Warning: Permanently added '[localhost]:13112' (ED25519) to the list of known hosts.
2025/05/03 08:57:57 ignoring optional flag "sandboxArg"="0"
[ 81.454052][ T836] cfg80211: failed to load regulatory.db
2025/05/03 08:57:58 parsed 1 programs
[ 83.600557][ T40] audit: type=1400 audit(1746262680.418:144): avc: denied { unlink } for pid=6214 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 84.497781][ T6214] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 86.486507][ T67] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 86.490274][ T67] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 86.493602][ T67] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 86.498043][ T67] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 86.500711][ T67] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 87.031638][ T6279] chnl_net:caif_netlink_parms(): no params data found
[ 87.105286][ T6279] bridge0: port 1(bridge_slave_0) entered blocking state
[ 87.107732][ T6279] bridge0: port 1(bridge_slave_0) entered disabled state
[ 87.109999][ T6279] bridge_slave_0: entered allmulticast mode
[ 87.112662][ T6279] bridge_slave_0: entered promiscuous mode
[ 87.116455][ T6279] bridge0: port 2(bridge_slave_1) entered blocking state
[ 87.120280][ T6279] bridge0: port 2(bridge_slave_1) entered disabled state
[ 87.123434][ T6279] bridge_slave_1: entered allmulticast mode
[ 87.127253][ T6279] bridge_slave_1: entered promiscuous mode
[ 87.178228][ T6279] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 87.188769][ T6279] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 87.232061][ T6279] team0: Port device team_slave_0 added
[ 87.236438][ T6279] team0: Port device team_slave_1 added
[ 87.278815][ T6279] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 87.281747][ T6279] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 87.292942][ T6279] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 87.322026][ T6279] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 87.324985][ T6279] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 87.336101][ T6279] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 87.404869][ T6279] hsr_slave_0: entered promiscuous mode
[ 87.407647][ T6279] hsr_slave_1: entered promiscuous mode
[ 87.959496][ T6279] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 87.965561][ T6279] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 87.970921][ T6279] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 87.978623][ T6279] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 87.996684][ T6279] bridge0: port 2(bridge_slave_1) entered blocking state
[ 87.999158][ T6279] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 88.001657][ T6279] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.003988][ T6279] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 88.020127][ T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 88.024274][ T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 88.053904][ T6279] 8021q: adding VLAN 0 to HW filter on device bond0
[ 88.064031][ T6279] 8021q: adding VLAN 0 to HW filter on device team0
[ 88.070619][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.073645][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 88.081620][ T84] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.083993][ T84] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 88.218534][ T6279] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 88.253782][ T6279] veth0_vlan: entered promiscuous mode
[ 88.260449][ T6279] veth1_vlan: entered promiscuous mode
[ 88.276258][ T6279] veth0_macvtap: entered promiscuous mode
[ 88.280596][ T6279] veth1_macvtap: entered promiscuous mode
[ 88.290586][ T6279] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 88.297381][ T6279] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 88.301931][ T6279] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.304694][ T6279] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.307542][ T6279] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.310255][ T6279] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 88.421289][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 88.523573][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 88.601325][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 88.640073][ T212] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 88.642989][ T212] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 88.665040][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 88.668203][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 88.681234][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 89.375836][ T40] audit: type=1401 audit(1746262686.188:145): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2025/05/03 08:58:06 executed programs: 0
[ 90.066164][ T5947] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 90.069770][ T5947] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 90.072722][ T5947] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 90.075960][ T5947] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 90.079226][ T5947] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 90.213528][ T6461] chnl_net:caif_netlink_parms(): no params data found
[ 90.294887][ T6461] bridge0: port 1(bridge_slave_0) entered blocking state
[ 90.297059][ T6461] bridge0: port 1(bridge_slave_0) entered disabled state
[ 90.300147][ T6461] bridge_slave_0: entered allmulticast mode
[ 90.303148][ T6461] bridge_slave_0: entered promiscuous mode
[ 90.306625][ T6461] bridge0: port 2(bridge_slave_1) entered blocking state
[ 90.309296][ T6461] bridge0: port 2(bridge_slave_1) entered disabled state
[ 90.311958][ T6461] bridge_slave_1: entered allmulticast mode
[ 90.314413][ T6461] bridge_slave_1: entered promiscuous mode
[ 90.347210][ T6461] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 90.352747][ T6461] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 90.383601][ T6461] team0: Port device team_slave_0 added
[ 90.386878][ T6461] team0: Port device team_slave_1 added
[ 90.416271][ T6461] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 90.419539][ T6461] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 90.427520][ T6461] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 90.431728][ T6461] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 90.433892][ T6461] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 90.443006][ T6461] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 90.484278][ T6461] hsr_slave_0: entered promiscuous mode
[ 90.486798][ T6461] hsr_slave_1: entered promiscuous mode
[ 90.489149][ T6461] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 90.491637][ T6461] Cannot create hsr debugfs directory
[ 91.953633][ T12] bridge_slave_1: left allmulticast mode
[ 91.955968][ T12] bridge_slave_1: left promiscuous mode
[ 91.958702][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 91.963918][ T12] bridge_slave_0: left allmulticast mode
[ 91.966261][ T12] bridge_slave_0: left promiscuous mode
[ 91.968933][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 92.097554][ T5947] Bluetooth: hci0: command tx timeout
[ 92.202340][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 92.206253][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 92.209804][ T12] bond0 (unregistering): Released all slaves
[ 92.332954][ T12] hsr_slave_0: left promiscuous mode
[ 92.335666][ T12] hsr_slave_1: left promiscuous mode
[ 92.337955][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 92.340917][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 92.344321][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 92.347223][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 92.364999][ T12] veth1_macvtap: left promiscuous mode
[ 92.367255][ T12] veth0_macvtap: left promiscuous mode
[ 92.370190][ T12] veth1_vlan: left promiscuous mode
[ 92.372019][ T12] veth0_vlan: left promiscuous mode
[ 92.746578][ T12] team0 (unregistering): Port device team_slave_1 removed
[ 92.787279][ T12] team0 (unregistering): Port device team_slave_0 removed
[ 93.583202][ T6461] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 93.589580][ T6461] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 93.594719][ T6461] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 93.599060][ T6461] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 93.641116][ T6461] 8021q: adding VLAN 0 to HW filter on device bond0
[ 93.653363][ T6461] 8021q: adding VLAN 0 to HW filter on device team0
[ 93.662967][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 93.665914][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 93.679031][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 93.681998][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 93.943524][ T6461] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 93.965050][ T6461] veth0_vlan: entered promiscuous mode
[ 93.972496][ T6461] veth1_vlan: entered promiscuous mode
[ 93.996745][ T6461] veth0_macvtap: entered promiscuous mode
[ 94.001896][ T6461] veth1_macvtap: entered promiscuous mode
[ 94.025428][ T6461] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 94.036419][ T6461] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 94.042529][ T6461] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.045289][ T6461] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.048207][ T6461] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.050965][ T6461] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 94.126145][ T84] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 94.128943][ T84] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 94.144345][ T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 94.146877][ T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 94.168686][ T5947] Bluetooth: hci0: command tx timeout
[ 94.200886][ T40] audit: type=1400 audit(1746262691.018:146): avc: denied { read write } for pid=6525 comm="syz.0.16" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 94.210824][ T40] audit: type=1400 audit(1746262691.018:147): avc: denied { open } for pid=6525 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 94.220291][ T40] audit: type=1400 audit(1746262691.018:148): avc: denied { map } for pid=6525 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 94.229284][ T40] audit: type=1400 audit(1746262691.018:149): avc: denied { execute } for pid=6525 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 94.237230][ T40] audit: type=1400 audit(1746262691.018:150): avc: denied { create } for pid=6525 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 94.243080][ T6526] BUG: Bad page state in process syz.0.16 pfn:40601
[ 94.244045][ T40] audit: type=1400 audit(1746262691.018:151): avc: denied { bind } for pid=6525 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 94.246094][ T6526] page does not match folio
[ 94.254830][ T40] audit: type=1400 audit(1746262691.028:152): avc: denied { write } for pid=6525 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 94.264971][ T6526] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x40601
[ 94.268700][ T6526] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 94.271434][ T6526] raw: 00fff00000000000 ffffea0001018000 00000000ffffffff ffffffffffffffff
[ 94.274512][ T6526] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.278003][ T6526] page dumped because: nonzero pincount
[ 94.280098][ T6526] page_owner tracks the page as allocated
[ 94.282232][ T6526] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6525, tgid 6525 (syz.0.16), ts 94203508565, free_ts 89349943790
[ 94.288504][ T6526] post_alloc_hook+0x181/0x1b0
[ 94.290219][ T6526] prep_new_page+0xa0/0xe0
[ 94.291909][ T6526] get_page_from_freelist+0x135b/0x3800
[ 94.293960][ T6526] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.296099][ T6526] alloc_pages_mpol+0x1fb/0x550
[ 94.298162][ T6526] folio_alloc_noprof+0x20/0x2d0
[ 94.300026][ T6526] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.302133][ T6526] page_cache_ra_order+0x4c0/0xd00
[ 94.304003][ T6526] filemap_fault+0x1a5e/0x2740
[ 94.305776][ T6526] __do_fault+0x10a/0x490
[ 94.307453][ T6526] do_pte_missing+0x1a6/0x3fb0
[ 94.309251][ T6526] __handle_mm_fault+0x103d/0x2a40
[ 94.311162][ T6526] handle_mm_fault+0x3fe/0xad0
[ 94.312906][ T6526] do_user_addr_fault+0x60c/0x1370
[ 94.314824][ T6526] exc_page_fault+0x5c/0xc0
[ 94.316481][ T6526] asm_exc_page_fault+0x26/0x30
[ 94.318344][ T6526] page last free pid 6394 tgid 6394 stack trace:
[ 94.320658][ T6526] __free_frozen_pages+0x69d/0xff0
[ 94.322540][ T6526] vfree+0x176/0x960
[ 94.323981][ T6526] kcov_close+0x34/0x60
[ 94.325497][ T6526] __fput+0x3ff/0xb70
[ 94.326970][ T6526] task_work_run+0x14d/0x240
[ 94.328736][ T6526] do_exit+0xafb/0x2c30
[ 94.330246][ T6526] do_group_exit+0xd3/0x2a0
[ 94.331943][ T6526] get_signal+0x2673/0x26d0
[ 94.333595][ T6526] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.335616][ T6526] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.337724][ T6526] do_syscall_64+0xda/0x260
[ 94.339414][ T6526] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.341823][ T6526] Modules linked in:
[ 94.346472][ T6526] CPU: 1 UID: 0 PID: 6526 Comm: syz.0.16 Not tainted 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 94.346494][ T6526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.346502][ T6526] Call Trace:
[ 94.346507][ T6526]
[ 94.346513][ T6526] dump_stack_lvl+0x16c/0x1f0
[ 94.346547][ T6526] bad_page+0xb3/0x1f0
[ 94.346562][ T6526] ? __pfx_bad_page+0x10/0x10
[ 94.346576][ T6526] ? __mem_cgroup_uncharge+0xda/0x130
[ 94.346593][ T6526] free_tail_page_prepare+0x44f/0x5b0
[ 94.346610][ T6526] __free_frozen_pages+0x96a/0xff0
[ 94.346629][ T6526] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 94.346645][ T6526] __folio_put+0x329/0x450
[ 94.346660][ T6526] ? __pfx___folio_put+0x10/0x10
[ 94.346674][ T6526] ? find_held_lock+0x2b/0x80
[ 94.346690][ T6526] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.346704][ T6526] ? mark_held_locks+0x49/0x80
[ 94.346724][ T6526] filemap_free_folio+0x132/0x170
[ 94.346738][ T6526] delete_from_page_cache_batch+0x741/0x9b0
[ 94.346760][ T6526] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.346776][ T6526] ? __pfx_workingset_update_node+0x10/0x10
[ 94.346796][ T6526] truncate_inode_pages_range+0x279/0xe30
[ 94.346818][ T6526] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.346872][ T6526] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.346892][ T6526] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.346912][ T6526] blkdev_flush_mapping+0xfb/0x290
[ 94.346927][ T6526] ? filemap_check_errors+0xa9/0x160
[ 94.346947][ T6526] blkdev_put_whole+0xc4/0xf0
[ 94.346960][ T6526] bdev_release+0x47e/0x6d0
[ 94.346979][ T6526] ? __pfx_blkdev_release+0x10/0x10
[ 94.346994][ T6526] blkdev_release+0x15/0x20
[ 94.347009][ T6526] __fput+0x3ff/0xb70
[ 94.347028][ T6526] task_work_run+0x14d/0x240
[ 94.347043][ T6526] ? __pfx_task_work_run+0x10/0x10
[ 94.347057][ T6526] ? do_raw_spin_unlock+0x172/0x230
[ 94.347074][ T6526] do_exit+0xafb/0x2c30
[ 94.347097][ T6526] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.347121][ T6526] ? __pfx_do_exit+0x10/0x10
[ 94.347138][ T6526] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.347150][ T6526] ? find_held_lock+0x2b/0x80
[ 94.347168][ T6526] do_group_exit+0xd3/0x2a0
[ 94.347188][ T6526] get_signal+0x2673/0x26d0
[ 94.347211][ T6526] ? __pfx_get_signal+0x10/0x10
[ 94.347226][ T6526] ? do_futex+0x122/0x350
[ 94.347243][ T6526] ? __pfx_do_futex+0x10/0x10
[ 94.347261][ T6526] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.347282][ T6526] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.347306][ T6526] ? rcu_is_watching+0x12/0xc0
[ 94.347324][ T6526] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.347354][ T6526] do_syscall_64+0xda/0x260
[ 94.347372][ T6526] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.347385][ T6526] RIP: 0033:0x7fa3d358e969
[ 94.347395][ T6526] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 94.347401][ T6526] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.347414][ T6526] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 94.347422][ T6526] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 94.347430][ T6526] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 94.347438][ T6526] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 94.347445][ T6526] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 94.347463][ T6526]
[ 94.461904][ T6526] Disabling lock debugging due to kernel taint
[ 94.464578][ T6526] BUG: Bad page state in process syz.0.16 pfn:40600
[ 94.467283][ T6526] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x40600
[ 94.470940][ T6526] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 94.474369][ T6526] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 94.478229][ T6526] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.481657][ T6526] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.485153][ T6526] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.488710][ T6526] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.492182][ T6526] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.495682][ T6526] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.499214][ T6526] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 94.502131][ T6526] page_owner tracks the page as allocated
[ 94.504401][ T6526] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6525, tgid 6525 (syz.0.16), ts 94203508565, free_ts 89349938505
[ 94.512557][ T6526] post_alloc_hook+0x181/0x1b0
[ 94.514605][ T6526] prep_new_page+0xa0/0xe0
[ 94.516500][ T6526] get_page_from_freelist+0x135b/0x3800
[ 94.519121][ T6526] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.521522][ T6526] alloc_pages_mpol+0x1fb/0x550
[ 94.523570][ T6526] folio_alloc_noprof+0x20/0x2d0
[ 94.525574][ T6526] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.527955][ T6526] page_cache_ra_order+0x4c0/0xd00
[ 94.530018][ T6526] filemap_fault+0x1a5e/0x2740
[ 94.531967][ T6526] __do_fault+0x10a/0x490
[ 94.533782][ T6526] do_pte_missing+0x1a6/0x3fb0
[ 94.535735][ T6526] __handle_mm_fault+0x103d/0x2a40
[ 94.537915][ T6526] handle_mm_fault+0x3fe/0xad0
[ 94.539953][ T6526] do_user_addr_fault+0x60c/0x1370
[ 94.542142][ T6526] exc_page_fault+0x5c/0xc0
[ 94.544131][ T6526] asm_exc_page_fault+0x26/0x30
[ 94.546120][ T6526] page last free pid 6394 tgid 6394 stack trace:
[ 94.548753][ T6526] __free_frozen_pages+0x69d/0xff0
[ 94.550881][ T6526] vfree+0x176/0x960
[ 94.552475][ T6526] kcov_close+0x34/0x60
[ 94.554171][ T6526] __fput+0x3ff/0xb70
[ 94.555859][ T6526] task_work_run+0x14d/0x240
[ 94.557828][ T6526] do_exit+0xafb/0x2c30
[ 94.558818][ T40] audit: type=1400 audit(1746262691.378:153): avc: denied { rename } for pid=5325 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 94.559513][ T6526] do_group_exit+0xd3/0x2a0
[ 94.566183][ T40] audit: type=1400 audit(1746262691.378:154): avc: denied { unlink } for pid=5325 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 94.566203][ T40] audit: type=1400 audit(1746262691.378:155): avc: denied { create } for pid=5325 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 94.584663][ T6526] get_signal+0x2673/0x26d0
[ 94.586553][ T6526] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.588866][ T6526] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.591188][ T6526] do_syscall_64+0xda/0x260
[ 94.593071][ T6526] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.595494][ T6526] Modules linked in:
[ 94.597131][ T6526] CPU: 0 UID: 0 PID: 6526 Comm: syz.0.16 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 94.597154][ T6526] Tainted: [B]=BAD_PAGE
[ 94.597160][ T6526] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.597169][ T6526] Call Trace:
[ 94.597174][ T6526]
[ 94.597180][ T6526] dump_stack_lvl+0x16c/0x1f0
[ 94.597198][ T6526] bad_page+0xb3/0x1f0
[ 94.597214][ T6526] ? __pfx_bad_page+0x10/0x10
[ 94.597230][ T6526] ? page_bad_reason+0x9d/0x1e0
[ 94.597245][ T6526] __free_frozen_pages+0x76e/0xff0
[ 94.597266][ T6526] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 94.597283][ T6526] __folio_put+0x329/0x450
[ 94.597299][ T6526] ? __pfx___folio_put+0x10/0x10
[ 94.597314][ T6526] ? find_held_lock+0x2b/0x80
[ 94.597344][ T6526] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.597362][ T6526] ? mark_held_locks+0x49/0x80
[ 94.597383][ T6526] filemap_free_folio+0x132/0x170
[ 94.597399][ T6526] delete_from_page_cache_batch+0x741/0x9b0
[ 94.597418][ T6526] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.597435][ T6526] ? __pfx_workingset_update_node+0x10/0x10
[ 94.597455][ T6526] truncate_inode_pages_range+0x279/0xe30
[ 94.597476][ T6526] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.597514][ T6526] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.597537][ T6526] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.597559][ T6526] blkdev_flush_mapping+0xfb/0x290
[ 94.597576][ T6526] ? filemap_check_errors+0xa9/0x160
[ 94.597597][ T6526] blkdev_put_whole+0xc4/0xf0
[ 94.597613][ T6526] bdev_release+0x47e/0x6d0
[ 94.597632][ T6526] ? __pfx_blkdev_release+0x10/0x10
[ 94.597649][ T6526] blkdev_release+0x15/0x20
[ 94.597667][ T6526] __fput+0x3ff/0xb70
[ 94.597685][ T6526] task_work_run+0x14d/0x240
[ 94.597700][ T6526] ? __pfx_task_work_run+0x10/0x10
[ 94.597714][ T6526] ? do_raw_spin_unlock+0x172/0x230
[ 94.597731][ T6526] do_exit+0xafb/0x2c30
[ 94.597752][ T6526] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.597776][ T6526] ? __pfx_do_exit+0x10/0x10
[ 94.597818][ T6526] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.597832][ T6526] ? find_held_lock+0x2b/0x80
[ 94.597850][ T6526] do_group_exit+0xd3/0x2a0
[ 94.597872][ T6526] get_signal+0x2673/0x26d0
[ 94.597893][ T6526] ? __pfx_get_signal+0x10/0x10
[ 94.597909][ T6526] ? do_futex+0x122/0x350
[ 94.597928][ T6526] ? __pfx_do_futex+0x10/0x10
[ 94.597947][ T6526] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.597969][ T6526] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.597992][ T6526] ? rcu_is_watching+0x12/0xc0
[ 94.598011][ T6526] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.598028][ T6526] do_syscall_64+0xda/0x260
[ 94.598046][ T6526] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.598061][ T6526] RIP: 0033:0x7fa3d358e969
[ 94.598072][ T6526] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 94.598079][ T6526] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.598098][ T6526] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 94.598108][ T6526] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 94.598117][ T6526] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 94.598125][ T6526] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 94.598134][ T6526] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 94.598147][ T6526]
[ 94.751293][ T6528] BUG: Bad page state in process syz.0.17 pfn:3a601
[ 94.753428][ T6528] page does not match folio
[ 94.754978][ T6528] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3a601
[ 94.758779][ T6528] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 94.761509][ T6528] raw: 00fff00000000000 ffffea0000e98000 00000000ffffffff ffffffffffffffff
[ 94.764780][ T6528] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.767571][ T6528] page dumped because: nonzero pincount
[ 94.769288][ T6528] page_owner tracks the page as allocated
[ 94.771074][ T6528] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6528, tgid 6528 (syz.0.17), ts 94735487216, free_ts 94726779247
[ 94.777147][ T6528] post_alloc_hook+0x181/0x1b0
[ 94.779097][ T6528] prep_new_page+0xa0/0xe0
[ 94.780660][ T6528] get_page_from_freelist+0x135b/0x3800
[ 94.782510][ T6528] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.784309][ T6528] alloc_pages_mpol+0x1fb/0x550
[ 94.785999][ T6528] folio_alloc_noprof+0x20/0x2d0
[ 94.787761][ T6528] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.789481][ T6528] page_cache_ra_order+0x4c0/0xd00
[ 94.791203][ T6528] filemap_fault+0x1a5e/0x2740
[ 94.792710][ T6528] __do_fault+0x10a/0x490
[ 94.794209][ T6528] do_pte_missing+0x1a6/0x3fb0
[ 94.795701][ T6528] __handle_mm_fault+0x103d/0x2a40
[ 94.797303][ T6528] handle_mm_fault+0x3fe/0xad0
[ 94.798910][ T6528] do_user_addr_fault+0x60c/0x1370
[ 94.800526][ T6528] exc_page_fault+0x5c/0xc0
[ 94.801961][ T6528] asm_exc_page_fault+0x26/0x30
[ 94.803503][ T6528] page last free pid 6526 tgid 6525 stack trace:
[ 94.805420][ T6528] free_unref_folios+0x999/0x1630
[ 94.807060][ T6528] folios_put_refs+0x56f/0x740
[ 94.809234][ T6528] truncate_inode_pages_range+0x311/0xe30
[ 94.811155][ T6528] blkdev_flush_mapping+0xfb/0x290
[ 94.813054][ T6528] blkdev_put_whole+0xc4/0xf0
[ 94.814683][ T6528] bdev_release+0x47e/0x6d0
[ 94.816299][ T6528] blkdev_release+0x15/0x20
[ 94.817964][ T6528] __fput+0x3ff/0xb70
[ 94.819333][ T6528] task_work_run+0x14d/0x240
[ 94.821312][ T6528] do_exit+0xafb/0x2c30
[ 94.822751][ T6528] do_group_exit+0xd3/0x2a0
[ 94.824364][ T6528] get_signal+0x2673/0x26d0
[ 94.825957][ T6528] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.827971][ T6528] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.830016][ T6528] do_syscall_64+0xda/0x260
[ 94.831550][ T6528] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.833588][ T6528] Modules linked in:
[ 94.834871][ T6528] CPU: 2 UID: 0 PID: 6528 Comm: syz.0.17 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 94.834895][ T6528] Tainted: [B]=BAD_PAGE
[ 94.834900][ T6528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.834910][ T6528] Call Trace:
[ 94.834915][ T6528]
[ 94.834922][ T6528] dump_stack_lvl+0x16c/0x1f0
[ 94.834942][ T6528] bad_page+0xb3/0x1f0
[ 94.834959][ T6528] ? __pfx_bad_page+0x10/0x10
[ 94.834976][ T6528] ? __mem_cgroup_uncharge+0xda/0x130
[ 94.834995][ T6528] free_tail_page_prepare+0x44f/0x5b0
[ 94.835016][ T6528] __free_frozen_pages+0x96a/0xff0
[ 94.835040][ T6528] __folio_put+0x329/0x450
[ 94.835057][ T6528] ? __pfx___folio_put+0x10/0x10
[ 94.835074][ T6528] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.835098][ T6528] ? rcu_is_watching+0x12/0xc0
[ 94.835115][ T6528] ? lock_release+0x201/0x2f0
[ 94.835138][ T6528] filemap_free_folio+0x132/0x170
[ 94.835155][ T6528] delete_from_page_cache_batch+0x741/0x9b0
[ 94.835175][ T6528] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.835188][ T6528] ? __pfx_workingset_update_node+0x10/0x10
[ 94.835200][ T6528] ? xas_move_index+0xb0/0x110
[ 94.835212][ T6528] truncate_inode_pages_range+0x279/0xe30
[ 94.835227][ T6528] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.835249][ T6528] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.835265][ T6528] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.835279][ T6528] blkdev_flush_mapping+0xfb/0x290
[ 94.835291][ T6528] blkdev_put_whole+0xc4/0xf0
[ 94.835302][ T6528] bdev_release+0x47e/0x6d0
[ 94.835314][ T6528] ? __pfx_blkdev_release+0x10/0x10
[ 94.835326][ T6528] blkdev_release+0x15/0x20
[ 94.835338][ T6528] __fput+0x3ff/0xb70
[ 94.835349][ T6528] task_work_run+0x14d/0x240
[ 94.835360][ T6528] ? __pfx_task_work_run+0x10/0x10
[ 94.835369][ T6528] ? do_raw_spin_unlock+0x172/0x230
[ 94.835380][ T6528] do_exit+0xafb/0x2c30
[ 94.835395][ T6528] ? __pfx_do_exit+0x10/0x10
[ 94.835408][ T6528] ? preempt_schedule_thunk+0x16/0x30
[ 94.835419][ T6528] do_group_exit+0xd3/0x2a0
[ 94.835434][ T6528] __x64_sys_exit_group+0x3e/0x50
[ 94.835448][ T6528] x64_sys_call+0x1530/0x1730
[ 94.835462][ T6528] do_syscall_64+0xcd/0x260
[ 94.835474][ T6528] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.835484][ T6528] RIP: 0033:0x7fa3d358e969
[ 94.835492][ T6528] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 94.835496][ T6528] RSP: 002b:00007ffd90b4bf88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 94.835506][ T6528] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa3d358e969
[ 94.835512][ T6528] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 94.835518][ T6528] RBP: 00007ffd90b4bfec R08: 0000000690b4c07f R09: 00000000000927c0
[ 94.835524][ T6528] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 94.835529][ T6528] R13: 00000000000927c0 R14: 0000000000016f84 R15: 00007ffd90b4c040
[ 94.835538][ T6528]
[ 94.835553][ T6528] BUG: Bad page state in process syz.0.17 pfn:3a600
[ 94.941851][ T6528] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3a600
[ 94.945351][ T6528] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 94.948807][ T6528] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 94.952266][ T6528] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.955728][ T6528] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.959844][ T6528] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.963475][ T6528] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.967077][ T6528] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.971141][ T6528] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.975002][ T6528] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 94.978213][ T6528] page_owner tracks the page as allocated
[ 94.980634][ T6528] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6528, tgid 6528 (syz.0.17), ts 94735487216, free_ts 94726779247
[ 94.988227][ T6528] post_alloc_hook+0x181/0x1b0
[ 94.990200][ T6528] prep_new_page+0xa0/0xe0
[ 94.992033][ T6528] get_page_from_freelist+0x135b/0x3800
[ 94.994296][ T6528] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.996697][ T6528] alloc_pages_mpol+0x1fb/0x550
[ 94.998805][ T6528] folio_alloc_noprof+0x20/0x2d0
[ 95.000856][ T6528] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.003177][ T6528] page_cache_ra_order+0x4c0/0xd00
[ 95.005286][ T6528] filemap_fault+0x1a5e/0x2740
[ 95.007274][ T6528] __do_fault+0x10a/0x490
[ 95.009183][ T6528] do_pte_missing+0x1a6/0x3fb0
[ 95.012121][ T6528] __handle_mm_fault+0x103d/0x2a40
[ 95.013680][ T6528] handle_mm_fault+0x3fe/0xad0
[ 95.015160][ T6528] do_user_addr_fault+0x60c/0x1370
[ 95.016694][ T6528] exc_page_fault+0x5c/0xc0
[ 95.018172][ T6528] asm_exc_page_fault+0x26/0x30
[ 95.019687][ T6528] page last free pid 6526 tgid 6525 stack trace:
[ 95.021677][ T6528] free_unref_folios+0x999/0x1630
[ 95.023231][ T6528] folios_put_refs+0x56f/0x740
[ 95.024676][ T6528] truncate_inode_pages_range+0x311/0xe30
[ 95.026412][ T6528] blkdev_flush_mapping+0xfb/0x290
[ 95.028067][ T6528] blkdev_put_whole+0xc4/0xf0
[ 95.029548][ T6528] bdev_release+0x47e/0x6d0
[ 95.030970][ T6528] blkdev_release+0x15/0x20
[ 95.032364][ T6528] __fput+0x3ff/0xb70
[ 95.033580][ T6528] task_work_run+0x14d/0x240
[ 95.034994][ T6528] do_exit+0xafb/0x2c30
[ 95.036293][ T6528] do_group_exit+0xd3/0x2a0
[ 95.037750][ T6528] get_signal+0x2673/0x26d0
[ 95.039107][ T6528] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.040804][ T6528] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.042502][ T6528] do_syscall_64+0xda/0x260
[ 95.043897][ T6528] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.045732][ T6528] Modules linked in:
[ 95.047030][ T6528] CPU: 1 UID: 0 PID: 6528 Comm: syz.0.17 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 95.047046][ T6528] Tainted: [B]=BAD_PAGE
[ 95.047049][ T6528] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.047055][ T6528] Call Trace:
[ 95.047059][ T6528]
[ 95.047063][ T6528] dump_stack_lvl+0x16c/0x1f0
[ 95.047079][ T6528] bad_page+0xb3/0x1f0
[ 95.047090][ T6528] ? __pfx_bad_page+0x10/0x10
[ 95.047100][ T6528] ? page_bad_reason+0x9d/0x1e0
[ 95.047110][ T6528] __free_frozen_pages+0x76e/0xff0
[ 95.047125][ T6528] __folio_put+0x329/0x450
[ 95.047136][ T6528] ? __pfx___folio_put+0x10/0x10
[ 95.047146][ T6528] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.047158][ T6528] ? rcu_is_watching+0x12/0xc0
[ 95.047169][ T6528] ? lock_release+0x201/0x2f0
[ 95.047185][ T6528] filemap_free_folio+0x132/0x170
[ 95.047195][ T6528] delete_from_page_cache_batch+0x741/0x9b0
[ 95.047207][ T6528] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.047219][ T6528] ? __pfx_workingset_update_node+0x10/0x10
[ 95.047230][ T6528] ? xas_move_index+0xb0/0x110
[ 95.047242][ T6528] truncate_inode_pages_range+0x279/0xe30
[ 95.047256][ T6528] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.047279][ T6528] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.047295][ T6528] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.047309][ T6528] blkdev_flush_mapping+0xfb/0x290
[ 95.047321][ T6528] blkdev_put_whole+0xc4/0xf0
[ 95.047343][ T6528] bdev_release+0x47e/0x6d0
[ 95.047357][ T6528] ? __pfx_blkdev_release+0x10/0x10
[ 95.047369][ T6528] blkdev_release+0x15/0x20
[ 95.047380][ T6528] __fput+0x3ff/0xb70
[ 95.047392][ T6528] task_work_run+0x14d/0x240
[ 95.047402][ T6528] ? __pfx_task_work_run+0x10/0x10
[ 95.047412][ T6528] ? do_raw_spin_unlock+0x172/0x230
[ 95.047423][ T6528] do_exit+0xafb/0x2c30
[ 95.047437][ T6528] ? __pfx_do_exit+0x10/0x10
[ 95.047451][ T6528] ? preempt_schedule_thunk+0x16/0x30
[ 95.047461][ T6528] do_group_exit+0xd3/0x2a0
[ 95.047476][ T6528] __x64_sys_exit_group+0x3e/0x50
[ 95.047490][ T6528] x64_sys_call+0x1530/0x1730
[ 95.047504][ T6528] do_syscall_64+0xcd/0x260
[ 95.047517][ T6528] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.047526][ T6528] RIP: 0033:0x7fa3d358e969
[ 95.047534][ T6528] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 95.047538][ T6528] RSP: 002b:00007ffd90b4bf88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 95.047548][ T6528] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa3d358e969
[ 95.047554][ T6528] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 95.047559][ T6528] RBP: 00007ffd90b4bfec R08: 0000000690b4c07f R09: 00000000000927c0
[ 95.047565][ T6528] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000001
[ 95.047571][ T6528] R13: 00000000000927c0 R14: 0000000000016f84 R15: 00007ffd90b4c040
[ 95.047579][ T6528]
[ 95.172484][ T6532] BUG: Bad page state in process syz.0.18 pfn:4fc01
[ 95.175495][ T6532] page does not match folio
2025/05/03 08:58:12 executed programs: 4
[ 95.177314][ T6532] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4fc01
[ 95.182192][ T6532] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 95.185101][ T6532] raw: 00fff00000000000 ffffea00013f0000 00000000ffffffff ffffffffffffffff
[ 95.188442][ T6532] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.191970][ T6532] page dumped because: nonzero pincount
[ 95.194435][ T6532] page_owner tracks the page as allocated
[ 95.196582][ T6532] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6531, tgid 6531 (syz.0.18), ts 95140629618, free_ts 95132365642
[ 95.204432][ T6532] post_alloc_hook+0x181/0x1b0
[ 95.206410][ T6532] prep_new_page+0xa0/0xe0
[ 95.208521][ T6532] get_page_from_freelist+0x135b/0x3800
[ 95.210883][ T6532] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.213239][ T6532] alloc_pages_mpol+0x1fb/0x550
[ 95.215422][ T6532] folio_alloc_noprof+0x20/0x2d0
[ 95.217581][ T6532] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.220033][ T6532] page_cache_ra_order+0x4c0/0xd00
[ 95.222143][ T6532] filemap_fault+0x1a5e/0x2740
[ 95.224090][ T6532] __do_fault+0x10a/0x490
[ 95.225868][ T6532] do_pte_missing+0x1a6/0x3fb0
[ 95.228109][ T6532] __handle_mm_fault+0x103d/0x2a40
[ 95.230211][ T6532] handle_mm_fault+0x3fe/0xad0
[ 95.232435][ T6532] do_user_addr_fault+0x60c/0x1370
