[ 83.144935][ T40] audit: type=1400 audit(1780132244.224:208): avc: denied { transition } for pid=5971 comm="sshd-session" path="/bin/sh" dev="sda1" ino=90 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 83.154095][ T40] audit: type=1400 audit(1780132244.224:209): avc: denied { noatsecure } for pid=5971 comm="sshd-session" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 83.162315][ T40] audit: type=1400 audit(1780132244.234:210): avc: denied { rlimitinh } for pid=5971 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 83.170053][ T40] audit: type=1400 audit(1780132244.234:211): avc: denied { siginh } for pid=5971 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 86.587900][ T24] cfg80211: failed to load regulatory.db
[ 87.242633][ T40] audit: type=1400 audit(1780132248.324:212): avc: denied { write } for pid=5978 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 87.290430][ T40] audit: type=1400 audit(1780132248.374:213): avc: denied { write } for pid=5981 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 87.546246][ T40] audit: type=1400 audit(1780132248.624:214): avc: denied { write } for pid=5984 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 87.606802][ T40] audit: type=1400 audit(1780132248.694:215): avc: denied { write } for pid=5987 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 87.840135][ T40] audit: type=1400 audit(1780132248.924:216): avc: denied { write } for pid=5990 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 87.900396][ T40] audit: type=1400 audit(1780132248.984:217): avc: denied { write } for pid=5993 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 88.369489][ T40] audit: type=1400 audit(1780132249.454:218): avc: denied { write } for pid=5996 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 88.412206][ T40] audit: type=1400 audit(1780132249.494:219): avc: denied { write } for pid=5999 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
Warning: Permanently added '[localhost]:38395' (ED25519) to the list of known hosts.
2026/05/30 09:10:51 parsed 1 programs
[ 90.275603][ T40] audit: type=1400 audit(1780132251.354:220): avc: denied { node_bind } for pid=6009 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 92.519163][ T40] audit: type=1400 audit(1780132253.604:221): avc: denied { read write } for pid=6020 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 92.529931][ T40] audit: type=1400 audit(1780132253.604:222): avc: denied { open } for pid=6020 comm="syz-executor" path="/swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 92.597966][ T40] audit: type=1400 audit(1780132253.684:223): avc: denied { unlink } for pid=6020 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
Setting up swapspace version 1, size = 127995904 bytes
[ 92.918795][ T40] audit: type=1400 audit(1780132254.004:224): avc: denied { relabelto } for pid=6022 comm="mkswap" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 93.537976][ T6020] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 95.597940][ T40] audit: type=1400 audit(1780132256.684:225): avc: denied { sys_module } for pid=6025 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 95.941434][ T6025] bridge0: port 1(bridge_slave_0) entered blocking state
[ 95.943530][ T6025] bridge0: port 1(bridge_slave_0) entered disabled state
[ 95.946335][ T6025] bridge_slave_0: entered allmulticast mode
[ 95.948957][ T6025] bridge_slave_0: entered promiscuous mode
[ 95.952764][ T6025] bridge0: port 2(bridge_slave_1) entered blocking state
[ 95.954956][ T6025] bridge0: port 2(bridge_slave_1) entered disabled state
[ 95.957711][ T6025] bridge_slave_1: entered allmulticast mode
[ 95.960302][ T6025] bridge_slave_1: entered promiscuous mode
[ 95.982742][ T6025] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 95.987513][ T6025] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 96.002970][ T6025] team0: Port device team_slave_0 added
[ 96.005805][ T6025] team0: Port device team_slave_1 added
[ 96.022944][ T6025] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 96.025075][ T6025] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 96.032237][ T6025] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 96.036060][ T6025] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 96.038078][ T6025] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 96.045086][ T6025] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 96.067434][ T6025] hsr_slave_0: entered promiscuous mode
[ 96.069855][ T6025] hsr_slave_1: entered promiscuous mode
[ 96.169003][ T40] audit: type=1400 audit(1780132257.254:226): avc: denied { write } for pid=6041 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 96.218055][ T40] audit: type=1400 audit(1780132257.304:227): avc: denied { write } for pid=6045 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 96.294168][ T40] audit: type=1400 audit(1780132257.374:228): avc: denied { write } for pid=6047 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 96.352982][ T40] audit: type=1400 audit(1780132257.434:229): avc: denied { write } for pid=6050 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 96.422326][ T40] audit: type=1400 audit(1780132257.504:230): avc: denied { write } for pid=6052 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 96.475270][ T40] audit: type=1400 audit(1780132257.554:231): avc: denied { write } for pid=6055 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 96.547970][ T6025] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 96.553807][ T6025] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 96.558067][ T6025] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 96.564186][ T6025] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 96.566947][ T40] audit: type=1400 audit(1780132257.654:232): avc: denied { write } for pid=6057 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 96.567934][ T6025] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 96.579060][ T6025] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 96.581849][ T6025] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 96.585601][ T6025] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 96.601115][ T6025] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.603471][ T6025] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 96.605799][ T6025] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.608118][ T6025] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 96.629024][ T40] audit: type=1400 audit(1780132257.714:233): avc: denied { write } for pid=6066 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 96.645708][ T6025] 8021q: adding VLAN 0 to HW filter on device bond0
[ 96.655763][ T59] bridge0: port 1(bridge_slave_0) entered disabled state
[ 96.662390][ T59] bridge0: port 2(bridge_slave_1) entered disabled state
[ 96.672750][ T6025] 8021q: adding VLAN 0 to HW filter on device team0
[ 96.678424][ T59] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.680820][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 96.687467][ T220] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.690457][ T220] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 96.723355][ T40] audit: type=1400 audit(1780132257.804:234): avc: denied { write } for pid=6069 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 96.980514][ T6025] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 97.015846][ T6025] veth0_vlan: entered promiscuous mode
[ 97.024004][ T6025] veth1_vlan: entered promiscuous mode
[ 97.048967][ T6025] veth0_macvtap: entered promiscuous mode
[ 97.054827][ T6025] veth1_macvtap: entered promiscuous mode
[ 97.064620][ T6025] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 97.073545][ T6025] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 97.087350][ T220] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.093826][ T220] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.096869][ T220] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.100675][ T220] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.261102][ T59] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.383641][ T59] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.466018][ T59] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.551045][ T59] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.185673][ T5100] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 98.191606][ T5100] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 98.195519][ T5100] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 98.202045][ T5100] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 98.205802][ T5100] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 98.585369][ T1198] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 98.587994][ T1198] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 98.607722][ T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 98.610405][ T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/05/30 09:11:00 executed programs: 0
[ 99.365984][ T5100] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 99.370232][ T5100] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 99.373836][ T5100] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 99.378169][ T5100] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 99.381652][ T5100] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 99.759824][ T6200] bridge0: port 1(bridge_slave_0) entered blocking state
[ 99.762382][ T6200] bridge0: port 1(bridge_slave_0) entered disabled state
[ 99.764913][ T6200] bridge_slave_0: entered allmulticast mode
[ 99.768763][ T6200] bridge_slave_0: entered promiscuous mode
[ 99.773256][ T6200] bridge0: port 2(bridge_slave_1) entered blocking state
[ 99.776375][ T6200] bridge0: port 2(bridge_slave_1) entered disabled state
[ 99.779392][ T6200] bridge_slave_1: entered allmulticast mode
[ 99.783152][ T6200] bridge_slave_1: entered promiscuous mode
[ 99.808003][ T6200] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 99.812483][ T6200] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 99.829785][ T6200] team0: Port device team_slave_0 added
[ 99.833284][ T6200] team0: Port device team_slave_1 added
[ 99.856289][ T6200] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 99.859028][ T6200] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 99.869320][ T6200] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 99.874134][ T6200] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 99.876582][ T6200] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 99.885691][ T6200] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 99.908116][ T6200] hsr_slave_0: entered promiscuous mode
[ 99.910257][ T6200] hsr_slave_1: entered promiscuous mode
[ 99.912234][ T6200] debugfs: 'hsr0' already exists in 'hsr'
[ 99.913997][ T6200] Cannot create hsr debugfs directory
[ 100.361832][ T59] bridge_slave_1: left allmulticast mode
[ 100.363763][ T59] bridge_slave_1: left promiscuous mode
[ 100.365584][ T59] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.369601][ T59] bridge_slave_0: left allmulticast mode
[ 100.371400][ T59] bridge_slave_0: left promiscuous mode
[ 100.373214][ T59] bridge0: port 1(bridge_slave_0) entered disabled state
[ 100.560704][ T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 100.565342][ T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 100.569012][ T59] bond0 (unregistering): Released all slaves
[ 100.651195][ T40] kauditd_printk_skb: 18 callbacks suppressed
[ 100.651211][ T40] audit: type=1400 audit(1780132261.734:253): avc: denied { write } for pid=6220 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 100.723829][ T59] hsr_slave_0: left promiscuous mode
[ 100.725498][ T40] audit: type=1400 audit(1780132261.804:254): avc: denied { write } for pid=6223 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 100.734261][ T59] hsr_slave_1: left promiscuous mode
[ 100.737856][ T59] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 100.740833][ T59] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 100.746691][ T59] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 100.749622][ T59] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 100.763626][ T59] veth1_macvtap: left promiscuous mode
[ 100.765843][ T59] veth0_macvtap: left promiscuous mode
[ 100.768228][ T59] veth1_vlan: left promiscuous mode
[ 100.770348][ T59] veth0_vlan: left promiscuous mode
[ 100.920939][ T59] team0 (unregistering): Port device team_slave_1 removed
[ 100.931407][ T59] team0 (unregistering): Port device team_slave_0 removed
[ 101.014365][ T5452] 8021q: adding VLAN 0 to HW filter on device eth2
[ 101.090298][ T40] audit: type=1400 audit(1780132262.174:255): avc: denied { write } for pid=6227 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 101.158470][ T40] audit: type=1400 audit(1780132262.234:256): avc: denied { write } for pid=6230 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 101.298261][ T40] audit: type=1400 audit(1780132262.384:257): avc: denied { write } for pid=6233 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 101.353385][ T40] audit: type=1400 audit(1780132262.434:258): avc: denied { write } for pid=6236 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 101.439960][ T40] audit: type=1400 audit(1780132262.524:259): avc: denied { write } for pid=6238 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 101.466488][ T62] Bluetooth: hci0: command tx timeout
[ 101.488513][ T40] audit: type=1400 audit(1780132262.574:260): avc: denied { write } for pid=6241 comm="rm" name="hook-state" dev="tmpfs" ino=1842 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 101.495018][ T6200] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 101.503661][ T6200] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 101.507416][ T6200] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 101.512630][ T6200] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 101.515951][ T6200] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 101.521231][ T6200] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 101.524920][ T6200] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 101.532446][ T6200] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 101.588158][ T6200] 8021q: adding VLAN 0 to HW filter on device bond0
[ 101.597127][ T6200] 8021q: adding VLAN 0 to HW filter on device team0
[ 101.602269][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 101.604529][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 101.611621][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 101.614680][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 102.115391][ T6200] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 102.140807][ T6200] veth0_vlan: entered promiscuous mode
[ 102.149624][ T6200] veth1_vlan: entered promiscuous mode
[ 102.165214][ T6200] veth0_macvtap: entered promiscuous mode
[ 102.171718][ T6200] veth1_macvtap: entered promiscuous mode
[ 102.179980][ T6200] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 102.185838][ T6200] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 102.213308][ T46] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.216727][ T46] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.220044][ T46] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.222751][ T46] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 102.263599][ T1198] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.268817][ T1198] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 102.285771][ T1198] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.289189][ T1198] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 102.317095][ T40] audit: type=1400 audit(1780132263.404:261): avc: denied { prog_load } for pid=6260 comm="syz.0.17" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 102.322779][ T40] audit: type=1400 audit(1780132263.404:262): avc: denied { bpf } for pid=6260 comm="syz.0.17" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 102.331294][ T6261] BUG: Bad page state in process syz.0.17 pfn:35a68
[ 102.333539][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x35a68
[ 102.337967][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.340500][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 102.343176][ T6261] raw: ffff888000000000 3fffffffffffffff 00000000ffffffff 0000000000000000
[ 102.345784][ T6261] page dumped because: page_pool leak
[ 102.347482][ T6261] page_owner tracks the page as allocated
[ 102.349367][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331232536, free_ts 102148590634
[ 102.354437][ T6261] post_alloc_hook+0xfd/0x120
