+0xa3/0x220
[ 409.691833][T23261] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 409.691849][T23261] ? netfs_file_write_iter+0x173/0x440
[ 409.691864][T23261] netfs_file_write_iter+0x189/0x440
[ 409.691880][T23261] v9fs_file_write_iter+0xac/0xe0
[ 409.691902][T23261] vfs_write+0x697/0xe80
[ 409.691918][T23261] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 409.691941][T23261] ? __cfi_vfs_write+0x10/0x10
[ 409.691956][T23261] ? kmem_cache_free+0x1c1/0x510
[ 409.691973][T23261] ? __kasan_check_read+0x15/0x20
[ 409.691997][T23261] ksys_write+0x141/0x250
[ 409.692012][T23261] ? __cfi_ksys_write+0x10/0x10
[ 409.692028][T23261] ? __kasan_check_read+0x15/0x20
[ 409.692052][T23261] __x64_sys_write+0x7f/0x90
[ 409.692068][T23261] x64_sys_call+0x271c/0x2ee0
[ 409.692092][T23261] do_syscall_64+0x58/0xf0
[ 409.692109][T23261] ? clear_bhb_loop+0x50/0xa0
[ 409.692133][T23261] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 409.692156][T23261] RIP: 0033:0x7f49ca52bf79
[ 409.692170][T23261] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 409.692183][T23261] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 409.692202][T23261] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
executing program
executing program
executing program
executing program
executing program
[ 409.692215][T23261] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
[ 409.692226][T23261] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[ 409.692236][T23261] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 409.692246][T23261] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 409.692259][T23261]
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 410.166717][T23277] BUG: Bad page state in process syz-executor251 pfn:1267dc
[ 410.174392][T23277] page: refcount:0 mapcount:0 mapping:ffff88813605a088 index:0x0 pfn:0x1267dc
[ 410.183335][T23277] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 410.190176][T23277] flags: 0x4000000000000001(locked|zone=1)
[ 410.196048][T23277] raw: 4000000000000001 dead000000000100 dead000000000122 ffff88813605a088
[ 410.204729][T23277] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 410.213455][T23277] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 410.220850][T23277] page_owner tracks the page as allocated
[ 410.226562][T23277] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23277, tgid 23277 (syz-executor251), ts 410166496452, free_ts 410135247745
[ 410.246023][T23277] post_alloc_hook+0x3b9/0x3f0
[ 410.250909][T23277] prep_new_page+0x1c/0x120
[ 410.255429][T23277] get_page_from_freelist+0x48ce/0x4960
[ 410.261047][T23277] __alloc_pages_noprof+0x31f/0x7b0
[ 410.266383][T23277] __folio_alloc_noprof+0x14/0x80
[ 410.271483][T23277] __filemap_get_folio+0x54c/0x9d0
[ 410.276627][T23277] netfs_perform_write+0x4b2/0x1f70
[ 410.281889][T23277] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 410.288167][T23277] netfs_file_write_iter+0x189/0x440
[ 410.293502][T23277] v9fs_file_write_iter+0xac/0xe0
[ 410.298575][T23277] do_iter_readv_writev+0x4f2/0x6a0
[ 410.303830][T23277] vfs_writev+0x485/0xcf0
[ 410.308187][T23277] __se_sys_pwritev2+0x1ad/0x2b0
[ 410.313180][T23277] __x64_sys_pwritev2+0xc3/0xf0
[ 410.318054][T23277] x64_sys_call+0x2938/0x2ee0
[ 410.322798][T23277] do_syscall_64+0x58/0xf0
[ 410.327240][T23277] page last free pid 23274 tgid 23274 stack trace:
[ 410.333805][T23277] free_unref_folios+0xcfe/0x1680
[ 410.338900][T23277] folios_put_refs+0x4c9/0x5c0
[ 410.343703][T23277] free_pages_and_swap_cache+0x3f7/0x460
[ 410.349357][T23277] tlb_flush_mmu+0x7ce/0xaf0
[ 410.354010][T23277] tlb_finish_mmu+0xcf/0x1d0
[ 410.358638][T23277] exit_mmap+0x405/0xb60
[ 410.362938][T23277] __mmput+0x93/0x320
executing program
[ 410.366946][T23277] mmput+0x55/0x170
[ 410.370819][T23277] do_exit+0x918/0x2630
[ 410.375005][T23277] do_group_exit+0x22a/0x300
[ 410.379605][T23277] __x64_sys_exit_group+0x43/0x50
[ 410.384767][T23277] x64_sys_call+0x2ed2/0x2ee0
[ 410.389481][T23277] do_syscall_64+0x58/0xf0
[ 410.393947][T23277] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 410.399917][T23277] Modules linked in:
[ 410.403853][T23277] CPU: 0 UID: 0 PID: 23277 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 410.403889][T23277] Tainted: [B]=BAD_PAGE
[ 410.403896][T23277] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 410.403908][T23277] Call Trace:
[ 410.403915][T23277]
[ 410.403923][T23277] __dump_stack+0x21/0x30
[ 410.403959][T23277] dump_stack_lvl+0x10c/0x190
[ 410.403991][T23277] ? __cfi_dump_stack_lvl+0x10/0x10
[ 410.404024][T23277] ? uncharge_batch+0x224/0x3f0
[ 410.404046][T23277] dump_stack+0x19/0x20
[ 410.404084][T23277] bad_page+0x169/0x1c0
[ 410.404105][T23277] free_page_is_bad_report+0x123/0x1d0
[ 410.404128][T23277] free_unref_page+0xe88/0xee0
[ 410.404159][T23277] ? __cfi_free_unref_page+0x10/0x10
[ 410.404189][T23277] ? folios_put_refs+0x580/0x5c0
[ 410.404223][T23277] __folio_put+0x24f/0x2a0
[ 410.404250][T23277] ? __cfi___folio_put+0x10/0x10
[ 410.404277][T23277] ? __kasan_check_read+0x15/0x20
[ 410.404310][T23277] netfs_perform_write+0x1aae/0x1f70
[ 410.404351][T23277] ? __cfi_netfs_perform_write+0x10/0x10
[ 410.404394][T23277] ? __cfi_downgrade_write+0x10/0x10
[ 410.404425][T23277] ? down_write_killable+0xe9/0x2d0
[ 410.404461][T23277] ? file_update_time+0xa3/0x220
[ 410.404493][T23277] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 410.404517][T23277] ? netfs_file_write_iter+0x173/0x440
[ 410.404539][T23277] netfs_file_write_iter+0x189/0x440
[ 410.404562][T23277] v9fs_file_write_iter+0xac/0xe0
[ 410.404594][T23277] vfs_write+0x697/0xe80
[ 410.404618][T23277] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 410.404650][T23277] ? __cfi_vfs_write+0x10/0x10
[ 410.404673][T23277] ? kmem_cache_free+0x1c1/0x510
[ 410.404698][T23277] ? __kasan_check_read+0x15/0x20
[ 410.404734][T23277] ksys_write+0x141/0x250
[ 410.404757][T23277] ? __cfi_ksys_write+0x10/0x10
[ 410.404782][T23277] ? __kasan_check_read+0x15/0x20
[ 410.404824][T23277] __x64_sys_write+0x7f/0x90
[ 410.404848][T23277] x64_sys_call+0x271c/0x2ee0
[ 410.404880][T23277] do_syscall_64+0x58/0xf0
[ 410.404904][T23277] ? clear_bhb_loop+0x50/0xa0
[ 410.404950][T23277] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 410.404983][T23277] RIP: 0033:0x7f49ca52bf79
[ 410.405003][T23277] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 410.405023][T23277] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 410.405047][T23277] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 410.405087][T23277] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
executing program
executing program
executing program
[ 410.405104][T23277] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[ 410.405119][T23277] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 410.405134][T23277] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 410.405153][T23277]
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 410.916437][T10188] BUG: Bad page state in process kworker/u8:6 pfn:127a08
[ 410.923670][T10188] page: refcount:0 mapcount:0 mapping:ffff88812ac0e088 index:0x0 pfn:0x127a08
[ 410.932719][T10188] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 410.939448][T10188] flags: 0x4000000000000001(locked|zone=1)
[ 410.945509][T10188] raw: 4000000000000001 dead000000000100 dead000000000122 ffff88812ac0e088
[ 410.954154][T10188] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
executing program
executing program
executing program
[ 410.962826][T10188] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 410.970143][T10188] page_owner tracks the page as allocated
[ 410.976081][T10188] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23299, tgid 23299 (syz-executor251), ts 410916064520, free_ts 410885199424
[ 410.995773][T10188] post_alloc_hook+0x3b9/0x3f0
[ 411.000720][T10188] prep_new_page+0x1c/0x120
[ 411.005341][T10188] get_page_from_freelist+0x48ce/0x4960
[ 411.010948][T10188] __alloc_pages_noprof+0x31f/0x7b0
executing program
executing program
executing program
executing program
executing program
[ 411.016235][T10188] __folio_alloc_noprof+0x14/0x80
[ 411.021347][T10188] __filemap_get_folio+0x54c/0x9d0
[ 411.026494][T10188] netfs_perform_write+0x4b2/0x1f70
[ 411.031797][T10188] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 411.037983][T10188] netfs_file_write_iter+0x189/0x440
[ 411.043355][T10188] v9fs_file_write_iter+0xac/0xe0
[ 411.048515][T10188] do_iter_readv_writev+0x4f2/0x6a0
[ 411.053897][T10188] vfs_writev+0x485/0xcf0
[ 411.058283][T10188] __se_sys_pwritev2+0x1ad/0x2b0
executing program
executing program
executing program
executing program
[ 411.063453][T10188] __x64_sys_pwritev2+0xc3/0xf0
[ 411.068354][T10188] x64_sys_call+0x2938/0x2ee0
[ 411.073267][T10188] do_syscall_64+0x58/0xf0
[ 411.077793][T10188] page last free pid 23296 tgid 23296 stack trace:
[ 411.084588][T10188] free_unref_folios+0xcfe/0x1680
[ 411.089667][T10188] folios_put_refs+0x4c9/0x5c0