[ 95.234664][ T6532] exc_page_fault+0x5c/0xc0
[ 95.236504][ T6532] asm_exc_page_fault+0x26/0x30
[ 95.238813][ T6532] page last free pid 6528 tgid 6528 stack trace:
[ 95.241262][ T6532] free_unref_folios+0x999/0x1630
[ 95.243230][ T6532] folios_put_refs+0x56f/0x740
[ 95.245110][ T6532] truncate_inode_pages_range+0x311/0xe30
[ 95.247521][ T6532] blkdev_flush_mapping+0xfb/0x290
[ 95.249847][ T6532] blkdev_put_whole+0xc4/0xf0
[ 95.251790][ T6532] bdev_release+0x47e/0x6d0
[ 95.253648][ T6532] blkdev_release+0x15/0x20
[ 95.255515][ T6532] __fput+0x3ff/0xb70
[ 95.257107][ T6532] task_work_run+0x14d/0x240
[ 95.259087][ T6532] do_exit+0xafb/0x2c30
[ 95.260825][ T6532] do_group_exit+0xd3/0x2a0
[ 95.262688][ T6532] __x64_sys_exit_group+0x3e/0x50
[ 95.264713][ T6532] x64_sys_call+0x1530/0x1730
[ 95.266620][ T6532] do_syscall_64+0xcd/0x260
[ 95.268541][ T6532] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.270941][ T6532] Modules linked in:
[ 95.272314][ T6532] CPU: 0 UID: 0 PID: 6532 Comm: syz.0.18 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 95.272330][ T6532] Tainted: [B]=BAD_PAGE
[ 95.272335][ T6532] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.272341][ T6532] Call Trace:
[ 95.272345][ T6532]
[ 95.272349][ T6532] dump_stack_lvl+0x16c/0x1f0
[ 95.272363][ T6532] bad_page+0xb3/0x1f0
[ 95.272374][ T6532] ? __pfx_bad_page+0x10/0x10
[ 95.272385][ T6532] ? __mem_cgroup_uncharge+0xda/0x130
[ 95.272397][ T6532] free_tail_page_prepare+0x44f/0x5b0
[ 95.272410][ T6532] __free_frozen_pages+0x96a/0xff0
[ 95.272425][ T6532] __folio_put+0x329/0x450
[ 95.272437][ T6532] ? __pfx___folio_put+0x10/0x10
[ 95.272447][ T6532] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.272459][ T6532] ? rcu_is_watching+0x12/0xc0
[ 95.272470][ T6532] ? lock_release+0x201/0x2f0
[ 95.272485][ T6532] filemap_free_folio+0x132/0x170
[ 95.272496][ T6532] delete_from_page_cache_batch+0x741/0x9b0
[ 95.272508][ T6532] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.272520][ T6532] ? __pfx_workingset_update_node+0x10/0x10
[ 95.272530][ T6532] ? xas_move_index+0xb0/0x110
[ 95.272543][ T6532] truncate_inode_pages_range+0x279/0xe30
[ 95.272557][ T6532] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.272580][ T6532] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.272595][ T6532] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.272610][ T6532] blkdev_flush_mapping+0xfb/0x290
[ 95.272622][ T6532] ? filemap_check_errors+0xa9/0x160
[ 95.272636][ T6532] blkdev_put_whole+0xc4/0xf0
[ 95.272646][ T6532] bdev_release+0x47e/0x6d0
[ 95.272659][ T6532] ? __pfx_blkdev_release+0x10/0x10
[ 95.272671][ T6532] blkdev_release+0x15/0x20
[ 95.272683][ T6532] __fput+0x3ff/0xb70
[ 95.272694][ T6532] task_work_run+0x14d/0x240
[ 95.272705][ T6532] ? __pfx_task_work_run+0x10/0x10
[ 95.272715][ T6532] ? do_raw_spin_unlock+0x172/0x230
[ 95.272726][ T6532] do_exit+0xafb/0x2c30
[ 95.272739][ T6532] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.272756][ T6532] ? __pfx_do_exit+0x10/0x10
[ 95.272769][ T6532] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.272779][ T6532] ? get_signal+0x8f5/0x26d0
[ 95.272790][ T6532] ? rcu_is_watching+0x12/0xc0
[ 95.272801][ T6532] do_group_exit+0xd3/0x2a0
[ 95.272816][ T6532] get_signal+0x2673/0x26d0
[ 95.272830][ T6532] ? __pfx_get_signal+0x10/0x10
[ 95.272842][ T6532] ? do_futex+0x122/0x350
[ 95.272855][ T6532] ? __pfx_do_futex+0x10/0x10
[ 95.272868][ T6532] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.272883][ T6532] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.272899][ T6532] ? madvise_unlock+0xc6/0x190
[ 95.272910][ T6532] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.272927][ T6532] do_syscall_64+0xda/0x260
[ 95.272940][ T6532] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.272950][ T6532] RIP: 0033:0x7fa3d358e969
[ 95.272957][ T6532] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 95.272961][ T6532] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.272971][ T6532] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 95.272977][ T6532] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 95.272983][ T6532] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.272989][ T6532] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 95.272995][ T6532] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 95.273003][ T6532]
[ 95.273017][ T6532] BUG: Bad page state in process syz.0.18 pfn:4fc00
[ 95.407675][ T6532] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4fc00
[ 95.411012][ T6532] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 95.414609][ T6532] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 95.418389][ T6532] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.421790][ T6532] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.425276][ T6532] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.428810][ T6532] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.432268][ T6532] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.435201][ T6532] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.438324][ T6532] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 95.440583][ T6532] page_owner tracks the page as allocated
[ 95.442361][ T6532] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6531, tgid 6531 (syz.0.18), ts 95140629618, free_ts 95132365642
[ 95.448280][ T6532] post_alloc_hook+0x181/0x1b0
[ 95.449790][ T6532] prep_new_page+0xa0/0xe0
[ 95.451483][ T6532] get_page_from_freelist+0x135b/0x3800
[ 95.453380][ T6532] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.455200][ T6532] alloc_pages_mpol+0x1fb/0x550
[ 95.456645][ T6532] folio_alloc_noprof+0x20/0x2d0
[ 95.458226][ T6532] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.460156][ T6532] page_cache_ra_order+0x4c0/0xd00
[ 95.462143][ T6532] filemap_fault+0x1a5e/0x2740
[ 95.463767][ T6532] __do_fault+0x10a/0x490
[ 95.465099][ T6532] do_pte_missing+0x1a6/0x3fb0
[ 95.466556][ T6532] __handle_mm_fault+0x103d/0x2a40
[ 95.468246][ T6532] handle_mm_fault+0x3fe/0xad0
[ 95.469841][ T6532] do_user_addr_fault+0x60c/0x1370
[ 95.471945][ T6532] exc_page_fault+0x5c/0xc0
[ 95.473640][ T6532] asm_exc_page_fault+0x26/0x30
[ 95.475330][ T6532] page last free pid 6528 tgid 6528 stack trace:
[ 95.477268][ T6532] free_unref_folios+0x999/0x1630
[ 95.479156][ T6532] folios_put_refs+0x56f/0x740
[ 95.480949][ T6532] truncate_inode_pages_range+0x311/0xe30
[ 95.483175][ T6532] blkdev_flush_mapping+0xfb/0x290
[ 95.484980][ T6532] blkdev_put_whole+0xc4/0xf0
[ 95.486358][ T6532] bdev_release+0x47e/0x6d0
[ 95.488109][ T6532] blkdev_release+0x15/0x20
[ 95.489719][ T6532] __fput+0x3ff/0xb70
[ 95.491358][ T6532] task_work_run+0x14d/0x240
[ 95.492758][ T6532] do_exit+0xafb/0x2c30
[ 95.494065][ T6532] do_group_exit+0xd3/0x2a0
[ 95.495776][ T6532] __x64_sys_exit_group+0x3e/0x50
[ 95.497834][ T6532] x64_sys_call+0x1530/0x1730
[ 95.499627][ T6532] do_syscall_64+0xcd/0x260
[ 95.501295][ T6532] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.503424][ T6532] Modules linked in:
[ 95.504991][ T6532] CPU: 1 UID: 0 PID: 6532 Comm: syz.0.18 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 95.505016][ T6532] Tainted: [B]=BAD_PAGE
[ 95.505021][ T6532] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.505030][ T6532] Call Trace:
[ 95.505035][ T6532]
[ 95.505040][ T6532] dump_stack_lvl+0x16c/0x1f0
[ 95.505059][ T6532] bad_page+0xb3/0x1f0
[ 95.505076][ T6532] ? __pfx_bad_page+0x10/0x10
[ 95.505091][ T6532] ? page_bad_reason+0x9d/0x1e0
[ 95.505107][ T6532] __free_frozen_pages+0x76e/0xff0
[ 95.505127][ T6532] __folio_put+0x329/0x450
[ 95.505138][ T6532] ? __pfx___folio_put+0x10/0x10
[ 95.505149][ T6532] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.505160][ T6532] ? rcu_is_watching+0x12/0xc0
[ 95.505172][ T6532] ? lock_release+0x201/0x2f0
[ 95.505187][ T6532] filemap_free_folio+0x132/0x170
[ 95.505201][ T6532] delete_from_page_cache_batch+0x741/0x9b0
[ 95.505219][ T6532] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.505236][ T6532] ? __pfx_workingset_update_node+0x10/0x10
[ 95.505257][ T6532] ? xas_move_index+0xb0/0x110
[ 95.505275][ T6532] truncate_inode_pages_range+0x279/0xe30
[ 95.505292][ T6532] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.505315][ T6532] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.505331][ T6532] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.505345][ T6532] blkdev_flush_mapping+0xfb/0x290
[ 95.505357][ T6532] ? filemap_check_errors+0xa9/0x160
[ 95.505371][ T6532] blkdev_put_whole+0xc4/0xf0
[ 95.505382][ T6532] bdev_release+0x47e/0x6d0
[ 95.505395][ T6532] ? __pfx_blkdev_release+0x10/0x10
[ 95.505407][ T6532] blkdev_release+0x15/0x20
[ 95.505419][ T6532] __fput+0x3ff/0xb70
[ 95.505431][ T6532] task_work_run+0x14d/0x240
[ 95.505441][ T6532] ? __pfx_task_work_run+0x10/0x10
[ 95.505451][ T6532] ? do_raw_spin_unlock+0x172/0x230
[ 95.505462][ T6532] do_exit+0xafb/0x2c30
[ 95.505476][ T6532] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.505492][ T6532] ? __pfx_do_exit+0x10/0x10
[ 95.505506][ T6532] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.505515][ T6532] ? get_signal+0x8f5/0x26d0
[ 95.505527][ T6532] ? rcu_is_watching+0x12/0xc0
[ 95.505538][ T6532] do_group_exit+0xd3/0x2a0
[ 95.505553][ T6532] get_signal+0x2673/0x26d0
[ 95.505566][ T6532] ? __pfx_get_signal+0x10/0x10
[ 95.505578][ T6532] ? do_futex+0x122/0x350
[ 95.505590][ T6532] ? __pfx_do_futex+0x10/0x10
[ 95.505603][ T6532] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.505618][ T6532] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.505633][ T6532] ? madvise_unlock+0xc6/0x190
[ 95.505644][ T6532] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.505657][ T6532] do_syscall_64+0xda/0x260
[ 95.505669][ T6532] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.505679][ T6532] RIP: 0033:0x7fa3d358e969
[ 95.505687][ T6532] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 95.505692][ T6532] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.505702][ T6532] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 95.505708][ T6532] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 95.505714][ T6532] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.505720][ T6532] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 95.505725][ T6532] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 95.505734][ T6532]
[ 95.656302][ T6536] BUG: Bad page state in process syz.0.19 pfn:50001
[ 95.658465][ T6536] page does not match folio
[ 95.659886][ T6536] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50001
[ 95.662943][ T6536] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 95.665273][ T6536] raw: 00fff00000000000 ffffea0001400000 00000000ffffffff ffffffffffffffff
[ 95.668805][ T6536] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.672187][ T6536] page dumped because: nonzero pincount
[ 95.674463][ T6536] page_owner tracks the page as allocated
[ 95.676791][ T6536] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6535, tgid 6535 (syz.0.19), ts 95632601484, free_ts 0
[ 95.684445][ T6536] post_alloc_hook+0x181/0x1b0
[ 95.686467][ T6536] prep_new_page+0xa0/0xe0
[ 95.689476][ T6536] get_page_from_freelist+0x135b/0x3800
[ 95.691234][ T6536] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.693023][ T6536] alloc_pages_mpol+0x1fb/0x550
[ 95.694588][ T6536] folio_alloc_noprof+0x20/0x2d0
[ 95.696271][ T6536] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.698062][ T6536] page_cache_ra_order+0x4c0/0xd00
[ 95.699645][ T6536] filemap_fault+0x1a5e/0x2740
[ 95.701123][ T6536] __do_fault+0x10a/0x490
[ 95.702484][ T6536] do_pte_missing+0x1a6/0x3fb0
[ 95.703986][ T6536] __handle_mm_fault+0x103d/0x2a40
[ 95.705637][ T6536] handle_mm_fault+0x3fe/0xad0
[ 95.707108][ T6536] do_user_addr_fault+0x60c/0x1370
[ 95.708922][ T6536] exc_page_fault+0x5c/0xc0
[ 95.710801][ T6536] asm_exc_page_fault+0x26/0x30
[ 95.712687][ T6536] page_owner free stack trace missing
[ 95.714874][ T6536] Modules linked in:
[ 95.716425][ T6536] CPU: 0 UID: 0 PID: 6536 Comm: syz.0.19 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 95.716448][ T6536] Tainted: [B]=BAD_PAGE
[ 95.716454][ T6536] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.716463][ T6536] Call Trace:
[ 95.716470][ T6536]
[ 95.716476][ T6536] dump_stack_lvl+0x16c/0x1f0
[ 95.716498][ T6536] bad_page+0xb3/0x1f0
[ 95.716514][ T6536] ? __pfx_bad_page+0x10/0x10
[ 95.716530][ T6536] ? __mem_cgroup_uncharge+0xda/0x130
[ 95.716549][ T6536] free_tail_page_prepare+0x44f/0x5b0
[ 95.716570][ T6536] __free_frozen_pages+0x96a/0xff0
[ 95.716593][ T6536] __folio_put+0x329/0x450
[ 95.716608][ T6536] ? __pfx___folio_put+0x10/0x10
[ 95.716622][ T6536] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.716636][ T6536] ? rcu_is_watching+0x12/0xc0
[ 95.716651][ T6536] ? lock_release+0x201/0x2f0
[ 95.716669][ T6536] filemap_free_folio+0x132/0x170
[ 95.716683][ T6536] delete_from_page_cache_batch+0x741/0x9b0
[ 95.716699][ T6536] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.716714][ T6536] ? __pfx_workingset_update_node+0x10/0x10
[ 95.716728][ T6536] ? xas_move_index+0xb0/0x110
[ 95.716744][ T6536] truncate_inode_pages_range+0x279/0xe30
[ 95.716763][ T6536] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.716793][ T6536] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.716813][ T6536] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.716832][ T6536] blkdev_flush_mapping+0xfb/0x290
[ 95.716846][ T6536] ? filemap_check_errors+0xa9/0x160
[ 95.716864][ T6536] blkdev_put_whole+0xc4/0xf0
[ 95.716878][ T6536] bdev_release+0x47e/0x6d0
[ 95.716894][ T6536] ? __pfx_blkdev_release+0x10/0x10
[ 95.716909][ T6536] blkdev_release+0x15/0x20
[ 95.716924][ T6536] __fput+0x3ff/0xb70
[ 95.716939][ T6536] task_work_run+0x14d/0x240
[ 95.716953][ T6536] ? __pfx_task_work_run+0x10/0x10
[ 95.716966][ T6536] ? do_raw_spin_unlock+0x172/0x230
[ 95.716980][ T6536] do_exit+0xafb/0x2c30
[ 95.716998][ T6536] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.717018][ T6536] ? __pfx_do_exit+0x10/0x10
[ 95.717036][ T6536] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.717048][ T6536] ? get_signal+0x8f5/0x26d0
[ 95.717063][ T6536] ? rcu_is_watching+0x12/0xc0
[ 95.717078][ T6536] do_group_exit+0xd3/0x2a0
[ 95.717096][ T6536] get_signal+0x2673/0x26d0
[ 95.717114][ T6536] ? __pfx_get_signal+0x10/0x10
[ 95.717128][ T6536] ? do_futex+0x122/0x350
[ 95.717145][ T6536] ? __pfx_do_futex+0x10/0x10
[ 95.717161][ T6536] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.717180][ T6536] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.717199][ T6536] ? madvise_unlock+0xc6/0x190
[ 95.717214][ T6536] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.717230][ T6536] do_syscall_64+0xda/0x260
[ 95.717246][ T6536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.717259][ T6536] RIP: 0033:0x7fa3d358e969
[ 95.717268][ T6536] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 95.717274][ T6536] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.717291][ T6536] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 95.717299][ T6536] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 95.717308][ T6536] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.717316][ T6536] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 95.717325][ T6536] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 95.717354][ T6536]
[ 95.842553][ T6536] BUG: Bad page state in process syz.0.19 pfn:50000
[ 95.844576][ T6536] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50000
[ 95.847597][ T6536] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 95.850645][ T6536] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 95.854075][ T6536] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.857655][ T6536] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.860385][ T6536] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.863123][ T6536] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.866124][ T6536] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.869871][ T6536] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.873465][ T6536] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 95.876305][ T6536] page_owner tracks the page as allocated
[ 95.878714][ T6536] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6535, tgid 6535 (syz.0.19), ts 95632601484, free_ts 0
[ 95.886143][ T6536] post_alloc_hook+0x181/0x1b0
[ 95.888280][ T6536] prep_new_page+0xa0/0xe0
[ 95.890179][ T6536] get_page_from_freelist+0x135b/0x3800
[ 95.892499][ T6536] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.895011][ T6536] alloc_pages_mpol+0x1fb/0x550
[ 95.896884][ T6536] folio_alloc_noprof+0x20/0x2d0
[ 95.898811][ T6536] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.901023][ T6536] page_cache_ra_order+0x4c0/0xd00
[ 95.902769][ T6536] filemap_fault+0x1a5e/0x2740
[ 95.904274][ T6536] __do_fault+0x10a/0x490
[ 95.905603][ T6536] do_pte_missing+0x1a6/0x3fb0
[ 95.907100][ T6536] __handle_mm_fault+0x103d/0x2a40
[ 95.908761][ T6536] handle_mm_fault+0x3fe/0xad0
[ 95.910145][ T6536] do_user_addr_fault+0x60c/0x1370
[ 95.911869][ T6536] exc_page_fault+0x5c/0xc0
[ 95.913348][ T6536] asm_exc_page_fault+0x26/0x30
[ 95.914974][ T6536] page_owner free stack trace missing
[ 95.916728][ T6536] Modules linked in:
[ 95.918339][ T6536] CPU: 2 UID: 0 PID: 6536 Comm: syz.0.19 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 95.918356][ T6536] Tainted: [B]=BAD_PAGE
[ 95.918360][ T6536] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.918365][ T6536] Call Trace:
[ 95.918369][ T6536]
[ 95.918372][ T6536] dump_stack_lvl+0x16c/0x1f0
[ 95.918387][ T6536] bad_page+0xb3/0x1f0
[ 95.918399][ T6536] ? __pfx_bad_page+0x10/0x10
[ 95.918409][ T6536] ? page_bad_reason+0x9d/0x1e0
[ 95.918419][ T6536] __free_frozen_pages+0x76e/0xff0
[ 95.918434][ T6536] __folio_put+0x329/0x450
[ 95.918445][ T6536] ? __pfx___folio_put+0x10/0x10
[ 95.918456][ T6536] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.918468][ T6536] ? rcu_is_watching+0x12/0xc0
[ 95.918480][ T6536] ? lock_release+0x201/0x2f0
[ 95.918496][ T6536] filemap_free_folio+0x132/0x170
[ 95.918507][ T6536] delete_from_page_cache_batch+0x741/0x9b0
[ 95.918519][ T6536] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.918532][ T6536] ? __pfx_workingset_update_node+0x10/0x10
[ 95.918543][ T6536] ? xas_move_index+0xb0/0x110
[ 95.918557][ T6536] truncate_inode_pages_range+0x279/0xe30
[ 95.918572][ T6536] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.918594][ T6536] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.918610][ T6536] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.918624][ T6536] blkdev_flush_mapping+0xfb/0x290
[ 95.918636][ T6536] ? filemap_check_errors+0xa9/0x160
[ 95.918650][ T6536] blkdev_put_whole+0xc4/0xf0
[ 95.918661][ T6536] bdev_release+0x47e/0x6d0
[ 95.918673][ T6536] ? __pfx_blkdev_release+0x10/0x10
[ 95.918685][ T6536] blkdev_release+0x15/0x20
[ 95.918697][ T6536] __fput+0x3ff/0xb70
[ 95.918709][ T6536] task_work_run+0x14d/0x240
[ 95.918719][ T6536] ? __pfx_task_work_run+0x10/0x10
[ 95.918729][ T6536] ? do_raw_spin_unlock+0x172/0x230
[ 95.918740][ T6536] do_exit+0xafb/0x2c30
[ 95.918754][ T6536] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.918770][ T6536] ? __pfx_do_exit+0x10/0x10
[ 95.918784][ T6536] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.918793][ T6536] ? get_signal+0x8f5/0x26d0
[ 95.918804][ T6536] ? rcu_is_watching+0x12/0xc0
[ 95.918816][ T6536] do_group_exit+0xd3/0x2a0
[ 95.918831][ T6536] get_signal+0x2673/0x26d0
[ 95.918856][ T6536] ? __pfx_get_signal+0x10/0x10
[ 95.918867][ T6536] ? do_futex+0x122/0x350
[ 95.918880][ T6536] ? __pfx_do_futex+0x10/0x10
[ 95.918893][ T6536] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.918907][ T6536] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.918922][ T6536] ? madvise_unlock+0xc6/0x190
[ 95.918933][ T6536] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.918946][ T6536] do_syscall_64+0xda/0x260
[ 95.918958][ T6536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.918968][ T6536] RIP: 0033:0x7fa3d358e969
[ 95.918976][ T6536] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 95.918980][ T6536] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.918990][ T6536] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 95.918996][ T6536] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 95.919001][ T6536] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.919007][ T6536] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 95.919013][ T6536] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 95.919021][ T6536]
[ 96.045024][ T6538] BUG: Bad page state in process syz.0.20 pfn:50201
[ 96.047041][ T6538] page does not match folio
[ 96.048571][ T6538] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50201
[ 96.051537][ T6538] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 96.053750][ T6538] raw: 00fff00000000000 ffffea0001408000 00000000ffffffff ffffffffffffffff
[ 96.056235][ T6538] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.058841][ T6538] page dumped because: nonzero pincount
[ 96.060533][ T6538] page_owner tracks the page as allocated
[ 96.062210][ T6538] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6537, tgid 6537 (syz.0.20), ts 95925442882, free_ts 95919177353
[ 96.067915][ T6538] post_alloc_hook+0x181/0x1b0
[ 96.069355][ T6538] prep_new_page+0xa0/0xe0
[ 96.070728][ T6538] get_page_from_freelist+0x135b/0x3800
[ 96.072377][ T6538] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.074122][ T6538] alloc_pages_mpol+0x1fb/0x550
[ 96.075585][ T6538] folio_alloc_noprof+0x20/0x2d0
[ 96.077046][ T6538] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.078818][ T6538] page_cache_ra_order+0x4c0/0xd00
[ 96.080353][ T6538] filemap_fault+0x1a5e/0x2740
[ 96.081874][ T6538] __do_fault+0x10a/0x490
[ 96.083156][ T6538] do_pte_missing+0x1a6/0x3fb0
[ 96.084566][ T6538] __handle_mm_fault+0x103d/0x2a40
[ 96.086061][ T6538] handle_mm_fault+0x3fe/0xad0
[ 96.087601][ T6538] do_user_addr_fault+0x60c/0x1370
[ 96.089137][ T6538] exc_page_fault+0x5c/0xc0
[ 96.090556][ T6538] asm_exc_page_fault+0x26/0x30
[ 96.091984][ T6538] page last free pid 6536 tgid 6535 stack trace:
[ 96.093864][ T6538] free_unref_folios+0x999/0x1630
[ 96.095378][ T6538] folios_put_refs+0x56f/0x740
[ 96.096790][ T6538] truncate_inode_pages_range+0x311/0xe30
[ 96.098534][ T6538] blkdev_flush_mapping+0xfb/0x290
[ 96.100047][ T6538] blkdev_put_whole+0xc4/0xf0
[ 96.101472][ T6538] bdev_release+0x47e/0x6d0
[ 96.102916][ T6538] blkdev_release+0x15/0x20
[ 96.104272][ T6538] __fput+0x3ff/0xb70
[ 96.105463][ T6538] task_work_run+0x14d/0x240
[ 96.106857][ T6538] do_exit+0xafb/0x2c30
[ 96.108188][ T6538] do_group_exit+0xd3/0x2a0
[ 96.109573][ T6538] get_signal+0x2673/0x26d0
[ 96.110955][ T6538] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.112576][ T6538] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.114271][ T6538] do_syscall_64+0xda/0x260
[ 96.115653][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.117607][ T6538] Modules linked in:
[ 96.118817][ T6538] CPU: 1 UID: 0 PID: 6538 Comm: syz.0.20 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 96.118844][ T6538] Tainted: [B]=BAD_PAGE
[ 96.118848][ T6538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.118854][ T6538] Call Trace:
[ 96.118858][ T6538]
[ 96.118861][ T6538] dump_stack_lvl+0x16c/0x1f0
[ 96.118875][ T6538] bad_page+0xb3/0x1f0
[ 96.118886][ T6538] ? __pfx_bad_page+0x10/0x10
[ 96.118896][ T6538] ? __mem_cgroup_uncharge+0xda/0x130
[ 96.118908][ T6538] free_tail_page_prepare+0x44f/0x5b0
[ 96.118921][ T6538] __free_frozen_pages+0x96a/0xff0
[ 96.118936][ T6538] __folio_put+0x329/0x450
[ 96.118946][ T6538] ? __pfx___folio_put+0x10/0x10
[ 96.118957][ T6538] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.118969][ T6538] ? rcu_is_watching+0x12/0xc0
[ 96.118980][ T6538] ? lock_release+0x201/0x2f0
[ 96.118995][ T6538] filemap_free_folio+0x132/0x170
[ 96.119006][ T6538] delete_from_page_cache_batch+0x741/0x9b0
[ 96.119018][ T6538] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.119030][ T6538] ? __pfx_workingset_update_node+0x10/0x10
[ 96.119041][ T6538] ? xas_move_index+0xb0/0x110
[ 96.119053][ T6538] truncate_inode_pages_range+0x279/0xe30
[ 96.119068][ T6538] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.119093][ T6538] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.119109][ T6538] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.119123][ T6538] blkdev_flush_mapping+0xfb/0x290
[ 96.119135][ T6538] ? filemap_check_errors+0xa9/0x160
[ 96.119150][ T6538] blkdev_put_whole+0xc4/0xf0
[ 96.119160][ T6538] bdev_release+0x47e/0x6d0
[ 96.119172][ T6538] ? __pfx_blkdev_release+0x10/0x10
[ 96.119184][ T6538] blkdev_release+0x15/0x20
[ 96.119196][ T6538] __fput+0x3ff/0xb70
[ 96.119208][ T6538] task_work_run+0x14d/0x240
[ 96.119218][ T6538] ? __pfx_task_work_run+0x10/0x10
[ 96.119228][ T6538] ? do_raw_spin_unlock+0x172/0x230
[ 96.119239][ T6538] do_exit+0xafb/0x2c30
[ 96.119252][ T6538] ? __pfx_futex_wake_mark+0x10/0x10
[ 96.119269][ T6538] ? __pfx_do_exit+0x10/0x10
[ 96.119282][ T6538] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.119292][ T6538] ? get_signal+0x8f5/0x26d0
[ 96.119303][ T6538] ? rcu_is_watching+0x12/0xc0
[ 96.119314][ T6538] do_group_exit+0xd3/0x2a0
[ 96.119329][ T6538] get_signal+0x2673/0x26d0
[ 96.119343][ T6538] ? __pfx_get_signal+0x10/0x10
[ 96.119354][ T6538] ? do_futex+0x122/0x350
[ 96.119368][ T6538] ? __pfx_do_futex+0x10/0x10
[ 96.119381][ T6538] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.119395][ T6538] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.119410][ T6538] ? madvise_unlock+0xc6/0x190
[ 96.119421][ T6538] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.119434][ T6538] do_syscall_64+0xda/0x260
[ 96.119446][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.119456][ T6538] RIP: 0033:0x7fa3d358e969
[ 96.119463][ T6538] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 96.119467][ T6538] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.119477][ T6538] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 96.119483][ T6538] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 96.119489][ T6538] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 96.119494][ T6538] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 96.119500][ T6538] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 96.119508][ T6538]
[ 96.119523][ T6538] BUG: Bad page state in process syz.0.20 pfn:50200
[ 96.223871][ T6538] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50200
[ 96.226456][ T6538] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 96.229079][ T6538] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 96.231715][ T6538] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.234370][ T6538] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.236859][ T6538] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.242193][ T6538] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.244743][ T6538] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.247272][ T6538] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.249972][ T6538] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 96.252187][ T6538] page_owner tracks the page as allocated
[ 96.253855][ T6538] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6537, tgid 6537 (syz.0.20), ts 95925442882, free_ts 95919177353
[ 96.257492][ T5947] Bluetooth: hci0: command tx timeout
[ 96.259695][ T6538] post_alloc_hook+0x181/0x1b0
[ 96.262773][ T6538] prep_new_page+0xa0/0xe0
[ 96.264100][ T6538] get_page_from_freelist+0x135b/0x3800
[ 96.265745][ T6538] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.267598][ T6538] alloc_pages_mpol+0x1fb/0x550
[ 96.269033][ T6538] folio_alloc_noprof+0x20/0x2d0
[ 96.270540][ T6538] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.272235][ T6538] page_cache_ra_order+0x4c0/0xd00
[ 96.273725][ T6538] filemap_fault+0x1a5e/0x2740
[ 96.275435][ T6538] __do_fault+0x10a/0x490
[ 96.276900][ T6538] do_pte_missing+0x1a6/0x3fb0
[ 96.278632][ T6538] __handle_mm_fault+0x103d/0x2a40
[ 96.280647][ T6538] handle_mm_fault+0x3fe/0xad0
[ 96.282507][ T6538] do_user_addr_fault+0x60c/0x1370
[ 96.284239][ T6538] exc_page_fault+0x5c/0xc0
[ 96.285979][ T6538] asm_exc_page_fault+0x26/0x30
[ 96.287600][ T6538] page last free pid 6536 tgid 6535 stack trace:
[ 96.289471][ T6538] free_unref_folios+0x999/0x1630
[ 96.291240][ T6538] folios_put_refs+0x56f/0x740
[ 96.292859][ T6538] truncate_inode_pages_range+0x311/0xe30
[ 96.294570][ T6538] blkdev_flush_mapping+0xfb/0x290
[ 96.296074][ T6538] blkdev_put_whole+0xc4/0xf0
[ 96.297510][ T6538] bdev_release+0x47e/0x6d0
[ 96.298874][ T6538] blkdev_release+0x15/0x20
[ 96.300220][ T6538] __fput+0x3ff/0xb70
[ 96.301395][ T6538] task_work_run+0x14d/0x240
[ 96.302798][ T6538] do_exit+0xafb/0x2c30
[ 96.304047][ T6538] do_group_exit+0xd3/0x2a0
[ 96.305404][ T6538] get_signal+0x2673/0x26d0
[ 96.306765][ T6538] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.308534][ T6538] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.310719][ T6538] do_syscall_64+0xda/0x260
[ 96.312441][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.314678][ T6538] Modules linked in:
[ 96.316190][ T6538] CPU: 0 UID: 0 PID: 6538 Comm: syz.0.20 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 96.316214][ T6538] Tainted: [B]=BAD_PAGE
[ 96.316219][ T6538] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.316225][ T6538] Call Trace:
[ 96.316231][ T6538]
[ 96.316237][ T6538] dump_stack_lvl+0x16c/0x1f0
[ 96.316255][ T6538] bad_page+0xb3/0x1f0
[ 96.316271][ T6538] ? __pfx_bad_page+0x10/0x10
[ 96.316295][ T6538] ? page_bad_reason+0x9d/0x1e0
[ 96.316309][ T6538] __free_frozen_pages+0x76e/0xff0
[ 96.316329][ T6538] __folio_put+0x329/0x450
[ 96.316344][ T6538] ? __pfx___folio_put+0x10/0x10
[ 96.316360][ T6538] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.316376][ T6538] ? rcu_is_watching+0x12/0xc0
[ 96.316392][ T6538] ? lock_release+0x201/0x2f0
[ 96.316411][ T6538] filemap_free_folio+0x132/0x170
[ 96.316425][ T6538] delete_from_page_cache_batch+0x741/0x9b0
[ 96.316443][ T6538] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.316460][ T6538] ? __pfx_workingset_update_node+0x10/0x10
[ 96.316476][ T6538] ? xas_move_index+0xb0/0x110
[ 96.316494][ T6538] truncate_inode_pages_range+0x279/0xe30
[ 96.316512][ T6538] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.316546][ T6538] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.316568][ T6538] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.316588][ T6538] blkdev_flush_mapping+0xfb/0x290
[ 96.316604][ T6538] ? filemap_check_errors+0xa9/0x160
[ 96.316622][ T6538] blkdev_put_whole+0xc4/0xf0
[ 96.316638][ T6538] bdev_release+0x47e/0x6d0
[ 96.316655][ T6538] ? __pfx_blkdev_release+0x10/0x10
[ 96.316672][ T6538] blkdev_release+0x15/0x20
[ 96.316689][ T6538] __fput+0x3ff/0xb70
[ 96.316706][ T6538] task_work_run+0x14d/0x240
[ 96.316718][ T6538] ? __pfx_task_work_run+0x10/0x10
[ 96.316732][ T6538] ? do_raw_spin_unlock+0x172/0x230
[ 96.316748][ T6538] do_exit+0xafb/0x2c30
[ 96.316768][ T6538] ? __pfx_futex_wake_mark+0x10/0x10
[ 96.316791][ T6538] ? __pfx_do_exit+0x10/0x10
[ 96.316806][ T6538] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.316821][ T6538] ? get_signal+0x8f5/0x26d0
[ 96.316837][ T6538] ? rcu_is_watching+0x12/0xc0
[ 96.316853][ T6538] do_group_exit+0xd3/0x2a0
[ 96.316874][ T6538] get_signal+0x2673/0x26d0
[ 96.316893][ T6538] ? __pfx_get_signal+0x10/0x10
[ 96.316907][ T6538] ? do_futex+0x122/0x350
[ 96.316924][ T6538] ? __pfx_do_futex+0x10/0x10
[ 96.316943][ T6538] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.316964][ T6538] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.316985][ T6538] ? madvise_unlock+0xc6/0x190
[ 96.316998][ T6538] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.317016][ T6538] do_syscall_64+0xda/0x260
[ 96.317033][ T6538] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.317048][ T6538] RIP: 0033:0x7fa3d358e969
[ 96.317059][ T6538] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 96.317065][ T6538] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.317079][ T6538] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 96.317089][ T6538] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 96.317095][ T6538] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 96.317101][ T6538] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 96.317110][ T6538] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 96.317123][ T6538]
[ 96.469419][ T6542] BUG: Bad page state in process syz.0.21 pfn:4fe01
[ 96.471421][ T6542] page does not match folio
[ 96.472797][ T6542] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4fe01
[ 96.476051][ T6542] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 96.479133][ T6542] raw: 00fff00000000000 ffffea00013f8000 00000000ffffffff ffffffffffffffff
[ 96.481841][ T6542] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.484329][ T6542] page dumped because: nonzero pincount
[ 96.485988][ T6542] page_owner tracks the page as allocated
[ 96.487803][ T6542] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6541, tgid 6541 (syz.0.21), ts 96446985291, free_ts 95505846980
[ 96.493635][ T6542] post_alloc_hook+0x181/0x1b0
[ 96.495085][ T6542] prep_new_page+0xa0/0xe0
[ 96.496448][ T6542] get_page_from_freelist+0x135b/0x3800
[ 96.499015][ T6542] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.501319][ T6542] alloc_pages_mpol+0x1fb/0x550
[ 96.502887][ T6542] folio_alloc_noprof+0x20/0x2d0
[ 96.504406][ T6542] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.506133][ T6542] page_cache_ra_order+0x4c0/0xd00
[ 96.507733][ T6542] filemap_fault+0x1a5e/0x2740
[ 96.509148][ T6542] __do_fault+0x10a/0x490
[ 96.510475][ T6542] do_pte_missing+0x1a6/0x3fb0
[ 96.511921][ T6542] __handle_mm_fault+0x103d/0x2a40
[ 96.513504][ T6542] handle_mm_fault+0x3fe/0xad0
[ 96.515140][ T6542] do_user_addr_fault+0x60c/0x1370
[ 96.516676][ T6542] exc_page_fault+0x5c/0xc0
[ 96.518263][ T6542] asm_exc_page_fault+0x26/0x30
[ 96.519745][ T6542] page last free pid 6532 tgid 6531 stack trace:
[ 96.521639][ T6542] free_unref_folios+0x999/0x1630
[ 96.523256][ T6542] folios_put_refs+0x56f/0x740
[ 96.524699][ T6542] truncate_inode_pages_range+0x311/0xe30
[ 96.526417][ T6542] blkdev_flush_mapping+0xfb/0x290
[ 96.528227][ T6542] blkdev_put_whole+0xc4/0xf0
[ 96.529668][ T6542] bdev_release+0x47e/0x6d0
[ 96.531046][ T6542] blkdev_release+0x15/0x20
[ 96.532412][ T6542] __fput+0x3ff/0xb70
[ 96.533626][ T6542] task_work_run+0x14d/0x240
[ 96.535039][ T6542] do_exit+0xafb/0x2c30
[ 96.536324][ T6542] do_group_exit+0xd3/0x2a0
[ 96.537908][ T6542] get_signal+0x2673/0x26d0
[ 96.539323][ T6542] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.540963][ T6542] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.542645][ T6542] do_syscall_64+0xda/0x260
[ 96.544003][ T6542] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.545841][ T6542] Modules linked in:
[ 96.547099][ T6542] CPU: 1 UID: 0 PID: 6542 Comm: syz.0.21 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 96.547115][ T6542] Tainted: [B]=BAD_PAGE
[ 96.547119][ T6542] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.547125][ T6542] Call Trace:
