Warning: Permanently added '[localhost]:22108' (ED25519) to the list of known hosts.
2025/05/03 07:09:11 ignoring optional flag "sandboxArg"="0"
2025/05/03 07:09:12 parsed 1 programs
[ 80.235639][ T40] kauditd_printk_skb: 28 callbacks suppressed
[ 80.235656][ T40] audit: type=1400 audit(1746256154.577:143): avc: denied { unlink } for pid=6200 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 81.225570][ T6200] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 81.464389][ T64] cfg80211: failed to load regulatory.db
[ 83.078294][ T6235] chnl_net:caif_netlink_parms(): no params data found
[ 83.180326][ T6235] bridge0: port 1(bridge_slave_0) entered blocking state
[ 83.183453][ T6235] bridge0: port 1(bridge_slave_0) entered disabled state
[ 83.186000][ T6235] bridge_slave_0: entered allmulticast mode
[ 83.188641][ T6235] bridge_slave_0: entered promiscuous mode
[ 83.194385][ T6235] bridge0: port 2(bridge_slave_1) entered blocking state
[ 83.196671][ T6235] bridge0: port 2(bridge_slave_1) entered disabled state
[ 83.198969][ T6235] bridge_slave_1: entered allmulticast mode
[ 83.201542][ T6235] bridge_slave_1: entered promiscuous mode
[ 83.231127][ T6235] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 83.236482][ T6235] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 83.266939][ T6235] team0: Port device team_slave_0 added
[ 83.270180][ T6235] team0: Port device team_slave_1 added
[ 83.300443][ T6235] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 83.302784][ T6235] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 83.310763][ T6235] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 83.315659][ T6235] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 83.317854][ T6235] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 83.326048][ T6235] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 83.363326][ T6235] hsr_slave_0: entered promiscuous mode
[ 83.365480][ T6235] hsr_slave_1: entered promiscuous mode
[ 83.871957][ T6235] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 83.876018][ T6235] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 83.880253][ T6235] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 83.886054][ T6235] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 83.898749][ T6235] bridge0: port 2(bridge_slave_1) entered blocking state
[ 83.901108][ T6235] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 83.903685][ T6235] bridge0: port 1(bridge_slave_0) entered blocking state
[ 83.906045][ T6235] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 83.934572][ T6235] 8021q: adding VLAN 0 to HW filter on device bond0
[ 83.941877][ T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 83.945466][ T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 83.954640][ T6235] 8021q: adding VLAN 0 to HW filter on device team0
[ 83.961674][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 83.964734][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 83.971195][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[ 83.974084][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 84.086579][ T6235] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 84.105375][ T6235] veth0_vlan: entered promiscuous mode
[ 84.112193][ T6235] veth1_vlan: entered promiscuous mode
[ 84.126035][ T6235] veth0_macvtap: entered promiscuous mode
[ 84.130841][ T6235] veth1_macvtap: entered promiscuous mode
[ 84.140555][ T6235] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 84.147233][ T6235] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 84.152445][ T6235] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 84.155375][ T6235] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 84.158057][ T6235] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 84.160750][ T6235] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 84.256410][ T95] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 84.344347][ T95] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 84.488318][ T95] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 84.606919][ T95] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 85.241370][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 85.245908][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 85.262196][ T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 85.265778][ T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 85.432193][ T5959] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 85.436509][ T5959] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 85.439098][ T5959] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 85.442276][ T5959] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 85.446788][ T5959] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 85.610399][ T40] audit: type=1401 audit(1746256159.947:144): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2025/05/03 07:09:20 executed programs: 0
[ 86.421005][ T5285] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 86.425104][ T5285] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 86.428063][ T5285] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 86.431009][ T5285] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 86.434017][ T5285] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 86.546701][ T6459] chnl_net:caif_netlink_parms(): no params data found
[ 86.618942][ T6459] bridge0: port 1(bridge_slave_0) entered blocking state
[ 86.621266][ T6459] bridge0: port 1(bridge_slave_0) entered disabled state
[ 86.623736][ T6459] bridge_slave_0: entered allmulticast mode
[ 86.626314][ T6459] bridge_slave_0: entered promiscuous mode
[ 86.630956][ T6459] bridge0: port 2(bridge_slave_1) entered blocking state
[ 86.634143][ T6459] bridge0: port 2(bridge_slave_1) entered disabled state
[ 86.637169][ T6459] bridge_slave_1: entered allmulticast mode
[ 86.640973][ T6459] bridge_slave_1: entered promiscuous mode
[ 86.681613][ T6459] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 86.686305][ T6459] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 86.720470][ T6459] team0: Port device team_slave_0 added
[ 86.724132][ T6459] team0: Port device team_slave_1 added
[ 86.758152][ T6459] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 86.760268][ T6459] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 86.767689][ T6459] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 86.774155][ T6459] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 86.777090][ T6459] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 86.786810][ T6459] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 86.839266][ T6459] hsr_slave_0: entered promiscuous mode
[ 86.841808][ T6459] hsr_slave_1: entered promiscuous mode
[ 86.844015][ T6459] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 86.846308][ T6459] Cannot create hsr debugfs directory
[ 87.553436][ T95] bridge_slave_1: left allmulticast mode
[ 87.555447][ T95] bridge_slave_1: left promiscuous mode
[ 87.557761][ T95] bridge0: port 2(bridge_slave_1) entered disabled state
[ 87.563598][ T95] bridge_slave_0: left allmulticast mode
[ 87.565361][ T95] bridge_slave_0: left promiscuous mode
[ 87.567212][ T95] bridge0: port 1(bridge_slave_0) entered disabled state
[ 87.778378][ T95] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 87.782310][ T95] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 87.786095][ T95] bond0 (unregistering): Released all slaves
[ 87.894800][ T95] hsr_slave_0: left promiscuous mode
[ 87.896811][ T95] hsr_slave_1: left promiscuous mode
[ 87.899275][ T95] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 87.902185][ T95] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 87.909193][ T95] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 87.911530][ T95] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 87.923189][ T95] veth1_macvtap: left promiscuous mode
[ 87.924984][ T95] veth0_macvtap: left promiscuous mode
[ 87.926748][ T95] veth1_vlan: left promiscuous mode
[ 87.928430][ T95] veth0_vlan: left promiscuous mode
[ 88.304047][ T95] team0 (unregistering): Port device team_slave_1 removed
[ 88.341696][ T95] team0 (unregistering): Port device team_slave_0 removed
[ 88.494727][ T5959] Bluetooth: hci0: command tx timeout
[ 88.970786][ T6459] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 88.978485][ T6459] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 88.983069][ T6459] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 88.987684][ T6459] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 89.032074][ T6459] 8021q: adding VLAN 0 to HW filter on device bond0
[ 89.042083][ T6459] 8021q: adding VLAN 0 to HW filter on device team0
[ 89.049146][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[ 89.052144][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 89.059648][ T92] bridge0: port 2(bridge_slave_1) entered blocking state
[ 89.061911][ T92] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 89.396997][ T6459] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 89.415512][ T6459] veth0_vlan: entered promiscuous mode
[ 89.424161][ T6459] veth1_vlan: entered promiscuous mode
[ 89.439764][ T6459] veth0_macvtap: entered promiscuous mode
[ 89.447470][ T6459] veth1_macvtap: entered promiscuous mode
[ 89.456613][ T6459] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 89.462101][ T6459] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 89.468310][ T6459] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.471027][ T6459] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.474074][ T6459] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.476808][ T6459] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 89.515691][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.518130][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 89.535266][ T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 89.538315][ T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 89.590906][ T40] audit: type=1400 audit(1746256163.927:145): avc: denied { read write } for pid=6495 comm="syz.0.16" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 89.598986][ T40] audit: type=1400 audit(1746256163.927:146): avc: denied { open } for pid=6495 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 89.606440][ T40] audit: type=1400 audit(1746256163.927:147): avc: denied { map } for pid=6495 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 89.613432][ T40] audit: type=1400 audit(1746256163.927:148): avc: denied { execute } for pid=6495 comm="syz.0.16" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 89.621329][ T40] audit: type=1400 audit(1746256163.937:149): avc: denied { create } for pid=6495 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 89.629637][ T40] audit: type=1400 audit(1746256163.947:150): avc: denied { bind } for pid=6495 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 89.637682][ T40] audit: type=1400 audit(1746256163.947:151): avc: denied { write } for pid=6495 comm="syz.0.16" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 89.660143][ T6495] BUG: Bad page state in process syz.0.16 pfn:4be01
[ 89.662307][ T6495] page does not match folio
[ 89.664337][ T6495] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4be01
[ 89.668305][ T6495] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 89.670619][ T6495] raw: 00fff00000000000 ffffea00012f8000 00000000ffffffff ffffffffffffffff
[ 89.673375][ T6495] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 89.676101][ T6495] page dumped because: nonzero pincount
[ 89.677812][ T6495] page_owner tracks the page as allocated
[ 89.679643][ T6495] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6495, tgid 6495 (syz.0.16), ts 89599699971, free_ts 84897122939
[ 89.685813][ T6495] post_alloc_hook+0x181/0x1b0
[ 89.687334][ T6495] prep_new_page+0x16/0xb0
[ 89.688742][ T6495] get_page_from_freelist+0x135b/0x3800
[ 89.690460][ T6495] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 89.692313][ T6495] alloc_pages_mpol+0x1fb/0x550
[ 89.693974][ T6495] folio_alloc_noprof+0x20/0x2d0
[ 89.695564][ T6495] filemap_alloc_folio_noprof+0x3a1/0x470
[ 89.697332][ T6495] page_cache_ra_order+0x4c0/0xd00
[ 89.698924][ T6495] filemap_fault+0x1a5e/0x2740
[ 89.700425][ T6495] __do_fault+0x10a/0x490
[ 89.701781][ T6495] do_pte_missing+0x1a6/0x3fb0
[ 89.703343][ T6495] __handle_mm_fault+0x103d/0x2a40
[ 89.705040][ T6495] handle_mm_fault+0x3fe/0xad0
[ 89.706549][ T6495] do_user_addr_fault+0x60c/0x1370
[ 89.708150][ T6495] exc_page_fault+0x5c/0xc0
[ 89.709573][ T6495] asm_exc_page_fault+0x26/0x30
[ 89.711091][ T6495] page last free pid 6330 tgid 6330 stack trace:
[ 89.713166][ T6495] __free_frozen_pages+0x69d/0xff0
[ 89.714816][ T6495] vfree+0x176/0x960
[ 89.716058][ T6495] kcov_close+0x34/0x60
[ 89.717358][ T6495] __fput+0x3ff/0xb70
[ 89.718620][ T6495] task_work_run+0x14d/0x240
[ 89.720075][ T6495] do_exit+0xafb/0x2c30
[ 89.721394][ T6495] do_group_exit+0xd3/0x2a0
[ 89.722972][ T6495] get_signal+0x2673/0x26d0
[ 89.724474][ T6495] arch_do_signal_or_restart+0x8f/0x7d0
[ 89.726211][ T6495] syscall_exit_to_user_mode+0x150/0x2a0
[ 89.727968][ T6495] do_syscall_64+0xda/0x260
[ 89.729395][ T6495] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.731436][ T6495] Modules linked in:
[ 89.732688][ T6495] CPU: 1 UID: 0 PID: 6495 Comm: syz.0.16 Not tainted 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 89.732701][ T6495] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 89.732708][ T6495] Call Trace:
[ 89.732712][ T6495]
[ 89.732715][ T6495] dump_stack_lvl+0x16c/0x1f0
[ 89.732730][ T6495] bad_page+0xb3/0x1f0
[ 89.732754][ T6495] ? __pfx_bad_page+0x10/0x10
[ 89.732764][ T6495] ? __mem_cgroup_uncharge+0xda/0x130
[ 89.732777][ T6495] free_tail_page_prepare+0x44f/0x5b0
[ 89.732791][ T6495] __free_frozen_pages+0x96a/0xff0
[ 89.732806][ T6495] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 89.732819][ T6495] __folio_put+0x329/0x450
[ 89.732830][ T6495] ? __pfx___folio_put+0x10/0x10
[ 89.732841][ T6495] ? find_held_lock+0x2b/0x80
[ 89.732854][ T6495] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 89.732865][ T6495] ? mark_held_locks+0x49/0x80
[ 89.732881][ T6495] filemap_free_folio+0x132/0x170
[ 89.732892][ T6495] delete_from_page_cache_batch+0x741/0x9b0
[ 89.732906][ T6495] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 89.732918][ T6495] ? __pfx_workingset_update_node+0x10/0x10
[ 89.732934][ T6495] truncate_inode_pages_range+0x279/0xe30
[ 89.732951][ T6495] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 89.732990][ T6495] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 89.733007][ T6495] ? __pfx_has_bh_in_lru+0x10/0x10
[ 89.733022][ T6495] blkdev_flush_mapping+0xfb/0x290
[ 89.733036][ T6495] blkdev_put_whole+0xc4/0xf0
[ 89.733047][ T6495] bdev_release+0x47e/0x6d0
[ 89.733061][ T6495] ? __pfx_blkdev_release+0x10/0x10
[ 89.733073][ T6495] blkdev_release+0x15/0x20
[ 89.733085][ T6495] __fput+0x3ff/0xb70
[ 89.733099][ T6495] task_work_run+0x14d/0x240
[ 89.733110][ T6495] ? __pfx_task_work_run+0x10/0x10
[ 89.733121][ T6495] ? do_raw_spin_unlock+0x172/0x230
[ 89.733134][ T6495] do_exit+0xafb/0x2c30
[ 89.733151][ T6495] ? __pfx_do_exit+0x10/0x10
[ 89.733165][ T6495] ? preempt_schedule_thunk+0x16/0x30
[ 89.733179][ T6495] do_group_exit+0xd3/0x2a0
[ 89.733195][ T6495] __x64_sys_exit_group+0x3e/0x50
[ 89.733210][ T6495] x64_sys_call+0x1530/0x1730
[ 89.733224][ T6495] do_syscall_64+0xcd/0x260
[ 89.733237][ T6495] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.733247][ T6495] RIP: 0033:0x7fa53558e969
[ 89.733254][ T6495] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 89.733259][ T6495] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 89.733268][ T6495] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 89.733274][ T6495] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 89.733280][ T6495] RBP: 0000000000000003 R08: 00000006fd5c05df R09: 00007fa53577d260
[ 89.733285][ T6495] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 89.733291][ T6495] R13: 00007fa53577d260 R14: 0000000000000003 R15: 00007ffdfd5c05a0
[ 89.733303][ T6495]
[ 89.820603][ T6495] Disabling lock debugging due to kernel taint
[ 89.822859][ T6495] BUG: Bad page state in process syz.0.16 pfn:4be00
[ 89.825152][ T6495] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4be00
[ 89.828136][ T6495] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 89.830853][ T6495] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 89.834014][ T6495] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 89.836917][ T6495] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.839973][ T6495] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 89.842850][ T6495] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.845902][ T6495] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 89.849289][ T6495] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 89.852153][ T6495] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 89.854734][ T6495] page_owner tracks the page as allocated
[ 89.856656][ T6495] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6495, tgid 6495 (syz.0.16), ts 89599699971, free_ts 84897115361
[ 89.863163][ T6495] post_alloc_hook+0x181/0x1b0
[ 89.864824][ T6495] prep_new_page+0x16/0xb0
[ 89.866375][ T6495] get_page_from_freelist+0x135b/0x3800
[ 89.868244][ T6495] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 89.870161][ T6495] alloc_pages_mpol+0x1fb/0x550
[ 89.871793][ T6495] folio_alloc_noprof+0x20/0x2d0
[ 89.873552][ T6495] filemap_alloc_folio_noprof+0x3a1/0x470
[ 89.875423][ T6495] page_cache_ra_order+0x4c0/0xd00
[ 89.877118][ T6495] filemap_fault+0x1a5e/0x2740
[ 89.878712][ T6495] __do_fault+0x10a/0x490
[ 89.880173][ T6495] do_pte_missing+0x1a6/0x3fb0
[ 89.881763][ T6495] __handle_mm_fault+0x103d/0x2a40
[ 89.883526][ T6495] handle_mm_fault+0x3fe/0xad0
[ 89.885107][ T6495] do_user_addr_fault+0x60c/0x1370
[ 89.886806][ T6495] exc_page_fault+0x5c/0xc0
[ 89.888485][ T6495] asm_exc_page_fault+0x26/0x30
[ 89.890430][ T6495] page last free pid 6330 tgid 6330 stack trace:
[ 89.895073][ T6495] __free_frozen_pages+0x69d/0xff0
[ 89.896848][ T6495] vfree+0x176/0x960
[ 89.898170][ T6495] kcov_close+0x34/0x60
[ 89.899583][ T6495] __fput+0x3ff/0xb70
[ 89.900921][ T6495] task_work_run+0x14d/0x240
[ 89.902419][ T6495] do_exit+0xafb/0x2c30
[ 89.903946][ T6495] do_group_exit+0xd3/0x2a0
[ 89.905473][ T6495] get_signal+0x2673/0x26d0
[ 89.907002][ T6495] arch_do_signal_or_restart+0x8f/0x7d0
[ 89.908861][ T6495] syscall_exit_to_user_mode+0x150/0x2a0
[ 89.911138][ T6495] do_syscall_64+0xda/0x260
[ 89.912993][ T6495] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.914999][ T6495] Modules linked in:
[ 89.916335][ T6495] CPU: 0 UID: 0 PID: 6495 Comm: syz.0.16 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 89.916351][ T6495] Tainted: [B]=BAD_PAGE
[ 89.916354][ T6495] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 89.916360][ T6495] Call Trace:
[ 89.916364][ T6495]
[ 89.916368][ T6495] dump_stack_lvl+0x16c/0x1f0
[ 89.916382][ T6495] bad_page+0xb3/0x1f0
[ 89.916392][ T6495] ? __pfx_bad_page+0x10/0x10
[ 89.916403][ T6495] ? page_bad_reason+0x9d/0x1e0
[ 89.916413][ T6495] __free_frozen_pages+0x76e/0xff0
[ 89.916427][ T6495] ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 89.916439][ T6495] __folio_put+0x329/0x450
[ 89.916450][ T6495] ? __pfx___folio_put+0x10/0x10
[ 89.916460][ T6495] ? find_held_lock+0x2b/0x80
[ 89.916472][ T6495] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 89.916483][ T6495] ? mark_held_locks+0x49/0x80
[ 89.916498][ T6495] filemap_free_folio+0x132/0x170
[ 89.916508][ T6495] delete_from_page_cache_batch+0x741/0x9b0
[ 89.916525][ T6495] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 89.916544][ T6495] ? __pfx_workingset_update_node+0x10/0x10
[ 89.916563][ T6495] truncate_inode_pages_range+0x279/0xe30
[ 89.916593][ T6495] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 89.916631][ T6495] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 89.916652][ T6495] ? __pfx_has_bh_in_lru+0x10/0x10
[ 89.916666][ T6495] blkdev_flush_mapping+0xfb/0x290
[ 89.916678][ T6495] blkdev_put_whole+0xc4/0xf0
[ 89.916689][ T6495] bdev_release+0x47e/0x6d0
[ 89.916702][ T6495] ? __pfx_blkdev_release+0x10/0x10
[ 89.916714][ T6495] blkdev_release+0x15/0x20
[ 89.916726][ T6495] __fput+0x3ff/0xb70
[ 89.916737][ T6495] task_work_run+0x14d/0x240
[ 89.916747][ T6495] ? __pfx_task_work_run+0x10/0x10
[ 89.916757][ T6495] ? do_raw_spin_unlock+0x172/0x230
[ 89.916769][ T6495] do_exit+0xafb/0x2c30
[ 89.916783][ T6495] ? __pfx_do_exit+0x10/0x10
[ 89.916797][ T6495] ? preempt_schedule_thunk+0x16/0x30
[ 89.916808][ T6495] do_group_exit+0xd3/0x2a0
[ 89.916822][ T6495] __x64_sys_exit_group+0x3e/0x50
[ 89.916837][ T6495] x64_sys_call+0x1530/0x1730
[ 89.916851][ T6495] do_syscall_64+0xcd/0x260
[ 89.916863][ T6495] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 89.916874][ T6495] RIP: 0033:0x7fa53558e969
[ 89.916881][ T6495] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 89.916886][ T6495] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 89.916895][ T6495] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 89.916901][ T6495] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 89.916907][ T6495] RBP: 0000000000000003 R08: 00000006fd5c05df R09: 00007fa53577d260
[ 89.916913][ T6495] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 89.916918][ T6495] R13: 00007fa53577d260 R14: 0000000000000003 R15: 00007ffdfd5c05a0
[ 89.916926][ T6495]
[ 89.954338][ T6498] BUG: Bad page state in process syz.0.17 pfn:3c801
[ 89.960584][ T40] audit: type=1400 audit(1746256164.297:152): avc: denied { rename } for pid=5326 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 89.961038][ T6498] page does not match folio
[ 89.965754][ T40] audit: type=1400 audit(1746256164.297:153): avc: denied { unlink } for pid=5326 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 89.965984][ T6498] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3c801
[ 90.052863][ T6498] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 90.055555][ T6498] raw: 00fff00000000000 ffffea0000f20000 00000000ffffffff ffffffffffffffff
[ 90.058543][ T6498] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 90.061321][ T6498] page dumped because: nonzero pincount
[ 90.064924][ T6498] page_owner tracks the page as allocated
[ 90.067292][ T6498] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6497, tgid 6497 (syz.0.17), ts 89924371185, free_ts 82850627649
[ 90.075583][ T6498] post_alloc_hook+0x181/0x1b0
[ 90.077275][ T6498] prep_new_page+0x16/0xb0
[ 90.078796][ T6498] get_page_from_freelist+0x135b/0x3800
[ 90.080638][ T6498] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 90.082623][ T6498] alloc_pages_mpol+0x1fb/0x550
[ 90.084329][ T6498] folio_alloc_noprof+0x20/0x2d0
[ 90.085939][ T6498] filemap_alloc_folio_noprof+0x3a1/0x470
[ 90.087833][ T6498] page_cache_ra_order+0x4c0/0xd00