[ 411.094618][T10188] free_pages_and_swap_cache+0x3f7/0x460
[ 411.100295][T10188] tlb_flush_mmu+0x7ce/0xaf0
[ 411.105111][T10188] tlb_finish_mmu+0xcf/0x1d0
[ 411.109942][T10188] exit_mmap+0x405/0xb60
executing program
executing program
executing program
executing program
executing program
[ 411.114425][T10188] __mmput+0x93/0x320
[ 411.118443][T10188] mmput+0x55/0x170
[ 411.122425][T10188] do_exit+0x918/0x2630
[ 411.126631][T10188] do_group_exit+0x22a/0x300
[ 411.131406][T10188] __x64_sys_exit_group+0x43/0x50
[ 411.136464][T10188] x64_sys_call+0x2ed2/0x2ee0
[ 411.141250][T10188] do_syscall_64+0x58/0xf0
[ 411.145804][T10188] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 411.151954][T10188] Modules linked in:
executing program
executing program
executing program
executing program
executing program
[ 411.155882][T10188] CPU: 1 UID: 0 PID: 10188 Comm: kworker/u8:6 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 411.155918][T10188] Tainted: [B]=BAD_PAGE
[ 411.155926][T10188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 411.155941][T10188] Workqueue: events_unbound netfs_write_collection_worker
[ 411.155973][T10188] Call Trace:
[ 411.155981][T10188]
[ 411.155990][T10188] __dump_stack+0x21/0x30
[ 411.156023][T10188] dump_stack_lvl+0x10c/0x190
[ 411.156053][T10188] ? __cfi_dump_stack_lvl+0x10/0x10
executing program
executing program
executing program
executing program
[ 411.156085][T10188] ? uncharge_batch+0x224/0x3f0
[ 411.156107][T10188] dump_stack+0x19/0x20
[ 411.156137][T10188] bad_page+0x169/0x1c0
[ 411.156158][T10188] free_page_is_bad_report+0x123/0x1d0
[ 411.156180][T10188] free_unref_page+0xe88/0xee0
[ 411.156211][T10188] ? __cfi_free_unref_page+0x10/0x10
[ 411.156241][T10188] ? folios_put_refs+0x580/0x5c0
[ 411.156280][T10188] ? preempt_schedule_common+0x2d/0x60
[ 411.156310][T10188] __folio_put+0x24f/0x2a0
[ 411.156337][T10188] ? __cfi___folio_put+0x10/0x10
executing program
executing program
executing program
executing program
executing program
[ 411.156365][T10188] folio_end_writeback+0x27c/0x300
[ 411.156393][T10188] ? __cfi_folio_end_writeback+0x10/0x10
[ 411.156422][T10188] ? netfs_folio_written_back+0x38a/0x670
[ 411.156446][T10188] ? __kasan_check_write+0x18/0x20
[ 411.156480][T10188] netfs_folio_written_back+0x3a5/0x670
[ 411.156507][T10188] netfs_write_collection_worker+0x1616/0x4a40
[ 411.156541][T10188] ? __cfi_netfs_write_collection_worker+0x10/0x10
[ 411.156566][T10188] ? __switch_to_asm+0x3d/0x70
[ 411.156599][T10188] ? __schedule+0x132a/0x1df0
[ 411.156627][T10188] ? kick_pool+0xb9/0x550
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 411.156652][T10188] process_scheduled_works+0x7d5/0x1020
[ 411.156691][T10188] worker_thread+0xc58/0x1250
[ 411.156714][T10188] kthread+0x2c7/0x370
[ 411.156738][T10188] ? __cfi_worker_thread+0x10/0x10
[ 411.156759][T10188] ? __cfi_kthread+0x10/0x10
[ 411.156783][T10188] ret_from_fork+0x67/0xa0
[ 411.156815][T10188] ? __cfi_kthread+0x10/0x10
[ 411.156839][T10188] ret_from_fork_asm+0x1a/0x30
[ 411.156876][T10188]
executing program
executing program
[ 411.421396][T23344] BUG: Bad page state in process syz-executor251 pfn:113b7f
[ 411.428959][T23344] page: refcount:0 mapcount:0 mapping:ffff888136060948 index:0x0 pfn:0x113b7f
[ 411.437961][T23344] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 411.444725][T23344] flags: 0x4000000000000001(locked|zone=1)
[ 411.450585][T23344] raw: 4000000000000001 dead000000000100 dead000000000122 ffff888136060948
[ 411.459180][T23344] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 411.467832][T23344] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 411.475142][T23344] page_owner tracks the page as allocated
[ 411.481045][T23344] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23344, tgid 23344 (syz-executor251), ts 411421174461, free_ts 411400748447
[ 411.500447][T23344] post_alloc_hook+0x3b9/0x3f0
[ 411.505267][T23344] prep_new_page+0x1c/0x120
[ 411.509772][T23344] get_page_from_freelist+0x48ce/0x4960
[ 411.515361][T23344] __alloc_pages_noprof+0x31f/0x7b0
[ 411.520625][T23344] __folio_alloc_noprof+0x14/0x80
[ 411.525655][T23344] __filemap_get_folio+0x54c/0x9d0
[ 411.530839][T23344] netfs_perform_write+0x4b2/0x1f70
[ 411.536075][T23344] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 411.542258][T23344] netfs_file_write_iter+0x189/0x440
[ 411.547731][T23344] v9fs_file_write_iter+0xac/0xe0
[ 411.552784][T23344] do_iter_readv_writev+0x4f2/0x6a0
[ 411.558003][T23344] vfs_writev+0x485/0xcf0
[ 411.562423][T23344] __se_sys_pwritev2+0x1ad/0x2b0
[ 411.567380][T23344] __x64_sys_pwritev2+0xc3/0xf0
[ 411.572269][T23344] x64_sys_call+0x2938/0x2ee0
[ 411.576975][T23344] do_syscall_64+0x58/0xf0
[ 411.581446][T23344] page last free pid 23342 tgid 23342 stack trace:
[ 411.587958][T23344] free_unref_folios+0xcfe/0x1680
[ 411.593078][T23344] folios_put_refs+0x4c9/0x5c0
[ 411.597868][T23344] free_pages_and_swap_cache+0x3f7/0x460
[ 411.603535][T23344] tlb_flush_mmu+0x7ce/0xaf0
[ 411.608148][T23344] tlb_finish_mmu+0xcf/0x1d0
[ 411.612764][T23344] exit_mmap+0x405/0xb60
[ 411.617052][T23344] __mmput+0x93/0x320
[ 411.621120][T23344] mmput+0x55/0x170
[ 411.624949][T23344] do_exit+0x918/0x2630
[ 411.629129][T23344] do_group_exit+0x22a/0x300
[ 411.633785][T23344] __x64_sys_exit_group+0x43/0x50
[ 411.638832][T23344] x64_sys_call+0x2ed2/0x2ee0
[ 411.643542][T23344] do_syscall_64+0x58/0xf0
[ 411.647973][T23344] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 411.653937][T23344] Modules linked in:
[ 411.657848][T23344] CPU: 0 UID: 0 PID: 23344 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 411.657875][T23344] Tainted: [B]=BAD_PAGE
[ 411.657880][T23344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 411.657890][T23344] Call Trace:
[ 411.657896][T23344]
[ 411.657902][T23344] __dump_stack+0x21/0x30
[ 411.657928][T23344] dump_stack_lvl+0x10c/0x190
[ 411.657949][T23344] ? __cfi_dump_stack_lvl+0x10/0x10
[ 411.657972][T23344] ? uncharge_batch+0x224/0x3f0
[ 411.657988][T23344] dump_stack+0x19/0x20
[ 411.658013][T23344] bad_page+0x169/0x1c0
[ 411.658027][T23344] free_page_is_bad_report+0x123/0x1d0
[ 411.658043][T23344] free_unref_page+0xe88/0xee0
[ 411.658064][T23344] ? __cfi_free_unref_page+0x10/0x10
[ 411.658085][T23344] ? folios_put_refs+0x580/0x5c0
[ 411.658108][T23344] __folio_put+0x24f/0x2a0
[ 411.658127][T23344] ? __cfi___folio_put+0x10/0x10
[ 411.658146][T23344] ? __kasan_check_read+0x15/0x20
[ 411.658170][T23344] netfs_perform_write+0x1aae/0x1f70
[ 411.658201][T23344] ? __cfi_netfs_perform_write+0x10/0x10
[ 411.658232][T23344] ? __cfi_downgrade_write+0x10/0x10
[ 411.658253][T23344] ? down_write_killable+0xe9/0x2d0
[ 411.658278][T23344] ? file_update_time+0xa3/0x220
[ 411.658302][T23344] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 411.658324][T23344] ? netfs_file_write_iter+0x173/0x440
[ 411.658339][T23344] netfs_file_write_iter+0x189/0x440
[ 411.658355][T23344] v9fs_file_write_iter+0xac/0xe0
[ 411.658377][T23344] vfs_write+0x697/0xe80
[ 411.658393][T23344] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 411.658416][T23344] ? __cfi_vfs_write+0x10/0x10
[ 411.658432][T23344] ? kmem_cache_free+0x1c1/0x510
[ 411.658449][T23344] ? __kasan_check_read+0x15/0x20
[ 411.658473][T23344] ksys_write+0x141/0x250
[ 411.658489][T23344] ? __cfi_ksys_write+0x10/0x10
[ 411.658506][T23344] ? __kasan_check_read+0x15/0x20
[ 411.658530][T23344] __x64_sys_write+0x7f/0x90
[ 411.658546][T23344] x64_sys_call+0x271c/0x2ee0
[ 411.658571][T23344] do_syscall_64+0x58/0xf0
[ 411.658587][T23344] ? clear_bhb_loop+0x50/0xa0
[ 411.658611][T23344] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 411.658634][T23344] RIP: 0033:0x7f49ca52bf79
[ 411.658648][T23344] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 411.658662][T23344] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 411.658680][T23344] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 411.658693][T23344] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
executing program
executing program
executing program
executing program
[ 411.658704][T23344] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[ 411.658715][T23344] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 411.658726][T23344] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 411.658739][T23344]
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 412.064104][T10188] BUG: Bad page state in process kworker/u8:6 pfn:118356
[ 412.071327][T10188] page: refcount:0 mapcount:0 mapping:ffff88812ac0cd28 index:0x0 pfn:0x118356
[ 412.080214][T10188] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 412.087202][T10188] flags: 0x4000000000000001(locked|zone=1)
[ 412.093082][T10188] raw: 4000000000000001 dead000000000100 dead000000000122 ffff88812ac0cd28
[ 412.101854][T10188] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
executing program
executing program
executing program
executing program
executing program