[ 96.547129][ T6542]
[ 96.547133][ T6542] dump_stack_lvl+0x16c/0x1f0
[ 96.547145][ T6542] bad_page+0xb3/0x1f0
[ 96.547156][ T6542] ? __pfx_bad_page+0x10/0x10
[ 96.547166][ T6542] ? __mem_cgroup_uncharge+0xda/0x130
[ 96.547179][ T6542] free_tail_page_prepare+0x44f/0x5b0
[ 96.547192][ T6542] __free_frozen_pages+0x96a/0xff0
[ 96.547207][ T6542] __folio_put+0x329/0x450
[ 96.547218][ T6542] ? __pfx___folio_put+0x10/0x10
[ 96.547228][ T6542] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.547239][ T6542] ? rcu_is_watching+0x12/0xc0
[ 96.547251][ T6542] ? lock_release+0x201/0x2f0
[ 96.547266][ T6542] filemap_free_folio+0x132/0x170
[ 96.547277][ T6542] delete_from_page_cache_batch+0x741/0x9b0
[ 96.547289][ T6542] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.547301][ T6542] ? __pfx_workingset_update_node+0x10/0x10
[ 96.547311][ T6542] ? xas_move_index+0xb0/0x110
[ 96.547325][ T6542] truncate_inode_pages_range+0x279/0xe30
[ 96.547353][ T6542] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.547376][ T6542] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.547392][ T6542] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.547406][ T6542] blkdev_flush_mapping+0xfb/0x290
[ 96.547417][ T6542] ? filemap_check_errors+0xa9/0x160
[ 96.547432][ T6542] blkdev_put_whole+0xc4/0xf0
[ 96.547442][ T6542] bdev_release+0x47e/0x6d0
[ 96.547454][ T6542] ? __pfx_blkdev_release+0x10/0x10
[ 96.547466][ T6542] blkdev_release+0x15/0x20
[ 96.547478][ T6542] __fput+0x3ff/0xb70
[ 96.547490][ T6542] task_work_run+0x14d/0x240
[ 96.547500][ T6542] ? __pfx_task_work_run+0x10/0x10
[ 96.547510][ T6542] ? do_raw_spin_unlock+0x172/0x230
[ 96.547525][ T6542] do_exit+0xafb/0x2c30
[ 96.547559][ T6542] ? __pfx_futex_wake_mark+0x10/0x10
[ 96.547577][ T6542] ? __pfx_do_exit+0x10/0x10
[ 96.547590][ T6542] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.547600][ T6542] ? get_signal+0x8f5/0x26d0
[ 96.547611][ T6542] ? rcu_is_watching+0x12/0xc0
[ 96.547622][ T6542] do_group_exit+0xd3/0x2a0
[ 96.547637][ T6542] get_signal+0x2673/0x26d0
[ 96.547651][ T6542] ? __pfx_get_signal+0x10/0x10
[ 96.547662][ T6542] ? do_futex+0x122/0x350
[ 96.547675][ T6542] ? __pfx_do_futex+0x10/0x10
[ 96.547688][ T6542] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.547702][ T6542] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.547717][ T6542] ? rcu_is_watching+0x12/0xc0
[ 96.547729][ T6542] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.547742][ T6542] do_syscall_64+0xda/0x260
[ 96.547754][ T6542] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.547764][ T6542] RIP: 0033:0x7fa3d358e969
[ 96.547771][ T6542] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 96.547776][ T6542] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.547785][ T6542] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 96.547791][ T6542] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 96.547797][ T6542] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 96.547802][ T6542] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 96.547808][ T6542] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 96.547816][ T6542]
[ 96.648365][ T6542] BUG: Bad page state in process syz.0.21 pfn:4fe00
[ 96.650700][ T6542] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4fe00
[ 96.653361][ T6542] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 96.655846][ T6542] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 96.658620][ T6542] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.661290][ T6542] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.663927][ T6542] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.667003][ T6542] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.670407][ T6542] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.673406][ T6542] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.675997][ T6542] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 96.678501][ T6542] page_owner tracks the page as allocated
[ 96.680828][ T6542] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6541, tgid 6541 (syz.0.21), ts 96446985291, free_ts 95505846980
[ 96.687286][ T6542] post_alloc_hook+0x181/0x1b0
[ 96.688945][ T6542] prep_new_page+0xa0/0xe0
[ 96.690338][ T6542] get_page_from_freelist+0x135b/0x3800
[ 96.691996][ T6542] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.693887][ T6542] alloc_pages_mpol+0x1fb/0x550
[ 96.695499][ T6542] folio_alloc_noprof+0x20/0x2d0
[ 96.697148][ T6542] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.699032][ T6542] page_cache_ra_order+0x4c0/0xd00
[ 96.701196][ T6542] filemap_fault+0x1a5e/0x2740
[ 96.702672][ T6542] __do_fault+0x10a/0x490
[ 96.703985][ T6542] do_pte_missing+0x1a6/0x3fb0
[ 96.705434][ T6542] __handle_mm_fault+0x103d/0x2a40
[ 96.706981][ T6542] handle_mm_fault+0x3fe/0xad0
[ 96.708639][ T6542] do_user_addr_fault+0x60c/0x1370
[ 96.710166][ T6542] exc_page_fault+0x5c/0xc0
[ 96.711558][ T6542] asm_exc_page_fault+0x26/0x30
[ 96.713004][ T6542] page last free pid 6532 tgid 6531 stack trace:
[ 96.714902][ T6542] free_unref_folios+0x999/0x1630
[ 96.716630][ T6542] folios_put_refs+0x56f/0x740
[ 96.718356][ T6542] truncate_inode_pages_range+0x311/0xe30
[ 96.720047][ T6542] blkdev_flush_mapping+0xfb/0x290
[ 96.721540][ T6542] blkdev_put_whole+0xc4/0xf0
[ 96.722961][ T6542] bdev_release+0x47e/0x6d0
[ 96.724347][ T6542] blkdev_release+0x15/0x20
[ 96.725717][ T6542] __fput+0x3ff/0xb70
[ 96.726905][ T6542] task_work_run+0x14d/0x240
[ 96.728667][ T6542] do_exit+0xafb/0x2c30
[ 96.729985][ T6542] do_group_exit+0xd3/0x2a0
[ 96.731378][ T6542] get_signal+0x2673/0x26d0
[ 96.732915][ T6542] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.734658][ T6542] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.736314][ T6542] do_syscall_64+0xda/0x260
[ 96.737968][ T6542] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.739790][ T6542] Modules linked in:
[ 96.741009][ T6542] CPU: 0 UID: 0 PID: 6542 Comm: syz.0.21 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 96.741025][ T6542] Tainted: [B]=BAD_PAGE
[ 96.741028][ T6542] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.741035][ T6542] Call Trace:
[ 96.741042][ T6542]
[ 96.741046][ T6542] dump_stack_lvl+0x16c/0x1f0
[ 96.741059][ T6542] bad_page+0xb3/0x1f0
[ 96.741070][ T6542] ? __pfx_bad_page+0x10/0x10
[ 96.741081][ T6542] ? page_bad_reason+0x9d/0x1e0
[ 96.741091][ T6542] __free_frozen_pages+0x76e/0xff0
[ 96.741106][ T6542] __folio_put+0x329/0x450
[ 96.741116][ T6542] ? __pfx___folio_put+0x10/0x10
[ 96.741127][ T6542] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.741138][ T6542] ? rcu_is_watching+0x12/0xc0
[ 96.741150][ T6542] ? lock_release+0x201/0x2f0
[ 96.741165][ T6542] filemap_free_folio+0x132/0x170
[ 96.741176][ T6542] delete_from_page_cache_batch+0x741/0x9b0
[ 96.741188][ T6542] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.741199][ T6542] ? __pfx_workingset_update_node+0x10/0x10
[ 96.741211][ T6542] ? xas_move_index+0xb0/0x110
[ 96.741223][ T6542] truncate_inode_pages_range+0x279/0xe30
[ 96.741238][ T6542] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.741261][ T6542] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.741277][ T6542] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.741291][ T6542] blkdev_flush_mapping+0xfb/0x290
[ 96.741303][ T6542] ? filemap_check_errors+0xa9/0x160
[ 96.741317][ T6542] blkdev_put_whole+0xc4/0xf0
[ 96.741328][ T6542] bdev_release+0x47e/0x6d0
[ 96.741340][ T6542] ? __pfx_blkdev_release+0x10/0x10
[ 96.741352][ T6542] blkdev_release+0x15/0x20
[ 96.741364][ T6542] __fput+0x3ff/0xb70
[ 96.741376][ T6542] task_work_run+0x14d/0x240
[ 96.741387][ T6542] ? __pfx_task_work_run+0x10/0x10
[ 96.741397][ T6542] ? do_raw_spin_unlock+0x172/0x230
[ 96.741408][ T6542] do_exit+0xafb/0x2c30
[ 96.741422][ T6542] ? __pfx_futex_wake_mark+0x10/0x10
[ 96.741438][ T6542] ? __pfx_do_exit+0x10/0x10
[ 96.741452][ T6542] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.741461][ T6542] ? get_signal+0x8f5/0x26d0
[ 96.741473][ T6542] ? rcu_is_watching+0x12/0xc0
[ 96.741484][ T6542] do_group_exit+0xd3/0x2a0
[ 96.741499][ T6542] get_signal+0x2673/0x26d0
[ 96.741512][ T6542] ? __pfx_get_signal+0x10/0x10
[ 96.741524][ T6542] ? do_futex+0x122/0x350
[ 96.741537][ T6542] ? __pfx_do_futex+0x10/0x10
[ 96.741549][ T6542] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.741564][ T6542] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.741579][ T6542] ? rcu_is_watching+0x12/0xc0
[ 96.741591][ T6542] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.741604][ T6542] do_syscall_64+0xda/0x260
[ 96.741615][ T6542] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.741625][ T6542] RIP: 0033:0x7fa3d358e969
[ 96.741633][ T6542] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 96.741637][ T6542] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.741646][ T6542] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 96.741653][ T6542] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 96.741659][ T6542] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 96.741665][ T6542] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 96.741671][ T6542] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 96.741679][ T6542]
[ 96.799481][ T6545] atomic_op ffff8880241a1998 conn xmit_atomic 0000000000000000
[ 96.901077][ T6547] BUG: Bad page state in process syz.0.23 pfn:50601
[ 96.903086][ T6547] page does not match folio
[ 96.904610][ T6547] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50601
[ 96.908237][ T6547] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 96.910990][ T6547] raw: 00fff00000000000 ffffea0001418000 00000000ffffffff ffffffffffffffff
[ 96.913994][ T6547] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.916905][ T6547] page dumped because: nonzero pincount
[ 96.918891][ T6547] page_owner tracks the page as allocated
[ 96.920750][ T6547] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6546, tgid 6546 (syz.0.23), ts 96878689575, free_ts 0
[ 96.927056][ T6547] post_alloc_hook+0x181/0x1b0
[ 96.928947][ T6547] prep_new_page+0xa0/0xe0
[ 96.930676][ T6547] get_page_from_freelist+0x135b/0x3800
[ 96.932594][ T6547] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.934720][ T6547] alloc_pages_mpol+0x1fb/0x550
[ 96.936516][ T6547] folio_alloc_noprof+0x20/0x2d0
[ 96.938414][ T6547] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.940786][ T6547] page_cache_ra_order+0x4c0/0xd00
[ 96.942925][ T6547] filemap_fault+0x1a5e/0x2740
[ 96.944815][ T6547] __do_fault+0x10a/0x490
[ 96.946571][ T6547] do_pte_missing+0x1a6/0x3fb0
[ 96.948547][ T6547] __handle_mm_fault+0x103d/0x2a40
[ 96.950702][ T6547] handle_mm_fault+0x3fe/0xad0
[ 96.952753][ T6547] do_user_addr_fault+0x60c/0x1370
[ 96.954774][ T6547] exc_page_fault+0x5c/0xc0
[ 96.956530][ T6547] asm_exc_page_fault+0x26/0x30
[ 96.958736][ T6547] page_owner free stack trace missing
[ 96.960795][ T6547] Modules linked in:
[ 96.962383][ T6547] CPU: 3 UID: 0 PID: 6547 Comm: syz.0.23 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 96.962408][ T6547] Tainted: [B]=BAD_PAGE
[ 96.962414][ T6547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.962424][ T6547] Call Trace:
[ 96.962431][ T6547]
[ 96.962437][ T6547] dump_stack_lvl+0x16c/0x1f0
[ 96.962459][ T6547] bad_page+0xb3/0x1f0
[ 96.962477][ T6547] ? __pfx_bad_page+0x10/0x10
[ 96.962496][ T6547] ? __mem_cgroup_uncharge+0xda/0x130
[ 96.962517][ T6547] free_tail_page_prepare+0x44f/0x5b0
[ 96.962539][ T6547] __free_frozen_pages+0x96a/0xff0
[ 96.962562][ T6547] __folio_put+0x329/0x450
[ 96.962580][ T6547] ? __pfx___folio_put+0x10/0x10
[ 96.962599][ T6547] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.962617][ T6547] ? rcu_is_watching+0x12/0xc0
[ 96.962637][ T6547] ? lock_release+0x201/0x2f0
[ 96.962661][ T6547] filemap_free_folio+0x132/0x170
[ 96.962679][ T6547] delete_from_page_cache_batch+0x741/0x9b0
[ 96.962700][ T6547] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.962720][ T6547] ? __pfx_workingset_update_node+0x10/0x10
[ 96.962738][ T6547] ? xas_move_index+0xb0/0x110
[ 96.962758][ T6547] truncate_inode_pages_range+0x279/0xe30
[ 96.962783][ T6547] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.962814][ T6547] ? __pfx___send_ipi_mask+0x10/0x10
[ 96.962844][ T6547] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.962868][ T6547] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.962891][ T6547] blkdev_flush_mapping+0xfb/0x290
[ 96.962910][ T6547] ? filemap_check_errors+0xa9/0x160
[ 96.962933][ T6547] blkdev_put_whole+0xc4/0xf0
[ 96.962950][ T6547] bdev_release+0x47e/0x6d0
[ 96.962971][ T6547] ? __pfx_blkdev_release+0x10/0x10
[ 96.962990][ T6547] blkdev_release+0x15/0x20
[ 96.963009][ T6547] __fput+0x3ff/0xb70
[ 96.963029][ T6547] task_work_run+0x14d/0x240
[ 96.963047][ T6547] ? __pfx_task_work_run+0x10/0x10
[ 96.963064][ T6547] ? do_raw_spin_unlock+0x172/0x230
[ 96.963088][ T6547] do_exit+0xafb/0x2c30
[ 96.963113][ T6547] ? __pfx_futex_wake_mark+0x10/0x10
[ 96.963140][ T6547] ? __pfx_do_exit+0x10/0x10
[ 96.963162][ T6547] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.963179][ T6547] ? get_signal+0x8f5/0x26d0
[ 96.963197][ T6547] ? rcu_is_watching+0x12/0xc0
[ 96.963216][ T6547] do_group_exit+0xd3/0x2a0
[ 96.963240][ T6547] get_signal+0x2673/0x26d0
[ 96.963262][ T6547] ? __pfx_get_signal+0x10/0x10
[ 96.963280][ T6547] ? do_futex+0x122/0x350
[ 96.963302][ T6547] ? __pfx_do_futex+0x10/0x10
[ 96.963323][ T6547] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.963346][ T6547] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.963371][ T6547] ? madvise_unlock+0xc6/0x190
[ 96.963391][ T6547] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.963411][ T6547] do_syscall_64+0xda/0x260
[ 96.963431][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.963448][ T6547] RIP: 0033:0x7fa3d358e969
[ 96.963461][ T6547] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 96.963469][ T6547] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.963486][ T6547] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 96.963498][ T6547] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 96.963507][ T6547] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 96.963517][ T6547] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 96.963527][ T6547] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 96.963541][ T6547]
[ 96.963568][ T6547] BUG: Bad page state in process syz.0.23 pfn:50600
[ 97.098360][ T6547] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50600
[ 97.101151][ T6547] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 97.103967][ T6547] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 97.106686][ T6547] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.109441][ T6547] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.112279][ T6547] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.115443][ T6547] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.118404][ T6547] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.121637][ T6547] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.124959][ T6547] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 97.127978][ T6547] page_owner tracks the page as allocated
[ 97.130249][ T6547] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6546, tgid 6546 (syz.0.23), ts 96878689575, free_ts 0
[ 97.138074][ T6547] post_alloc_hook+0x181/0x1b0
[ 97.140046][ T6547] prep_new_page+0xa0/0xe0
[ 97.141941][ T6547] get_page_from_freelist+0x135b/0x3800
[ 97.144175][ T6547] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.146588][ T6547] alloc_pages_mpol+0x1fb/0x550
[ 97.154263][ T6547] folio_alloc_noprof+0x20/0x2d0
[ 97.156249][ T6547] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.158645][ T6547] page_cache_ra_order+0x4c0/0xd00
[ 97.160769][ T6547] filemap_fault+0x1a5e/0x2740
[ 97.162699][ T6547] __do_fault+0x10a/0x490
[ 97.164715][ T6547] do_pte_missing+0x1a6/0x3fb0
[ 97.166671][ T6547] __handle_mm_fault+0x103d/0x2a40
[ 97.168878][ T6547] handle_mm_fault+0x3fe/0xad0
[ 97.170851][ T6547] do_user_addr_fault+0x60c/0x1370
[ 97.172883][ T6547] exc_page_fault+0x5c/0xc0
[ 97.174695][ T6547] asm_exc_page_fault+0x26/0x30
[ 97.176702][ T6547] page_owner free stack trace missing
[ 97.178924][ T6547] Modules linked in:
[ 97.180540][ T6547] CPU: 3 UID: 0 PID: 6547 Comm: syz.0.23 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 97.180567][ T6547] Tainted: [B]=BAD_PAGE
[ 97.180572][ T6547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.180583][ T6547] Call Trace:
[ 97.180589][ T6547]
[ 97.180595][ T6547] dump_stack_lvl+0x16c/0x1f0
[ 97.180616][ T6547] bad_page+0xb3/0x1f0
[ 97.180633][ T6547] ? __pfx_bad_page+0x10/0x10
[ 97.180650][ T6547] ? page_bad_reason+0x9d/0x1e0
[ 97.180668][ T6547] __free_frozen_pages+0x76e/0xff0
[ 97.180692][ T6547] __folio_put+0x329/0x450
[ 97.180709][ T6547] ? __pfx___folio_put+0x10/0x10
[ 97.180728][ T6547] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.180746][ T6547] ? rcu_is_watching+0x12/0xc0
[ 97.180764][ T6547] ? lock_release+0x201/0x2f0
[ 97.180787][ T6547] filemap_free_folio+0x132/0x170
[ 97.180804][ T6547] delete_from_page_cache_batch+0x741/0x9b0
[ 97.180824][ T6547] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.180843][ T6547] ? __pfx_workingset_update_node+0x10/0x10
[ 97.180860][ T6547] ? xas_move_index+0xb0/0x110
[ 97.180882][ T6547] truncate_inode_pages_range+0x279/0xe30
[ 97.180906][ T6547] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.180936][ T6547] ? __pfx___send_ipi_mask+0x10/0x10
[ 97.180965][ T6547] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.180990][ T6547] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.181013][ T6547] blkdev_flush_mapping+0xfb/0x290
[ 97.181031][ T6547] ? filemap_check_errors+0xa9/0x160
[ 97.181054][ T6547] blkdev_put_whole+0xc4/0xf0
[ 97.181070][ T6547] bdev_release+0x47e/0x6d0
[ 97.181091][ T6547] ? __pfx_blkdev_release+0x10/0x10
[ 97.181111][ T6547] blkdev_release+0x15/0x20
[ 97.181129][ T6547] __fput+0x3ff/0xb70
[ 97.181148][ T6547] task_work_run+0x14d/0x240
[ 97.181166][ T6547] ? __pfx_task_work_run+0x10/0x10
[ 97.181182][ T6547] ? do_raw_spin_unlock+0x172/0x230
[ 97.181200][ T6547] do_exit+0xafb/0x2c30
[ 97.181222][ T6547] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.181248][ T6547] ? __pfx_do_exit+0x10/0x10
[ 97.181269][ T6547] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.181285][ T6547] ? get_signal+0x8f5/0x26d0
[ 97.181309][ T6547] ? rcu_is_watching+0x12/0xc0
[ 97.181328][ T6547] do_group_exit+0xd3/0x2a0
[ 97.181351][ T6547] get_signal+0x2673/0x26d0
[ 97.181373][ T6547] ? __pfx_get_signal+0x10/0x10
[ 97.181392][ T6547] ? do_futex+0x122/0x350
[ 97.181412][ T6547] ? __pfx_do_futex+0x10/0x10
[ 97.181432][ T6547] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.181454][ T6547] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.181477][ T6547] ? madvise_unlock+0xc6/0x190
[ 97.181496][ T6547] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.181516][ T6547] do_syscall_64+0xda/0x260
[ 97.181535][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.181551][ T6547] RIP: 0033:0x7fa3d358e969
[ 97.181563][ T6547] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 97.181571][ T6547] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.181586][ T6547] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 97.181597][ T6547] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 97.181607][ T6547] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.181616][ T6547] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 97.181626][ T6547] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 97.181641][ T6547]
[ 97.327068][ T6549] BUG: Bad page state in process syz.0.24 pfn:50801
[ 97.329126][ T6549] page does not match folio
[ 97.330781][ T6549] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50801
[ 97.333950][ T6549] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.336159][ T6549] raw: 00fff00000000000 ffffea0001420000 00000000ffffffff ffffffffffffffff
[ 97.338749][ T6549] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.341388][ T6549] page dumped because: nonzero pincount
[ 97.343164][ T6549] page_owner tracks the page as allocated
[ 97.344875][ T6549] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6548, tgid 6548 (syz.0.24), ts 97310580091, free_ts 97181685405
[ 97.350987][ T6549] post_alloc_hook+0x181/0x1b0
[ 97.352589][ T6549] prep_new_page+0xa0/0xe0
[ 97.354396][ T6549] get_page_from_freelist+0x135b/0x3800
[ 97.356329][ T6549] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.358324][ T6549] alloc_pages_mpol+0x1fb/0x550
[ 97.359918][ T6549] folio_alloc_noprof+0x20/0x2d0
[ 97.361430][ T6549] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.363195][ T6549] page_cache_ra_order+0x4c0/0xd00
[ 97.364806][ T6549] filemap_fault+0x1a5e/0x2740
[ 97.366318][ T6549] __do_fault+0x10a/0x490
[ 97.367854][ T6549] do_pte_missing+0x1a6/0x3fb0
[ 97.369401][ T6549] __handle_mm_fault+0x103d/0x2a40
[ 97.371171][ T6549] handle_mm_fault+0x3fe/0xad0
[ 97.372855][ T6549] do_user_addr_fault+0x60c/0x1370
[ 97.374633][ T6549] exc_page_fault+0x5c/0xc0
[ 97.376225][ T6549] asm_exc_page_fault+0x26/0x30
[ 97.378163][ T6549] page last free pid 6547 tgid 6546 stack trace:
[ 97.380483][ T6549] free_unref_folios+0x999/0x1630
[ 97.382281][ T6549] folios_put_refs+0x56f/0x740
[ 97.383962][ T6549] truncate_inode_pages_range+0x311/0xe30
[ 97.385932][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 97.387916][ T6549] blkdev_put_whole+0xc4/0xf0
[ 97.389553][ T6549] bdev_release+0x47e/0x6d0
[ 97.391217][ T6549] blkdev_release+0x15/0x20
[ 97.392803][ T6549] __fput+0x3ff/0xb70
[ 97.394220][ T6549] task_work_run+0x14d/0x240
[ 97.395834][ T6549] do_exit+0xafb/0x2c30
[ 97.397278][ T6549] do_group_exit+0xd3/0x2a0
[ 97.399029][ T6549] get_signal+0x2673/0x26d0
[ 97.400620][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.402574][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.404456][ T6549] do_syscall_64+0xda/0x260
[ 97.406027][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.408184][ T6549] Modules linked in:
[ 97.409524][ T6549] CPU: 2 UID: 0 PID: 6549 Comm: syz.0.24 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 97.409545][ T6549] Tainted: [B]=BAD_PAGE
[ 97.409549][ T6549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.409557][ T6549] Call Trace:
[ 97.409561][ T6549]
[ 97.409566][ T6549] dump_stack_lvl+0x16c/0x1f0
[ 97.409582][ T6549] bad_page+0xb3/0x1f0
[ 97.409596][ T6549] ? __pfx_bad_page+0x10/0x10
[ 97.409609][ T6549] ? __mem_cgroup_uncharge+0xda/0x130
[ 97.409625][ T6549] free_tail_page_prepare+0x44f/0x5b0
[ 97.409641][ T6549] __free_frozen_pages+0x96a/0xff0
[ 97.409660][ T6549] __folio_put+0x329/0x450
[ 97.409674][ T6549] ? __pfx___folio_put+0x10/0x10
[ 97.409687][ T6549] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.409702][ T6549] ? rcu_is_watching+0x12/0xc0
[ 97.409716][ T6549] ? lock_release+0x201/0x2f0
[ 97.409736][ T6549] filemap_free_folio+0x132/0x170
[ 97.409749][ T6549] delete_from_page_cache_batch+0x741/0x9b0
[ 97.409765][ T6549] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.409799][ T6549] ? __pfx_workingset_update_node+0x10/0x10
[ 97.409815][ T6549] ? xas_move_index+0xb0/0x110
[ 97.409831][ T6549] truncate_inode_pages_range+0x279/0xe30
[ 97.409850][ T6549] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.409880][ T6549] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.409900][ T6549] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.409919][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 97.409933][ T6549] ? filemap_check_errors+0xa9/0x160
[ 97.409952][ T6549] blkdev_put_whole+0xc4/0xf0
[ 97.409965][ T6549] bdev_release+0x47e/0x6d0
[ 97.409981][ T6549] ? __pfx_blkdev_release+0x10/0x10
[ 97.409996][ T6549] blkdev_release+0x15/0x20
[ 97.410011][ T6549] __fput+0x3ff/0xb70
[ 97.410026][ T6549] task_work_run+0x14d/0x240
[ 97.410039][ T6549] ? __pfx_task_work_run+0x10/0x10
[ 97.410052][ T6549] ? do_raw_spin_unlock+0x172/0x230
[ 97.410066][ T6549] do_exit+0xafb/0x2c30
[ 97.410083][ T6549] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.410104][ T6549] ? __pfx_do_exit+0x10/0x10
[ 97.410121][ T6549] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.410134][ T6549] ? get_signal+0x8f5/0x26d0
[ 97.410148][ T6549] ? rcu_is_watching+0x12/0xc0
[ 97.410163][ T6549] do_group_exit+0xd3/0x2a0
[ 97.410181][ T6549] get_signal+0x2673/0x26d0
[ 97.410202][ T6549] ? __pfx_get_signal+0x10/0x10
[ 97.410217][ T6549] ? do_futex+0x122/0x350
[ 97.410233][ T6549] ? __pfx_do_futex+0x10/0x10
[ 97.410250][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.410268][ T6549] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.410287][ T6549] ? rcu_is_watching+0x12/0xc0
[ 97.410302][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.410318][ T6549] do_syscall_64+0xda/0x260
[ 97.410332][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.410345][ T6549] RIP: 0033:0x7fa3d358e969
[ 97.410355][ T6549] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 97.410361][ T6549] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.410373][ T6549] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 97.410381][ T6549] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 97.410389][ T6549] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.410397][ T6549] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 97.410405][ T6549] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 97.410416][ T6549]
[ 97.410439][ T6549] BUG: Bad page state in process syz.0.24 pfn:50800
[ 97.527153][ T6549] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50800
[ 97.530823][ T6549] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 97.533706][ T6549] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 97.536702][ T6549] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.539771][ T6549] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.542707][ T6549] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.545579][ T6549] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.548568][ T6549] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.551499][ T6549] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.554404][ T6549] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 97.556884][ T6549] page_owner tracks the page as allocated
[ 97.559007][ T6549] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6548, tgid 6548 (syz.0.24), ts 97310580091, free_ts 97181685405
[ 97.565792][ T6549] post_alloc_hook+0x181/0x1b0
[ 97.567579][ T6549] prep_new_page+0xa0/0xe0
[ 97.569243][ T6549] get_page_from_freelist+0x135b/0x3800
[ 97.571199][ T6549] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.573451][ T6549] alloc_pages_mpol+0x1fb/0x550
[ 97.575127][ T6549] folio_alloc_noprof+0x20/0x2d0
[ 97.576867][ T6549] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.578946][ T6549] page_cache_ra_order+0x4c0/0xd00
[ 97.580734][ T6549] filemap_fault+0x1a5e/0x2740
[ 97.582439][ T6549] __do_fault+0x10a/0x490
[ 97.583934][ T6549] do_pte_missing+0x1a6/0x3fb0
[ 97.585613][ T6549] __handle_mm_fault+0x103d/0x2a40
[ 97.587498][ T6549] handle_mm_fault+0x3fe/0xad0
[ 97.589218][ T6549] do_user_addr_fault+0x60c/0x1370
[ 97.591011][ T6549] exc_page_fault+0x5c/0xc0
[ 97.592606][ T6549] asm_exc_page_fault+0x26/0x30
[ 97.594366][ T6549] page last free pid 6547 tgid 6546 stack trace:
[ 97.596609][ T6549] free_unref_folios+0x999/0x1630
[ 97.598514][ T6549] folios_put_refs+0x56f/0x740
[ 97.600274][ T6549] truncate_inode_pages_range+0x311/0xe30
[ 97.602349][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 97.604182][ T6549] blkdev_put_whole+0xc4/0xf0
[ 97.605879][ T6549] bdev_release+0x47e/0x6d0
[ 97.607652][ T6549] blkdev_release+0x15/0x20
[ 97.609284][ T6549] __fput+0x3ff/0xb70
[ 97.610747][ T6549] task_work_run+0x14d/0x240
[ 97.612385][ T6549] do_exit+0xafb/0x2c30
[ 97.613928][ T6549] do_group_exit+0xd3/0x2a0
[ 97.615560][ T6549] get_signal+0x2673/0x26d0
[ 97.617172][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.619310][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.621302][ T6549] do_syscall_64+0xda/0x260
[ 97.622904][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.624996][ T6549] Modules linked in:
[ 97.626438][ T6549] CPU: 2 UID: 0 PID: 6549 Comm: syz.0.24 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 97.626458][ T6549] Tainted: [B]=BAD_PAGE
[ 97.626463][ T6549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.626471][ T6549] Call Trace:
[ 97.626476][ T6549]
[ 97.626481][ T6549] dump_stack_lvl+0x16c/0x1f0
[ 97.626497][ T6549] bad_page+0xb3/0x1f0
[ 97.626511][ T6549] ? __pfx_bad_page+0x10/0x10
[ 97.626524][ T6549] ? page_bad_reason+0x9d/0x1e0
[ 97.626537][ T6549] __free_frozen_pages+0x76e/0xff0
[ 97.626556][ T6549] __folio_put+0x329/0x450
[ 97.626570][ T6549] ? __pfx___folio_put+0x10/0x10
[ 97.626584][ T6549] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.626598][ T6549] ? rcu_is_watching+0x12/0xc0
[ 97.626613][ T6549] ? lock_release+0x201/0x2f0
[ 97.626632][ T6549] filemap_free_folio+0x132/0x170
[ 97.626646][ T6549] delete_from_page_cache_batch+0x741/0x9b0
[ 97.626661][ T6549] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.626677][ T6549] ? __pfx_workingset_update_node+0x10/0x10
[ 97.626691][ T6549] ? xas_move_index+0xb0/0x110
[ 97.626707][ T6549] truncate_inode_pages_range+0x279/0xe30
[ 97.626726][ T6549] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.626755][ T6549] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.626776][ T6549] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.626794][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 97.626808][ T6549] ? filemap_check_errors+0xa9/0x160
[ 97.626827][ T6549] blkdev_put_whole+0xc4/0xf0
[ 97.626840][ T6549] bdev_release+0x47e/0x6d0
[ 97.626856][ T6549] ? __pfx_blkdev_release+0x10/0x10
[ 97.626871][ T6549] blkdev_release+0x15/0x20
[ 97.626886][ T6549] __fput+0x3ff/0xb70
[ 97.626901][ T6549] task_work_run+0x14d/0x240
[ 97.626914][ T6549] ? __pfx_task_work_run+0x10/0x10
[ 97.626927][ T6549] ? do_raw_spin_unlock+0x172/0x230
[ 97.626942][ T6549] do_exit+0xafb/0x2c30
[ 97.626959][ T6549] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.626980][ T6549] ? __pfx_do_exit+0x10/0x10
[ 97.626998][ T6549] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.627010][ T6549] ? get_signal+0x8f5/0x26d0
[ 97.627024][ T6549] ? rcu_is_watching+0x12/0xc0
[ 97.627039][ T6549] do_group_exit+0xd3/0x2a0
[ 97.627057][ T6549] get_signal+0x2673/0x26d0
[ 97.627075][ T6549] ? __pfx_get_signal+0x10/0x10
[ 97.627090][ T6549] ? do_futex+0x122/0x350
[ 97.627106][ T6549] ? __pfx_do_futex+0x10/0x10
[ 97.627122][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.627141][ T6549] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.627160][ T6549] ? rcu_is_watching+0x12/0xc0
[ 97.627175][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.627196][ T6549] do_syscall_64+0xda/0x260
[ 97.627211][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.627224][ T6549] RIP: 0033:0x7fa3d358e969
[ 97.627233][ T6549] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 97.627239][ T6549] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.627252][ T6549] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 97.627261][ T6549] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 97.627269][ T6549] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.627277][ T6549] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 97.627285][ T6549] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 97.627296][ T6549]
[ 97.761504][ T6550] BUG: Bad page state in process syz.0.25 pfn:50401
[ 97.763710][ T6550] page does not match folio
[ 97.765140][ T6550] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50401
[ 97.768258][ T6550] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.771080][ T6550] raw: 00fff00000000000 ffffea0001410000 00000000ffffffff ffffffffffffffff
[ 97.774317][ T6550] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.777717][ T6550] page dumped because: nonzero pincount
[ 97.779884][ T6550] page_owner tracks the page as allocated
[ 97.782168][ T6550] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6550, tgid 6550 (syz.0.25), ts 97743929041, free_ts 96741714164
[ 97.788310][ T6550] post_alloc_hook+0x181/0x1b0
[ 97.789865][ T6550] prep_new_page+0xa0/0xe0
[ 97.791328][ T6550] get_page_from_freelist+0x135b/0x3800
[ 97.793002][ T6550] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.794843][ T6550] alloc_pages_mpol+0x1fb/0x550
[ 97.796322][ T6550] folio_alloc_noprof+0x20/0x2d0
[ 97.798039][ T6550] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.799860][ T6550] page_cache_ra_order+0x4c0/0xd00
[ 97.801413][ T6550] filemap_fault+0x1a5e/0x2740
[ 97.802962][ T6550] __do_fault+0x10a/0x490
[ 97.804296][ T6550] do_pte_missing+0x1a6/0x3fb0
[ 97.805761][ T6550] __handle_mm_fault+0x103d/0x2a40
[ 97.807461][ T6550] handle_mm_fault+0x3fe/0xad0
[ 97.808981][ T6550] do_user_addr_fault+0x60c/0x1370
[ 97.810683][ T6550] exc_page_fault+0x5c/0xc0
[ 97.812080][ T6550] asm_exc_page_fault+0x26/0x30
[ 97.813618][ T6550] page last free pid 6542 tgid 6541 stack trace:
[ 97.815696][ T6550] free_unref_folios+0x999/0x1630
[ 97.817799][ T6550] folios_put_refs+0x56f/0x740
[ 97.819751][ T6550] truncate_inode_pages_range+0x311/0xe30
[ 97.821821][ T6550] blkdev_flush_mapping+0xfb/0x290
[ 97.823479][ T6550] blkdev_put_whole+0xc4/0xf0
[ 97.824869][ T6550] bdev_release+0x47e/0x6d0
[ 97.826218][ T6550] blkdev_release+0x15/0x20
[ 97.827621][ T6550] __fput+0x3ff/0xb70
[ 97.828837][ T6550] task_work_run+0x14d/0x240
[ 97.830313][ T6550] do_exit+0xafb/0x2c30
[ 97.831582][ T6550] do_group_exit+0xd3/0x2a0
[ 97.833003][ T6550] get_signal+0x2673/0x26d0
[ 97.834400][ T6550] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.836101][ T6550] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.837871][ T6550] do_syscall_64+0xda/0x260
[ 97.839413][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.841615][ T6550] Modules linked in:
[ 97.842881][ T6550] CPU: 0 UID: 0 PID: 6550 Comm: syz.0.25 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 97.842897][ T6550] Tainted: [B]=BAD_PAGE
[ 97.842900][ T6550] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.842907][ T6550] Call Trace:
[ 97.842911][ T6550]
[ 97.842915][ T6550] dump_stack_lvl+0x16c/0x1f0
[ 97.842929][ T6550] bad_page+0xb3/0x1f0
[ 97.842944][ T6550] ? __pfx_bad_page+0x10/0x10
[ 97.842958][ T6550] ? __mem_cgroup_uncharge+0xda/0x130
[ 97.842974][ T6550] free_tail_page_prepare+0x44f/0x5b0
[ 97.842992][ T6550] __free_frozen_pages+0x96a/0xff0
[ 97.843013][ T6550] __folio_put+0x329/0x450
[ 97.843025][ T6550] ? __pfx___folio_put+0x10/0x10
[ 97.843036][ T6550] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.843047][ T6550] ? rcu_is_watching+0x12/0xc0
[ 97.843059][ T6550] ? lock_release+0x201/0x2f0
[ 97.843075][ T6550] filemap_free_folio+0x132/0x170
[ 97.843085][ T6550] delete_from_page_cache_batch+0x741/0x9b0
[ 97.843097][ T6550] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.843109][ T6550] ? __pfx_workingset_update_node+0x10/0x10
[ 97.843120][ T6550] ? xas_move_index+0xb0/0x110
[ 97.843133][ T6550] truncate_inode_pages_range+0x279/0xe30