[ 90.089487][ T6498] filemap_fault+0x1a5e/0x2740
[ 90.091106][ T6498] __do_fault+0x10a/0x490
[ 90.092577][ T6498] do_pte_missing+0x1a6/0x3fb0
[ 90.094285][ T6498] __handle_mm_fault+0x103d/0x2a40
[ 90.096000][ T6498] handle_mm_fault+0x3fe/0xad0
[ 90.097646][ T6498] do_user_addr_fault+0x60c/0x1370
[ 90.099357][ T6498] exc_page_fault+0x5c/0xc0
[ 90.100882][ T6498] asm_exc_page_fault+0x26/0x30
[ 90.102501][ T6498] page last free pid 6200 tgid 6200 stack trace:
[ 90.105086][ T6498] free_unref_folios+0x999/0x1630
[ 90.107098][ T6498] folios_put_refs+0x56f/0x740
[ 90.109160][ T6498] free_pages_and_swap_cache+0x245/0x4a0
[ 90.111512][ T6498] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 90.114112][ T6498] tlb_finish_mmu+0x168/0x7b0
[ 90.116102][ T6498] vms_clear_ptes+0x55e/0x770
[ 90.118073][ T6498] vms_complete_munmap_vmas+0x1ca/0x970
[ 90.120390][ T6498] do_vmi_align_munmap+0x43b/0x7d0
[ 90.122522][ T6498] do_vmi_munmap+0x208/0x3e0
[ 90.124637][ T6498] __vm_munmap+0x19a/0x390
[ 90.126507][ T6498] __x64_sys_munmap+0x59/0x80
[ 90.128486][ T6498] do_syscall_64+0xcd/0x260
[ 90.130389][ T6498] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.132952][ T6498] Modules linked in:
[ 90.134619][ T6498] CPU: 1 UID: 0 PID: 6498 Comm: syz.0.17 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 90.134644][ T6498] Tainted: [B]=BAD_PAGE
[ 90.134650][ T6498] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 90.134659][ T6498] Call Trace:
[ 90.134665][ T6498]
[ 90.134671][ T6498] dump_stack_lvl+0x16c/0x1f0
[ 90.134691][ T6498] bad_page+0xb3/0x1f0
[ 90.134707][ T6498] ? __pfx_bad_page+0x10/0x10
[ 90.134724][ T6498] ? __mem_cgroup_uncharge+0xda/0x130
[ 90.134743][ T6498] free_tail_page_prepare+0x44f/0x5b0
[ 90.134763][ T6498] __free_frozen_pages+0x96a/0xff0
[ 90.134786][ T6498] __folio_put+0x329/0x450
[ 90.134804][ T6498] ? __pfx___folio_put+0x10/0x10
[ 90.134822][ T6498] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 90.134840][ T6498] ? rcu_is_watching+0x12/0xc0
[ 90.134858][ T6498] ? lock_release+0x201/0x2f0
[ 90.134882][ T6498] filemap_free_folio+0x132/0x170
[ 90.134899][ T6498] delete_from_page_cache_batch+0x741/0x9b0
[ 90.134919][ T6498] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 90.134937][ T6498] ? __pfx_workingset_update_node+0x10/0x10
[ 90.134953][ T6498] ? xas_move_index+0xb0/0x110
[ 90.134974][ T6498] truncate_inode_pages_range+0x279/0xe30
[ 90.134996][ T6498] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 90.135034][ T6498] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 90.135058][ T6498] ? __pfx_has_bh_in_lru+0x10/0x10
[ 90.135081][ T6498] blkdev_flush_mapping+0xfb/0x290
[ 90.135099][ T6498] ? filemap_check_errors+0xa9/0x160
[ 90.135122][ T6498] blkdev_put_whole+0xc4/0xf0
[ 90.135139][ T6498] bdev_release+0x47e/0x6d0
[ 90.135179][ T6498] ? __pfx_blkdev_release+0x10/0x10
[ 90.135197][ T6498] blkdev_release+0x15/0x20
[ 90.135214][ T6498] __fput+0x3ff/0xb70
[ 90.135230][ T6498] task_work_run+0x14d/0x240
[ 90.135243][ T6498] ? __pfx_task_work_run+0x10/0x10
[ 90.135253][ T6498] ? do_raw_spin_unlock+0x172/0x230
[ 90.135264][ T6498] do_exit+0xafb/0x2c30
[ 90.135278][ T6498] ? __pfx_try_to_wake_up+0x10/0x10
[ 90.135290][ T6498] ? futex_wake+0x432/0x4e0
[ 90.135305][ T6498] ? __pfx_do_exit+0x10/0x10
[ 90.135318][ T6498] ? do_raw_spin_lock+0x12c/0x2b0
[ 90.135328][ T6498] ? get_signal+0x8f5/0x26d0
[ 90.135339][ T6498] ? rcu_is_watching+0x12/0xc0
[ 90.135350][ T6498] do_group_exit+0xd3/0x2a0
[ 90.135365][ T6498] get_signal+0x2673/0x26d0
[ 90.135378][ T6498] ? __pfx_get_signal+0x10/0x10
[ 90.135390][ T6498] ? do_futex+0x122/0x350
[ 90.135402][ T6498] ? __pfx_do_futex+0x10/0x10
[ 90.135415][ T6498] arch_do_signal_or_restart+0x8f/0x7d0
[ 90.135430][ T6498] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 90.135445][ T6498] ? rcu_is_watching+0x12/0xc0
[ 90.135456][ T6498] syscall_exit_to_user_mode+0x150/0x2a0
[ 90.135469][ T6498] do_syscall_64+0xda/0x260
[ 90.135481][ T6498] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.135491][ T6498] RIP: 0033:0x7fa53558e969
[ 90.135499][ T6498] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 90.135503][ T6498] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 90.135513][ T6498] RAX: 0000000000000001 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 90.135519][ T6498] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa5357b5fac
[ 90.135524][ T6498] RBP: 00007fa5357b5fa0 R08: 00007fa536434000 R09: 0000000000000000
[ 90.135530][ T6498] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fa5357b5fac
[ 90.135536][ T6498] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 90.135544][ T6498]
[ 90.135559][ T6498] BUG: Bad page state in process syz.0.17 pfn:3c800
[ 90.243190][ T6498] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3c800
[ 90.245916][ T6498] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 90.248521][ T6498] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 90.251397][ T6498] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 90.254223][ T6498] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.257885][ T6498] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 90.261562][ T6498] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.265614][ T6498] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.269308][ T6498] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 90.272975][ T6498] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 90.276032][ T6498] page_owner tracks the page as allocated
[ 90.278443][ T6498] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6497, tgid 6497 (syz.0.17), ts 89924371185, free_ts 82850632771
[ 90.286937][ T6498] post_alloc_hook+0x181/0x1b0
[ 90.288987][ T6498] prep_new_page+0x16/0xb0
[ 90.290886][ T6498] get_page_from_freelist+0x135b/0x3800
[ 90.293314][ T6498] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 90.295816][ T6498] alloc_pages_mpol+0x1fb/0x550
[ 90.297901][ T6498] folio_alloc_noprof+0x20/0x2d0
[ 90.300003][ T6498] filemap_alloc_folio_noprof+0x3a1/0x470
[ 90.302406][ T6498] page_cache_ra_order+0x4c0/0xd00
[ 90.304683][ T6498] filemap_fault+0x1a5e/0x2740
[ 90.306707][ T6498] __do_fault+0x10a/0x490
[ 90.308579][ T6498] do_pte_missing+0x1a6/0x3fb0
[ 90.310660][ T6498] __handle_mm_fault+0x103d/0x2a40
[ 90.312972][ T6498] handle_mm_fault+0x3fe/0xad0
[ 90.315048][ T6498] do_user_addr_fault+0x60c/0x1370
[ 90.317193][ T6498] exc_page_fault+0x5c/0xc0
[ 90.318743][ T6498] asm_exc_page_fault+0x26/0x30
[ 90.320299][ T6498] page last free pid 6200 tgid 6200 stack trace:
[ 90.322502][ T6498] free_unref_folios+0x999/0x1630
[ 90.324727][ T6498] folios_put_refs+0x56f/0x740
[ 90.326769][ T6498] free_pages_and_swap_cache+0x245/0x4a0
[ 90.329134][ T6498] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 90.331530][ T6498] tlb_finish_mmu+0x168/0x7b0
[ 90.333436][ T6498] vms_clear_ptes+0x55e/0x770
[ 90.335507][ T6498] vms_complete_munmap_vmas+0x1ca/0x970
[ 90.337682][ T6498] do_vmi_align_munmap+0x43b/0x7d0
[ 90.339713][ T6498] do_vmi_munmap+0x208/0x3e0
[ 90.341529][ T6498] __vm_munmap+0x19a/0x390
[ 90.343357][ T6498] __x64_sys_munmap+0x59/0x80
[ 90.345244][ T6498] do_syscall_64+0xcd/0x260
[ 90.347059][ T6498] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.349415][ T6498] Modules linked in:
[ 90.350994][ T6498] CPU: 0 UID: 0 PID: 6498 Comm: syz.0.17 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 90.351011][ T6498] Tainted: [B]=BAD_PAGE
[ 90.351014][ T6498] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 90.351020][ T6498] Call Trace:
[ 90.351024][ T6498]
[ 90.351028][ T6498] dump_stack_lvl+0x16c/0x1f0
[ 90.351041][ T6498] bad_page+0xb3/0x1f0
[ 90.351052][ T6498] ? __pfx_bad_page+0x10/0x10
[ 90.351062][ T6498] ? page_bad_reason+0x9d/0x1e0
[ 90.351072][ T6498] __free_frozen_pages+0x76e/0xff0
[ 90.351087][ T6498] __folio_put+0x329/0x450
[ 90.351098][ T6498] ? __pfx___folio_put+0x10/0x10
[ 90.351109][ T6498] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 90.351120][ T6498] ? rcu_is_watching+0x12/0xc0
[ 90.351132][ T6498] ? lock_release+0x201/0x2f0
[ 90.351168][ T6498] filemap_free_folio+0x132/0x170
[ 90.351179][ T6498] delete_from_page_cache_batch+0x741/0x9b0
[ 90.351191][ T6498] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 90.351203][ T6498] ? __pfx_workingset_update_node+0x10/0x10
[ 90.351213][ T6498] ? xas_move_index+0xb0/0x110
[ 90.351226][ T6498] truncate_inode_pages_range+0x279/0xe30
[ 90.351240][ T6498] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 90.351263][ T6498] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 90.351279][ T6498] ? __pfx_has_bh_in_lru+0x10/0x10
[ 90.351293][ T6498] blkdev_flush_mapping+0xfb/0x290
[ 90.351305][ T6498] ? filemap_check_errors+0xa9/0x160
[ 90.351320][ T6498] blkdev_put_whole+0xc4/0xf0
[ 90.351330][ T6498] bdev_release+0x47e/0x6d0
[ 90.351342][ T6498] ? __pfx_blkdev_release+0x10/0x10
[ 90.351354][ T6498] blkdev_release+0x15/0x20
[ 90.351366][ T6498] __fput+0x3ff/0xb70
[ 90.351377][ T6498] task_work_run+0x14d/0x240
[ 90.351388][ T6498] ? __pfx_task_work_run+0x10/0x10
[ 90.351398][ T6498] ? do_raw_spin_unlock+0x172/0x230
[ 90.351410][ T6498] do_exit+0xafb/0x2c30
[ 90.351425][ T6498] ? __pfx_try_to_wake_up+0x10/0x10
[ 90.351437][ T6498] ? futex_wake+0x432/0x4e0
[ 90.351452][ T6498] ? __pfx_do_exit+0x10/0x10
[ 90.351466][ T6498] ? do_raw_spin_lock+0x12c/0x2b0
[ 90.351475][ T6498] ? get_signal+0x8f5/0x26d0
[ 90.351487][ T6498] ? rcu_is_watching+0x12/0xc0
[ 90.351498][ T6498] do_group_exit+0xd3/0x2a0
[ 90.351513][ T6498] get_signal+0x2673/0x26d0
[ 90.351526][ T6498] ? __pfx_get_signal+0x10/0x10
[ 90.351538][ T6498] ? do_futex+0x122/0x350
[ 90.351551][ T6498] ? __pfx_do_futex+0x10/0x10
[ 90.351564][ T6498] arch_do_signal_or_restart+0x8f/0x7d0
[ 90.351579][ T6498] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 90.351594][ T6498] ? rcu_is_watching+0x12/0xc0
[ 90.351605][ T6498] syscall_exit_to_user_mode+0x150/0x2a0
[ 90.351618][ T6498] do_syscall_64+0xda/0x260
[ 90.351630][ T6498] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.351639][ T6498] RIP: 0033:0x7fa53558e969
[ 90.351647][ T6498] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 90.351655][ T6498] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 90.351665][ T6498] RAX: 0000000000000001 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 90.351671][ T6498] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa5357b5fac
[ 90.351676][ T6498] RBP: 00007fa5357b5fa0 R08: 00007fa536434000 R09: 0000000000000000
[ 90.351682][ T6498] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fa5357b5fac
[ 90.351688][ T6498] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 90.351696][ T6498]
[ 90.395645][ T6500] BUG: Bad page state in process syz.0.18 pfn:4c601
[ 90.481406][ T6500] page does not match folio
[ 90.482791][ T6500] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x4c601
[ 90.485725][ T6500] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 90.487854][ T6500] raw: 00fff00000000000 ffffea0001318000 00000000ffffffff ffffffffffffffff
[ 90.490365][ T6500] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 90.494485][ T6500] page dumped because: nonzero pincount
[ 90.496552][ T6500] page_owner tracks the page as allocated
[ 90.498253][ T6500] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6499, tgid 6499 (syz.0.18), ts 90359963305, free_ts 89916958820
[ 90.505419][ T6500] post_alloc_hook+0x181/0x1b0
[ 90.507279][ T6500] prep_new_page+0x16/0xb0
[ 90.508694][ T6500] get_page_from_freelist+0x135b/0x3800
[ 90.510410][ T6500] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 90.512264][ T6500] alloc_pages_mpol+0x1fb/0x550
[ 90.513980][ T6500] folio_alloc_noprof+0x20/0x2d0
[ 90.515547][ T6500] filemap_alloc_folio_noprof+0x3a1/0x470
[ 90.517312][ T6500] page_cache_ra_order+0x4c0/0xd00
[ 90.518898][ T6500] filemap_fault+0x1a5e/0x2740
[ 90.520406][ T6500] __do_fault+0x10a/0x490
[ 90.521779][ T6500] do_pte_missing+0x1a6/0x3fb0
[ 90.523458][ T6500] __handle_mm_fault+0x103d/0x2a40
[ 90.525119][ T6500] handle_mm_fault+0x3fe/0xad0
[ 90.527021][ T6500] do_user_addr_fault+0x60c/0x1370
[ 90.528937][ T6500] exc_page_fault+0x5c/0xc0
[ 90.530717][ T6500] asm_exc_page_fault+0x26/0x30
[ 90.532650][ T6500] page last free pid 6495 tgid 6495 stack trace:
[ 90.534933][ T6500] free_unref_folios+0x999/0x1630
[ 90.536549][ T6500] folios_put_refs+0x56f/0x740
[ 90.538073][ T6500] truncate_inode_pages_range+0x311/0xe30
[ 90.540052][ T6500] blkdev_flush_mapping+0xfb/0x290
[ 90.542004][ T6500] blkdev_put_whole+0xc4/0xf0
[ 90.543647][ T6500] bdev_release+0x47e/0x6d0
[ 90.545070][ T6500] blkdev_release+0x15/0x20
[ 90.546489][ T6500] __fput+0x3ff/0xb70
[ 90.547755][ T6500] task_work_run+0x14d/0x240
[ 90.549201][ T6500] do_exit+0xafb/0x2c30
[ 90.550519][ T6500] do_group_exit+0xd3/0x2a0
[ 90.551953][ T6500] __x64_sys_exit_group+0x3e/0x50
[ 90.553768][ T6500] x64_sys_call+0x1530/0x1730
[ 90.555427][ T6500] do_syscall_64+0xcd/0x260
[ 90.557006][ T6500] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.558857][ T6500] Modules linked in:
[ 90.560145][ T6500] CPU: 1 UID: 0 PID: 6500 Comm: syz.0.18 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 90.560160][ T6500] Tainted: [B]=BAD_PAGE
[ 90.560164][ T6500] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 90.560170][ T6500] Call Trace:
[ 90.560174][ T6500]
[ 90.560179][ T6500] dump_stack_lvl+0x16c/0x1f0
[ 90.560198][ T6500] bad_page+0xb3/0x1f0
[ 90.560214][ T6500] ? __pfx_bad_page+0x10/0x10
[ 90.560228][ T6500] ? __mem_cgroup_uncharge+0xda/0x130
[ 90.560240][ T6500] free_tail_page_prepare+0x44f/0x5b0
[ 90.560253][ T6500] __free_frozen_pages+0x96a/0xff0
[ 90.560268][ T6500] __folio_put+0x329/0x450
[ 90.560282][ T6500] ? __pfx___folio_put+0x10/0x10
[ 90.560298][ T6500] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 90.560315][ T6500] ? rcu_is_watching+0x12/0xc0
[ 90.560332][ T6500] ? lock_release+0x201/0x2f0
[ 90.560348][ T6500] filemap_free_folio+0x132/0x170
[ 90.560358][ T6500] delete_from_page_cache_batch+0x741/0x9b0
[ 90.560377][ T6500] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 90.560394][ T6500] ? __pfx_workingset_update_node+0x10/0x10
[ 90.560410][ T6500] ? xas_move_index+0xb0/0x110
[ 90.560428][ T6500] truncate_inode_pages_range+0x279/0xe30
[ 90.560449][ T6500] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 90.560473][ T6500] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 90.560496][ T6500] ? __pfx_has_bh_in_lru+0x10/0x10
[ 90.560517][ T6500] blkdev_flush_mapping+0xfb/0x290
[ 90.560534][ T6500] ? filemap_check_errors+0xa9/0x160
[ 90.560554][ T6500] blkdev_put_whole+0xc4/0xf0
[ 90.560566][ T6500] bdev_release+0x47e/0x6d0
[ 90.560584][ T6500] ? __pfx_blkdev_release+0x10/0x10
[ 90.560602][ T6500] blkdev_release+0x15/0x20
[ 90.560618][ T6500] __fput+0x3ff/0xb70
[ 90.560636][ T6500] task_work_run+0x14d/0x240
[ 90.560652][ T6500] ? __pfx_task_work_run+0x10/0x10
[ 90.560664][ T6500] ? do_raw_spin_unlock+0x172/0x230
[ 90.560679][ T6500] do_exit+0xafb/0x2c30
[ 90.560699][ T6500] ? __pfx_futex_wake_mark+0x10/0x10
[ 90.560722][ T6500] ? __pfx_do_exit+0x10/0x10
[ 90.560741][ T6500] ? do_raw_spin_lock+0x12c/0x2b0
[ 90.560756][ T6500] ? get_signal+0x8f5/0x26d0
[ 90.560769][ T6500] ? rcu_is_watching+0x12/0xc0
[ 90.560785][ T6500] do_group_exit+0xd3/0x2a0
[ 90.560806][ T6500] get_signal+0x2673/0x26d0
[ 90.560826][ T6500] ? __pfx_get_signal+0x10/0x10
[ 90.560843][ T6500] ? do_futex+0x122/0x350
[ 90.560861][ T6500] ? __pfx_do_futex+0x10/0x10
[ 90.560876][ T6500] arch_do_signal_or_restart+0x8f/0x7d0
[ 90.560896][ T6500] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 90.560918][ T6500] ? madvise_unlock+0xc6/0x190
[ 90.560935][ T6500] syscall_exit_to_user_mode+0x150/0x2a0
[ 90.560953][ T6500] do_syscall_64+0xda/0x260
[ 90.560966][ T6500] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.560981][ T6500] RIP: 0033:0x7fa53558e969
[ 90.560992][ T6500] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 90.560998][ T6500] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 90.561012][ T6500] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 90.561022][ T6500] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 90.561031][ T6500] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 90.561039][ T6500] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 90.561048][ T6500] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 90.561058][ T6500]
[ 90.561081][ T6500] BUG: Bad page state in process syz.0.18 pfn:4c600
[ 90.582912][ T5959] Bluetooth: hci0: command tx timeout
[ 90.584230][ T6500] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4c600
[ 90.679294][ T6500] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 90.682552][ T6500] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 90.685978][ T6500] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 90.688970][ T6500] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.691653][ T6500] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 90.694679][ T6500] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.697580][ T6500] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 90.700298][ T6500] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 90.704725][ T6500] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 90.707024][ T6500] page_owner tracks the page as allocated
[ 90.709104][ T6500] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6499, tgid 6499 (syz.0.18), ts 90359963305, free_ts 89916958820
[ 90.716011][ T6500] post_alloc_hook+0x181/0x1b0
[ 90.717659][ T6500] prep_new_page+0x16/0xb0
[ 90.719155][ T6500] get_page_from_freelist+0x135b/0x3800
[ 90.720934][ T6500] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 90.722923][ T6500] alloc_pages_mpol+0x1fb/0x550
[ 90.724699][ T6500] folio_alloc_noprof+0x20/0x2d0
[ 90.726253][ T6500] filemap_alloc_folio_noprof+0x3a1/0x470
[ 90.728341][ T6500] page_cache_ra_order+0x4c0/0xd00
[ 90.730109][ T6500] filemap_fault+0x1a5e/0x2740
[ 90.731640][ T6500] __do_fault+0x10a/0x490
[ 90.733164][ T6500] do_pte_missing+0x1a6/0x3fb0
[ 90.735025][ T6500] __handle_mm_fault+0x103d/0x2a40
[ 90.736845][ T6500] handle_mm_fault+0x3fe/0xad0
[ 90.738393][ T6500] do_user_addr_fault+0x60c/0x1370
[ 90.740036][ T6500] exc_page_fault+0x5c/0xc0
[ 90.741475][ T6500] asm_exc_page_fault+0x26/0x30
[ 90.743105][ T6500] page last free pid 6495 tgid 6495 stack trace:
[ 90.745294][ T6500] free_unref_folios+0x999/0x1630
[ 90.746920][ T6500] folios_put_refs+0x56f/0x740
[ 90.748647][ T6500] truncate_inode_pages_range+0x311/0xe30
[ 90.750519][ T6500] blkdev_flush_mapping+0xfb/0x290
[ 90.752156][ T6500] blkdev_put_whole+0xc4/0xf0
[ 90.753778][ T6500] bdev_release+0x47e/0x6d0
[ 90.755707][ T6500] blkdev_release+0x15/0x20
[ 90.757281][ T6500] __fput+0x3ff/0xb70
[ 90.758594][ T6500] task_work_run+0x14d/0x240
[ 90.760048][ T6500] do_exit+0xafb/0x2c30
[ 90.761374][ T6500] do_group_exit+0xd3/0x2a0
[ 90.762877][ T6500] __x64_sys_exit_group+0x3e/0x50
[ 90.764532][ T6500] x64_sys_call+0x1530/0x1730
[ 90.766008][ T6500] do_syscall_64+0xcd/0x260
[ 90.767462][ T6500] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.769614][ T6500] Modules linked in:
[ 90.770850][ T6500] CPU: 0 UID: 0 PID: 6500 Comm: syz.0.18 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 90.770866][ T6500] Tainted: [B]=BAD_PAGE
[ 90.770869][ T6500] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 90.770875][ T6500] Call Trace:
[ 90.770879][ T6500]
[ 90.770883][ T6500] dump_stack_lvl+0x16c/0x1f0
[ 90.770897][ T6500] bad_page+0xb3/0x1f0
[ 90.770908][ T6500] ? __pfx_bad_page+0x10/0x10
[ 90.770918][ T6500] ? page_bad_reason+0x9d/0x1e0
[ 90.770929][ T6500] __free_frozen_pages+0x76e/0xff0
[ 90.770944][ T6500] __folio_put+0x329/0x450
[ 90.770955][ T6500] ? __pfx___folio_put+0x10/0x10
[ 90.770965][ T6500] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 90.770977][ T6500] ? rcu_is_watching+0x12/0xc0
[ 90.770989][ T6500] ? lock_release+0x201/0x2f0
[ 90.771004][ T6500] filemap_free_folio+0x132/0x170
[ 90.771014][ T6500] delete_from_page_cache_batch+0x741/0x9b0
[ 90.771026][ T6500] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 90.771038][ T6500] ? __pfx_workingset_update_node+0x10/0x10
[ 90.771048][ T6500] ? xas_move_index+0xb0/0x110
[ 90.771061][ T6500] truncate_inode_pages_range+0x279/0xe30
[ 90.771075][ T6500] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 90.771098][ T6500] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 90.771113][ T6500] ? __pfx_has_bh_in_lru+0x10/0x10
[ 90.771128][ T6500] blkdev_flush_mapping+0xfb/0x290
[ 90.771159][ T6500] ? filemap_check_errors+0xa9/0x160
[ 90.771180][ T6500] blkdev_put_whole+0xc4/0xf0
[ 90.771194][ T6500] bdev_release+0x47e/0x6d0
[ 90.771206][ T6500] ? __pfx_blkdev_release+0x10/0x10
[ 90.771218][ T6500] blkdev_release+0x15/0x20
[ 90.771230][ T6500] __fput+0x3ff/0xb70
[ 90.771242][ T6500] task_work_run+0x14d/0x240
[ 90.771252][ T6500] ? __pfx_task_work_run+0x10/0x10
[ 90.771262][ T6500] ? do_raw_spin_unlock+0x172/0x230
[ 90.771273][ T6500] do_exit+0xafb/0x2c30
[ 90.771288][ T6500] ? __pfx_futex_wake_mark+0x10/0x10
[ 90.771304][ T6500] ? __pfx_do_exit+0x10/0x10
[ 90.771317][ T6500] ? do_raw_spin_lock+0x12c/0x2b0
[ 90.771327][ T6500] ? get_signal+0x8f5/0x26d0
[ 90.771338][ T6500] ? rcu_is_watching+0x12/0xc0
[ 90.771350][ T6500] do_group_exit+0xd3/0x2a0
[ 90.771364][ T6500] get_signal+0x2673/0x26d0
[ 90.771382][ T6500] ? __pfx_get_signal+0x10/0x10
[ 90.771393][ T6500] ? do_futex+0x122/0x350
[ 90.771406][ T6500] ? __pfx_do_futex+0x10/0x10
[ 90.771419][ T6500] arch_do_signal_or_restart+0x8f/0x7d0
[ 90.771434][ T6500] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 90.771449][ T6500] ? madvise_unlock+0xc6/0x190
[ 90.771460][ T6500] syscall_exit_to_user_mode+0x150/0x2a0
[ 90.771474][ T6500] do_syscall_64+0xda/0x260
[ 90.771486][ T6500] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.771496][ T6500] RIP: 0033:0x7fa53558e969
[ 90.771504][ T6500] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 90.771508][ T6500] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 90.771518][ T6500] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 90.771524][ T6500] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 90.771530][ T6500] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 90.771535][ T6500] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 90.771541][ T6500] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 90.771549][ T6500]
[ 90.814910][ T6501] BUG: Bad page state in process syz.0.19 pfn:3ca01
[ 90.901998][ T6501] page does not match folio
[ 90.904390][ T6501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3ca01
[ 90.908295][ T6501] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 90.911195][ T6501] raw: 00fff00000000000 ffffea0000f28000 00000000ffffffff ffffffffffffffff
[ 90.914614][ T6501] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 90.917926][ T6501] page dumped because: nonzero pincount