[ 412.110493][T10188] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 412.117798][T10188] page_owner tracks the page as allocated
[ 412.123707][T10188] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23353, tgid 23353 (syz-executor251), ts 412063803440, free_ts 412053787478
[ 412.143314][T10188] post_alloc_hook+0x3b9/0x3f0
[ 412.148133][T10188] prep_new_page+0x1c/0x120
[ 412.152901][T10188] get_page_from_freelist+0x48ce/0x4960
[ 412.158523][T10188] __alloc_pages_noprof+0x31f/0x7b0
executing program
executing program
executing program
executing program
executing program
[ 412.163927][T10188] __folio_alloc_noprof+0x14/0x80
[ 412.169042][T10188] __filemap_get_folio+0x54c/0x9d0
[ 412.174359][T10188] netfs_perform_write+0x4b2/0x1f70
[ 412.179695][T10188] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 412.186058][T10188] netfs_file_write_iter+0x189/0x440
[ 412.191407][T10188] v9fs_file_write_iter+0xac/0xe0
[ 412.196558][T10188] do_iter_readv_writev+0x4f2/0x6a0
[ 412.202034][T10188] vfs_writev+0x485/0xcf0
[ 412.206399][T10188] __se_sys_pwritev2+0x1ad/0x2b0
executing program
executing program
executing program
executing program
[ 412.211386][T10188] __x64_sys_pwritev2+0xc3/0xf0
[ 412.216463][T10188] x64_sys_call+0x2938/0x2ee0
[ 412.221287][T10188] do_syscall_64+0x58/0xf0
[ 412.227005][T10188] page last free pid 23352 tgid 23352 stack trace:
[ 412.233553][T10188] free_unref_folios+0xcfe/0x1680
[ 412.238606][T10188] folios_put_refs+0x4c9/0x5c0
[ 412.243428][T10188] free_pages_and_swap_cache+0x3f7/0x460
[ 412.249092][T10188] tlb_flush_mmu+0x7ce/0xaf0
[ 412.253741][T10188] tlb_finish_mmu+0xcf/0x1d0
[ 412.258376][T10188] exit_mmap+0x405/0xb60
executing program
executing program
executing program
executing program
executing program
[ 412.262702][T10188] __mmput+0x93/0x320
[ 412.266718][T10188] mmput+0x55/0x170
[ 412.270602][T10188] do_exit+0x918/0x2630
[ 412.274788][T10188] do_group_exit+0x22a/0x300
[ 412.279476][T10188] __x64_sys_exit_group+0x43/0x50
[ 412.284580][T10188] x64_sys_call+0x2ed2/0x2ee0
[ 412.289301][T10188] do_syscall_64+0x58/0xf0
[ 412.293779][T10188] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 412.299709][T10188] Modules linked in:
executing program
executing program
executing program
[ 412.303674][T10188] CPU: 1 UID: 0 PID: 10188 Comm: kworker/u8:6 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 412.303724][T10188] Tainted: [B]=BAD_PAGE
[ 412.303732][T10188] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 412.303746][T10188] Workqueue: events_unbound netfs_write_collection_worker
[ 412.303776][T10188] Call Trace:
[ 412.303783][T10188]
[ 412.303792][T10188] __dump_stack+0x21/0x30
[ 412.303823][T10188] dump_stack_lvl+0x10c/0x190
[ 412.303850][T10188] ? __cfi_dump_stack_lvl+0x10/0x10
[ 412.303876][T10188] ? uncharge_batch+0x224/0x3f0
[ 412.303896][T10188] dump_stack+0x19/0x20
[ 412.303930][T10188] bad_page+0x169/0x1c0
[ 412.303947][T10188] free_page_is_bad_report+0x123/0x1d0
[ 412.303966][T10188] free_unref_page+0xe88/0xee0
[ 412.303993][T10188] ? __cfi_free_unref_page+0x10/0x10
[ 412.304019][T10188] ? folios_put_refs+0x580/0x5c0
[ 412.304050][T10188] ? raw_irqentry_exit_cond_resched+0x33/0x40
[ 412.304081][T10188] __folio_put+0x24f/0x2a0
[ 412.304108][T10188] ? __cfi___folio_put+0x10/0x10
[ 412.304138][T10188] folio_end_writeback+0x27c/0x300
[ 412.304168][T10188] ? __cfi_folio_end_writeback+0x10/0x10
[ 412.304198][T10188] ? netfs_folio_written_back+0x38a/0x670
[ 412.304224][T10188] ? __kasan_check_write+0x18/0x20
[ 412.304258][T10188] netfs_folio_written_back+0x3a5/0x670
[ 412.304284][T10188] netfs_write_collection_worker+0x1616/0x4a40
[ 412.304317][T10188] ? __cfi_netfs_write_collection_worker+0x10/0x10
[ 412.304342][T10188] ? __switch_to_asm+0x3d/0x70
[ 412.304376][T10188] ? __schedule+0x132a/0x1df0
[ 412.304423][T10188] ? kick_pool+0xb9/0x550
[ 412.304450][T10188] process_scheduled_works+0x7d5/0x1020
[ 412.304492][T10188] worker_thread+0xc58/0x1250
[ 412.304519][T10188] kthread+0x2c7/0x370
[ 412.304543][T10188] ? __cfi_worker_thread+0x10/0x10
[ 412.304566][T10188] ? __cfi_kthread+0x10/0x10
[ 412.304590][T10188] ret_from_fork+0x67/0xa0
[ 412.304623][T10188] ? __cfi_kthread+0x10/0x10
[ 412.304647][T10188] ret_from_fork_asm+0x1a/0x30
[ 412.304685][T10188]
executing program
executing program
executing program
[ 412.576348][T23382] BUG: Bad page state in process syz-executor251 pfn:128a8b
[ 412.583812][T23382] page: refcount:0 mapcount:0 mapping:ffff8881324a7008 index:0x0 pfn:0x128a8b
[ 412.592746][T23382] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 412.599507][T23382] flags: 0x4000000000000001(locked|zone=1)
[ 412.605395][T23382] raw: 4000000000000001 dead000000000100 dead000000000122 ffff8881324a7008
[ 412.614070][T23382] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 412.622700][T23382] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 412.630008][T23382] page_owner tracks the page as allocated
[ 412.635841][T23382] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23382, tgid 23382 (syz-executor251), ts 412576024742, free_ts 412566178503
[ 412.655275][T23382] post_alloc_hook+0x3b9/0x3f0
[ 412.660079][T23382] prep_new_page+0x1c/0x120
[ 412.664666][T23382] get_page_from_freelist+0x48ce/0x4960
[ 412.670239][T23382] __alloc_pages_noprof+0x31f/0x7b0
[ 412.675491][T23382] __folio_alloc_noprof+0x14/0x80
[ 412.680569][T23382] __filemap_get_folio+0x54c/0x9d0
[ 412.685688][T23382] netfs_perform_write+0x4b2/0x1f70
[ 412.691126][T23382] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 412.697319][T23382] netfs_file_write_iter+0x189/0x440
[ 412.702643][T23382] v9fs_file_write_iter+0xac/0xe0
[ 412.707694][T23382] do_iter_readv_writev+0x4f2/0x6a0
[ 412.712963][T23382] vfs_writev+0x485/0xcf0
[ 412.717319][T23382] __se_sys_pwritev2+0x1ad/0x2b0
[ 412.722303][T23382] __x64_sys_pwritev2+0xc3/0xf0
[ 412.727175][T23382] x64_sys_call+0x2938/0x2ee0
[ 412.731899][T23382] do_syscall_64+0x58/0xf0
[ 412.736346][T23382] page last free pid 23381 tgid 23381 stack trace:
[ 412.742874][T23382] free_unref_folios+0xcfe/0x1680
[ 412.747935][T23382] folios_put_refs+0x4c9/0x5c0
[ 412.752747][T23382] free_pages_and_swap_cache+0x3f7/0x460
[ 412.758400][T23382] tlb_flush_mmu+0x7ce/0xaf0
[ 412.763054][T23382] tlb_finish_mmu+0xcf/0x1d0
[ 412.767668][T23382] exit_mmap+0x405/0xb60
[ 412.771969][T23382] __mmput+0x93/0x320
executing program
[ 412.775974][T23382] mmput+0x55/0x170
[ 412.779783][T23382] do_exit+0x918/0x2630
[ 412.784021][T23382] do_group_exit+0x22a/0x300
[ 412.788643][T23382] __x64_sys_exit_group+0x43/0x50
[ 412.793696][T23382] x64_sys_call+0x2ed2/0x2ee0
[ 412.798396][T23382] do_syscall_64+0x58/0xf0
[ 412.802844][T23382] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 412.808776][T23382] Modules linked in:
[ 412.812699][T23382] CPU: 0 UID: 0 PID: 23382 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 412.812734][T23382] Tainted: [B]=BAD_PAGE
[ 412.812741][T23382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 412.812753][T23382] Call Trace:
[ 412.812760][T23382]
[ 412.812768][T23382] __dump_stack+0x21/0x30
[ 412.812801][T23382] dump_stack_lvl+0x10c/0x190
[ 412.812832][T23382] ? __cfi_dump_stack_lvl+0x10/0x10
[ 412.812864][T23382] ? uncharge_batch+0x224/0x3f0
[ 412.812897][T23382] dump_stack+0x19/0x20
[ 412.812924][T23382] bad_page+0x169/0x1c0
[ 412.812944][T23382] free_page_is_bad_report+0x123/0x1d0
[ 412.812966][T23382] free_unref_page+0xe88/0xee0
[ 412.812996][T23382] ? __cfi_free_unref_page+0x10/0x10
[ 412.813025][T23382] ? folios_put_refs+0x580/0x5c0
[ 412.813077][T23382] __folio_put+0x24f/0x2a0
[ 412.813105][T23382] ? __cfi___folio_put+0x10/0x10
[ 412.813131][T23382] ? __kasan_check_read+0x15/0x20
[ 412.813167][T23382] netfs_perform_write+0x1aae/0x1f70
[ 412.813207][T23382] ? __cfi_netfs_perform_write+0x10/0x10
[ 412.813250][T23382] ? __cfi_downgrade_write+0x10/0x10
[ 412.813281][T23382] ? down_write_killable+0xe9/0x2d0
[ 412.813316][T23382] ? file_update_time+0xa3/0x220
[ 412.813349][T23382] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 412.813372][T23382] ? netfs_file_write_iter+0x173/0x440
[ 412.813395][T23382] netfs_file_write_iter+0x189/0x440
[ 412.813418][T23382] v9fs_file_write_iter+0xac/0xe0
[ 412.813450][T23382] vfs_write+0x697/0xe80
[ 412.813473][T23382] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 412.813518][T23382] ? __cfi_vfs_write+0x10/0x10
[ 412.813541][T23382] ? kmem_cache_free+0x1c1/0x510
[ 412.813564][T23382] ? __kasan_check_read+0x15/0x20
[ 412.813598][T23382] ksys_write+0x141/0x250
[ 412.813621][T23382] ? __cfi_ksys_write+0x10/0x10
[ 412.813645][T23382] ? __kasan_check_read+0x15/0x20
[ 412.813679][T23382] __x64_sys_write+0x7f/0x90
[ 412.813703][T23382] x64_sys_call+0x271c/0x2ee0
[ 412.813737][T23382] do_syscall_64+0x58/0xf0
[ 412.813761][T23382] ? clear_bhb_loop+0x50/0xa0
[ 412.813795][T23382] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 412.813827][T23382] RIP: 0033:0x7f49ca52bf79