[ 97.843148][ T6550] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.843171][ T6550] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.843187][ T6550] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.843201][ T6550] blkdev_flush_mapping+0xfb/0x290
[ 97.843218][ T6550] blkdev_put_whole+0xc4/0xf0
[ 97.843228][ T6550] bdev_release+0x47e/0x6d0
[ 97.843241][ T6550] ? __pfx_blkdev_release+0x10/0x10
[ 97.843253][ T6550] blkdev_release+0x15/0x20
[ 97.843265][ T6550] __fput+0x3ff/0xb70
[ 97.843276][ T6550] task_work_run+0x14d/0x240
[ 97.843287][ T6550] ? __pfx_task_work_run+0x10/0x10
[ 97.843297][ T6550] ? do_raw_spin_unlock+0x172/0x230
[ 97.843308][ T6550] do_exit+0xafb/0x2c30
[ 97.843322][ T6550] ? __pfx_do_exit+0x10/0x10
[ 97.843336][ T6550] ? preempt_schedule_thunk+0x16/0x30
[ 97.843347][ T6550] do_group_exit+0xd3/0x2a0
[ 97.843362][ T6550] __x64_sys_exit_group+0x3e/0x50
[ 97.843377][ T6550] x64_sys_call+0x1530/0x1730
[ 97.843392][ T6550] do_syscall_64+0xcd/0x260
[ 97.843404][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.843414][ T6550] RIP: 0033:0x7fa3d358e969
[ 97.843421][ T6550] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 97.843426][ T6550] RSP: 002b:00007ffd90b4bf88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 97.843435][ T6550] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa3d358e969
[ 97.843442][ T6550] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 97.843448][ T6550] RBP: 00007ffd90b4bfec R08: 0000000690b4c07f R09: 00000000000927c0
[ 97.843454][ T6550] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000009
[ 97.843460][ T6550] R13: 00000000000927c0 R14: 0000000000017ba6 R15: 00007ffd90b4c040
[ 97.843468][ T6550]
[ 97.843484][ T6550] BUG: Bad page state in process syz.0.25 pfn:50400
[ 97.957022][ T6550] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50400
[ 97.960745][ T6550] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 97.963373][ T6550] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 97.967132][ T6550] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.970355][ T6550] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.972902][ T6550] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.975446][ T6550] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.978873][ T6550] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.982233][ T6550] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.985683][ T6550] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 97.988765][ T6550] page_owner tracks the page as allocated
[ 97.991055][ T6550] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6550, tgid 6550 (syz.0.25), ts 97743929041, free_ts 96741714164
[ 97.998798][ T6550] post_alloc_hook+0x181/0x1b0
[ 98.000700][ T6550] prep_new_page+0xa0/0xe0
[ 98.002597][ T6550] get_page_from_freelist+0x135b/0x3800
[ 98.004899][ T6550] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.007629][ T6550] alloc_pages_mpol+0x1fb/0x550
[ 98.009524][ T6550] folio_alloc_noprof+0x20/0x2d0
[ 98.011583][ T6550] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.013979][ T6550] page_cache_ra_order+0x4c0/0xd00
[ 98.016113][ T6550] filemap_fault+0x1a5e/0x2740
[ 98.018248][ T6550] __do_fault+0x10a/0x490
[ 98.019920][ T6550] do_pte_missing+0x1a6/0x3fb0
[ 98.021929][ T6550] __handle_mm_fault+0x103d/0x2a40
[ 98.024008][ T6550] handle_mm_fault+0x3fe/0xad0
[ 98.025951][ T6550] do_user_addr_fault+0x60c/0x1370
[ 98.028099][ T6550] exc_page_fault+0x5c/0xc0
[ 98.029921][ T6550] asm_exc_page_fault+0x26/0x30
[ 98.031869][ T6550] page last free pid 6542 tgid 6541 stack trace:
[ 98.034359][ T6550] free_unref_folios+0x999/0x1630
[ 98.036348][ T6550] folios_put_refs+0x56f/0x740
[ 98.038368][ T6550] truncate_inode_pages_range+0x311/0xe30
[ 98.040655][ T6550] blkdev_flush_mapping+0xfb/0x290
[ 98.042700][ T6550] blkdev_put_whole+0xc4/0xf0
[ 98.044590][ T6550] bdev_release+0x47e/0x6d0
[ 98.046389][ T6550] blkdev_release+0x15/0x20
[ 98.048295][ T6550] __fput+0x3ff/0xb70
[ 98.049885][ T6550] task_work_run+0x14d/0x240
[ 98.051663][ T6550] do_exit+0xafb/0x2c30
[ 98.053280][ T6550] do_group_exit+0xd3/0x2a0
[ 98.055024][ T6550] get_signal+0x2673/0x26d0
[ 98.056808][ T6550] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.059084][ T6550] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.061223][ T6550] do_syscall_64+0xda/0x260
[ 98.062989][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.065230][ T6550] Modules linked in:
[ 98.066772][ T6550] CPU: 1 UID: 0 PID: 6550 Comm: syz.0.25 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 98.066797][ T6550] Tainted: [B]=BAD_PAGE
[ 98.066802][ T6550] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.066811][ T6550] Call Trace:
[ 98.066818][ T6550]
[ 98.066825][ T6550] dump_stack_lvl+0x16c/0x1f0
[ 98.066844][ T6550] bad_page+0xb3/0x1f0
[ 98.066860][ T6550] ? __pfx_bad_page+0x10/0x10
[ 98.066876][ T6550] ? page_bad_reason+0x9d/0x1e0
[ 98.066892][ T6550] __free_frozen_pages+0x76e/0xff0
[ 98.066915][ T6550] __folio_put+0x329/0x450
[ 98.066931][ T6550] ? __pfx___folio_put+0x10/0x10
[ 98.066947][ T6550] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.066964][ T6550] ? rcu_is_watching+0x12/0xc0
[ 98.066982][ T6550] ? lock_release+0x201/0x2f0
[ 98.067005][ T6550] filemap_free_folio+0x132/0x170
[ 98.067020][ T6550] delete_from_page_cache_batch+0x741/0x9b0
[ 98.067039][ T6550] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.067057][ T6550] ? __pfx_workingset_update_node+0x10/0x10
[ 98.067074][ T6550] ? xas_move_index+0xb0/0x110
[ 98.067093][ T6550] truncate_inode_pages_range+0x279/0xe30
[ 98.067115][ T6550] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.067153][ T6550] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.067177][ T6550] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.067198][ T6550] blkdev_flush_mapping+0xfb/0x290
[ 98.067218][ T6550] blkdev_put_whole+0xc4/0xf0
[ 98.067234][ T6550] bdev_release+0x47e/0x6d0
[ 98.067253][ T6550] ? __pfx_blkdev_release+0x10/0x10
[ 98.067271][ T6550] blkdev_release+0x15/0x20
[ 98.067293][ T6550] __fput+0x3ff/0xb70
[ 98.067312][ T6550] task_work_run+0x14d/0x240
[ 98.067328][ T6550] ? __pfx_task_work_run+0x10/0x10
[ 98.067357][ T6550] ? do_raw_spin_unlock+0x172/0x230
[ 98.067375][ T6550] do_exit+0xafb/0x2c30
[ 98.067398][ T6550] ? __pfx_do_exit+0x10/0x10
[ 98.067418][ T6550] ? preempt_schedule_thunk+0x16/0x30
[ 98.067435][ T6550] do_group_exit+0xd3/0x2a0
[ 98.067457][ T6550] __x64_sys_exit_group+0x3e/0x50
[ 98.067479][ T6550] x64_sys_call+0x1530/0x1730
[ 98.067500][ T6550] do_syscall_64+0xcd/0x260
[ 98.067519][ T6550] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.067534][ T6550] RIP: 0033:0x7fa3d358e969
[ 98.067545][ T6550] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 98.067551][ T6550] RSP: 002b:00007ffd90b4bf88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 98.067567][ T6550] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa3d358e969
[ 98.067576][ T6550] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 98.067585][ T6550] RBP: 00007ffd90b4bfec R08: 0000000690b4c07f R09: 00000000000927c0
[ 98.067595][ T6550] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000009
[ 98.067603][ T6550] R13: 00000000000927c0 R14: 0000000000017ba6 R15: 00007ffd90b4c040
[ 98.067617][ T6550]
[ 98.212347][ T6553] BUG: Bad page state in process syz.0.26 pfn:51201
[ 98.214973][ T6553] page does not match folio
[ 98.216725][ T6553] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51201
[ 98.220856][ T6553] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 98.223479][ T6553] raw: 00fff00000000000 ffffea0001448000 00000000ffffffff ffffffffffffffff
[ 98.226134][ T6553] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.228933][ T6553] page dumped because: nonzero pincount
[ 98.231067][ T6553] page_owner tracks the page as allocated
[ 98.233214][ T6553] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6552, tgid 6552 (syz.0.26), ts 98185879661, free_ts 0
[ 98.240144][ T6553] post_alloc_hook+0x181/0x1b0
[ 98.241918][ T6553] prep_new_page+0xa0/0xe0
[ 98.243617][ T6553] get_page_from_freelist+0x135b/0x3800
[ 98.245265][ T6553] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.247031][ T6553] alloc_pages_mpol+0x1fb/0x550
[ 98.248566][ T6553] folio_alloc_noprof+0x20/0x2d0
[ 98.250079][ T6553] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.251814][ T6553] page_cache_ra_order+0x4c0/0xd00
[ 98.253298][ T6553] filemap_fault+0x1a5e/0x2740
[ 98.254750][ T6553] __do_fault+0x10a/0x490
[ 98.256033][ T6553] do_pte_missing+0x1a6/0x3fb0
[ 98.257518][ T6553] __handle_mm_fault+0x103d/0x2a40
[ 98.259084][ T6553] handle_mm_fault+0x3fe/0xad0
[ 98.260646][ T6553] do_user_addr_fault+0x60c/0x1370
[ 98.262243][ T6553] exc_page_fault+0x5c/0xc0
[ 98.263600][ T6553] asm_exc_page_fault+0x26/0x30
[ 98.265047][ T6553] page_owner free stack trace missing
[ 98.266592][ T6553] Modules linked in:
[ 98.267758][ T6553] CPU: 3 UID: 0 PID: 6553 Comm: syz.0.26 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 98.267775][ T6553] Tainted: [B]=BAD_PAGE
[ 98.267778][ T6553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.267785][ T6553] Call Trace:
[ 98.267789][ T6553]
[ 98.267793][ T6553] dump_stack_lvl+0x16c/0x1f0
[ 98.267806][ T6553] bad_page+0xb3/0x1f0
[ 98.267817][ T6553] ? __pfx_bad_page+0x10/0x10
[ 98.267828][ T6553] ? __mem_cgroup_uncharge+0xda/0x130
[ 98.267841][ T6553] free_tail_page_prepare+0x44f/0x5b0
[ 98.267854][ T6553] __free_frozen_pages+0x96a/0xff0
[ 98.267869][ T6553] __folio_put+0x329/0x450
[ 98.267881][ T6553] ? __pfx___folio_put+0x10/0x10
[ 98.267891][ T6553] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.267902][ T6553] ? rcu_is_watching+0x12/0xc0
[ 98.267914][ T6553] ? lock_release+0x201/0x2f0
[ 98.267931][ T6553] filemap_free_folio+0x132/0x170
[ 98.267942][ T6553] delete_from_page_cache_batch+0x741/0x9b0
[ 98.267954][ T6553] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.267966][ T6553] ? __pfx_workingset_update_node+0x10/0x10
[ 98.267976][ T6553] ? xas_move_index+0xb0/0x110
[ 98.267989][ T6553] truncate_inode_pages_range+0x279/0xe30
[ 98.268004][ T6553] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.268027][ T6553] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.268043][ T6553] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.268057][ T6553] blkdev_flush_mapping+0xfb/0x290
[ 98.268069][ T6553] ? filemap_check_errors+0xa9/0x160
[ 98.268084][ T6553] blkdev_put_whole+0xc4/0xf0
[ 98.268094][ T6553] bdev_release+0x47e/0x6d0
[ 98.268107][ T6553] ? __pfx_blkdev_release+0x10/0x10
[ 98.268119][ T6553] blkdev_release+0x15/0x20
[ 98.268130][ T6553] __fput+0x3ff/0xb70
[ 98.268143][ T6553] task_work_run+0x14d/0x240
[ 98.268153][ T6553] ? __pfx_task_work_run+0x10/0x10
[ 98.268163][ T6553] ? do_raw_spin_unlock+0x172/0x230
[ 98.268174][ T6553] do_exit+0xafb/0x2c30
[ 98.268188][ T6553] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.268204][ T6553] ? __pfx_do_exit+0x10/0x10
[ 98.268218][ T6553] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.268228][ T6553] ? get_signal+0x8f5/0x26d0
[ 98.268239][ T6553] ? rcu_is_watching+0x12/0xc0
[ 98.268250][ T6553] do_group_exit+0xd3/0x2a0
[ 98.268269][ T6553] get_signal+0x2673/0x26d0
[ 98.268283][ T6553] ? __pfx_get_signal+0x10/0x10
[ 98.268295][ T6553] ? do_futex+0x122/0x350
[ 98.268307][ T6553] ? __pfx_do_futex+0x10/0x10
[ 98.268320][ T6553] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.268335][ T6553] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.268351][ T6553] ? rcu_is_watching+0x12/0xc0
[ 98.268362][ T6553] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.268375][ T6553] do_syscall_64+0xda/0x260
[ 98.268388][ T6553] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.268398][ T6553] RIP: 0033:0x7fa3d358e969
[ 98.268406][ T6553] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 98.268410][ T6553] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.268420][ T6553] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 98.268426][ T6553] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 98.268432][ T6553] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.268438][ T6553] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 98.268444][ T6553] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 98.268452][ T6553]
[ 98.268467][ T6553] BUG: Bad page state in process syz.0.26 pfn:51200
[ 98.327605][ T5947] Bluetooth: hci0: command tx timeout
[ 98.328606][ T6553] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51200
[ 98.406832][ T6553] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 98.409942][ T6553] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 98.412915][ T6553] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.415572][ T6553] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.418665][ T6553] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.421473][ T6553] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.424133][ T6553] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.426857][ T6553] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.430117][ T6553] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 98.432573][ T6553] page_owner tracks the page as allocated
[ 98.434327][ T6553] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6552, tgid 6552 (syz.0.26), ts 98185879661, free_ts 0
[ 98.440722][ T6553] post_alloc_hook+0x181/0x1b0
[ 98.442303][ T6553] prep_new_page+0xa0/0xe0
[ 98.443711][ T6553] get_page_from_freelist+0x135b/0x3800
[ 98.445573][ T6553] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.447632][ T6553] alloc_pages_mpol+0x1fb/0x550
[ 98.449510][ T6553] folio_alloc_noprof+0x20/0x2d0
[ 98.451677][ T6553] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.453565][ T6553] page_cache_ra_order+0x4c0/0xd00
[ 98.455122][ T6553] filemap_fault+0x1a5e/0x2740
[ 98.456654][ T6553] __do_fault+0x10a/0x490
[ 98.458204][ T6553] do_pte_missing+0x1a6/0x3fb0
[ 98.459981][ T6553] __handle_mm_fault+0x103d/0x2a40
[ 98.461660][ T6553] handle_mm_fault+0x3fe/0xad0
[ 98.463269][ T6553] do_user_addr_fault+0x60c/0x1370
[ 98.464809][ T6553] exc_page_fault+0x5c/0xc0
[ 98.466310][ T6553] asm_exc_page_fault+0x26/0x30
[ 98.467953][ T6553] page_owner free stack trace missing
[ 98.469969][ T6553] Modules linked in:
[ 98.471486][ T6553] CPU: 2 UID: 0 PID: 6553 Comm: syz.0.26 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 98.471503][ T6553] Tainted: [B]=BAD_PAGE
[ 98.471507][ T6553] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.471514][ T6553] Call Trace:
[ 98.471519][ T6553]
[ 98.471524][ T6553] dump_stack_lvl+0x16c/0x1f0
[ 98.471541][ T6553] bad_page+0xb3/0x1f0
[ 98.471553][ T6553] ? __pfx_bad_page+0x10/0x10
[ 98.471564][ T6553] ? page_bad_reason+0x9d/0x1e0
[ 98.471574][ T6553] __free_frozen_pages+0x76e/0xff0
[ 98.471590][ T6553] __folio_put+0x329/0x450
[ 98.471602][ T6553] ? __pfx___folio_put+0x10/0x10
[ 98.471613][ T6553] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.471625][ T6553] ? rcu_is_watching+0x12/0xc0
[ 98.471638][ T6553] ? lock_release+0x201/0x2f0
[ 98.471653][ T6553] filemap_free_folio+0x132/0x170
[ 98.471664][ T6553] delete_from_page_cache_batch+0x741/0x9b0
[ 98.471677][ T6553] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.471689][ T6553] ? __pfx_workingset_update_node+0x10/0x10
[ 98.471701][ T6553] ? xas_move_index+0xb0/0x110
[ 98.471714][ T6553] truncate_inode_pages_range+0x279/0xe30
[ 98.471729][ T6553] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.471752][ T6553] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.471769][ T6553] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.471783][ T6553] blkdev_flush_mapping+0xfb/0x290
[ 98.471796][ T6553] ? filemap_check_errors+0xa9/0x160
[ 98.471812][ T6553] blkdev_put_whole+0xc4/0xf0
[ 98.471823][ T6553] bdev_release+0x47e/0x6d0
[ 98.471838][ T6553] ? __pfx_blkdev_release+0x10/0x10
[ 98.471850][ T6553] blkdev_release+0x15/0x20
[ 98.471862][ T6553] __fput+0x3ff/0xb70
[ 98.471875][ T6553] task_work_run+0x14d/0x240
[ 98.471887][ T6553] ? __pfx_task_work_run+0x10/0x10
[ 98.471897][ T6553] ? do_raw_spin_unlock+0x172/0x230
[ 98.471908][ T6553] do_exit+0xafb/0x2c30
[ 98.471923][ T6553] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.471941][ T6553] ? __pfx_do_exit+0x10/0x10
[ 98.471955][ T6553] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.471966][ T6553] ? get_signal+0x8f5/0x26d0
[ 98.471978][ T6553] ? rcu_is_watching+0x12/0xc0
[ 98.471989][ T6553] do_group_exit+0xd3/0x2a0
[ 98.472005][ T6553] get_signal+0x2673/0x26d0
[ 98.472018][ T6553] ? __pfx_get_signal+0x10/0x10
[ 98.472030][ T6553] ? do_futex+0x122/0x350
[ 98.472043][ T6553] ? __pfx_do_futex+0x10/0x10
[ 98.472057][ T6553] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.472081][ T6553] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.472104][ T6553] ? rcu_is_watching+0x12/0xc0
[ 98.472123][ T6553] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.472144][ T6553] do_syscall_64+0xda/0x260
[ 98.472164][ T6553] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.472181][ T6553] RIP: 0033:0x7fa3d358e969
[ 98.472194][ T6553] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 98.472201][ T6553] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.472218][ T6553] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 98.472227][ T6553] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 98.472235][ T6553] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.472247][ T6553] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 98.472258][ T6553] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 98.472271][ T6553]
[ 98.605547][ T6555] BUG: Bad page state in process syz.0.27 pfn:51401
[ 98.607618][ T6555] page does not match folio
[ 98.608986][ T6555] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51401
[ 98.611942][ T6555] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 98.614099][ T6555] raw: 00fff00000000000 ffffea0001450000 00000000ffffffff ffffffffffffffff
[ 98.616565][ T6555] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.619113][ T6555] page dumped because: nonzero pincount
[ 98.620799][ T6555] page_owner tracks the page as allocated
[ 98.622918][ T6555] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6554, tgid 6554 (syz.0.27), ts 98588948744, free_ts 98472362154
[ 98.630362][ T6555] post_alloc_hook+0x181/0x1b0
[ 98.632154][ T6555] prep_new_page+0xa0/0xe0
[ 98.633864][ T6555] get_page_from_freelist+0x135b/0x3800
[ 98.635922][ T6555] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.638425][ T6555] alloc_pages_mpol+0x1fb/0x550
[ 98.640245][ T6555] folio_alloc_noprof+0x20/0x2d0
[ 98.642096][ T6555] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.644191][ T6555] page_cache_ra_order+0x4c0/0xd00
[ 98.646043][ T6555] filemap_fault+0x1a5e/0x2740
[ 98.648090][ T6555] __do_fault+0x10a/0x490
[ 98.649676][ T6555] do_pte_missing+0x1a6/0x3fb0
[ 98.651494][ T6555] __handle_mm_fault+0x103d/0x2a40
[ 98.653379][ T6555] handle_mm_fault+0x3fe/0xad0
[ 98.655172][ T6555] do_user_addr_fault+0x60c/0x1370
[ 98.657024][ T6555] exc_page_fault+0x5c/0xc0
[ 98.659113][ T6555] asm_exc_page_fault+0x26/0x30
[ 98.660649][ T6555] page last free pid 6553 tgid 6552 stack trace:
[ 98.662700][ T6555] free_unref_folios+0x999/0x1630
[ 98.664272][ T6555] folios_put_refs+0x56f/0x740
[ 98.665870][ T6555] truncate_inode_pages_range+0x311/0xe30
[ 98.667738][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 98.669431][ T6555] blkdev_put_whole+0xc4/0xf0
[ 98.671091][ T6555] bdev_release+0x47e/0x6d0
[ 98.672813][ T6555] blkdev_release+0x15/0x20
[ 98.674639][ T6555] __fput+0x3ff/0xb70
[ 98.676242][ T6555] task_work_run+0x14d/0x240
[ 98.677720][ T6555] do_exit+0xafb/0x2c30
[ 98.679016][ T6555] do_group_exit+0xd3/0x2a0
[ 98.680547][ T6555] get_signal+0x2673/0x26d0
[ 98.681977][ T6555] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.683809][ T6555] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.685714][ T6555] do_syscall_64+0xda/0x260
[ 98.687104][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.689036][ T6555] Modules linked in:
[ 98.690287][ T6555] CPU: 1 UID: 0 PID: 6555 Comm: syz.0.27 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 98.690306][ T6555] Tainted: [B]=BAD_PAGE
[ 98.690309][ T6555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.690315][ T6555] Call Trace:
[ 98.690319][ T6555]
[ 98.690323][ T6555] dump_stack_lvl+0x16c/0x1f0
[ 98.690337][ T6555] bad_page+0xb3/0x1f0
[ 98.690349][ T6555] ? __pfx_bad_page+0x10/0x10
[ 98.690359][ T6555] ? __mem_cgroup_uncharge+0xda/0x130
[ 98.690372][ T6555] free_tail_page_prepare+0x44f/0x5b0
[ 98.690385][ T6555] __free_frozen_pages+0x96a/0xff0
[ 98.690401][ T6555] __folio_put+0x329/0x450
[ 98.690412][ T6555] ? __pfx___folio_put+0x10/0x10
[ 98.690423][ T6555] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.690434][ T6555] ? rcu_is_watching+0x12/0xc0
[ 98.690446][ T6555] ? lock_release+0x201/0x2f0
[ 98.690467][ T6555] filemap_free_folio+0x132/0x170
[ 98.690483][ T6555] delete_from_page_cache_batch+0x741/0x9b0
[ 98.690499][ T6555] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.690511][ T6555] ? __pfx_workingset_update_node+0x10/0x10
[ 98.690523][ T6555] ? xas_move_index+0xb0/0x110
[ 98.690535][ T6555] truncate_inode_pages_range+0x279/0xe30
[ 98.690550][ T6555] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.690573][ T6555] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.690589][ T6555] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.690604][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 98.690616][ T6555] ? filemap_check_errors+0xa9/0x160
[ 98.690631][ T6555] blkdev_put_whole+0xc4/0xf0
[ 98.690641][ T6555] bdev_release+0x47e/0x6d0
[ 98.690654][ T6555] ? __pfx_blkdev_release+0x10/0x10
[ 98.690666][ T6555] blkdev_release+0x15/0x20
[ 98.690678][ T6555] __fput+0x3ff/0xb70
[ 98.690690][ T6555] task_work_run+0x14d/0x240
[ 98.690701][ T6555] ? __pfx_task_work_run+0x10/0x10
[ 98.690711][ T6555] ? do_raw_spin_unlock+0x172/0x230
[ 98.690725][ T6555] do_exit+0xafb/0x2c30
[ 98.690746][ T6555] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.690765][ T6555] ? __pfx_do_exit+0x10/0x10
[ 98.690779][ T6555] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.690789][ T6555] ? get_signal+0x8f5/0x26d0
[ 98.690801][ T6555] ? rcu_is_watching+0x12/0xc0
[ 98.690813][ T6555] do_group_exit+0xd3/0x2a0
[ 98.690828][ T6555] get_signal+0x2673/0x26d0
[ 98.690842][ T6555] ? __pfx_get_signal+0x10/0x10
[ 98.690853][ T6555] ? do_futex+0x122/0x350
[ 98.690867][ T6555] ? __pfx_do_futex+0x10/0x10
[ 98.690879][ T6555] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.690895][ T6555] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.690910][ T6555] ? rcu_is_watching+0x12/0xc0
[ 98.690922][ T6555] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.690935][ T6555] do_syscall_64+0xda/0x260
[ 98.690947][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.690957][ T6555] RIP: 0033:0x7fa3d358e969
[ 98.690965][ T6555] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 98.690970][ T6555] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.690979][ T6555] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 98.690986][ T6555] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 98.690992][ T6555] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.690998][ T6555] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 98.691004][ T6555] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 98.691012][ T6555]
[ 98.691028][ T6555] BUG: Bad page state in process syz.0.27 pfn:51400
[ 98.793877][ T6555] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51400
[ 98.796692][ T6555] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 98.799390][ T6555] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 98.801839][ T6555] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.804330][ T6555] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.806879][ T6555] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.811448][ T6555] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.814020][ T6555] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.816673][ T6555] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.819303][ T6555] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 98.821458][ T6555] page_owner tracks the page as allocated
[ 98.823148][ T6555] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6554, tgid 6554 (syz.0.27), ts 98588948744, free_ts 98472362154
[ 98.829047][ T6555] post_alloc_hook+0x181/0x1b0
[ 98.830516][ T6555] prep_new_page+0xa0/0xe0
[ 98.831856][ T6555] get_page_from_freelist+0x135b/0x3800
[ 98.833613][ T6555] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.835396][ T6555] alloc_pages_mpol+0x1fb/0x550
[ 98.836841][ T6555] folio_alloc_noprof+0x20/0x2d0
[ 98.838407][ T6555] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.840105][ T6555] page_cache_ra_order+0x4c0/0xd00
[ 98.841619][ T6555] filemap_fault+0x1a5e/0x2740
[ 98.843052][ T6555] __do_fault+0x10a/0x490
[ 98.844350][ T6555] do_pte_missing+0x1a6/0x3fb0
[ 98.845807][ T6555] __handle_mm_fault+0x103d/0x2a40
[ 98.847325][ T6555] handle_mm_fault+0x3fe/0xad0
[ 98.848832][ T6555] do_user_addr_fault+0x60c/0x1370
[ 98.850349][ T6555] exc_page_fault+0x5c/0xc0
[ 98.851695][ T6555] asm_exc_page_fault+0x26/0x30
[ 98.853162][ T6555] page last free pid 6553 tgid 6552 stack trace:
[ 98.855024][ T6555] free_unref_folios+0x999/0x1630
[ 98.856537][ T6555] folios_put_refs+0x56f/0x740
[ 98.858027][ T6555] truncate_inode_pages_range+0x311/0xe30
[ 98.859724][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 98.861237][ T6555] blkdev_put_whole+0xc4/0xf0
[ 98.862611][ T6555] bdev_release+0x47e/0x6d0
[ 98.863955][ T6555] blkdev_release+0x15/0x20
[ 98.865331][ T6555] __fput+0x3ff/0xb70
[ 98.866526][ T6555] task_work_run+0x14d/0x240
[ 98.867955][ T6555] do_exit+0xafb/0x2c30
[ 98.869201][ T6555] do_group_exit+0xd3/0x2a0
[ 98.870543][ T6555] get_signal+0x2673/0x26d0
[ 98.871900][ T6555] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.873509][ T6555] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.875169][ T6555] do_syscall_64+0xda/0x260
[ 98.876534][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.878376][ T6555] Modules linked in:
[ 98.879547][ T6555] CPU: 1 UID: 0 PID: 6555 Comm: syz.0.27 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 98.879563][ T6555] Tainted: [B]=BAD_PAGE
[ 98.879566][ T6555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.879572][ T6555] Call Trace:
[ 98.879576][ T6555]
[ 98.879580][ T6555] dump_stack_lvl+0x16c/0x1f0
[ 98.879593][ T6555] bad_page+0xb3/0x1f0
[ 98.879603][ T6555] ? __pfx_bad_page+0x10/0x10
[ 98.879614][ T6555] ? page_bad_reason+0x9d/0x1e0
[ 98.879624][ T6555] __free_frozen_pages+0x76e/0xff0
[ 98.879640][ T6555] __folio_put+0x329/0x450
[ 98.879650][ T6555] ? __pfx___folio_put+0x10/0x10
[ 98.879661][ T6555] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.879672][ T6555] ? rcu_is_watching+0x12/0xc0
[ 98.879684][ T6555] ? lock_release+0x201/0x2f0
[ 98.879700][ T6555] filemap_free_folio+0x132/0x170
[ 98.879710][ T6555] delete_from_page_cache_batch+0x741/0x9b0
[ 98.879722][ T6555] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.879734][ T6555] ? __pfx_workingset_update_node+0x10/0x10
[ 98.879745][ T6555] ? xas_move_index+0xb0/0x110
[ 98.879757][ T6555] truncate_inode_pages_range+0x279/0xe30
[ 98.879772][ T6555] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.879795][ T6555] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.879810][ T6555] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.879825][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 98.879836][ T6555] ? filemap_check_errors+0xa9/0x160
[ 98.879851][ T6555] blkdev_put_whole+0xc4/0xf0
[ 98.879861][ T6555] bdev_release+0x47e/0x6d0
[ 98.879874][ T6555] ? __pfx_blkdev_release+0x10/0x10
[ 98.879886][ T6555] blkdev_release+0x15/0x20
[ 98.879897][ T6555] __fput+0x3ff/0xb70
[ 98.879910][ T6555] task_work_run+0x14d/0x240
[ 98.879920][ T6555] ? __pfx_task_work_run+0x10/0x10
[ 98.879930][ T6555] ? do_raw_spin_unlock+0x172/0x230
[ 98.879941][ T6555] do_exit+0xafb/0x2c30
[ 98.879955][ T6555] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.879977][ T6555] ? __pfx_do_exit+0x10/0x10
[ 98.879991][ T6555] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.880000][ T6555] ? get_signal+0x8f5/0x26d0
[ 98.880012][ T6555] ? rcu_is_watching+0x12/0xc0
[ 98.880023][ T6555] do_group_exit+0xd3/0x2a0
[ 98.880038][ T6555] get_signal+0x2673/0x26d0
[ 98.880052][ T6555] ? __pfx_get_signal+0x10/0x10
[ 98.880063][ T6555] ? do_futex+0x122/0x350
[ 98.880076][ T6555] ? __pfx_do_futex+0x10/0x10
[ 98.880090][ T6555] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.880104][ T6555] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.880119][ T6555] ? rcu_is_watching+0x12/0xc0
[ 98.880131][ T6555] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.880143][ T6555] do_syscall_64+0xda/0x260
[ 98.880155][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.880165][ T6555] RIP: 0033:0x7fa3d358e969
[ 98.880172][ T6555] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 98.880177][ T6555] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.880187][ T6555] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 98.880193][ T6555] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 98.880199][ T6555] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.880205][ T6555] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 98.880211][ T6555] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 98.880219][ T6555]
[ 99.039043][ T6560] BUG: Bad page state in process syz.0.29 pfn:50c01
[ 99.041628][ T6560] page does not match folio
[ 99.043363][ T6560] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50c01
[ 99.046989][ T6560] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 99.050270][ T6560] raw: 00fff00000000000 ffffea0001430000 00000000ffffffff ffffffffffffffff
[ 99.053443][ T6560] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.056538][ T6560] page dumped because: nonzero pincount
[ 99.058651][ T6560] page_owner tracks the page as allocated
[ 99.060871][ T6560] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6559, tgid 6559 (syz.0.29), ts 99021691385, free_ts 98880300369
[ 99.068192][ T6560] post_alloc_hook+0x181/0x1b0
[ 99.069975][ T6560] prep_new_page+0xa0/0xe0
[ 99.071757][ T6560] get_page_from_freelist+0x135b/0x3800
[ 99.073808][ T6560] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.076024][ T6560] alloc_pages_mpol+0x1fb/0x550
[ 99.077973][ T6560] folio_alloc_noprof+0x20/0x2d0
[ 99.079860][ T6560] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.082169][ T6560] page_cache_ra_order+0x4c0/0xd00
[ 99.084197][ T6560] filemap_fault+0x1a5e/0x2740
[ 99.086018][ T6560] __do_fault+0x10a/0x490
[ 99.087613][ T6560] do_pte_missing+0x1a6/0x3fb0
[ 99.089079][ T6560] __handle_mm_fault+0x103d/0x2a40
[ 99.090648][ T6560] handle_mm_fault+0x3fe/0xad0
[ 99.092074][ T6560] do_user_addr_fault+0x60c/0x1370
[ 99.093664][ T6560] exc_page_fault+0x5c/0xc0
[ 99.095074][ T6560] asm_exc_page_fault+0x26/0x30
[ 99.096582][ T6560] page last free pid 6555 tgid 6554 stack trace:
[ 99.098924][ T6560] free_unref_folios+0x999/0x1630
[ 99.100508][ T6560] folios_put_refs+0x56f/0x740
[ 99.101950][ T6560] truncate_inode_pages_range+0x311/0xe30
[ 99.103641][ T6560] blkdev_flush_mapping+0xfb/0x290
[ 99.105395][ T6560] blkdev_put_whole+0xc4/0xf0
[ 99.106898][ T6560] bdev_release+0x47e/0x6d0
[ 99.108682][ T6560] blkdev_release+0x15/0x20
[ 99.110101][ T6560] __fput+0x3ff/0xb70
[ 99.111323][ T6560] task_work_run+0x14d/0x240
[ 99.112678][ T6560] do_exit+0xafb/0x2c30
[ 99.113947][ T6560] do_group_exit+0xd3/0x2a0
[ 99.115427][ T6560] get_signal+0x2673/0x26d0
[ 99.116798][ T6560] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.118658][ T6560] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.120338][ T6560] do_syscall_64+0xda/0x260
[ 99.121724][ T6560] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.123521][ T6560] Modules linked in:
[ 99.124687][ T6560] CPU: 2 UID: 0 PID: 6560 Comm: syz.0.29 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 99.124703][ T6560] Tainted: [B]=BAD_PAGE
[ 99.124706][ T6560] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.124713][ T6560] Call Trace:
[ 99.124717][ T6560]
[ 99.124720][ T6560] dump_stack_lvl+0x16c/0x1f0
[ 99.124733][ T6560] bad_page+0xb3/0x1f0
[ 99.124744][ T6560] ? __pfx_bad_page+0x10/0x10
[ 99.124754][ T6560] ? __mem_cgroup_uncharge+0xda/0x130
[ 99.124766][ T6560] free_tail_page_prepare+0x44f/0x5b0
[ 99.124779][ T6560] __free_frozen_pages+0x96a/0xff0
[ 99.124794][ T6560] __folio_put+0x329/0x450
[ 99.124805][ T6560] ? __pfx___folio_put+0x10/0x10
[ 99.124816][ T6560] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.124827][ T6560] ? rcu_is_watching+0x12/0xc0
[ 99.124838][ T6560] ? lock_release+0x201/0x2f0
[ 99.124854][ T6560] filemap_free_folio+0x132/0x170
[ 99.124864][ T6560] delete_from_page_cache_batch+0x741/0x9b0
[ 99.124876][ T6560] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.124888][ T6560] ? __pfx_workingset_update_node+0x10/0x10
[ 99.124899][ T6560] ? xas_move_index+0xb0/0x110
[ 99.124912][ T6560] truncate_inode_pages_range+0x279/0xe30
[ 99.124926][ T6560] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.124949][ T6560] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.124965][ T6560] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.124979][ T6560] blkdev_flush_mapping+0xfb/0x290
[ 99.124991][ T6560] ? filemap_check_errors+0xa9/0x160
[ 99.125009][ T6560] blkdev_put_whole+0xc4/0xf0
[ 99.125020][ T6560] bdev_release+0x47e/0x6d0
[ 99.125033][ T6560] ? __pfx_blkdev_release+0x10/0x10
[ 99.125045][ T6560] blkdev_release+0x15/0x20
[ 99.125057][ T6560] __fput+0x3ff/0xb70
[ 99.125068][ T6560] task_work_run+0x14d/0x240
[ 99.125079][ T6560] ? __pfx_task_work_run+0x10/0x10
[ 99.125089][ T6560] ? do_raw_spin_unlock+0x172/0x230
[ 99.125100][ T6560] do_exit+0xafb/0x2c30
[ 99.125114][ T6560] ? __pfx_futex_wake_mark+0x10/0x10
[ 99.125130][ T6560] ? __pfx_do_exit+0x10/0x10
[ 99.125144][ T6560] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.125153][ T6560] ? get_signal+0x8f5/0x26d0
[ 99.125165][ T6560] ? rcu_is_watching+0x12/0xc0
[ 99.125176][ T6560] do_group_exit+0xd3/0x2a0
[ 99.125191][ T6560] get_signal+0x2673/0x26d0
[ 99.125204][ T6560] ? __pfx_get_signal+0x10/0x10
[ 99.125216][ T6560] ? do_futex+0x122/0x350
[ 99.125229][ T6560] ? __pfx_do_futex+0x10/0x10
[ 99.125241][ T6560] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.125257][ T6560] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.125272][ T6560] ? madvise_unlock+0xc6/0x190
[ 99.125283][ T6560] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.125296][ T6560] do_syscall_64+0xda/0x260
[ 99.125308][ T6560] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.125318][ T6560] RIP: 0033:0x7fa3d358e969
[ 99.125325][ T6560] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 99.125329][ T6560] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 99.125339][ T6560] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 99.125346][ T6560] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 99.125352][ T6560] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 99.125358][ T6560] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 99.125363][ T6560] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 99.125372][ T6560]