[ 102.355926][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 102.358249][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 102.360172][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 102.361888][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 102.363813][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 102.365507][ T6261] page_pool_alloc_frag_netmem+0x21d/0xa00
[ 102.367379][ T6261] skb_pp_cow_data+0x5a7/0x1220
[ 102.368965][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 102.370579][ T6261] do_xdp_generic+0x56b/0x12c0
[ 102.372136][ T6261] tun_get_user+0x1c1c/0x3c20
[ 102.373653][ T6261] tun_chr_write_iter+0xdc/0x200
[ 102.375199][ T6261] vfs_write+0x6ac/0x1070
[ 102.376675][ T6261] ksys_write+0x12a/0x250
[ 102.378041][ T6261] do_syscall_64+0x115/0x870
[ 102.379832][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.382397][ T6261] page last free pid 10 tgid 10 stack trace:
[ 102.384858][ T6261] __free_frozen_pages+0x794/0x10a0
[ 102.387057][ T6261] rcu_core+0x5a2/0x10d0
[ 102.388785][ T6261] handle_softirqs+0x1ea/0xa00
[ 102.390740][ T6261] do_softirq+0xac/0xe0
[ 102.392410][ T6261] __local_bh_enable_ip+0xf8/0x120
[ 102.394445][ T6261] __alloc_skb+0x5db/0x710
[ 102.396357][ T6261] mld_newpack.isra.0+0x18e/0xa20
[ 102.398436][ T6261] add_grhead+0x299/0x340
[ 102.400205][ T6261] add_grec+0x1380/0x1920
[ 102.401977][ T6261] mld_ifc_work+0x3c5/0xc10
[ 102.403862][ T6261] process_one_work+0xa0e/0x1980
[ 102.405894][ T6261] worker_thread+0x5ef/0xe50
[ 102.407860][ T6261] kthread+0x370/0x450
[ 102.409214][ T6261] ret_from_fork+0x72b/0xd50
[ 102.410731][ T6261] ret_from_fork_asm+0x1a/0x30
[ 102.412219][ T6261] Modules linked in:
[ 102.413690][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 102.413703][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 102.413709][ T6261] Call Trace:
[ 102.413713][ T6261]
[ 102.413718][ T6261] dump_stack_lvl+0x100/0x190
[ 102.413731][ T6261] bad_page.cold+0xbe/0xdf
[ 102.413747][ T6261] ? __pfx_bad_page+0x10/0x10
[ 102.413758][ T6261] ? rcu_is_watching+0x12/0xc0
[ 102.413773][ T6261] ? page_bad_reason+0x98/0x200
[ 102.413784][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 102.413798][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 102.413814][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 102.413829][ T6261] page_frag_free+0x199/0x1f0
[ 102.413840][ T6261] __xdp_return+0x3b6/0x990
[ 102.413855][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 102.413872][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 102.413882][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 102.413902][ T6261] do_xdp_generic+0x92e/0x12c0
[ 102.413917][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 102.413930][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 102.413953][ T6261] tun_get_user+0x1c1c/0x3c20
[ 102.413974][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 102.413991][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 102.414011][ T6261] ? find_held_lock+0x2b/0x80
[ 102.414020][ T6261] ? tun_get+0x191/0x370
[ 102.414033][ T6261] ? tun_get+0x191/0x370
[ 102.414051][ T6261] tun_chr_write_iter+0xdc/0x200
[ 102.414068][ T6261] vfs_write+0x6ac/0x1070
[ 102.414081][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 102.414098][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 102.414108][ T6261] ? find_held_lock+0x2b/0x80
[ 102.414125][ T6261] ksys_write+0x12a/0x250
[ 102.414136][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 102.414151][ T6261] ? rcu_is_watching+0x12/0xc0
[ 102.414175][ T6261] do_syscall_64+0x115/0x870
[ 102.414195][ T6261] ? clear_bhb_loop+0x40/0x90
[ 102.414217][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.414235][ T6261] RIP: 0033:0x7fa79a75b80e
[ 102.414247][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 102.414257][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 102.414267][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 102.414273][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 102.414279][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 102.414285][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 102.414291][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 102.414303][ T6261]
[ 102.414307][ T6261] Disabling lock debugging due to kernel taint
[ 102.508618][ T6261] BUG: Bad page state in process syz.0.17 pfn:57170
[ 102.510638][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x57170
[ 102.513264][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.515417][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 102.518044][ T6261] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 102.520613][ T6261] page dumped because: page_pool leak
[ 102.522251][ T6261] page_owner tracks the page as allocated
[ 102.523993][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331226168, free_ts 102149532745
[ 102.529018][ T6261] post_alloc_hook+0xfd/0x120
[ 102.530467][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 102.532151][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 102.533967][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 102.535662][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 102.537584][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 102.539234][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 102.540724][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 102.542272][ T6261] do_xdp_generic+0x56b/0x12c0
[ 102.543750][ T6261] tun_get_user+0x1c1c/0x3c20
[ 102.545198][ T6261] tun_chr_write_iter+0xdc/0x200
[ 102.546786][ T6261] vfs_write+0x6ac/0x1070
[ 102.548122][ T6261] ksys_write+0x12a/0x250
[ 102.549441][ T6261] do_syscall_64+0x115/0x870
[ 102.550870][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.552662][ T6261] page last free pid 10 tgid 10 stack trace:
[ 102.554471][ T6261] __free_frozen_pages+0x794/0x10a0
[ 102.556073][ T6261] vfree+0x15f/0x8d0
[ 102.557335][ T6261] delayed_vfree_work+0x56/0x80
[ 102.558830][ T6261] process_one_work+0xa0e/0x1980
[ 102.560343][ T6261] worker_thread+0x5ef/0xe50
[ 102.561766][ T6261] kthread+0x370/0x450
[ 102.563017][ T6261] ret_from_fork+0x72b/0xd50
[ 102.564444][ T6261] ret_from_fork_asm+0x1a/0x30
[ 102.565922][ T6261] Modules linked in:
[ 102.567198][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 102.567214][ T6261] Tainted: [B]=BAD_PAGE
[ 102.567217][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 102.567223][ T6261] Call Trace:
[ 102.567227][ T6261]
[ 102.567232][ T6261] dump_stack_lvl+0x100/0x190
[ 102.567244][ T6261] bad_page.cold+0xbe/0xdf
[ 102.567259][ T6261] ? __pfx_bad_page+0x10/0x10
[ 102.567269][ T6261] ? rcu_is_watching+0x12/0xc0
[ 102.567284][ T6261] ? page_bad_reason+0x98/0x200
[ 102.567294][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 102.567307][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 102.567323][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 102.567337][ T6261] page_frag_free+0x199/0x1f0
[ 102.567347][ T6261] __xdp_return+0x3b6/0x990
[ 102.567360][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 102.567374][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 102.567382][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 102.567399][ T6261] do_xdp_generic+0x92e/0x12c0
[ 102.567412][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 102.567425][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 102.567442][ T6261] tun_get_user+0x1c1c/0x3c20
[ 102.567460][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 102.567475][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 102.567492][ T6261] ? find_held_lock+0x2b/0x80
[ 102.567501][ T6261] ? tun_get+0x191/0x370
[ 102.567514][ T6261] ? tun_get+0x191/0x370
[ 102.567529][ T6261] tun_chr_write_iter+0xdc/0x200
[ 102.567545][ T6261] vfs_write+0x6ac/0x1070
[ 102.567555][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 102.567571][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 102.567582][ T6261] ? find_held_lock+0x2b/0x80
[ 102.567593][ T6261] ksys_write+0x12a/0x250
[ 102.567604][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 102.567615][ T6261] ? rcu_is_watching+0x12/0xc0
[ 102.567630][ T6261] do_syscall_64+0x115/0x870
[ 102.567647][ T6261] ? clear_bhb_loop+0x40/0x90
[ 102.567659][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.567669][ T6261] RIP: 0033:0x7fa79a75b80e
[ 102.567677][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 102.567687][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 102.567697][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 102.567703][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 102.567709][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 102.567715][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 102.567721][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 102.567730][ T6261]
[ 102.567736][ T6261] BUG: Bad page state in process syz.0.17 pfn:57171
[ 102.651012][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x57171
[ 102.654021][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.656202][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 102.658772][ T6261] raw: ffffffffffffffff 0000000000000001 00000000ffffffff 0000000000000000
[ 102.661326][ T6261] page dumped because: page_pool leak
[ 102.662950][ T6261] page_owner tracks the page as allocated
[ 102.664663][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331220153, free_ts 102149539160
[ 102.669727][ T6261] post_alloc_hook+0xfd/0x120
[ 102.671165][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 102.672839][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 102.674635][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 102.676407][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 102.678264][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 102.679893][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 102.681370][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 102.682908][ T6261] do_xdp_generic+0x56b/0x12c0
[ 102.684370][ T6261] tun_get_user+0x1c1c/0x3c20
[ 102.685820][ T6261] tun_chr_write_iter+0xdc/0x200
[ 102.687387][ T6261] vfs_write+0x6ac/0x1070
[ 102.688706][ T6261] ksys_write+0x12a/0x250
[ 102.690033][ T6261] do_syscall_64+0x115/0x870
[ 102.691449][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.693226][ T6261] page last free pid 10 tgid 10 stack trace:
[ 102.695048][ T6261] __free_frozen_pages+0x794/0x10a0
[ 102.696682][ T6261] vfree+0x15f/0x8d0
[ 102.697899][ T6261] delayed_vfree_work+0x56/0x80
[ 102.699376][ T6261] process_one_work+0xa0e/0x1980
[ 102.700882][ T6261] worker_thread+0x5ef/0xe50
[ 102.702292][ T6261] kthread+0x370/0x450
[ 102.703535][ T6261] ret_from_fork+0x72b/0xd50
[ 102.704943][ T6261] ret_from_fork_asm+0x1a/0x30
[ 102.706469][ T6261] Modules linked in:
[ 102.707679][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 102.707695][ T6261] Tainted: [B]=BAD_PAGE
[ 102.707698][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 102.707704][ T6261] Call Trace:
[ 102.707708][ T6261]
[ 102.707711][ T6261] dump_stack_lvl+0x100/0x190
[ 102.707724][ T6261] bad_page.cold+0xbe/0xdf
[ 102.707739][ T6261] ? __pfx_bad_page+0x10/0x10
[ 102.707748][ T6261] ? rcu_is_watching+0x12/0xc0
[ 102.707764][ T6261] ? page_bad_reason+0x98/0x200
[ 102.707773][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 102.707787][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 102.707804][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 102.707817][ T6261] page_frag_free+0x199/0x1f0
[ 102.707827][ T6261] __xdp_return+0x3b6/0x990
[ 102.707840][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 102.707854][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 102.707863][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 102.707879][ T6261] do_xdp_generic+0x92e/0x12c0
[ 102.707893][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 102.707905][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 102.707922][ T6261] tun_get_user+0x1c1c/0x3c20
[ 102.707939][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 102.707955][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 102.707972][ T6261] ? find_held_lock+0x2b/0x80
[ 102.707980][ T6261] ? tun_get+0x191/0x370
[ 102.707993][ T6261] ? tun_get+0x191/0x370
[ 102.708008][ T6261] tun_chr_write_iter+0xdc/0x200
[ 102.708024][ T6261] vfs_write+0x6ac/0x1070
[ 102.708035][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 102.708051][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 102.708061][ T6261] ? find_held_lock+0x2b/0x80
[ 102.708072][ T6261] ksys_write+0x12a/0x250
[ 102.708083][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 102.708094][ T6261] ? rcu_is_watching+0x12/0xc0
[ 102.708109][ T6261] do_syscall_64+0x115/0x870
[ 102.708121][ T6261] ? clear_bhb_loop+0x40/0x90
[ 102.708133][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.708143][ T6261] RIP: 0033:0x7fa79a75b80e
[ 102.708151][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 102.708160][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 102.708170][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 102.708176][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 102.708182][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 102.708188][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 102.708193][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 102.708202][ T6261]
[ 102.708208][ T6261] BUG: Bad page state in process syz.0.17 pfn:57172
[ 102.791309][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x57172
[ 102.793945][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.796077][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 102.798715][ T6261] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 102.801291][ T6261] page dumped because: page_pool leak
[ 102.802915][ T6261] page_owner tracks the page as allocated
[ 102.804624][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331213978, free_ts 102149544326
[ 102.809808][ T6261] post_alloc_hook+0xfd/0x120
[ 102.811267][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 102.812952][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 102.814785][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 102.816544][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 102.818414][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 102.820048][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 102.821535][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 102.823078][ T6261] do_xdp_generic+0x56b/0x12c0
[ 102.824546][ T6261] tun_get_user+0x1c1c/0x3c20
[ 102.825993][ T6261] tun_chr_write_iter+0xdc/0x200
[ 102.827576][ T6261] vfs_write+0x6ac/0x1070
[ 102.828899][ T6261] ksys_write+0x12a/0x250
[ 102.830231][ T6261] do_syscall_64+0x115/0x870
[ 102.831767][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.833641][ T6261] page last free pid 10 tgid 10 stack trace:
[ 102.835486][ T6261] __free_frozen_pages+0x794/0x10a0
[ 102.837148][ T6261] vfree+0x15f/0x8d0
[ 102.838363][ T6261] delayed_vfree_work+0x56/0x80
[ 102.839849][ T6261] process_one_work+0xa0e/0x1980
[ 102.841360][ T6261] worker_thread+0x5ef/0xe50
[ 102.842780][ T6261] kthread+0x370/0x450
[ 102.844054][ T6261] ret_from_fork+0x72b/0xd50
[ 102.845470][ T6261] ret_from_fork_asm+0x1a/0x30
[ 102.847008][ T6261] Modules linked in:
[ 102.848223][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 102.848238][ T6261] Tainted: [B]=BAD_PAGE
[ 102.848241][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 102.848247][ T6261] Call Trace:
[ 102.848251][ T6261]
[ 102.848255][ T6261] dump_stack_lvl+0x100/0x190
[ 102.848267][ T6261] bad_page.cold+0xbe/0xdf
[ 102.848282][ T6261] ? __pfx_bad_page+0x10/0x10
[ 102.848291][ T6261] ? rcu_is_watching+0x12/0xc0
[ 102.848306][ T6261] ? page_bad_reason+0x98/0x200
[ 102.848315][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 102.848329][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 102.848345][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 102.848359][ T6261] page_frag_free+0x199/0x1f0
[ 102.848369][ T6261] __xdp_return+0x3b6/0x990
[ 102.848382][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 102.848396][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 102.848404][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 102.848421][ T6261] do_xdp_generic+0x92e/0x12c0
[ 102.848434][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 102.848447][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 102.848463][ T6261] tun_get_user+0x1c1c/0x3c20
[ 102.848481][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 102.848497][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 102.848513][ T6261] ? find_held_lock+0x2b/0x80
[ 102.848522][ T6261] ? tun_get+0x191/0x370
[ 102.848535][ T6261] ? tun_get+0x191/0x370
[ 102.848549][ T6261] tun_chr_write_iter+0xdc/0x200