[ 412.813845][T23382] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 412.813866][T23382] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 412.813898][T23382] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 412.813916][T23382] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
executing program
executing program
executing program
[ 412.813932][T23382] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[ 412.813947][T23382] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 412.813963][T23382] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 412.813980][T23382]
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 413.222290][T23394] BUG: Bad page state in process syz-executor251 pfn:127455
[ 413.229725][T23394] page: refcount:0 mapcount:0 mapping:ffff88812fb8f7c8 index:0x0 pfn:0x127455
[ 413.238695][T23394] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 413.245427][T23394] flags: 0x4000000000000001(locked|zone=1)
[ 413.251290][T23394] raw: 4000000000000001 dead000000000100 dead000000000122 ffff88812fb8f7c8
[ 413.259888][T23394] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 413.268525][T23394] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 413.275851][T23394] page_owner tracks the page as allocated
[ 413.281605][T23394] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23394, tgid 23394 (syz-executor251), ts 413222054419, free_ts 413201309096
[ 413.301090][T23394] post_alloc_hook+0x3b9/0x3f0
[ 413.305879][T23394] prep_new_page+0x1c/0x120
[ 413.310545][T23394] get_page_from_freelist+0x48ce/0x4960
[ 413.316123][T23394] __alloc_pages_noprof+0x31f/0x7b0
[ 413.321397][T23394] __folio_alloc_noprof+0x14/0x80
[ 413.326476][T23394] __filemap_get_folio+0x54c/0x9d0
[ 413.331661][T23394] netfs_perform_write+0x4b2/0x1f70
[ 413.336906][T23394] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 413.343132][T23394] netfs_file_write_iter+0x189/0x440
[ 413.348530][T23394] v9fs_file_write_iter+0xac/0xe0
[ 413.353616][T23394] do_iter_readv_writev+0x4f2/0x6a0
[ 413.358847][T23394] vfs_writev+0x485/0xcf0
[ 413.363229][T23394] __se_sys_pwritev2+0x1ad/0x2b0
[ 413.368281][T23394] __x64_sys_pwritev2+0xc3/0xf0
[ 413.373306][T23394] x64_sys_call+0x2938/0x2ee0
[ 413.378016][T23394] do_syscall_64+0x58/0xf0
[ 413.382473][T23394] page last free pid 23392 tgid 23392 stack trace:
[ 413.389077][T23394] free_unref_folios+0xcfe/0x1680
[ 413.394161][T23394] folios_put_refs+0x4c9/0x5c0
[ 413.399139][T23394] free_pages_and_swap_cache+0x3f7/0x460
[ 413.404817][T23394] tlb_flush_mmu+0x7ce/0xaf0
[ 413.409432][T23394] tlb_finish_mmu+0xcf/0x1d0
[ 413.414054][T23394] exit_mmap+0x405/0xb60
[ 413.418315][T23394] __mmput+0x93/0x320
[ 413.422347][T23394] mmput+0x55/0x170
[ 413.426173][T23394] do_exit+0x918/0x2630
[ 413.430327][T23394] do_group_exit+0x22a/0x300
[ 413.434968][T23394] __x64_sys_exit_group+0x43/0x50
[ 413.440030][T23394] x64_sys_call+0x2ed2/0x2ee0
[ 413.444752][T23394] do_syscall_64+0x58/0xf0
[ 413.449218][T23394] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 413.455148][T23394] Modules linked in:
[ 413.459057][T23394] CPU: 1 UID: 0 PID: 23394 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 413.459083][T23394] Tainted: [B]=BAD_PAGE
[ 413.459089][T23394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 413.459099][T23394] Call Trace:
[ 413.459104][T23394]
[ 413.459110][T23394] __dump_stack+0x21/0x30
[ 413.459134][T23394] dump_stack_lvl+0x10c/0x190
[ 413.459155][T23394] ? __cfi_dump_stack_lvl+0x10/0x10
[ 413.459177][T23394] ? uncharge_batch+0x224/0x3f0
[ 413.459192][T23394] dump_stack+0x19/0x20
[ 413.459212][T23394] bad_page+0x169/0x1c0
[ 413.459226][T23394] free_page_is_bad_report+0x123/0x1d0
[ 413.459241][T23394] free_unref_page+0xe88/0xee0
[ 413.459262][T23394] ? __cfi_free_unref_page+0x10/0x10
[ 413.459282][T23394] ? folios_put_refs+0x580/0x5c0
[ 413.459304][T23394] __folio_put+0x24f/0x2a0
[ 413.459323][T23394] ? __cfi___folio_put+0x10/0x10
[ 413.459341][T23394] ? __kasan_check_read+0x15/0x20
[ 413.459365][T23394] netfs_perform_write+0x1aae/0x1f70
[ 413.459395][T23394] ? __cfi_netfs_perform_write+0x10/0x10
[ 413.459424][T23394] ? __cfi_downgrade_write+0x10/0x10
[ 413.459445][T23394] ? down_write_killable+0xe9/0x2d0
[ 413.459469][T23394] ? file_update_time+0xa3/0x220
[ 413.459492][T23394] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 413.459507][T23394] ? netfs_file_write_iter+0x173/0x440
[ 413.459523][T23394] netfs_file_write_iter+0x189/0x440
[ 413.459537][T23394] v9fs_file_write_iter+0xac/0xe0
[ 413.459560][T23394] vfs_write+0x697/0xe80
[ 413.459575][T23394] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 413.459597][T23394] ? __cfi_vfs_write+0x10/0x10
[ 413.459612][T23394] ? kmem_cache_free+0x1c1/0x510
[ 413.459629][T23394] ? __kasan_check_read+0x15/0x20
[ 413.459652][T23394] ksys_write+0x141/0x250
[ 413.459667][T23394] ? __cfi_ksys_write+0x10/0x10
[ 413.459683][T23394] ? __kasan_check_read+0x15/0x20
[ 413.459706][T23394] __x64_sys_write+0x7f/0x90
[ 413.459722][T23394] x64_sys_call+0x271c/0x2ee0
[ 413.459745][T23394] do_syscall_64+0x58/0xf0
[ 413.459762][T23394] ? clear_bhb_loop+0x50/0xa0
[ 413.459785][T23394] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 413.459807][T23394] RIP: 0033:0x7f49ca52bf79
[ 413.459820][T23394] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 413.459839][T23394] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 413.459857][T23394] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 413.459869][T23394] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
[ 413.459880][T23394] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
executing program
executing program
executing program
executing program
[ 413.459890][T23394] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 413.459901][T23394] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 413.459913][T23394]
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 414.033812][T23420] BUG: Bad page state in process syz-executor251 pfn:135de4
[ 414.041284][T23420] page: refcount:0 mapcount:0 mapping:ffff888113261ca8 index:0x0 pfn:0x135de4
[ 414.050156][T23420] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 414.056930][T23420] flags: 0x4000000000000001(locked|zone=1)
[ 414.062932][T23420] raw: 4000000000000001 dead000000000100 dead000000000122 ffff888113261ca8
[ 414.071576][T23420] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 414.080276][T23420] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 414.087882][T23420] page_owner tracks the page as allocated
[ 414.093647][T23420] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23420, tgid 23420 (syz-executor251), ts 414033511088, free_ts 414023296145
[ 414.113115][T23420] post_alloc_hook+0x3b9/0x3f0
[ 414.118002][T23420] prep_new_page+0x1c/0x120
[ 414.122549][T23420] get_page_from_freelist+0x48ce/0x4960
[ 414.128129][T23420] __alloc_pages_noprof+0x31f/0x7b0
[ 414.133410][T23420] __folio_alloc_noprof+0x14/0x80
[ 414.138473][T23420] __filemap_get_folio+0x54c/0x9d0
[ 414.143645][T23420] netfs_perform_write+0x4b2/0x1f70
[ 414.149083][T23420] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 414.155396][T23420] netfs_file_write_iter+0x189/0x440
[ 414.160746][T23420] v9fs_file_write_iter+0xac/0xe0
[ 414.165809][T23420] do_iter_readv_writev+0x4f2/0x6a0
[ 414.171143][T23420] vfs_writev+0x485/0xcf0
[ 414.175499][T23420] __se_sys_pwritev2+0x1ad/0x2b0
[ 414.180436][T23420] __x64_sys_pwritev2+0xc3/0xf0
[ 414.185361][T23420] x64_sys_call+0x2938/0x2ee0
[ 414.190052][T23420] do_syscall_64+0x58/0xf0
[ 414.194502][T23420] page last free pid 23419 tgid 23419 stack trace:
[ 414.201035][T23420] free_unref_folios+0xcfe/0x1680
[ 414.206073][T23420] folios_put_refs+0x4c9/0x5c0
[ 414.210976][T23420] folio_batch_move_lru+0x33c/0x3a0
[ 414.216218][T23420] lru_add_drain_cpu+0xf8/0x430
[ 414.221221][T23420] __folio_batch_release+0x63/0x100
[ 414.226467][T23420] writeback_iter+0x6b7/0x1020
[ 414.231304][T23420] netfs_writepages+0x98f/0xe30
[ 414.236190][T23420] do_writepages+0x3bf/0x7b0
[ 414.240863][T23420] filemap_fdatawrite_wbc+0x12c/0x190
[ 414.246258][T23420] filemap_write_and_wait_range+0x10b/0x1d0
[ 414.252237][T23420] netfs_perform_write+0x10bc/0x1f70
[ 414.257557][T23420] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 414.263772][T23420] netfs_file_write_iter+0x189/0x440
[ 414.269077][T23420] v9fs_file_write_iter+0xac/0xe0
[ 414.274309][T23420] vfs_write+0x697/0xe80
[ 414.278587][T23420] ksys_write+0x141/0x250
[ 414.282999][T23420] Modules linked in:
[ 414.286917][T23420] CPU: 0 UID: 0 PID: 23420 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 414.286945][T23420] Tainted: [B]=BAD_PAGE
[ 414.286951][T23420] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 414.286961][T23420] Call Trace:
[ 414.286967][T23420]
[ 414.286973][T23420] __dump_stack+0x21/0x30
[ 414.286998][T23420] dump_stack_lvl+0x10c/0x190
[ 414.287020][T23420] ? __cfi_dump_stack_lvl+0x10/0x10
[ 414.287042][T23420] ? uncharge_batch+0x224/0x3f0