[ 90.920074][ T6501] page_owner tracks the page as allocated
[ 90.922303][ T6501] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6501, tgid 6501 (syz.0.19), ts 90780849143, free_ts 90351728554
[ 90.930290][ T6501] post_alloc_hook+0x181/0x1b0
[ 90.932252][ T6501] prep_new_page+0x16/0xb0
[ 90.934112][ T6501] get_page_from_freelist+0x135b/0x3800
[ 90.936325][ T6501] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 90.938665][ T6501] alloc_pages_mpol+0x1fb/0x550
[ 90.940593][ T6501] folio_alloc_noprof+0x20/0x2d0
[ 90.942562][ T6501] filemap_alloc_folio_noprof+0x3a1/0x470
[ 90.944895][ T6501] page_cache_ra_order+0x4c0/0xd00
[ 90.946922][ T6501] filemap_fault+0x1a5e/0x2740
[ 90.948816][ T6501] __do_fault+0x10a/0x490
[ 90.950584][ T6501] do_pte_missing+0x1a6/0x3fb0
[ 90.952485][ T6501] __handle_mm_fault+0x103d/0x2a40
[ 90.954609][ T6501] handle_mm_fault+0x3fe/0xad0
[ 90.956603][ T6501] do_user_addr_fault+0x60c/0x1370
[ 90.958635][ T6501] exc_page_fault+0x5c/0xc0
[ 90.960430][ T6501] asm_exc_page_fault+0x26/0x30
[ 90.962334][ T6501] page last free pid 6498 tgid 6497 stack trace:
[ 90.964924][ T6501] free_unref_folios+0x999/0x1630
[ 90.966901][ T6501] folios_put_refs+0x56f/0x740
[ 90.968787][ T6501] truncate_inode_pages_range+0x311/0xe30
[ 90.970999][ T6501] blkdev_flush_mapping+0xfb/0x290
[ 90.973139][ T6501] blkdev_put_whole+0xc4/0xf0
[ 90.975084][ T6501] bdev_release+0x47e/0x6d0
[ 90.976940][ T6501] blkdev_release+0x15/0x20
[ 90.978726][ T6501] __fput+0x3ff/0xb70
[ 90.980312][ T6501] task_work_run+0x14d/0x240
[ 90.982151][ T6501] do_exit+0xafb/0x2c30
[ 90.983914][ T6501] do_group_exit+0xd3/0x2a0
[ 90.985737][ T6501] get_signal+0x2673/0x26d0
[ 90.987561][ T6501] arch_do_signal_or_restart+0x8f/0x7d0
[ 90.989738][ T6501] syscall_exit_to_user_mode+0x150/0x2a0
[ 90.991931][ T6501] do_syscall_64+0xda/0x260
[ 90.993829][ T6501] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.996161][ T6501] Modules linked in:
[ 90.997703][ T6501] CPU: 3 UID: 0 PID: 6501 Comm: syz.0.19 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 90.997720][ T6501] Tainted: [B]=BAD_PAGE
[ 90.997723][ T6501] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 90.997729][ T6501] Call Trace:
[ 90.997733][ T6501]
[ 90.997737][ T6501] dump_stack_lvl+0x16c/0x1f0
[ 90.997750][ T6501] bad_page+0xb3/0x1f0
[ 90.997761][ T6501] ? __pfx_bad_page+0x10/0x10
[ 90.997771][ T6501] ? __mem_cgroup_uncharge+0xda/0x130
[ 90.997784][ T6501] free_tail_page_prepare+0x44f/0x5b0
[ 90.997797][ T6501] __free_frozen_pages+0x96a/0xff0
[ 90.997812][ T6501] __folio_put+0x329/0x450
[ 90.997822][ T6501] ? __pfx___folio_put+0x10/0x10
[ 90.997833][ T6501] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 90.997844][ T6501] ? rcu_is_watching+0x12/0xc0
[ 90.997855][ T6501] ? lock_release+0x201/0x2f0
[ 90.997870][ T6501] filemap_free_folio+0x132/0x170
[ 90.997881][ T6501] delete_from_page_cache_batch+0x741/0x9b0
[ 90.997893][ T6501] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 90.997905][ T6501] ? __pfx_workingset_update_node+0x10/0x10
[ 90.997915][ T6501] ? xas_move_index+0xb0/0x110
[ 90.997928][ T6501] truncate_inode_pages_range+0x279/0xe30
[ 90.997942][ T6501] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 90.997965][ T6501] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 90.997981][ T6501] ? __pfx_has_bh_in_lru+0x10/0x10
[ 90.997996][ T6501] blkdev_flush_mapping+0xfb/0x290
[ 90.998008][ T6501] blkdev_put_whole+0xc4/0xf0
[ 90.998019][ T6501] bdev_release+0x47e/0x6d0
[ 90.998031][ T6501] ? __pfx_blkdev_release+0x10/0x10
[ 90.998043][ T6501] blkdev_release+0x15/0x20
[ 90.998055][ T6501] __fput+0x3ff/0xb70
[ 90.998067][ T6501] task_work_run+0x14d/0x240
[ 90.998077][ T6501] ? __pfx_task_work_run+0x10/0x10
[ 90.998087][ T6501] ? do_raw_spin_unlock+0x172/0x230
[ 90.998098][ T6501] do_exit+0xafb/0x2c30
[ 90.998113][ T6501] ? __pfx_do_exit+0x10/0x10
[ 90.998127][ T6501] ? preempt_schedule_thunk+0x16/0x30
[ 90.998138][ T6501] do_group_exit+0xd3/0x2a0
[ 90.998153][ T6501] __x64_sys_exit_group+0x3e/0x50
[ 90.998168][ T6501] x64_sys_call+0x1530/0x1730
[ 90.998181][ T6501] do_syscall_64+0xcd/0x260
[ 90.998193][ T6501] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 90.998203][ T6501] RIP: 0033:0x7fa53558e969
[ 90.998210][ T6501] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 90.998215][ T6501] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 90.998224][ T6501] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 90.998230][ T6501] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 90.998235][ T6501] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 90.998241][ T6501] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000003
[ 90.998247][ T6501] R13: 00000000000927c0 R14: 0000000000016084 R15: 00007ffdfd5c05a0
[ 90.998255][ T6501]
[ 90.998270][ T6501] BUG: Bad page state in process syz.0.19 pfn:3ca00
[ 91.106369][ T6501] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3ca00
[ 91.109055][ T6501] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 91.111652][ T6501] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 91.114644][ T6501] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 91.117302][ T6501] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.119945][ T6501] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 91.122594][ T6501] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.125349][ T6501] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.128002][ T6501] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 91.130643][ T6501] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 91.133089][ T6501] page_owner tracks the page as allocated
[ 91.134870][ T6501] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6501, tgid 6501 (syz.0.19), ts 90780849143, free_ts 90351728554
[ 91.140968][ T6501] post_alloc_hook+0x181/0x1b0
[ 91.142467][ T6501] prep_new_page+0x16/0xb0
[ 91.143949][ T6501] get_page_from_freelist+0x135b/0x3800
[ 91.145664][ T6501] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 91.147507][ T6501] alloc_pages_mpol+0x1fb/0x550
[ 91.149016][ T6501] folio_alloc_noprof+0x20/0x2d0
[ 91.150556][ T6501] filemap_alloc_folio_noprof+0x3a1/0x470
[ 91.152329][ T6501] page_cache_ra_order+0x4c0/0xd00
[ 91.153998][ T6501] filemap_fault+0x1a5e/0x2740
[ 91.155501][ T6501] __do_fault+0x10a/0x490
[ 91.156852][ T6501] do_pte_missing+0x1a6/0x3fb0
[ 91.158344][ T6501] __handle_mm_fault+0x103d/0x2a40
[ 91.159975][ T6501] handle_mm_fault+0x3fe/0xad0
[ 91.161471][ T6501] do_user_addr_fault+0x60c/0x1370
[ 91.163165][ T6501] exc_page_fault+0x5c/0xc0
[ 91.164627][ T6501] asm_exc_page_fault+0x26/0x30
[ 91.166156][ T6501] page last free pid 6498 tgid 6497 stack trace:
[ 91.168124][ T6501] free_unref_folios+0x999/0x1630
[ 91.169706][ T6501] folios_put_refs+0x56f/0x740
[ 91.171204][ T6501] truncate_inode_pages_range+0x311/0xe30
[ 91.173018][ T6501] blkdev_flush_mapping+0xfb/0x290
[ 91.174629][ T6501] blkdev_put_whole+0xc4/0xf0
[ 91.176110][ T6501] bdev_release+0x47e/0x6d0
[ 91.177535][ T6501] blkdev_release+0x15/0x20
[ 91.178968][ T6501] __fput+0x3ff/0xb70
[ 91.180230][ T6501] task_work_run+0x14d/0x240
[ 91.181691][ T6501] do_exit+0xafb/0x2c30
[ 91.183227][ T6501] do_group_exit+0xd3/0x2a0
[ 91.184678][ T6501] get_signal+0x2673/0x26d0
[ 91.186097][ T6501] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.187824][ T6501] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.189575][ T6501] do_syscall_64+0xda/0x260
[ 91.190989][ T6501] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.192957][ T6501] Modules linked in:
[ 91.194291][ T6501] CPU: 2 UID: 0 PID: 6501 Comm: syz.0.19 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 91.194307][ T6501] Tainted: [B]=BAD_PAGE
[ 91.194312][ T6501] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 91.194318][ T6501] Call Trace:
[ 91.194322][ T6501]
[ 91.194326][ T6501] dump_stack_lvl+0x16c/0x1f0
[ 91.194340][ T6501] bad_page+0xb3/0x1f0
[ 91.194351][ T6501] ? __pfx_bad_page+0x10/0x10
[ 91.194362][ T6501] ? page_bad_reason+0x9d/0x1e0
[ 91.194372][ T6501] __free_frozen_pages+0x76e/0xff0
[ 91.194388][ T6501] __folio_put+0x329/0x450
[ 91.194399][ T6501] ? __pfx___folio_put+0x10/0x10
[ 91.194410][ T6501] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 91.194421][ T6501] ? rcu_is_watching+0x12/0xc0
[ 91.194432][ T6501] ? lock_release+0x201/0x2f0
[ 91.194448][ T6501] filemap_free_folio+0x132/0x170
[ 91.194458][ T6501] delete_from_page_cache_batch+0x741/0x9b0
[ 91.194470][ T6501] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 91.194482][ T6501] ? __pfx_workingset_update_node+0x10/0x10
[ 91.194493][ T6501] ? xas_move_index+0xb0/0x110
[ 91.194505][ T6501] truncate_inode_pages_range+0x279/0xe30
[ 91.194522][ T6501] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 91.194544][ T6501] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 91.194564][ T6501] ? __pfx_has_bh_in_lru+0x10/0x10
[ 91.194579][ T6501] blkdev_flush_mapping+0xfb/0x290
[ 91.194591][ T6501] blkdev_put_whole+0xc4/0xf0
[ 91.194602][ T6501] bdev_release+0x47e/0x6d0
[ 91.194615][ T6501] ? __pfx_blkdev_release+0x10/0x10
[ 91.194627][ T6501] blkdev_release+0x15/0x20
[ 91.194639][ T6501] __fput+0x3ff/0xb70
[ 91.194650][ T6501] task_work_run+0x14d/0x240
[ 91.194661][ T6501] ? __pfx_task_work_run+0x10/0x10
[ 91.194671][ T6501] ? do_raw_spin_unlock+0x172/0x230
[ 91.194682][ T6501] do_exit+0xafb/0x2c30
[ 91.194697][ T6501] ? __pfx_do_exit+0x10/0x10
[ 91.194710][ T6501] ? preempt_schedule_thunk+0x16/0x30
[ 91.194721][ T6501] do_group_exit+0xd3/0x2a0
[ 91.194735][ T6501] __x64_sys_exit_group+0x3e/0x50
[ 91.194750][ T6501] x64_sys_call+0x1530/0x1730
[ 91.194764][ T6501] do_syscall_64+0xcd/0x260
[ 91.194776][ T6501] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.194786][ T6501] RIP: 0033:0x7fa53558e969
[ 91.194793][ T6501] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 91.194798][ T6501] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 91.194807][ T6501] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 91.194813][ T6501] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 91.194819][ T6501] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 91.194825][ T6501] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000003
[ 91.194830][ T6501] R13: 00000000000927c0 R14: 0000000000016084 R15: 00007ffdfd5c05a0
[ 91.194838][ T6501]
[ 91.357020][ T6508] BUG: Bad page state in process syz.0.21 pfn:3b001
[ 91.359203][ T6508] page does not match folio
[ 91.360695][ T6508] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3b001
[ 91.366270][ T6508] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 91.368926][ T6508] raw: 00fff00000000000 ffffea0000ec0000 00000000ffffffff ffffffffffffffff
[ 91.371678][ T6508] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 91.376288][ T6508] page dumped because: nonzero pincount
[ 91.378089][ T6508] page_owner tracks the page as allocated
[ 91.379904][ T6508] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6507, tgid 6507 (syz.0.21), ts 91328261402, free_ts 90771589412
[ 91.386319][ T6508] post_alloc_hook+0x181/0x1b0
[ 91.387887][ T6508] prep_new_page+0x16/0xb0
[ 91.389274][ T6508] get_page_from_freelist+0x135b/0x3800
[ 91.391490][ T6508] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 91.394368][ T6508] alloc_pages_mpol+0x1fb/0x550
[ 91.396300][ T6508] folio_alloc_noprof+0x20/0x2d0
[ 91.398247][ T6508] filemap_alloc_folio_noprof+0x3a1/0x470
[ 91.400483][ T6508] page_cache_ra_order+0x4c0/0xd00
[ 91.402485][ T6508] filemap_fault+0x1a5e/0x2740
[ 91.404460][ T6508] __do_fault+0x10a/0x490
[ 91.406170][ T6508] do_pte_missing+0x1a6/0x3fb0
[ 91.408075][ T6508] __handle_mm_fault+0x103d/0x2a40
[ 91.410122][ T6508] handle_mm_fault+0x3fe/0xad0
[ 91.412013][ T6508] do_user_addr_fault+0x60c/0x1370
[ 91.414097][ T6508] exc_page_fault+0x5c/0xc0
[ 91.415894][ T6508] asm_exc_page_fault+0x26/0x30
[ 91.417804][ T6508] page last free pid 6500 tgid 6499 stack trace:
[ 91.420278][ T6508] free_unref_folios+0x999/0x1630
[ 91.422262][ T6508] folios_put_refs+0x56f/0x740
[ 91.424273][ T6508] truncate_inode_pages_range+0x311/0xe30
[ 91.426496][ T6508] blkdev_flush_mapping+0xfb/0x290
[ 91.428515][ T6508] blkdev_put_whole+0xc4/0xf0
[ 91.430358][ T6508] bdev_release+0x47e/0x6d0
[ 91.432152][ T6508] blkdev_release+0x15/0x20
[ 91.434344][ T6508] __fput+0x3ff/0xb70
[ 91.435956][ T6508] task_work_run+0x14d/0x240
[ 91.437781][ T6508] do_exit+0xafb/0x2c30
[ 91.439434][ T6508] do_group_exit+0xd3/0x2a0
[ 91.441268][ T6508] get_signal+0x2673/0x26d0
[ 91.443126][ T6508] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.445349][ T6508] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.447577][ T6508] do_syscall_64+0xda/0x260
[ 91.449364][ T6508] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.451738][ T6508] Modules linked in:
[ 91.453420][ T6508] CPU: 0 UID: 0 PID: 6508 Comm: syz.0.21 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 91.453436][ T6508] Tainted: [B]=BAD_PAGE
[ 91.453440][ T6508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 91.453446][ T6508] Call Trace:
[ 91.453449][ T6508]
[ 91.453452][ T6508] dump_stack_lvl+0x16c/0x1f0
[ 91.453466][ T6508] bad_page+0xb3/0x1f0
[ 91.453477][ T6508] ? __pfx_bad_page+0x10/0x10
[ 91.453487][ T6508] ? __mem_cgroup_uncharge+0xda/0x130
[ 91.453500][ T6508] free_tail_page_prepare+0x44f/0x5b0
[ 91.453513][ T6508] __free_frozen_pages+0x96a/0xff0
[ 91.453528][ T6508] __folio_put+0x329/0x450
[ 91.453539][ T6508] ? __pfx___folio_put+0x10/0x10
[ 91.453549][ T6508] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 91.453560][ T6508] ? rcu_is_watching+0x12/0xc0
[ 91.453572][ T6508] ? lock_release+0x201/0x2f0
[ 91.453587][ T6508] filemap_free_folio+0x132/0x170
[ 91.453597][ T6508] delete_from_page_cache_batch+0x741/0x9b0
[ 91.453609][ T6508] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 91.453621][ T6508] ? __pfx_workingset_update_node+0x10/0x10
[ 91.453633][ T6508] ? xas_move_index+0xb0/0x110
[ 91.453645][ T6508] truncate_inode_pages_range+0x279/0xe30
[ 91.453660][ T6508] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 91.453682][ T6508] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 91.453698][ T6508] ? __pfx_has_bh_in_lru+0x10/0x10
[ 91.453712][ T6508] blkdev_flush_mapping+0xfb/0x290
[ 91.453724][ T6508] ? filemap_check_errors+0xa9/0x160
[ 91.453738][ T6508] blkdev_put_whole+0xc4/0xf0
[ 91.453749][ T6508] bdev_release+0x47e/0x6d0
[ 91.453761][ T6508] ? __pfx_blkdev_release+0x10/0x10
[ 91.453773][ T6508] blkdev_release+0x15/0x20
[ 91.453784][ T6508] __fput+0x3ff/0xb70
[ 91.453795][ T6508] task_work_run+0x14d/0x240
[ 91.453806][ T6508] ? __pfx_task_work_run+0x10/0x10
[ 91.453816][ T6508] ? do_raw_spin_unlock+0x172/0x230
[ 91.453827][ T6508] do_exit+0xafb/0x2c30
[ 91.453841][ T6508] ? __pfx_futex_wake_mark+0x10/0x10
[ 91.453857][ T6508] ? __pfx_do_exit+0x10/0x10
[ 91.453870][ T6508] ? do_raw_spin_lock+0x12c/0x2b0
[ 91.453880][ T6508] ? get_signal+0x8f5/0x26d0
[ 91.453891][ T6508] ? rcu_is_watching+0x12/0xc0
[ 91.453902][ T6508] do_group_exit+0xd3/0x2a0
[ 91.453917][ T6508] get_signal+0x2673/0x26d0
[ 91.453930][ T6508] ? __pfx_get_signal+0x10/0x10
[ 91.453941][ T6508] ? do_futex+0x122/0x350
[ 91.453954][ T6508] ? __pfx_do_futex+0x10/0x10
[ 91.453967][ T6508] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.453982][ T6508] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 91.453997][ T6508] ? madvise_unlock+0xc6/0x190
[ 91.454009][ T6508] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.454021][ T6508] do_syscall_64+0xda/0x260
[ 91.454033][ T6508] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.454043][ T6508] RIP: 0033:0x7fa53558e969
[ 91.454051][ T6508] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 91.454055][ T6508] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 91.454064][ T6508] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 91.454071][ T6508] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 91.454076][ T6508] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 91.454082][ T6508] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 91.454088][ T6508] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 91.454096][ T6508]
[ 91.454109][ T6508] BUG: Bad page state in process syz.0.21 pfn:3b000
[ 91.574914][ T6508] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3b000
[ 91.577720][ T6508] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 91.581043][ T6508] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 91.585488][ T6508] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 91.589148][ T6508] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.593114][ T6508] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 91.597011][ T6508] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.600693][ T6508] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 91.604655][ T6508] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 91.608390][ T6508] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 91.611467][ T6508] page_owner tracks the page as allocated
[ 91.614392][ T6508] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6507, tgid 6507 (syz.0.21), ts 91328261402, free_ts 90771589412
[ 91.622993][ T6508] post_alloc_hook+0x181/0x1b0
[ 91.625005][ T6508] prep_new_page+0x16/0xb0
[ 91.626444][ T6508] get_page_from_freelist+0x135b/0x3800
[ 91.628250][ T6508] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 91.630724][ T6508] alloc_pages_mpol+0x1fb/0x550
[ 91.632929][ T6508] folio_alloc_noprof+0x20/0x2d0
[ 91.635104][ T6508] filemap_alloc_folio_noprof+0x3a1/0x470
[ 91.637556][ T6508] page_cache_ra_order+0x4c0/0xd00
[ 91.639697][ T6508] filemap_fault+0x1a5e/0x2740
[ 91.641782][ T6508] __do_fault+0x10a/0x490
[ 91.643731][ T6508] do_pte_missing+0x1a6/0x3fb0
[ 91.645689][ T6508] __handle_mm_fault+0x103d/0x2a40
[ 91.647754][ T6508] handle_mm_fault+0x3fe/0xad0
[ 91.649717][ T6508] do_user_addr_fault+0x60c/0x1370
[ 91.651783][ T6508] exc_page_fault+0x5c/0xc0
[ 91.653684][ T6508] asm_exc_page_fault+0x26/0x30
[ 91.655666][ T6508] page last free pid 6500 tgid 6499 stack trace:
[ 91.658206][ T6508] free_unref_folios+0x999/0x1630
[ 91.660286][ T6508] folios_put_refs+0x56f/0x740
[ 91.662236][ T6508] truncate_inode_pages_range+0x311/0xe30
[ 91.664621][ T6508] blkdev_flush_mapping+0xfb/0x290
[ 91.666601][ T6508] blkdev_put_whole+0xc4/0xf0
[ 91.668465][ T6508] bdev_release+0x47e/0x6d0
[ 91.670308][ T6508] blkdev_release+0x15/0x20
[ 91.672101][ T6508] __fput+0x3ff/0xb70
[ 91.673855][ T6508] task_work_run+0x14d/0x240
[ 91.675711][ T6508] do_exit+0xafb/0x2c30
[ 91.677266][ T6508] do_group_exit+0xd3/0x2a0
[ 91.678965][ T6508] get_signal+0x2673/0x26d0
[ 91.680812][ T6508] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.683073][ T6508] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.685322][ T6508] do_syscall_64+0xda/0x260
[ 91.687174][ T6508] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.689455][ T6508] Modules linked in:
[ 91.691048][ T6508] CPU: 0 UID: 0 PID: 6508 Comm: syz.0.21 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 91.691071][ T6508] Tainted: [B]=BAD_PAGE
[ 91.691076][ T6508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 91.691087][ T6508] Call Trace:
[ 91.691095][ T6508]
[ 91.691101][ T6508] dump_stack_lvl+0x16c/0x1f0
[ 91.691122][ T6508] bad_page+0xb3/0x1f0
[ 91.691158][ T6508] ? __pfx_bad_page+0x10/0x10
[ 91.691178][ T6508] ? page_bad_reason+0x9d/0x1e0
[ 91.691193][ T6508] __free_frozen_pages+0x76e/0xff0
[ 91.691217][ T6508] __folio_put+0x329/0x450
[ 91.691236][ T6508] ? __pfx___folio_put+0x10/0x10
[ 91.691254][ T6508] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 91.691270][ T6508] ? rcu_is_watching+0x12/0xc0
[ 91.691291][ T6508] ? lock_release+0x201/0x2f0
[ 91.691312][ T6508] filemap_free_folio+0x132/0x170
[ 91.691330][ T6508] delete_from_page_cache_batch+0x741/0x9b0
[ 91.691350][ T6508] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 91.691367][ T6508] ? __pfx_workingset_update_node+0x10/0x10
[ 91.691394][ T6508] ? xas_move_index+0xb0/0x110
[ 91.691410][ T6508] truncate_inode_pages_range+0x279/0xe30
[ 91.691433][ T6508] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 91.691470][ T6508] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 91.691493][ T6508] ? __pfx_has_bh_in_lru+0x10/0x10
[ 91.691517][ T6508] blkdev_flush_mapping+0xfb/0x290
[ 91.691536][ T6508] ? filemap_check_errors+0xa9/0x160
2025/05/03 07:09:26 executed programs: 8
[ 91.691557][ T6508] blkdev_put_whole+0xc4/0xf0
[ 91.691574][ T6508] bdev_release+0x47e/0x6d0
[ 91.691595][ T6508] ? __pfx_blkdev_release+0x10/0x10
[ 91.691611][ T6508] blkdev_release+0x15/0x20
[ 91.691628][ T6508] __fput+0x3ff/0xb70
[ 91.691645][ T6508] task_work_run+0x14d/0x240
[ 91.691661][ T6508] ? __pfx_task_work_run+0x10/0x10
[ 91.691678][ T6508] ? do_raw_spin_unlock+0x172/0x230
[ 91.691698][ T6508] do_exit+0xafb/0x2c30
[ 91.691719][ T6508] ? __pfx_futex_wake_mark+0x10/0x10
[ 91.691742][ T6508] ? __pfx_do_exit+0x10/0x10
[ 91.691761][ T6508] ? do_raw_spin_lock+0x12c/0x2b0
[ 91.691777][ T6508] ? get_signal+0x8f5/0x26d0
[ 91.691793][ T6508] ? rcu_is_watching+0x12/0xc0
[ 91.691808][ T6508] do_group_exit+0xd3/0x2a0
[ 91.691833][ T6508] get_signal+0x2673/0x26d0
[ 91.691853][ T6508] ? __pfx_get_signal+0x10/0x10
[ 91.691870][ T6508] ? do_futex+0x122/0x350
[ 91.691887][ T6508] ? __pfx_do_futex+0x10/0x10
[ 91.691905][ T6508] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.691926][ T6508] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 91.691948][ T6508] ? madvise_unlock+0xc6/0x190
[ 91.691967][ T6508] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.691986][ T6508] do_syscall_64+0xda/0x260
[ 91.692007][ T6508] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.692024][ T6508] RIP: 0033:0x7fa53558e969
[ 91.692035][ T6508] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 91.692041][ T6508] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 91.692057][ T6508] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 91.692068][ T6508] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 91.692078][ T6508] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 91.692089][ T6508] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 91.692097][ T6508] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 91.692110][ T6508]
[ 91.715730][ T6510] BUG: Bad page state in process syz.0.22 pfn:3c601
[ 91.803924][ T6510] page does not match folio
[ 91.805932][ T6510] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3c601
[ 91.809960][ T6510] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 91.812491][ T6510] raw: 00fff00000000000 ffffea0000f18000 00000000ffffffff ffffffffffffffff
[ 91.816481][ T6510] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 91.819223][ T6510] page dumped because: nonzero pincount
[ 91.820947][ T6510] page_owner tracks the page as allocated
[ 91.822791][ T6510] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6509, tgid 6509 (syz.0.22), ts 91699924916, free_ts 82833356039