[ 102.848565][ T6261] vfs_write+0x6ac/0x1070
[ 102.848576][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 102.848592][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 102.848602][ T6261] ? find_held_lock+0x2b/0x80
[ 102.848614][ T6261] ksys_write+0x12a/0x250
[ 102.848624][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 102.848635][ T6261] ? rcu_is_watching+0x12/0xc0
[ 102.848650][ T6261] do_syscall_64+0x115/0x870
[ 102.848663][ T6261] ? clear_bhb_loop+0x40/0x90
[ 102.848674][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.848684][ T6261] RIP: 0033:0x7fa79a75b80e
[ 102.848692][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 102.848702][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 102.848711][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 102.848718][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 102.848723][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 102.848729][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 102.848735][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 102.848744][ T6261]
[ 102.848751][ T6261] BUG: Bad page state in process syz.0.17 pfn:57173
[ 102.932165][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x57173
[ 102.934802][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 102.936992][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 102.939570][ T6261] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 102.942135][ T6261] page dumped because: page_pool leak
[ 102.943752][ T6261] page_owner tracks the page as allocated
[ 102.945473][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331207561, free_ts 102149548736
[ 102.950480][ T6261] post_alloc_hook+0xfd/0x120
[ 102.951946][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 102.953653][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 102.955456][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 102.957198][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 102.959057][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 102.960681][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 102.962167][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 102.963701][ T6261] do_xdp_generic+0x56b/0x12c0
[ 102.965180][ T6261] tun_get_user+0x1c1c/0x3c20
[ 102.966679][ T6261] tun_chr_write_iter+0xdc/0x200
[ 102.968216][ T6261] vfs_write+0x6ac/0x1070
[ 102.969531][ T6261] ksys_write+0x12a/0x250
[ 102.970852][ T6261] do_syscall_64+0x115/0x870
[ 102.972266][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.974080][ T6261] page last free pid 10 tgid 10 stack trace:
[ 102.975891][ T6261] __free_frozen_pages+0x794/0x10a0
[ 102.977576][ T6261] vfree+0x15f/0x8d0
[ 102.978795][ T6261] delayed_vfree_work+0x56/0x80
[ 102.980293][ T6261] process_one_work+0xa0e/0x1980
[ 102.981825][ T6261] worker_thread+0x5ef/0xe50
[ 102.983252][ T6261] kthread+0x370/0x450
[ 102.984509][ T6261] ret_from_fork+0x72b/0xd50
[ 102.985930][ T6261] ret_from_fork_asm+0x1a/0x30
[ 102.987478][ T6261] Modules linked in:
[ 102.988678][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 102.988692][ T6261] Tainted: [B]=BAD_PAGE
[ 102.988696][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 102.988702][ T6261] Call Trace:
[ 102.988706][ T6261]
[ 102.988709][ T6261] dump_stack_lvl+0x100/0x190
[ 102.988722][ T6261] bad_page.cold+0xbe/0xdf
[ 102.988737][ T6261] ? __pfx_bad_page+0x10/0x10
[ 102.988746][ T6261] ? rcu_is_watching+0x12/0xc0
[ 102.988762][ T6261] ? page_bad_reason+0x98/0x200
[ 102.988771][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 102.988785][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 102.988801][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 102.988815][ T6261] page_frag_free+0x199/0x1f0
[ 102.988825][ T6261] __xdp_return+0x3b6/0x990
[ 102.988837][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 102.988852][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 102.988860][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 102.988877][ T6261] do_xdp_generic+0x92e/0x12c0
[ 102.988890][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 102.988903][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 102.988919][ T6261] tun_get_user+0x1c1c/0x3c20
[ 102.988937][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 102.988953][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 102.988969][ T6261] ? find_held_lock+0x2b/0x80
[ 102.988978][ T6261] ? tun_get+0x191/0x370
[ 102.988991][ T6261] ? tun_get+0x191/0x370
[ 102.989006][ T6261] tun_chr_write_iter+0xdc/0x200
[ 102.989022][ T6261] vfs_write+0x6ac/0x1070
[ 102.989033][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 102.989053][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 102.989063][ T6261] ? find_held_lock+0x2b/0x80
[ 102.989074][ T6261] ksys_write+0x12a/0x250
[ 102.989085][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 102.989096][ T6261] ? rcu_is_watching+0x12/0xc0
[ 102.989111][ T6261] do_syscall_64+0x115/0x870
[ 102.989124][ T6261] ? clear_bhb_loop+0x40/0x90
[ 102.989135][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 102.989145][ T6261] RIP: 0033:0x7fa79a75b80e
[ 102.989153][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 102.989163][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 102.989173][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 102.989179][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 102.989185][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 102.989191][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 102.989197][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 102.989206][ T6261]
[ 102.989212][ T6261] BUG: Bad page state in process syz.0.17 pfn:57174
[ 103.071911][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x57174
[ 103.074518][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.076702][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 103.079280][ T6261] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 103.081848][ T6261] page dumped because: page_pool leak
[ 103.083487][ T6261] page_owner tracks the page as allocated
[ 103.085201][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331201249, free_ts 102149553021
[ 103.090219][ T6261] post_alloc_hook+0xfd/0x120
[ 103.091661][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 103.093343][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 103.095186][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 103.096969][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 103.098861][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 103.100506][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 103.102025][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 103.103585][ T6261] do_xdp_generic+0x56b/0x12c0
[ 103.105060][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.106572][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.108096][ T6261] vfs_write+0x6ac/0x1070
[ 103.109566][ T6261] ksys_write+0x12a/0x250
[ 103.110911][ T6261] do_syscall_64+0x115/0x870
[ 103.112335][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.114155][ T6261] page last free pid 10 tgid 10 stack trace:
[ 103.115973][ T6261] __free_frozen_pages+0x794/0x10a0
[ 103.117656][ T6261] vfree+0x15f/0x8d0
[ 103.118912][ T6261] delayed_vfree_work+0x56/0x80
[ 103.120404][ T6261] process_one_work+0xa0e/0x1980
[ 103.121943][ T6261] worker_thread+0x5ef/0xe50
[ 103.123364][ T6261] kthread+0x370/0x450
[ 103.124611][ T6261] ret_from_fork+0x72b/0xd50
[ 103.126041][ T6261] ret_from_fork_asm+0x1a/0x30
[ 103.127570][ T6261] Modules linked in:
[ 103.128846][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 103.128862][ T6261] Tainted: [B]=BAD_PAGE
[ 103.128865][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 103.128871][ T6261] Call Trace:
[ 103.128876][ T6261]
[ 103.128880][ T6261] dump_stack_lvl+0x100/0x190
[ 103.128892][ T6261] bad_page.cold+0xbe/0xdf
[ 103.128908][ T6261] ? __pfx_bad_page+0x10/0x10
[ 103.128917][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.128932][ T6261] ? page_bad_reason+0x98/0x200
[ 103.128941][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 103.128955][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 103.128971][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 103.128984][ T6261] page_frag_free+0x199/0x1f0
[ 103.128995][ T6261] __xdp_return+0x3b6/0x990
[ 103.129008][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 103.129022][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 103.129031][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 103.129052][ T6261] do_xdp_generic+0x92e/0x12c0
[ 103.129066][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 103.129078][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 103.129095][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.129112][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 103.129128][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 103.129144][ T6261] ? find_held_lock+0x2b/0x80
[ 103.129153][ T6261] ? tun_get+0x191/0x370
[ 103.129166][ T6261] ? tun_get+0x191/0x370
[ 103.129181][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.129196][ T6261] vfs_write+0x6ac/0x1070
[ 103.129207][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 103.129223][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 103.129233][ T6261] ? find_held_lock+0x2b/0x80
[ 103.129245][ T6261] ksys_write+0x12a/0x250
[ 103.129255][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 103.129267][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.129282][ T6261] do_syscall_64+0x115/0x870
[ 103.129295][ T6261] ? clear_bhb_loop+0x40/0x90
[ 103.129306][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.129316][ T6261] RIP: 0033:0x7fa79a75b80e
[ 103.129324][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 103.129333][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 103.129342][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 103.129349][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 103.129355][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 103.129360][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 103.129366][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 103.129375][ T6261]
[ 103.129382][ T6261] BUG: Bad page state in process syz.0.17 pfn:57175
[ 103.232079][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x57175
[ 103.234723][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.236922][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 103.239495][ T6261] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 103.242054][ T6261] page dumped because: page_pool leak
[ 103.243685][ T6261] page_owner tracks the page as allocated
[ 103.245390][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331195204, free_ts 102149557271
[ 103.250390][ T6261] post_alloc_hook+0xfd/0x120
[ 103.251825][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 103.253510][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 103.255407][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 103.257201][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 103.259068][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 103.260694][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 103.262203][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 103.263745][ T6261] do_xdp_generic+0x56b/0x12c0
[ 103.265215][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.266722][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.268261][ T6261] vfs_write+0x6ac/0x1070
[ 103.269586][ T6261] ksys_write+0x12a/0x250
[ 103.270918][ T6261] do_syscall_64+0x115/0x870
[ 103.272354][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.274148][ T6261] page last free pid 10 tgid 10 stack trace:
[ 103.275972][ T6261] __free_frozen_pages+0x794/0x10a0
[ 103.277650][ T6261] vfree+0x15f/0x8d0
[ 103.278861][ T6261] delayed_vfree_work+0x56/0x80
[ 103.280372][ T6261] process_one_work+0xa0e/0x1980
[ 103.281900][ T6261] worker_thread+0x5ef/0xe50
[ 103.283317][ T6261] kthread+0x370/0x450
[ 103.284586][ T6261] ret_from_fork+0x72b/0xd50
[ 103.286040][ T6261] ret_from_fork_asm+0x1a/0x30
[ 103.287583][ T6261] Modules linked in:
[ 103.288784][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 103.288799][ T6261] Tainted: [B]=BAD_PAGE
[ 103.288803][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 103.288808][ T6261] Call Trace:
[ 103.288812][ T6261]
[ 103.288817][ T6261] dump_stack_lvl+0x100/0x190
[ 103.288829][ T6261] bad_page.cold+0xbe/0xdf
[ 103.288844][ T6261] ? __pfx_bad_page+0x10/0x10
[ 103.288854][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.288869][ T6261] ? page_bad_reason+0x98/0x200
[ 103.288879][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 103.288893][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 103.288908][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 103.288922][ T6261] page_frag_free+0x199/0x1f0
[ 103.288932][ T6261] __xdp_return+0x3b6/0x990
[ 103.288945][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 103.288959][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 103.288968][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 103.288984][ T6261] do_xdp_generic+0x92e/0x12c0
[ 103.288997][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 103.289010][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 103.289031][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.289049][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 103.289065][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 103.289082][ T6261] ? find_held_lock+0x2b/0x80
[ 103.289091][ T6261] ? tun_get+0x191/0x370
[ 103.289104][ T6261] ? tun_get+0x191/0x370
[ 103.289118][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.289134][ T6261] vfs_write+0x6ac/0x1070
[ 103.289146][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 103.289162][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 103.289172][ T6261] ? find_held_lock+0x2b/0x80
[ 103.289183][ T6261] ksys_write+0x12a/0x250
[ 103.289194][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 103.289205][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.289220][ T6261] do_syscall_64+0x115/0x870
[ 103.289233][ T6261] ? clear_bhb_loop+0x40/0x90
[ 103.289245][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.289255][ T6261] RIP: 0033:0x7fa79a75b80e
[ 103.289264][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 103.289274][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 103.289284][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 103.289290][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 103.289296][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 103.289302][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 103.289308][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 103.289317][ T6261]
[ 103.289325][ T6261] BUG: Bad page state in process syz.0.17 pfn:57176
[ 103.372350][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x57176
[ 103.374990][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.377210][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 103.379806][ T6261] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 103.382389][ T6261] page dumped because: page_pool leak
[ 103.384034][ T6261] page_owner tracks the page as allocated
[ 103.385752][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331189101, free_ts 102149561509
[ 103.390775][ T6261] post_alloc_hook+0xfd/0x120
[ 103.392223][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 103.393935][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 103.395752][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 103.397497][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 103.399352][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 103.400981][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 103.402481][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 103.404097][ T6261] do_xdp_generic+0x56b/0x12c0
[ 103.405574][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.407113][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.408624][ T6261] vfs_write+0x6ac/0x1070
[ 103.409960][ T6261] ksys_write+0x12a/0x250
[ 103.411282][ T6261] do_syscall_64+0x115/0x870
[ 103.412692][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.414503][ T6261] page last free pid 10 tgid 10 stack trace:
[ 103.416375][ T6261] __free_frozen_pages+0x794/0x10a0
[ 103.417968][ T6261] vfree+0x15f/0x8d0
[ 103.419172][ T6261] delayed_vfree_work+0x56/0x80
[ 103.420655][ T6261] process_one_work+0xa0e/0x1980
[ 103.422183][ T6261] worker_thread+0x5ef/0xe50
[ 103.423598][ T6261] kthread+0x370/0x450
[ 103.424852][ T6261] ret_from_fork+0x72b/0xd50
[ 103.426343][ T6261] ret_from_fork_asm+0x1a/0x30