[ 99.125387][ T6560] BUG: Bad page state in process syz.0.29 pfn:50c00
[ 99.233436][ T6560] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50c00
[ 99.236601][ T6560] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 99.239644][ T6560] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 99.242634][ T6560] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.245321][ T6560] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.247982][ T6560] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.250991][ T6560] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.253568][ T6560] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.256106][ T6560] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.258678][ T6560] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 99.260858][ T6560] page_owner tracks the page as allocated
[ 99.262627][ T6560] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6559, tgid 6559 (syz.0.29), ts 99021691385, free_ts 98880300369
[ 99.268608][ T6560] post_alloc_hook+0x181/0x1b0
[ 99.270103][ T6560] prep_new_page+0xa0/0xe0
[ 99.271543][ T6560] get_page_from_freelist+0x135b/0x3800
[ 99.273280][ T6560] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.275029][ T6560] alloc_pages_mpol+0x1fb/0x550
[ 99.276514][ T6560] folio_alloc_noprof+0x20/0x2d0
[ 99.278121][ T6560] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.279826][ T6560] page_cache_ra_order+0x4c0/0xd00
[ 99.281418][ T6560] filemap_fault+0x1a5e/0x2740
[ 99.282915][ T6560] __do_fault+0x10a/0x490
[ 99.284251][ T6560] do_pte_missing+0x1a6/0x3fb0
[ 99.285692][ T6560] __handle_mm_fault+0x103d/0x2a40
[ 99.287255][ T6560] handle_mm_fault+0x3fe/0xad0
[ 99.289090][ T6560] do_user_addr_fault+0x60c/0x1370
[ 99.290659][ T6560] exc_page_fault+0x5c/0xc0
[ 99.292134][ T6560] asm_exc_page_fault+0x26/0x30
[ 99.293638][ T6560] page last free pid 6555 tgid 6554 stack trace:
[ 99.295597][ T6560] free_unref_folios+0x999/0x1630
[ 99.297126][ T6560] folios_put_refs+0x56f/0x740
[ 99.298666][ T6560] truncate_inode_pages_range+0x311/0xe30
[ 99.300443][ T6560] blkdev_flush_mapping+0xfb/0x290
[ 99.301984][ T6560] blkdev_put_whole+0xc4/0xf0
[ 99.303445][ T6560] bdev_release+0x47e/0x6d0
[ 99.304856][ T6560] blkdev_release+0x15/0x20
[ 99.306354][ T6560] __fput+0x3ff/0xb70
[ 99.307642][ T6560] task_work_run+0x14d/0x240
[ 99.309097][ T6560] do_exit+0xafb/0x2c30
[ 99.310448][ T6560] do_group_exit+0xd3/0x2a0
[ 99.311865][ T6560] get_signal+0x2673/0x26d0
[ 99.313257][ T6560] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.314968][ T6560] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.316730][ T6560] do_syscall_64+0xda/0x260
[ 99.318287][ T6560] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.320116][ T6560] Modules linked in:
[ 99.321367][ T6560] CPU: 0 UID: 0 PID: 6560 Comm: syz.0.29 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 99.321383][ T6560] Tainted: [B]=BAD_PAGE
[ 99.321386][ T6560] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.321393][ T6560] Call Trace:
[ 99.321397][ T6560]
[ 99.321401][ T6560] dump_stack_lvl+0x16c/0x1f0
[ 99.321414][ T6560] bad_page+0xb3/0x1f0
[ 99.321425][ T6560] ? __pfx_bad_page+0x10/0x10
[ 99.321436][ T6560] ? page_bad_reason+0x9d/0x1e0
[ 99.321446][ T6560] __free_frozen_pages+0x76e/0xff0
[ 99.321461][ T6560] __folio_put+0x329/0x450
[ 99.321472][ T6560] ? __pfx___folio_put+0x10/0x10
[ 99.321483][ T6560] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.321494][ T6560] ? rcu_is_watching+0x12/0xc0
[ 99.321507][ T6560] ? lock_release+0x201/0x2f0
[ 99.321521][ T6560] filemap_free_folio+0x132/0x170
[ 99.321532][ T6560] delete_from_page_cache_batch+0x741/0x9b0
[ 99.321544][ T6560] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.321556][ T6560] ? __pfx_workingset_update_node+0x10/0x10
[ 99.321567][ T6560] ? xas_move_index+0xb0/0x110
[ 99.321582][ T6560] truncate_inode_pages_range+0x279/0xe30
[ 99.321602][ T6560] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.321633][ T6560] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.321650][ T6560] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.321665][ T6560] blkdev_flush_mapping+0xfb/0x290
[ 99.321676][ T6560] ? filemap_check_errors+0xa9/0x160
[ 99.321691][ T6560] blkdev_put_whole+0xc4/0xf0
[ 99.321701][ T6560] bdev_release+0x47e/0x6d0
[ 99.321714][ T6560] ? __pfx_blkdev_release+0x10/0x10
[ 99.321726][ T6560] blkdev_release+0x15/0x20
[ 99.321737][ T6560] __fput+0x3ff/0xb70
[ 99.321750][ T6560] task_work_run+0x14d/0x240
[ 99.321786][ T6560] ? __pfx_task_work_run+0x10/0x10
[ 99.321799][ T6560] ? do_raw_spin_unlock+0x172/0x230
[ 99.321810][ T6560] do_exit+0xafb/0x2c30
[ 99.321824][ T6560] ? __pfx_futex_wake_mark+0x10/0x10
[ 99.321840][ T6560] ? __pfx_do_exit+0x10/0x10
[ 99.321854][ T6560] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.321863][ T6560] ? get_signal+0x8f5/0x26d0
[ 99.321875][ T6560] ? rcu_is_watching+0x12/0xc0
[ 99.321886][ T6560] do_group_exit+0xd3/0x2a0
[ 99.321900][ T6560] get_signal+0x2673/0x26d0
[ 99.321914][ T6560] ? __pfx_get_signal+0x10/0x10
[ 99.321925][ T6560] ? do_futex+0x122/0x350
[ 99.321939][ T6560] ? __pfx_do_futex+0x10/0x10
[ 99.321952][ T6560] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.321967][ T6560] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.321982][ T6560] ? madvise_unlock+0xc6/0x190
[ 99.321993][ T6560] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.322006][ T6560] do_syscall_64+0xda/0x260
[ 99.322017][ T6560] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.322027][ T6560] RIP: 0033:0x7fa3d358e969
[ 99.322035][ T6560] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 99.322040][ T6560] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 99.322051][ T6560] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 99.322058][ T6560] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 99.322064][ T6560] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 99.322069][ T6560] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 99.322076][ T6560] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 99.322084][ T6560]
[ 99.347455][ T6562] BUG: Bad page state in process syz.0.30 pfn:51601
[ 99.447976][ T6562] page does not match folio
[ 99.449998][ T6562] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51601
[ 99.453992][ T6562] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 99.456908][ T6562] raw: 00fff00000000000 ffffea0001458000 00000000ffffffff ffffffffffffffff
[ 99.461006][ T6562] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.464371][ T6562] page dumped because: nonzero pincount
[ 99.466541][ T6562] page_owner tracks the page as allocated
[ 99.468866][ T6562] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6561, tgid 6561 (syz.0.30), ts 99330199368, free_ts 99014996263
[ 99.476663][ T6562] post_alloc_hook+0x181/0x1b0
[ 99.478827][ T6562] prep_new_page+0xa0/0xe0
[ 99.480647][ T6562] get_page_from_freelist+0x135b/0x3800
[ 99.482825][ T6562] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.485187][ T6562] alloc_pages_mpol+0x1fb/0x550
[ 99.487192][ T6562] folio_alloc_noprof+0x20/0x2d0
[ 99.489460][ T6562] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.491931][ T6562] page_cache_ra_order+0x4c0/0xd00
[ 99.494039][ T6562] filemap_fault+0x1a5e/0x2740
[ 99.496121][ T6562] __do_fault+0x10a/0x490
[ 99.498342][ T6562] do_pte_missing+0x1a6/0x3fb0
[ 99.500288][ T6562] __handle_mm_fault+0x103d/0x2a40
[ 99.502324][ T6562] handle_mm_fault+0x3fe/0xad0
[ 99.504273][ T6562] do_user_addr_fault+0x60c/0x1370
[ 99.506378][ T6562] exc_page_fault+0x5c/0xc0
[ 99.508304][ T6562] asm_exc_page_fault+0x26/0x30
[ 99.510275][ T6562] page last free pid 6558 tgid 6556 stack trace:
[ 99.513010][ T6562] free_unref_folios+0x999/0x1630
[ 99.515038][ T6562] folios_put_refs+0x56f/0x740
[ 99.516951][ T6562] truncate_inode_pages_range+0x311/0xe30
[ 99.519533][ T6562] blkdev_flush_mapping+0xfb/0x290
[ 99.521613][ T6562] blkdev_put_whole+0xc4/0xf0
[ 99.523544][ T6562] bdev_release+0x47e/0x6d0
[ 99.525412][ T6562] blkdev_release+0x15/0x20
[ 99.527266][ T6562] __fput+0x3ff/0xb70
[ 99.529285][ T6562] task_work_run+0x14d/0x240
[ 99.531333][ T6562] do_exit+0xafb/0x2c30
[ 99.533094][ T6562] do_group_exit+0xd3/0x2a0
[ 99.534983][ T6562] get_signal+0x2673/0x26d0
[ 99.536847][ T6562] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.539351][ T6562] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.541727][ T6562] do_syscall_64+0xda/0x260
[ 99.543626][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.545984][ T6562] Modules linked in:
[ 99.547701][ T6562] CPU: 3 UID: 0 PID: 6562 Comm: syz.0.30 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 99.547726][ T6562] Tainted: [B]=BAD_PAGE
[ 99.547731][ T6562] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.547744][ T6562] Call Trace:
[ 99.547751][ T6562]
[ 99.547758][ T6562] dump_stack_lvl+0x16c/0x1f0
[ 99.547777][ T6562] bad_page+0xb3/0x1f0
[ 99.547793][ T6562] ? __pfx_bad_page+0x10/0x10
[ 99.547809][ T6562] ? __mem_cgroup_uncharge+0xda/0x130
[ 99.547828][ T6562] free_tail_page_prepare+0x44f/0x5b0
[ 99.547848][ T6562] __free_frozen_pages+0x96a/0xff0
[ 99.547873][ T6562] __folio_put+0x329/0x450
[ 99.547890][ T6562] ? __pfx___folio_put+0x10/0x10
[ 99.547908][ T6562] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.547926][ T6562] ? rcu_is_watching+0x12/0xc0
[ 99.547944][ T6562] ? lock_release+0x201/0x2f0
[ 99.547968][ T6562] filemap_free_folio+0x132/0x170
[ 99.547987][ T6562] delete_from_page_cache_batch+0x741/0x9b0
[ 99.548008][ T6562] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.548029][ T6562] ? __pfx_workingset_update_node+0x10/0x10
[ 99.548048][ T6562] ? xas_move_index+0xb0/0x110
[ 99.548133][ T6562] truncate_inode_pages_range+0x279/0xe30
[ 99.548161][ T6562] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.548198][ T6562] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.548224][ T6562] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.548247][ T6562] blkdev_flush_mapping+0xfb/0x290
[ 99.548266][ T6562] ? filemap_check_errors+0xa9/0x160
[ 99.548291][ T6562] blkdev_put_whole+0xc4/0xf0
[ 99.548307][ T6562] bdev_release+0x47e/0x6d0
[ 99.548328][ T6562] ? __pfx_blkdev_release+0x10/0x10
[ 99.548347][ T6562] blkdev_release+0x15/0x20
[ 99.548366][ T6562] __fput+0x3ff/0xb70
[ 99.548387][ T6562] task_work_run+0x14d/0x240
[ 99.548405][ T6562] ? __pfx_task_work_run+0x10/0x10
[ 99.548422][ T6562] ? do_raw_spin_unlock+0x172/0x230
[ 99.548448][ T6562] do_exit+0xafb/0x2c30
[ 99.548471][ T6562] ? __pfx_futex_wake_mark+0x10/0x10
[ 99.548498][ T6562] ? __pfx_do_exit+0x10/0x10
[ 99.548519][ T6562] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.548535][ T6562] ? get_signal+0x8f5/0x26d0
[ 99.548553][ T6562] ? rcu_is_watching+0x12/0xc0
[ 99.548573][ T6562] do_group_exit+0xd3/0x2a0
[ 99.548597][ T6562] get_signal+0x2673/0x26d0
[ 99.548619][ T6562] ? __pfx_get_signal+0x10/0x10
[ 99.548638][ T6562] ? do_futex+0x122/0x350
[ 99.548658][ T6562] ? __pfx_do_futex+0x10/0x10
[ 99.548679][ T6562] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.548703][ T6562] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.548727][ T6562] ? madvise_unlock+0xc6/0x190
[ 99.548747][ T6562] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.548768][ T6562] do_syscall_64+0xda/0x260
[ 99.548788][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.548805][ T6562] RIP: 0033:0x7fa3d358e969
[ 99.548818][ T6562] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 99.548824][ T6562] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 99.548840][ T6562] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 99.548851][ T6562] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 99.548861][ T6562] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 99.548871][ T6562] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 99.548882][ T6562] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 99.548897][ T6562]
[ 99.548930][ T6562] BUG: Bad page state in process syz.0.30 pfn:51600
[ 99.689802][ T6562] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51600
[ 99.693462][ T6562] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 99.696947][ T6562] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 99.700668][ T6562] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.704083][ T6562] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.707582][ T6562] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.710938][ T6562] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.714333][ T6562] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.717811][ T6562] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.721308][ T6562] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 99.724520][ T6562] page_owner tracks the page as allocated
[ 99.726777][ T6562] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6561, tgid 6561 (syz.0.30), ts 99330199368, free_ts 99014996263
[ 99.734667][ T6562] post_alloc_hook+0x181/0x1b0
[ 99.736616][ T6562] prep_new_page+0xa0/0xe0
[ 99.738519][ T6562] get_page_from_freelist+0x135b/0x3800
[ 99.740732][ T6562] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.743006][ T6562] alloc_pages_mpol+0x1fb/0x550
[ 99.744850][ T6562] folio_alloc_noprof+0x20/0x2d0
[ 99.746840][ T6562] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.749195][ T6562] page_cache_ra_order+0x4c0/0xd00
[ 99.751243][ T6562] filemap_fault+0x1a5e/0x2740
[ 99.753175][ T6562] __do_fault+0x10a/0x490
[ 99.754875][ T6562] do_pte_missing+0x1a6/0x3fb0
[ 99.756790][ T6562] __handle_mm_fault+0x103d/0x2a40
[ 99.758958][ T6562] handle_mm_fault+0x3fe/0xad0
[ 99.760890][ T6562] do_user_addr_fault+0x60c/0x1370
[ 99.762961][ T6562] exc_page_fault+0x5c/0xc0
[ 99.764765][ T6562] asm_exc_page_fault+0x26/0x30
[ 99.766733][ T6562] page last free pid 6558 tgid 6556 stack trace:
[ 99.769551][ T6562] free_unref_folios+0x999/0x1630
[ 99.771495][ T6562] folios_put_refs+0x56f/0x740
[ 99.773416][ T6562] truncate_inode_pages_range+0x311/0xe30
[ 99.775678][ T6562] blkdev_flush_mapping+0xfb/0x290
[ 99.777941][ T6562] blkdev_put_whole+0xc4/0xf0
[ 99.779838][ T6562] bdev_release+0x47e/0x6d0
[ 99.781542][ T6562] blkdev_release+0x15/0x20
[ 99.783378][ T6562] __fput+0x3ff/0xb70
[ 99.784992][ T6562] task_work_run+0x14d/0x240
[ 99.786865][ T6562] do_exit+0xafb/0x2c30
[ 99.788644][ T6562] do_group_exit+0xd3/0x2a0
[ 99.790471][ T6562] get_signal+0x2673/0x26d0
[ 99.792321][ T6562] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.794508][ T6562] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.796738][ T6562] do_syscall_64+0xda/0x260
[ 99.798691][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.801056][ T6562] Modules linked in:
[ 99.802650][ T6562] CPU: 2 UID: 0 PID: 6562 Comm: syz.0.30 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 99.802677][ T6562] Tainted: [B]=BAD_PAGE
[ 99.802682][ T6562] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.802692][ T6562] Call Trace:
[ 99.802698][ T6562]
[ 99.802705][ T6562] dump_stack_lvl+0x16c/0x1f0
[ 99.802726][ T6562] bad_page+0xb3/0x1f0
[ 99.802743][ T6562] ? __pfx_bad_page+0x10/0x10
[ 99.802760][ T6562] ? page_bad_reason+0x9d/0x1e0
[ 99.802778][ T6562] __free_frozen_pages+0x76e/0xff0
[ 99.802802][ T6562] __folio_put+0x329/0x450
[ 99.802820][ T6562] ? __pfx___folio_put+0x10/0x10
[ 99.802838][ T6562] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.802856][ T6562] ? rcu_is_watching+0x12/0xc0
[ 99.802875][ T6562] ? lock_release+0x201/0x2f0
[ 99.802900][ T6562] filemap_free_folio+0x132/0x170
[ 99.802917][ T6562] delete_from_page_cache_batch+0x741/0x9b0
[ 99.802938][ T6562] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.802957][ T6562] ? __pfx_workingset_update_node+0x10/0x10
[ 99.802974][ T6562] ? xas_move_index+0xb0/0x110
[ 99.802995][ T6562] truncate_inode_pages_range+0x279/0xe30
[ 99.803019][ T6562] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.803057][ T6562] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.803083][ T6562] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.803106][ T6562] blkdev_flush_mapping+0xfb/0x290
[ 99.803124][ T6562] ? filemap_check_errors+0xa9/0x160
[ 99.803148][ T6562] blkdev_put_whole+0xc4/0xf0
[ 99.803166][ T6562] bdev_release+0x47e/0x6d0
[ 99.803186][ T6562] ? __pfx_blkdev_release+0x10/0x10
[ 99.803206][ T6562] blkdev_release+0x15/0x20
[ 99.803225][ T6562] __fput+0x3ff/0xb70
[ 99.803244][ T6562] task_work_run+0x14d/0x240
[ 99.803261][ T6562] ? __pfx_task_work_run+0x10/0x10
[ 99.803278][ T6562] ? do_raw_spin_unlock+0x172/0x230
[ 99.803302][ T6562] do_exit+0xafb/0x2c30
[ 99.803324][ T6562] ? __pfx_futex_wake_mark+0x10/0x10
[ 99.803351][ T6562] ? __pfx_do_exit+0x10/0x10
[ 99.803373][ T6562] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.803390][ T6562] ? get_signal+0x8f5/0x26d0
[ 99.803408][ T6562] ? rcu_is_watching+0x12/0xc0
[ 99.803428][ T6562] do_group_exit+0xd3/0x2a0
[ 99.803451][ T6562] get_signal+0x2673/0x26d0
[ 99.803473][ T6562] ? __pfx_get_signal+0x10/0x10
[ 99.803492][ T6562] ? do_futex+0x122/0x350
[ 99.803513][ T6562] ? __pfx_do_futex+0x10/0x10
[ 99.803535][ T6562] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.803558][ T6562] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.803583][ T6562] ? madvise_unlock+0xc6/0x190
[ 99.803603][ T6562] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.803623][ T6562] do_syscall_64+0xda/0x260
[ 99.803643][ T6562] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.803659][ T6562] RIP: 0033:0x7fa3d358e969
[ 99.803671][ T6562] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 99.803678][ T6562] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 99.803694][ T6562] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 99.803704][ T6562] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 99.803714][ T6562] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 99.803725][ T6562] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 99.803735][ T6562] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 99.803750][ T6562]
[ 99.948952][ T6564] BUG: Bad page state in process syz.0.31 pfn:50a01
[ 99.951183][ T6564] page does not match folio
[ 99.952697][ T6564] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50a01
[ 99.956258][ T6564] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 99.959267][ T6564] raw: 00fff00000000000 ffffea0001428000 00000000ffffffff ffffffffffffffff
[ 99.962779][ T6564] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.966254][ T6564] page dumped because: nonzero pincount
[ 99.968538][ T6564] page_owner tracks the page as allocated
[ 99.970989][ T6564] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6563, tgid 6563 (syz.0.31), ts 99929813408, free_ts 0
[ 99.978609][ T6564] post_alloc_hook+0x181/0x1b0
[ 99.980469][ T6564] prep_new_page+0xa0/0xe0
[ 99.982229][ T6564] get_page_from_freelist+0x135b/0x3800
[ 99.984460][ T6564] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.986787][ T6564] alloc_pages_mpol+0x1fb/0x550
[ 99.988792][ T6564] folio_alloc_noprof+0x20/0x2d0
[ 99.990836][ T6564] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.993190][ T6564] page_cache_ra_order+0x4c0/0xd00
[ 99.995252][ T6564] filemap_fault+0x1a5e/0x2740
[ 99.997209][ T6564] __do_fault+0x10a/0x490
[ 99.999054][ T6564] do_pte_missing+0x1a6/0x3fb0
[ 100.000992][ T6564] __handle_mm_fault+0x103d/0x2a40
[ 100.003020][ T6564] handle_mm_fault+0x3fe/0xad0
[ 100.004945][ T6564] do_user_addr_fault+0x60c/0x1370
[ 100.006978][ T6564] exc_page_fault+0x5c/0xc0
[ 100.009082][ T6564] asm_exc_page_fault+0x26/0x30
[ 100.010866][ T6564] page_owner free stack trace missing
[ 100.012862][ T6564] Modules linked in:
[ 100.014244][ T6564] CPU: 0 UID: 0 PID: 6564 Comm: syz.0.31 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 100.014266][ T6564] Tainted: [B]=BAD_PAGE
[ 100.014270][ T6564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.014278][ T6564] Call Trace:
[ 100.014283][ T6564]
[ 100.014288][ T6564] dump_stack_lvl+0x16c/0x1f0
[ 100.014304][ T6564] bad_page+0xb3/0x1f0
[ 100.014317][ T6564] ? __pfx_bad_page+0x10/0x10
[ 100.014329][ T6564] ? __mem_cgroup_uncharge+0xda/0x130
[ 100.014344][ T6564] free_tail_page_prepare+0x44f/0x5b0
[ 100.014360][ T6564] __free_frozen_pages+0x96a/0xff0
[ 100.014379][ T6564] __folio_put+0x329/0x450
[ 100.014392][ T6564] ? __pfx___folio_put+0x10/0x10
[ 100.014405][ T6564] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.014419][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.014433][ T6564] ? lock_release+0x201/0x2f0
[ 100.014451][ T6564] filemap_free_folio+0x132/0x170
[ 100.014464][ T6564] delete_from_page_cache_batch+0x741/0x9b0
[ 100.014480][ T6564] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.014495][ T6564] ? __pfx_workingset_update_node+0x10/0x10
[ 100.014508][ T6564] ? xas_move_index+0xb0/0x110
[ 100.014523][ T6564] truncate_inode_pages_range+0x279/0xe30
[ 100.014542][ T6564] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.014573][ T6564] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.014596][ T6564] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.014614][ T6564] blkdev_flush_mapping+0xfb/0x290
[ 100.014628][ T6564] ? filemap_check_errors+0xa9/0x160
[ 100.014646][ T6564] blkdev_put_whole+0xc4/0xf0
[ 100.014659][ T6564] bdev_release+0x47e/0x6d0
[ 100.014674][ T6564] ? __pfx_blkdev_release+0x10/0x10
[ 100.014689][ T6564] blkdev_release+0x15/0x20
[ 100.014703][ T6564] __fput+0x3ff/0xb70
[ 100.014717][ T6564] task_work_run+0x14d/0x240
[ 100.014729][ T6564] ? __pfx_task_work_run+0x10/0x10
[ 100.014742][ T6564] ? do_raw_spin_unlock+0x172/0x230
[ 100.014755][ T6564] do_exit+0xafb/0x2c30
[ 100.014772][ T6564] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.014792][ T6564] ? __pfx_do_exit+0x10/0x10
[ 100.014809][ T6564] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.014821][ T6564] ? get_signal+0x8f5/0x26d0
[ 100.014834][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.014848][ T6564] do_group_exit+0xd3/0x2a0
[ 100.014866][ T6564] get_signal+0x2673/0x26d0
[ 100.014882][ T6564] ? __pfx_get_signal+0x10/0x10
[ 100.014897][ T6564] ? do_futex+0x122/0x350
[ 100.014912][ T6564] ? __pfx_do_futex+0x10/0x10
[ 100.014928][ T6564] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.014945][ T6564] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.014964][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.014978][ T6564] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.014993][ T6564] do_syscall_64+0xda/0x260
[ 100.015008][ T6564] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.015025][ T6564] RIP: 0033:0x7fa3d358e969
[ 100.015035][ T6564] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 100.015040][ T6564] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.015052][ T6564] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 100.015060][ T6564] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 100.015068][ T6564] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.015076][ T6564] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 100.015083][ T6564] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 100.015094][ T6564]
[ 100.015117][ T6564] BUG: Bad page state in process syz.0.31 pfn:50a00
[ 100.134441][ T6564] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50a00
[ 100.137883][ T6564] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 100.141029][ T6564] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 100.143800][ T6564] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.146720][ T6564] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.149649][ T6564] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.152455][ T6564] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.155041][ T6564] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.157882][ T6564] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.160611][ T6564] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 100.162875][ T6564] page_owner tracks the page as allocated
[ 100.164572][ T6564] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6563, tgid 6563 (syz.0.31), ts 99929813408, free_ts 0
[ 100.170215][ T6564] post_alloc_hook+0x181/0x1b0
[ 100.171656][ T6564] prep_new_page+0xa0/0xe0
[ 100.173049][ T6564] get_page_from_freelist+0x135b/0x3800
[ 100.174901][ T6564] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.177108][ T6564] alloc_pages_mpol+0x1fb/0x550
[ 100.178687][ T6564] folio_alloc_noprof+0x20/0x2d0
[ 100.180191][ T6564] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.181939][ T6564] page_cache_ra_order+0x4c0/0xd00
[ 100.183531][ T6564] filemap_fault+0x1a5e/0x2740
[ 100.184984][ T6564] __do_fault+0x10a/0x490
[ 100.186281][ T6564] do_pte_missing+0x1a6/0x3fb0
[ 100.187776][ T6564] __handle_mm_fault+0x103d/0x2a40
[ 100.189429][ T6564] handle_mm_fault+0x3fe/0xad0
[ 100.191034][ T6564] do_user_addr_fault+0x60c/0x1370
[ 100.192600][ T6564] exc_page_fault+0x5c/0xc0
[ 100.194117][ T6564] asm_exc_page_fault+0x26/0x30
[ 100.195649][ T6564] page_owner free stack trace missing
[ 100.197267][ T6564] Modules linked in:
[ 100.198664][ T6564] CPU: 1 UID: 0 PID: 6564 Comm: syz.0.31 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 100.198682][ T6564] Tainted: [B]=BAD_PAGE
[ 100.198686][ T6564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.198692][ T6564] Call Trace:
[ 100.198696][ T6564]
[ 100.198701][ T6564] dump_stack_lvl+0x16c/0x1f0
[ 100.198716][ T6564] bad_page+0xb3/0x1f0
[ 100.198728][ T6564] ? __pfx_bad_page+0x10/0x10
[ 100.198739][ T6564] ? page_bad_reason+0x9d/0x1e0
[ 100.198749][ T6564] __free_frozen_pages+0x76e/0xff0
[ 100.198764][ T6564] __folio_put+0x329/0x450
[ 100.198775][ T6564] ? __pfx___folio_put+0x10/0x10
[ 100.198786][ T6564] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.198807][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.198820][ T6564] ? lock_release+0x201/0x2f0
[ 100.198835][ T6564] filemap_free_folio+0x132/0x170
[ 100.198845][ T6564] delete_from_page_cache_batch+0x741/0x9b0
[ 100.198857][ T6564] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.198869][ T6564] ? __pfx_workingset_update_node+0x10/0x10
[ 100.198880][ T6564] ? xas_move_index+0xb0/0x110
[ 100.198893][ T6564] truncate_inode_pages_range+0x279/0xe30
[ 100.198908][ T6564] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.198934][ T6564] ? __pfx_invalidate_bh_lru+0x10/0x10
2025/05/03 08:58:17 executed programs: 18
[ 100.198951][ T6564] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.198965][ T6564] blkdev_flush_mapping+0xfb/0x290
[ 100.198977][ T6564] ? filemap_check_errors+0xa9/0x160
[ 100.198993][ T6564] blkdev_put_whole+0xc4/0xf0
[ 100.199003][ T6564] bdev_release+0x47e/0x6d0
[ 100.199016][ T6564] ? __pfx_blkdev_release+0x10/0x10
[ 100.199028][ T6564] blkdev_release+0x15/0x20
[ 100.199040][ T6564] __fput+0x3ff/0xb70
[ 100.199052][ T6564] task_work_run+0x14d/0x240
[ 100.199063][ T6564] ? __pfx_task_work_run+0x10/0x10
[ 100.199072][ T6564] ? do_raw_spin_unlock+0x172/0x230
[ 100.199083][ T6564] do_exit+0xafb/0x2c30
[ 100.199097][ T6564] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.199114][ T6564] ? __pfx_do_exit+0x10/0x10
[ 100.199128][ T6564] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.199138][ T6564] ? get_signal+0x8f5/0x26d0
[ 100.199149][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.199160][ T6564] do_group_exit+0xd3/0x2a0
[ 100.199175][ T6564] get_signal+0x2673/0x26d0
[ 100.199189][ T6564] ? __pfx_get_signal+0x10/0x10
[ 100.199200][ T6564] ? do_futex+0x122/0x350
[ 100.199213][ T6564] ? __pfx_do_futex+0x10/0x10
[ 100.199227][ T6564] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.199242][ T6564] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.199257][ T6564] ? rcu_is_watching+0x12/0xc0
[ 100.199269][ T6564] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.199282][ T6564] do_syscall_64+0xda/0x260
[ 100.199294][ T6564] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.199305][ T6564] RIP: 0033:0x7fa3d358e969
[ 100.199313][ T6564] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 100.199317][ T6564] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.199328][ T6564] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 100.199334][ T6564] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 100.199340][ T6564] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.199346][ T6564] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 100.199352][ T6564] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 100.199360][ T6564]
[ 100.232552][ T6566] BUG: Bad page state in process syz.0.32 pfn:50e01
[ 100.313398][ T6566] page does not match folio
[ 100.314758][ T6566] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x50e01
[ 100.317700][ T6566] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 100.320290][ T6566] raw: 00fff00000000000 ffffea0001438000 00000000ffffffff ffffffffffffffff
[ 100.323702][ T6566] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.326675][ T6566] page dumped because: nonzero pincount
[ 100.328805][ T6566] page_owner tracks the page as allocated
[ 100.330510][ T6566] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6565, tgid 6565 (syz.0.32), ts 100207403055, free_ts 99803795636
[ 100.336667][ T6566] post_alloc_hook+0x181/0x1b0
[ 100.338593][ T6566] prep_new_page+0xa0/0xe0
[ 100.340009][ T6566] get_page_from_freelist+0x135b/0x3800
[ 100.341718][ T6566] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.343538][ T6566] alloc_pages_mpol+0x1fb/0x550
[ 100.344974][ T6566] folio_alloc_noprof+0x20/0x2d0
[ 100.346445][ T6566] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.348183][ T6566] page_cache_ra_order+0x4c0/0xd00
[ 100.349686][ T6566] filemap_fault+0x1a5e/0x2740
[ 100.351215][ T6566] __do_fault+0x10a/0x490
[ 100.352877][ T6566] do_pte_missing+0x1a6/0x3fb0
[ 100.354732][ T6566] __handle_mm_fault+0x103d/0x2a40
[ 100.356691][ T6566] handle_mm_fault+0x3fe/0xad0
[ 100.358491][ T6566] do_user_addr_fault+0x60c/0x1370
[ 100.360053][ T6566] exc_page_fault+0x5c/0xc0
[ 100.361453][ T6566] asm_exc_page_fault+0x26/0x30
[ 100.362897][ T6566] page last free pid 6562 tgid 6561 stack trace:
[ 100.364828][ T6566] free_unref_folios+0x999/0x1630
[ 100.366376][ T6566] folios_put_refs+0x56f/0x740
[ 100.367892][ T6566] truncate_inode_pages_range+0x311/0xe30
[ 100.369614][ T6566] blkdev_flush_mapping+0xfb/0x290
[ 100.371183][ T6566] blkdev_put_whole+0xc4/0xf0
[ 100.372599][ T6566] bdev_release+0x47e/0x6d0
[ 100.373955][ T6566] blkdev_release+0x15/0x20
[ 100.375300][ T6566] __fput+0x3ff/0xb70
[ 100.376502][ T6566] task_work_run+0x14d/0x240
[ 100.378006][ T6566] do_exit+0xafb/0x2c30
[ 100.379445][ T6566] do_group_exit+0xd3/0x2a0
[ 100.380821][ T6566] get_signal+0x2673/0x26d0
[ 100.382188][ T6566] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.383815][ T6566] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.385533][ T6566] do_syscall_64+0xda/0x260
[ 100.386920][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.388813][ T6566] Modules linked in:
[ 100.390004][ T6566] CPU: 0 UID: 0 PID: 6566 Comm: syz.0.32 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 100.390024][ T6566] Tainted: [B]=BAD_PAGE
[ 100.390027][ T6566] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.390034][ T6566] Call Trace:
[ 100.390038][ T6566]
[ 100.390042][ T6566] dump_stack_lvl+0x16c/0x1f0
[ 100.390055][ T6566] bad_page+0xb3/0x1f0
[ 100.390065][ T6566] ? __pfx_bad_page+0x10/0x10
[ 100.390076][ T6566] ? __mem_cgroup_uncharge+0xda/0x130
[ 100.390088][ T6566] free_tail_page_prepare+0x44f/0x5b0
[ 100.390101][ T6566] __free_frozen_pages+0x96a/0xff0
[ 100.390116][ T6566] __folio_put+0x329/0x450
[ 100.390127][ T6566] ? __pfx___folio_put+0x10/0x10
[ 100.390138][ T6566] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.390149][ T6566] ? rcu_is_watching+0x12/0xc0
[ 100.390161][ T6566] ? lock_release+0x201/0x2f0
[ 100.390176][ T6566] filemap_free_folio+0x132/0x170
[ 100.390187][ T6566] delete_from_page_cache_batch+0x741/0x9b0
[ 100.390199][ T6566] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.390211][ T6566] ? __pfx_workingset_update_node+0x10/0x10
[ 100.390222][ T6566] ? xas_move_index+0xb0/0x110
[ 100.390234][ T6566] truncate_inode_pages_range+0x279/0xe30
[ 100.390249][ T6566] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.390272][ T6566] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.390288][ T6566] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.390302][ T6566] blkdev_flush_mapping+0xfb/0x290
[ 100.390314][ T6566] ? filemap_check_errors+0xa9/0x160
[ 100.390328][ T6566] blkdev_put_whole+0xc4/0xf0
[ 100.390338][ T6566] bdev_release+0x47e/0x6d0
[ 100.390350][ T6566] ? __pfx_blkdev_release+0x10/0x10
[ 100.390363][ T6566] blkdev_release+0x15/0x20
[ 100.390374][ T6566] __fput+0x3ff/0xb70
[ 100.390386][ T6566] task_work_run+0x14d/0x240
[ 100.390397][ T6566] ? __pfx_task_work_run+0x10/0x10
[ 100.390407][ T6566] ? do_raw_spin_unlock+0x172/0x230
[ 100.390417][ T6566] do_exit+0xafb/0x2c30
[ 100.390431][ T6566] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.390448][ T6566] ? __pfx_do_exit+0x10/0x10
[ 100.390461][ T6566] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.390471][ T6566] ? get_signal+0x8f5/0x26d0
[ 100.390482][ T6566] ? rcu_is_watching+0x12/0xc0
[ 100.390493][ T6566] do_group_exit+0xd3/0x2a0
[ 100.390508][ T6566] get_signal+0x2673/0x26d0
[ 100.390521][ T6566] ? __pfx_get_signal+0x10/0x10
[ 100.390533][ T6566] ? do_futex+0x122/0x350
[ 100.390546][ T6566] ? __pfx_do_futex+0x10/0x10
[ 100.390559][ T6566] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.390573][ T6566] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.390588][ T6566] ? madvise_unlock+0xc6/0x190
[ 100.390600][ T6566] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.390612][ T6566] do_syscall_64+0xda/0x260
[ 100.390624][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.390634][ T6566] RIP: 0033:0x7fa3d358e969
[ 100.390642][ T6566] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 100.390646][ T6566] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.390656][ T6566] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 100.390662][ T6566] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 100.390668][ T6566] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.390674][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 100.390680][ T6566] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 100.390688][ T6566]
[ 100.390703][ T6566] BUG: Bad page state in process syz.0.32 pfn:50e00
[ 100.505519][ T6566] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x50e00
[ 100.508893][ T6566] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 100.512244][ T6566] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 100.515800][ T6566] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.519446][ T6566] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.522721][ T6566] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.525943][ T6566] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.529360][ T6566] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.532843][ T6566] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.536310][ T6566] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 100.539306][ T6566] page_owner tracks the page as allocated