[ 414.287057][T23420] dump_stack+0x19/0x20
[ 414.287077][T23420] bad_page+0x169/0x1c0
[ 414.287091][T23420] free_page_is_bad_report+0x123/0x1d0
[ 414.287106][T23420] free_unref_page+0xe88/0xee0
[ 414.287127][T23420] ? __cfi_free_unref_page+0x10/0x10
[ 414.287147][T23420] ? folios_put_refs+0x580/0x5c0
[ 414.287169][T23420] __folio_put+0x24f/0x2a0
[ 414.287188][T23420] ? __cfi___folio_put+0x10/0x10
[ 414.287206][T23420] ? __kasan_check_read+0x15/0x20
[ 414.287230][T23420] netfs_perform_write+0x1aae/0x1f70
[ 414.287279][T23420] ? __cfi_netfs_perform_write+0x10/0x10
[ 414.287309][T23420] ? __cfi_downgrade_write+0x10/0x10
[ 414.287331][T23420] ? down_write_killable+0xe9/0x2d0
[ 414.287355][T23420] ? file_update_time+0xa3/0x220
[ 414.287379][T23420] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 414.287395][T23420] ? netfs_file_write_iter+0x173/0x440
[ 414.287411][T23420] netfs_file_write_iter+0x189/0x440
[ 414.287426][T23420] v9fs_file_write_iter+0xac/0xe0
[ 414.287449][T23420] vfs_write+0x697/0xe80
[ 414.287465][T23420] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 414.287488][T23420] ? __cfi_vfs_write+0x10/0x10
[ 414.287504][T23420] ? kmem_cache_free+0x1c1/0x510
[ 414.287521][T23420] ? __kasan_check_read+0x15/0x20
[ 414.287545][T23420] ksys_write+0x141/0x250
[ 414.287561][T23420] ? __cfi_ksys_write+0x10/0x10
[ 414.287578][T23420] ? __kasan_check_read+0x15/0x20
[ 414.287602][T23420] __x64_sys_write+0x7f/0x90
[ 414.287617][T23420] x64_sys_call+0x271c/0x2ee0
[ 414.287642][T23420] do_syscall_64+0x58/0xf0
[ 414.287658][T23420] ? clear_bhb_loop+0x50/0xa0
[ 414.287683][T23420] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 414.287706][T23420] RIP: 0033:0x7f49ca52bf79
[ 414.287721][T23420] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 414.287735][T23420] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
executing program
executing program
executing program
[ 414.287753][T23420] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 414.287767][T23420] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
[ 414.287783][T23420] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[ 414.287794][T23420] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 414.287806][T23420] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 414.287819][T23420]
[ 414.591189][T23423] BUG: Bad page state in process syz-executor251 pfn:127065
[ 414.598636][T23423] page: refcount:0 mapcount:0 mapping:ffff888113260d28 index:0x0 pfn:0x127065
[ 414.607551][T23423] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 414.614296][T23423] flags: 0x4000000000000001(locked|zone=1)
[ 414.620120][T23423] raw: 4000000000000001 dead000000000100 dead000000000122 ffff888113260d28
[ 414.628734][T23423] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 414.637533][T23423] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 414.644841][T23423] page_owner tracks the page as allocated
[ 414.650779][T23423] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23423, tgid 23423 (syz-executor251), ts 414590919880, free_ts 414023278317
[ 414.670169][T23423] post_alloc_hook+0x3b9/0x3f0
[ 414.674984][T23423] prep_new_page+0x1c/0x120
[ 414.679495][T23423] get_page_from_freelist+0x48ce/0x4960
[ 414.685074][T23423] __alloc_pages_noprof+0x31f/0x7b0
[ 414.690303][T23423] __folio_alloc_noprof+0x14/0x80
[ 414.695387][T23423] __filemap_get_folio+0x54c/0x9d0
[ 414.700541][T23423] netfs_perform_write+0x4b2/0x1f70
[ 414.705836][T23423] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 414.712216][T23423] netfs_file_write_iter+0x189/0x440
[ 414.717542][T23423] v9fs_file_write_iter+0xac/0xe0
[ 414.722605][T23423] do_iter_readv_writev+0x4f2/0x6a0
[ 414.727913][T23423] vfs_writev+0x485/0xcf0
[ 414.732302][T23423] __se_sys_pwritev2+0x1ad/0x2b0
[ 414.737264][T23423] __x64_sys_pwritev2+0xc3/0xf0
[ 414.742160][T23423] x64_sys_call+0x2938/0x2ee0
[ 414.746875][T23423] do_syscall_64+0x58/0xf0
[ 414.751361][T23423] page last free pid 23419 tgid 23419 stack trace:
[ 414.757958][T23423] free_unref_folios+0xcfe/0x1680
[ 414.763057][T23423] folios_put_refs+0x4c9/0x5c0
[ 414.767846][T23423] folio_batch_move_lru+0x33c/0x3a0
[ 414.773076][T23423] lru_add_drain_cpu+0xf8/0x430
[ 414.777965][T23423] __folio_batch_release+0x63/0x100
[ 414.783237][T23423] writeback_iter+0x6b7/0x1020
[ 414.788017][T23423] netfs_writepages+0x98f/0xe30
[ 414.792912][T23423] do_writepages+0x3bf/0x7b0
[ 414.797604][T23423] filemap_fdatawrite_wbc+0x12c/0x190
[ 414.803036][T23423] filemap_write_and_wait_range+0x10b/0x1d0
[ 414.809043][T23423] netfs_perform_write+0x10bc/0x1f70
[ 414.814366][T23423] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 414.820595][T23423] netfs_file_write_iter+0x189/0x440
[ 414.825886][T23423] v9fs_file_write_iter+0xac/0xe0
[ 414.830946][T23423] vfs_write+0x697/0xe80
[ 414.835206][T23423] ksys_write+0x141/0x250
[ 414.839539][T23423] Modules linked in:
[ 414.843457][T23423] CPU: 1 UID: 0 PID: 23423 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 414.843493][T23423] Tainted: [B]=BAD_PAGE
[ 414.843502][T23423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 414.843514][T23423] Call Trace:
[ 414.843521][T23423]
[ 414.843528][T23423] __dump_stack+0x21/0x30
[ 414.843559][T23423] dump_stack_lvl+0x10c/0x190
[ 414.843588][T23423] ? __cfi_dump_stack_lvl+0x10/0x10
[ 414.843617][T23423] ? uncharge_batch+0x224/0x3f0
[ 414.843637][T23423] dump_stack+0x19/0x20
[ 414.843666][T23423] bad_page+0x169/0x1c0
[ 414.843686][T23423] free_page_is_bad_report+0x123/0x1d0
[ 414.843709][T23423] free_unref_page+0xe88/0xee0
[ 414.843747][T23423] ? __cfi_free_unref_page+0x10/0x10
[ 414.843777][T23423] ? folios_put_refs+0x580/0x5c0
[ 414.843811][T23423] __folio_put+0x24f/0x2a0
[ 414.843857][T23423] ? __cfi___folio_put+0x10/0x10
[ 414.843886][T23423] ? __kasan_check_read+0x15/0x20
[ 414.843922][T23423] netfs_perform_write+0x1aae/0x1f70
[ 414.843966][T23423] ? __cfi_netfs_perform_write+0x10/0x10
[ 414.844010][T23423] ? __cfi_downgrade_write+0x10/0x10
[ 414.844042][T23423] ? down_write_killable+0xe9/0x2d0
[ 414.844076][T23423] ? file_update_time+0xa3/0x220
[ 414.844109][T23423] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 414.844133][T23423] ? netfs_file_write_iter+0x173/0x440
[ 414.844156][T23423] netfs_file_write_iter+0x189/0x440
[ 414.844179][T23423] v9fs_file_write_iter+0xac/0xe0
[ 414.844212][T23423] vfs_write+0x697/0xe80
[ 414.844236][T23423] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 414.844269][T23423] ? __cfi_vfs_write+0x10/0x10
[ 414.844292][T23423] ? kmem_cache_free+0x1c1/0x510
[ 414.844316][T23423] ? __kasan_check_read+0x15/0x20
[ 414.844352][T23423] ksys_write+0x141/0x250
[ 414.844375][T23423] ? __cfi_ksys_write+0x10/0x10
[ 414.844398][T23423] ? __kasan_check_read+0x15/0x20
[ 414.844433][T23423] __x64_sys_write+0x7f/0x90
[ 414.844456][T23423] x64_sys_call+0x271c/0x2ee0
[ 414.844492][T23423] do_syscall_64+0x58/0xf0
[ 414.844515][T23423] ? clear_bhb_loop+0x50/0xa0
[ 414.844550][T23423] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 414.844583][T23423] RIP: 0033:0x7f49ca52bf79
[ 414.844603][T23423] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 414.844624][T23423] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
executing program
executing program
executing program
executing program
[ 414.844649][T23423] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 414.844669][T23423] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
[ 414.844705][T23423] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[ 414.844730][T23423] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 414.844748][T23423] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 414.844768][T23423]
executing program
executing program
executing program
executing program
executing program
[ 415.224162][T23432] BUG: Bad page state in process syz-executor251 pfn:118213
[ 415.231637][T23432] page: refcount:0 mapcount:0 mapping:ffff8881324a5108 index:0x0 pfn:0x118213
[ 415.240563][T23432] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 415.247266][T23432] flags: 0x4000000000000001(locked|zone=1)
[ 415.253129][T23432] raw: 4000000000000001 dead000000000100 dead000000000122 ffff8881324a5108
[ 415.261760][T23432] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 415.270344][T23432] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 415.277672][T23432] page_owner tracks the page as allocated
[ 415.283414][T23432] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23432, tgid 23432 (syz-executor251), ts 415223928122, free_ts 415213913438
[ 415.302832][T23432] post_alloc_hook+0x3b9/0x3f0
[ 415.307644][T23432] prep_new_page+0x1c/0x120
[ 415.312236][T23432] get_page_from_freelist+0x48ce/0x4960
[ 415.317830][T23432] __alloc_pages_noprof+0x31f/0x7b0
[ 415.323212][T23432] __folio_alloc_noprof+0x14/0x80
[ 415.328276][T23432] __filemap_get_folio+0x54c/0x9d0
[ 415.333450][T23432] netfs_perform_write+0x4b2/0x1f70