[ 103.427797][ T6261] Modules linked in:
[ 103.428993][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 103.429008][ T6261] Tainted: [B]=BAD_PAGE
[ 103.429012][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 103.429018][ T6261] Call Trace:
[ 103.429022][ T6261]
[ 103.429026][ T6261] dump_stack_lvl+0x100/0x190
[ 103.429038][ T6261] bad_page.cold+0xbe/0xdf
[ 103.429053][ T6261] ? __pfx_bad_page+0x10/0x10
[ 103.429063][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.429078][ T6261] ? page_bad_reason+0x98/0x200
[ 103.429087][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 103.429105][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 103.429121][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 103.429135][ T6261] page_frag_free+0x199/0x1f0
[ 103.429144][ T6261] __xdp_return+0x3b6/0x990
[ 103.429157][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 103.429171][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 103.429180][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 103.429196][ T6261] do_xdp_generic+0x92e/0x12c0
[ 103.429209][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 103.429222][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 103.429238][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.429256][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 103.429272][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 103.429289][ T6261] ? find_held_lock+0x2b/0x80
[ 103.429298][ T6261] ? tun_get+0x191/0x370
[ 103.429311][ T6261] ? tun_get+0x191/0x370
[ 103.429326][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.429341][ T6261] vfs_write+0x6ac/0x1070
[ 103.429352][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 103.429368][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 103.429378][ T6261] ? find_held_lock+0x2b/0x80
[ 103.429390][ T6261] ksys_write+0x12a/0x250
[ 103.429401][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 103.429412][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.429426][ T6261] do_syscall_64+0x115/0x870
[ 103.429439][ T6261] ? clear_bhb_loop+0x40/0x90
[ 103.429451][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.429461][ T6261] RIP: 0033:0x7fa79a75b80e
[ 103.429469][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 103.429479][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 103.429489][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 103.429496][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 103.429502][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 103.429508][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 103.429514][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 103.429523][ T6261]
[ 103.429529][ T6261] BUG: Bad page state in process syz.0.17 pfn:57177
[ 103.512423][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x57177
[ 103.515046][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.517244][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 103.519805][ T6261] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 103.522372][ T6261] page dumped because: page_pool leak
[ 103.523989][ T6261] page_owner tracks the page as allocated
[ 103.525710][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331183106, free_ts 102149566133
[ 103.530700][ T6261] post_alloc_hook+0xfd/0x120
[ 103.532138][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 103.533836][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 103.535647][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 103.537392][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 103.539251][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 103.540876][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 103.542364][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 103.543920][ T6261] do_xdp_generic+0x56b/0x12c0
[ 103.545382][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.546331][ T62] Bluetooth: hci0: command tx timeout
[ 103.546884][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.550460][ T6261] vfs_write+0x6ac/0x1070
[ 103.551771][ T6261] ksys_write+0x12a/0x250
[ 103.553080][ T6261] do_syscall_64+0x115/0x870
[ 103.554506][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.556344][ T6261] page last free pid 10 tgid 10 stack trace:
[ 103.558165][ T6261] __free_frozen_pages+0x794/0x10a0
[ 103.559735][ T6261] vfree+0x15f/0x8d0
[ 103.560925][ T6261] delayed_vfree_work+0x56/0x80
[ 103.562403][ T6261] process_one_work+0xa0e/0x1980
[ 103.563899][ T6261] worker_thread+0x5ef/0xe50
[ 103.565309][ T6261] kthread+0x370/0x450
[ 103.566613][ T6261] ret_from_fork+0x72b/0xd50
[ 103.568025][ T6261] ret_from_fork_asm+0x1a/0x30
[ 103.569478][ T6261] Modules linked in:
[ 103.570674][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 103.570688][ T6261] Tainted: [B]=BAD_PAGE
[ 103.570692][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 103.570698][ T6261] Call Trace:
[ 103.570702][ T6261]
[ 103.570706][ T6261] dump_stack_lvl+0x100/0x190
[ 103.570717][ T6261] bad_page.cold+0xbe/0xdf
[ 103.570733][ T6261] ? __pfx_bad_page+0x10/0x10
[ 103.570742][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.570757][ T6261] ? page_bad_reason+0x98/0x200
[ 103.570767][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 103.570780][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 103.570796][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 103.570810][ T6261] page_frag_free+0x199/0x1f0
[ 103.570820][ T6261] __xdp_return+0x3b6/0x990
[ 103.570833][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 103.570848][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 103.570857][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 103.570873][ T6261] do_xdp_generic+0x92e/0x12c0
[ 103.570886][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 103.570899][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 103.570915][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.570933][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 103.570949][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 103.570965][ T6261] ? find_held_lock+0x2b/0x80
[ 103.570974][ T6261] ? tun_get+0x191/0x370
[ 103.570987][ T6261] ? tun_get+0x191/0x370
[ 103.571002][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.571017][ T6261] vfs_write+0x6ac/0x1070
[ 103.571028][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 103.571044][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 103.571054][ T6261] ? find_held_lock+0x2b/0x80
[ 103.571066][ T6261] ksys_write+0x12a/0x250
[ 103.571076][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 103.571087][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.571106][ T6261] do_syscall_64+0x115/0x870
[ 103.571119][ T6261] ? clear_bhb_loop+0x40/0x90
[ 103.571130][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.571140][ T6261] RIP: 0033:0x7fa79a75b80e
[ 103.571148][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 103.571158][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 103.571168][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 103.571174][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 103.571180][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 103.571186][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 103.571191][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 103.571200][ T6261]
[ 103.571207][ T6261] BUG: Bad page state in process syz.0.17 pfn:37648
[ 103.654242][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88803764c000 pfn:0x37648
[ 103.657310][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.659430][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 103.661993][ T6261] raw: ffff88803764c000 0000000000000001 00000000ffffffff 0000000000000000
[ 103.664545][ T6261] page dumped because: page_pool leak
[ 103.666218][ T6261] page_owner tracks the page as allocated
[ 103.667929][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331177003, free_ts 102149585296
[ 103.672842][ T6261] post_alloc_hook+0xfd/0x120
[ 103.674304][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 103.675984][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 103.677849][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 103.679518][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 103.681350][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 103.682971][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 103.684448][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 103.685978][ T6261] do_xdp_generic+0x56b/0x12c0
[ 103.687493][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.688923][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.690434][ T6261] vfs_write+0x6ac/0x1070
[ 103.691744][ T6261] ksys_write+0x12a/0x250
[ 103.693054][ T6261] do_syscall_64+0x115/0x870
[ 103.694469][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.696320][ T6261] page last free pid 10 tgid 10 stack trace:
[ 103.698141][ T6261] __free_frozen_pages+0x794/0x10a0
[ 103.699712][ T6261] vfree+0x15f/0x8d0
[ 103.700904][ T6261] delayed_vfree_work+0x56/0x80
[ 103.702387][ T6261] process_one_work+0xa0e/0x1980
[ 103.703889][ T6261] worker_thread+0x5ef/0xe50
[ 103.705297][ T6261] kthread+0x370/0x450
[ 103.706602][ T6261] ret_from_fork+0x72b/0xd50
[ 103.708016][ T6261] ret_from_fork_asm+0x1a/0x30
[ 103.709470][ T6261] Modules linked in:
[ 103.710681][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 103.710696][ T6261] Tainted: [B]=BAD_PAGE
[ 103.710699][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 103.710706][ T6261] Call Trace:
[ 103.710710][ T6261]
[ 103.710713][ T6261] dump_stack_lvl+0x100/0x190
[ 103.710725][ T6261] bad_page.cold+0xbe/0xdf
[ 103.710741][ T6261] ? __pfx_bad_page+0x10/0x10
[ 103.710750][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.710765][ T6261] ? page_bad_reason+0x98/0x200
[ 103.710774][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 103.710787][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 103.710803][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 103.710817][ T6261] page_frag_free+0x199/0x1f0
[ 103.710827][ T6261] __xdp_return+0x3b6/0x990
[ 103.710841][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 103.710854][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 103.710863][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 103.710879][ T6261] do_xdp_generic+0x92e/0x12c0
[ 103.710893][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 103.710905][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 103.710922][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.710939][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 103.710955][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 103.710971][ T6261] ? find_held_lock+0x2b/0x80
[ 103.710980][ T6261] ? tun_get+0x191/0x370
[ 103.710993][ T6261] ? tun_get+0x191/0x370
[ 103.711008][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.711024][ T6261] vfs_write+0x6ac/0x1070
[ 103.711035][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 103.711051][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 103.711061][ T6261] ? find_held_lock+0x2b/0x80
[ 103.711073][ T6261] ksys_write+0x12a/0x250
[ 103.711083][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 103.711098][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.711113][ T6261] do_syscall_64+0x115/0x870
[ 103.711126][ T6261] ? clear_bhb_loop+0x40/0x90
[ 103.711137][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.711147][ T6261] RIP: 0033:0x7fa79a75b80e
[ 103.711156][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 103.711165][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 103.711175][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 103.711181][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 103.711187][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 103.711193][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 103.711198][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 103.711207][ T6261]
[ 103.711213][ T6261] BUG: Bad page state in process syz.0.17 pfn:37649
[ 103.801596][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x37649
[ 103.805399][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.808148][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 103.811378][ T6261] raw: ffffffffffffffff 0000000000000001 00000000ffffffff 0000000000000000
[ 103.814583][ T6261] page dumped because: page_pool leak
[ 103.816690][ T6261] page_owner tracks the page as allocated
[ 103.818838][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331171053, free_ts 102149589827
[ 103.825037][ T6261] post_alloc_hook+0xfd/0x120
[ 103.826910][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 103.829017][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 103.831256][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 103.833494][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 103.835867][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 103.838083][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 103.839963][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 103.841922][ T6261] do_xdp_generic+0x56b/0x12c0
[ 103.843696][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.845542][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.847530][ T6261] vfs_write+0x6ac/0x1070
[ 103.849187][ T6261] ksys_write+0x12a/0x250
[ 103.850866][ T6261] do_syscall_64+0x115/0x870
[ 103.852648][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.854916][ T6261] page last free pid 10 tgid 10 stack trace:
[ 103.857279][ T6261] __free_frozen_pages+0x794/0x10a0
[ 103.859212][ T6261] vfree+0x15f/0x8d0
[ 103.860422][ T6261] delayed_vfree_work+0x56/0x80
[ 103.861943][ T6261] process_one_work+0xa0e/0x1980
[ 103.863462][ T6261] worker_thread+0x5ef/0xe50
[ 103.864886][ T6261] kthread+0x370/0x450
[ 103.866219][ T6261] ret_from_fork+0x72b/0xd50
[ 103.867782][ T6261] ret_from_fork_asm+0x1a/0x30
[ 103.869381][ T6261] Modules linked in:
[ 103.870600][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 103.870615][ T6261] Tainted: [B]=BAD_PAGE
[ 103.870618][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 103.870624][ T6261] Call Trace:
[ 103.870628][ T6261]
[ 103.870633][ T6261] dump_stack_lvl+0x100/0x190
[ 103.870648][ T6261] bad_page.cold+0xbe/0xdf
[ 103.870664][ T6261] ? __pfx_bad_page+0x10/0x10
[ 103.870674][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.870689][ T6261] ? page_bad_reason+0x98/0x200
[ 103.870698][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 103.870712][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 103.870728][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 103.870742][ T6261] page_frag_free+0x199/0x1f0
[ 103.870752][ T6261] __xdp_return+0x3b6/0x990
[ 103.870765][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 103.870779][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 103.870788][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 103.870804][ T6261] do_xdp_generic+0x92e/0x12c0
[ 103.870817][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 103.870830][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 103.870846][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.870864][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 103.870880][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 103.870898][ T6261] ? find_held_lock+0x2b/0x80
[ 103.870907][ T6261] ? tun_get+0x191/0x370
[ 103.870920][ T6261] ? tun_get+0x191/0x370
[ 103.870935][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.870951][ T6261] vfs_write+0x6ac/0x1070
[ 103.870962][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 103.870978][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 103.870988][ T6261] ? find_held_lock+0x2b/0x80
[ 103.871000][ T6261] ksys_write+0x12a/0x250
[ 103.871011][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 103.871022][ T6261] ? rcu_is_watching+0x12/0xc0
[ 103.871038][ T6261] do_syscall_64+0x115/0x870
[ 103.871050][ T6261] ? clear_bhb_loop+0x40/0x90
[ 103.871062][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.871072][ T6261] RIP: 0033:0x7fa79a75b80e
[ 103.871081][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 103.871091][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 103.871101][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 103.871107][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 103.871114][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 103.871120][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 103.871126][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 103.871135][ T6261]
[ 103.871141][ T6261] BUG: Bad page state in process syz.0.17 pfn:3764a
[ 103.955136][ T6261] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3764a