[ 100.541506][ T6566] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6565, tgid 6565 (syz.0.32), ts 100207403055, free_ts 99803795636
[ 100.549107][ T6566] post_alloc_hook+0x181/0x1b0
[ 100.551054][ T6566] prep_new_page+0xa0/0xe0
[ 100.552794][ T6566] get_page_from_freelist+0x135b/0x3800
[ 100.555067][ T6566] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.557618][ T6566] alloc_pages_mpol+0x1fb/0x550
[ 100.559603][ T6566] folio_alloc_noprof+0x20/0x2d0
[ 100.561687][ T6566] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.563980][ T6566] page_cache_ra_order+0x4c0/0xd00
[ 100.565971][ T6566] filemap_fault+0x1a5e/0x2740
[ 100.567881][ T6566] __do_fault+0x10a/0x490
[ 100.569574][ T6566] do_pte_missing+0x1a6/0x3fb0
[ 100.571448][ T6566] __handle_mm_fault+0x103d/0x2a40
[ 100.573411][ T6566] handle_mm_fault+0x3fe/0xad0
[ 100.575397][ T6566] do_user_addr_fault+0x60c/0x1370
[ 100.577476][ T6566] exc_page_fault+0x5c/0xc0
[ 100.579257][ T6566] asm_exc_page_fault+0x26/0x30
[ 100.581166][ T6566] page last free pid 6562 tgid 6561 stack trace:
[ 100.583589][ T6566] free_unref_folios+0x999/0x1630
[ 100.585549][ T6566] folios_put_refs+0x56f/0x740
[ 100.587485][ T6566] truncate_inode_pages_range+0x311/0xe30
[ 100.589714][ T6566] blkdev_flush_mapping+0xfb/0x290
[ 100.591686][ T6566] blkdev_put_whole+0xc4/0xf0
[ 100.593446][ T6566] bdev_release+0x47e/0x6d0
[ 100.595322][ T6566] blkdev_release+0x15/0x20
[ 100.597143][ T6566] __fput+0x3ff/0xb70
[ 100.598817][ T6566] task_work_run+0x14d/0x240
[ 100.600543][ T6566] do_exit+0xafb/0x2c30
[ 100.602191][ T6566] do_group_exit+0xd3/0x2a0
[ 100.603946][ T6566] get_signal+0x2673/0x26d0
[ 100.605783][ T6566] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.607979][ T6566] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.610100][ T6566] do_syscall_64+0xda/0x260
[ 100.611865][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.614435][ T6566] Modules linked in:
[ 100.616004][ T6566] CPU: 1 UID: 0 PID: 6566 Comm: syz.0.32 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 100.616028][ T6566] Tainted: [B]=BAD_PAGE
[ 100.616034][ T6566] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.616044][ T6566] Call Trace:
[ 100.616052][ T6566]
[ 100.616066][ T6566] dump_stack_lvl+0x16c/0x1f0
[ 100.616089][ T6566] bad_page+0xb3/0x1f0
[ 100.616107][ T6566] ? __pfx_bad_page+0x10/0x10
[ 100.616123][ T6566] ? page_bad_reason+0x9d/0x1e0
[ 100.616138][ T6566] __free_frozen_pages+0x76e/0xff0
[ 100.616161][ T6566] __folio_put+0x329/0x450
[ 100.616179][ T6566] ? __pfx___folio_put+0x10/0x10
[ 100.616195][ T6566] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.616213][ T6566] ? rcu_is_watching+0x12/0xc0
[ 100.616231][ T6566] ? lock_release+0x201/0x2f0
[ 100.616253][ T6566] filemap_free_folio+0x132/0x170
[ 100.616269][ T6566] delete_from_page_cache_batch+0x741/0x9b0
[ 100.616287][ T6566] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.616305][ T6566] ? __pfx_workingset_update_node+0x10/0x10
[ 100.616321][ T6566] ? xas_move_index+0xb0/0x110
[ 100.616341][ T6566] truncate_inode_pages_range+0x279/0xe30
[ 100.616363][ T6566] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.616400][ T6566] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.616424][ T6566] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.616446][ T6566] blkdev_flush_mapping+0xfb/0x290
[ 100.616464][ T6566] ? filemap_check_errors+0xa9/0x160
[ 100.616486][ T6566] blkdev_put_whole+0xc4/0xf0
[ 100.616502][ T6566] bdev_release+0x47e/0x6d0
[ 100.616525][ T6566] ? __pfx_blkdev_release+0x10/0x10
[ 100.616543][ T6566] blkdev_release+0x15/0x20
[ 100.616561][ T6566] __fput+0x3ff/0xb70
[ 100.616579][ T6566] task_work_run+0x14d/0x240
[ 100.616595][ T6566] ? __pfx_task_work_run+0x10/0x10
[ 100.616610][ T6566] ? do_raw_spin_unlock+0x172/0x230
[ 100.616627][ T6566] do_exit+0xafb/0x2c30
[ 100.616649][ T6566] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.616675][ T6566] ? __pfx_do_exit+0x10/0x10
[ 100.616694][ T6566] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.616709][ T6566] ? get_signal+0x8f5/0x26d0
[ 100.616727][ T6566] ? rcu_is_watching+0x12/0xc0
[ 100.616744][ T6566] do_group_exit+0xd3/0x2a0
[ 100.616766][ T6566] get_signal+0x2673/0x26d0
[ 100.616786][ T6566] ? __pfx_get_signal+0x10/0x10
[ 100.616803][ T6566] ? do_futex+0x122/0x350
[ 100.616873][ T6566] ? __pfx_do_futex+0x10/0x10
[ 100.616894][ T6566] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.616916][ T6566] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.616940][ T6566] ? madvise_unlock+0xc6/0x190
[ 100.616966][ T6566] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.616985][ T6566] do_syscall_64+0xda/0x260
[ 100.617004][ T6566] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.617018][ T6566] RIP: 0033:0x7fa3d358e969
[ 100.617030][ T6566] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 100.617037][ T6566] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.617052][ T6566] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 100.617062][ T6566] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 100.617071][ T6566] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.617080][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 100.617088][ T6566] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 100.617102][ T6566]
[ 100.763041][ T6569] BUG: Bad page state in process syz.0.33 pfn:51801
[ 100.765027][ T6569] page does not match folio
[ 100.766499][ T6569] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51801
[ 100.769823][ T6569] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 100.772447][ T6569] raw: 00fff00000000000 ffffea0001460000 00000000ffffffff ffffffffffffffff
[ 100.775507][ T6569] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.778608][ T6569] page dumped because: nonzero pincount
[ 100.780446][ T6569] page_owner tracks the page as allocated
[ 100.782368][ T6569] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6568, tgid 6568 (syz.0.33), ts 100744954425, free_ts 100617152695
[ 100.789198][ T6569] post_alloc_hook+0x181/0x1b0
[ 100.791091][ T6569] prep_new_page+0xa0/0xe0
[ 100.792713][ T6569] get_page_from_freelist+0x135b/0x3800
[ 100.794665][ T6569] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.796651][ T6569] alloc_pages_mpol+0x1fb/0x550
[ 100.798756][ T6569] folio_alloc_noprof+0x20/0x2d0
[ 100.800344][ T6569] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.802119][ T6569] page_cache_ra_order+0x4c0/0xd00
[ 100.803923][ T6569] filemap_fault+0x1a5e/0x2740
[ 100.805696][ T6569] __do_fault+0x10a/0x490
[ 100.807171][ T6569] do_pte_missing+0x1a6/0x3fb0
[ 100.809807][ T6569] __handle_mm_fault+0x103d/0x2a40
[ 100.811633][ T6569] handle_mm_fault+0x3fe/0xad0
[ 100.813337][ T6569] do_user_addr_fault+0x60c/0x1370
[ 100.815014][ T6569] exc_page_fault+0x5c/0xc0
[ 100.816483][ T6569] asm_exc_page_fault+0x26/0x30
[ 100.818469][ T6569] page last free pid 6566 tgid 6565 stack trace:
[ 100.820599][ T6569] free_unref_folios+0x999/0x1630
[ 100.822245][ T6569] folios_put_refs+0x56f/0x740
[ 100.823806][ T6569] truncate_inode_pages_range+0x311/0xe30
[ 100.825797][ T6569] blkdev_flush_mapping+0xfb/0x290
[ 100.828047][ T6569] blkdev_put_whole+0xc4/0xf0
[ 100.829710][ T6569] bdev_release+0x47e/0x6d0
[ 100.831132][ T6569] blkdev_release+0x15/0x20
[ 100.832698][ T6569] __fput+0x3ff/0xb70
[ 100.834120][ T6569] task_work_run+0x14d/0x240
[ 100.835536][ T6569] do_exit+0xafb/0x2c30
[ 100.836645][ T6569] do_group_exit+0xd3/0x2a0
[ 100.837990][ T6569] get_signal+0x2673/0x26d0
[ 100.839243][ T6569] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.840848][ T6569] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.842841][ T6569] do_syscall_64+0xda/0x260
[ 100.844534][ T6569] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.846339][ T6569] Modules linked in:
[ 100.847503][ T6569] CPU: 2 UID: 0 PID: 6569 Comm: syz.0.33 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 100.847520][ T6569] Tainted: [B]=BAD_PAGE
[ 100.847524][ T6569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 100.847530][ T6569] Call Trace:
[ 100.847534][ T6569]
[ 100.847538][ T6569] dump_stack_lvl+0x16c/0x1f0
[ 100.847552][ T6569] bad_page+0xb3/0x1f0
[ 100.847563][ T6569] ? __pfx_bad_page+0x10/0x10
[ 100.847574][ T6569] ? __mem_cgroup_uncharge+0xda/0x130
[ 100.847598][ T6569] free_tail_page_prepare+0x44f/0x5b0
[ 100.847613][ T6569] __free_frozen_pages+0x96a/0xff0
[ 100.847628][ T6569] __folio_put+0x329/0x450
[ 100.847639][ T6569] ? __pfx___folio_put+0x10/0x10
[ 100.847650][ T6569] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 100.847662][ T6569] ? rcu_is_watching+0x12/0xc0
[ 100.847673][ T6569] ? lock_release+0x201/0x2f0
[ 100.847689][ T6569] filemap_free_folio+0x132/0x170
[ 100.847699][ T6569] delete_from_page_cache_batch+0x741/0x9b0
[ 100.847711][ T6569] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 100.847723][ T6569] ? __pfx_workingset_update_node+0x10/0x10
[ 100.847734][ T6569] ? xas_move_index+0xb0/0x110
[ 100.847746][ T6569] truncate_inode_pages_range+0x279/0xe30
[ 100.847762][ T6569] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 100.847784][ T6569] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 100.847801][ T6569] ? __pfx_has_bh_in_lru+0x10/0x10
[ 100.847815][ T6569] blkdev_flush_mapping+0xfb/0x290
[ 100.847827][ T6569] ? filemap_check_errors+0xa9/0x160
[ 100.847841][ T6569] blkdev_put_whole+0xc4/0xf0
[ 100.847852][ T6569] bdev_release+0x47e/0x6d0
[ 100.847865][ T6569] ? __pfx_blkdev_release+0x10/0x10
[ 100.847877][ T6569] blkdev_release+0x15/0x20
[ 100.847889][ T6569] __fput+0x3ff/0xb70
[ 100.847900][ T6569] task_work_run+0x14d/0x240
[ 100.847911][ T6569] ? __pfx_task_work_run+0x10/0x10
[ 100.847923][ T6569] ? do_raw_spin_unlock+0x172/0x230
[ 100.847934][ T6569] do_exit+0xafb/0x2c30
[ 100.847952][ T6569] ? __pfx_futex_wake_mark+0x10/0x10
[ 100.847969][ T6569] ? __pfx_do_exit+0x10/0x10
[ 100.847983][ T6569] ? do_raw_spin_lock+0x12c/0x2b0
[ 100.847992][ T6569] ? get_signal+0x8f5/0x26d0
[ 100.848004][ T6569] ? rcu_is_watching+0x12/0xc0
[ 100.848016][ T6569] do_group_exit+0xd3/0x2a0
[ 100.848031][ T6569] get_signal+0x2673/0x26d0
[ 100.848044][ T6569] ? __pfx_get_signal+0x10/0x10
[ 100.848056][ T6569] ? do_futex+0x122/0x350
[ 100.848069][ T6569] ? __pfx_do_futex+0x10/0x10
[ 100.848081][ T6569] arch_do_signal_or_restart+0x8f/0x7d0
[ 100.848096][ T6569] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 100.848112][ T6569] ? rcu_is_watching+0x12/0xc0
[ 100.848123][ T6569] syscall_exit_to_user_mode+0x150/0x2a0
[ 100.848136][ T6569] do_syscall_64+0xda/0x260
[ 100.848148][ T6569] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 100.848158][ T6569] RIP: 0033:0x7fa3d358e969
[ 100.848166][ T6569] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 100.848171][ T6569] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 100.848180][ T6569] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 100.848187][ T6569] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 100.848193][ T6569] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 100.848200][ T6569] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 100.848206][ T6569] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 100.848215][ T6569]
[ 100.848240][ T6569] BUG: Bad page state in process syz.0.33 pfn:51800
[ 100.945778][ T6569] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51800
[ 100.948130][ T6569] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 100.950350][ T6569] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 100.952866][ T6569] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.955133][ T6569] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.957390][ T6569] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 100.959654][ T6569] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.962295][ T6569] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 100.965015][ T6569] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 100.967849][ T6569] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 100.970216][ T6569] page_owner tracks the page as allocated
[ 100.972051][ T6569] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6568, tgid 6568 (syz.0.33), ts 100744954425, free_ts 100617152695
[ 100.978155][ T6569] post_alloc_hook+0x181/0x1b0
[ 100.979537][ T6569] prep_new_page+0xa0/0xe0
[ 100.980845][ T6569] get_page_from_freelist+0x135b/0x3800
[ 100.982367][ T6569] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 100.983973][ T6569] alloc_pages_mpol+0x1fb/0x550
[ 100.985278][ T6569] folio_alloc_noprof+0x20/0x2d0
[ 100.986649][ T6569] filemap_alloc_folio_noprof+0x3a1/0x470
[ 100.988307][ T6569] page_cache_ra_order+0x4c0/0xd00
[ 100.989940][ T6569] filemap_fault+0x1a5e/0x2740
[ 100.991553][ T6569] __do_fault+0x10a/0x490
[ 100.993052][ T6569] do_pte_missing+0x1a6/0x3fb0
[ 100.994791][ T6569] __handle_mm_fault+0x103d/0x2a40
[ 100.996546][ T6569] handle_mm_fault+0x3fe/0xad0
[ 100.998469][ T6569] do_user_addr_fault+0x60c/0x1370
[ 101.000342][ T6569] exc_page_fault+0x5c/0xc0
[ 101.001947][ T6569] asm_exc_page_fault+0x26/0x30
[ 101.003563][ T6569] page last free pid 6566 tgid 6565 stack trace:
[ 101.005791][ T6569] free_unref_folios+0x999/0x1630
[ 101.007730][ T6569] folios_put_refs+0x56f/0x740
[ 101.009290][ T6569] truncate_inode_pages_range+0x311/0xe30
[ 101.010987][ T6569] blkdev_flush_mapping+0xfb/0x290
[ 101.012807][ T6569] blkdev_put_whole+0xc4/0xf0
[ 101.014279][ T6569] bdev_release+0x47e/0x6d0
[ 101.015495][ T6569] blkdev_release+0x15/0x20
[ 101.016920][ T6569] __fput+0x3ff/0xb70
[ 101.018169][ T6569] task_work_run+0x14d/0x240
[ 101.019484][ T6569] do_exit+0xafb/0x2c30
[ 101.020737][ T6569] do_group_exit+0xd3/0x2a0
[ 101.022515][ T6569] get_signal+0x2673/0x26d0
[ 101.024190][ T6569] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.026155][ T6569] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.028279][ T6569] do_syscall_64+0xda/0x260
[ 101.030064][ T6569] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.032232][ T6569] Modules linked in:
[ 101.033669][ T6569] CPU: 2 UID: 0 PID: 6569 Comm: syz.0.33 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 101.033692][ T6569] Tainted: [B]=BAD_PAGE
[ 101.033697][ T6569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.033706][ T6569] Call Trace:
[ 101.033713][ T6569]
[ 101.033719][ T6569] dump_stack_lvl+0x16c/0x1f0
[ 101.033764][ T6569] bad_page+0xb3/0x1f0
[ 101.033784][ T6569] ? __pfx_bad_page+0x10/0x10
[ 101.033799][ T6569] ? page_bad_reason+0x9d/0x1e0
[ 101.033815][ T6569] __free_frozen_pages+0x76e/0xff0
[ 101.033837][ T6569] __folio_put+0x329/0x450
[ 101.033854][ T6569] ? __pfx___folio_put+0x10/0x10
[ 101.033871][ T6569] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.033889][ T6569] ? rcu_is_watching+0x12/0xc0
[ 101.033907][ T6569] ? lock_release+0x201/0x2f0
[ 101.033930][ T6569] filemap_free_folio+0x132/0x170
[ 101.033946][ T6569] delete_from_page_cache_batch+0x741/0x9b0
[ 101.033965][ T6569] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.033984][ T6569] ? __pfx_workingset_update_node+0x10/0x10
[ 101.034001][ T6569] ? xas_move_index+0xb0/0x110
[ 101.034020][ T6569] truncate_inode_pages_range+0x279/0xe30
[ 101.034043][ T6569] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.034080][ T6569] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.034112][ T6569] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.034134][ T6569] blkdev_flush_mapping+0xfb/0x290
[ 101.034152][ T6569] ? filemap_check_errors+0xa9/0x160
[ 101.034176][ T6569] blkdev_put_whole+0xc4/0xf0
[ 101.034192][ T6569] bdev_release+0x47e/0x6d0
[ 101.034212][ T6569] ? __pfx_blkdev_release+0x10/0x10
[ 101.034231][ T6569] blkdev_release+0x15/0x20
[ 101.034249][ T6569] __fput+0x3ff/0xb70
[ 101.034268][ T6569] task_work_run+0x14d/0x240
[ 101.034287][ T6569] ? __pfx_task_work_run+0x10/0x10
[ 101.034302][ T6569] ? do_raw_spin_unlock+0x172/0x230
[ 101.034318][ T6569] do_exit+0xafb/0x2c30
[ 101.034340][ T6569] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.034367][ T6569] ? __pfx_do_exit+0x10/0x10
[ 101.034388][ T6569] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.034404][ T6569] ? get_signal+0x8f5/0x26d0
[ 101.034423][ T6569] ? rcu_is_watching+0x12/0xc0
[ 101.034441][ T6569] do_group_exit+0xd3/0x2a0
[ 101.034465][ T6569] get_signal+0x2673/0x26d0
[ 101.034488][ T6569] ? __pfx_get_signal+0x10/0x10
[ 101.034506][ T6569] ? do_futex+0x122/0x350
[ 101.034527][ T6569] ? __pfx_do_futex+0x10/0x10
[ 101.034548][ T6569] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.034571][ T6569] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.034595][ T6569] ? rcu_is_watching+0x12/0xc0
[ 101.034614][ T6569] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.034636][ T6569] do_syscall_64+0xda/0x260
[ 101.034656][ T6569] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.034672][ T6569] RIP: 0033:0x7fa3d358e969
[ 101.034685][ T6569] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 101.034693][ T6569] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.034710][ T6569] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 101.034721][ T6569] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 101.034731][ T6569] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.034740][ T6569] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 101.034751][ T6569] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 101.034768][ T6569]
[ 101.061907][ T6570] BUG: Bad page state in process syz.0.34 pfn:51001
[ 101.147536][ T6570] page does not match folio
[ 101.148958][ T6570] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51001
[ 101.152029][ T6570] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 101.154356][ T6570] raw: 00fff00000000000 ffffea0001440000 00000000ffffffff ffffffffffffffff
[ 101.156979][ T6570] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.160032][ T6570] page dumped because: nonzero pincount
[ 101.161968][ T6570] page_owner tracks the page as allocated
[ 101.163853][ T6570] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6570, tgid 6570 (syz.0.34), ts 101040900751, free_ts 99322174958
[ 101.170536][ T6570] post_alloc_hook+0x181/0x1b0
[ 101.172187][ T6570] prep_new_page+0xa0/0xe0
[ 101.173691][ T6570] get_page_from_freelist+0x135b/0x3800
[ 101.175583][ T6570] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.177632][ T6570] alloc_pages_mpol+0x1fb/0x550
[ 101.179381][ T6570] folio_alloc_noprof+0x20/0x2d0
[ 101.181086][ T6570] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.183026][ T6570] page_cache_ra_order+0x4c0/0xd00
[ 101.184787][ T6570] filemap_fault+0x1a5e/0x2740
[ 101.186395][ T6570] __do_fault+0x10a/0x490
[ 101.187861][ T6570] do_pte_missing+0x1a6/0x3fb0
[ 101.189406][ T6570] __handle_mm_fault+0x103d/0x2a40
[ 101.191117][ T6570] handle_mm_fault+0x3fe/0xad0
[ 101.192618][ T6570] do_user_addr_fault+0x60c/0x1370
[ 101.194160][ T6570] exc_page_fault+0x5c/0xc0
[ 101.195575][ T6570] asm_exc_page_fault+0x26/0x30
[ 101.197054][ T6570] page last free pid 6560 tgid 6559 stack trace:
[ 101.199120][ T6570] free_unref_folios+0x999/0x1630
[ 101.200654][ T6570] folios_put_refs+0x56f/0x740
[ 101.202114][ T6570] truncate_inode_pages_range+0x311/0xe30
[ 101.203858][ T6570] blkdev_flush_mapping+0xfb/0x290
[ 101.205411][ T6570] blkdev_put_whole+0xc4/0xf0
[ 101.206860][ T6570] bdev_release+0x47e/0x6d0
[ 101.208305][ T6570] blkdev_release+0x15/0x20
[ 101.209737][ T6570] __fput+0x3ff/0xb70
[ 101.210978][ T6570] task_work_run+0x14d/0x240
[ 101.212367][ T6570] do_exit+0xafb/0x2c30
[ 101.213911][ T6570] do_group_exit+0xd3/0x2a0
[ 101.215607][ T6570] get_signal+0x2673/0x26d0
[ 101.217380][ T6570] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.219432][ T6570] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.221401][ T6570] do_syscall_64+0xda/0x260
[ 101.223049][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.224819][ T6570] Modules linked in:
[ 101.226033][ T6570] CPU: 1 UID: 0 PID: 6570 Comm: syz.0.34 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 101.226058][ T6570] Tainted: [B]=BAD_PAGE
[ 101.226064][ T6570] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.226073][ T6570] Call Trace:
[ 101.226078][ T6570]
[ 101.226084][ T6570] dump_stack_lvl+0x16c/0x1f0
[ 101.226105][ T6570] bad_page+0xb3/0x1f0
[ 101.226122][ T6570] ? __pfx_bad_page+0x10/0x10
[ 101.226137][ T6570] ? __mem_cgroup_uncharge+0xda/0x130
[ 101.226154][ T6570] free_tail_page_prepare+0x44f/0x5b0
[ 101.226173][ T6570] __free_frozen_pages+0x96a/0xff0
[ 101.226195][ T6570] __folio_put+0x329/0x450
[ 101.226208][ T6570] ? __pfx___folio_put+0x10/0x10
[ 101.226223][ T6570] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.226235][ T6570] ? rcu_is_watching+0x12/0xc0
[ 101.226247][ T6570] ? lock_release+0x201/0x2f0
[ 101.226262][ T6570] filemap_free_folio+0x132/0x170
[ 101.226272][ T6570] delete_from_page_cache_batch+0x741/0x9b0
[ 101.226285][ T6570] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.226297][ T6570] ? __pfx_workingset_update_node+0x10/0x10
[ 101.226307][ T6570] ? xas_move_index+0xb0/0x110
[ 101.226320][ T6570] truncate_inode_pages_range+0x279/0xe30
[ 101.226335][ T6570] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.226358][ T6570] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.226374][ T6570] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.226389][ T6570] blkdev_flush_mapping+0xfb/0x290
[ 101.226401][ T6570] blkdev_put_whole+0xc4/0xf0
[ 101.226412][ T6570] bdev_release+0x47e/0x6d0
[ 101.226425][ T6570] ? __pfx_blkdev_release+0x10/0x10
[ 101.226436][ T6570] blkdev_release+0x15/0x20
[ 101.226448][ T6570] __fput+0x3ff/0xb70
[ 101.226460][ T6570] task_work_run+0x14d/0x240
[ 101.226471][ T6570] ? __pfx_task_work_run+0x10/0x10
[ 101.226481][ T6570] ? do_raw_spin_unlock+0x172/0x230
[ 101.226492][ T6570] do_exit+0xafb/0x2c30
[ 101.226507][ T6570] ? __pfx_do_exit+0x10/0x10
[ 101.226521][ T6570] ? preempt_schedule_thunk+0x16/0x30
[ 101.226532][ T6570] do_group_exit+0xd3/0x2a0
[ 101.226546][ T6570] __x64_sys_exit_group+0x3e/0x50
[ 101.226561][ T6570] x64_sys_call+0x1530/0x1730
[ 101.226575][ T6570] do_syscall_64+0xcd/0x260
[ 101.226587][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.226597][ T6570] RIP: 0033:0x7fa3d358e969
[ 101.226604][ T6570] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 101.226609][ T6570] RSP: 002b:00007ffd90b4bf88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 101.226618][ T6570] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa3d358e969
[ 101.226625][ T6570] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 101.226631][ T6570] RBP: 00007ffd90b4bfec R08: 0000000690b4c07f R09: 00000000000927c0
[ 101.226637][ T6570] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000012
[ 101.226643][ T6570] R13: 00000000000927c0 R14: 0000000000018910 R15: 00007ffd90b4c040
[ 101.226651][ T6570]
[ 101.226667][ T6570] BUG: Bad page state in process syz.0.34 pfn:51000
[ 101.332278][ T6570] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51000
[ 101.334888][ T6570] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 101.337565][ T6570] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 101.340522][ T6570] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.343690][ T6570] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.346469][ T6570] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.349132][ T6570] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.352051][ T6570] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.354690][ T6570] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.357275][ T6570] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 101.359616][ T6570] page_owner tracks the page as allocated
[ 101.361979][ T6570] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6570, tgid 6570 (syz.0.34), ts 101040900751, free_ts 99322174958
[ 101.369516][ T6570] post_alloc_hook+0x181/0x1b0
[ 101.371377][ T6570] prep_new_page+0xa0/0xe0
[ 101.373111][ T6570] get_page_from_freelist+0x135b/0x3800
[ 101.375230][ T6570] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.377585][ T6570] alloc_pages_mpol+0x1fb/0x550
[ 101.379502][ T6570] folio_alloc_noprof+0x20/0x2d0
[ 101.381260][ T6570] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.383553][ T6570] page_cache_ra_order+0x4c0/0xd00
[ 101.385599][ T6570] filemap_fault+0x1a5e/0x2740
[ 101.387605][ T6570] __do_fault+0x10a/0x490
[ 101.389301][ T6570] do_pte_missing+0x1a6/0x3fb0
[ 101.391203][ T6570] __handle_mm_fault+0x103d/0x2a40
[ 101.393224][ T6570] handle_mm_fault+0x3fe/0xad0
[ 101.394924][ T6570] do_user_addr_fault+0x60c/0x1370
[ 101.396915][ T6570] exc_page_fault+0x5c/0xc0
[ 101.398804][ T6570] asm_exc_page_fault+0x26/0x30
[ 101.400507][ T6570] page last free pid 6560 tgid 6559 stack trace:
[ 101.402381][ T6570] free_unref_folios+0x999/0x1630
[ 101.403878][ T6570] folios_put_refs+0x56f/0x740
[ 101.405523][ T6570] truncate_inode_pages_range+0x311/0xe30
[ 101.407793][ T6570] blkdev_flush_mapping+0xfb/0x290
[ 101.409800][ T6570] blkdev_put_whole+0xc4/0xf0
[ 101.411701][ T6570] bdev_release+0x47e/0x6d0
[ 101.413467][ T6570] blkdev_release+0x15/0x20
[ 101.415246][ T6570] __fput+0x3ff/0xb70
[ 101.416822][ T6570] task_work_run+0x14d/0x240
[ 101.418708][ T6570] do_exit+0xafb/0x2c30
[ 101.420305][ T6570] do_group_exit+0xd3/0x2a0
[ 101.421837][ T6570] get_signal+0x2673/0x26d0
[ 101.423362][ T6570] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.425347][ T6570] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.427320][ T6570] do_syscall_64+0xda/0x260
[ 101.428953][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.430863][ T6570] Modules linked in:
[ 101.432014][ T6570] CPU: 1 UID: 0 PID: 6570 Comm: syz.0.34 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 101.432030][ T6570] Tainted: [B]=BAD_PAGE
[ 101.432034][ T6570] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.432040][ T6570] Call Trace:
[ 101.432045][ T6570]
[ 101.432049][ T6570] dump_stack_lvl+0x16c/0x1f0
[ 101.432062][ T6570] bad_page+0xb3/0x1f0
[ 101.432074][ T6570] ? __pfx_bad_page+0x10/0x10
[ 101.432084][ T6570] ? page_bad_reason+0x9d/0x1e0
[ 101.432094][ T6570] __free_frozen_pages+0x76e/0xff0
[ 101.432110][ T6570] __folio_put+0x329/0x450
[ 101.432121][ T6570] ? __pfx___folio_put+0x10/0x10
[ 101.432131][ T6570] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.432143][ T6570] ? rcu_is_watching+0x12/0xc0
[ 101.432154][ T6570] ? lock_release+0x201/0x2f0
[ 101.432173][ T6570] filemap_free_folio+0x132/0x170
[ 101.432184][ T6570] delete_from_page_cache_batch+0x741/0x9b0
[ 101.432196][ T6570] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.432208][ T6570] ? __pfx_workingset_update_node+0x10/0x10
[ 101.432219][ T6570] ? xas_move_index+0xb0/0x110
[ 101.432231][ T6570] truncate_inode_pages_range+0x279/0xe30
[ 101.432246][ T6570] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.432268][ T6570] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.432285][ T6570] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.432300][ T6570] blkdev_flush_mapping+0xfb/0x290
[ 101.432311][ T6570] blkdev_put_whole+0xc4/0xf0
[ 101.432322][ T6570] bdev_release+0x47e/0x6d0
[ 101.432335][ T6570] ? __pfx_blkdev_release+0x10/0x10
[ 101.432347][ T6570] blkdev_release+0x15/0x20
[ 101.432359][ T6570] __fput+0x3ff/0xb70
[ 101.432371][ T6570] task_work_run+0x14d/0x240
[ 101.432382][ T6570] ? __pfx_task_work_run+0x10/0x10
[ 101.432392][ T6570] ? do_raw_spin_unlock+0x172/0x230
[ 101.432403][ T6570] do_exit+0xafb/0x2c30
[ 101.432418][ T6570] ? __pfx_do_exit+0x10/0x10
[ 101.432432][ T6570] ? preempt_schedule_thunk+0x16/0x30
[ 101.432443][ T6570] do_group_exit+0xd3/0x2a0
[ 101.432458][ T6570] __x64_sys_exit_group+0x3e/0x50
[ 101.432472][ T6570] x64_sys_call+0x1530/0x1730
[ 101.432486][ T6570] do_syscall_64+0xcd/0x260
[ 101.432499][ T6570] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.432509][ T6570] RIP: 0033:0x7fa3d358e969
[ 101.432517][ T6570] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 101.432521][ T6570] RSP: 002b:00007ffd90b4bf88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 101.432530][ T6570] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa3d358e969
[ 101.432537][ T6570] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 101.432542][ T6570] RBP: 00007ffd90b4bfec R08: 0000000690b4c07f R09: 00000000000927c0
[ 101.432549][ T6570] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000012
[ 101.432554][ T6570] R13: 00000000000927c0 R14: 0000000000018910 R15: 00007ffd90b4c040
[ 101.432563][ T6570]
[ 101.464482][ T6573] BUG: Bad page state in process syz.0.35 pfn:52001
[ 101.536637][ T6573] page does not match folio
[ 101.538364][ T6573] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52001
[ 101.541671][ T6573] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 101.544447][ T6573] raw: 00fff00000000000 ffffea0001480000 00000000ffffffff ffffffffffffffff
[ 101.547639][ T6573] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.550812][ T6573] page dumped because: nonzero pincount
[ 101.552828][ T6573] page_owner tracks the page as allocated
[ 101.554770][ T6573] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6572, tgid 6572 (syz.0.35), ts 101439608936, free_ts 0
[ 101.561083][ T6573] post_alloc_hook+0x181/0x1b0
[ 101.562875][ T6573] prep_new_page+0xa0/0xe0
[ 101.564447][ T6573] get_page_from_freelist+0x135b/0x3800
[ 101.566469][ T6573] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.568592][ T6573] alloc_pages_mpol+0x1fb/0x550
[ 101.570324][ T6573] folio_alloc_noprof+0x20/0x2d0
[ 101.572160][ T6573] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.574266][ T6573] page_cache_ra_order+0x4c0/0xd00
[ 101.575994][ T6573] filemap_fault+0x1a5e/0x2740
[ 101.577505][ T6573] __do_fault+0x10a/0x490
[ 101.579016][ T6573] do_pte_missing+0x1a6/0x3fb0
[ 101.580493][ T6573] __handle_mm_fault+0x103d/0x2a40
[ 101.582052][ T6573] handle_mm_fault+0x3fe/0xad0
[ 101.583467][ T6573] do_user_addr_fault+0x60c/0x1370
[ 101.584961][ T6573] exc_page_fault+0x5c/0xc0
[ 101.586319][ T6573] asm_exc_page_fault+0x26/0x30
[ 101.587819][ T6573] page_owner free stack trace missing
[ 101.589599][ T6573] Modules linked in:
[ 101.590885][ T6573] CPU: 0 UID: 0 PID: 6573 Comm: syz.0.35 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 101.590901][ T6573] Tainted: [B]=BAD_PAGE
[ 101.590904][ T6573] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.590911][ T6573] Call Trace:
[ 101.590915][ T6573]
[ 101.590919][ T6573] dump_stack_lvl+0x16c/0x1f0
[ 101.590933][ T6573] bad_page+0xb3/0x1f0
[ 101.590944][ T6573] ? __pfx_bad_page+0x10/0x10
[ 101.590954][ T6573] ? __mem_cgroup_uncharge+0xda/0x130
[ 101.590966][ T6573] free_tail_page_prepare+0x44f/0x5b0
[ 101.590985][ T6573] __free_frozen_pages+0x96a/0xff0
[ 101.591000][ T6573] __folio_put+0x329/0x450
[ 101.591011][ T6573] ? __pfx___folio_put+0x10/0x10
[ 101.591022][ T6573] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.591036][ T6573] ? rcu_is_watching+0x12/0xc0
[ 101.591053][ T6573] ? lock_release+0x201/0x2f0
[ 101.591077][ T6573] filemap_free_folio+0x132/0x170
[ 101.591093][ T6573] delete_from_page_cache_batch+0x741/0x9b0
[ 101.591113][ T6573] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.591132][ T6573] ? __pfx_workingset_update_node+0x10/0x10
[ 101.591147][ T6573] ? xas_move_index+0xb0/0x110
[ 101.591167][ T6573] truncate_inode_pages_range+0x279/0xe30
[ 101.591189][ T6573] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.591218][ T6573] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.591233][ T6573] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.591248][ T6573] blkdev_flush_mapping+0xfb/0x290
[ 101.591260][ T6573] ? filemap_check_errors+0xa9/0x160
[ 101.591274][ T6573] blkdev_put_whole+0xc4/0xf0
[ 101.591285][ T6573] bdev_release+0x47e/0x6d0
[ 101.591297][ T6573] ? __pfx_blkdev_release+0x10/0x10
[ 101.591310][ T6573] blkdev_release+0x15/0x20
[ 101.591321][ T6573] __fput+0x3ff/0xb70
[ 101.591333][ T6573] task_work_run+0x14d/0x240
[ 101.591343][ T6573] ? __pfx_task_work_run+0x10/0x10
[ 101.591353][ T6573] ? do_raw_spin_unlock+0x172/0x230
[ 101.591364][ T6573] do_exit+0xafb/0x2c30
[ 101.591378][ T6573] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.591395][ T6573] ? __pfx_do_exit+0x10/0x10
[ 101.591408][ T6573] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.591418][ T6573] ? get_signal+0x8f5/0x26d0
[ 101.591430][ T6573] ? rcu_is_watching+0x12/0xc0
[ 101.591441][ T6573] do_group_exit+0xd3/0x2a0
[ 101.591456][ T6573] get_signal+0x2673/0x26d0
[ 101.591469][ T6573] ? __pfx_get_signal+0x10/0x10
[ 101.591481][ T6573] ? do_futex+0x122/0x350
[ 101.591494][ T6573] ? __pfx_do_futex+0x10/0x10
[ 101.591507][ T6573] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.591522][ T6573] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.591537][ T6573] ? madvise_unlock+0xc6/0x190
[ 101.591548][ T6573] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.591561][ T6573] do_syscall_64+0xda/0x260
[ 101.591573][ T6573] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.591583][ T6573] RIP: 0033:0x7fa3d358e969
[ 101.591591][ T6573] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 101.591596][ T6573] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.591605][ T6573] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 101.591611][ T6573] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 101.591617][ T6573] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.591623][ T6573] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 101.591629][ T6573] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 101.591637][ T6573]
[ 101.591653][ T6573] BUG: Bad page state in process syz.0.35 pfn:52000
[ 101.705132][ T6573] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52000
[ 101.708195][ T6573] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 101.710806][ T6573] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 101.713601][ T6573] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.716207][ T6573] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.719328][ T6573] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 101.722112][ T6573] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.724856][ T6573] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 101.728085][ T6573] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.730912][ T6573] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 101.733511][ T6573] page_owner tracks the page as allocated
[ 101.735621][ T6573] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6572, tgid 6572 (syz.0.35), ts 101439608936, free_ts 0
[ 101.741331][ T6573] post_alloc_hook+0x181/0x1b0
[ 101.743020][ T6573] prep_new_page+0xa0/0xe0
[ 101.744457][ T6573] get_page_from_freelist+0x135b/0x3800
[ 101.746374][ T6573] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.748728][ T6573] alloc_pages_mpol+0x1fb/0x550
[ 101.750426][ T6573] folio_alloc_noprof+0x20/0x2d0
[ 101.752168][ T6573] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.754003][ T6573] page_cache_ra_order+0x4c0/0xd00
[ 101.755544][ T6573] filemap_fault+0x1a5e/0x2740
[ 101.757018][ T6573] __do_fault+0x10a/0x490
[ 101.758594][ T6573] do_pte_missing+0x1a6/0x3fb0
[ 101.760096][ T6573] __handle_mm_fault+0x103d/0x2a40