[ 91.829116][ T6510] post_alloc_hook+0x181/0x1b0
[ 91.830624][ T6510] prep_new_page+0x16/0xb0
[ 91.832040][ T6510] get_page_from_freelist+0x135b/0x3800
[ 91.834024][ T6510] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 91.836292][ T6510] alloc_pages_mpol+0x1fb/0x550
[ 91.837821][ T6510] folio_alloc_noprof+0x20/0x2d0
[ 91.839308][ T6510] filemap_alloc_folio_noprof+0x3a1/0x470
[ 91.841088][ T6510] page_cache_ra_order+0x4c0/0xd00
[ 91.842696][ T6510] filemap_fault+0x1a5e/0x2740
[ 91.844546][ T6510] __do_fault+0x10a/0x490
[ 91.845968][ T6510] do_pte_missing+0x1a6/0x3fb0
[ 91.847510][ T6510] __handle_mm_fault+0x103d/0x2a40
[ 91.849120][ T6510] handle_mm_fault+0x3fe/0xad0
[ 91.850657][ T6510] do_user_addr_fault+0x60c/0x1370
[ 91.852278][ T6510] exc_page_fault+0x5c/0xc0
[ 91.854090][ T6510] asm_exc_page_fault+0x26/0x30
[ 91.856031][ T6510] page last free pid 6200 tgid 6200 stack trace:
[ 91.858022][ T6510] free_unref_folios+0x999/0x1630
[ 91.859657][ T6510] folios_put_refs+0x56f/0x740
[ 91.861170][ T6510] free_pages_and_swap_cache+0x245/0x4a0
[ 91.863007][ T6510] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 91.865124][ T6510] tlb_finish_mmu+0x168/0x7b0
[ 91.866609][ T6510] vms_clear_ptes+0x55e/0x770
[ 91.868131][ T6510] vms_complete_munmap_vmas+0x1ca/0x970
[ 91.869864][ T6510] do_vmi_align_munmap+0x43b/0x7d0
[ 91.871481][ T6510] do_vmi_munmap+0x208/0x3e0
[ 91.873019][ T6510] __vm_munmap+0x19a/0x390
[ 91.874703][ T6510] __x64_sys_munmap+0x59/0x80
[ 91.876488][ T6510] do_syscall_64+0xcd/0x260
[ 91.877942][ T6510] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.879726][ T6510] Modules linked in:
[ 91.880976][ T6510] CPU: 1 UID: 0 PID: 6510 Comm: syz.0.22 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 91.880992][ T6510] Tainted: [B]=BAD_PAGE
[ 91.880995][ T6510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 91.881001][ T6510] Call Trace:
[ 91.881005][ T6510]
[ 91.881009][ T6510] dump_stack_lvl+0x16c/0x1f0
[ 91.881022][ T6510] bad_page+0xb3/0x1f0
[ 91.881034][ T6510] ? __pfx_bad_page+0x10/0x10
[ 91.881044][ T6510] ? __mem_cgroup_uncharge+0xda/0x130
[ 91.881056][ T6510] free_tail_page_prepare+0x44f/0x5b0
[ 91.881070][ T6510] __free_frozen_pages+0x96a/0xff0
[ 91.881085][ T6510] __folio_put+0x329/0x450
[ 91.881096][ T6510] ? __pfx___folio_put+0x10/0x10
[ 91.881106][ T6510] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 91.881118][ T6510] ? rcu_is_watching+0x12/0xc0
[ 91.881130][ T6510] ? lock_release+0x201/0x2f0
[ 91.881146][ T6510] filemap_free_folio+0x132/0x170
[ 91.881156][ T6510] delete_from_page_cache_batch+0x741/0x9b0
[ 91.881168][ T6510] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 91.881180][ T6510] ? __pfx_workingset_update_node+0x10/0x10
[ 91.881191][ T6510] ? xas_move_index+0xb0/0x110
[ 91.881203][ T6510] truncate_inode_pages_range+0x279/0xe30
[ 91.881218][ T6510] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 91.881240][ T6510] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 91.881256][ T6510] ? __pfx_has_bh_in_lru+0x10/0x10
[ 91.881271][ T6510] blkdev_flush_mapping+0xfb/0x290
[ 91.881283][ T6510] ? filemap_check_errors+0xa9/0x160
[ 91.881298][ T6510] blkdev_put_whole+0xc4/0xf0
[ 91.881308][ T6510] bdev_release+0x47e/0x6d0
[ 91.881321][ T6510] ? __pfx_blkdev_release+0x10/0x10
[ 91.881333][ T6510] blkdev_release+0x15/0x20
[ 91.881344][ T6510] __fput+0x3ff/0xb70
[ 91.881356][ T6510] task_work_run+0x14d/0x240
[ 91.881367][ T6510] ? __pfx_task_work_run+0x10/0x10
[ 91.881377][ T6510] ? do_raw_spin_unlock+0x172/0x230
[ 91.881387][ T6510] do_exit+0xafb/0x2c30
[ 91.881402][ T6510] ? __pfx_futex_wake_mark+0x10/0x10
[ 91.881418][ T6510] ? __pfx_do_exit+0x10/0x10
[ 91.881432][ T6510] ? do_raw_spin_lock+0x12c/0x2b0
[ 91.881441][ T6510] ? get_signal+0x8f5/0x26d0
[ 91.881453][ T6510] ? rcu_is_watching+0x12/0xc0
[ 91.881464][ T6510] do_group_exit+0xd3/0x2a0
[ 91.881479][ T6510] get_signal+0x2673/0x26d0
[ 91.881492][ T6510] ? __pfx_get_signal+0x10/0x10
[ 91.881503][ T6510] ? do_futex+0x122/0x350
[ 91.881516][ T6510] ? __pfx_do_futex+0x10/0x10
[ 91.881529][ T6510] arch_do_signal_or_restart+0x8f/0x7d0
[ 91.881545][ T6510] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 91.881560][ T6510] ? madvise_unlock+0xc6/0x190
[ 91.881571][ T6510] syscall_exit_to_user_mode+0x150/0x2a0
[ 91.881584][ T6510] do_syscall_64+0xda/0x260
[ 91.881596][ T6510] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 91.881606][ T6510] RIP: 0033:0x7fa53558e969
[ 91.881617][ T6510] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 91.881621][ T6510] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 91.881631][ T6510] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 91.881637][ T6510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 91.881643][ T6510] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 91.881648][ T6510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 91.881654][ T6510] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 91.881662][ T6510]
[ 91.881677][ T6510] BUG: Bad page state in process syz.0.22 pfn:3c600
[ 91.993946][ T6510] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3c600
[ 91.997117][ T6510] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 91.999739][ T6510] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 92.002496][ T6510] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.005316][ T6510] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.007981][ T6510] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.010699][ T6510] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.013602][ T6510] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.017142][ T6510] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 92.020374][ T6510] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 92.022623][ T6510] page_owner tracks the page as allocated
[ 92.024546][ T6510] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6509, tgid 6509 (syz.0.22), ts 91699924916, free_ts 82833301507
[ 92.030698][ T6510] post_alloc_hook+0x181/0x1b0
[ 92.032255][ T6510] prep_new_page+0x16/0xb0
[ 92.033844][ T6510] get_page_from_freelist+0x135b/0x3800
[ 92.036200][ T6510] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 92.038095][ T6510] alloc_pages_mpol+0x1fb/0x550
[ 92.039629][ T6510] folio_alloc_noprof+0x20/0x2d0
[ 92.041176][ T6510] filemap_alloc_folio_noprof+0x3a1/0x470
[ 92.043022][ T6510] page_cache_ra_order+0x4c0/0xd00
[ 92.044713][ T6510] filemap_fault+0x1a5e/0x2740
[ 92.046246][ T6510] __do_fault+0x10a/0x490
[ 92.047621][ T6510] do_pte_missing+0x1a6/0x3fb0
[ 92.049130][ T6510] __handle_mm_fault+0x103d/0x2a40
[ 92.050733][ T6510] handle_mm_fault+0x3fe/0xad0
[ 92.052253][ T6510] do_user_addr_fault+0x60c/0x1370
[ 92.054045][ T6510] exc_page_fault+0x5c/0xc0
[ 92.055882][ T6510] asm_exc_page_fault+0x26/0x30
[ 92.057429][ T6510] page last free pid 6200 tgid 6200 stack trace:
[ 92.059615][ T6510] free_unref_folios+0x999/0x1630
[ 92.061221][ T6510] folios_put_refs+0x56f/0x740
[ 92.062729][ T6510] free_pages_and_swap_cache+0x245/0x4a0
[ 92.064823][ T6510] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 92.066694][ T6510] tlb_finish_mmu+0x168/0x7b0
[ 92.068191][ T6510] vms_clear_ptes+0x55e/0x770
[ 92.069673][ T6510] vms_complete_munmap_vmas+0x1ca/0x970
[ 92.071406][ T6510] do_vmi_align_munmap+0x43b/0x7d0
[ 92.073120][ T6510] do_vmi_munmap+0x208/0x3e0
[ 92.074926][ T6510] __vm_munmap+0x19a/0x390
[ 92.076656][ T6510] __x64_sys_munmap+0x59/0x80
[ 92.078138][ T6510] do_syscall_64+0xcd/0x260
[ 92.079581][ T6510] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.081421][ T6510] Modules linked in:
[ 92.082662][ T6510] CPU: 1 UID: 0 PID: 6510 Comm: syz.0.22 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 92.082678][ T6510] Tainted: [B]=BAD_PAGE
[ 92.082681][ T6510] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 92.082687][ T6510] Call Trace:
[ 92.082692][ T6510]
[ 92.082696][ T6510] dump_stack_lvl+0x16c/0x1f0
[ 92.082708][ T6510] bad_page+0xb3/0x1f0
[ 92.082719][ T6510] ? __pfx_bad_page+0x10/0x10
[ 92.082729][ T6510] ? page_bad_reason+0x9d/0x1e0
[ 92.082752][ T6510] __free_frozen_pages+0x76e/0xff0
[ 92.082768][ T6510] __folio_put+0x329/0x450
[ 92.082778][ T6510] ? __pfx___folio_put+0x10/0x10
[ 92.082789][ T6510] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 92.082801][ T6510] ? rcu_is_watching+0x12/0xc0
[ 92.082813][ T6510] ? lock_release+0x201/0x2f0
[ 92.082827][ T6510] filemap_free_folio+0x132/0x170
[ 92.082838][ T6510] delete_from_page_cache_batch+0x741/0x9b0
[ 92.082850][ T6510] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 92.082862][ T6510] ? __pfx_workingset_update_node+0x10/0x10
[ 92.082873][ T6510] ? xas_move_index+0xb0/0x110
[ 92.082885][ T6510] truncate_inode_pages_range+0x279/0xe30
[ 92.082900][ T6510] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 92.082923][ T6510] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 92.082940][ T6510] ? __pfx_has_bh_in_lru+0x10/0x10
[ 92.082954][ T6510] blkdev_flush_mapping+0xfb/0x290
[ 92.082966][ T6510] ? filemap_check_errors+0xa9/0x160
[ 92.082980][ T6510] blkdev_put_whole+0xc4/0xf0
[ 92.082991][ T6510] bdev_release+0x47e/0x6d0
[ 92.083003][ T6510] ? __pfx_blkdev_release+0x10/0x10
[ 92.083015][ T6510] blkdev_release+0x15/0x20
[ 92.083027][ T6510] __fput+0x3ff/0xb70
[ 92.083039][ T6510] task_work_run+0x14d/0x240
[ 92.083050][ T6510] ? __pfx_task_work_run+0x10/0x10
[ 92.083060][ T6510] ? do_raw_spin_unlock+0x172/0x230
[ 92.083071][ T6510] do_exit+0xafb/0x2c30
[ 92.083085][ T6510] ? __pfx_futex_wake_mark+0x10/0x10
[ 92.083102][ T6510] ? __pfx_do_exit+0x10/0x10
[ 92.083115][ T6510] ? do_raw_spin_lock+0x12c/0x2b0
[ 92.083138][ T6510] ? get_signal+0x8f5/0x26d0
[ 92.083152][ T6510] ? rcu_is_watching+0x12/0xc0
[ 92.083163][ T6510] do_group_exit+0xd3/0x2a0
[ 92.083178][ T6510] get_signal+0x2673/0x26d0
[ 92.083191][ T6510] ? __pfx_get_signal+0x10/0x10
[ 92.083203][ T6510] ? do_futex+0x122/0x350
[ 92.083216][ T6510] ? __pfx_do_futex+0x10/0x10
[ 92.083229][ T6510] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.083244][ T6510] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 92.083260][ T6510] ? madvise_unlock+0xc6/0x190
[ 92.083271][ T6510] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.083284][ T6510] do_syscall_64+0xda/0x260
[ 92.083296][ T6510] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.083306][ T6510] RIP: 0033:0x7fa53558e969
[ 92.083313][ T6510] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 92.083318][ T6510] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 92.083328][ T6510] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 92.083334][ T6510] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 92.083340][ T6510] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 92.083345][ T6510] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 92.083351][ T6510] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 92.083360][ T6510]
[ 92.229457][ T6511] BUG: Bad page state in process syz.0.23 pfn:3c201
[ 92.231968][ T6511] page does not match folio
[ 92.233470][ T6511] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3c201
[ 92.236620][ T6511] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 92.239317][ T6511] raw: 00fff00000000000 ffffea0000f08000 00000000ffffffff ffffffffffffffff
[ 92.242095][ T6511] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 92.244919][ T6511] page dumped because: nonzero pincount
[ 92.246649][ T6511] page_owner tracks the page as allocated
[ 92.248479][ T6511] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6511, tgid 6511 (syz.0.23), ts 92198155816, free_ts 91692156759
[ 92.255790][ T6511] post_alloc_hook+0x181/0x1b0
[ 92.257460][ T6511] prep_new_page+0x16/0xb0
[ 92.259556][ T6511] get_page_from_freelist+0x135b/0x3800
[ 92.261707][ T6511] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 92.263982][ T6511] alloc_pages_mpol+0x1fb/0x550
[ 92.265556][ T6511] folio_alloc_noprof+0x20/0x2d0
[ 92.267476][ T6511] filemap_alloc_folio_noprof+0x3a1/0x470
[ 92.269517][ T6511] page_cache_ra_order+0x4c0/0xd00
[ 92.271396][ T6511] filemap_fault+0x1a5e/0x2740
[ 92.273253][ T6511] __do_fault+0x10a/0x490
[ 92.274707][ T6511] do_pte_missing+0x1a6/0x3fb0
[ 92.276178][ T6511] __handle_mm_fault+0x103d/0x2a40
[ 92.277960][ T6511] handle_mm_fault+0x3fe/0xad0
[ 92.279551][ T6511] do_user_addr_fault+0x60c/0x1370
[ 92.281436][ T6511] exc_page_fault+0x5c/0xc0
[ 92.283314][ T6511] asm_exc_page_fault+0x26/0x30
[ 92.284957][ T6511] page last free pid 6508 tgid 6507 stack trace:
[ 92.286949][ T6511] free_unref_folios+0x999/0x1630
[ 92.288858][ T6511] folios_put_refs+0x56f/0x740
[ 92.290477][ T6511] truncate_inode_pages_range+0x311/0xe30
[ 92.292366][ T6511] blkdev_flush_mapping+0xfb/0x290
[ 92.294265][ T6511] blkdev_put_whole+0xc4/0xf0
[ 92.295762][ T6511] bdev_release+0x47e/0x6d0
[ 92.297249][ T6511] blkdev_release+0x15/0x20
[ 92.298784][ T6511] __fput+0x3ff/0xb70
[ 92.300059][ T6511] task_work_run+0x14d/0x240
[ 92.301668][ T6511] do_exit+0xafb/0x2c30
[ 92.303309][ T6511] do_group_exit+0xd3/0x2a0
[ 92.305194][ T6511] get_signal+0x2673/0x26d0
[ 92.307120][ T6511] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.309467][ T6511] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.311848][ T6511] do_syscall_64+0xda/0x260
[ 92.313809][ T6511] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.316305][ T6511] Modules linked in:
[ 92.317956][ T6511] CPU: 2 UID: 0 PID: 6511 Comm: syz.0.23 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 92.317981][ T6511] Tainted: [B]=BAD_PAGE
[ 92.317987][ T6511] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 92.317997][ T6511] Call Trace:
[ 92.318003][ T6511]
[ 92.318010][ T6511] dump_stack_lvl+0x16c/0x1f0
[ 92.318031][ T6511] bad_page+0xb3/0x1f0
[ 92.318048][ T6511] ? __pfx_bad_page+0x10/0x10
[ 92.318065][ T6511] ? __mem_cgroup_uncharge+0xda/0x130
[ 92.318084][ T6511] free_tail_page_prepare+0x44f/0x5b0
[ 92.318105][ T6511] __free_frozen_pages+0x96a/0xff0
[ 92.318128][ T6511] __folio_put+0x329/0x450
[ 92.318145][ T6511] ? __pfx___folio_put+0x10/0x10
[ 92.318163][ T6511] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 92.318181][ T6511] ? rcu_is_watching+0x12/0xc0
[ 92.318198][ T6511] ? lock_release+0x201/0x2f0
[ 92.318222][ T6511] filemap_free_folio+0x132/0x170
[ 92.318238][ T6511] delete_from_page_cache_batch+0x741/0x9b0
[ 92.318258][ T6511] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 92.318277][ T6511] ? __pfx_workingset_update_node+0x10/0x10
[ 92.318295][ T6511] ? xas_move_index+0xb0/0x110
[ 92.318314][ T6511] truncate_inode_pages_range+0x279/0xe30
[ 92.318337][ T6511] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 92.318381][ T6511] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 92.318406][ T6511] ? __pfx_has_bh_in_lru+0x10/0x10
[ 92.318428][ T6511] blkdev_flush_mapping+0xfb/0x290
[ 92.318448][ T6511] blkdev_put_whole+0xc4/0xf0
[ 92.318465][ T6511] bdev_release+0x47e/0x6d0
[ 92.318484][ T6511] ? __pfx_blkdev_release+0x10/0x10
[ 92.318503][ T6511] blkdev_release+0x15/0x20
[ 92.318522][ T6511] __fput+0x3ff/0xb70
[ 92.318541][ T6511] task_work_run+0x14d/0x240
[ 92.318558][ T6511] ? __pfx_task_work_run+0x10/0x10
[ 92.318573][ T6511] ? do_raw_spin_unlock+0x172/0x230
[ 92.318591][ T6511] do_exit+0xafb/0x2c30
[ 92.318615][ T6511] ? __pfx_do_exit+0x10/0x10
[ 92.318636][ T6511] ? preempt_schedule_thunk+0x16/0x30
[ 92.318654][ T6511] do_group_exit+0xd3/0x2a0
[ 92.318677][ T6511] __x64_sys_exit_group+0x3e/0x50
[ 92.318700][ T6511] x64_sys_call+0x1530/0x1730
[ 92.318722][ T6511] do_syscall_64+0xcd/0x260
[ 92.318742][ T6511] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.318758][ T6511] RIP: 0033:0x7fa53558e969
[ 92.318770][ T6511] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 92.318778][ T6511] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 92.318793][ T6511] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 92.318804][ T6511] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 92.318813][ T6511] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 92.318823][ T6511] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000007
[ 92.318833][ T6511] R13: 00000000000927c0 R14: 00000000000165c0 R15: 00007ffdfd5c05a0
[ 92.318847][ T6511]
[ 92.318877][ T6511] BUG: Bad page state in process syz.0.23 pfn:3c200
[ 92.431362][ T6511] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3c200
[ 92.435284][ T6511] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 92.438730][ T6511] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 92.442166][ T6511] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.445886][ T6511] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.449640][ T6511] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.454120][ T6511] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.456873][ T6511] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.459494][ T6511] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 92.462148][ T6511] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 92.464824][ T6511] page_owner tracks the page as allocated
[ 92.466833][ T6511] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6511, tgid 6511 (syz.0.23), ts 92198155816, free_ts 91692156759
[ 92.473536][ T6511] post_alloc_hook+0x181/0x1b0
[ 92.475414][ T6511] prep_new_page+0x16/0xb0
[ 92.477043][ T6511] get_page_from_freelist+0x135b/0x3800
[ 92.478961][ T6511] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 92.481128][ T6511] alloc_pages_mpol+0x1fb/0x550
[ 92.482705][ T6511] folio_alloc_noprof+0x20/0x2d0
[ 92.484707][ T6511] filemap_alloc_folio_noprof+0x3a1/0x470
[ 92.486666][ T6511] page_cache_ra_order+0x4c0/0xd00
[ 92.488510][ T6511] filemap_fault+0x1a5e/0x2740
[ 92.490291][ T6511] __do_fault+0x10a/0x490
[ 92.491676][ T6511] do_pte_missing+0x1a6/0x3fb0
[ 92.493253][ T6511] __handle_mm_fault+0x103d/0x2a40
[ 92.495203][ T6511] handle_mm_fault+0x3fe/0xad0
[ 92.497027][ T6511] do_user_addr_fault+0x60c/0x1370
[ 92.499153][ T6511] exc_page_fault+0x5c/0xc0
[ 92.500776][ T6511] asm_exc_page_fault+0x26/0x30
[ 92.502509][ T6511] page last free pid 6508 tgid 6507 stack trace:
[ 92.504959][ T6511] free_unref_folios+0x999/0x1630
[ 92.506781][ T6511] folios_put_refs+0x56f/0x740
[ 92.508676][ T6511] truncate_inode_pages_range+0x311/0xe30
[ 92.510578][ T6511] blkdev_flush_mapping+0xfb/0x290
[ 92.512283][ T6511] blkdev_put_whole+0xc4/0xf0
[ 92.513978][ T6511] bdev_release+0x47e/0x6d0
[ 92.515378][ T6511] blkdev_release+0x15/0x20
[ 92.516847][ T6511] __fput+0x3ff/0xb70
[ 92.518147][ T6511] task_work_run+0x14d/0x240
[ 92.519705][ T6511] do_exit+0xafb/0x2c30
[ 92.521042][ T6511] do_group_exit+0xd3/0x2a0
[ 92.522460][ T6511] get_signal+0x2673/0x26d0
[ 92.524187][ T6511] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.526007][ T6511] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.527847][ T6511] do_syscall_64+0xda/0x260
[ 92.529292][ T6511] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.531229][ T6511] Modules linked in:
[ 92.532529][ T6511] CPU: 3 UID: 0 PID: 6511 Comm: syz.0.23 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 92.532546][ T6511] Tainted: [B]=BAD_PAGE
[ 92.532549][ T6511] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 92.532555][ T6511] Call Trace:
[ 92.532560][ T6511]
[ 92.532564][ T6511] dump_stack_lvl+0x16c/0x1f0
[ 92.532577][ T6511] bad_page+0xb3/0x1f0
[ 92.532588][ T6511] ? __pfx_bad_page+0x10/0x10
[ 92.532602][ T6511] ? page_bad_reason+0x9d/0x1e0
[ 92.532613][ T6511] __free_frozen_pages+0x76e/0xff0
[ 92.532628][ T6511] __folio_put+0x329/0x450
[ 92.532639][ T6511] ? __pfx___folio_put+0x10/0x10
[ 92.532650][ T6511] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 92.532662][ T6511] ? rcu_is_watching+0x12/0xc0
[ 92.532674][ T6511] ? lock_release+0x201/0x2f0
[ 92.532689][ T6511] filemap_free_folio+0x132/0x170
[ 92.532699][ T6511] delete_from_page_cache_batch+0x741/0x9b0
[ 92.532711][ T6511] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 92.532723][ T6511] ? __pfx_workingset_update_node+0x10/0x10
[ 92.532734][ T6511] ? xas_move_index+0xb0/0x110
[ 92.532759][ T6511] truncate_inode_pages_range+0x279/0xe30
[ 92.532774][ T6511] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 92.532796][ T6511] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 92.532812][ T6511] ? __pfx_has_bh_in_lru+0x10/0x10
[ 92.532827][ T6511] blkdev_flush_mapping+0xfb/0x290
[ 92.532840][ T6511] blkdev_put_whole+0xc4/0xf0
[ 92.532850][ T6511] bdev_release+0x47e/0x6d0
[ 92.532862][ T6511] ? __pfx_blkdev_release+0x10/0x10
[ 92.532874][ T6511] blkdev_release+0x15/0x20
[ 92.532886][ T6511] __fput+0x3ff/0xb70
[ 92.532898][ T6511] task_work_run+0x14d/0x240
[ 92.532908][ T6511] ? __pfx_task_work_run+0x10/0x10
[ 92.532918][ T6511] ? do_raw_spin_unlock+0x172/0x230
[ 92.532929][ T6511] do_exit+0xafb/0x2c30
[ 92.532944][ T6511] ? __pfx_do_exit+0x10/0x10
[ 92.532958][ T6511] ? preempt_schedule_thunk+0x16/0x30
[ 92.532969][ T6511] do_group_exit+0xd3/0x2a0
[ 92.532984][ T6511] __x64_sys_exit_group+0x3e/0x50
[ 92.532998][ T6511] x64_sys_call+0x1530/0x1730
[ 92.533012][ T6511] do_syscall_64+0xcd/0x260
[ 92.533025][ T6511] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.533035][ T6511] RIP: 0033:0x7fa53558e969
[ 92.533043][ T6511] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 92.533048][ T6511] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 92.533057][ T6511] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 92.533064][ T6511] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 92.533069][ T6511] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 92.533075][ T6511] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000007
[ 92.533081][ T6511] R13: 00000000000927c0 R14: 00000000000165c0 R15: 00007ffdfd5c05a0
[ 92.533090][ T6511]
[ 92.652585][ T6513] BUG: Bad page state in process syz.0.24 pfn:47801
[ 92.652882][ T5959] Bluetooth: hci0: command tx timeout
[ 92.654890][ T6513] page does not match folio
[ 92.658651][ T6513] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x47801
[ 92.662109][ T6513] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 92.665183][ T6513] raw: 00fff00000000000 ffffea00011e0000 00000000ffffffff ffffffffffffffff
[ 92.668578][ T6513] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 92.671940][ T6513] page dumped because: nonzero pincount
[ 92.674385][ T6513] page_owner tracks the page as allocated
[ 92.676649][ T6513] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6513, tgid 6513 (syz.0.24), ts 92634352946, free_ts 92190064474
[ 92.684511][ T6513] post_alloc_hook+0x181/0x1b0
[ 92.686577][ T6513] prep_new_page+0x16/0xb0
[ 92.688498][ T6513] get_page_from_freelist+0x135b/0x3800
[ 92.690804][ T6513] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 92.693410][ T6513] alloc_pages_mpol+0x1fb/0x550
[ 92.695471][ T6513] folio_alloc_noprof+0x20/0x2d0
[ 92.697556][ T6513] filemap_alloc_folio_noprof+0x3a1/0x470