[ 103.957841][ T6261] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 103.959984][ T6261] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 103.962519][ T6261] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 103.965043][ T6261] page dumped because: page_pool leak
[ 103.966743][ T6261] page_owner tracks the page as allocated
[ 103.968471][ T6261] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331164764, free_ts 102149594199
[ 103.973505][ T6261] post_alloc_hook+0xfd/0x120
[ 103.974982][ T6261] get_page_from_freelist+0x11a6/0x3410
[ 103.976735][ T6261] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 103.978556][ T6261] alloc_pages_bulk_noprof+0x649/0x1360
[ 103.980271][ T6261] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 103.982137][ T6261] page_pool_alloc_netmems+0xc4/0x1a0
[ 103.983800][ T6261] skb_pp_cow_data+0xa15/0x1220
[ 103.985296][ T6261] skb_cow_data_for_xdp+0x88/0xb0
[ 103.986915][ T6261] do_xdp_generic+0x56b/0x12c0
[ 103.988401][ T6261] tun_get_user+0x1c1c/0x3c20
[ 103.989867][ T6261] tun_chr_write_iter+0xdc/0x200
[ 103.991394][ T6261] vfs_write+0x6ac/0x1070
[ 103.992731][ T6261] ksys_write+0x12a/0x250
[ 103.994087][ T6261] do_syscall_64+0x115/0x870
[ 103.995514][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 103.997408][ T6261] page last free pid 10 tgid 10 stack trace:
[ 103.999221][ T6261] __free_frozen_pages+0x794/0x10a0
[ 104.000808][ T6261] vfree+0x15f/0x8d0
[ 104.002047][ T6261] delayed_vfree_work+0x56/0x80
[ 104.003538][ T6261] process_one_work+0xa0e/0x1980
[ 104.005054][ T6261] worker_thread+0x5ef/0xe50
[ 104.006539][ T6261] kthread+0x370/0x450
[ 104.007808][ T6261] ret_from_fork+0x72b/0xd50
[ 104.009226][ T6261] ret_from_fork_asm+0x1a/0x30
[ 104.010702][ T6261] Modules linked in:
[ 104.011907][ T6261] CPU: 0 UID: 0 PID: 6261 Comm: syz.0.17 Tainted: G B syzkaller #0 PREEMPT(full)
[ 104.011923][ T6261] Tainted: [B]=BAD_PAGE
[ 104.011927][ T6261] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 104.011933][ T6261] Call Trace:
[ 104.011937][ T6261]
[ 104.011940][ T6261] dump_stack_lvl+0x100/0x190
[ 104.011952][ T6261] bad_page.cold+0xbe/0xdf
[ 104.011968][ T6261] ? __pfx_bad_page+0x10/0x10
[ 104.011977][ T6261] ? rcu_is_watching+0x12/0xc0
[ 104.011992][ T6261] ? page_bad_reason+0x98/0x200
[ 104.012002][ T6261] __free_frozen_pages+0x7d6/0x10a0
[ 104.012016][ T6261] ? kasan_quarantine_put+0x104/0x240
[ 104.012032][ T6261] ? lockdep_hardirqs_on+0x78/0x100
[ 104.012046][ T6261] page_frag_free+0x199/0x1f0
[ 104.012056][ T6261] __xdp_return+0x3b6/0x990
[ 104.012069][ T6261] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 104.012083][ T6261] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 104.012092][ T6261] bpf_prog_run_generic_xdp+0x614/0x1610
[ 104.012108][ T6261] do_xdp_generic+0x92e/0x12c0
[ 104.012122][ T6261] ? __pfx_do_xdp_generic+0x10/0x10
[ 104.012134][ T6261] ? __lock_acquire+0x4a5/0x2630
[ 104.012152][ T6261] tun_get_user+0x1c1c/0x3c20
[ 104.012169][ T6261] ? __pfx_tun_get_user+0x10/0x10
[ 104.012185][ T6261] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 104.012201][ T6261] ? find_held_lock+0x2b/0x80
[ 104.012210][ T6261] ? tun_get+0x191/0x370
[ 104.012223][ T6261] ? tun_get+0x191/0x370
[ 104.012238][ T6261] tun_chr_write_iter+0xdc/0x200
[ 104.012254][ T6261] vfs_write+0x6ac/0x1070
[ 104.012265][ T6261] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 104.012281][ T6261] ? __pfx_vfs_write+0x10/0x10
[ 104.012291][ T6261] ? find_held_lock+0x2b/0x80
[ 104.012303][ T6261] ksys_write+0x12a/0x250
[ 104.012313][ T6261] ? __pfx_ksys_write+0x10/0x10
[ 104.012325][ T6261] ? rcu_is_watching+0x12/0xc0
[ 104.012340][ T6261] do_syscall_64+0x115/0x870
[ 104.012353][ T6261] ? clear_bhb_loop+0x40/0x90
[ 104.012364][ T6261] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.012374][ T6261] RIP: 0033:0x7fa79a75b80e
[ 104.012383][ T6261] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 104.012393][ T6261] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 104.012403][ T6261] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 104.012410][ T6261] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 104.012416][ T6261] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 104.012422][ T6261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 104.012428][ T6261] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 104.012437][ T6261]
[ 104.075068][ T6264] BUG: Bad page state in process syz.0.18 pfn:262f6
[ 104.113996][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x262f6
[ 104.116694][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 104.118833][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 104.121847][ T6264] raw: 0000000000000000 3fffffffffffffff 00000000ffffffff 0000000000000000
[ 104.124416][ T6264] page dumped because: page_pool leak
[ 104.126079][ T6264] page_owner tracks the page as allocated
[ 104.127859][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104075009748, free_ts 102121450649
[ 104.133148][ T6264] post_alloc_hook+0xfd/0x120
[ 104.135057][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 104.137309][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 104.139417][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 104.141253][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 104.143410][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 104.145144][ T6264] page_pool_alloc_frag_netmem+0x21d/0xa00
[ 104.147008][ T6264] skb_pp_cow_data+0x5a7/0x1220
[ 104.148587][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 104.150270][ T6264] do_xdp_generic+0x56b/0x12c0
[ 104.152103][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.153568][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.155110][ T6264] vfs_write+0x6ac/0x1070
[ 104.156497][ T6264] ksys_write+0x12a/0x250
[ 104.157835][ T6264] do_syscall_64+0x115/0x870
[ 104.159251][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.161036][ T6264] page last free pid 854 tgid 854 stack trace:
[ 104.162907][ T6264] __free_frozen_pages+0x794/0x10a0
[ 104.164502][ T6264] vfree+0x15f/0x8d0
[ 104.165733][ T6264] delayed_vfree_work+0x56/0x80
[ 104.167273][ T6264] process_one_work+0xa0e/0x1980
[ 104.168775][ T6264] worker_thread+0x5ef/0xe50
[ 104.170276][ T6264] kthread+0x370/0x450
[ 104.171524][ T6264] ret_from_fork+0x72b/0xd50
[ 104.172941][ T6264] ret_from_fork_asm+0x1a/0x30
[ 104.174465][ T6264] Modules linked in:
[ 104.175686][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 104.175702][ T6264] Tainted: [B]=BAD_PAGE
[ 104.175705][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 104.175712][ T6264] Call Trace:
[ 104.175716][ T6264]
[ 104.175720][ T6264] dump_stack_lvl+0x100/0x190
[ 104.175732][ T6264] bad_page.cold+0xbe/0xdf
[ 104.175747][ T6264] ? __pfx_bad_page+0x10/0x10
[ 104.175756][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.175771][ T6264] ? page_bad_reason+0x98/0x200
[ 104.175781][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 104.175794][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 104.175809][ T6264] page_frag_free+0x199/0x1f0
[ 104.175819][ T6264] __xdp_return+0x3b6/0x990
[ 104.175832][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 104.175847][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 104.175856][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 104.175873][ T6264] do_xdp_generic+0x92e/0x12c0
[ 104.175886][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 104.175904][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.175923][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 104.175938][ T6264] ? lock_release+0x245/0x310
[ 104.175950][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 104.175968][ T6264] ? tun_get+0x191/0x370
[ 104.175982][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.175996][ T6264] ? tun_get+0x191/0x370
[ 104.176009][ T6264] ? lock_release+0x245/0x310
[ 104.176022][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.176037][ T6264] vfs_write+0x6ac/0x1070
[ 104.176048][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 104.176064][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 104.176075][ T6264] ? lock_release+0x245/0x310
[ 104.176089][ T6264] ksys_write+0x12a/0x250
[ 104.176114][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 104.176125][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.176140][ T6264] do_syscall_64+0x115/0x870
[ 104.176156][ T6264] ? clear_bhb_loop+0x40/0x90
[ 104.176168][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.176179][ T6264] RIP: 0033:0x7fa79a75b80e
[ 104.176187][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 104.176201][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 104.176211][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 104.176217][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 104.176223][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 104.176229][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 104.176235][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 104.176244][ T6264]
[ 104.257491][ T6264] BUG: Bad page state in process syz.0.18 pfn:262f7
[ 104.259846][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x262f7
[ 104.262972][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 104.265708][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 104.269068][ T6264] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 104.272131][ T6264] page dumped because: page_pool leak
[ 104.274255][ T6264] page_owner tracks the page as allocated
[ 104.276432][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104075002852, free_ts 102121458429
[ 104.281442][ T6264] post_alloc_hook+0xfd/0x120
[ 104.282892][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 104.284606][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 104.286479][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 104.288172][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 104.290034][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 104.291668][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 104.293155][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 104.294727][ T6264] do_xdp_generic+0x56b/0x12c0
[ 104.296274][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.297796][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.299356][ T6264] vfs_write+0x6ac/0x1070
[ 104.300906][ T6264] ksys_write+0x12a/0x250
[ 104.302364][ T6264] do_syscall_64+0x115/0x870
[ 104.303853][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.305741][ T6264] page last free pid 854 tgid 854 stack trace:
[ 104.307718][ T6264] __free_frozen_pages+0x794/0x10a0
[ 104.309345][ T6264] vfree+0x15f/0x8d0
[ 104.310589][ T6264] delayed_vfree_work+0x56/0x80
[ 104.312128][ T6264] process_one_work+0xa0e/0x1980
[ 104.313724][ T6264] worker_thread+0x5ef/0xe50
[ 104.315210][ T6264] kthread+0x370/0x450
[ 104.316587][ T6264] ret_from_fork+0x72b/0xd50
[ 104.318041][ T6264] ret_from_fork_asm+0x1a/0x30
[ 104.319506][ T6264] Modules linked in:
[ 104.320706][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 104.320721][ T6264] Tainted: [B]=BAD_PAGE
[ 104.320725][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 104.320731][ T6264] Call Trace:
[ 104.320735][ T6264]
[ 104.320739][ T6264] dump_stack_lvl+0x100/0x190
[ 104.320751][ T6264] bad_page.cold+0xbe/0xdf
[ 104.320766][ T6264] ? __pfx_bad_page+0x10/0x10
[ 104.320777][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.320799][ T6264] ? page_bad_reason+0x98/0x200
[ 104.320814][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 104.320828][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 104.320843][ T6264] page_frag_free+0x199/0x1f0
[ 104.320853][ T6264] __xdp_return+0x3b6/0x990
[ 104.320866][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 104.320881][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 104.320889][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 104.320906][ T6264] do_xdp_generic+0x92e/0x12c0
[ 104.320919][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 104.320937][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.320956][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 104.320971][ T6264] ? lock_release+0x245/0x310
[ 104.320983][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 104.321000][ T6264] ? tun_get+0x191/0x370
[ 104.321013][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.321028][ T6264] ? tun_get+0x191/0x370
[ 104.321041][ T6264] ? lock_release+0x245/0x310
[ 104.321054][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.321070][ T6264] vfs_write+0x6ac/0x1070
[ 104.321082][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 104.321098][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 104.321109][ T6264] ? lock_release+0x245/0x310
[ 104.321123][ T6264] ksys_write+0x12a/0x250
[ 104.321134][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 104.321145][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.321160][ T6264] do_syscall_64+0x115/0x870
[ 104.321174][ T6264] ? clear_bhb_loop+0x40/0x90
[ 104.321185][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.321200][ T6264] RIP: 0033:0x7fa79a75b80e
[ 104.321208][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 104.321218][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 104.321228][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 104.321235][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 104.321241][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 104.321247][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 104.321253][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 104.321262][ T6264]
[ 104.321270][ T6264] BUG: Bad page state in process syz.0.18 pfn:55cc0
[ 104.405682][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888055cc2000 pfn:0x55cc0
[ 104.408738][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 104.410873][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 104.413441][ T6264] raw: ffff888055cc2000 0000000000000001 00000000ffffffff 0000000000000000
[ 104.416026][ T6264] page dumped because: page_pool leak
[ 104.417706][ T6264] page_owner tracks the page as allocated
[ 104.419419][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104074996159, free_ts 102121763620
[ 104.424363][ T6264] post_alloc_hook+0xfd/0x120
[ 104.425817][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 104.427545][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 104.429336][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 104.431017][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 104.432858][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 104.434508][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 104.436008][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 104.437613][ T6264] do_xdp_generic+0x56b/0x12c0
[ 104.439078][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.440519][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.442040][ T6264] vfs_write+0x6ac/0x1070
[ 104.443363][ T6264] ksys_write+0x12a/0x250
[ 104.444687][ T6264] do_syscall_64+0x115/0x870
[ 104.446165][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.447954][ T6264] page last free pid 854 tgid 854 stack trace:
[ 104.449815][ T6264] __free_frozen_pages+0x794/0x10a0
[ 104.451395][ T6264] vfree+0x15f/0x8d0
[ 104.452597][ T6264] delayed_vfree_work+0x56/0x80
[ 104.454084][ T6264] process_one_work+0xa0e/0x1980
[ 104.455606][ T6264] worker_thread+0x5ef/0xe50
[ 104.457073][ T6264] kthread+0x370/0x450
[ 104.458330][ T6264] ret_from_fork+0x72b/0xd50
[ 104.459743][ T6264] ret_from_fork_asm+0x1a/0x30
[ 104.461207][ T6264] Modules linked in:
[ 104.462419][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 104.462435][ T6264] Tainted: [B]=BAD_PAGE
[ 104.462438][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 104.462445][ T6264] Call Trace:
[ 104.462448][ T6264]
[ 104.462452][ T6264] dump_stack_lvl+0x100/0x190
[ 104.462464][ T6264] bad_page.cold+0xbe/0xdf
[ 104.462479][ T6264] ? __pfx_bad_page+0x10/0x10
[ 104.462489][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.462505][ T6264] ? page_bad_reason+0x98/0x200
[ 104.462514][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 104.462528][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 104.462543][ T6264] page_frag_free+0x199/0x1f0
[ 104.462553][ T6264] __xdp_return+0x3b6/0x990
[ 104.462566][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 104.462581][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 104.462589][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 104.462607][ T6264] do_xdp_generic+0x92e/0x12c0
[ 104.462620][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 104.462638][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.462656][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 104.462671][ T6264] ? lock_release+0x245/0x310