[ 101.761783][ T6573] handle_mm_fault+0x3fe/0xad0
[ 101.763281][ T6573] do_user_addr_fault+0x60c/0x1370
[ 101.764892][ T6573] exc_page_fault+0x5c/0xc0
[ 101.766355][ T6573] asm_exc_page_fault+0x26/0x30
[ 101.767928][ T6573] page_owner free stack trace missing
[ 101.769582][ T6573] Modules linked in:
[ 101.770960][ T6573] CPU: 0 UID: 0 PID: 6573 Comm: syz.0.35 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 101.770976][ T6573] Tainted: [B]=BAD_PAGE
[ 101.770984][ T6573] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 101.770990][ T6573] Call Trace:
[ 101.770994][ T6573]
[ 101.770998][ T6573] dump_stack_lvl+0x16c/0x1f0
[ 101.771011][ T6573] bad_page+0xb3/0x1f0
[ 101.771022][ T6573] ? __pfx_bad_page+0x10/0x10
[ 101.771032][ T6573] ? page_bad_reason+0x9d/0x1e0
[ 101.771043][ T6573] __free_frozen_pages+0x76e/0xff0
[ 101.771058][ T6573] __folio_put+0x329/0x450
[ 101.771069][ T6573] ? __pfx___folio_put+0x10/0x10
[ 101.771080][ T6573] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 101.771091][ T6573] ? rcu_is_watching+0x12/0xc0
[ 101.771102][ T6573] ? lock_release+0x201/0x2f0
[ 101.771118][ T6573] filemap_free_folio+0x132/0x170
[ 101.771128][ T6573] delete_from_page_cache_batch+0x741/0x9b0
[ 101.771140][ T6573] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 101.771152][ T6573] ? __pfx_workingset_update_node+0x10/0x10
[ 101.771163][ T6573] ? xas_move_index+0xb0/0x110
[ 101.771176][ T6573] truncate_inode_pages_range+0x279/0xe30
[ 101.771191][ T6573] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 101.771214][ T6573] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 101.771230][ T6573] ? __pfx_has_bh_in_lru+0x10/0x10
[ 101.771244][ T6573] blkdev_flush_mapping+0xfb/0x290
[ 101.771256][ T6573] ? filemap_check_errors+0xa9/0x160
[ 101.771271][ T6573] blkdev_put_whole+0xc4/0xf0
[ 101.771281][ T6573] bdev_release+0x47e/0x6d0
[ 101.771294][ T6573] ? __pfx_blkdev_release+0x10/0x10
[ 101.771306][ T6573] blkdev_release+0x15/0x20
[ 101.771319][ T6573] __fput+0x3ff/0xb70
[ 101.771331][ T6573] task_work_run+0x14d/0x240
[ 101.771342][ T6573] ? __pfx_task_work_run+0x10/0x10
[ 101.771351][ T6573] ? do_raw_spin_unlock+0x172/0x230
[ 101.771362][ T6573] do_exit+0xafb/0x2c30
[ 101.771376][ T6573] ? __pfx_futex_wake_mark+0x10/0x10
[ 101.771393][ T6573] ? __pfx_do_exit+0x10/0x10
[ 101.771406][ T6573] ? do_raw_spin_lock+0x12c/0x2b0
[ 101.771416][ T6573] ? get_signal+0x8f5/0x26d0
[ 101.771428][ T6573] ? rcu_is_watching+0x12/0xc0
[ 101.771439][ T6573] do_group_exit+0xd3/0x2a0
[ 101.771454][ T6573] get_signal+0x2673/0x26d0
[ 101.771467][ T6573] ? __pfx_get_signal+0x10/0x10
[ 101.771479][ T6573] ? do_futex+0x122/0x350
[ 101.771492][ T6573] ? __pfx_do_futex+0x10/0x10
[ 101.771505][ T6573] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.771520][ T6573] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 101.771535][ T6573] ? madvise_unlock+0xc6/0x190
[ 101.771547][ T6573] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.771559][ T6573] do_syscall_64+0xda/0x260
[ 101.771571][ T6573] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 101.771581][ T6573] RIP: 0033:0x7fa3d358e969
[ 101.771589][ T6573] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 101.771593][ T6573] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 101.771602][ T6573] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 101.771609][ T6573] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 101.771615][ T6573] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 101.771621][ T6573] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 101.771627][ T6573] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 101.771635][ T6573]
[ 101.917184][ T6575] BUG: Bad page state in process syz.0.36 pfn:52201
[ 101.919908][ T6575] page does not match folio
[ 101.921414][ T6575] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52201
[ 101.924904][ T6575] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 101.927786][ T6575] raw: 00fff00000000000 ffffea0001488000 00000000ffffffff ffffffffffffffff
[ 101.930430][ T6575] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 101.933617][ T6575] page dumped because: nonzero pincount
[ 101.935723][ T6575] page_owner tracks the page as allocated
[ 101.937989][ T6575] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6574, tgid 6574 (syz.0.36), ts 101890522725, free_ts 101771661759
[ 101.945496][ T6575] post_alloc_hook+0x181/0x1b0
[ 101.947480][ T6575] prep_new_page+0xa0/0xe0
[ 101.949334][ T6575] get_page_from_freelist+0x135b/0x3800
[ 101.951605][ T6575] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 101.953924][ T6575] alloc_pages_mpol+0x1fb/0x550
[ 101.955840][ T6575] folio_alloc_noprof+0x20/0x2d0
[ 101.957853][ T6575] filemap_alloc_folio_noprof+0x3a1/0x470
[ 101.960080][ T6575] page_cache_ra_order+0x4c0/0xd00
[ 101.962089][ T6575] filemap_fault+0x1a5e/0x2740
[ 101.963611][ T6575] __do_fault+0x10a/0x490
[ 101.964897][ T6575] do_pte_missing+0x1a6/0x3fb0
[ 101.966335][ T6575] __handle_mm_fault+0x103d/0x2a40
[ 101.968064][ T6575] handle_mm_fault+0x3fe/0xad0
[ 101.969455][ T6575] do_user_addr_fault+0x60c/0x1370
[ 101.971004][ T6575] exc_page_fault+0x5c/0xc0
[ 101.972483][ T6575] asm_exc_page_fault+0x26/0x30
[ 101.974097][ T6575] page last free pid 6573 tgid 6572 stack trace:
[ 101.976442][ T6575] free_unref_folios+0x999/0x1630
[ 101.978356][ T6575] folios_put_refs+0x56f/0x740
[ 101.979808][ T6575] truncate_inode_pages_range+0x311/0xe30
[ 101.981828][ T6575] blkdev_flush_mapping+0xfb/0x290
[ 101.983597][ T6575] blkdev_put_whole+0xc4/0xf0
[ 101.984999][ T6575] bdev_release+0x47e/0x6d0
[ 101.986414][ T6575] blkdev_release+0x15/0x20
[ 101.987961][ T6575] __fput+0x3ff/0xb70
[ 101.989169][ T6575] task_work_run+0x14d/0x240
[ 101.990655][ T6575] do_exit+0xafb/0x2c30
[ 101.991912][ T6575] do_group_exit+0xd3/0x2a0
[ 101.993355][ T6575] get_signal+0x2673/0x26d0
[ 101.994762][ T6575] arch_do_signal_or_restart+0x8f/0x7d0
[ 101.996456][ T6575] syscall_exit_to_user_mode+0x150/0x2a0
[ 101.998239][ T6575] do_syscall_64+0xda/0x260
[ 101.999631][ T6575] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.001632][ T6575] Modules linked in:
[ 102.002945][ T6575] CPU: 3 UID: 0 PID: 6575 Comm: syz.0.36 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 102.002961][ T6575] Tainted: [B]=BAD_PAGE
[ 102.002965][ T6575] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.002979][ T6575] Call Trace:
[ 102.002984][ T6575]
[ 102.002989][ T6575] dump_stack_lvl+0x16c/0x1f0
[ 102.003008][ T6575] bad_page+0xb3/0x1f0
[ 102.003025][ T6575] ? __pfx_bad_page+0x10/0x10
[ 102.003039][ T6575] ? __mem_cgroup_uncharge+0xda/0x130
[ 102.003055][ T6575] free_tail_page_prepare+0x44f/0x5b0
[ 102.003072][ T6575] __free_frozen_pages+0x96a/0xff0
[ 102.003093][ T6575] __folio_put+0x329/0x450
[ 102.003109][ T6575] ? __pfx___folio_put+0x10/0x10
[ 102.003124][ T6575] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.003140][ T6575] ? rcu_is_watching+0x12/0xc0
[ 102.003157][ T6575] ? lock_release+0x201/0x2f0
[ 102.003178][ T6575] filemap_free_folio+0x132/0x170
[ 102.003194][ T6575] delete_from_page_cache_batch+0x741/0x9b0
[ 102.003212][ T6575] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.003228][ T6575] ? __pfx_workingset_update_node+0x10/0x10
[ 102.003245][ T6575] ? xas_move_index+0xb0/0x110
[ 102.003263][ T6575] truncate_inode_pages_range+0x279/0xe30
[ 102.003284][ T6575] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.003318][ T6575] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.003338][ T6575] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.003353][ T6575] blkdev_flush_mapping+0xfb/0x290
[ 102.003364][ T6575] ? filemap_check_errors+0xa9/0x160
[ 102.003379][ T6575] blkdev_put_whole+0xc4/0xf0
[ 102.003389][ T6575] bdev_release+0x47e/0x6d0
[ 102.003402][ T6575] ? __pfx_blkdev_release+0x10/0x10
[ 102.003414][ T6575] blkdev_release+0x15/0x20
[ 102.003426][ T6575] __fput+0x3ff/0xb70
[ 102.003438][ T6575] task_work_run+0x14d/0x240
[ 102.003449][ T6575] ? __pfx_task_work_run+0x10/0x10
[ 102.003459][ T6575] ? do_raw_spin_unlock+0x172/0x230
[ 102.003470][ T6575] do_exit+0xafb/0x2c30
[ 102.003484][ T6575] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.003501][ T6575] ? __pfx_do_exit+0x10/0x10
[ 102.003514][ T6575] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.003524][ T6575] ? get_signal+0x8f5/0x26d0
[ 102.003535][ T6575] ? rcu_is_watching+0x12/0xc0
[ 102.003547][ T6575] do_group_exit+0xd3/0x2a0
[ 102.003562][ T6575] get_signal+0x2673/0x26d0
[ 102.003575][ T6575] ? __pfx_get_signal+0x10/0x10
[ 102.003587][ T6575] ? do_futex+0x122/0x350
[ 102.003599][ T6575] ? __pfx_do_futex+0x10/0x10
[ 102.003612][ T6575] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.003627][ T6575] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.003642][ T6575] ? rcu_is_watching+0x12/0xc0
[ 102.003654][ T6575] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.003667][ T6575] do_syscall_64+0xda/0x260
[ 102.003679][ T6575] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.003689][ T6575] RIP: 0033:0x7fa3d358e969
[ 102.003696][ T6575] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 102.003701][ T6575] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.003711][ T6575] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 102.003717][ T6575] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 102.003723][ T6575] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.003729][ T6575] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 102.003735][ T6575] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 102.003743][ T6575]
[ 102.003758][ T6575] BUG: Bad page state in process syz.0.36 pfn:52200
[ 102.134830][ T6575] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52200
[ 102.138300][ T6575] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 102.141611][ T6575] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 102.145082][ T6575] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.148464][ T6575] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.151814][ T6575] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.155169][ T6575] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.158575][ T6575] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.161968][ T6575] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.165287][ T6575] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 102.168171][ T6575] page_owner tracks the page as allocated
[ 102.170413][ T6575] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6574, tgid 6574 (syz.0.36), ts 101890522725, free_ts 101771661759
[ 102.178142][ T6575] post_alloc_hook+0x181/0x1b0
[ 102.180045][ T6575] prep_new_page+0xa0/0xe0
[ 102.182025][ T6575] get_page_from_freelist+0x135b/0x3800
[ 102.184188][ T6575] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.186505][ T6575] alloc_pages_mpol+0x1fb/0x550
[ 102.188497][ T6575] folio_alloc_noprof+0x20/0x2d0
[ 102.190444][ T6575] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.192657][ T6575] page_cache_ra_order+0x4c0/0xd00
[ 102.194621][ T6575] filemap_fault+0x1a5e/0x2740
[ 102.196531][ T6575] __do_fault+0x10a/0x490
[ 102.198323][ T6575] do_pte_missing+0x1a6/0x3fb0
[ 102.200205][ T6575] __handle_mm_fault+0x103d/0x2a40
[ 102.202248][ T6575] handle_mm_fault+0x3fe/0xad0
[ 102.204133][ T6575] do_user_addr_fault+0x60c/0x1370
[ 102.206178][ T6575] exc_page_fault+0x5c/0xc0
[ 102.208076][ T6575] asm_exc_page_fault+0x26/0x30
[ 102.210023][ T6575] page last free pid 6573 tgid 6572 stack trace:
[ 102.212470][ T6575] free_unref_folios+0x999/0x1630
[ 102.214337][ T6575] folios_put_refs+0x56f/0x740
[ 102.215761][ T6575] truncate_inode_pages_range+0x311/0xe30
[ 102.217482][ T6575] blkdev_flush_mapping+0xfb/0x290
[ 102.218993][ T6575] blkdev_put_whole+0xc4/0xf0
[ 102.220367][ T6575] bdev_release+0x47e/0x6d0
[ 102.221703][ T6575] blkdev_release+0x15/0x20
[ 102.223069][ T6575] __fput+0x3ff/0xb70
[ 102.224220][ T6575] task_work_run+0x14d/0x240
[ 102.225573][ T6575] do_exit+0xafb/0x2c30
[ 102.226848][ T6575] do_group_exit+0xd3/0x2a0
[ 102.228255][ T6575] get_signal+0x2673/0x26d0
[ 102.229598][ T6575] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.231237][ T6575] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.232857][ T6575] do_syscall_64+0xda/0x260
[ 102.234203][ T6575] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.235925][ T6575] Modules linked in:
[ 102.237092][ T6575] CPU: 3 UID: 0 PID: 6575 Comm: syz.0.36 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 102.237108][ T6575] Tainted: [B]=BAD_PAGE
[ 102.237111][ T6575] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.237118][ T6575] Call Trace:
[ 102.237122][ T6575]
[ 102.237125][ T6575] dump_stack_lvl+0x16c/0x1f0
[ 102.237138][ T6575] bad_page+0xb3/0x1f0
[ 102.237149][ T6575] ? __pfx_bad_page+0x10/0x10
[ 102.237160][ T6575] ? page_bad_reason+0x9d/0x1e0
[ 102.237170][ T6575] __free_frozen_pages+0x76e/0xff0
[ 102.237186][ T6575] __folio_put+0x329/0x450
[ 102.237196][ T6575] ? __pfx___folio_put+0x10/0x10
[ 102.237208][ T6575] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.237219][ T6575] ? rcu_is_watching+0x12/0xc0
[ 102.237230][ T6575] ? lock_release+0x201/0x2f0
[ 102.237246][ T6575] filemap_free_folio+0x132/0x170
[ 102.237256][ T6575] delete_from_page_cache_batch+0x741/0x9b0
[ 102.237272][ T6575] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.237284][ T6575] ? __pfx_workingset_update_node+0x10/0x10
[ 102.237295][ T6575] ? xas_move_index+0xb0/0x110
[ 102.237307][ T6575] truncate_inode_pages_range+0x279/0xe30
[ 102.237322][ T6575] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.237357][ T6575] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.237373][ T6575] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.237388][ T6575] blkdev_flush_mapping+0xfb/0x290
[ 102.237399][ T6575] ? filemap_check_errors+0xa9/0x160
[ 102.237414][ T6575] blkdev_put_whole+0xc4/0xf0
[ 102.237425][ T6575] bdev_release+0x47e/0x6d0
[ 102.237437][ T6575] ? __pfx_blkdev_release+0x10/0x10
[ 102.237449][ T6575] blkdev_release+0x15/0x20
[ 102.237461][ T6575] __fput+0x3ff/0xb70
[ 102.237472][ T6575] task_work_run+0x14d/0x240
[ 102.237483][ T6575] ? __pfx_task_work_run+0x10/0x10
[ 102.237493][ T6575] ? do_raw_spin_unlock+0x172/0x230
[ 102.237504][ T6575] do_exit+0xafb/0x2c30
[ 102.237517][ T6575] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.237534][ T6575] ? __pfx_do_exit+0x10/0x10
[ 102.237547][ T6575] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.237557][ T6575] ? get_signal+0x8f5/0x26d0
[ 102.237568][ T6575] ? rcu_is_watching+0x12/0xc0
[ 102.237579][ T6575] do_group_exit+0xd3/0x2a0
[ 102.237594][ T6575] get_signal+0x2673/0x26d0
[ 102.237607][ T6575] ? __pfx_get_signal+0x10/0x10
[ 102.237619][ T6575] ? do_futex+0x122/0x350
[ 102.237632][ T6575] ? __pfx_do_futex+0x10/0x10
[ 102.237645][ T6575] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.237659][ T6575] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.237674][ T6575] ? rcu_is_watching+0x12/0xc0
[ 102.237686][ T6575] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.237698][ T6575] do_syscall_64+0xda/0x260
[ 102.237710][ T6575] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.237719][ T6575] RIP: 0033:0x7fa3d358e969
[ 102.237727][ T6575] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 102.237750][ T6575] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.237762][ T6575] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 102.237769][ T6575] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 102.237775][ T6575] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.237780][ T6575] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 102.237786][ T6575] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 102.237795][ T6575]
[ 102.364007][ T6577] BUG: Bad page state in process syz.0.37 pfn:52601
[ 102.366011][ T6577] page does not match folio
[ 102.367455][ T6577] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52601
[ 102.370353][ T6577] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.372539][ T6577] raw: 00fff00000000000 ffffea0001498000 00000000ffffffff ffffffffffffffff
[ 102.375086][ T6577] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.377639][ T6577] page dumped because: nonzero pincount
[ 102.379294][ T6577] page_owner tracks the page as allocated
[ 102.380987][ T6577] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6576, tgid 6576 (syz.0.37), ts 102347967898, free_ts 0
[ 102.386561][ T6577] post_alloc_hook+0x181/0x1b0
[ 102.388061][ T6577] prep_new_page+0xa0/0xe0
[ 102.389377][ T6577] get_page_from_freelist+0x135b/0x3800
[ 102.391014][ T6577] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.392767][ T6577] alloc_pages_mpol+0x1fb/0x550
[ 102.394233][ T6577] folio_alloc_noprof+0x20/0x2d0
[ 102.395673][ T6577] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.397429][ T6577] page_cache_ra_order+0x4c0/0xd00
[ 102.398970][ T6577] filemap_fault+0x1a5e/0x2740
[ 102.400390][ T6577] __do_fault+0x10a/0x490
[ 102.401654][ T6577] do_pte_missing+0x1a6/0x3fb0
[ 102.403080][ T6577] __handle_mm_fault+0x103d/0x2a40
[ 102.404589][ T6577] handle_mm_fault+0x3fe/0xad0
[ 102.406012][ T6577] do_user_addr_fault+0x60c/0x1370
[ 102.407593][ T6577] exc_page_fault+0x5c/0xc0
[ 102.408970][ T6577] asm_exc_page_fault+0x26/0x30
[ 102.410445][ T6577] page_owner free stack trace missing
[ 102.412361][ T6577] Modules linked in:
[ 102.413541][ T6577] CPU: 0 UID: 0 PID: 6577 Comm: syz.0.37 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 102.413558][ T6577] Tainted: [B]=BAD_PAGE
[ 102.413561][ T6577] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.413567][ T6577] Call Trace:
[ 102.413571][ T6577]
[ 102.413575][ T6577] dump_stack_lvl+0x16c/0x1f0
[ 102.413588][ T6577] bad_page+0xb3/0x1f0
[ 102.413599][ T6577] ? __pfx_bad_page+0x10/0x10
[ 102.413609][ T6577] ? __mem_cgroup_uncharge+0xda/0x130
[ 102.413622][ T6577] free_tail_page_prepare+0x44f/0x5b0
[ 102.413635][ T6577] __free_frozen_pages+0x96a/0xff0
[ 102.413650][ T6577] __folio_put+0x329/0x450
[ 102.413661][ T6577] ? __pfx___folio_put+0x10/0x10
[ 102.413671][ T6577] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.413683][ T6577] ? rcu_is_watching+0x12/0xc0
[ 102.413695][ T6577] ? lock_release+0x201/0x2f0
[ 102.413710][ T6577] filemap_free_folio+0x132/0x170
[ 102.413721][ T6577] delete_from_page_cache_batch+0x741/0x9b0
[ 102.413756][ T6577] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.413792][ T6577] ? __pfx_workingset_update_node+0x10/0x10
[ 102.413804][ T6577] ? xas_move_index+0xb0/0x110
[ 102.413817][ T6577] truncate_inode_pages_range+0x279/0xe30
[ 102.413832][ T6577] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.413854][ T6577] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.413871][ T6577] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.413886][ T6577] blkdev_flush_mapping+0xfb/0x290
[ 102.413897][ T6577] ? filemap_check_errors+0xa9/0x160
[ 102.413912][ T6577] blkdev_put_whole+0xc4/0xf0
[ 102.413928][ T6577] bdev_release+0x47e/0x6d0
[ 102.413941][ T6577] ? __pfx_blkdev_release+0x10/0x10
[ 102.413953][ T6577] blkdev_release+0x15/0x20
[ 102.413965][ T6577] __fput+0x3ff/0xb70
[ 102.413977][ T6577] task_work_run+0x14d/0x240
[ 102.413988][ T6577] ? __pfx_task_work_run+0x10/0x10
[ 102.413998][ T6577] ? do_raw_spin_unlock+0x172/0x230
[ 102.414009][ T6577] do_exit+0xafb/0x2c30
[ 102.414023][ T6577] ? __pfx_try_to_wake_up+0x10/0x10
[ 102.414035][ T6577] ? futex_wake+0x432/0x4e0
[ 102.414050][ T6577] ? __pfx_do_exit+0x10/0x10
[ 102.414064][ T6577] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.414074][ T6577] ? get_signal+0x8f5/0x26d0
[ 102.414085][ T6577] ? rcu_is_watching+0x12/0xc0
[ 102.414096][ T6577] do_group_exit+0xd3/0x2a0
[ 102.414112][ T6577] get_signal+0x2673/0x26d0
[ 102.414125][ T6577] ? __pfx_get_signal+0x10/0x10
[ 102.414137][ T6577] ? do_futex+0x122/0x350
[ 102.414150][ T6577] ? __pfx_do_futex+0x10/0x10
[ 102.414163][ T6577] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.414177][ T6577] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.414192][ T6577] ? rcu_is_watching+0x12/0xc0
[ 102.414204][ T6577] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.414217][ T6577] do_syscall_64+0xda/0x260
[ 102.414229][ T6577] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.414239][ T6577] RIP: 0033:0x7fa3d358e969
[ 102.414246][ T6577] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 102.414251][ T6577] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.414260][ T6577] RAX: 0000000000000001 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 102.414267][ T6577] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa3d37b5fac
[ 102.414273][ T6577] RBP: 00007fa3d37b5fa0 R08: 00007fa3d446c000 R09: 0000000000000000
[ 102.414279][ T6577] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 102.414285][ T6577] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 102.414293][ T6577]
[ 102.414308][ T6577] BUG: Bad page state in process syz.0.37 pfn:52600
[ 102.517754][ T6577] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52600
[ 102.520629][ T6577] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 102.523278][ T6577] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 102.525943][ T6577] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.528688][ T6577] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.531307][ T6577] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.533954][ T6577] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.536493][ T6577] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.539668][ T6577] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.542778][ T6577] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 102.545533][ T6577] page_owner tracks the page as allocated
[ 102.548174][ T6577] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6576, tgid 6576 (syz.0.37), ts 102347967898, free_ts 0
[ 102.554511][ T6577] post_alloc_hook+0x181/0x1b0
[ 102.555906][ T6577] prep_new_page+0xa0/0xe0
[ 102.557455][ T6577] get_page_from_freelist+0x135b/0x3800
[ 102.559171][ T6577] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.560999][ T6577] alloc_pages_mpol+0x1fb/0x550
[ 102.562516][ T6577] folio_alloc_noprof+0x20/0x2d0
[ 102.564024][ T6577] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.565798][ T6577] page_cache_ra_order+0x4c0/0xd00
[ 102.567509][ T6577] filemap_fault+0x1a5e/0x2740
[ 102.569015][ T6577] __do_fault+0x10a/0x490
[ 102.570636][ T6577] do_pte_missing+0x1a6/0x3fb0
[ 102.572140][ T6577] __handle_mm_fault+0x103d/0x2a40
[ 102.573873][ T6577] handle_mm_fault+0x3fe/0xad0
[ 102.575798][ T6577] do_user_addr_fault+0x60c/0x1370
[ 102.577893][ T6577] exc_page_fault+0x5c/0xc0
[ 102.579692][ T6577] asm_exc_page_fault+0x26/0x30
[ 102.581617][ T6577] page_owner free stack trace missing
[ 102.583728][ T6577] Modules linked in:
[ 102.585305][ T6577] CPU: 1 UID: 0 PID: 6577 Comm: syz.0.37 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 102.585330][ T6577] Tainted: [B]=BAD_PAGE
[ 102.585336][ T6577] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.585345][ T6577] Call Trace:
[ 102.585351][ T6577]
[ 102.585357][ T6577] dump_stack_lvl+0x16c/0x1f0
[ 102.585376][ T6577] bad_page+0xb3/0x1f0
[ 102.585392][ T6577] ? __pfx_bad_page+0x10/0x10
[ 102.585408][ T6577] ? page_bad_reason+0x9d/0x1e0
[ 102.585424][ T6577] __free_frozen_pages+0x76e/0xff0
[ 102.585447][ T6577] __folio_put+0x329/0x450
[ 102.585462][ T6577] ? __pfx___folio_put+0x10/0x10
[ 102.585479][ T6577] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.585495][ T6577] ? rcu_is_watching+0x12/0xc0
[ 102.585512][ T6577] ? lock_release+0x201/0x2f0
[ 102.585534][ T6577] filemap_free_folio+0x132/0x170
[ 102.585550][ T6577] delete_from_page_cache_batch+0x741/0x9b0
[ 102.585569][ T6577] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.585586][ T6577] ? __pfx_workingset_update_node+0x10/0x10
[ 102.585603][ T6577] ? xas_move_index+0xb0/0x110
[ 102.585622][ T6577] truncate_inode_pages_range+0x279/0xe30
[ 102.585647][ T6577] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.585685][ T6577] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.585709][ T6577] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.585754][ T6577] blkdev_flush_mapping+0xfb/0x290
[ 102.585773][ T6577] ? filemap_check_errors+0xa9/0x160
[ 102.585793][ T6577] blkdev_put_whole+0xc4/0xf0
[ 102.585809][ T6577] bdev_release+0x47e/0x6d0
[ 102.585826][ T6577] ? __pfx_blkdev_release+0x10/0x10
[ 102.585843][ T6577] blkdev_release+0x15/0x20
[ 102.585861][ T6577] __fput+0x3ff/0xb70
[ 102.585880][ T6577] task_work_run+0x14d/0x240
[ 102.585896][ T6577] ? __pfx_task_work_run+0x10/0x10
[ 102.585911][ T6577] ? do_raw_spin_unlock+0x172/0x230
[ 102.585928][ T6577] do_exit+0xafb/0x2c30
[ 102.585948][ T6577] ? __pfx_try_to_wake_up+0x10/0x10
[ 102.585966][ T6577] ? futex_wake+0x432/0x4e0
[ 102.585989][ T6577] ? __pfx_do_exit+0x10/0x10
[ 102.586017][ T6577] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.586032][ T6577] ? get_signal+0x8f5/0x26d0
[ 102.586049][ T6577] ? rcu_is_watching+0x12/0xc0
[ 102.586066][ T6577] do_group_exit+0xd3/0x2a0
[ 102.586088][ T6577] get_signal+0x2673/0x26d0
[ 102.586109][ T6577] ? __pfx_get_signal+0x10/0x10
[ 102.586126][ T6577] ? do_futex+0x122/0x350
[ 102.586145][ T6577] ? __pfx_do_futex+0x10/0x10
[ 102.586164][ T6577] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.586186][ T6577] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.586209][ T6577] ? rcu_is_watching+0x12/0xc0
[ 102.586227][ T6577] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.586246][ T6577] do_syscall_64+0xda/0x260
[ 102.586264][ T6577] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.586279][ T6577] RIP: 0033:0x7fa3d358e969
[ 102.586290][ T6577] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 102.586297][ T6577] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.586311][ T6577] RAX: 0000000000000001 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 102.586321][ T6577] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa3d37b5fac
[ 102.586330][ T6577] RBP: 00007fa3d37b5fa0 R08: 00007fa3d446c000 R09: 0000000000000000
[ 102.586340][ T6577] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 102.586349][ T6577] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 102.586363][ T6577]
[ 102.714608][ T6579] BUG: Bad page state in process syz.0.38 pfn:51e01
[ 102.716603][ T6579] page does not match folio
[ 102.718041][ T6579] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51e01
[ 102.721216][ T6579] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.723416][ T6579] raw: 00fff00000000000 ffffea0001478000 00000000ffffffff ffffffffffffffff
[ 102.725898][ T6579] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.728564][ T6579] page dumped because: nonzero pincount
[ 102.730461][ T6579] page_owner tracks the page as allocated
[ 102.732221][ T6579] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6578, tgid 6578 (syz.0.38), ts 102695213666, free_ts 0
[ 102.738172][ T6579] post_alloc_hook+0x181/0x1b0
[ 102.739697][ T6579] prep_new_page+0xa0/0xe0
[ 102.741111][ T6579] get_page_from_freelist+0x135b/0x3800
[ 102.742868][ T6579] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.744755][ T6579] alloc_pages_mpol+0x1fb/0x550
[ 102.746249][ T6579] folio_alloc_noprof+0x20/0x2d0
[ 102.747859][ T6579] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.749605][ T6579] page_cache_ra_order+0x4c0/0xd00
[ 102.751250][ T6579] filemap_fault+0x1a5e/0x2740
[ 102.752715][ T6579] __do_fault+0x10a/0x490
[ 102.754043][ T6579] do_pte_missing+0x1a6/0x3fb0
[ 102.755503][ T6579] __handle_mm_fault+0x103d/0x2a40
[ 102.756989][ T6579] handle_mm_fault+0x3fe/0xad0
[ 102.758510][ T6579] do_user_addr_fault+0x60c/0x1370
[ 102.760143][ T6579] exc_page_fault+0x5c/0xc0
[ 102.761770][ T6579] asm_exc_page_fault+0x26/0x30
[ 102.763248][ T6579] page_owner free stack trace missing
[ 102.764906][ T6579] Modules linked in:
[ 102.766093][ T6579] CPU: 3 UID: 0 PID: 6579 Comm: syz.0.38 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 102.766109][ T6579] Tainted: [B]=BAD_PAGE
[ 102.766113][ T6579] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.766119][ T6579] Call Trace:
[ 102.766124][ T6579]
[ 102.766128][ T6579] dump_stack_lvl+0x16c/0x1f0
[ 102.766142][ T6579] bad_page+0xb3/0x1f0
[ 102.766153][ T6579] ? __pfx_bad_page+0x10/0x10
[ 102.766163][ T6579] ? __mem_cgroup_uncharge+0xda/0x130
[ 102.766176][ T6579] free_tail_page_prepare+0x44f/0x5b0
[ 102.766189][ T6579] __free_frozen_pages+0x96a/0xff0
[ 102.766204][ T6579] __folio_put+0x329/0x450
[ 102.766216][ T6579] ? __pfx___folio_put+0x10/0x10
[ 102.766226][ T6579] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.766238][ T6579] ? rcu_is_watching+0x12/0xc0
[ 102.766249][ T6579] ? lock_release+0x201/0x2f0
[ 102.766265][ T6579] filemap_free_folio+0x132/0x170
[ 102.766280][ T6579] delete_from_page_cache_batch+0x741/0x9b0
[ 102.766292][ T6579] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.766304][ T6579] ? __pfx_workingset_update_node+0x10/0x10
[ 102.766315][ T6579] ? xas_move_index+0xb0/0x110
[ 102.766328][ T6579] truncate_inode_pages_range+0x279/0xe30
[ 102.766343][ T6579] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.766365][ T6579] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.766381][ T6579] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.766396][ T6579] blkdev_flush_mapping+0xfb/0x290
[ 102.766407][ T6579] ? filemap_check_errors+0xa9/0x160
[ 102.766422][ T6579] blkdev_put_whole+0xc4/0xf0
[ 102.766433][ T6579] bdev_release+0x47e/0x6d0
[ 102.766445][ T6579] ? __pfx_blkdev_release+0x10/0x10
[ 102.766457][ T6579] blkdev_release+0x15/0x20
[ 102.766469][ T6579] __fput+0x3ff/0xb70
[ 102.766481][ T6579] task_work_run+0x14d/0x240
[ 102.766492][ T6579] ? __pfx_task_work_run+0x10/0x10
[ 102.766502][ T6579] ? do_raw_spin_unlock+0x172/0x230
[ 102.766514][ T6579] do_exit+0xafb/0x2c30
[ 102.766528][ T6579] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.766545][ T6579] ? __pfx_do_exit+0x10/0x10
[ 102.766559][ T6579] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.766569][ T6579] ? get_signal+0x8f5/0x26d0
[ 102.766580][ T6579] ? rcu_is_watching+0x12/0xc0
[ 102.766591][ T6579] do_group_exit+0xd3/0x2a0
[ 102.766606][ T6579] get_signal+0x2673/0x26d0
[ 102.766620][ T6579] ? __pfx_get_signal+0x10/0x10
[ 102.766632][ T6579] ? do_futex+0x122/0x350
[ 102.766644][ T6579] ? __pfx_do_futex+0x10/0x10
[ 102.766657][ T6579] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.766672][ T6579] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.766687][ T6579] ? madvise_unlock+0xc6/0x190
[ 102.766699][ T6579] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.766712][ T6579] do_syscall_64+0xda/0x260
[ 102.766725][ T6579] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.766735][ T6579] RIP: 0033:0x7fa3d358e969
[ 102.766743][ T6579] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 102.766748][ T6579] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.766757][ T6579] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 102.766763][ T6579] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 102.766769][ T6579] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.766775][ T6579] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 102.766781][ T6579] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 102.766790][ T6579]
[ 102.766805][ T6579] BUG: Bad page state in process syz.0.38 pfn:51e00
[ 102.880427][ T6579] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51e00
[ 102.883656][ T6579] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 102.887076][ T6579] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 102.890649][ T6579] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.893327][ T6579] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.895993][ T6579] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 102.899684][ T6579] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.903171][ T6579] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 102.906553][ T6579] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 102.910070][ T6579] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 102.912995][ T6579] page_owner tracks the page as allocated
[ 102.915237][ T6579] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6578, tgid 6578 (syz.0.38), ts 102695213666, free_ts 0
[ 102.921960][ T6579] post_alloc_hook+0x181/0x1b0
[ 102.923395][ T6579] prep_new_page+0xa0/0xe0
[ 102.924723][ T6579] get_page_from_freelist+0x135b/0x3800
[ 102.926431][ T6579] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 102.928237][ T6579] alloc_pages_mpol+0x1fb/0x550
[ 102.929697][ T6579] folio_alloc_noprof+0x20/0x2d0
[ 102.931310][ T6579] filemap_alloc_folio_noprof+0x3a1/0x470
[ 102.932981][ T6579] page_cache_ra_order+0x4c0/0xd00
[ 102.934506][ T6579] filemap_fault+0x1a5e/0x2740
[ 102.935909][ T6579] __do_fault+0x10a/0x490
[ 102.937226][ T6579] do_pte_missing+0x1a6/0x3fb0
[ 102.938792][ T6579] __handle_mm_fault+0x103d/0x2a40
[ 102.940289][ T6579] handle_mm_fault+0x3fe/0xad0
[ 102.942190][ T6579] do_user_addr_fault+0x60c/0x1370
[ 102.943751][ T6579] exc_page_fault+0x5c/0xc0
[ 102.945093][ T6579] asm_exc_page_fault+0x26/0x30
[ 102.946532][ T6579] page_owner free stack trace missing
[ 102.948166][ T6579] Modules linked in:
[ 102.949371][ T6579] CPU: 2 UID: 0 PID: 6579 Comm: syz.0.38 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 102.949388][ T6579] Tainted: [B]=BAD_PAGE
[ 102.949391][ T6579] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 102.949397][ T6579] Call Trace:
[ 102.949402][ T6579]
[ 102.949406][ T6579] dump_stack_lvl+0x16c/0x1f0
[ 102.949418][ T6579] bad_page+0xb3/0x1f0
[ 102.949429][ T6579] ? __pfx_bad_page+0x10/0x10
[ 102.949440][ T6579] ? page_bad_reason+0x9d/0x1e0
[ 102.949450][ T6579] __free_frozen_pages+0x76e/0xff0
[ 102.949465][ T6579] __folio_put+0x329/0x450
[ 102.949476][ T6579] ? __pfx___folio_put+0x10/0x10
[ 102.949487][ T6579] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 102.949498][ T6579] ? rcu_is_watching+0x12/0xc0
[ 102.949509][ T6579] ? lock_release+0x201/0x2f0
[ 102.949525][ T6579] filemap_free_folio+0x132/0x170
[ 102.949536][ T6579] delete_from_page_cache_batch+0x741/0x9b0
[ 102.949549][ T6579] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 102.949560][ T6579] ? __pfx_workingset_update_node+0x10/0x10
[ 102.949571][ T6579] ? xas_move_index+0xb0/0x110
[ 102.949583][ T6579] truncate_inode_pages_range+0x279/0xe30
[ 102.949598][ T6579] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 102.949621][ T6579] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 102.949636][ T6579] ? __pfx_has_bh_in_lru+0x10/0x10
[ 102.949651][ T6579] blkdev_flush_mapping+0xfb/0x290
[ 102.949663][ T6579] ? filemap_check_errors+0xa9/0x160
[ 102.949677][ T6579] blkdev_put_whole+0xc4/0xf0
[ 102.949688][ T6579] bdev_release+0x47e/0x6d0
[ 102.949701][ T6579] ? __pfx_blkdev_release+0x10/0x10
[ 102.949713][ T6579] blkdev_release+0x15/0x20
[ 102.949740][ T6579] __fput+0x3ff/0xb70
[ 102.949753][ T6579] task_work_run+0x14d/0x240
[ 102.949764][ T6579] ? __pfx_task_work_run+0x10/0x10
[ 102.949773][ T6579] ? do_raw_spin_unlock+0x172/0x230
[ 102.949784][ T6579] do_exit+0xafb/0x2c30