[ 415.338702][T23432] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 415.344901][T23432] netfs_file_write_iter+0x189/0x440
[ 415.350212][T23432] v9fs_file_write_iter+0xac/0xe0
[ 415.355299][T23432] do_iter_readv_writev+0x4f2/0x6a0
[ 415.360534][T23432] vfs_writev+0x485/0xcf0
[ 415.364867][T23432] __se_sys_pwritev2+0x1ad/0x2b0
[ 415.369809][T23432] __x64_sys_pwritev2+0xc3/0xf0
[ 415.374726][T23432] x64_sys_call+0x2938/0x2ee0
[ 415.379444][T23432] do_syscall_64+0x58/0xf0
[ 415.383896][T23432] page last free pid 23431 tgid 23431 stack trace:
[ 415.390411][T23432] free_unref_folios+0xcfe/0x1680
[ 415.395530][T23432] folios_put_refs+0x4c9/0x5c0
[ 415.400332][T23432] free_pages_and_swap_cache+0x3f7/0x460
[ 415.406055][T23432] tlb_flush_mmu+0x7ce/0xaf0
[ 415.410745][T23432] tlb_finish_mmu+0xcf/0x1d0
[ 415.415371][T23432] exit_mmap+0x405/0xb60
[ 415.419614][T23432] __mmput+0x93/0x320
[ 415.423666][T23432] mmput+0x55/0x170
[ 415.427498][T23432] do_exit+0x918/0x2630
[ 415.431722][T23432] do_group_exit+0x22a/0x300
[ 415.436342][T23432] __x64_sys_exit_group+0x43/0x50
[ 415.441413][T23432] x64_sys_call+0x2ed2/0x2ee0
[ 415.446118][T23432] do_syscall_64+0x58/0xf0
[ 415.450568][T23432] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 415.456505][T23432] Modules linked in:
[ 415.460408][T23432] CPU: 0 UID: 0 PID: 23432 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 415.460436][T23432] Tainted: [B]=BAD_PAGE
[ 415.460441][T23432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 415.460451][T23432] Call Trace:
[ 415.460457][T23432]
[ 415.460467][T23432] __dump_stack+0x21/0x30
[ 415.460493][T23432] dump_stack_lvl+0x10c/0x190
[ 415.460514][T23432] ? __cfi_dump_stack_lvl+0x10/0x10
[ 415.460536][T23432] ? uncharge_batch+0x224/0x3f0
[ 415.460551][T23432] dump_stack+0x19/0x20
[ 415.460571][T23432] bad_page+0x169/0x1c0
[ 415.460585][T23432] free_page_is_bad_report+0x123/0x1d0
[ 415.460600][T23432] free_unref_page+0xe88/0xee0
[ 415.460628][T23432] ? __cfi_free_unref_page+0x10/0x10
[ 415.460649][T23432] ? folios_put_refs+0x580/0x5c0
[ 415.460671][T23432] __folio_put+0x24f/0x2a0
[ 415.460690][T23432] ? __cfi___folio_put+0x10/0x10
[ 415.460709][T23432] ? __kasan_check_read+0x15/0x20
[ 415.460734][T23432] netfs_perform_write+0x1aae/0x1f70
[ 415.460763][T23432] ? __cfi_netfs_perform_write+0x10/0x10
[ 415.460793][T23432] ? __cfi_downgrade_write+0x10/0x10
[ 415.460814][T23432] ? down_write_killable+0xe9/0x2d0
[ 415.460838][T23432] ? file_update_time+0xa3/0x220
[ 415.460860][T23432] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 415.460876][T23432] ? netfs_file_write_iter+0x173/0x440
[ 415.460891][T23432] netfs_file_write_iter+0x189/0x440
[ 415.460906][T23432] v9fs_file_write_iter+0xac/0xe0
[ 415.460946][T23432] vfs_write+0x697/0xe80
[ 415.460963][T23432] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 415.460992][T23432] ? __cfi_vfs_write+0x10/0x10
[ 415.461008][T23432] ? kmem_cache_free+0x1c1/0x510
[ 415.461025][T23432] ? __kasan_check_read+0x15/0x20
[ 415.461049][T23432] ksys_write+0x141/0x250
[ 415.461065][T23432] ? __cfi_ksys_write+0x10/0x10
[ 415.461082][T23432] ? __kasan_check_read+0x15/0x20
[ 415.461106][T23432] __x64_sys_write+0x7f/0x90
[ 415.461122][T23432] x64_sys_call+0x271c/0x2ee0
[ 415.461146][T23432] do_syscall_64+0x58/0xf0
[ 415.461163][T23432] ? clear_bhb_loop+0x50/0xa0
[ 415.461187][T23432] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 415.461210][T23432] RIP: 0033:0x7f49ca52bf79
[ 415.461224][T23432] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 415.461239][T23432] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 415.461256][T23432] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 415.461269][T23432] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
[ 415.461281][T23432] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
executing program
executing program
executing program
executing program
[ 415.461292][T23432] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 415.461303][T23432] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 415.461316][T23432]
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 415.942549][T23451] BUG: Bad page state in process syz-executor251 pfn:11e02f
[ 415.950048][T23451] page: refcount:0 mapcount:0 mapping:ffff888113262468 index:0x0 pfn:0x11e02f
[ 415.958946][T23451] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 415.965716][T23451] flags: 0x4000000000000001(locked|zone=1)
[ 415.971628][T23451] raw: 4000000000000001 dead000000000100 dead000000000122 ffff888113262468
[ 415.980289][T23451] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 415.988951][T23451] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 415.996315][T23451] page_owner tracks the page as allocated
[ 416.002082][T23451] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23451, tgid 23451 (syz-executor251), ts 415942277014, free_ts 415921481734
[ 416.021529][T23451] post_alloc_hook+0x3b9/0x3f0
[ 416.026325][T23451] prep_new_page+0x1c/0x120
[ 416.030904][T23451] get_page_from_freelist+0x48ce/0x4960
[ 416.036475][T23451] __alloc_pages_noprof+0x31f/0x7b0
[ 416.041710][T23451] __folio_alloc_noprof+0x14/0x80
[ 416.046761][T23451] __filemap_get_folio+0x54c/0x9d0
[ 416.051938][T23451] netfs_perform_write+0x4b2/0x1f70
[ 416.057165][T23451] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 416.063369][T23451] netfs_file_write_iter+0x189/0x440
[ 416.068668][T23451] v9fs_file_write_iter+0xac/0xe0
[ 416.073748][T23451] do_iter_readv_writev+0x4f2/0x6a0
[ 416.078968][T23451] vfs_writev+0x485/0xcf0
[ 416.083353][T23451] __se_sys_pwritev2+0x1ad/0x2b0
[ 416.088414][T23451] __x64_sys_pwritev2+0xc3/0xf0
[ 416.093350][T23451] x64_sys_call+0x2938/0x2ee0
[ 416.098059][T23451] do_syscall_64+0x58/0xf0
[ 416.102567][T23451] page last free pid 23449 tgid 23449 stack trace:
[ 416.109090][T23451] free_unref_folios+0xcfe/0x1680
[ 416.114167][T23451] folios_put_refs+0x4c9/0x5c0
[ 416.118959][T23451] free_pages_and_swap_cache+0x3f7/0x460
[ 416.124701][T23451] tlb_flush_mmu+0x7ce/0xaf0
[ 416.129315][T23451] tlb_finish_mmu+0xcf/0x1d0
[ 416.133939][T23451] exit_mmap+0x405/0xb60
[ 416.138204][T23451] __mmput+0x93/0x320
[ 416.142257][T23451] mmput+0x55/0x170
[ 416.146099][T23451] do_exit+0x918/0x2630
[ 416.150280][T23451] do_group_exit+0x22a/0x300
[ 416.154929][T23451] __x64_sys_exit_group+0x43/0x50
[ 416.159986][T23451] x64_sys_call+0x2ed2/0x2ee0
[ 416.164699][T23451] do_syscall_64+0x58/0xf0
[ 416.169138][T23451] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 416.175194][T23451] Modules linked in:
[ 416.179193][T23451] CPU: 1 UID: 0 PID: 23451 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 416.179220][T23451] Tainted: [B]=BAD_PAGE
[ 416.179226][T23451] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 416.179236][T23451] Call Trace:
[ 416.179242][T23451]
[ 416.179248][T23451] __dump_stack+0x21/0x30
[ 416.179274][T23451] dump_stack_lvl+0x10c/0x190
[ 416.179296][T23451] ? __cfi_dump_stack_lvl+0x10/0x10
[ 416.179319][T23451] ? uncharge_batch+0x224/0x3f0
[ 416.179334][T23451] dump_stack+0x19/0x20
[ 416.179355][T23451] bad_page+0x169/0x1c0
[ 416.179370][T23451] free_page_is_bad_report+0x123/0x1d0
[ 416.179386][T23451] free_unref_page+0xe88/0xee0
[ 416.179407][T23451] ? __cfi_free_unref_page+0x10/0x10
[ 416.179428][T23451] ? folios_put_refs+0x580/0x5c0
[ 416.179451][T23451] __folio_put+0x24f/0x2a0
[ 416.179470][T23451] ? __cfi___folio_put+0x10/0x10
[ 416.179489][T23451] ? __kasan_check_read+0x15/0x20
[ 416.179515][T23451] netfs_perform_write+0x1aae/0x1f70
[ 416.179545][T23451] ? __cfi_netfs_perform_write+0x10/0x10
[ 416.179585][T23451] ? __cfi_downgrade_write+0x10/0x10
[ 416.179608][T23451] ? down_write_killable+0xe9/0x2d0
[ 416.179633][T23451] ? file_update_time+0xa3/0x220
[ 416.179657][T23451] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 416.179673][T23451] ? netfs_file_write_iter+0x173/0x440
[ 416.179689][T23451] netfs_file_write_iter+0x189/0x440
[ 416.179704][T23451] v9fs_file_write_iter+0xac/0xe0
[ 416.179728][T23451] vfs_write+0x697/0xe80
[ 416.179744][T23451] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 416.179767][T23451] ? __cfi_vfs_write+0x10/0x10
[ 416.179782][T23451] ? kmem_cache_free+0x1c1/0x510
[ 416.179799][T23451] ? __kasan_check_read+0x15/0x20
[ 416.179823][T23451] ksys_write+0x141/0x250
[ 416.179839][T23451] ? __cfi_ksys_write+0x10/0x10
[ 416.179855][T23451] ? __kasan_check_read+0x15/0x20
[ 416.179880][T23451] __x64_sys_write+0x7f/0x90
[ 416.179895][T23451] x64_sys_call+0x271c/0x2ee0
[ 416.179919][T23451] do_syscall_64+0x58/0xf0
[ 416.179936][T23451] ? clear_bhb_loop+0x50/0xa0
[ 416.179960][T23451] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 416.179983][T23451] RIP: 0033:0x7f49ca52bf79
[ 416.179997][T23451] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 416.180011][T23451] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 416.180029][T23451] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 416.180042][T23451] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