[ 104.462683][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 104.462700][ T6264] ? tun_get+0x191/0x370
[ 104.462714][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.462728][ T6264] ? tun_get+0x191/0x370
[ 104.462741][ T6264] ? lock_release+0x245/0x310
[ 104.462754][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.462770][ T6264] vfs_write+0x6ac/0x1070
[ 104.462780][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 104.462796][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 104.462807][ T6264] ? lock_release+0x245/0x310
[ 104.462822][ T6264] ksys_write+0x12a/0x250
[ 104.462832][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 104.462844][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.462859][ T6264] do_syscall_64+0x115/0x870
[ 104.462872][ T6264] ? clear_bhb_loop+0x40/0x90
[ 104.462883][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.462894][ T6264] RIP: 0033:0x7fa79a75b80e
[ 104.462902][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 104.462912][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 104.462922][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 104.462929][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 104.462935][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 104.462941][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 104.462947][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 104.462956][ T6264]
[ 104.462962][ T6264] BUG: Bad page state in process syz.0.18 pfn:55cc1
[ 104.559521][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x55cc1
[ 104.563326][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 104.566041][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 104.569369][ T6264] raw: ffffffffffffffff 0000000000000001 00000000ffffffff 0000000000000000
[ 104.572611][ T6264] page dumped because: page_pool leak
[ 104.574686][ T6264] page_owner tracks the page as allocated
[ 104.576928][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104074989190, free_ts 102121769149
[ 104.583178][ T6264] post_alloc_hook+0xfd/0x120
[ 104.584993][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 104.587169][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 104.589418][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 104.591541][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 104.593874][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 104.595936][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 104.597899][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 104.599856][ T6264] do_xdp_generic+0x56b/0x12c0
[ 104.601710][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.603531][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.605441][ T6264] vfs_write+0x6ac/0x1070
[ 104.607190][ T6264] ksys_write+0x12a/0x250
[ 104.608866][ T6264] do_syscall_64+0x115/0x870
[ 104.610673][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.612925][ T6264] page last free pid 854 tgid 854 stack trace:
[ 104.615308][ T6264] __free_frozen_pages+0x794/0x10a0
[ 104.617388][ T6264] vfree+0x15f/0x8d0
[ 104.618904][ T6264] delayed_vfree_work+0x56/0x80
[ 104.620788][ T6264] process_one_work+0xa0e/0x1980
[ 104.622691][ T6264] worker_thread+0x5ef/0xe50
[ 104.624464][ T6264] kthread+0x370/0x450
[ 104.626042][ T6264] ret_from_fork+0x72b/0xd50
[ 104.627880][ T6264] ret_from_fork_asm+0x1a/0x30
[ 104.629397][ T6264] Modules linked in:
[ 104.630608][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 104.630624][ T6264] Tainted: [B]=BAD_PAGE
[ 104.630628][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 104.630634][ T6264] Call Trace:
[ 104.630638][ T6264]
[ 104.630642][ T6264] dump_stack_lvl+0x100/0x190
[ 104.630656][ T6264] bad_page.cold+0xbe/0xdf
[ 104.630671][ T6264] ? __pfx_bad_page+0x10/0x10
[ 104.630681][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.630696][ T6264] ? page_bad_reason+0x98/0x200
[ 104.630706][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 104.630719][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 104.630734][ T6264] page_frag_free+0x199/0x1f0
[ 104.630744][ T6264] __xdp_return+0x3b6/0x990
[ 104.630758][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 104.630772][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 104.630781][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 104.630798][ T6264] do_xdp_generic+0x92e/0x12c0
[ 104.630811][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 104.630829][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.630848][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 104.630863][ T6264] ? lock_release+0x245/0x310
[ 104.630876][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 104.630894][ T6264] ? tun_get+0x191/0x370
[ 104.630907][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.630921][ T6264] ? tun_get+0x191/0x370
[ 104.630934][ T6264] ? lock_release+0x245/0x310
[ 104.630947][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.630963][ T6264] vfs_write+0x6ac/0x1070
[ 104.630974][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 104.630990][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 104.631001][ T6264] ? lock_release+0x245/0x310
[ 104.631015][ T6264] ksys_write+0x12a/0x250
[ 104.631026][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 104.631037][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.631052][ T6264] do_syscall_64+0x115/0x870
[ 104.631065][ T6264] ? clear_bhb_loop+0x40/0x90
[ 104.631077][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.631087][ T6264] RIP: 0033:0x7fa79a75b80e
[ 104.631095][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 104.631105][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 104.631115][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 104.631122][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 104.631128][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 104.631134][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 104.631140][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 104.631149][ T6264]
[ 104.631156][ T6264] BUG: Bad page state in process syz.0.18 pfn:55cc2
[ 104.727048][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x55cc2
[ 104.729967][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 104.732161][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 104.734982][ T6264] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 104.738148][ T6264] page dumped because: page_pool leak
[ 104.740060][ T6264] page_owner tracks the page as allocated
[ 104.742134][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104074982523, free_ts 102121773536
[ 104.747169][ T6264] post_alloc_hook+0xfd/0x120
[ 104.748655][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 104.750348][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 104.752146][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 104.753873][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 104.755741][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 104.757497][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 104.759041][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 104.760634][ T6264] do_xdp_generic+0x56b/0x12c0
[ 104.762202][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.764180][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.766359][ T6264] vfs_write+0x6ac/0x1070
[ 104.768168][ T6264] ksys_write+0x12a/0x250
[ 104.769991][ T6264] do_syscall_64+0x115/0x870
[ 104.771931][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.774137][ T6264] page last free pid 854 tgid 854 stack trace:
[ 104.776211][ T6264] __free_frozen_pages+0x794/0x10a0
[ 104.777783][ T6264] vfree+0x15f/0x8d0
[ 104.779050][ T6264] delayed_vfree_work+0x56/0x80
[ 104.780560][ T6264] process_one_work+0xa0e/0x1980
[ 104.782140][ T6264] worker_thread+0x5ef/0xe50
[ 104.783641][ T6264] kthread+0x370/0x450
[ 104.784930][ T6264] ret_from_fork+0x72b/0xd50
[ 104.786534][ T6264] ret_from_fork_asm+0x1a/0x30
[ 104.788076][ T6264] Modules linked in:
[ 104.789323][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 104.789339][ T6264] Tainted: [B]=BAD_PAGE
[ 104.789343][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 104.789349][ T6264] Call Trace:
[ 104.789353][ T6264]
[ 104.789357][ T6264] dump_stack_lvl+0x100/0x190
[ 104.789369][ T6264] bad_page.cold+0xbe/0xdf
[ 104.789385][ T6264] ? __pfx_bad_page+0x10/0x10
[ 104.789394][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.789409][ T6264] ? page_bad_reason+0x98/0x200
[ 104.789419][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 104.789432][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 104.789447][ T6264] page_frag_free+0x199/0x1f0
[ 104.789458][ T6264] __xdp_return+0x3b6/0x990
[ 104.789471][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 104.789485][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 104.789494][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 104.789510][ T6264] do_xdp_generic+0x92e/0x12c0
[ 104.789524][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 104.789542][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.789561][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 104.789575][ T6264] ? lock_release+0x245/0x310
[ 104.789588][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 104.789628][ T6264] ? tun_get+0x191/0x370
[ 104.789641][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.789655][ T6264] ? tun_get+0x191/0x370
[ 104.789668][ T6264] ? lock_release+0x245/0x310
[ 104.789681][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.789699][ T6264] vfs_write+0x6ac/0x1070
[ 104.789710][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 104.789726][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 104.789737][ T6264] ? lock_release+0x245/0x310
[ 104.789752][ T6264] ksys_write+0x12a/0x250
[ 104.789762][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 104.789773][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.789789][ T6264] do_syscall_64+0x115/0x870
[ 104.789802][ T6264] ? clear_bhb_loop+0x40/0x90
[ 104.789813][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.789824][ T6264] RIP: 0033:0x7fa79a75b80e
[ 104.789832][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 104.789842][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 104.789853][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 104.789859][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 104.789865][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 104.789871][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 104.789877][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 104.789887][ T6264]
[ 104.789894][ T6264] BUG: Bad page state in process syz.0.18 pfn:55cc3
[ 104.880034][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x55cc3
[ 104.882776][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 104.884986][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 104.887818][ T6264] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 104.890549][ T6264] page dumped because: page_pool leak
[ 104.892279][ T6264] page_owner tracks the page as allocated
[ 104.894080][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104074975972, free_ts 102121778096
[ 104.899714][ T6264] post_alloc_hook+0xfd/0x120
[ 104.901620][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 104.903545][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 104.905615][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 104.907386][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 104.909295][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 104.910965][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 104.912479][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 104.914036][ T6264] do_xdp_generic+0x56b/0x12c0
[ 104.915520][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.917035][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.918634][ T6264] vfs_write+0x6ac/0x1070
[ 104.919963][ T6264] ksys_write+0x12a/0x250
[ 104.921306][ T6264] do_syscall_64+0x115/0x870
[ 104.922771][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.924612][ T6264] page last free pid 854 tgid 854 stack trace:
[ 104.926554][ T6264] __free_frozen_pages+0x794/0x10a0
[ 104.928165][ T6264] vfree+0x15f/0x8d0
[ 104.929403][ T6264] delayed_vfree_work+0x56/0x80
[ 104.930928][ T6264] process_one_work+0xa0e/0x1980
[ 104.932511][ T6264] worker_thread+0x5ef/0xe50
[ 104.933958][ T6264] kthread+0x370/0x450
[ 104.935244][ T6264] ret_from_fork+0x72b/0xd50
[ 104.936731][ T6264] ret_from_fork_asm+0x1a/0x30
[ 104.938223][ T6264] Modules linked in:
[ 104.939492][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 104.939508][ T6264] Tainted: [B]=BAD_PAGE
[ 104.939511][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 104.939517][ T6264] Call Trace:
[ 104.939521][ T6264]
[ 104.939526][ T6264] dump_stack_lvl+0x100/0x190
[ 104.939538][ T6264] bad_page.cold+0xbe/0xdf
[ 104.939554][ T6264] ? __pfx_bad_page+0x10/0x10
[ 104.939563][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.939578][ T6264] ? page_bad_reason+0x98/0x200
[ 104.939588][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 104.939601][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 104.939616][ T6264] page_frag_free+0x199/0x1f0
[ 104.939626][ T6264] __xdp_return+0x3b6/0x990
[ 104.939640][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 104.939654][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 104.939663][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 104.939679][ T6264] do_xdp_generic+0x92e/0x12c0
[ 104.939693][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 104.939711][ T6264] tun_get_user+0x1c1c/0x3c20
[ 104.939730][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 104.939745][ T6264] ? lock_release+0x245/0x310
[ 104.939757][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 104.939774][ T6264] ? tun_get+0x191/0x370
[ 104.939787][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.939802][ T6264] ? tun_get+0x191/0x370
[ 104.939815][ T6264] ? lock_release+0x245/0x310
[ 104.939828][ T6264] tun_chr_write_iter+0xdc/0x200
[ 104.939844][ T6264] vfs_write+0x6ac/0x1070
[ 104.939855][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 104.939871][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 104.939882][ T6264] ? lock_release+0x245/0x310
[ 104.939896][ T6264] ksys_write+0x12a/0x250
[ 104.939907][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 104.939918][ T6264] ? rcu_is_watching+0x12/0xc0
[ 104.939933][ T6264] do_syscall_64+0x115/0x870
[ 104.939947][ T6264] ? clear_bhb_loop+0x40/0x90
[ 104.939958][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.939969][ T6264] RIP: 0033:0x7fa79a75b80e
[ 104.939977][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 104.939988][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 104.939998][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 104.940004][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 104.940010][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 104.940016][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 104.940022][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 104.940032][ T6264]
[ 104.940039][ T6264] BUG: Bad page state in process syz.0.18 pfn:55cc4
[ 105.039228][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x55cc4
[ 105.042820][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 105.045767][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 105.049339][ T6264] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 105.052462][ T6264] page dumped because: page_pool leak
[ 105.054582][ T6264] page_owner tracks the page as allocated
[ 105.056916][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104074969143, free_ts 102121782998
[ 105.063035][ T6264] post_alloc_hook+0xfd/0x120
[ 105.064927][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 105.067096][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 105.069280][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 105.071146][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 105.073188][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 105.075378][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 105.077427][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 105.079102][ T6264] do_xdp_generic+0x56b/0x12c0
[ 105.080705][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.082298][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.083967][ T6264] vfs_write+0x6ac/0x1070
[ 105.085415][ T6264] ksys_write+0x12a/0x250
[ 105.086929][ T6264] do_syscall_64+0x115/0x870