[ 102.949798][ T6579] ? __pfx_futex_wake_mark+0x10/0x10
[ 102.949815][ T6579] ? __pfx_do_exit+0x10/0x10
[ 102.949828][ T6579] ? do_raw_spin_lock+0x12c/0x2b0
[ 102.949838][ T6579] ? get_signal+0x8f5/0x26d0
[ 102.949850][ T6579] ? rcu_is_watching+0x12/0xc0
[ 102.949861][ T6579] do_group_exit+0xd3/0x2a0
[ 102.949876][ T6579] get_signal+0x2673/0x26d0
[ 102.949890][ T6579] ? __pfx_get_signal+0x10/0x10
[ 102.949901][ T6579] ? do_futex+0x122/0x350
[ 102.949915][ T6579] ? __pfx_do_futex+0x10/0x10
[ 102.949928][ T6579] arch_do_signal_or_restart+0x8f/0x7d0
[ 102.949942][ T6579] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 102.949958][ T6579] ? madvise_unlock+0xc6/0x190
[ 102.949969][ T6579] syscall_exit_to_user_mode+0x150/0x2a0
[ 102.949982][ T6579] do_syscall_64+0xda/0x260
[ 102.949994][ T6579] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.950003][ T6579] RIP: 0033:0x7fa3d358e969
[ 102.950011][ T6579] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 102.950015][ T6579] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 102.950025][ T6579] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 102.950031][ T6579] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 102.950037][ T6579] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 102.950043][ T6579] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 102.950048][ T6579] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 102.950057][ T6579]
[ 102.981374][ T6581] BUG: Bad page state in process syz.0.39 pfn:52401
[ 103.073617][ T6581] page does not match folio
[ 103.075403][ T6581] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52401
[ 103.080011][ T6581] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.082485][ T6581] raw: 00fff00000000000 ffffea0001490000 00000000ffffffff ffffffffffffffff
[ 103.085007][ T6581] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.087645][ T6581] page dumped because: nonzero pincount
[ 103.089280][ T6581] page_owner tracks the page as allocated
[ 103.091012][ T6581] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6580, tgid 6580 (syz.0.39), ts 102958146389, free_ts 102338901770
[ 103.096730][ T6581] post_alloc_hook+0x181/0x1b0
[ 103.098327][ T6581] prep_new_page+0xa0/0xe0
[ 103.099728][ T6581] get_page_from_freelist+0x135b/0x3800
[ 103.101574][ T6581] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.103769][ T6581] alloc_pages_mpol+0x1fb/0x550
[ 103.105609][ T6581] folio_alloc_noprof+0x20/0x2d0
[ 103.107707][ T6581] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.109991][ T6581] page_cache_ra_order+0x4c0/0xd00
[ 103.111831][ T6581] filemap_fault+0x1a5e/0x2740
[ 103.113265][ T6581] __do_fault+0x10a/0x490
[ 103.114579][ T6581] do_pte_missing+0x1a6/0x3fb0
[ 103.116016][ T6581] __handle_mm_fault+0x103d/0x2a40
[ 103.117606][ T6581] handle_mm_fault+0x3fe/0xad0
[ 103.119063][ T6581] do_user_addr_fault+0x60c/0x1370
[ 103.120670][ T6581] exc_page_fault+0x5c/0xc0
[ 103.122091][ T6581] asm_exc_page_fault+0x26/0x30
[ 103.123536][ T6581] page last free pid 6575 tgid 6574 stack trace:
[ 103.125449][ T6581] free_unref_folios+0x999/0x1630
[ 103.126953][ T6581] folios_put_refs+0x56f/0x740
[ 103.128468][ T6581] truncate_inode_pages_range+0x311/0xe30
[ 103.130147][ T6581] blkdev_flush_mapping+0xfb/0x290
[ 103.131750][ T6581] blkdev_put_whole+0xc4/0xf0
[ 103.133138][ T6581] bdev_release+0x47e/0x6d0
[ 103.134511][ T6581] blkdev_release+0x15/0x20
[ 103.135889][ T6581] __fput+0x3ff/0xb70
[ 103.137075][ T6581] task_work_run+0x14d/0x240
[ 103.138537][ T6581] do_exit+0xafb/0x2c30
[ 103.139780][ T6581] do_group_exit+0xd3/0x2a0
[ 103.141217][ T6581] get_signal+0x2673/0x26d0
[ 103.142578][ T6581] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.144190][ T6581] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.145906][ T6581] do_syscall_64+0xda/0x260
[ 103.147273][ T6581] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.149081][ T6581] Modules linked in:
[ 103.150413][ T6581] CPU: 1 UID: 0 PID: 6581 Comm: syz.0.39 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 103.150432][ T6581] Tainted: [B]=BAD_PAGE
[ 103.150435][ T6581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.150442][ T6581] Call Trace:
[ 103.150447][ T6581]
[ 103.150452][ T6581] dump_stack_lvl+0x16c/0x1f0
[ 103.150469][ T6581] bad_page+0xb3/0x1f0
[ 103.150481][ T6581] ? __pfx_bad_page+0x10/0x10
[ 103.150492][ T6581] ? __mem_cgroup_uncharge+0xda/0x130
[ 103.150505][ T6581] free_tail_page_prepare+0x44f/0x5b0
[ 103.150519][ T6581] __free_frozen_pages+0x96a/0xff0
[ 103.150534][ T6581] __folio_put+0x329/0x450
[ 103.150546][ T6581] ? __pfx___folio_put+0x10/0x10
[ 103.150557][ T6581] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.150569][ T6581] ? rcu_is_watching+0x12/0xc0
[ 103.150582][ T6581] ? lock_release+0x201/0x2f0
[ 103.150597][ T6581] filemap_free_folio+0x132/0x170
[ 103.150608][ T6581] delete_from_page_cache_batch+0x741/0x9b0
[ 103.150620][ T6581] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.150632][ T6581] ? __pfx_workingset_update_node+0x10/0x10
[ 103.150644][ T6581] ? xas_move_index+0xb0/0x110
[ 103.150657][ T6581] truncate_inode_pages_range+0x279/0xe30
[ 103.150671][ T6581] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.150694][ T6581] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.150711][ T6581] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.150726][ T6581] blkdev_flush_mapping+0xfb/0x290
[ 103.150738][ T6581] ? filemap_check_errors+0xa9/0x160
[ 103.150753][ T6581] blkdev_put_whole+0xc4/0xf0
[ 103.150763][ T6581] bdev_release+0x47e/0x6d0
[ 103.150776][ T6581] ? __pfx_blkdev_release+0x10/0x10
[ 103.150788][ T6581] blkdev_release+0x15/0x20
[ 103.150807][ T6581] __fput+0x3ff/0xb70
[ 103.150820][ T6581] task_work_run+0x14d/0x240
[ 103.150836][ T6581] ? __pfx_task_work_run+0x10/0x10
[ 103.150850][ T6581] ? do_raw_spin_unlock+0x172/0x230
[ 103.150867][ T6581] do_exit+0xafb/0x2c30
[ 103.150886][ T6581] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.150911][ T6581] ? __pfx_do_exit+0x10/0x10
[ 103.150931][ T6581] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.150944][ T6581] ? get_signal+0x8f5/0x26d0
[ 103.150963][ T6581] ? rcu_is_watching+0x12/0xc0
[ 103.150979][ T6581] do_group_exit+0xd3/0x2a0
[ 103.151000][ T6581] get_signal+0x2673/0x26d0
[ 103.151014][ T6581] ? __pfx_get_signal+0x10/0x10
[ 103.151026][ T6581] ? do_futex+0x122/0x350
[ 103.151040][ T6581] ? __pfx_do_futex+0x10/0x10
[ 103.151055][ T6581] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.151071][ T6581] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.151086][ T6581] ? madvise_unlock+0xc6/0x190
[ 103.151097][ T6581] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.151111][ T6581] do_syscall_64+0xda/0x260
[ 103.151124][ T6581] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.151135][ T6581] RIP: 0033:0x7fa3d358e969
[ 103.151143][ T6581] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 103.151148][ T6581] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.151158][ T6581] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 103.151165][ T6581] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 103.151171][ T6581] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.151177][ T6581] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 103.151183][ T6581] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 103.151191][ T6581]
[ 103.151209][ T6581] BUG: Bad page state in process syz.0.39 pfn:52400
[ 103.254965][ T6581] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52400
[ 103.257859][ T6581] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 103.260377][ T6581] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 103.262982][ T6581] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.265548][ T6581] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.268170][ T6581] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.271036][ T6581] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.273693][ T6581] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.277063][ T6581] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.279786][ T6581] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 103.281934][ T6581] page_owner tracks the page as allocated
[ 103.283576][ T6581] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6580, tgid 6580 (syz.0.39), ts 102958146389, free_ts 102338901770
[ 103.289563][ T6581] post_alloc_hook+0x181/0x1b0
[ 103.291118][ T6581] prep_new_page+0xa0/0xe0
[ 103.292463][ T6581] get_page_from_freelist+0x135b/0x3800
[ 103.294205][ T6581] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.296001][ T6581] alloc_pages_mpol+0x1fb/0x550
[ 103.297587][ T6581] folio_alloc_noprof+0x20/0x2d0
[ 103.299250][ T6581] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.301055][ T6581] page_cache_ra_order+0x4c0/0xd00
[ 103.302574][ T6581] filemap_fault+0x1a5e/0x2740
[ 103.303995][ T6581] __do_fault+0x10a/0x490
[ 103.305331][ T6581] do_pte_missing+0x1a6/0x3fb0
[ 103.306751][ T6581] __handle_mm_fault+0x103d/0x2a40
[ 103.308332][ T6581] handle_mm_fault+0x3fe/0xad0
[ 103.309927][ T6581] do_user_addr_fault+0x60c/0x1370
[ 103.311482][ T6581] exc_page_fault+0x5c/0xc0
[ 103.312946][ T6581] asm_exc_page_fault+0x26/0x30
[ 103.314562][ T6581] page last free pid 6575 tgid 6574 stack trace:
[ 103.316449][ T6581] free_unref_folios+0x999/0x1630
[ 103.318254][ T6581] folios_put_refs+0x56f/0x740
[ 103.319739][ T6581] truncate_inode_pages_range+0x311/0xe30
[ 103.321582][ T6581] blkdev_flush_mapping+0xfb/0x290
[ 103.323142][ T6581] blkdev_put_whole+0xc4/0xf0
[ 103.324573][ T6581] bdev_release+0x47e/0x6d0
[ 103.325995][ T6581] blkdev_release+0x15/0x20
[ 103.327698][ T6581] __fput+0x3ff/0xb70
[ 103.328985][ T6581] task_work_run+0x14d/0x240
[ 103.330527][ T6581] do_exit+0xafb/0x2c30
[ 103.331783][ T6581] do_group_exit+0xd3/0x2a0
[ 103.333245][ T6581] get_signal+0x2673/0x26d0
[ 103.334785][ T6581] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.336919][ T6581] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.338642][ T6581] do_syscall_64+0xda/0x260
[ 103.339988][ T6581] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.341755][ T6581] Modules linked in:
[ 103.342922][ T6581] CPU: 1 UID: 0 PID: 6581 Comm: syz.0.39 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 103.342938][ T6581] Tainted: [B]=BAD_PAGE
[ 103.342942][ T6581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.342948][ T6581] Call Trace:
[ 103.342952][ T6581]
[ 103.342955][ T6581] dump_stack_lvl+0x16c/0x1f0
[ 103.342969][ T6581] bad_page+0xb3/0x1f0
[ 103.342980][ T6581] ? __pfx_bad_page+0x10/0x10
[ 103.342990][ T6581] ? page_bad_reason+0x9d/0x1e0
[ 103.343000][ T6581] __free_frozen_pages+0x76e/0xff0
[ 103.343016][ T6581] __folio_put+0x329/0x450
[ 103.343027][ T6581] ? __pfx___folio_put+0x10/0x10
[ 103.343037][ T6581] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.343049][ T6581] ? rcu_is_watching+0x12/0xc0
[ 103.343060][ T6581] ? lock_release+0x201/0x2f0
[ 103.343076][ T6581] filemap_free_folio+0x132/0x170
[ 103.343086][ T6581] delete_from_page_cache_batch+0x741/0x9b0
[ 103.343099][ T6581] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.343111][ T6581] ? __pfx_workingset_update_node+0x10/0x10
[ 103.343122][ T6581] ? xas_move_index+0xb0/0x110
[ 103.343134][ T6581] truncate_inode_pages_range+0x279/0xe30
[ 103.343149][ T6581] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.343171][ T6581] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.343188][ T6581] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.343202][ T6581] blkdev_flush_mapping+0xfb/0x290
[ 103.343213][ T6581] ? filemap_check_errors+0xa9/0x160
[ 103.343228][ T6581] blkdev_put_whole+0xc4/0xf0
[ 103.343238][ T6581] bdev_release+0x47e/0x6d0
[ 103.343251][ T6581] ? __pfx_blkdev_release+0x10/0x10
[ 103.343263][ T6581] blkdev_release+0x15/0x20
[ 103.343275][ T6581] __fput+0x3ff/0xb70
[ 103.343286][ T6581] task_work_run+0x14d/0x240
[ 103.343297][ T6581] ? __pfx_task_work_run+0x10/0x10
[ 103.343306][ T6581] ? do_raw_spin_unlock+0x172/0x230
[ 103.343318][ T6581] do_exit+0xafb/0x2c30
[ 103.343332][ T6581] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.343348][ T6581] ? __pfx_do_exit+0x10/0x10
[ 103.343362][ T6581] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.343371][ T6581] ? get_signal+0x8f5/0x26d0
[ 103.343383][ T6581] ? rcu_is_watching+0x12/0xc0
[ 103.343394][ T6581] do_group_exit+0xd3/0x2a0
[ 103.343409][ T6581] get_signal+0x2673/0x26d0
[ 103.343422][ T6581] ? __pfx_get_signal+0x10/0x10
[ 103.343434][ T6581] ? do_futex+0x122/0x350
[ 103.343446][ T6581] ? __pfx_do_futex+0x10/0x10
[ 103.343459][ T6581] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.343473][ T6581] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.343488][ T6581] ? madvise_unlock+0xc6/0x190
[ 103.343500][ T6581] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.343512][ T6581] do_syscall_64+0xda/0x260
[ 103.343524][ T6581] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.343534][ T6581] RIP: 0033:0x7fa3d358e969
[ 103.343541][ T6581] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 103.343546][ T6581] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.343555][ T6581] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 103.343561][ T6581] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 103.343567][ T6581] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.343573][ T6581] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 103.343579][ T6581] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 103.343587][ T6581]
[ 103.378406][ T6583] BUG: Bad page state in process syz.0.40 pfn:52801
[ 103.460657][ T6583] page does not match folio
[ 103.462565][ T6583] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52801
[ 103.465917][ T6583] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.468264][ T6583] raw: 00fff00000000000 ffffea00014a0000 00000000ffffffff ffffffffffffffff
[ 103.471002][ T6583] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.473794][ T6583] page dumped because: nonzero pincount
[ 103.475712][ T6583] page_owner tracks the page as allocated
[ 103.477507][ T6583] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6582, tgid 6582 (syz.0.40), ts 103352056169, free_ts 102950183419
[ 103.483784][ T6583] post_alloc_hook+0x181/0x1b0
[ 103.485264][ T6583] prep_new_page+0xa0/0xe0
[ 103.486631][ T6583] get_page_from_freelist+0x135b/0x3800
[ 103.488346][ T6583] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.490172][ T6583] alloc_pages_mpol+0x1fb/0x550
[ 103.491648][ T6583] folio_alloc_noprof+0x20/0x2d0
[ 103.493254][ T6583] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.494960][ T6583] page_cache_ra_order+0x4c0/0xd00
[ 103.496514][ T6583] filemap_fault+0x1a5e/0x2740
[ 103.498050][ T6583] __do_fault+0x10a/0x490
[ 103.499379][ T6583] do_pte_missing+0x1a6/0x3fb0
[ 103.500940][ T6583] __handle_mm_fault+0x103d/0x2a40
[ 103.502576][ T6583] handle_mm_fault+0x3fe/0xad0
[ 103.504036][ T6583] do_user_addr_fault+0x60c/0x1370
[ 103.505604][ T6583] exc_page_fault+0x5c/0xc0
[ 103.506966][ T6583] asm_exc_page_fault+0x26/0x30
[ 103.508492][ T6583] page last free pid 6579 tgid 6578 stack trace:
[ 103.510651][ T6583] free_unref_folios+0x999/0x1630
[ 103.512452][ T6583] folios_put_refs+0x56f/0x740
[ 103.513924][ T6583] truncate_inode_pages_range+0x311/0xe30
[ 103.515640][ T6583] blkdev_flush_mapping+0xfb/0x290
[ 103.517241][ T6583] blkdev_put_whole+0xc4/0xf0
[ 103.518778][ T6583] bdev_release+0x47e/0x6d0
[ 103.520204][ T6583] blkdev_release+0x15/0x20
[ 103.521844][ T6583] __fput+0x3ff/0xb70
[ 103.523447][ T6583] task_work_run+0x14d/0x240
[ 103.525317][ T6583] do_exit+0xafb/0x2c30
[ 103.527042][ T6583] do_group_exit+0xd3/0x2a0
[ 103.528965][ T6583] get_signal+0x2673/0x26d0
[ 103.530888][ T6583] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.533100][ T6583] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.535345][ T6583] do_syscall_64+0xda/0x260
[ 103.537174][ T6583] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.539650][ T6583] Modules linked in:
[ 103.541303][ T6583] CPU: 2 UID: 0 PID: 6583 Comm: syz.0.40 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 103.541329][ T6583] Tainted: [B]=BAD_PAGE
[ 103.541335][ T6583] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.541344][ T6583] Call Trace:
[ 103.541350][ T6583]
[ 103.541356][ T6583] dump_stack_lvl+0x16c/0x1f0
[ 103.541377][ T6583] bad_page+0xb3/0x1f0
[ 103.541397][ T6583] ? __pfx_bad_page+0x10/0x10
[ 103.541414][ T6583] ? __mem_cgroup_uncharge+0xda/0x130
[ 103.541435][ T6583] free_tail_page_prepare+0x44f/0x5b0
[ 103.541458][ T6583] __free_frozen_pages+0x96a/0xff0
[ 103.541481][ T6583] __folio_put+0x329/0x450
[ 103.541499][ T6583] ? __pfx___folio_put+0x10/0x10
[ 103.541517][ T6583] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.541537][ T6583] ? rcu_is_watching+0x12/0xc0
[ 103.541556][ T6583] ? lock_release+0x201/0x2f0
[ 103.541579][ T6583] filemap_free_folio+0x132/0x170
[ 103.541596][ T6583] delete_from_page_cache_batch+0x741/0x9b0
[ 103.541617][ T6583] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.541638][ T6583] ? __pfx_workingset_update_node+0x10/0x10
[ 103.541655][ T6583] ? xas_move_index+0xb0/0x110
[ 103.541676][ T6583] truncate_inode_pages_range+0x279/0xe30
[ 103.541701][ T6583] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.541758][ T6583] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.541786][ T6583] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.541810][ T6583] blkdev_flush_mapping+0xfb/0x290
[ 103.541829][ T6583] ? filemap_check_errors+0xa9/0x160
[ 103.541854][ T6583] blkdev_put_whole+0xc4/0xf0
[ 103.541872][ T6583] bdev_release+0x47e/0x6d0
[ 103.541893][ T6583] ? __pfx_blkdev_release+0x10/0x10
[ 103.541911][ T6583] blkdev_release+0x15/0x20
[ 103.541930][ T6583] __fput+0x3ff/0xb70
[ 103.541951][ T6583] task_work_run+0x14d/0x240
[ 103.541968][ T6583] ? __pfx_task_work_run+0x10/0x10
[ 103.541986][ T6583] ? do_raw_spin_unlock+0x172/0x230
[ 103.542006][ T6583] do_exit+0xafb/0x2c30
[ 103.542029][ T6583] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.542057][ T6583] ? __pfx_do_exit+0x10/0x10
[ 103.542078][ T6583] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.542094][ T6583] ? get_signal+0x8f5/0x26d0
[ 103.542111][ T6583] ? rcu_is_watching+0x12/0xc0
[ 103.542130][ T6583] do_group_exit+0xd3/0x2a0
[ 103.542154][ T6583] get_signal+0x2673/0x26d0
[ 103.542176][ T6583] ? __pfx_get_signal+0x10/0x10
[ 103.542194][ T6583] ? do_futex+0x122/0x350
[ 103.542215][ T6583] ? __pfx_do_futex+0x10/0x10
[ 103.542237][ T6583] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.542265][ T6583] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.542290][ T6583] ? madvise_unlock+0xc6/0x190
[ 103.542310][ T6583] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.542329][ T6583] do_syscall_64+0xda/0x260
[ 103.542345][ T6583] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.542360][ T6583] RIP: 0033:0x7fa3d358e969
[ 103.542373][ T6583] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 103.542381][ T6583] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.542398][ T6583] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 103.542408][ T6583] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 103.542416][ T6583] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.542426][ T6583] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 103.542436][ T6583] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 103.542451][ T6583]
[ 103.542476][ T6583] BUG: Bad page state in process syz.0.40 pfn:52800
[ 103.680241][ T6583] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52800
[ 103.683151][ T6583] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 103.686016][ T6583] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 103.688923][ T6583] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.691448][ T6583] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.694000][ T6583] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 103.696547][ T6583] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.699443][ T6583] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 103.702461][ T6583] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.705266][ T6583] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 103.707632][ T6583] page_owner tracks the page as allocated
[ 103.709580][ T6583] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6582, tgid 6582 (syz.0.40), ts 103352056169, free_ts 102950183419
[ 103.716863][ T6583] post_alloc_hook+0x181/0x1b0
[ 103.718724][ T6583] prep_new_page+0xa0/0xe0
[ 103.720313][ T6583] get_page_from_freelist+0x135b/0x3800
[ 103.722353][ T6583] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.724351][ T6583] alloc_pages_mpol+0x1fb/0x550
[ 103.725911][ T6583] folio_alloc_noprof+0x20/0x2d0
[ 103.727832][ T6583] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.729855][ T6583] page_cache_ra_order+0x4c0/0xd00
[ 103.731452][ T6583] filemap_fault+0x1a5e/0x2740
[ 103.733050][ T6583] __do_fault+0x10a/0x490
[ 103.734540][ T6583] do_pte_missing+0x1a6/0x3fb0
[ 103.736194][ T6583] __handle_mm_fault+0x103d/0x2a40
[ 103.738135][ T6583] handle_mm_fault+0x3fe/0xad0
[ 103.739792][ T6583] do_user_addr_fault+0x60c/0x1370
[ 103.741626][ T6583] exc_page_fault+0x5c/0xc0
[ 103.743163][ T6583] asm_exc_page_fault+0x26/0x30
[ 103.744741][ T6583] page last free pid 6579 tgid 6578 stack trace:
[ 103.747715][ T6583] free_unref_folios+0x999/0x1630
[ 103.749463][ T6583] folios_put_refs+0x56f/0x740
[ 103.751295][ T6583] truncate_inode_pages_range+0x311/0xe30
[ 103.753538][ T6583] blkdev_flush_mapping+0xfb/0x290
[ 103.755228][ T6583] blkdev_put_whole+0xc4/0xf0
[ 103.757086][ T6583] bdev_release+0x47e/0x6d0
[ 103.759085][ T6583] blkdev_release+0x15/0x20
[ 103.760864][ T6583] __fput+0x3ff/0xb70
[ 103.762309][ T6583] task_work_run+0x14d/0x240
[ 103.764285][ T6583] do_exit+0xafb/0x2c30
[ 103.765557][ T6583] do_group_exit+0xd3/0x2a0
[ 103.766911][ T6583] get_signal+0x2673/0x26d0
[ 103.768649][ T6583] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.770366][ T6583] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.772019][ T6583] do_syscall_64+0xda/0x260
[ 103.773384][ T6583] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.775313][ T6583] Modules linked in:
[ 103.776497][ T6583] CPU: 1 UID: 0 PID: 6583 Comm: syz.0.40 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 103.776513][ T6583] Tainted: [B]=BAD_PAGE
[ 103.776517][ T6583] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.776523][ T6583] Call Trace:
[ 103.776526][ T6583]
[ 103.776530][ T6583] dump_stack_lvl+0x16c/0x1f0
[ 103.776543][ T6583] bad_page+0xb3/0x1f0
[ 103.776554][ T6583] ? __pfx_bad_page+0x10/0x10
[ 103.776564][ T6583] ? page_bad_reason+0x9d/0x1e0
[ 103.776575][ T6583] __free_frozen_pages+0x76e/0xff0
[ 103.776589][ T6583] __folio_put+0x329/0x450
[ 103.776600][ T6583] ? __pfx___folio_put+0x10/0x10
[ 103.776611][ T6583] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.776622][ T6583] ? rcu_is_watching+0x12/0xc0
[ 103.776634][ T6583] ? lock_release+0x201/0x2f0
[ 103.776649][ T6583] filemap_free_folio+0x132/0x170
[ 103.776659][ T6583] delete_from_page_cache_batch+0x741/0x9b0
[ 103.776672][ T6583] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.776684][ T6583] ? __pfx_workingset_update_node+0x10/0x10
[ 103.776694][ T6583] ? xas_move_index+0xb0/0x110
[ 103.776706][ T6583] truncate_inode_pages_range+0x279/0xe30
[ 103.776721][ T6583] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.776744][ T6583] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.776760][ T6583] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.776774][ T6583] blkdev_flush_mapping+0xfb/0x290
[ 103.776786][ T6583] ? filemap_check_errors+0xa9/0x160
[ 103.776800][ T6583] blkdev_put_whole+0xc4/0xf0
[ 103.776810][ T6583] bdev_release+0x47e/0x6d0
[ 103.776822][ T6583] ? __pfx_blkdev_release+0x10/0x10
[ 103.776834][ T6583] blkdev_release+0x15/0x20
[ 103.776846][ T6583] __fput+0x3ff/0xb70
[ 103.776857][ T6583] task_work_run+0x14d/0x240
[ 103.776868][ T6583] ? __pfx_task_work_run+0x10/0x10
[ 103.776878][ T6583] ? do_raw_spin_unlock+0x172/0x230
[ 103.776889][ T6583] do_exit+0xafb/0x2c30
[ 103.776902][ T6583] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.776919][ T6583] ? __pfx_do_exit+0x10/0x10
[ 103.776932][ T6583] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.776942][ T6583] ? get_signal+0x8f5/0x26d0
[ 103.776953][ T6583] ? rcu_is_watching+0x12/0xc0
[ 103.776968][ T6583] do_group_exit+0xd3/0x2a0
[ 103.776984][ T6583] get_signal+0x2673/0x26d0
[ 103.776997][ T6583] ? __pfx_get_signal+0x10/0x10
[ 103.777009][ T6583] ? do_futex+0x122/0x350
[ 103.777022][ T6583] ? __pfx_do_futex+0x10/0x10
[ 103.777035][ T6583] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.777049][ T6583] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.777064][ T6583] ? madvise_unlock+0xc6/0x190
[ 103.777076][ T6583] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.777088][ T6583] do_syscall_64+0xda/0x260
[ 103.777100][ T6583] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.777109][ T6583] RIP: 0033:0x7fa3d358e969
[ 103.777117][ T6583] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 103.777121][ T6583] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.777130][ T6583] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 103.777137][ T6583] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 103.777143][ T6583] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.777148][ T6583] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 103.777154][ T6583] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 103.777162][ T6583]
[ 103.912546][ T6585] BUG: Bad page state in process syz.0.41 pfn:51c01
[ 103.914746][ T6585] page does not match folio
[ 103.916518][ T6585] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51c01
[ 103.920343][ T6585] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.922856][ T6585] raw: 00fff00000000000 ffffea0001470000 00000000ffffffff ffffffffffffffff
[ 103.925578][ T6585] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 103.928337][ T6585] page dumped because: nonzero pincount
[ 103.930056][ T6585] page_owner tracks the page as allocated
[ 103.931774][ T6585] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6584, tgid 6584 (syz.0.41), ts 103896049830, free_ts 103777190186
[ 103.937912][ T6585] post_alloc_hook+0x181/0x1b0
[ 103.939397][ T6585] prep_new_page+0xa0/0xe0
[ 103.940889][ T6585] get_page_from_freelist+0x135b/0x3800
[ 103.942593][ T6585] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 103.944392][ T6585] alloc_pages_mpol+0x1fb/0x550
[ 103.945902][ T6585] folio_alloc_noprof+0x20/0x2d0
[ 103.952006][ T6585] filemap_alloc_folio_noprof+0x3a1/0x470
[ 103.953683][ T6585] page_cache_ra_order+0x4c0/0xd00
[ 103.955223][ T6585] filemap_fault+0x1a5e/0x2740
[ 103.956663][ T6585] __do_fault+0x10a/0x490
[ 103.958012][ T6585] do_pte_missing+0x1a6/0x3fb0
[ 103.959449][ T6585] __handle_mm_fault+0x103d/0x2a40
[ 103.961023][ T6585] handle_mm_fault+0x3fe/0xad0
[ 103.962503][ T6585] do_user_addr_fault+0x60c/0x1370
[ 103.964027][ T6585] exc_page_fault+0x5c/0xc0
[ 103.965411][ T6585] asm_exc_page_fault+0x26/0x30
[ 103.966915][ T6585] page last free pid 6583 tgid 6582 stack trace:
[ 103.968916][ T6585] free_unref_folios+0x999/0x1630
[ 103.970980][ T6585] folios_put_refs+0x56f/0x740
[ 103.973024][ T6585] truncate_inode_pages_range+0x311/0xe30
[ 103.975076][ T6585] blkdev_flush_mapping+0xfb/0x290
[ 103.976740][ T6585] blkdev_put_whole+0xc4/0xf0
[ 103.978274][ T6585] bdev_release+0x47e/0x6d0
[ 103.979675][ T6585] blkdev_release+0x15/0x20
[ 103.981086][ T6585] __fput+0x3ff/0xb70
[ 103.982326][ T6585] task_work_run+0x14d/0x240
[ 103.983786][ T6585] do_exit+0xafb/0x2c30
[ 103.985059][ T6585] do_group_exit+0xd3/0x2a0
[ 103.986453][ T6585] get_signal+0x2673/0x26d0
[ 103.987872][ T6585] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.989706][ T6585] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.991488][ T6585] do_syscall_64+0xda/0x260
[ 103.992886][ T6585] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.994825][ T6585] Modules linked in:
[ 103.996114][ T6585] CPU: 2 UID: 0 PID: 6585 Comm: syz.0.41 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 103.996129][ T6585] Tainted: [B]=BAD_PAGE
[ 103.996133][ T6585] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 103.996139][ T6585] Call Trace:
[ 103.996144][ T6585]
[ 103.996148][ T6585] dump_stack_lvl+0x16c/0x1f0
[ 103.996161][ T6585] bad_page+0xb3/0x1f0
[ 103.996172][ T6585] ? __pfx_bad_page+0x10/0x10
[ 103.996182][ T6585] ? __mem_cgroup_uncharge+0xda/0x130
[ 103.996195][ T6585] free_tail_page_prepare+0x44f/0x5b0
[ 103.996208][ T6585] __free_frozen_pages+0x96a/0xff0
[ 103.996223][ T6585] __folio_put+0x329/0x450
[ 103.996234][ T6585] ? __pfx___folio_put+0x10/0x10
[ 103.996244][ T6585] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 103.996256][ T6585] ? rcu_is_watching+0x12/0xc0
[ 103.996268][ T6585] ? lock_release+0x201/0x2f0
[ 103.996283][ T6585] filemap_free_folio+0x132/0x170
[ 103.996294][ T6585] delete_from_page_cache_batch+0x741/0x9b0
[ 103.996306][ T6585] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 103.996318][ T6585] ? __pfx_workingset_update_node+0x10/0x10
[ 103.996329][ T6585] ? xas_move_index+0xb0/0x110
[ 103.996342][ T6585] truncate_inode_pages_range+0x279/0xe30
[ 103.996357][ T6585] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 103.996379][ T6585] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 103.996395][ T6585] ? __pfx_has_bh_in_lru+0x10/0x10
[ 103.996410][ T6585] blkdev_flush_mapping+0xfb/0x290
[ 103.996421][ T6585] ? filemap_check_errors+0xa9/0x160
[ 103.996435][ T6585] blkdev_put_whole+0xc4/0xf0
[ 103.996446][ T6585] bdev_release+0x47e/0x6d0
[ 103.996458][ T6585] ? __pfx_blkdev_release+0x10/0x10
[ 103.996470][ T6585] blkdev_release+0x15/0x20
[ 103.996482][ T6585] __fput+0x3ff/0xb70
[ 103.996494][ T6585] task_work_run+0x14d/0x240
[ 103.996505][ T6585] ? __pfx_task_work_run+0x10/0x10
[ 103.996515][ T6585] ? do_raw_spin_unlock+0x172/0x230
[ 103.996525][ T6585] do_exit+0xafb/0x2c30
[ 103.996540][ T6585] ? __pfx_futex_wake_mark+0x10/0x10
[ 103.996557][ T6585] ? __pfx_do_exit+0x10/0x10
[ 103.996571][ T6585] ? do_raw_spin_lock+0x12c/0x2b0
[ 103.996580][ T6585] ? get_signal+0x8f5/0x26d0
[ 103.996592][ T6585] ? rcu_is_watching+0x12/0xc0
[ 103.996603][ T6585] do_group_exit+0xd3/0x2a0
[ 103.996618][ T6585] get_signal+0x2673/0x26d0
[ 103.996631][ T6585] ? __pfx_get_signal+0x10/0x10
[ 103.996643][ T6585] ? do_futex+0x122/0x350
[ 103.996656][ T6585] ? __pfx_do_futex+0x10/0x10
[ 103.996669][ T6585] arch_do_signal_or_restart+0x8f/0x7d0
[ 103.996683][ T6585] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 103.996698][ T6585] ? rcu_is_watching+0x12/0xc0
[ 103.996710][ T6585] syscall_exit_to_user_mode+0x150/0x2a0
[ 103.996722][ T6585] do_syscall_64+0xda/0x260
[ 103.996734][ T6585] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.996744][ T6585] RIP: 0033:0x7fa3d358e969
[ 103.996752][ T6585] Code: Unable to access opcode bytes at 0x7fa3d358e93f.
[ 103.996756][ T6585] RSP: 002b:00007fa3d446b0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 103.996765][ T6585] RAX: fffffffffffffe00 RBX: 00007fa3d37b5fa8 RCX: 00007fa3d358e969
[ 103.996772][ T6585] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa3d37b5fa8
[ 103.996778][ T6585] RBP: 00007fa3d37b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 103.996784][ T6585] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa3d37b5fac
[ 103.996790][ T6585] R13: 0000000000000000 R14: 00007ffd90b4bb40 R15: 00007ffd90b4bc28
[ 103.996798][ T6585]
[ 103.996812][ T6585] BUG: Bad page state in process syz.0.41 pfn:51c00
[ 104.103543][ T6585] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51c00
[ 104.107098][ T6585] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 104.110674][ T6585] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 104.114256][ T6585] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 104.118047][ T6585] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.121669][ T6585] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 104.124737][ T6585] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.127299][ T6585] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 104.130787][ T6585] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 104.134228][ T6585] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 104.137119][ T6585] page_owner tracks the page as allocated
[ 104.139470][ T6585] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6584, tgid 6584 (syz.0.41), ts 103896049830, free_ts 103777190186
[ 104.147543][ T6585] post_alloc_hook+0x181/0x1b0
[ 104.149501][ T6585] prep_new_page+0xa0/0xe0
[ 104.151335][ T6585] get_page_from_freelist+0x135b/0x3800
[ 104.153620][ T6585] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 104.156035][ T6585] alloc_pages_mpol+0x1fb/0x550
[ 104.158165][ T6585] folio_alloc_noprof+0x20/0x2d0
[ 104.160210][ T6585] filemap_alloc_folio_noprof+0x3a1/0x470
[ 104.162524][ T6585] page_cache_ra_order+0x4c0/0xd00
[ 104.164583][ T6585] filemap_fault+0x1a5e/0x2740
[ 104.166510][ T6585] __do_fault+0x10a/0x490
[ 104.168471][ T6585] do_pte_missing+0x1a6/0x3fb0
[ 104.170620][ T6585] __handle_mm_fault+0x103d/0x2a40
[ 104.172766][ T6585] handle_mm_fault+0x3fe/0xad0
[ 104.174772][ T6585] do_user_addr_fault+0x60c/0x1370
[ 104.176845][ T6585] exc_page_fault+0x5c/0xc0
[ 104.178809][ T6585] asm_exc_page_fault+0x26/0x30
[ 104.180804][ T6585] page last free pid 6583 tgid 6582 stack trace:
[ 104.183361][ T6585] free_unref_folios+0x999/0x1630
[ 104.185415][ T6585] folios_put_refs+0x56f/0x740
[ 104.187444][ T6585] truncate_inode_pages_range+0x311/0xe30
[ 104.189976][ T6585] blkdev_flush_mapping+0xfb/0x290
[ 104.192207][ T6585] blkdev_put_whole+0xc4/0xf0
[ 104.194143][ T6585] bdev_release+0x47e/0x6d0
[ 104.196207][ T6585] blkdev_release+0x15/0x20
[ 104.198317][ T6585] __fput+0x3ff/0xb70
[ 104.199513][ T6585] task_work_run+0x14d/0x240
[ 104.200926][ T6585] do_exit+0xafb/0x2c30
[ 104.202290][ T6585] do_group_exit+0xd3/0x2a0
[ 104.203751][ T6585] get_signal+0x2673/0x26d0
[ 104.205137][ T6585] arch_do_signal_or_restart+0x8f/0x7d0
[ 104.206792][ T6585] syscall_exit_to_user_mode+0x150/0x2a0
[ 104.208742][ T6585] do_syscall_64+0xda/0x260
[ 104.210541][ T6585] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.212903][ T6585] Modules linked in:
[ 104.214616][ T6585] CPU: 0 UID: 0 PID: 6585 Comm: syz.0.41 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 104.214642][ T6585] Tainted: [B]=BAD_PAGE
[ 104.214649][ T6585] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 104.214660][ T6585] Call Trace:
[ 104.214669][ T6585]
[ 104.214676][ T6585] dump_stack_lvl+0x16c/0x1f0
[ 104.214698][ T6585] bad_page+0xb3/0x1f0
[ 104.214718][ T6585] ? __pfx_bad_page+0x10/0x10
[ 104.214736][ T6585] ? page_bad_reason+0x9d/0x1e0
[ 104.214753][ T6585] __free_frozen_pages+0x76e/0xff0
[ 104.214792][ T6585] __folio_put+0x329/0x450
[ 104.214811][ T6585] ? __pfx___folio_put+0x10/0x10
[ 104.214829][ T6585] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 104.214848][ T6585] ? rcu_is_watching+0x12/0xc0
[ 104.214868][ T6585] ? lock_release+0x201/0x2f0