[ 92.699902][ T6513] page_cache_ra_order+0x4c0/0xd00
[ 92.702041][ T6513] filemap_fault+0x1a5e/0x2740
[ 92.704162][ T6513] __do_fault+0x10a/0x490
[ 92.705998][ T6513] do_pte_missing+0x1a6/0x3fb0
[ 92.708037][ T6513] __handle_mm_fault+0x103d/0x2a40
[ 92.710187][ T6513] handle_mm_fault+0x3fe/0xad0
[ 92.712257][ T6513] do_user_addr_fault+0x60c/0x1370
[ 92.714546][ T6513] exc_page_fault+0x5c/0xc0
[ 92.716489][ T6513] asm_exc_page_fault+0x26/0x30
[ 92.718584][ T6513] page last free pid 6510 tgid 6509 stack trace:
[ 92.721216][ T6513] free_unref_folios+0x999/0x1630
[ 92.723443][ T6513] folios_put_refs+0x56f/0x740
[ 92.725481][ T6513] truncate_inode_pages_range+0x311/0xe30
[ 92.727880][ T6513] blkdev_flush_mapping+0xfb/0x290
[ 92.730031][ T6513] blkdev_put_whole+0xc4/0xf0
[ 92.732027][ T6513] bdev_release+0x47e/0x6d0
[ 92.734166][ T6513] blkdev_release+0x15/0x20
[ 92.736072][ T6513] __fput+0x3ff/0xb70
[ 92.737792][ T6513] task_work_run+0x14d/0x240
[ 92.739808][ T6513] do_exit+0xafb/0x2c30
[ 92.741627][ T6513] do_group_exit+0xd3/0x2a0
[ 92.743678][ T6513] get_signal+0x2673/0x26d0
[ 92.745584][ T6513] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.747938][ T6513] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.750299][ T6513] do_syscall_64+0xda/0x260
[ 92.752262][ T6513] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.754888][ T6513] Modules linked in:
[ 92.756569][ T6513] CPU: 0 UID: 0 PID: 6513 Comm: syz.0.24 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 92.756595][ T6513] Tainted: [B]=BAD_PAGE
[ 92.756601][ T6513] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 92.756611][ T6513] Call Trace:
[ 92.756622][ T6513]
[ 92.756628][ T6513] dump_stack_lvl+0x16c/0x1f0
[ 92.756649][ T6513] bad_page+0xb3/0x1f0
[ 92.756666][ T6513] ? __pfx_bad_page+0x10/0x10
[ 92.756683][ T6513] ? __mem_cgroup_uncharge+0xda/0x130
[ 92.756703][ T6513] free_tail_page_prepare+0x44f/0x5b0
[ 92.756723][ T6513] __free_frozen_pages+0x96a/0xff0
[ 92.756746][ T6513] __folio_put+0x329/0x450
[ 92.756763][ T6513] ? __pfx___folio_put+0x10/0x10
[ 92.756781][ T6513] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 92.756799][ T6513] ? rcu_is_watching+0x12/0xc0
[ 92.756816][ T6513] ? lock_release+0x201/0x2f0
[ 92.756839][ T6513] filemap_free_folio+0x132/0x170
[ 92.756856][ T6513] delete_from_page_cache_batch+0x741/0x9b0
[ 92.756876][ T6513] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 92.756895][ T6513] ? __pfx_workingset_update_node+0x10/0x10
[ 92.756912][ T6513] ? xas_move_index+0xb0/0x110
[ 92.756933][ T6513] truncate_inode_pages_range+0x279/0xe30
[ 92.756957][ T6513] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 92.756993][ T6513] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 92.757018][ T6513] ? __pfx_has_bh_in_lru+0x10/0x10
[ 92.757041][ T6513] blkdev_flush_mapping+0xfb/0x290
[ 92.757060][ T6513] blkdev_put_whole+0xc4/0xf0
[ 92.757077][ T6513] bdev_release+0x47e/0x6d0
[ 92.757097][ T6513] ? __pfx_blkdev_release+0x10/0x10
[ 92.757116][ T6513] blkdev_release+0x15/0x20
[ 92.757135][ T6513] __fput+0x3ff/0xb70
[ 92.757154][ T6513] task_work_run+0x14d/0x240
[ 92.757170][ T6513] ? __pfx_task_work_run+0x10/0x10
[ 92.757186][ T6513] ? do_raw_spin_unlock+0x172/0x230
[ 92.757205][ T6513] do_exit+0xafb/0x2c30
[ 92.757230][ T6513] ? __pfx_do_exit+0x10/0x10
[ 92.757252][ T6513] ? preempt_schedule_thunk+0x16/0x30
[ 92.757270][ T6513] do_group_exit+0xd3/0x2a0
[ 92.757291][ T6513] __x64_sys_exit_group+0x3e/0x50
[ 92.757314][ T6513] x64_sys_call+0x1530/0x1730
[ 92.757336][ T6513] do_syscall_64+0xcd/0x260
[ 92.757356][ T6513] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.757372][ T6513] RIP: 0033:0x7fa53558e969
[ 92.757384][ T6513] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 92.757392][ T6513] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 92.757407][ T6513] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 92.757417][ T6513] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 92.757427][ T6513] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 92.757437][ T6513] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000008
[ 92.757446][ T6513] R13: 00000000000927c0 R14: 00000000000167b2 R15: 00007ffdfd5c05a0
[ 92.757460][ T6513]
[ 92.757488][ T6513] BUG: Bad page state in process syz.0.24 pfn:47800
[ 92.874605][ T6513] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x47800
[ 92.877995][ T6513] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 92.881351][ T6513] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 92.884990][ T6513] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.888217][ T6513] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.891465][ T6513] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 92.895216][ T6513] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.898856][ T6513] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 92.902388][ T6513] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 92.905954][ T6513] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 92.908835][ T6513] page_owner tracks the page as allocated
[ 92.910995][ T6513] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6513, tgid 6513 (syz.0.24), ts 92634352946, free_ts 92190064474
[ 92.918984][ T6513] post_alloc_hook+0x181/0x1b0
[ 92.920964][ T6513] prep_new_page+0x16/0xb0
[ 92.922843][ T6513] get_page_from_freelist+0x135b/0x3800
[ 92.925097][ T6513] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 92.927448][ T6513] alloc_pages_mpol+0x1fb/0x550
[ 92.929389][ T6513] folio_alloc_noprof+0x20/0x2d0
[ 92.931336][ T6513] filemap_alloc_folio_noprof+0x3a1/0x470
[ 92.933707][ T6513] page_cache_ra_order+0x4c0/0xd00
[ 92.935757][ T6513] filemap_fault+0x1a5e/0x2740
[ 92.937619][ T6513] __do_fault+0x10a/0x490
[ 92.939303][ T6513] do_pte_missing+0x1a6/0x3fb0
[ 92.941184][ T6513] __handle_mm_fault+0x103d/0x2a40
[ 92.943315][ T6513] handle_mm_fault+0x3fe/0xad0
[ 92.945270][ T6513] do_user_addr_fault+0x60c/0x1370
[ 92.947276][ T6513] exc_page_fault+0x5c/0xc0
[ 92.949082][ T6513] asm_exc_page_fault+0x26/0x30
[ 92.951010][ T6513] page last free pid 6510 tgid 6509 stack trace:
[ 92.953662][ T6513] free_unref_folios+0x999/0x1630
[ 92.955733][ T6513] folios_put_refs+0x56f/0x740
[ 92.957665][ T6513] truncate_inode_pages_range+0x311/0xe30
[ 92.959954][ T6513] blkdev_flush_mapping+0xfb/0x290
[ 92.962021][ T6513] blkdev_put_whole+0xc4/0xf0
[ 92.964111][ T6513] bdev_release+0x47e/0x6d0
[ 92.966031][ T6513] blkdev_release+0x15/0x20
[ 92.967899][ T6513] __fput+0x3ff/0xb70
[ 92.969526][ T6513] task_work_run+0x14d/0x240
[ 92.971450][ T6513] do_exit+0xafb/0x2c30
[ 92.973262][ T6513] do_group_exit+0xd3/0x2a0
[ 92.975041][ T6513] get_signal+0x2673/0x26d0
[ 92.976912][ T6513] arch_do_signal_or_restart+0x8f/0x7d0
[ 92.979180][ T6513] syscall_exit_to_user_mode+0x150/0x2a0
[ 92.981463][ T6513] do_syscall_64+0xda/0x260
[ 92.983663][ T6513] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.986119][ T6513] Modules linked in:
[ 92.987761][ T6513] CPU: 0 UID: 0 PID: 6513 Comm: syz.0.24 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 92.987787][ T6513] Tainted: [B]=BAD_PAGE
[ 92.987793][ T6513] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 92.987803][ T6513] Call Trace:
[ 92.987809][ T6513]
[ 92.987815][ T6513] dump_stack_lvl+0x16c/0x1f0
[ 92.987836][ T6513] bad_page+0xb3/0x1f0
[ 92.987855][ T6513] ? __pfx_bad_page+0x10/0x10
[ 92.987872][ T6513] ? page_bad_reason+0x9d/0x1e0
[ 92.987889][ T6513] __free_frozen_pages+0x76e/0xff0
[ 92.987914][ T6513] __folio_put+0x329/0x450
[ 92.987931][ T6513] ? __pfx___folio_put+0x10/0x10
[ 92.987949][ T6513] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 92.987967][ T6513] ? rcu_is_watching+0x12/0xc0
[ 92.987986][ T6513] ? lock_release+0x201/0x2f0
[ 92.988010][ T6513] filemap_free_folio+0x132/0x170
[ 92.988027][ T6513] delete_from_page_cache_batch+0x741/0x9b0
[ 92.988047][ T6513] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 92.988067][ T6513] ? __pfx_workingset_update_node+0x10/0x10
[ 92.988084][ T6513] ? xas_move_index+0xb0/0x110
[ 92.988106][ T6513] truncate_inode_pages_range+0x279/0xe30
[ 92.988129][ T6513] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 92.988171][ T6513] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 92.988197][ T6513] ? __pfx_has_bh_in_lru+0x10/0x10
[ 92.988220][ T6513] blkdev_flush_mapping+0xfb/0x290
[ 92.988240][ T6513] blkdev_put_whole+0xc4/0xf0
[ 92.988257][ T6513] bdev_release+0x47e/0x6d0
[ 92.988278][ T6513] ? __pfx_blkdev_release+0x10/0x10
[ 92.988297][ T6513] blkdev_release+0x15/0x20
[ 92.988316][ T6513] __fput+0x3ff/0xb70
[ 92.988335][ T6513] task_work_run+0x14d/0x240
[ 92.988352][ T6513] ? __pfx_task_work_run+0x10/0x10
[ 92.988368][ T6513] ? do_raw_spin_unlock+0x172/0x230
[ 92.988386][ T6513] do_exit+0xafb/0x2c30
[ 92.988410][ T6513] ? __pfx_do_exit+0x10/0x10
[ 92.988432][ T6513] ? preempt_schedule_thunk+0x16/0x30
[ 92.988450][ T6513] do_group_exit+0xd3/0x2a0
[ 92.988474][ T6513] __x64_sys_exit_group+0x3e/0x50
[ 92.988497][ T6513] x64_sys_call+0x1530/0x1730
[ 92.988519][ T6513] do_syscall_64+0xcd/0x260
[ 92.988539][ T6513] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 92.988556][ T6513] RIP: 0033:0x7fa53558e969
[ 92.988568][ T6513] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 92.988576][ T6513] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 92.988592][ T6513] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 92.988602][ T6513] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 92.988617][ T6513] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 92.988627][ T6513] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000008
[ 92.988637][ T6513] R13: 00000000000927c0 R14: 00000000000167b2 R15: 00007ffdfd5c05a0
[ 92.988653][ T6513]
[ 93.129291][ T6517] BUG: Bad page state in process syz.0.25 pfn:3c001
[ 93.131409][ T6517] page does not match folio
[ 93.133096][ T6517] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3c001
[ 93.136190][ T6517] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 93.138514][ T6517] raw: 00fff00000000000 ffffea0000f00000 00000000ffffffff ffffffffffffffff
[ 93.141775][ T6517] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 93.145280][ T6517] page dumped because: nonzero pincount
[ 93.147493][ T6517] page_owner tracks the page as allocated
[ 93.149767][ T6517] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6516, tgid 6516 (syz.0.25), ts 93112868863, free_ts 92988764929
[ 93.157590][ T6517] post_alloc_hook+0x181/0x1b0
[ 93.159455][ T6517] prep_new_page+0x16/0xb0
[ 93.161255][ T6517] get_page_from_freelist+0x135b/0x3800
[ 93.163587][ T6517] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 93.165935][ T6517] alloc_pages_mpol+0x1fb/0x550
[ 93.167893][ T6517] folio_alloc_noprof+0x20/0x2d0
[ 93.169884][ T6517] filemap_alloc_folio_noprof+0x3a1/0x470
[ 93.172176][ T6517] page_cache_ra_order+0x4c0/0xd00
[ 93.176247][ T6517] filemap_fault+0x1a5e/0x2740
[ 93.178145][ T6517] __do_fault+0x10a/0x490
[ 93.179888][ T6517] do_pte_missing+0x1a6/0x3fb0
[ 93.182804][ T6517] __handle_mm_fault+0x103d/0x2a40
[ 93.185096][ T6517] handle_mm_fault+0x3fe/0xad0
[ 93.186583][ T6517] do_user_addr_fault+0x60c/0x1370
[ 93.188312][ T6517] exc_page_fault+0x5c/0xc0
[ 93.189699][ T6517] asm_exc_page_fault+0x26/0x30
[ 93.191202][ T6517] page last free pid 6513 tgid 6513 stack trace:
[ 93.193365][ T6517] free_unref_folios+0x999/0x1630
[ 93.194938][ T6517] folios_put_refs+0x56f/0x740
[ 93.196400][ T6517] truncate_inode_pages_range+0x311/0xe30
[ 93.198130][ T6517] blkdev_flush_mapping+0xfb/0x290
[ 93.199683][ T6517] blkdev_put_whole+0xc4/0xf0
[ 93.201145][ T6517] bdev_release+0x47e/0x6d0
[ 93.202584][ T6517] blkdev_release+0x15/0x20
[ 93.204172][ T6517] __fput+0x3ff/0xb70
[ 93.205441][ T6517] task_work_run+0x14d/0x240
[ 93.206865][ T6517] do_exit+0xafb/0x2c30
[ 93.208167][ T6517] do_group_exit+0xd3/0x2a0
[ 93.209559][ T6517] __x64_sys_exit_group+0x3e/0x50
[ 93.211057][ T6517] x64_sys_call+0x1530/0x1730
[ 93.212513][ T6517] do_syscall_64+0xcd/0x260
[ 93.214052][ T6517] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.215913][ T6517] Modules linked in:
[ 93.217136][ T6517] CPU: 3 UID: 0 PID: 6517 Comm: syz.0.25 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 93.217164][ T6517] Tainted: [B]=BAD_PAGE
[ 93.217167][ T6517] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 93.217174][ T6517] Call Trace:
[ 93.217177][ T6517]
[ 93.217181][ T6517] dump_stack_lvl+0x16c/0x1f0
[ 93.217195][ T6517] bad_page+0xb3/0x1f0
[ 93.217206][ T6517] ? __pfx_bad_page+0x10/0x10
[ 93.217216][ T6517] ? __mem_cgroup_uncharge+0xda/0x130
[ 93.217229][ T6517] free_tail_page_prepare+0x44f/0x5b0
[ 93.217254][ T6517] __free_frozen_pages+0x96a/0xff0
[ 93.217269][ T6517] __folio_put+0x329/0x450
[ 93.217279][ T6517] ? __pfx___folio_put+0x10/0x10
[ 93.217290][ T6517] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 93.217302][ T6517] ? rcu_is_watching+0x12/0xc0
[ 93.217314][ T6517] ? lock_release+0x201/0x2f0
[ 93.217329][ T6517] filemap_free_folio+0x132/0x170
[ 93.217343][ T6517] delete_from_page_cache_batch+0x741/0x9b0
[ 93.217355][ T6517] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 93.217367][ T6517] ? __pfx_workingset_update_node+0x10/0x10
[ 93.217379][ T6517] ? xas_move_index+0xb0/0x110
[ 93.217391][ T6517] truncate_inode_pages_range+0x279/0xe30
[ 93.217406][ T6517] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 93.217429][ T6517] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 93.217444][ T6517] ? __pfx_has_bh_in_lru+0x10/0x10
[ 93.217459][ T6517] blkdev_flush_mapping+0xfb/0x290
[ 93.217470][ T6517] ? filemap_check_errors+0xa9/0x160
[ 93.217485][ T6517] blkdev_put_whole+0xc4/0xf0
[ 93.217495][ T6517] bdev_release+0x47e/0x6d0
[ 93.217508][ T6517] ? __pfx_blkdev_release+0x10/0x10
[ 93.217520][ T6517] blkdev_release+0x15/0x20
[ 93.217531][ T6517] __fput+0x3ff/0xb70
[ 93.217543][ T6517] task_work_run+0x14d/0x240
[ 93.217554][ T6517] ? __pfx_task_work_run+0x10/0x10
[ 93.217564][ T6517] ? do_raw_spin_unlock+0x172/0x230
[ 93.217574][ T6517] do_exit+0xafb/0x2c30
[ 93.217588][ T6517] ? __pfx_futex_wake_mark+0x10/0x10
[ 93.217605][ T6517] ? __pfx_do_exit+0x10/0x10
[ 93.217618][ T6517] ? do_raw_spin_lock+0x12c/0x2b0
[ 93.217628][ T6517] ? get_signal+0x8f5/0x26d0
[ 93.217640][ T6517] ? rcu_is_watching+0x12/0xc0
[ 93.217651][ T6517] do_group_exit+0xd3/0x2a0
[ 93.217666][ T6517] get_signal+0x2673/0x26d0
[ 93.217679][ T6517] ? __pfx_get_signal+0x10/0x10
[ 93.217691][ T6517] ? do_futex+0x122/0x350
[ 93.217704][ T6517] ? __pfx_do_futex+0x10/0x10
[ 93.217717][ T6517] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.217731][ T6517] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 93.217747][ T6517] ? madvise_unlock+0xc6/0x190
[ 93.217758][ T6517] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.217771][ T6517] do_syscall_64+0xda/0x260
[ 93.217783][ T6517] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.217793][ T6517] RIP: 0033:0x7fa53558e969
[ 93.217800][ T6517] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 93.217805][ T6517] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 93.217815][ T6517] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 93.217821][ T6517] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 93.217827][ T6517] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 93.217833][ T6517] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 93.217839][ T6517] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 93.217847][ T6517]
[ 93.217922][ T6517] BUG: Bad page state in process syz.0.25 pfn:3c000
[ 93.324329][ T6517] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3c000
[ 93.326963][ T6517] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 93.329492][ T6517] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 93.332149][ T6517] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 93.334845][ T6517] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.337456][ T6517] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 93.340061][ T6517] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.342648][ T6517] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.345352][ T6517] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 93.348028][ T6517] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 93.350129][ T6517] page_owner tracks the page as allocated
[ 93.351852][ T6517] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6516, tgid 6516 (syz.0.25), ts 93112868863, free_ts 92988764929
[ 93.357755][ T6517] post_alloc_hook+0x181/0x1b0
[ 93.359205][ T6517] prep_new_page+0x16/0xb0
[ 93.360577][ T6517] get_page_from_freelist+0x135b/0x3800
[ 93.362216][ T6517] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 93.364021][ T6517] alloc_pages_mpol+0x1fb/0x550
[ 93.365489][ T6517] folio_alloc_noprof+0x20/0x2d0
[ 93.367032][ T6517] filemap_alloc_folio_noprof+0x3a1/0x470
[ 93.368772][ T6517] page_cache_ra_order+0x4c0/0xd00
[ 93.370330][ T6517] filemap_fault+0x1a5e/0x2740
[ 93.371822][ T6517] __do_fault+0x10a/0x490
[ 93.373337][ T6517] do_pte_missing+0x1a6/0x3fb0
[ 93.374807][ T6517] __handle_mm_fault+0x103d/0x2a40
[ 93.376401][ T6517] handle_mm_fault+0x3fe/0xad0
[ 93.377895][ T6517] do_user_addr_fault+0x60c/0x1370
[ 93.379473][ T6517] exc_page_fault+0x5c/0xc0
[ 93.380875][ T6517] asm_exc_page_fault+0x26/0x30
[ 93.382364][ T6517] page last free pid 6513 tgid 6513 stack trace:
[ 93.384364][ T6517] free_unref_folios+0x999/0x1630
[ 93.386046][ T6517] folios_put_refs+0x56f/0x740
[ 93.387554][ T6517] truncate_inode_pages_range+0x311/0xe30
[ 93.389249][ T6517] blkdev_flush_mapping+0xfb/0x290
[ 93.390812][ T6517] blkdev_put_whole+0xc4/0xf0
[ 93.392272][ T6517] bdev_release+0x47e/0x6d0
[ 93.393748][ T6517] blkdev_release+0x15/0x20
[ 93.395136][ T6517] __fput+0x3ff/0xb70
[ 93.396371][ T6517] task_work_run+0x14d/0x240
[ 93.397827][ T6517] do_exit+0xafb/0x2c30
[ 93.399135][ T6517] do_group_exit+0xd3/0x2a0
[ 93.400768][ T6517] __x64_sys_exit_group+0x3e/0x50
[ 93.402951][ T6517] x64_sys_call+0x1530/0x1730
[ 93.404892][ T6517] do_syscall_64+0xcd/0x260
[ 93.406722][ T6517] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.409119][ T6517] Modules linked in:
[ 93.410677][ T6517] CPU: 3 UID: 0 PID: 6517 Comm: syz.0.25 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 93.410701][ T6517] Tainted: [B]=BAD_PAGE
[ 93.410706][ T6517] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 93.410715][ T6517] Call Trace:
[ 93.410723][ T6517]
[ 93.410729][ T6517] dump_stack_lvl+0x16c/0x1f0
[ 93.410749][ T6517] bad_page+0xb3/0x1f0
[ 93.410766][ T6517] ? __pfx_bad_page+0x10/0x10
[ 93.410783][ T6517] ? page_bad_reason+0x9d/0x1e0
[ 93.410799][ T6517] __free_frozen_pages+0x76e/0xff0
[ 93.410822][ T6517] __folio_put+0x329/0x450
[ 93.410839][ T6517] ? __pfx___folio_put+0x10/0x10
[ 93.410856][ T6517] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 93.410874][ T6517] ? rcu_is_watching+0x12/0xc0
[ 93.410892][ T6517] ? lock_release+0x201/0x2f0
[ 93.410914][ T6517] filemap_free_folio+0x132/0x170
[ 93.410932][ T6517] delete_from_page_cache_batch+0x741/0x9b0
[ 93.410951][ T6517] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 93.410969][ T6517] ? __pfx_workingset_update_node+0x10/0x10
[ 93.410987][ T6517] ? xas_move_index+0xb0/0x110
[ 93.411004][ T6517] truncate_inode_pages_range+0x279/0xe30
[ 93.411027][ T6517] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 93.411065][ T6517] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 93.411089][ T6517] ? __pfx_has_bh_in_lru+0x10/0x10
[ 93.411110][ T6517] blkdev_flush_mapping+0xfb/0x290
[ 93.411146][ T6517] ? filemap_check_errors+0xa9/0x160
[ 93.411169][ T6517] blkdev_put_whole+0xc4/0xf0
[ 93.411184][ T6517] bdev_release+0x47e/0x6d0
[ 93.411204][ T6517] ? __pfx_blkdev_release+0x10/0x10
[ 93.411224][ T6517] blkdev_release+0x15/0x20
[ 93.411242][ T6517] __fput+0x3ff/0xb70
[ 93.411260][ T6517] task_work_run+0x14d/0x240
[ 93.411277][ T6517] ? __pfx_task_work_run+0x10/0x10
[ 93.411292][ T6517] ? do_raw_spin_unlock+0x172/0x230
[ 93.411311][ T6517] do_exit+0xafb/0x2c30
[ 93.411332][ T6517] ? __pfx_futex_wake_mark+0x10/0x10
[ 93.411365][ T6517] ? __pfx_do_exit+0x10/0x10
[ 93.411385][ T6517] ? do_raw_spin_lock+0x12c/0x2b0
[ 93.411401][ T6517] ? get_signal+0x8f5/0x26d0
[ 93.411419][ T6517] ? rcu_is_watching+0x12/0xc0
[ 93.411436][ T6517] do_group_exit+0xd3/0x2a0
[ 93.411460][ T6517] get_signal+0x2673/0x26d0
[ 93.411481][ T6517] ? __pfx_get_signal+0x10/0x10
[ 93.411498][ T6517] ? do_futex+0x122/0x350
[ 93.411518][ T6517] ? __pfx_do_futex+0x10/0x10
[ 93.411538][ T6517] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.411560][ T6517] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 93.411584][ T6517] ? madvise_unlock+0xc6/0x190
[ 93.411603][ T6517] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.411621][ T6517] do_syscall_64+0xda/0x260
[ 93.411641][ T6517] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.411657][ T6517] RIP: 0033:0x7fa53558e969
[ 93.411670][ T6517] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 93.411676][ T6517] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 93.411692][ T6517] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 93.411702][ T6517] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 93.411711][ T6517] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 93.411722][ T6517] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 93.411730][ T6517] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 93.411745][ T6517]
[ 93.433619][ T6519] BUG: Bad page state in process syz.0.26 pfn:3c401
[ 93.534803][ T6519] page does not match folio
[ 93.536185][ T6519] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3c401
[ 93.539285][ T6519] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 93.541391][ T6519] raw: 00fff00000000000 ffffea0000f10000 00000000ffffffff ffffffffffffffff
[ 93.543923][ T6519] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 93.546426][ T6519] page dumped because: nonzero pincount
[ 93.548539][ T6519] page_owner tracks the page as allocated
[ 93.550776][ T6519] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6519, tgid 6519 (syz.0.26), ts 93418219307, free_ts 92628286003
[ 93.557123][ T6519] post_alloc_hook+0x181/0x1b0
[ 93.558557][ T6519] prep_new_page+0x16/0xb0
[ 93.559876][ T6519] get_page_from_freelist+0x135b/0x3800
[ 93.561490][ T6519] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 93.563303][ T6519] alloc_pages_mpol+0x1fb/0x550
[ 93.564835][ T6519] folio_alloc_noprof+0x20/0x2d0
[ 93.566305][ T6519] filemap_alloc_folio_noprof+0x3a1/0x470
[ 93.568058][ T6519] page_cache_ra_order+0x4c0/0xd00
[ 93.569567][ T6519] filemap_fault+0x1a5e/0x2740
[ 93.571012][ T6519] __do_fault+0x10a/0x490
[ 93.572316][ T6519] do_pte_missing+0x1a6/0x3fb0
[ 93.573831][ T6519] __handle_mm_fault+0x103d/0x2a40
[ 93.575343][ T6519] handle_mm_fault+0x3fe/0xad0
[ 93.576788][ T6519] do_user_addr_fault+0x60c/0x1370