[ 105.088422][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.090495][ T6264] page last free pid 854 tgid 854 stack trace:
[ 105.092845][ T6264] __free_frozen_pages+0x794/0x10a0
[ 105.094715][ T6264] vfree+0x15f/0x8d0
[ 105.096063][ T6264] delayed_vfree_work+0x56/0x80
[ 105.097781][ T6264] process_one_work+0xa0e/0x1980
[ 105.099409][ T6264] worker_thread+0x5ef/0xe50
[ 105.100926][ T6264] kthread+0x370/0x450
[ 105.102327][ T6264] ret_from_fork+0x72b/0xd50
[ 105.103892][ T6264] ret_from_fork_asm+0x1a/0x30
[ 105.105484][ T6264] Modules linked in:
[ 105.106879][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 105.106895][ T6264] Tainted: [B]=BAD_PAGE
[ 105.106899][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 105.106906][ T6264] Call Trace:
[ 105.106910][ T6264]
[ 105.106915][ T6264] dump_stack_lvl+0x100/0x190
[ 105.106928][ T6264] bad_page.cold+0xbe/0xdf
[ 105.106943][ T6264] ? __pfx_bad_page+0x10/0x10
[ 105.106953][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.106968][ T6264] ? page_bad_reason+0x98/0x200
[ 105.106978][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 105.106991][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 105.107006][ T6264] page_frag_free+0x199/0x1f0
[ 105.107016][ T6264] __xdp_return+0x3b6/0x990
[ 105.107030][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 105.107044][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 105.107053][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 105.107069][ T6264] do_xdp_generic+0x92e/0x12c0
[ 105.107083][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 105.107101][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.107120][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 105.107135][ T6264] ? lock_release+0x245/0x310
[ 105.107147][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 105.107165][ T6264] ? tun_get+0x191/0x370
[ 105.107178][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.107196][ T6264] ? tun_get+0x191/0x370
[ 105.107209][ T6264] ? lock_release+0x245/0x310
[ 105.107222][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.107238][ T6264] vfs_write+0x6ac/0x1070
[ 105.107250][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 105.107266][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 105.107277][ T6264] ? lock_release+0x245/0x310
[ 105.107291][ T6264] ksys_write+0x12a/0x250
[ 105.107302][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 105.107314][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.107329][ T6264] do_syscall_64+0x115/0x870
[ 105.107342][ T6264] ? clear_bhb_loop+0x40/0x90
[ 105.107353][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.107364][ T6264] RIP: 0033:0x7fa79a75b80e
[ 105.107372][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 105.107382][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 105.107392][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 105.107399][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 105.107405][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 105.107411][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 105.107417][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 105.107426][ T6264]
[ 105.107433][ T6264] BUG: Bad page state in process syz.0.18 pfn:55cc5
[ 105.214672][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x55cc5
[ 105.218340][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 105.221223][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 105.224712][ T6264] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 105.228306][ T6264] page dumped because: page_pool leak
[ 105.230533][ T6264] page_owner tracks the page as allocated
[ 105.232861][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104074962003, free_ts 102121787436
[ 105.239677][ T6264] post_alloc_hook+0xfd/0x120
[ 105.241644][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 105.243930][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 105.246516][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 105.248836][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 105.251392][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 105.253623][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 105.255645][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 105.257788][ T6264] do_xdp_generic+0x56b/0x12c0
[ 105.259768][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.261735][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.263792][ T6264] vfs_write+0x6ac/0x1070
[ 105.265608][ T6264] ksys_write+0x12a/0x250
[ 105.267480][ T6264] do_syscall_64+0x115/0x870
[ 105.269403][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.271807][ T6264] page last free pid 854 tgid 854 stack trace:
[ 105.273742][ T6264] __free_frozen_pages+0x794/0x10a0
[ 105.275406][ T6264] vfree+0x15f/0x8d0
[ 105.276700][ T6264] delayed_vfree_work+0x56/0x80
[ 105.278287][ T6264] process_one_work+0xa0e/0x1980
[ 105.279832][ T6264] worker_thread+0x5ef/0xe50
[ 105.281313][ T6264] kthread+0x370/0x450
[ 105.282660][ T6264] ret_from_fork+0x72b/0xd50
[ 105.284404][ T6264] ret_from_fork_asm+0x1a/0x30
[ 105.285964][ T6264] Modules linked in:
[ 105.287475][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 105.287499][ T6264] Tainted: [B]=BAD_PAGE
[ 105.287505][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 105.287517][ T6264] Call Trace:
[ 105.287523][ T6264]
[ 105.287530][ T6264] dump_stack_lvl+0x100/0x190
[ 105.287552][ T6264] bad_page.cold+0xbe/0xdf
[ 105.287576][ T6264] ? __pfx_bad_page+0x10/0x10
[ 105.287591][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.287616][ T6264] ? page_bad_reason+0x98/0x200
[ 105.287632][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 105.287656][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 105.287682][ T6264] page_frag_free+0x199/0x1f0
[ 105.287700][ T6264] __xdp_return+0x3b6/0x990
[ 105.287724][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 105.287750][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 105.287765][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 105.287794][ T6264] do_xdp_generic+0x92e/0x12c0
[ 105.287817][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 105.287848][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.287880][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 105.287904][ T6264] ? lock_release+0x245/0x310
[ 105.287926][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 105.287956][ T6264] ? tun_get+0x191/0x370
[ 105.287979][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.288002][ T6264] ? tun_get+0x191/0x370
[ 105.288023][ T6264] ? lock_release+0x245/0x310
[ 105.288045][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.288071][ T6264] vfs_write+0x6ac/0x1070
[ 105.288090][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 105.288115][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 105.288136][ T6264] ? lock_release+0x245/0x310
[ 105.288161][ T6264] ksys_write+0x12a/0x250
[ 105.288185][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 105.288205][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.288230][ T6264] do_syscall_64+0x115/0x870
[ 105.288252][ T6264] ? clear_bhb_loop+0x40/0x90
[ 105.288272][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.288290][ T6264] RIP: 0033:0x7fa79a75b80e
[ 105.288304][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 105.288320][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 105.288338][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 105.288349][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 105.288360][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 105.288370][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 105.288381][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 105.288396][ T6264]
[ 105.288406][ T6264] BUG: Bad page state in process syz.0.18 pfn:55cc6
[ 105.393969][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x55cc6
[ 105.397682][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 105.400636][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 105.404221][ T6264] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 105.407854][ T6264] page dumped because: page_pool leak
[ 105.410089][ T6264] page_owner tracks the page as allocated
[ 105.412442][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104074954867, free_ts 102121791849
[ 105.419379][ T6264] post_alloc_hook+0xfd/0x120
[ 105.421364][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 105.423677][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 105.426237][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 105.428545][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 105.431078][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 105.433312][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 105.435392][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 105.437569][ T6264] do_xdp_generic+0x56b/0x12c0
[ 105.439599][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.441583][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.443680][ T6264] vfs_write+0x6ac/0x1070
[ 105.445497][ T6264] ksys_write+0x12a/0x250
[ 105.447410][ T6264] do_syscall_64+0x115/0x870
[ 105.449362][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.451827][ T6264] page last free pid 854 tgid 854 stack trace:
[ 105.454403][ T6264] __free_frozen_pages+0x794/0x10a0
[ 105.456673][ T6264] vfree+0x15f/0x8d0
[ 105.458334][ T6264] delayed_vfree_work+0x56/0x80
[ 105.460380][ T6264] process_one_work+0xa0e/0x1980
[ 105.462468][ T6264] worker_thread+0x5ef/0xe50
[ 105.464413][ T6264] kthread+0x370/0x450
[ 105.466229][ T6264] ret_from_fork+0x72b/0xd50
[ 105.468169][ T6264] ret_from_fork_asm+0x1a/0x30
[ 105.470204][ T6264] Modules linked in:
[ 105.471861][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 105.471885][ T6264] Tainted: [B]=BAD_PAGE
[ 105.471891][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 105.471903][ T6264] Call Trace:
[ 105.471910][ T6264]
[ 105.471917][ T6264] dump_stack_lvl+0x100/0x190
[ 105.471938][ T6264] bad_page.cold+0xbe/0xdf
[ 105.471964][ T6264] ? __pfx_bad_page+0x10/0x10
[ 105.471980][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.472005][ T6264] ? page_bad_reason+0x98/0x200
[ 105.472022][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 105.472046][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 105.472070][ T6264] page_frag_free+0x199/0x1f0
[ 105.472088][ T6264] __xdp_return+0x3b6/0x990
[ 105.472110][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 105.472140][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 105.472158][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 105.472192][ T6264] do_xdp_generic+0x92e/0x12c0
[ 105.472217][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 105.472246][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.472277][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 105.472302][ T6264] ? lock_release+0x245/0x310
[ 105.472323][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 105.472352][ T6264] ? tun_get+0x191/0x370
[ 105.472374][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.472399][ T6264] ? tun_get+0x191/0x370
[ 105.472420][ T6264] ? lock_release+0x245/0x310
[ 105.472442][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.472469][ T6264] vfs_write+0x6ac/0x1070
[ 105.472489][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 105.472516][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 105.472534][ T6264] ? lock_release+0x245/0x310
[ 105.472559][ T6264] ksys_write+0x12a/0x250
[ 105.472578][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 105.472597][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.472624][ T6264] do_syscall_64+0x115/0x870
[ 105.472645][ T6264] ? clear_bhb_loop+0x40/0x90
[ 105.472664][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.472681][ T6264] RIP: 0033:0x7fa79a75b80e
[ 105.472693][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 105.472709][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 105.472727][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 105.472738][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 105.472747][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 105.472758][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 105.472767][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 105.472783][ T6264]
[ 105.472793][ T6264] BUG: Bad page state in process syz.0.18 pfn:55cc7
[ 105.583630][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x55cc7
[ 105.586361][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 105.588497][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 105.591091][ T6264] raw: 0000000000000000 0000000000000001 00000000ffffffff 0000000000000000
[ 105.593691][ T6264] page dumped because: page_pool leak
[ 105.595339][ T6264] page_owner tracks the page as allocated
[ 105.597130][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104074947873, free_ts 102121796242
[ 105.602112][ T6264] post_alloc_hook+0xfd/0x120
[ 105.603559][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 105.605256][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 105.607119][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 105.608802][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 105.610652][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 105.612296][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 105.613810][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 105.615441][ T6264] do_xdp_generic+0x56b/0x12c0
[ 105.617484][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.619502][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.621352][ T6264] vfs_write+0x6ac/0x1070
[ 105.623151][ T6264] ksys_write+0x12a/0x250
[ 105.624960][ T6264] do_syscall_64+0x115/0x870
[ 105.626987][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.629428][ T6264] page last free pid 854 tgid 854 stack trace:
[ 105.631890][ T6264] __free_frozen_pages+0x794/0x10a0
[ 105.633993][ T6264] vfree+0x15f/0x8d0
[ 105.635649][ T6264] delayed_vfree_work+0x56/0x80
[ 105.637791][ T6264] process_one_work+0xa0e/0x1980
[ 105.639831][ T6264] worker_thread+0x5ef/0xe50
[ 105.641767][ T6264] kthread+0x370/0x450
[ 105.643458][ T6264] ret_from_fork+0x72b/0xd50
[ 105.645386][ T6264] ret_from_fork_asm+0x1a/0x30
[ 105.647488][ T6264] Modules linked in:
[ 105.649151][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 105.649176][ T6264] Tainted: [B]=BAD_PAGE
[ 105.649182][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 105.649192][ T6264] Call Trace:
[ 105.649198][ T6264]
[ 105.649205][ T6264] dump_stack_lvl+0x100/0x190
[ 105.649225][ T6264] bad_page.cold+0xbe/0xdf
[ 105.649251][ T6264] ? __pfx_bad_page+0x10/0x10
[ 105.649267][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.649289][ T6264] ? page_bad_reason+0x98/0x200
[ 105.649304][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 105.649326][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 105.649350][ T6264] page_frag_free+0x199/0x1f0
[ 105.649366][ T6264] __xdp_return+0x3b6/0x990
[ 105.649390][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 105.649414][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 105.649430][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 105.649459][ T6264] do_xdp_generic+0x92e/0x12c0
[ 105.649483][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 105.649514][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.649546][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 105.649571][ T6264] ? lock_release+0x245/0x310
[ 105.649619][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 105.649649][ T6264] ? tun_get+0x191/0x370
[ 105.649672][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.649696][ T6264] ? tun_get+0x191/0x370
[ 105.649718][ T6264] ? lock_release+0x245/0x310
[ 105.649741][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.649768][ T6264] vfs_write+0x6ac/0x1070
[ 105.649788][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 105.649815][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 105.649835][ T6264] ? lock_release+0x245/0x310
[ 105.649860][ T6264] ksys_write+0x12a/0x250
[ 105.649879][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 105.649899][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.649924][ T6264] do_syscall_64+0x115/0x870
[ 105.649947][ T6264] ? clear_bhb_loop+0x40/0x90
[ 105.649967][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.649985][ T6264] RIP: 0033:0x7fa79a75b80e
[ 105.649999][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 105.650017][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 105.650033][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 105.650045][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 105.650055][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 105.650066][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 105.650076][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 105.650092][ T6264]