[ 416.180053][T23451] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
executing program
executing program
executing program
executing program
[ 416.180064][T23451] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 416.180076][T23451] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 416.180089][T23451]
[ 416.502873][T23455] BUG: Bad page state in process syz-executor251 pfn:1267b0
[ 416.510285][T23455] page: refcount:0 mapcount:0 mapping:ffff88813275d4e8 index:0x0 pfn:0x1267b0
[ 416.519177][T23455] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 416.525938][T23455] flags: 0x4000000000000001(locked|zone=1)
[ 416.531882][T23455] raw: 4000000000000001 dead000000000100 dead000000000122 ffff88813275d4e8
[ 416.540613][T23455] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 416.549205][T23455] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 416.556710][T23455] page_owner tracks the page as allocated
[ 416.562574][T23455] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23455, tgid 23455 (syz-executor251), ts 416502586779, free_ts 416492690159
[ 416.582092][T23455] post_alloc_hook+0x3b9/0x3f0
[ 416.586898][T23455] prep_new_page+0x1c/0x120
[ 416.591525][T23455] get_page_from_freelist+0x48ce/0x4960
[ 416.597103][T23455] __alloc_pages_noprof+0x31f/0x7b0
[ 416.602362][T23455] __folio_alloc_noprof+0x14/0x80
[ 416.607513][T23455] __filemap_get_folio+0x54c/0x9d0
[ 416.612668][T23455] netfs_perform_write+0x4b2/0x1f70
[ 416.617904][T23455] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 416.624086][T23455] netfs_file_write_iter+0x189/0x440
[ 416.629393][T23455] v9fs_file_write_iter+0xac/0xe0
[ 416.634452][T23455] do_iter_readv_writev+0x4f2/0x6a0
[ 416.639671][T23455] vfs_writev+0x485/0xcf0
[ 416.644055][T23455] __se_sys_pwritev2+0x1ad/0x2b0
[ 416.649018][T23455] __x64_sys_pwritev2+0xc3/0xf0
[ 416.653910][T23455] x64_sys_call+0x2938/0x2ee0
[ 416.658613][T23455] do_syscall_64+0x58/0xf0
[ 416.663066][T23455] page last free pid 23454 tgid 23454 stack trace:
[ 416.669577][T23455] free_unref_folios+0xcfe/0x1680
[ 416.674640][T23455] folios_put_refs+0x4c9/0x5c0
[ 416.679432][T23455] free_pages_and_swap_cache+0x3f7/0x460
[ 416.685208][T23455] tlb_flush_mmu+0x7ce/0xaf0
[ 416.690057][T23455] tlb_finish_mmu+0xcf/0x1d0
[ 416.694707][T23455] exit_mmap+0x405/0xb60
[ 416.698970][T23455] __mmput+0x93/0x320
[ 416.703005][T23455] mmput+0x55/0x170
[ 416.706845][T23455] do_exit+0x918/0x2630
[ 416.711046][T23455] do_group_exit+0x22a/0x300
[ 416.715661][T23455] __x64_sys_exit_group+0x43/0x50
[ 416.720730][T23455] x64_sys_call+0x2ed2/0x2ee0
[ 416.725443][T23455] do_syscall_64+0x58/0xf0
[ 416.729862][T23455] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 416.735800][T23455] Modules linked in:
[ 416.739805][T23455] CPU: 0 UID: 0 PID: 23455 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 416.739833][T23455] Tainted: [B]=BAD_PAGE
[ 416.739839][T23455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 416.739850][T23455] Call Trace:
[ 416.739855][T23455]
[ 416.739861][T23455] __dump_stack+0x21/0x30
[ 416.739893][T23455] dump_stack_lvl+0x10c/0x190
[ 416.739915][T23455] ? __cfi_dump_stack_lvl+0x10/0x10
[ 416.739938][T23455] ? uncharge_batch+0x224/0x3f0
[ 416.739954][T23455] dump_stack+0x19/0x20
[ 416.739974][T23455] bad_page+0x169/0x1c0
[ 416.739988][T23455] free_page_is_bad_report+0x123/0x1d0
[ 416.740004][T23455] free_unref_page+0xe88/0xee0
[ 416.740026][T23455] ? __cfi_free_unref_page+0x10/0x10
[ 416.740046][T23455] ? folios_put_refs+0x580/0x5c0
[ 416.740069][T23455] __folio_put+0x24f/0x2a0
[ 416.740088][T23455] ? __cfi___folio_put+0x10/0x10
[ 416.740107][T23455] ? __kasan_check_read+0x15/0x20
[ 416.740132][T23455] netfs_perform_write+0x1aae/0x1f70
[ 416.740164][T23455] ? __cfi_netfs_perform_write+0x10/0x10
[ 416.740194][T23455] ? __cfi_downgrade_write+0x10/0x10
[ 416.740215][T23455] ? down_write_killable+0xe9/0x2d0
[ 416.740241][T23455] ? file_update_time+0xa3/0x220
[ 416.740264][T23455] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 416.740280][T23455] ? netfs_file_write_iter+0x173/0x440
[ 416.740295][T23455] netfs_file_write_iter+0x189/0x440
[ 416.740311][T23455] v9fs_file_write_iter+0xac/0xe0
[ 416.740334][T23455] vfs_write+0x697/0xe80
[ 416.740350][T23455] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 416.740373][T23455] ? __cfi_vfs_write+0x10/0x10
[ 416.740388][T23455] ? kmem_cache_free+0x1c1/0x510
[ 416.740405][T23455] ? __kasan_check_read+0x15/0x20
[ 416.740429][T23455] ksys_write+0x141/0x250
[ 416.740445][T23455] ? __cfi_ksys_write+0x10/0x10
[ 416.740464][T23455] ? __kasan_check_read+0x15/0x20
[ 416.740489][T23455] __x64_sys_write+0x7f/0x90
[ 416.740505][T23455] x64_sys_call+0x271c/0x2ee0
[ 416.740529][T23455] do_syscall_64+0x58/0xf0
[ 416.740545][T23455] ? clear_bhb_loop+0x50/0xa0
[ 416.740571][T23455] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 416.740593][T23455] RIP: 0033:0x7f49ca52bf79
[ 416.740607][T23455] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 416.740622][T23455] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 416.740640][T23455] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 416.740653][T23455] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
[ 416.740664][T23455] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
executing program
executing program
executing program
executing program
executing program
[ 416.740675][T23455] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 416.740686][T23455] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 416.740699][T23455]
executing program
executing program
[ 417.094823][T23462] BUG: Bad page state in process syz-executor251 pfn:11e242
[ 417.102324][T23462] page: refcount:0 mapcount:0 mapping:ffff8881324d8948 index:0x0 pfn:0x11e242
[ 417.111242][T23462] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 417.117949][T23462] flags: 0x4000000000000001(locked|zone=1)
[ 417.123800][T23462] raw: 4000000000000001 dead000000000100 dead000000000122 ffff8881324d8948
[ 417.132659][T23462] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 417.141370][T23462] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 417.148701][T23462] page_owner tracks the page as allocated
[ 417.154462][T23462] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23462, tgid 23462 (syz-executor251), ts 417094583862, free_ts 417074264494
[ 417.173910][T23462] post_alloc_hook+0x3b9/0x3f0
[ 417.178888][T23462] prep_new_page+0x1c/0x120
[ 417.183488][T23462] get_page_from_freelist+0x48ce/0x4960
[ 417.189237][T23462] __alloc_pages_noprof+0x31f/0x7b0
[ 417.194607][T23462] __folio_alloc_noprof+0x14/0x80
[ 417.199677][T23462] __filemap_get_folio+0x54c/0x9d0
[ 417.204850][T23462] netfs_perform_write+0x4b2/0x1f70
[ 417.210081][T23462] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 417.216288][T23462] netfs_file_write_iter+0x189/0x440
[ 417.221622][T23462] v9fs_file_write_iter+0xac/0xe0
[ 417.226678][T23462] do_iter_readv_writev+0x4f2/0x6a0
[ 417.231933][T23462] vfs_writev+0x485/0xcf0
[ 417.236304][T23462] __se_sys_pwritev2+0x1ad/0x2b0
[ 417.241312][T23462] __x64_sys_pwritev2+0xc3/0xf0
[ 417.246202][T23462] x64_sys_call+0x2938/0x2ee0
[ 417.250938][T23462] do_syscall_64+0x58/0xf0
[ 417.255375][T23462] page last free pid 23460 tgid 23460 stack trace:
[ 417.261933][T23462] free_unref_folios+0xcfe/0x1680
[ 417.266989][T23462] folios_put_refs+0x4c9/0x5c0
[ 417.271790][T23462] free_pages_and_swap_cache+0x3f7/0x460
[ 417.277445][T23462] tlb_flush_mmu+0x7ce/0xaf0
[ 417.282108][T23462] tlb_finish_mmu+0xcf/0x1d0
[ 417.286723][T23462] exit_mmap+0x405/0xb60
[ 417.291035][T23462] __mmput+0x93/0x320
executing program
[ 417.295036][T23462] mmput+0x55/0x170
[ 417.298931][T23462] do_exit+0x918/0x2630
[ 417.303189][T23462] do_group_exit+0x22a/0x300
[ 417.307800][T23462] __x64_sys_exit_group+0x43/0x50
[ 417.312870][T23462] x64_sys_call+0x2ed2/0x2ee0
[ 417.317595][T23462] do_syscall_64+0x58/0xf0
[ 417.322073][T23462] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 417.327992][T23462] Modules linked in:
[ 417.331935][T23462] CPU: 1 UID: 0 PID: 23462 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 417.331970][T23462] Tainted: [B]=BAD_PAGE
[ 417.331978][T23462] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 417.331990][T23462] Call Trace:
[ 417.331997][T23462]
[ 417.332005][T23462] __dump_stack+0x21/0x30
[ 417.332036][T23462] dump_stack_lvl+0x10c/0x190
[ 417.332066][T23462] ? __cfi_dump_stack_lvl+0x10/0x10
[ 417.332098][T23462] ? uncharge_batch+0x224/0x3f0
[ 417.332121][T23462] dump_stack+0x19/0x20
[ 417.332152][T23462] bad_page+0x169/0x1c0
[ 417.332173][T23462] free_page_is_bad_report+0x123/0x1d0
[ 417.332195][T23462] free_unref_page+0xe88/0xee0
[ 417.332225][T23462] ? __cfi_free_unref_page+0x10/0x10
[ 417.332254][T23462] ? folios_put_refs+0x580/0x5c0
[ 417.332287][T23462] __folio_put+0x24f/0x2a0
[ 417.332313][T23462] ? __cfi___folio_put+0x10/0x10