[ 93.578279][ T6519] exc_page_fault+0x5c/0xc0
[ 93.579699][ T6519] asm_exc_page_fault+0x26/0x30
[ 93.581165][ T6519] page last free pid 6511 tgid 6511 stack trace:
[ 93.583136][ T6519] free_unref_folios+0x999/0x1630
[ 93.584660][ T6519] folios_put_refs+0x56f/0x740
[ 93.586057][ T6519] truncate_inode_pages_range+0x311/0xe30
[ 93.587836][ T6519] blkdev_flush_mapping+0xfb/0x290
[ 93.589365][ T6519] blkdev_put_whole+0xc4/0xf0
[ 93.590790][ T6519] bdev_release+0x47e/0x6d0
[ 93.592130][ T6519] blkdev_release+0x15/0x20
[ 93.593616][ T6519] __fput+0x3ff/0xb70
[ 93.594781][ T6519] task_work_run+0x14d/0x240
[ 93.596162][ T6519] do_exit+0xafb/0x2c30
[ 93.597418][ T6519] do_group_exit+0xd3/0x2a0
[ 93.598760][ T6519] __x64_sys_exit_group+0x3e/0x50
[ 93.600270][ T6519] x64_sys_call+0x1530/0x1730
[ 93.601707][ T6519] do_syscall_64+0xcd/0x260
[ 93.603189][ T6519] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.605014][ T6519] Modules linked in:
[ 93.606190][ T6519] CPU: 0 UID: 0 PID: 6519 Comm: syz.0.26 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 93.606206][ T6519] Tainted: [B]=BAD_PAGE
[ 93.606210][ T6519] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 93.606216][ T6519] Call Trace:
[ 93.606220][ T6519]
[ 93.606224][ T6519] dump_stack_lvl+0x16c/0x1f0
[ 93.606237][ T6519] bad_page+0xb3/0x1f0
[ 93.606247][ T6519] ? __pfx_bad_page+0x10/0x10
[ 93.606258][ T6519] ? __mem_cgroup_uncharge+0xda/0x130
[ 93.606270][ T6519] free_tail_page_prepare+0x44f/0x5b0
[ 93.606283][ T6519] __free_frozen_pages+0x96a/0xff0
[ 93.606298][ T6519] __folio_put+0x329/0x450
[ 93.606309][ T6519] ? __pfx___folio_put+0x10/0x10
[ 93.606320][ T6519] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 93.606332][ T6519] ? rcu_is_watching+0x12/0xc0
[ 93.606344][ T6519] ? lock_release+0x201/0x2f0
[ 93.606362][ T6519] filemap_free_folio+0x132/0x170
[ 93.606373][ T6519] delete_from_page_cache_batch+0x741/0x9b0
[ 93.606385][ T6519] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 93.606397][ T6519] ? __pfx_workingset_update_node+0x10/0x10
[ 93.606408][ T6519] ? xas_move_index+0xb0/0x110
[ 93.606420][ T6519] truncate_inode_pages_range+0x279/0xe30
[ 93.606435][ T6519] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 93.606457][ T6519] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 93.606473][ T6519] ? __pfx_has_bh_in_lru+0x10/0x10
[ 93.606487][ T6519] blkdev_flush_mapping+0xfb/0x290
[ 93.606500][ T6519] blkdev_put_whole+0xc4/0xf0
[ 93.606510][ T6519] bdev_release+0x47e/0x6d0
[ 93.606523][ T6519] ? __pfx_blkdev_release+0x10/0x10
[ 93.606535][ T6519] blkdev_release+0x15/0x20
[ 93.606547][ T6519] __fput+0x3ff/0xb70
[ 93.606558][ T6519] task_work_run+0x14d/0x240
[ 93.606569][ T6519] ? __pfx_task_work_run+0x10/0x10
[ 93.606579][ T6519] ? do_raw_spin_unlock+0x172/0x230
[ 93.606590][ T6519] do_exit+0xafb/0x2c30
[ 93.606605][ T6519] ? __pfx_do_exit+0x10/0x10
[ 93.606619][ T6519] ? preempt_schedule_thunk+0x16/0x30
[ 93.606629][ T6519] do_group_exit+0xd3/0x2a0
[ 93.606643][ T6519] __x64_sys_exit_group+0x3e/0x50
[ 93.606658][ T6519] x64_sys_call+0x1530/0x1730
[ 93.606672][ T6519] do_syscall_64+0xcd/0x260
[ 93.606684][ T6519] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.606694][ T6519] RIP: 0033:0x7fa53558e969
[ 93.606702][ T6519] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 93.606706][ T6519] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 93.606715][ T6519] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 93.606722][ T6519] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 93.606727][ T6519] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 93.606734][ T6519] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000a
[ 93.606739][ T6519] R13: 00000000000927c0 R14: 0000000000016b44 R15: 00007ffdfd5c05a0
[ 93.606748][ T6519]
[ 93.606762][ T6519] BUG: Bad page state in process syz.0.26 pfn:3c400
[ 93.692528][ T6519] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3c400
[ 93.695295][ T6519] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 93.698505][ T6519] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 93.701778][ T6519] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 93.704570][ T6519] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.707316][ T6519] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 93.709903][ T6519] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.712984][ T6519] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 93.715989][ T6519] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 93.718792][ T6519] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 93.720883][ T6519] page_owner tracks the page as allocated
[ 93.722515][ T6519] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6519, tgid 6519 (syz.0.26), ts 93418219307, free_ts 92628286003
[ 93.728354][ T6519] post_alloc_hook+0x181/0x1b0
[ 93.729879][ T6519] prep_new_page+0x16/0xb0
[ 93.731513][ T6519] get_page_from_freelist+0x135b/0x3800
[ 93.733753][ T6519] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 93.735528][ T6519] alloc_pages_mpol+0x1fb/0x550
[ 93.736947][ T6519] folio_alloc_noprof+0x20/0x2d0
[ 93.738388][ T6519] filemap_alloc_folio_noprof+0x3a1/0x470
[ 93.740088][ T6519] page_cache_ra_order+0x4c0/0xd00
[ 93.741583][ T6519] filemap_fault+0x1a5e/0x2740
[ 93.743083][ T6519] __do_fault+0x10a/0x490
[ 93.744416][ T6519] do_pte_missing+0x1a6/0x3fb0
[ 93.745823][ T6519] __handle_mm_fault+0x103d/0x2a40
[ 93.747365][ T6519] handle_mm_fault+0x3fe/0xad0
[ 93.748935][ T6519] do_user_addr_fault+0x60c/0x1370
[ 93.750606][ T6519] exc_page_fault+0x5c/0xc0
[ 93.751956][ T6519] asm_exc_page_fault+0x26/0x30
[ 93.753493][ T6519] page last free pid 6511 tgid 6511 stack trace:
[ 93.755311][ T6519] free_unref_folios+0x999/0x1630
[ 93.756810][ T6519] folios_put_refs+0x56f/0x740
[ 93.758206][ T6519] truncate_inode_pages_range+0x311/0xe30
[ 93.760011][ T6519] blkdev_flush_mapping+0xfb/0x290
[ 93.761951][ T6519] blkdev_put_whole+0xc4/0xf0
[ 93.763833][ T6519] bdev_release+0x47e/0x6d0
[ 93.765387][ T6519] blkdev_release+0x15/0x20
[ 93.766737][ T6519] __fput+0x3ff/0xb70
[ 93.767978][ T6519] task_work_run+0x14d/0x240
[ 93.769483][ T6519] do_exit+0xafb/0x2c30
[ 93.770767][ T6519] do_group_exit+0xd3/0x2a0
[ 93.772230][ T6519] __x64_sys_exit_group+0x3e/0x50
[ 93.773877][ T6519] x64_sys_call+0x1530/0x1730
[ 93.775403][ T6519] do_syscall_64+0xcd/0x260
[ 93.776850][ T6519] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.778774][ T6519] Modules linked in:
[ 93.780025][ T6519] CPU: 1 UID: 0 PID: 6519 Comm: syz.0.26 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 93.780041][ T6519] Tainted: [B]=BAD_PAGE
[ 93.780044][ T6519] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 93.780050][ T6519] Call Trace:
[ 93.780055][ T6519]
[ 93.780058][ T6519] dump_stack_lvl+0x16c/0x1f0
[ 93.780072][ T6519] bad_page+0xb3/0x1f0
[ 93.780084][ T6519] ? __pfx_bad_page+0x10/0x10
[ 93.780095][ T6519] ? page_bad_reason+0x9d/0x1e0
[ 93.780105][ T6519] __free_frozen_pages+0x76e/0xff0
[ 93.780120][ T6519] __folio_put+0x329/0x450
[ 93.780131][ T6519] ? __pfx___folio_put+0x10/0x10
[ 93.780142][ T6519] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 93.780153][ T6519] ? rcu_is_watching+0x12/0xc0
[ 93.780164][ T6519] ? lock_release+0x201/0x2f0
[ 93.780180][ T6519] filemap_free_folio+0x132/0x170
[ 93.780190][ T6519] delete_from_page_cache_batch+0x741/0x9b0
[ 93.780202][ T6519] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 93.780214][ T6519] ? __pfx_workingset_update_node+0x10/0x10
[ 93.780225][ T6519] ? xas_move_index+0xb0/0x110
[ 93.780238][ T6519] truncate_inode_pages_range+0x279/0xe30
[ 93.780253][ T6519] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 93.780275][ T6519] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 93.780291][ T6519] ? __pfx_has_bh_in_lru+0x10/0x10
[ 93.780305][ T6519] blkdev_flush_mapping+0xfb/0x290
[ 93.780318][ T6519] blkdev_put_whole+0xc4/0xf0
[ 93.780328][ T6519] bdev_release+0x47e/0x6d0
[ 93.780345][ T6519] ? __pfx_blkdev_release+0x10/0x10
[ 93.780357][ T6519] blkdev_release+0x15/0x20
[ 93.780369][ T6519] __fput+0x3ff/0xb70
[ 93.780381][ T6519] task_work_run+0x14d/0x240
[ 93.780392][ T6519] ? __pfx_task_work_run+0x10/0x10
[ 93.780401][ T6519] ? do_raw_spin_unlock+0x172/0x230
[ 93.780412][ T6519] do_exit+0xafb/0x2c30
[ 93.780428][ T6519] ? __pfx_do_exit+0x10/0x10
[ 93.780441][ T6519] ? preempt_schedule_thunk+0x16/0x30
[ 93.780452][ T6519] do_group_exit+0xd3/0x2a0
[ 93.780467][ T6519] __x64_sys_exit_group+0x3e/0x50
[ 93.780482][ T6519] x64_sys_call+0x1530/0x1730
[ 93.780496][ T6519] do_syscall_64+0xcd/0x260
[ 93.780508][ T6519] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.780518][ T6519] RIP: 0033:0x7fa53558e969
[ 93.780525][ T6519] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 93.780530][ T6519] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 93.780539][ T6519] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 93.780545][ T6519] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 93.780551][ T6519] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 93.780557][ T6519] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000a
[ 93.780563][ T6519] R13: 00000000000927c0 R14: 0000000000016b44 R15: 00007ffdfd5c05a0
[ 93.780571][ T6519]
[ 93.821401][ T6522] BUG: Bad page state in process syz.0.27 pfn:3b201
[ 93.887125][ T6522] page does not match folio
[ 93.888969][ T6522] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3b201
[ 93.892942][ T6522] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 93.895865][ T6522] raw: 00fff00000000000 ffffea0000ec8000 00000000ffffffff ffffffffffffffff
[ 93.899372][ T6522] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 93.902719][ T6522] page dumped because: nonzero pincount
[ 93.907773][ T6522] page_owner tracks the page as allocated
[ 93.910059][ T6522] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6521, tgid 6521 (syz.0.27), ts 93789247363, free_ts 93411790126
[ 93.917698][ T6522] post_alloc_hook+0x181/0x1b0
[ 93.919580][ T6522] prep_new_page+0x16/0xb0
[ 93.921315][ T6522] get_page_from_freelist+0x135b/0x3800
[ 93.927814][ T6522] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 93.930163][ T6522] alloc_pages_mpol+0x1fb/0x550
[ 93.932102][ T6522] folio_alloc_noprof+0x20/0x2d0
[ 93.934190][ T6522] filemap_alloc_folio_noprof+0x3a1/0x470
[ 93.936493][ T6522] page_cache_ra_order+0x4c0/0xd00
[ 93.938523][ T6522] filemap_fault+0x1a5e/0x2740
[ 93.940427][ T6522] __do_fault+0x10a/0x490
[ 93.942142][ T6522] do_pte_missing+0x1a6/0x3fb0
[ 93.944121][ T6522] __handle_mm_fault+0x103d/0x2a40
[ 93.946137][ T6522] handle_mm_fault+0x3fe/0xad0
[ 93.948054][ T6522] do_user_addr_fault+0x60c/0x1370
[ 93.950092][ T6522] exc_page_fault+0x5c/0xc0
[ 93.951913][ T6522] asm_exc_page_fault+0x26/0x30
[ 93.953933][ T6522] page last free pid 6517 tgid 6516 stack trace:
[ 93.956443][ T6522] free_unref_folios+0x999/0x1630
[ 93.958463][ T6522] folios_put_refs+0x56f/0x740
[ 93.960382][ T6522] truncate_inode_pages_range+0x311/0xe30
[ 93.962610][ T6522] blkdev_flush_mapping+0xfb/0x290
[ 93.964714][ T6522] blkdev_put_whole+0xc4/0xf0
[ 93.966575][ T6522] bdev_release+0x47e/0x6d0
[ 93.968363][ T6522] blkdev_release+0x15/0x20
[ 93.970174][ T6522] __fput+0x3ff/0xb70
[ 93.971777][ T6522] task_work_run+0x14d/0x240
[ 93.973689][ T6522] do_exit+0xafb/0x2c30
[ 93.975307][ T6522] do_group_exit+0xd3/0x2a0
[ 93.976644][ T6522] get_signal+0x2673/0x26d0
[ 93.977968][ T6522] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.979593][ T6522] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.981217][ T6522] do_syscall_64+0xda/0x260
[ 93.982536][ T6522] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.984409][ T6522] Modules linked in:
[ 93.985581][ T6522] CPU: 3 UID: 0 PID: 6522 Comm: syz.0.27 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 93.985597][ T6522] Tainted: [B]=BAD_PAGE
[ 93.985600][ T6522] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 93.985607][ T6522] Call Trace:
[ 93.985610][ T6522]
[ 93.985614][ T6522] dump_stack_lvl+0x16c/0x1f0
[ 93.985627][ T6522] bad_page+0xb3/0x1f0
[ 93.985637][ T6522] ? __pfx_bad_page+0x10/0x10
[ 93.985648][ T6522] ? __mem_cgroup_uncharge+0xda/0x130
[ 93.985661][ T6522] free_tail_page_prepare+0x44f/0x5b0
[ 93.985673][ T6522] __free_frozen_pages+0x96a/0xff0
[ 93.985688][ T6522] __folio_put+0x329/0x450
[ 93.985699][ T6522] ? __pfx___folio_put+0x10/0x10
[ 93.985710][ T6522] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 93.985721][ T6522] ? rcu_is_watching+0x12/0xc0
[ 93.985733][ T6522] ? lock_release+0x201/0x2f0
[ 93.985749][ T6522] filemap_free_folio+0x132/0x170
[ 93.985759][ T6522] delete_from_page_cache_batch+0x741/0x9b0
[ 93.985772][ T6522] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 93.985784][ T6522] ? __pfx_workingset_update_node+0x10/0x10
[ 93.985795][ T6522] ? xas_move_index+0xb0/0x110
[ 93.985807][ T6522] truncate_inode_pages_range+0x279/0xe30
[ 93.985822][ T6522] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 93.985845][ T6522] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 93.985861][ T6522] ? __pfx_has_bh_in_lru+0x10/0x10
[ 93.985875][ T6522] blkdev_flush_mapping+0xfb/0x290
[ 93.985886][ T6522] ? filemap_check_errors+0xa9/0x160
[ 93.985901][ T6522] blkdev_put_whole+0xc4/0xf0
[ 93.985912][ T6522] bdev_release+0x47e/0x6d0
[ 93.985924][ T6522] ? __pfx_blkdev_release+0x10/0x10
[ 93.985936][ T6522] blkdev_release+0x15/0x20
[ 93.985948][ T6522] __fput+0x3ff/0xb70
[ 93.985960][ T6522] task_work_run+0x14d/0x240
[ 93.985971][ T6522] ? __pfx_task_work_run+0x10/0x10
[ 93.985980][ T6522] ? do_raw_spin_unlock+0x172/0x230
[ 93.985992][ T6522] do_exit+0xafb/0x2c30
[ 93.986006][ T6522] ? __pfx_futex_wake_mark+0x10/0x10
[ 93.986022][ T6522] ? __pfx_do_exit+0x10/0x10
[ 93.986036][ T6522] ? do_raw_spin_lock+0x12c/0x2b0
[ 93.986045][ T6522] ? get_signal+0x8f5/0x26d0
[ 93.986057][ T6522] ? rcu_is_watching+0x12/0xc0
[ 93.986068][ T6522] do_group_exit+0xd3/0x2a0
[ 93.986083][ T6522] get_signal+0x2673/0x26d0
[ 93.986097][ T6522] ? __pfx_get_signal+0x10/0x10
[ 93.986108][ T6522] ? do_futex+0x122/0x350
[ 93.986121][ T6522] ? __pfx_do_futex+0x10/0x10
[ 93.986134][ T6522] arch_do_signal_or_restart+0x8f/0x7d0
[ 93.986148][ T6522] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 93.986164][ T6522] ? madvise_unlock+0xc6/0x190
[ 93.986175][ T6522] syscall_exit_to_user_mode+0x150/0x2a0
[ 93.986188][ T6522] do_syscall_64+0xda/0x260
[ 93.986200][ T6522] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 93.986210][ T6522] RIP: 0033:0x7fa53558e969
[ 93.986217][ T6522] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 93.986222][ T6522] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 93.986231][ T6522] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 93.986238][ T6522] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 93.986244][ T6522] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 93.986249][ T6522] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 93.986255][ T6522] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 93.986264][ T6522]
[ 93.986278][ T6522] BUG: Bad page state in process syz.0.27 pfn:3b200
[ 94.090662][ T6522] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3b200
[ 94.093337][ T6522] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 94.095817][ T6522] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 94.098417][ T6522] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.100942][ T6522] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.103593][ T6522] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.106069][ T6522] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.108579][ T6522] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.111309][ T6522] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.113885][ T6522] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 94.115999][ T6522] page_owner tracks the page as allocated
[ 94.117650][ T6522] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6521, tgid 6521 (syz.0.27), ts 93789247363, free_ts 93411790126
[ 94.123635][ T6522] post_alloc_hook+0x181/0x1b0
[ 94.125272][ T6522] prep_new_page+0x16/0xb0
[ 94.126958][ T6522] get_page_from_freelist+0x135b/0x3800
[ 94.129018][ T6522] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.131214][ T6522] alloc_pages_mpol+0x1fb/0x550
[ 94.133000][ T6522] folio_alloc_noprof+0x20/0x2d0
[ 94.134705][ T6522] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.136848][ T6522] page_cache_ra_order+0x4c0/0xd00
[ 94.138516][ T6522] filemap_fault+0x1a5e/0x2740
[ 94.140309][ T6522] __do_fault+0x10a/0x490
[ 94.141897][ T6522] do_pte_missing+0x1a6/0x3fb0
[ 94.143803][ T6522] __handle_mm_fault+0x103d/0x2a40
[ 94.145688][ T6522] handle_mm_fault+0x3fe/0xad0
[ 94.147492][ T6522] do_user_addr_fault+0x60c/0x1370
[ 94.149399][ T6522] exc_page_fault+0x5c/0xc0
[ 94.151052][ T6522] asm_exc_page_fault+0x26/0x30
[ 94.152988][ T6522] page last free pid 6517 tgid 6516 stack trace:
[ 94.155336][ T6522] free_unref_folios+0x999/0x1630
[ 94.157236][ T6522] folios_put_refs+0x56f/0x740
[ 94.159030][ T6522] truncate_inode_pages_range+0x311/0xe30
[ 94.161183][ T6522] blkdev_flush_mapping+0xfb/0x290
[ 94.162958][ T6522] blkdev_put_whole+0xc4/0xf0
[ 94.164382][ T6522] bdev_release+0x47e/0x6d0
[ 94.165738][ T6522] blkdev_release+0x15/0x20
[ 94.167063][ T6522] __fput+0x3ff/0xb70
[ 94.168280][ T6522] task_work_run+0x14d/0x240
[ 94.169653][ T6522] do_exit+0xafb/0x2c30
[ 94.170932][ T6522] do_group_exit+0xd3/0x2a0
[ 94.172319][ T6522] get_signal+0x2673/0x26d0
[ 94.173754][ T6522] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.175442][ T6522] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.177092][ T6522] do_syscall_64+0xda/0x260
[ 94.178464][ T6522] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.180233][ T6522] Modules linked in:
[ 94.181404][ T6522] CPU: 3 UID: 0 PID: 6522 Comm: syz.0.27 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 94.181420][ T6522] Tainted: [B]=BAD_PAGE
[ 94.181424][ T6522] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.181430][ T6522] Call Trace:
[ 94.181434][ T6522]
[ 94.181437][ T6522] dump_stack_lvl+0x16c/0x1f0
[ 94.181450][ T6522] bad_page+0xb3/0x1f0
[ 94.181461][ T6522] ? __pfx_bad_page+0x10/0x10
[ 94.181472][ T6522] ? page_bad_reason+0x9d/0x1e0
[ 94.181482][ T6522] __free_frozen_pages+0x76e/0xff0
[ 94.181497][ T6522] __folio_put+0x329/0x450
[ 94.181508][ T6522] ? __pfx___folio_put+0x10/0x10
[ 94.181519][ T6522] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.181530][ T6522] ? rcu_is_watching+0x12/0xc0
[ 94.181542][ T6522] ? lock_release+0x201/0x2f0
[ 94.181562][ T6522] filemap_free_folio+0x132/0x170
[ 94.181572][ T6522] delete_from_page_cache_batch+0x741/0x9b0
[ 94.181585][ T6522] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.181597][ T6522] ? __pfx_workingset_update_node+0x10/0x10
[ 94.181608][ T6522] ? xas_move_index+0xb0/0x110
[ 94.181620][ T6522] truncate_inode_pages_range+0x279/0xe30
[ 94.181635][ T6522] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.181657][ T6522] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.181673][ T6522] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.181687][ T6522] blkdev_flush_mapping+0xfb/0x290
[ 94.181699][ T6522] ? filemap_check_errors+0xa9/0x160
[ 94.181714][ T6522] blkdev_put_whole+0xc4/0xf0
[ 94.181724][ T6522] bdev_release+0x47e/0x6d0
[ 94.181737][ T6522] ? __pfx_blkdev_release+0x10/0x10
[ 94.181749][ T6522] blkdev_release+0x15/0x20
[ 94.181761][ T6522] __fput+0x3ff/0xb70
[ 94.181773][ T6522] task_work_run+0x14d/0x240
[ 94.181783][ T6522] ? __pfx_task_work_run+0x10/0x10
[ 94.181793][ T6522] ? do_raw_spin_unlock+0x172/0x230
[ 94.181804][ T6522] do_exit+0xafb/0x2c30
[ 94.181818][ T6522] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.181834][ T6522] ? __pfx_do_exit+0x10/0x10
[ 94.181847][ T6522] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.181857][ T6522] ? get_signal+0x8f5/0x26d0
[ 94.181868][ T6522] ? rcu_is_watching+0x12/0xc0
[ 94.181879][ T6522] do_group_exit+0xd3/0x2a0
[ 94.181894][ T6522] get_signal+0x2673/0x26d0
[ 94.181908][ T6522] ? __pfx_get_signal+0x10/0x10
[ 94.181919][ T6522] ? do_futex+0x122/0x350
[ 94.181932][ T6522] ? __pfx_do_futex+0x10/0x10
[ 94.181945][ T6522] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.181959][ T6522] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.181974][ T6522] ? madvise_unlock+0xc6/0x190
[ 94.181986][ T6522] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.181998][ T6522] do_syscall_64+0xda/0x260
[ 94.182010][ T6522] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.182020][ T6522] RIP: 0033:0x7fa53558e969
[ 94.182027][ T6522] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 94.182031][ T6522] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.182041][ T6522] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 94.182047][ T6522] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 94.182053][ T6522] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 94.182059][ T6522] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 94.182065][ T6522] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 94.182073][ T6522]
[ 94.309646][ T6525] BUG: Bad page state in process syz.0.28 pfn:49401
[ 94.311708][ T6525] page does not match folio
[ 94.313159][ T6525] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x49401
[ 94.316056][ T6525] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 94.318296][ T6525] raw: 00fff00000000000 ffffea0001250000 00000000ffffffff ffffffffffffffff
[ 94.321229][ T6525] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.324040][ T6525] page dumped because: nonzero pincount
[ 94.325633][ T6525] page_owner tracks the page as allocated
[ 94.327280][ T6525] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6524, tgid 6524 (syz.0.28), ts 94284541103, free_ts 94182099630
[ 94.333350][ T6525] post_alloc_hook+0x181/0x1b0
[ 94.334773][ T6525] prep_new_page+0x16/0xb0
[ 94.336121][ T6525] get_page_from_freelist+0x135b/0x3800
[ 94.337761][ T6525] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.339550][ T6525] alloc_pages_mpol+0x1fb/0x550
[ 94.340985][ T6525] folio_alloc_noprof+0x20/0x2d0
[ 94.342457][ T6525] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.344261][ T6525] page_cache_ra_order+0x4c0/0xd00
[ 94.345755][ T6525] filemap_fault+0x1a5e/0x2740
[ 94.347191][ T6525] __do_fault+0x10a/0x490
[ 94.348591][ T6525] do_pte_missing+0x1a6/0x3fb0
[ 94.350029][ T6525] __handle_mm_fault+0x103d/0x2a40
[ 94.351519][ T6525] handle_mm_fault+0x3fe/0xad0
[ 94.352978][ T6525] do_user_addr_fault+0x60c/0x1370
[ 94.354467][ T6525] exc_page_fault+0x5c/0xc0
[ 94.355780][ T6525] asm_exc_page_fault+0x26/0x30
[ 94.357155][ T6525] page last free pid 6522 tgid 6521 stack trace:
[ 94.358956][ T6525] free_unref_folios+0x999/0x1630
[ 94.360423][ T6525] folios_put_refs+0x56f/0x740
[ 94.361817][ T6525] truncate_inode_pages_range+0x311/0xe30