[ 105.650103][ T6264] BUG: Bad page state in process syz.0.18 pfn:49820
[ 105.752494][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888049822000 pfn:0x49820
[ 105.756217][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 105.759134][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 105.762344][ T6264] raw: ffff888049822000 0000000000000001 00000000ffffffff 0000000000000000
[ 105.765869][ T6264] page dumped because: page_pool leak
[ 105.767966][ T6264] page_owner tracks the page as allocated
[ 105.769731][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104074941042, free_ts 102122327291
[ 105.775064][ T6264] post_alloc_hook+0xfd/0x120
[ 105.776611][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 105.778320][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 105.780196][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 105.782051][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 105.784547][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 105.786776][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 105.788810][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 105.790845][ T6264] do_xdp_generic+0x56b/0x12c0
[ 105.792462][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.794484][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.796350][ T6264] vfs_write+0x6ac/0x1070
[ 105.797743][ T6264] ksys_write+0x12a/0x250
[ 105.799105][ T6264] do_syscall_64+0x115/0x870
[ 105.800525][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.802633][ T6264] page last free pid 854 tgid 854 stack trace:
[ 105.804805][ T6264] __free_frozen_pages+0x794/0x10a0
[ 105.806492][ T6264] vfree+0x15f/0x8d0
[ 105.807705][ T6264] delayed_vfree_work+0x56/0x80
[ 105.809234][ T6264] process_one_work+0xa0e/0x1980
[ 105.810784][ T6264] worker_thread+0x5ef/0xe50
[ 105.812401][ T6264] kthread+0x370/0x450
[ 105.813695][ T6264] ret_from_fork+0x72b/0xd50
[ 105.815437][ T6264] ret_from_fork_asm+0x1a/0x30
[ 105.817487][ T6264] Modules linked in:
[ 105.819123][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 105.819148][ T6264] Tainted: [B]=BAD_PAGE
[ 105.819154][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 105.819164][ T6264] Call Trace:
[ 105.819170][ T6264]
[ 105.819177][ T6264] dump_stack_lvl+0x100/0x190
[ 105.819198][ T6264] bad_page.cold+0xbe/0xdf
[ 105.819223][ T6264] ? __pfx_bad_page+0x10/0x10
[ 105.819239][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.819264][ T6264] ? page_bad_reason+0x98/0x200
[ 105.819281][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 105.819304][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 105.819329][ T6264] page_frag_free+0x199/0x1f0
[ 105.819345][ T6264] __xdp_return+0x3b6/0x990
[ 105.819367][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 105.819392][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 105.819407][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 105.819435][ T6264] do_xdp_generic+0x92e/0x12c0
[ 105.819458][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 105.819489][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.819519][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 105.819543][ T6264] ? lock_release+0x245/0x310
[ 105.819564][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 105.819594][ T6264] ? tun_get+0x191/0x370
[ 105.819622][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.819646][ T6264] ? tun_get+0x191/0x370
[ 105.819666][ T6264] ? lock_release+0x245/0x310
[ 105.819688][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.819714][ T6264] vfs_write+0x6ac/0x1070
[ 105.819733][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 105.819759][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 105.819778][ T6264] ? lock_release+0x245/0x310
[ 105.819802][ T6264] ksys_write+0x12a/0x250
[ 105.819820][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 105.819839][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.819865][ T6264] do_syscall_64+0x115/0x870
[ 105.819886][ T6264] ? clear_bhb_loop+0x40/0x90
[ 105.819906][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.819922][ T6264] RIP: 0033:0x7fa79a75b80e
[ 105.819935][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 105.819952][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 105.819968][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 105.819979][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 105.819989][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 105.819999][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 105.820009][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 105.820026][ T6264]
[ 105.820036][ T6264] BUG: Bad page state in process syz.0.18 pfn:49821
[ 105.919727][ T6264] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x49821
[ 105.923750][ T6264] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 105.926169][ T6264] raw: 00fff00000000000 dead000000000040 ffff888022ebc000 0000000000000000
[ 105.928763][ T6264] raw: ffffffffffffffff 0000000000000001 00000000ffffffff 0000000000000000
[ 105.931362][ T6264] page dumped because: page_pool leak
[ 105.933153][ T6264] page_owner tracks the page as allocated
[ 105.934954][ T6264] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6264, tgid 6262 (syz.0.18), ts 104074934423, free_ts 102122332966
[ 105.939982][ T6264] post_alloc_hook+0xfd/0x120
[ 105.941430][ T6264] get_page_from_freelist+0x11a6/0x3410
[ 105.943226][ T6264] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 105.945079][ T6264] alloc_pages_bulk_noprof+0x649/0x1360
[ 105.946828][ T6264] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 105.948675][ T6264] page_pool_alloc_netmems+0xc4/0x1a0
[ 105.950385][ T6264] skb_pp_cow_data+0xa15/0x1220
[ 105.951883][ T6264] skb_cow_data_for_xdp+0x88/0xb0
[ 105.953787][ T6264] do_xdp_generic+0x56b/0x12c0
[ 105.955548][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.957488][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.959475][ T6264] vfs_write+0x6ac/0x1070
[ 105.961212][ T6264] ksys_write+0x12a/0x250
[ 105.962954][ T6264] do_syscall_64+0x115/0x870
[ 105.964727][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.966610][ T6264] page last free pid 854 tgid 854 stack trace:
[ 105.968552][ T6264] __free_frozen_pages+0x794/0x10a0
[ 105.970145][ T6264] vfree+0x15f/0x8d0
[ 105.971340][ T6264] delayed_vfree_work+0x56/0x80
[ 105.973007][ T6264] process_one_work+0xa0e/0x1980
[ 105.974588][ T6264] worker_thread+0x5ef/0xe50
[ 105.976016][ T6264] kthread+0x370/0x450
[ 105.977347][ T6264] ret_from_fork+0x72b/0xd50
[ 105.978772][ T6264] ret_from_fork_asm+0x1a/0x30
[ 105.980230][ T6264] Modules linked in:
[ 105.981618][ T6264] CPU: 3 UID: 0 PID: 6264 Comm: syz.0.18 Tainted: G B syzkaller #0 PREEMPT(full)
[ 105.981639][ T6264] Tainted: [B]=BAD_PAGE
[ 105.981644][ T6264] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 105.981653][ T6264] Call Trace:
[ 105.981659][ T6264]
[ 105.981664][ T6264] dump_stack_lvl+0x100/0x190
[ 105.981682][ T6264] bad_page.cold+0xbe/0xdf
[ 105.981703][ T6264] ? __pfx_bad_page+0x10/0x10
[ 105.981717][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.981737][ T6264] ? page_bad_reason+0x98/0x200
[ 105.981751][ T6264] __free_frozen_pages+0x7d6/0x10a0
[ 105.981769][ T6264] ? trace_irq_enable.constprop.0+0x11e/0x160
[ 105.981790][ T6264] page_frag_free+0x199/0x1f0
[ 105.981805][ T6264] __xdp_return+0x3b6/0x990
[ 105.981825][ T6264] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 105.981846][ T6264] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 105.981858][ T6264] bpf_prog_run_generic_xdp+0x614/0x1610
[ 105.981882][ T6264] do_xdp_generic+0x92e/0x12c0
[ 105.981901][ T6264] ? __pfx_do_xdp_generic+0x10/0x10
[ 105.981928][ T6264] tun_get_user+0x1c1c/0x3c20
[ 105.981955][ T6264] ? __pfx_tun_get_user+0x10/0x10
[ 105.981976][ T6264] ? lock_release+0x245/0x310
[ 105.981993][ T6264] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 105.982018][ T6264] ? tun_get+0x191/0x370
[ 105.982036][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.982056][ T6264] ? tun_get+0x191/0x370
[ 105.982075][ T6264] ? lock_release+0x245/0x310
[ 105.982093][ T6264] tun_chr_write_iter+0xdc/0x200
[ 105.982116][ T6264] vfs_write+0x6ac/0x1070
[ 105.982132][ T6264] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 105.982155][ T6264] ? __pfx_vfs_write+0x10/0x10
[ 105.982171][ T6264] ? lock_release+0x245/0x310
[ 105.982192][ T6264] ksys_write+0x12a/0x250
[ 105.982207][ T6264] ? __pfx_ksys_write+0x10/0x10
[ 105.982224][ T6264] ? rcu_is_watching+0x12/0xc0
[ 105.982245][ T6264] do_syscall_64+0x115/0x870
[ 105.982265][ T6264] ? clear_bhb_loop+0x40/0x90
[ 105.982282][ T6264] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.982297][ T6264] RIP: 0033:0x7fa79a75b80e
[ 105.982309][ T6264] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 105.982324][ T6264] RSP: 002b:00007fa79b59efb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 105.982339][ T6264] RAX: ffffffffffffffda RBX: 00007fa79b59f6c0 RCX: 00007fa79a75b80e
[ 105.982349][ T6264] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 105.982359][ T6264] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 105.982368][ T6264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 105.982377][ T6264] R13: 00007fa79aa06128 R14: 00007fa79aa06090 R15: 00007ffed30ad188
[ 105.982391][ T6264]
[ 105.983456][ T62] Bluetooth: hci0: command tx timeout
[ 106.109674][ T6266] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888000000000 pfn:0x35a68
[ 106.113777][ T6266] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 106.116754][ T6266] raw: 00fff00000000000 dead000000000040 ffff888022ebb000 0000000000000000
[ 106.120300][ T6266] raw: ffff888000000000 3fffffffffffffff 00000000ffffffff 0000000000000000
[ 106.123828][ T6266] page dumped because: VM_BUG_ON_PAGE(page_ref_count(page) == 0)
[ 106.127028][ T6266] page_owner tracks the page as allocated
[ 106.129311][ T6266] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x2820(GFP_ATOMIC|__GFP_NOWARN), pid 6261, tgid 6260 (syz.0.17), ts 102331232536, free_ts 102148590634
[ 106.136014][ T6266] post_alloc_hook+0xfd/0x120
[ 106.137938][ T6266] get_page_from_freelist+0x11a6/0x3410
[ 106.140218][ T6266] __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 106.142668][ T6266] alloc_pages_bulk_noprof+0x649/0x1360
2026/05/30 09:11:07 executed programs: 4
[ 106.145000][ T6266] __page_pool_alloc_netmems_slow+0x1c6/0xa60
[ 106.147718][ T6266] page_pool_alloc_netmems+0xc4/0x1a0
[ 106.149846][ T6266] page_pool_alloc_frag_netmem+0x21d/0xa00
[ 106.152270][ T6266] skb_pp_cow_data+0x5a7/0x1220
[ 106.154318][ T6266] skb_cow_data_for_xdp+0x88/0xb0
[ 106.156566][ T6266] do_xdp_generic+0x56b/0x12c0
[ 106.158536][ T6266] tun_get_user+0x1c1c/0x3c20
[ 106.160445][ T6266] tun_chr_write_iter+0xdc/0x200
[ 106.162481][ T6266] vfs_write+0x6ac/0x1070
[ 106.164272][ T6266] ksys_write+0x12a/0x250
[ 106.166023][ T6266] do_syscall_64+0x115/0x870
[ 106.167969][ T6266] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.170350][ T6266] page last free pid 10 tgid 10 stack trace:
[ 106.172769][ T6266] __free_frozen_pages+0x794/0x10a0
[ 106.174897][ T6266] rcu_core+0x5a2/0x10d0
[ 106.176723][ T6266] handle_softirqs+0x1ea/0xa00
[ 106.178705][ T6266] do_softirq+0xac/0xe0
[ 106.180340][ T6266] __local_bh_enable_ip+0xf8/0x120
[ 106.182444][ T6266] __alloc_skb+0x5db/0x710
[ 106.184284][ T6266] mld_newpack.isra.0+0x18e/0xa20
[ 106.186423][ T6266] add_grhead+0x299/0x340
[ 106.188170][ T6266] add_grec+0x1380/0x1920
[ 106.189885][ T6266] mld_ifc_work+0x3c5/0xc10
[ 106.191755][ T6266] process_one_work+0xa0e/0x1980
[ 106.193784][ T6266] worker_thread+0x5ef/0xe50
[ 106.195742][ T6266] kthread+0x370/0x450
[ 106.197474][ T6266] ret_from_fork+0x72b/0xd50
[ 106.199365][ T6266] ret_from_fork_asm+0x1a/0x30
[ 106.201498][ T6266] ------------[ cut here ]------------
[ 106.203716][ T6266] kernel BUG at ./include/linux/mm.h:1766!
[ 106.205892][ T6266] Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
[ 106.208405][ T6266] CPU: 0 UID: 0 PID: 6266 Comm: syz.0.19 Tainted: G B syzkaller #0 PREEMPT(full)
[ 106.212743][ T6266] Tainted: [B]=BAD_PAGE
[ 106.214480][ T6266] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 106.218672][ T6266] RIP: 0010:page_frag_free+0x11a/0x1f0
[ 106.220764][ T6266] Code: ed 75 29 e8 b8 67 9f ff 48 83 c4 08 5b 5d 41 5c c3 cc cc cc cc e8 a6 67 9f ff 48 c7 c6 60 38 c1 8b 48 89 df e8 c7 9f ee ff 90 <0f> 0b e8 8f 67 9f ff be 08 00 00 00 48 89 df e8 12 50 0d 00 48 89
[ 106.228230][ T6266] RSP: 0018:ffffc90004177720 EFLAGS: 00010293
[ 106.230753][ T6266] RAX: 0000000000000000 RBX: ffffea0000d69a00 RCX: ffffffff82827007
[ 106.233942][ T6266] RDX: ffff8880275f0000 RSI: ffffffff8257d918 RDI: ffff8880275f04c4
[ 106.237290][ T6266] RBP: ffffea0000d69a34 R08: 0000000000000000 R09: 0000000000000000
[ 106.240545][ T6266] R10: 0000000000000000 R11: 6f72665f74657220 R12: 0000000000000000
[ 106.243535][ T6266] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000000bcae
[ 106.246753][ T6266] FS: 00007fa79b5c06c0(0000) GS:ffff8880d6383000(0000) knlGS:0000000000000000
[ 106.249992][ T6266] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.252676][ T6266] CR2: 0000200000010000 CR3: 0000000057ee8000 CR4: 0000000000352ef0
[ 106.255947][ T6266] Call Trace:
[ 106.257347][ T6266]
[ 106.258593][ T6266] __xdp_return+0x3b6/0x990
[ 106.260467][ T6266] bpf_xdp_adjust_tail+0x8a1/0xbb0
[ 106.262579][ T6266] bpf_prog_5d7dc57dfd7f985a+0x1e/0x24
[ 106.264844][ T6266] bpf_prog_run_generic_xdp+0x614/0x1610
[ 106.267232][ T6266] do_xdp_generic+0x92e/0x12c0
[ 106.269216][ T6266] ? __pfx_do_xdp_generic+0x10/0x10
[ 106.271464][ T6266] tun_get_user+0x1c1c/0x3c20
[ 106.273455][ T6266] ? __pfx_tun_get_user+0x10/0x10
[ 106.275652][ T6266] ? __pfx_ref_tracker_alloc+0x10/0x10
[ 106.277935][ T6266] ? tun_get+0x191/0x370
[ 106.279700][ T6266] ? rcu_is_watching+0x12/0xc0
[ 106.281753][ T6266] ? tun_get+0x191/0x370
[ 106.283560][ T6266] ? lock_release+0x245/0x310
[ 106.285564][ T6266] tun_chr_write_iter+0xdc/0x200
[ 106.287678][ T6266] vfs_write+0x6ac/0x1070
[ 106.289473][ T6266] ? __pfx_tun_chr_write_iter+0x10/0x10
[ 106.291745][ T6266] ? __pfx_vfs_write+0x10/0x10
[ 106.293740][ T6266] ? lock_release+0x245/0x310
[ 106.295697][ T6266] ksys_write+0x12a/0x250
[ 106.297476][ T6266] ? __pfx_ksys_write+0x10/0x10
[ 106.299478][ T6266] ? rcu_is_watching+0x12/0xc0
[ 106.301458][ T6266] do_syscall_64+0x115/0x870
[ 106.303372][ T6266] ? clear_bhb_loop+0x40/0x90
[ 106.305256][ T6266] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.307714][ T6266] RIP: 0033:0x7fa79a75b80e
[ 106.309623][ T6266] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[ 106.317607][ T6266] RSP: 002b:00007fa79b5bffb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 106.320978][ T6266] RAX: ffffffffffffffda RBX: 00007fa79b5c06c0 RCX: 00007fa79a75b80e
[ 106.324254][ T6266] RDX: 000000000000fdef RSI: 0000200000000a80 RDI: 00000000000000c8
[ 106.327533][ T6266] RBP: 00007fa79a82fee0 R08: 0000000000000000 R09: 0000000000000000
[ 106.330865][ T6266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 106.334153][ T6266] R13: 00007fa79aa06038 R14: 00007fa79aa05fa0 R15: 00007ffed30ad188
[ 106.337418][ T6266]
[ 106.338397][ T6266] Modules linked in:
[ 106.339721][ T6266] ---[ end trace 0000000000000000 ]---
[ 106.341943][ T6266] RIP: 0010:page_frag_free+0x11a/0x1f0
[ 106.344204][ T6266] Code: ed 75 29 e8 b8 67 9f ff 48 83 c4 08 5b 5d 41 5c c3 cc cc cc cc e8 a6 67 9f ff 48 c7 c6 60 38 c1 8b 48 89 df e8 c7 9f ee ff 90 <0f> 0b e8 8f 67 9f ff be 08 00 00 00 48 89 df e8 12 50 0d 00 48 89
[ 106.352010][ T6266] RSP: 0018:ffffc90004177720 EFLAGS: 00010293
[ 106.354487][ T6266] RAX: 0000000000000000 RBX: ffffea0000d69a00 RCX: ffffffff82827007
[ 106.357775][ T6266] RDX: ffff8880275f0000 RSI: ffffffff8257d918 RDI: ffff8880275f04c4
[ 106.360957][ T6266] RBP: ffffea0000d69a34 R08: 0000000000000000 R09: 0000000000000000
[ 106.364175][ T6266] R10: 0000000000000000 R11: 6f72665f74657220 R12: 0000000000000000
[ 106.367275][ T6266] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000000bcae
[ 106.369757][ T6266] FS: 00007fa79b5c06c0(0000) GS:ffff8880d6383000(0000) knlGS:0000000000000000
[ 106.372428][ T6266] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 106.374434][ T6266] CR2: 0000200000010000 CR3: 0000000057ee8000 CR4: 0000000000352ef0
[ 106.376900][ T6266] Kernel panic - not syncing: Fatal exception in interrupt
[ 106.379951][ T6266] Kernel Offset: disabled
[ 106.381274][ T6266] Rebooting in 86400 seconds..