[ 417.332340][T23462] ? __kasan_check_read+0x15/0x20
[ 417.332375][T23462] netfs_perform_write+0x1aae/0x1f70
[ 417.332417][T23462] ? __cfi_netfs_perform_write+0x10/0x10
[ 417.332459][T23462] ? __cfi_downgrade_write+0x10/0x10
[ 417.332489][T23462] ? down_write_killable+0xe9/0x2d0
[ 417.332524][T23462] ? file_update_time+0xa3/0x220
[ 417.332565][T23462] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 417.332590][T23462] ? netfs_file_write_iter+0x173/0x440
[ 417.332613][T23462] netfs_file_write_iter+0x189/0x440
[ 417.332636][T23462] v9fs_file_write_iter+0xac/0xe0
[ 417.332668][T23462] vfs_write+0x697/0xe80
[ 417.332691][T23462] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 417.332724][T23462] ? __cfi_vfs_write+0x10/0x10
[ 417.332745][T23462] ? kmem_cache_free+0x1c1/0x510
[ 417.332769][T23462] ? __kasan_check_read+0x15/0x20
[ 417.332801][T23462] ksys_write+0x141/0x250
[ 417.332822][T23462] ? __cfi_ksys_write+0x10/0x10
[ 417.332845][T23462] ? __kasan_check_read+0x15/0x20
[ 417.332879][T23462] __x64_sys_write+0x7f/0x90
[ 417.332901][T23462] x64_sys_call+0x271c/0x2ee0
[ 417.332934][T23462] do_syscall_64+0x58/0xf0
[ 417.332957][T23462] ? clear_bhb_loop+0x50/0xa0
[ 417.333009][T23462] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 417.333042][T23462] RIP: 0033:0x7f49ca52bf79
[ 417.333061][T23462] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 417.333082][T23462] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 417.333107][T23462] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 417.333126][T23462] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
executing program
executing program
executing program
executing program
[ 417.333142][T23462] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[ 417.333158][T23462] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 417.333175][T23462] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 417.333194][T23462]
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 417.801474][T23479] BUG: Bad page state in process syz-executor251 pfn:126640
[ 417.808931][T23479] page: refcount:0 mapcount:0 mapping:ffff88813254a848 index:0x0 pfn:0x126640
[ 417.818070][T23479] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 417.824843][T23479] flags: 0x4000000000000001(locked|zone=1)
[ 417.830757][T23479] raw: 4000000000000001 dead000000000100 dead000000000122 ffff88813254a848
[ 417.839376][T23479] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 417.848050][T23479] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 417.855397][T23479] page_owner tracks the page as allocated
[ 417.861191][T23479] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23479, tgid 23479 (syz-executor251), ts 417801232625, free_ts 417791045361
[ 417.880649][T23479] post_alloc_hook+0x3b9/0x3f0
[ 417.885544][T23479] prep_new_page+0x1c/0x120
[ 417.890053][T23479] get_page_from_freelist+0x48ce/0x4960
[ 417.895713][T23479] __alloc_pages_noprof+0x31f/0x7b0
[ 417.900963][T23479] __folio_alloc_noprof+0x14/0x80
[ 417.905999][T23479] __filemap_get_folio+0x54c/0x9d0
[ 417.911160][T23479] netfs_perform_write+0x4b2/0x1f70
[ 417.916475][T23479] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 417.922706][T23479] netfs_file_write_iter+0x189/0x440
[ 417.928015][T23479] v9fs_file_write_iter+0xac/0xe0
[ 417.933075][T23479] do_iter_readv_writev+0x4f2/0x6a0
[ 417.938292][T23479] vfs_writev+0x485/0xcf0
[ 417.942708][T23479] __se_sys_pwritev2+0x1ad/0x2b0
[ 417.947677][T23479] __x64_sys_pwritev2+0xc3/0xf0
[ 417.952712][T23479] x64_sys_call+0x2938/0x2ee0
[ 417.957529][T23479] do_syscall_64+0x58/0xf0
[ 417.962019][T23479] page last free pid 23478 tgid 23478 stack trace:
[ 417.968630][T23479] free_unref_folios+0xcfe/0x1680
[ 417.973749][T23479] folios_put_refs+0x4c9/0x5c0
[ 417.978628][T23479] free_pages_and_swap_cache+0x3f7/0x460
[ 417.984329][T23479] tlb_flush_mmu+0x7ce/0xaf0
[ 417.989023][T23479] tlb_finish_mmu+0xcf/0x1d0
[ 417.993656][T23479] exit_mmap+0x405/0xb60
[ 417.998017][T23479] __mmput+0x93/0x320
[ 418.002062][T23479] mmput+0x55/0x170
[ 418.005988][T23479] do_exit+0x918/0x2630
[ 418.010161][T23479] do_group_exit+0x22a/0x300
[ 418.014904][T23479] __x64_sys_exit_group+0x43/0x50
[ 418.020089][T23479] x64_sys_call+0x2ed2/0x2ee0
[ 418.024810][T23479] do_syscall_64+0x58/0xf0
[ 418.029246][T23479] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 418.035188][T23479] Modules linked in:
[ 418.039103][T23479] CPU: 0 UID: 0 PID: 23479 Comm: syz-executor251 Tainted: G B syzkaller #0 3a9873ef9538f4af7b47ac86c0f57682117bea0c
[ 418.039131][T23479] Tainted: [B]=BAD_PAGE
[ 418.039136][T23479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 418.039147][T23479] Call Trace:
[ 418.039152][T23479]
[ 418.039159][T23479] __dump_stack+0x21/0x30
[ 418.039185][T23479] dump_stack_lvl+0x10c/0x190
[ 418.039207][T23479] ? __cfi_dump_stack_lvl+0x10/0x10
[ 418.039229][T23479] ? uncharge_batch+0x224/0x3f0
[ 418.039246][T23479] dump_stack+0x19/0x20
[ 418.039267][T23479] bad_page+0x169/0x1c0
[ 418.039281][T23479] free_page_is_bad_report+0x123/0x1d0
[ 418.039297][T23479] free_unref_page+0xe88/0xee0
[ 418.039318][T23479] ? __cfi_free_unref_page+0x10/0x10
[ 418.039339][T23479] ? folios_put_refs+0x580/0x5c0
[ 418.039362][T23479] __folio_put+0x24f/0x2a0
[ 418.039381][T23479] ? __cfi___folio_put+0x10/0x10
[ 418.039400][T23479] ? __kasan_check_read+0x15/0x20
[ 418.039431][T23479] netfs_perform_write+0x1aae/0x1f70
[ 418.039463][T23479] ? __cfi_netfs_perform_write+0x10/0x10
[ 418.039493][T23479] ? __cfi_downgrade_write+0x10/0x10
[ 418.039514][T23479] ? down_write_killable+0xe9/0x2d0
[ 418.039540][T23479] ? file_update_time+0xa3/0x220
[ 418.039563][T23479] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 418.039579][T23479] ? netfs_file_write_iter+0x173/0x440
[ 418.039594][T23479] netfs_file_write_iter+0x189/0x440
[ 418.039610][T23479] v9fs_file_write_iter+0xac/0xe0
[ 418.039633][T23479] vfs_write+0x697/0xe80
[ 418.039649][T23479] ? __cfi_v9fs_file_write_iter+0x10/0x10
[ 418.039672][T23479] ? __cfi_vfs_write+0x10/0x10
[ 418.039688][T23479] ? kmem_cache_free+0x1c1/0x510
[ 418.039704][T23479] ? __kasan_check_read+0x15/0x20
[ 418.039729][T23479] ksys_write+0x141/0x250
[ 418.039745][T23479] ? __cfi_ksys_write+0x10/0x10
[ 418.039761][T23479] ? __kasan_check_read+0x15/0x20
[ 418.039785][T23479] __x64_sys_write+0x7f/0x90
[ 418.039801][T23479] x64_sys_call+0x271c/0x2ee0
[ 418.039825][T23479] do_syscall_64+0x58/0xf0
[ 418.039842][T23479] ? clear_bhb_loop+0x50/0xa0
[ 418.039867][T23479] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 418.039890][T23479] RIP: 0033:0x7f49ca52bf79
[ 418.039904][T23479] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 418.039919][T23479] RSP: 002b:00007ffeaaa690f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 418.039937][T23479] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f49ca52bf79
[ 418.039950][T23479] RDX: 0000000000000018 RSI: 0000200000000380 RDI: 0000000000000006
executing program
executing program
executing program
executing program
[ 418.039961][T23479] RBP: 0000200000000000 R08: 0000000000000000 R09: 0000000000000000
[ 418.040002][T23479] R10: 0000000000000006 R11: 0000000000000246 R12: 00002000000003c0
[ 418.040013][T23479] R13: 00007f49ca57504e R14: 0000000000000001 R15: 0000000000000001
[ 418.040026][T23479]
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
[ 418.634078][ T46] BUG: Bad page state in process kworker/u8:2 pfn:1205fe
[ 418.641278][ T46] page: refcount:0 mapcount:0 mapping:ffff888113377ba8 index:0x0 pfn:0x1205fe
[ 418.650278][ T46] aops:v9fs_addr_operations ino:2 dentry name(?):"/"
[ 418.657370][ T46] flags: 0x4000000000000001(locked|zone=1)
[ 418.663366][ T46] raw: 4000000000000001 dead000000000100 dead000000000122 ffff888113377ba8
[ 418.672285][ T46] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
executing program
executing program
executing program
executing program
executing program
[ 418.680935][ T46] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 418.688423][ T46] page_owner tracks the page as allocated
[ 418.694336][ T46] page last allocated via order 0, migratetype Movable, gfp_mask 0x141cca(GFP_HIGHUSER_MOVABLE|__GFP_COMP|__GFP_WRITE), pid 23507, tgid 23507 (syz-executor251), ts 418633816583, free_ts 418613209284
[ 418.714051][ T46] post_alloc_hook+0x3b9/0x3f0
[ 418.718966][ T46] prep_new_page+0x1c/0x120
[ 418.723738][ T46] get_page_from_freelist+0x48ce/0x4960
[ 418.729383][ T46] __alloc_pages_noprof+0x31f/0x7b0
[ 418.734931][ T46] __folio_alloc_noprof+0x14/0x80
[ 418.740025][ T46] __filemap_get_folio+0x54c/0x9d0
[ 418.745193][ T46] netfs_perform_write+0x4b2/0x1f70
[ 418.750430][ T46] netfs_buffered_write_iter_locked+0xa3/0x1c0
[ 418.756633][ T46] netfs_file_write_iter+0x189/0x440
[ 418.761960][ T46] v9fs_file_write_iter+0xac/0xe0
[ 418.767018][ T46] do_iter_readv_writev+0x4f2/0x6a0
[ 418.772272][ T46] vfs_writev+0x485/0xcf0
[ 418.776637][ T46] __se_sys_pwritev2+0x1ad/0x2b0