[ 94.363539][ T6525] blkdev_flush_mapping+0xfb/0x290
[ 94.365026][ T6525] blkdev_put_whole+0xc4/0xf0
[ 94.366402][ T6525] bdev_release+0x47e/0x6d0
[ 94.367748][ T6525] blkdev_release+0x15/0x20
[ 94.369122][ T6525] __fput+0x3ff/0xb70
[ 94.370276][ T6525] task_work_run+0x14d/0x240
[ 94.371614][ T6525] do_exit+0xafb/0x2c30
[ 94.372887][ T6525] do_group_exit+0xd3/0x2a0
[ 94.374212][ T6525] get_signal+0x2673/0x26d0
[ 94.375553][ T6525] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.377200][ T6525] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.378868][ T6525] do_syscall_64+0xda/0x260
[ 94.380212][ T6525] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.381933][ T6525] Modules linked in:
[ 94.383214][ T6525] CPU: 0 UID: 0 PID: 6525 Comm: syz.0.28 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 94.383231][ T6525] Tainted: [B]=BAD_PAGE
[ 94.383234][ T6525] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.383240][ T6525] Call Trace:
[ 94.383245][ T6525]
[ 94.383249][ T6525] dump_stack_lvl+0x16c/0x1f0
[ 94.383262][ T6525] bad_page+0xb3/0x1f0
[ 94.383273][ T6525] ? __pfx_bad_page+0x10/0x10
[ 94.383284][ T6525] ? __mem_cgroup_uncharge+0xda/0x130
[ 94.383301][ T6525] free_tail_page_prepare+0x44f/0x5b0
[ 94.383325][ T6525] __free_frozen_pages+0x96a/0xff0
[ 94.383341][ T6525] __folio_put+0x329/0x450
[ 94.383352][ T6525] ? __pfx___folio_put+0x10/0x10
[ 94.383363][ T6525] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.383374][ T6525] ? rcu_is_watching+0x12/0xc0
[ 94.383386][ T6525] ? lock_release+0x201/0x2f0
[ 94.383401][ T6525] filemap_free_folio+0x132/0x170
[ 94.383412][ T6525] delete_from_page_cache_batch+0x741/0x9b0
[ 94.383424][ T6525] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.383436][ T6525] ? __pfx_workingset_update_node+0x10/0x10
[ 94.383447][ T6525] ? xas_move_index+0xb0/0x110
[ 94.383459][ T6525] truncate_inode_pages_range+0x279/0xe30
[ 94.383474][ T6525] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.383492][ T6525] ? __pfx___send_ipi_mask+0x10/0x10
[ 94.383510][ T6525] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.383526][ T6525] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.383541][ T6525] blkdev_flush_mapping+0xfb/0x290
[ 94.383553][ T6525] ? filemap_check_errors+0xa9/0x160
[ 94.383568][ T6525] blkdev_put_whole+0xc4/0xf0
[ 94.383578][ T6525] bdev_release+0x47e/0x6d0
[ 94.383591][ T6525] ? __pfx_blkdev_release+0x10/0x10
[ 94.383603][ T6525] blkdev_release+0x15/0x20
[ 94.383615][ T6525] __fput+0x3ff/0xb70
[ 94.383627][ T6525] task_work_run+0x14d/0x240
[ 94.383638][ T6525] ? __pfx_task_work_run+0x10/0x10
[ 94.383648][ T6525] ? do_raw_spin_unlock+0x172/0x230
[ 94.383659][ T6525] do_exit+0xafb/0x2c30
[ 94.383672][ T6525] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.383689][ T6525] ? __pfx_do_exit+0x10/0x10
[ 94.383702][ T6525] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.383712][ T6525] ? get_signal+0x8f5/0x26d0
[ 94.383723][ T6525] ? rcu_is_watching+0x12/0xc0
[ 94.383734][ T6525] do_group_exit+0xd3/0x2a0
[ 94.383749][ T6525] get_signal+0x2673/0x26d0
[ 94.383762][ T6525] ? __pfx_get_signal+0x10/0x10
[ 94.383774][ T6525] ? do_futex+0x122/0x350
[ 94.383787][ T6525] ? __pfx_do_futex+0x10/0x10
[ 94.383800][ T6525] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.383814][ T6525] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.383829][ T6525] ? rcu_is_watching+0x12/0xc0
[ 94.383840][ T6525] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.383853][ T6525] do_syscall_64+0xda/0x260
[ 94.383865][ T6525] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.383874][ T6525] RIP: 0033:0x7fa53558e969
[ 94.383882][ T6525] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 94.383886][ T6525] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.383896][ T6525] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 94.383903][ T6525] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 94.383909][ T6525] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 94.383915][ T6525] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 94.383921][ T6525] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 94.383929][ T6525]
[ 94.383955][ T6525] BUG: Bad page state in process syz.0.28 pfn:49400
[ 94.487822][ T6525] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x49400
[ 94.490425][ T6525] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 94.492920][ T6525] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 94.495459][ T6525] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.497974][ T6525] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.500497][ T6525] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.504850][ T6525] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.508300][ T6525] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.511615][ T6525] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.515022][ T6525] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 94.517833][ T6525] page_owner tracks the page as allocated
[ 94.520076][ T6525] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6524, tgid 6524 (syz.0.28), ts 94284541103, free_ts 94182099630
[ 94.527898][ T6525] post_alloc_hook+0x181/0x1b0
[ 94.529814][ T6525] prep_new_page+0x16/0xb0
[ 94.531590][ T6525] get_page_from_freelist+0x135b/0x3800
[ 94.533873][ T6525] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.536251][ T6525] alloc_pages_mpol+0x1fb/0x550
[ 94.538155][ T6525] folio_alloc_noprof+0x20/0x2d0
[ 94.540118][ T6525] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.542368][ T6525] page_cache_ra_order+0x4c0/0xd00
[ 94.544467][ T6525] filemap_fault+0x1a5e/0x2740
[ 94.546346][ T6525] __do_fault+0x10a/0x490
[ 94.548056][ T6525] do_pte_missing+0x1a6/0x3fb0
[ 94.549933][ T6525] __handle_mm_fault+0x103d/0x2a40
[ 94.551957][ T6525] handle_mm_fault+0x3fe/0xad0
[ 94.553932][ T6525] do_user_addr_fault+0x60c/0x1370
[ 94.555939][ T6525] exc_page_fault+0x5c/0xc0
[ 94.557718][ T6525] asm_exc_page_fault+0x26/0x30
[ 94.559669][ T6525] page last free pid 6522 tgid 6521 stack trace:
[ 94.562140][ T6525] free_unref_folios+0x999/0x1630
[ 94.564208][ T6525] folios_put_refs+0x56f/0x740
[ 94.566103][ T6525] truncate_inode_pages_range+0x311/0xe30
[ 94.568328][ T6525] blkdev_flush_mapping+0xfb/0x290
[ 94.570381][ T6525] blkdev_put_whole+0xc4/0xf0
[ 94.572270][ T6525] bdev_release+0x47e/0x6d0
[ 94.574136][ T6525] blkdev_release+0x15/0x20
[ 94.575930][ T6525] __fput+0x3ff/0xb70
[ 94.577510][ T6525] task_work_run+0x14d/0x240
[ 94.579355][ T6525] do_exit+0xafb/0x2c30
[ 94.581010][ T6525] do_group_exit+0xd3/0x2a0
[ 94.582869][ T6525] get_signal+0x2673/0x26d0
[ 94.584360][ T6525] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.586037][ T6525] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.587714][ T6525] do_syscall_64+0xda/0x260
[ 94.589089][ T6525] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.590803][ T6525] Modules linked in:
[ 94.591999][ T6525] CPU: 1 UID: 0 PID: 6525 Comm: syz.0.28 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 94.592015][ T6525] Tainted: [B]=BAD_PAGE
[ 94.592019][ T6525] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.592025][ T6525] Call Trace:
[ 94.592029][ T6525]
[ 94.592032][ T6525] dump_stack_lvl+0x16c/0x1f0
[ 94.592046][ T6525] bad_page+0xb3/0x1f0
[ 94.592056][ T6525] ? __pfx_bad_page+0x10/0x10
[ 94.592067][ T6525] ? page_bad_reason+0x9d/0x1e0
[ 94.592077][ T6525] __free_frozen_pages+0x76e/0xff0
[ 94.592092][ T6525] __folio_put+0x329/0x450
[ 94.592103][ T6525] ? __pfx___folio_put+0x10/0x10
[ 94.592113][ T6525] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.592125][ T6525] ? rcu_is_watching+0x12/0xc0
[ 94.592137][ T6525] ? lock_release+0x201/0x2f0
[ 94.592165][ T6525] filemap_free_folio+0x132/0x170
[ 94.592176][ T6525] delete_from_page_cache_batch+0x741/0x9b0
[ 94.592188][ T6525] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.592200][ T6525] ? __pfx_workingset_update_node+0x10/0x10
[ 94.592211][ T6525] ? xas_move_index+0xb0/0x110
[ 94.592224][ T6525] truncate_inode_pages_range+0x279/0xe30
[ 94.592239][ T6525] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.592257][ T6525] ? __pfx___send_ipi_mask+0x10/0x10
[ 94.592275][ T6525] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.592291][ T6525] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.592306][ T6525] blkdev_flush_mapping+0xfb/0x290
[ 94.592317][ T6525] ? filemap_check_errors+0xa9/0x160
[ 94.592332][ T6525] blkdev_put_whole+0xc4/0xf0
[ 94.592343][ T6525] bdev_release+0x47e/0x6d0
[ 94.592355][ T6525] ? __pfx_blkdev_release+0x10/0x10
[ 94.592367][ T6525] blkdev_release+0x15/0x20
[ 94.592379][ T6525] __fput+0x3ff/0xb70
[ 94.592391][ T6525] task_work_run+0x14d/0x240
[ 94.592402][ T6525] ? __pfx_task_work_run+0x10/0x10
[ 94.592412][ T6525] ? do_raw_spin_unlock+0x172/0x230
[ 94.592423][ T6525] do_exit+0xafb/0x2c30
[ 94.592436][ T6525] ? __pfx_futex_wake_mark+0x10/0x10
[ 94.592454][ T6525] ? __pfx_do_exit+0x10/0x10
[ 94.592467][ T6525] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.592477][ T6525] ? get_signal+0x8f5/0x26d0
[ 94.592488][ T6525] ? rcu_is_watching+0x12/0xc0
[ 94.592499][ T6525] do_group_exit+0xd3/0x2a0
[ 94.592514][ T6525] get_signal+0x2673/0x26d0
[ 94.592527][ T6525] ? __pfx_get_signal+0x10/0x10
[ 94.592539][ T6525] ? do_futex+0x122/0x350
[ 94.592555][ T6525] ? __pfx_do_futex+0x10/0x10
[ 94.592568][ T6525] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.592583][ T6525] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.592598][ T6525] ? rcu_is_watching+0x12/0xc0
[ 94.592610][ T6525] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.592622][ T6525] do_syscall_64+0xda/0x260
[ 94.592634][ T6525] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.592644][ T6525] RIP: 0033:0x7fa53558e969
[ 94.592652][ T6525] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 94.592657][ T6525] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.592666][ T6525] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 94.592672][ T6525] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 94.592678][ T6525] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 94.592684][ T6525] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 94.592690][ T6525] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 94.592698][ T6525]
[ 94.729064][ T6527] BUG: Bad page state in process syz.0.29 pfn:49001
[ 94.731291][ T6527] page does not match folio
[ 94.732628][ T6527] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x49001
[ 94.736572][ T5959] Bluetooth: hci0: command tx timeout
[ 94.737133][ T6527] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 94.740798][ T6527] raw: 00fff00000000000 ffffea0001240000 00000000ffffffff ffffffffffffffff
[ 94.743400][ T6527] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.745976][ T6527] page dumped because: nonzero pincount
[ 94.747580][ T6527] page_owner tracks the page as allocated
[ 94.749250][ T6527] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6526, tgid 6526 (syz.0.29), ts 94699283809, free_ts 81513559639
[ 94.755410][ T6527] post_alloc_hook+0x181/0x1b0
[ 94.756909][ T6527] prep_new_page+0x16/0xb0
[ 94.758202][ T6527] get_page_from_freelist+0x135b/0x3800
[ 94.759860][ T6527] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.761651][ T6527] alloc_pages_mpol+0x1fb/0x550
[ 94.767639][ T6527] folio_alloc_noprof+0x20/0x2d0
[ 94.769177][ T6527] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.770902][ T6527] page_cache_ra_order+0x4c0/0xd00
[ 94.772431][ T6527] filemap_fault+0x1a5e/0x2740
[ 94.773986][ T6527] __do_fault+0x10a/0x490
[ 94.775260][ T6527] do_pte_missing+0x1a6/0x3fb0
[ 94.776639][ T6527] __handle_mm_fault+0x103d/0x2a40
[ 94.778160][ T6527] handle_mm_fault+0x3fe/0xad0
[ 94.779589][ T6527] do_user_addr_fault+0x60c/0x1370
[ 94.781102][ T6527] exc_page_fault+0x5c/0xc0
[ 94.782458][ T6527] asm_exc_page_fault+0x26/0x30
[ 94.784058][ T6527] page last free pid 6200 tgid 6200 stack trace:
[ 94.785907][ T6527] free_unref_folios+0x999/0x1630
[ 94.787458][ T6527] folios_put_refs+0x56f/0x740
[ 94.788903][ T6527] free_pages_and_swap_cache+0x245/0x4a0
[ 94.790598][ T6527] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 94.792431][ T6527] tlb_finish_mmu+0x168/0x7b0
[ 94.793987][ T6527] vms_clear_ptes+0x55e/0x770
[ 94.795509][ T6527] vms_complete_munmap_vmas+0x1ca/0x970
[ 94.797179][ T6527] do_vmi_align_munmap+0x43b/0x7d0
[ 94.798755][ T6527] do_vmi_munmap+0x208/0x3e0
[ 94.800177][ T6527] __vm_munmap+0x19a/0x390
[ 94.801548][ T6527] __x64_sys_munmap+0x59/0x80
[ 94.803084][ T6527] do_syscall_64+0xcd/0x260
[ 94.804506][ T6527] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.806422][ T6527] Modules linked in:
[ 94.807722][ T6527] CPU: 0 UID: 0 PID: 6527 Comm: syz.0.29 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 94.807738][ T6527] Tainted: [B]=BAD_PAGE
[ 94.807742][ T6527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 94.807748][ T6527] Call Trace:
[ 94.807752][ T6527]
[ 94.807756][ T6527] dump_stack_lvl+0x16c/0x1f0
[ 94.807769][ T6527] bad_page+0xb3/0x1f0
[ 94.807780][ T6527] ? __pfx_bad_page+0x10/0x10
[ 94.807790][ T6527] ? __mem_cgroup_uncharge+0xda/0x130
[ 94.807802][ T6527] free_tail_page_prepare+0x44f/0x5b0
[ 94.807816][ T6527] __free_frozen_pages+0x96a/0xff0
[ 94.807830][ T6527] __folio_put+0x329/0x450
[ 94.807841][ T6527] ? __pfx___folio_put+0x10/0x10
[ 94.807852][ T6527] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 94.807863][ T6527] ? rcu_is_watching+0x12/0xc0
[ 94.807876][ T6527] ? lock_release+0x201/0x2f0
[ 94.807899][ T6527] filemap_free_folio+0x132/0x170
[ 94.807916][ T6527] delete_from_page_cache_batch+0x741/0x9b0
[ 94.807936][ T6527] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 94.807957][ T6527] ? __pfx_workingset_update_node+0x10/0x10
[ 94.807971][ T6527] ? xas_move_index+0xb0/0x110
[ 94.807984][ T6527] truncate_inode_pages_range+0x279/0xe30
[ 94.807999][ T6527] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 94.808022][ T6527] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 94.808038][ T6527] ? __pfx_has_bh_in_lru+0x10/0x10
[ 94.808052][ T6527] blkdev_flush_mapping+0xfb/0x290
[ 94.808064][ T6527] ? filemap_check_errors+0xa9/0x160
[ 94.808085][ T6527] blkdev_put_whole+0xc4/0xf0
[ 94.808102][ T6527] bdev_release+0x47e/0x6d0
[ 94.808123][ T6527] ? __pfx_blkdev_release+0x10/0x10
[ 94.808143][ T6527] blkdev_release+0x15/0x20
[ 94.808161][ T6527] __fput+0x3ff/0xb70
[ 94.808177][ T6527] task_work_run+0x14d/0x240
[ 94.808188][ T6527] ? __pfx_task_work_run+0x10/0x10
[ 94.808198][ T6527] ? do_raw_spin_unlock+0x172/0x230
[ 94.808209][ T6527] do_exit+0xafb/0x2c30
[ 94.808223][ T6527] ? __pfx_try_to_wake_up+0x10/0x10
[ 94.808235][ T6527] ? futex_wake+0x432/0x4e0
[ 94.808249][ T6527] ? __pfx_do_exit+0x10/0x10
[ 94.808263][ T6527] ? do_raw_spin_lock+0x12c/0x2b0
[ 94.808273][ T6527] ? get_signal+0x8f5/0x26d0
[ 94.808284][ T6527] ? rcu_is_watching+0x12/0xc0
[ 94.808295][ T6527] do_group_exit+0xd3/0x2a0
[ 94.808310][ T6527] get_signal+0x2673/0x26d0
[ 94.808329][ T6527] ? __pfx_get_signal+0x10/0x10
[ 94.808340][ T6527] ? do_futex+0x122/0x350
[ 94.808353][ T6527] ? __pfx_do_futex+0x10/0x10
[ 94.808366][ T6527] arch_do_signal_or_restart+0x8f/0x7d0
[ 94.808381][ T6527] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 94.808396][ T6527] ? rcu_is_watching+0x12/0xc0
[ 94.808407][ T6527] syscall_exit_to_user_mode+0x150/0x2a0
[ 94.808426][ T6527] do_syscall_64+0xda/0x260
[ 94.808449][ T6527] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 94.808465][ T6527] RIP: 0033:0x7fa53558e969
[ 94.808481][ T6527] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 94.808488][ T6527] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 94.808504][ T6527] RAX: 0000000000000001 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 94.808514][ T6527] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa5357b5fac
[ 94.808522][ T6527] RBP: 00007fa5357b5fa0 R08: 00007fa536434000 R09: 0000000000000000
[ 94.808528][ T6527] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fa5357b5fac
[ 94.808534][ T6527] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 94.808543][ T6527]
[ 94.808557][ T6527] BUG: Bad page state in process syz.0.29 pfn:49000
[ 94.918269][ T6527] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x49000
[ 94.921308][ T6527] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 94.924942][ T6527] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 94.928561][ T6527] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.931938][ T6527] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.935440][ T6527] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 94.938858][ T6527] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.942056][ T6527] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 94.945067][ T6527] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 94.948262][ T6527] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 94.951054][ T6527] page_owner tracks the page as allocated
[ 94.953301][ T6527] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6526, tgid 6526 (syz.0.29), ts 94699283809, free_ts 81513551399
[ 94.959963][ T6527] post_alloc_hook+0x181/0x1b0
[ 94.961356][ T6527] prep_new_page+0x16/0xb0
[ 94.962943][ T6527] get_page_from_freelist+0x135b/0x3800
[ 94.965095][ T6527] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 94.967512][ T6527] alloc_pages_mpol+0x1fb/0x550
[ 94.969433][ T6527] folio_alloc_noprof+0x20/0x2d0
[ 94.971400][ T6527] filemap_alloc_folio_noprof+0x3a1/0x470
[ 94.973769][ T6527] page_cache_ra_order+0x4c0/0xd00
[ 94.975807][ T6527] filemap_fault+0x1a5e/0x2740
[ 94.977725][ T6527] __do_fault+0x10a/0x490
[ 94.979443][ T6527] do_pte_missing+0x1a6/0x3fb0
[ 94.981344][ T6527] __handle_mm_fault+0x103d/0x2a40
[ 94.983465][ T6527] handle_mm_fault+0x3fe/0xad0
[ 94.985365][ T6527] do_user_addr_fault+0x60c/0x1370
[ 94.987404][ T6527] exc_page_fault+0x5c/0xc0
[ 94.989225][ T6527] asm_exc_page_fault+0x26/0x30
[ 94.991157][ T6527] page last free pid 6200 tgid 6200 stack trace:
[ 94.993728][ T6527] free_unref_folios+0x999/0x1630
[ 94.995719][ T6527] folios_put_refs+0x56f/0x740
[ 94.997624][ T6527] free_pages_and_swap_cache+0x245/0x4a0
[ 94.999827][ T6527] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 95.002159][ T6527] tlb_finish_mmu+0x168/0x7b0
[ 95.004095][ T6527] vms_clear_ptes+0x55e/0x770
[ 95.005894][ T6527] vms_complete_munmap_vmas+0x1ca/0x970
[ 95.008072][ T6527] do_vmi_align_munmap+0x43b/0x7d0
[ 95.010104][ T6527] do_vmi_munmap+0x208/0x3e0
[ 95.011957][ T6527] __vm_munmap+0x19a/0x390
[ 95.013927][ T6527] __x64_sys_munmap+0x59/0x80
[ 95.015826][ T6527] do_syscall_64+0xcd/0x260
[ 95.017611][ T6527] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.019931][ T6527] Modules linked in:
[ 95.021476][ T6527] CPU: 1 UID: 0 PID: 6527 Comm: syz.0.29 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 95.021502][ T6527] Tainted: [B]=BAD_PAGE
[ 95.021507][ T6527] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.021518][ T6527] Call Trace:
[ 95.021523][ T6527]
[ 95.021530][ T6527] dump_stack_lvl+0x16c/0x1f0
[ 95.021551][ T6527] bad_page+0xb3/0x1f0
[ 95.021568][ T6527] ? __pfx_bad_page+0x10/0x10
[ 95.021585][ T6527] ? page_bad_reason+0x9d/0x1e0
[ 95.021602][ T6527] __free_frozen_pages+0x76e/0xff0
[ 95.021626][ T6527] __folio_put+0x329/0x450
[ 95.021643][ T6527] ? __pfx___folio_put+0x10/0x10
[ 95.021661][ T6527] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.021679][ T6527] ? rcu_is_watching+0x12/0xc0
[ 95.021698][ T6527] ? lock_release+0x201/0x2f0
[ 95.021722][ T6527] filemap_free_folio+0x132/0x170
[ 95.021739][ T6527] delete_from_page_cache_batch+0x741/0x9b0
[ 95.021760][ T6527] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.021779][ T6527] ? __pfx_workingset_update_node+0x10/0x10
[ 95.021797][ T6527] ? xas_move_index+0xb0/0x110
[ 95.021817][ T6527] truncate_inode_pages_range+0x279/0xe30
[ 95.021840][ T6527] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.021879][ T6527] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.021904][ T6527] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.021927][ T6527] blkdev_flush_mapping+0xfb/0x290
[ 95.021946][ T6527] ? filemap_check_errors+0xa9/0x160
[ 95.021969][ T6527] blkdev_put_whole+0xc4/0xf0
[ 95.021987][ T6527] bdev_release+0x47e/0x6d0
[ 95.022008][ T6527] ? __pfx_blkdev_release+0x10/0x10
[ 95.022027][ T6527] blkdev_release+0x15/0x20
[ 95.022046][ T6527] __fput+0x3ff/0xb70
[ 95.022065][ T6527] task_work_run+0x14d/0x240
[ 95.022082][ T6527] ? __pfx_task_work_run+0x10/0x10
[ 95.022098][ T6527] ? do_raw_spin_unlock+0x172/0x230
[ 95.022117][ T6527] do_exit+0xafb/0x2c30
[ 95.022139][ T6527] ? __pfx_try_to_wake_up+0x10/0x10
[ 95.022158][ T6527] ? futex_wake+0x432/0x4e0
[ 95.022181][ T6527] ? __pfx_do_exit+0x10/0x10
[ 95.022203][ T6527] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.022219][ T6527] ? get_signal+0x8f5/0x26d0
[ 95.022237][ T6527] ? rcu_is_watching+0x12/0xc0
[ 95.022256][ T6527] do_group_exit+0xd3/0x2a0
[ 95.022279][ T6527] get_signal+0x2673/0x26d0
[ 95.022302][ T6527] ? __pfx_get_signal+0x10/0x10
[ 95.022321][ T6527] ? do_futex+0x122/0x350
[ 95.022343][ T6527] ? __pfx_do_futex+0x10/0x10
[ 95.022364][ T6527] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.022393][ T6527] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.022418][ T6527] ? rcu_is_watching+0x12/0xc0
[ 95.022437][ T6527] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.022459][ T6527] do_syscall_64+0xda/0x260
[ 95.022478][ T6527] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.022495][ T6527] RIP: 0033:0x7fa53558e969
[ 95.022507][ T6527] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 95.022515][ T6527] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.022530][ T6527] RAX: 0000000000000001 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 95.022540][ T6527] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa5357b5fac
[ 95.022550][ T6527] RBP: 00007fa5357b5fa0 R08: 00007fa536434000 R09: 0000000000000000
[ 95.022560][ T6527] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fa5357b5fac
[ 95.022570][ T6527] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 95.022585][ T6527]
[ 95.185247][ T6530] BUG: Bad page state in process syz.0.30 pfn:49201
[ 95.187436][ T6530] page does not match folio
[ 95.189039][ T6530] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x49201
[ 95.191891][ T6530] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 95.194099][ T6530] raw: 00fff00000000000 ffffea0001248000 00000000ffffffff ffffffffffffffff
[ 95.196597][ T6530] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.199025][ T6530] page dumped because: nonzero pincount
[ 95.200631][ T6530] page_owner tracks the page as allocated
[ 95.202296][ T6530] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6529, tgid 6529 (syz.0.30), ts 95163636779, free_ts 95153117500
[ 95.208635][ T6530] post_alloc_hook+0x181/0x1b0
[ 95.210092][ T6530] prep_new_page+0x16/0xb0
[ 95.211426][ T6530] get_page_from_freelist+0x135b/0x3800
[ 95.213160][ T6530] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.214941][ T6530] alloc_pages_mpol+0x1fb/0x550
[ 95.216357][ T6530] folio_alloc_noprof+0x20/0x2d0
[ 95.217788][ T6530] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.219453][ T6530] page_cache_ra_order+0x4c0/0xd00
[ 95.220953][ T6530] filemap_fault+0x1a5e/0x2740
[ 95.222372][ T6530] __do_fault+0x10a/0x490
[ 95.223890][ T6530] do_pte_missing+0x1a6/0x3fb0
[ 95.225425][ T6530] __handle_mm_fault+0x103d/0x2a40
[ 95.226972][ T6530] handle_mm_fault+0x3fe/0xad0
[ 95.228374][ T6530] do_user_addr_fault+0x60c/0x1370
[ 95.229853][ T6530] exc_page_fault+0x5c/0xc0
[ 95.231181][ T6530] asm_exc_page_fault+0x26/0x30
[ 95.232602][ T6530] page last free pid 6527 tgid 6526 stack trace:
[ 95.234813][ T6530] free_unref_folios+0x999/0x1630
[ 95.236341][ T6530] folios_put_refs+0x56f/0x740
[ 95.237742][ T6530] truncate_inode_pages_range+0x311/0xe30
[ 95.239453][ T6530] blkdev_flush_mapping+0xfb/0x290
[ 95.240948][ T6530] blkdev_put_whole+0xc4/0xf0
[ 95.242365][ T6530] bdev_release+0x47e/0x6d0
[ 95.244397][ T6530] blkdev_release+0x15/0x20
[ 95.245767][ T6530] __fput+0x3ff/0xb70
[ 95.246952][ T6530] task_work_run+0x14d/0x240
[ 95.248321][ T6530] do_exit+0xafb/0x2c30
[ 95.249640][ T6530] do_group_exit+0xd3/0x2a0
[ 95.251023][ T6530] get_signal+0x2673/0x26d0
[ 95.252383][ T6530] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.254458][ T6530] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.256084][ T6530] do_syscall_64+0xda/0x260
[ 95.257425][ T6530] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.259187][ T6530] Modules linked in:
[ 95.260457][ T6530] CPU: 0 UID: 0 PID: 6530 Comm: syz.0.30 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 95.260473][ T6530] Tainted: [B]=BAD_PAGE
[ 95.260477][ T6530] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.260483][ T6530] Call Trace:
[ 95.260487][ T6530]
[ 95.260490][ T6530] dump_stack_lvl+0x16c/0x1f0
[ 95.260503][ T6530] bad_page+0xb3/0x1f0
[ 95.260514][ T6530] ? __pfx_bad_page+0x10/0x10
[ 95.260524][ T6530] ? __mem_cgroup_uncharge+0xda/0x130
[ 95.260536][ T6530] free_tail_page_prepare+0x44f/0x5b0
[ 95.260549][ T6530] __free_frozen_pages+0x96a/0xff0
[ 95.260564][ T6530] __folio_put+0x329/0x450
[ 95.260575][ T6530] ? __pfx___folio_put+0x10/0x10
[ 95.260586][ T6530] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.260597][ T6530] ? rcu_is_watching+0x12/0xc0
[ 95.260609][ T6530] ? lock_release+0x201/0x2f0
[ 95.260624][ T6530] filemap_free_folio+0x132/0x170
[ 95.260635][ T6530] delete_from_page_cache_batch+0x741/0x9b0
[ 95.260647][ T6530] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.260659][ T6530] ? __pfx_workingset_update_node+0x10/0x10
[ 95.260671][ T6530] ? xas_move_index+0xb0/0x110
[ 95.260683][ T6530] truncate_inode_pages_range+0x279/0xe30
[ 95.260698][ T6530] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.260720][ T6530] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.260736][ T6530] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.260751][ T6530] blkdev_flush_mapping+0xfb/0x290
[ 95.260763][ T6530] ? filemap_check_errors+0xa9/0x160
[ 95.260777][ T6530] blkdev_put_whole+0xc4/0xf0
[ 95.260788][ T6530] bdev_release+0x47e/0x6d0
[ 95.260800][ T6530] ? __pfx_blkdev_release+0x10/0x10
[ 95.260812][ T6530] blkdev_release+0x15/0x20
[ 95.260824][ T6530] __fput+0x3ff/0xb70
[ 95.260835][ T6530] task_work_run+0x14d/0x240
[ 95.260846][ T6530] ? __pfx_task_work_run+0x10/0x10
[ 95.260856][ T6530] ? do_raw_spin_unlock+0x172/0x230
[ 95.260867][ T6530] do_exit+0xafb/0x2c30
[ 95.260881][ T6530] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.260897][ T6530] ? __pfx_do_exit+0x10/0x10
[ 95.260911][ T6530] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.260920][ T6530] ? get_signal+0x8f5/0x26d0
[ 95.260932][ T6530] ? rcu_is_watching+0x12/0xc0
[ 95.260943][ T6530] do_group_exit+0xd3/0x2a0
[ 95.260959][ T6530] get_signal+0x2673/0x26d0
[ 95.260972][ T6530] ? __pfx_get_signal+0x10/0x10
[ 95.260984][ T6530] ? do_futex+0x122/0x350
[ 95.260997][ T6530] ? __pfx_do_futex+0x10/0x10
[ 95.261010][ T6530] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.261025][ T6530] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.261041][ T6530] ? rcu_is_watching+0x12/0xc0
[ 95.261052][ T6530] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.261065][ T6530] do_syscall_64+0xda/0x260
[ 95.261077][ T6530] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.261086][ T6530] RIP: 0033:0x7fa53558e969
[ 95.261093][ T6530] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 95.261098][ T6530] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.261107][ T6530] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 95.261114][ T6530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 95.261120][ T6530] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.261125][ T6530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 95.261131][ T6530] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 95.261140][ T6530]
[ 95.261152][ T6530] BUG: Bad page state in process syz.0.30 pfn:49200
[ 95.362203][ T6530] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x49200
[ 95.364916][ T6530] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 95.367289][ T6530] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 95.369845][ T6530] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.372321][ T6530] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.374913][ T6530] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.377395][ T6530] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.379981][ T6530] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.382477][ T6530] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.385147][ T6530] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 95.387244][ T6530] page_owner tracks the page as allocated
[ 95.388904][ T6530] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6529, tgid 6529 (syz.0.30), ts 95163636779, free_ts 95153117500
[ 95.394680][ T6530] post_alloc_hook+0x181/0x1b0
[ 95.396591][ T6530] prep_new_page+0x16/0xb0
[ 95.398337][ T6530] get_page_from_freelist+0x135b/0x3800
[ 95.400444][ T6530] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.402833][ T6530] alloc_pages_mpol+0x1fb/0x550
[ 95.404762][ T6530] folio_alloc_noprof+0x20/0x2d0
[ 95.406699][ T6530] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.408915][ T6530] page_cache_ra_order+0x4c0/0xd00
[ 95.410959][ T6530] filemap_fault+0x1a5e/0x2740
[ 95.412963][ T6530] __do_fault+0x10a/0x490
[ 95.414684][ T6530] do_pte_missing+0x1a6/0x3fb0
[ 95.416559][ T6530] __handle_mm_fault+0x103d/0x2a40
[ 95.418551][ T6530] handle_mm_fault+0x3fe/0xad0
[ 95.420448][ T6530] do_user_addr_fault+0x60c/0x1370
[ 95.422435][ T6530] exc_page_fault+0x5c/0xc0
[ 95.424296][ T6530] asm_exc_page_fault+0x26/0x30
[ 95.426147][ T6530] page last free pid 6527 tgid 6526 stack trace:
[ 95.428507][ T6530] free_unref_folios+0x999/0x1630
[ 95.430418][ T6530] folios_put_refs+0x56f/0x740
[ 95.432266][ T6530] truncate_inode_pages_range+0x311/0xe30
[ 95.434532][ T6530] blkdev_flush_mapping+0xfb/0x290
[ 95.436493][ T6530] blkdev_put_whole+0xc4/0xf0
[ 95.438338][ T6530] bdev_release+0x47e/0x6d0
[ 95.440124][ T6530] blkdev_release+0x15/0x20
[ 95.441871][ T6530] __fput+0x3ff/0xb70
[ 95.443520][ T6530] task_work_run+0x14d/0x240
[ 95.445291][ T6530] do_exit+0xafb/0x2c30
[ 95.446925][ T6530] do_group_exit+0xd3/0x2a0
[ 95.448720][ T6530] get_signal+0x2673/0x26d0
[ 95.450568][ T6530] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.452847][ T6530] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.455023][ T6530] do_syscall_64+0xda/0x260
[ 95.456845][ T6530] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.459212][ T6530] Modules linked in:
[ 95.460759][ T6530] CPU: 0 UID: 0 PID: 6530 Comm: syz.0.30 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 95.460784][ T6530] Tainted: [B]=BAD_PAGE
[ 95.460789][ T6530] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.460798][ T6530] Call Trace:
[ 95.460804][ T6530]
[ 95.460811][ T6530] dump_stack_lvl+0x16c/0x1f0
[ 95.460830][ T6530] bad_page+0xb3/0x1f0
[ 95.460848][ T6530] ? __pfx_bad_page+0x10/0x10
[ 95.460863][ T6530] ? page_bad_reason+0x9d/0x1e0
[ 95.460880][ T6530] __free_frozen_pages+0x76e/0xff0
[ 95.460904][ T6530] __folio_put+0x329/0x450
[ 95.460920][ T6530] ? __pfx___folio_put+0x10/0x10
[ 95.460938][ T6530] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.460955][ T6530] ? rcu_is_watching+0x12/0xc0
[ 95.460973][ T6530] ? lock_release+0x201/0x2f0
[ 95.460996][ T6530] filemap_free_folio+0x132/0x170
[ 95.461014][ T6530] delete_from_page_cache_batch+0x741/0x9b0
[ 95.461032][ T6530] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.461051][ T6530] ? __pfx_workingset_update_node+0x10/0x10
[ 95.461068][ T6530] ? xas_move_index+0xb0/0x110
[ 95.461087][ T6530] truncate_inode_pages_range+0x279/0xe30
[ 95.461110][ T6530] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.461145][ T6530] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.461170][ T6530] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.461193][ T6530] blkdev_flush_mapping+0xfb/0x290
[ 95.461210][ T6530] ? filemap_check_errors+0xa9/0x160
[ 95.461232][ T6530] blkdev_put_whole+0xc4/0xf0
[ 95.461250][ T6530] bdev_release+0x47e/0x6d0
[ 95.461267][ T6530] ? __pfx_blkdev_release+0x10/0x10
[ 95.461286][ T6530] blkdev_release+0x15/0x20
[ 95.461305][ T6530] __fput+0x3ff/0xb70
[ 95.461329][ T6530] task_work_run+0x14d/0x240
[ 95.461344][ T6530] ? __pfx_task_work_run+0x10/0x10
[ 95.461362][ T6530] ? do_raw_spin_unlock+0x172/0x230
[ 95.461378][ T6530] do_exit+0xafb/0x2c30
[ 95.461399][ T6530] ? __pfx_futex_wake_mark+0x10/0x10
[ 95.461424][ T6530] ? __pfx_do_exit+0x10/0x10
[ 95.461445][ T6530] ? do_raw_spin_lock+0x12c/0x2b0
[ 95.461461][ T6530] ? get_signal+0x8f5/0x26d0
[ 95.461479][ T6530] ? rcu_is_watching+0x12/0xc0
[ 95.461496][ T6530] do_group_exit+0xd3/0x2a0
[ 95.461518][ T6530] get_signal+0x2673/0x26d0
[ 95.461540][ T6530] ? __pfx_get_signal+0x10/0x10
[ 95.461558][ T6530] ? do_futex+0x122/0x350
[ 95.461577][ T6530] ? __pfx_do_futex+0x10/0x10
[ 95.461598][ T6530] arch_do_signal_or_restart+0x8f/0x7d0
[ 95.461621][ T6530] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 95.461644][ T6530] ? rcu_is_watching+0x12/0xc0
[ 95.461662][ T6530] syscall_exit_to_user_mode+0x150/0x2a0
[ 95.461682][ T6530] do_syscall_64+0xda/0x260
[ 95.461699][ T6530] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.461716][ T6530] RIP: 0033:0x7fa53558e969
[ 95.461729][ T6530] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 95.461738][ T6530] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 95.461752][ T6530] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 95.461763][ T6530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 95.461772][ T6530] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 95.461781][ T6530] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 95.461790][ T6530] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 95.461805][ T6530]
[ 95.486482][ T6532] BUG: Bad page state in process syz.0.31 pfn:49601
[ 95.570617][ T6532] page does not match folio
[ 95.572363][ T6532] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x49601
[ 95.576115][ T6532] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 95.578294][ T6532] raw: 00fff00000000000 ffffea0001258000 00000000ffffffff ffffffffffffffff
[ 95.580841][ T6532] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.583537][ T6532] page dumped because: nonzero pincount
[ 95.585563][ T6532] page_owner tracks the page as allocated
[ 95.587731][ T6532] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6532, tgid 6532 (syz.0.31), ts 95470612565, free_ts 81522916689
[ 95.595020][ T6532] post_alloc_hook+0x181/0x1b0
[ 95.596544][ T6532] prep_new_page+0x16/0xb0
[ 95.597866][ T6532] get_page_from_freelist+0x135b/0x3800
[ 95.599643][ T6532] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.601897][ T6532] alloc_pages_mpol+0x1fb/0x550
[ 95.604088][ T6532] folio_alloc_noprof+0x20/0x2d0
[ 95.606137][ T6532] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.608393][ T6532] page_cache_ra_order+0x4c0/0xd00
[ 95.610385][ T6532] filemap_fault+0x1a5e/0x2740
[ 95.612281][ T6532] __do_fault+0x10a/0x490
[ 95.614641][ T6532] do_pte_missing+0x1a6/0x3fb0
[ 95.616157][ T6532] __handle_mm_fault+0x103d/0x2a40
[ 95.617701][ T6532] handle_mm_fault+0x3fe/0xad0
[ 95.619360][ T6532] do_user_addr_fault+0x60c/0x1370
[ 95.621146][ T6532] exc_page_fault+0x5c/0xc0
[ 95.622542][ T6532] asm_exc_page_fault+0x26/0x30
[ 95.624306][ T6532] page last free pid 6200 tgid 6200 stack trace:
[ 95.626258][ T6532] free_unref_folios+0x999/0x1630
[ 95.627814][ T6532] folios_put_refs+0x56f/0x740
[ 95.629450][ T6532] free_pages_and_swap_cache+0x245/0x4a0
[ 95.631604][ T6532] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 95.633552][ T6532] tlb_finish_mmu+0x168/0x7b0
[ 95.634896][ T6532] vms_clear_ptes+0x55e/0x770
[ 95.636353][ T6532] vms_complete_munmap_vmas+0x1ca/0x970
[ 95.638029][ T6532] do_vmi_align_munmap+0x43b/0x7d0
[ 95.639939][ T6532] do_vmi_munmap+0x208/0x3e0
[ 95.641707][ T6532] __vm_munmap+0x19a/0x390
[ 95.643208][ T6532] __x64_sys_munmap+0x59/0x80
[ 95.644718][ T6532] do_syscall_64+0xcd/0x260
[ 95.646282][ T6532] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.648165][ T6532] Modules linked in:
[ 95.649433][ T6532] CPU: 0 UID: 0 PID: 6532 Comm: syz.0.31 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 95.649449][ T6532] Tainted: [B]=BAD_PAGE
[ 95.649452][ T6532] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.649458][ T6532] Call Trace:
[ 95.649463][ T6532]
[ 95.649466][ T6532] dump_stack_lvl+0x16c/0x1f0
[ 95.649481][ T6532] bad_page+0xb3/0x1f0
[ 95.649491][ T6532] ? __pfx_bad_page+0x10/0x10
[ 95.649501][ T6532] ? __mem_cgroup_uncharge+0xda/0x130
[ 95.649514][ T6532] free_tail_page_prepare+0x44f/0x5b0
[ 95.649528][ T6532] __free_frozen_pages+0x96a/0xff0
[ 95.649543][ T6532] __folio_put+0x329/0x450
[ 95.649554][ T6532] ? __pfx___folio_put+0x10/0x10
[ 95.649565][ T6532] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.649576][ T6532] ? rcu_is_watching+0x12/0xc0
[ 95.649588][ T6532] ? lock_release+0x201/0x2f0
[ 95.649603][ T6532] filemap_free_folio+0x132/0x170
[ 95.649614][ T6532] delete_from_page_cache_batch+0x741/0x9b0
[ 95.649626][ T6532] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.649638][ T6532] ? __pfx_workingset_update_node+0x10/0x10
[ 95.649648][ T6532] ? xas_move_index+0xb0/0x110
[ 95.649661][ T6532] truncate_inode_pages_range+0x279/0xe30
[ 95.649675][ T6532] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.649698][ T6532] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.649714][ T6532] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.649728][ T6532] blkdev_flush_mapping+0xfb/0x290
[ 95.649741][ T6532] blkdev_put_whole+0xc4/0xf0
[ 95.649757][ T6532] bdev_release+0x47e/0x6d0
[ 95.649776][ T6532] ? __pfx_blkdev_release+0x10/0x10
[ 95.649797][ T6532] blkdev_release+0x15/0x20
[ 95.649817][ T6532] __fput+0x3ff/0xb70
[ 95.649838][ T6532] task_work_run+0x14d/0x240
[ 95.649854][ T6532] ? __pfx_task_work_run+0x10/0x10
[ 95.649866][ T6532] ? do_raw_spin_unlock+0x172/0x230
[ 95.649877][ T6532] do_exit+0xafb/0x2c30
[ 95.649892][ T6532] ? __pfx_do_exit+0x10/0x10
[ 95.649906][ T6532] ? preempt_schedule_thunk+0x16/0x30
[ 95.649917][ T6532] do_group_exit+0xd3/0x2a0
[ 95.649932][ T6532] __x64_sys_exit_group+0x3e/0x50
[ 95.649947][ T6532] x64_sys_call+0x1530/0x1730
[ 95.649961][ T6532] do_syscall_64+0xcd/0x260
[ 95.649973][ T6532] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.649983][ T6532] RIP: 0033:0x7fa53558e969
[ 95.649991][ T6532] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 95.649995][ T6532] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 95.650005][ T6532] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 95.650011][ T6532] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 95.650017][ T6532] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 95.650023][ T6532] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000f
[ 95.650029][ T6532] R13: 00000000000927c0 R14: 000000000001734a R15: 00007ffdfd5c05a0
[ 95.650037][ T6532]
[ 95.650052][ T6532] BUG: Bad page state in process syz.0.31 pfn:49600
[ 95.751072][ T6532] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x49600
[ 95.754101][ T6532] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 95.756659][ T6532] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 95.759424][ T6532] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.762011][ T6532] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.764669][ T6532] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 95.767250][ T6532] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.770265][ T6532] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 95.773160][ T6532] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.776185][ T6532] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 95.778638][ T6532] page_owner tracks the page as allocated
[ 95.780734][ T6532] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6532, tgid 6532 (syz.0.31), ts 95470612565, free_ts 81522911594
[ 95.787856][ T6532] post_alloc_hook+0x181/0x1b0
[ 95.789558][ T6532] prep_new_page+0x16/0xb0
[ 95.790943][ T6532] get_page_from_freelist+0x135b/0x3800
[ 95.792692][ T6532] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.794628][ T6532] alloc_pages_mpol+0x1fb/0x550
[ 95.796126][ T6532] folio_alloc_noprof+0x20/0x2d0
[ 95.797620][ T6532] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.799638][ T6532] page_cache_ra_order+0x4c0/0xd00
[ 95.801384][ T6532] filemap_fault+0x1a5e/0x2740
[ 95.802970][ T6532] __do_fault+0x10a/0x490
[ 95.804318][ T6532] do_pte_missing+0x1a6/0x3fb0
[ 95.805798][ T6532] __handle_mm_fault+0x103d/0x2a40
[ 95.807445][ T6532] handle_mm_fault+0x3fe/0xad0
[ 95.809118][ T6532] do_user_addr_fault+0x60c/0x1370
[ 95.811180][ T6532] exc_page_fault+0x5c/0xc0
[ 95.813116][ T6532] asm_exc_page_fault+0x26/0x30
[ 95.815012][ T6532] page last free pid 6200 tgid 6200 stack trace:
[ 95.817361][ T6532] free_unref_folios+0x999/0x1630
[ 95.819394][ T6532] folios_put_refs+0x56f/0x740
[ 95.821355][ T6532] free_pages_and_swap_cache+0x245/0x4a0
[ 95.823711][ T6532] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 95.826086][ T6532] tlb_finish_mmu+0x168/0x7b0
[ 95.828027][ T6532] vms_clear_ptes+0x55e/0x770
[ 95.829970][ T6532] vms_complete_munmap_vmas+0x1ca/0x970
[ 95.832182][ T6532] do_vmi_align_munmap+0x43b/0x7d0
[ 95.833994][ T6532] do_vmi_munmap+0x208/0x3e0
[ 95.835454][ T6532] __vm_munmap+0x19a/0x390
[ 95.836972][ T6532] __x64_sys_munmap+0x59/0x80
[ 95.838462][ T6532] do_syscall_64+0xcd/0x260
[ 95.840192][ T6532] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.842535][ T6532] Modules linked in:
[ 95.844246][ T6532] CPU: 0 UID: 0 PID: 6532 Comm: syz.0.31 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 95.844273][ T6532] Tainted: [B]=BAD_PAGE
[ 95.844278][ T6532] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 95.844288][ T6532] Call Trace:
[ 95.844294][ T6532]
[ 95.844300][ T6532] dump_stack_lvl+0x16c/0x1f0
[ 95.844321][ T6532] bad_page+0xb3/0x1f0
[ 95.844344][ T6532] ? __pfx_bad_page+0x10/0x10
[ 95.844360][ T6532] ? page_bad_reason+0x9d/0x1e0
[ 95.844377][ T6532] __free_frozen_pages+0x76e/0xff0
[ 95.844402][ T6532] __folio_put+0x329/0x450
[ 95.844420][ T6532] ? __pfx___folio_put+0x10/0x10
[ 95.844437][ T6532] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 95.844456][ T6532] ? rcu_is_watching+0x12/0xc0
[ 95.844475][ T6532] ? lock_release+0x201/0x2f0
[ 95.844498][ T6532] filemap_free_folio+0x132/0x170
[ 95.844515][ T6532] delete_from_page_cache_batch+0x741/0x9b0
[ 95.844535][ T6532] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 95.844554][ T6532] ? __pfx_workingset_update_node+0x10/0x10
[ 95.844571][ T6532] ? xas_move_index+0xb0/0x110
[ 95.844591][ T6532] truncate_inode_pages_range+0x279/0xe30
[ 95.844615][ T6532] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 95.844653][ T6532] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 95.844678][ T6532] ? __pfx_has_bh_in_lru+0x10/0x10
[ 95.844701][ T6532] blkdev_flush_mapping+0xfb/0x290
[ 95.844721][ T6532] blkdev_put_whole+0xc4/0xf0
[ 95.844738][ T6532] bdev_release+0x47e/0x6d0
[ 95.844758][ T6532] ? __pfx_blkdev_release+0x10/0x10
[ 95.844778][ T6532] blkdev_release+0x15/0x20
[ 95.844797][ T6532] __fput+0x3ff/0xb70
[ 95.844816][ T6532] task_work_run+0x14d/0x240
[ 95.844835][ T6532] ? __pfx_task_work_run+0x10/0x10
[ 95.844851][ T6532] ? do_raw_spin_unlock+0x172/0x230
[ 95.844870][ T6532] do_exit+0xafb/0x2c30
[ 95.844895][ T6532] ? __pfx_do_exit+0x10/0x10
[ 95.844917][ T6532] ? preempt_schedule_thunk+0x16/0x30
[ 95.844934][ T6532] do_group_exit+0xd3/0x2a0
[ 95.844958][ T6532] __x64_sys_exit_group+0x3e/0x50
[ 95.844981][ T6532] x64_sys_call+0x1530/0x1730
[ 95.845004][ T6532] do_syscall_64+0xcd/0x260
[ 95.845024][ T6532] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 95.845041][ T6532] RIP: 0033:0x7fa53558e969
[ 95.845053][ T6532] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 95.845060][ T6532] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 95.845076][ T6532] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 95.845087][ T6532] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 95.845096][ T6532] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 95.845106][ T6532] R10: 0000000000000001 R11: 0000000000000246 R12: 000000000000000f
[ 95.845116][ T6532] R13: 00000000000927c0 R14: 000000000001734a R15: 00007ffdfd5c05a0
[ 95.845130][ T6532]
[ 95.868618][ T6534] BUG: Bad page state in process syz.0.32 pfn:47a01
[ 95.943247][ T6534] page does not match folio
[ 95.944616][ T6534] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x47a01
[ 95.947650][ T6534] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 95.949880][ T6534] raw: 00fff00000000000 ffffea00011e8000 00000000ffffffff ffffffffffffffff
[ 95.952374][ T6534] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 95.955070][ T6534] page dumped because: nonzero pincount
[ 95.956687][ T6534] page_owner tracks the page as allocated
[ 95.958365][ T6534] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6534, tgid 6534 (syz.0.32), ts 95851917043, free_ts 95461930567
[ 95.964214][ T6534] post_alloc_hook+0x181/0x1b0
[ 95.965635][ T6534] prep_new_page+0x16/0xb0
[ 95.966961][ T6534] get_page_from_freelist+0x135b/0x3800
[ 95.968593][ T6534] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 95.970338][ T6534] alloc_pages_mpol+0x1fb/0x550
[ 95.971801][ T6534] folio_alloc_noprof+0x20/0x2d0
[ 95.973333][ T6534] filemap_alloc_folio_noprof+0x3a1/0x470
[ 95.975057][ T6534] page_cache_ra_order+0x4c0/0xd00
[ 95.976564][ T6534] filemap_fault+0x1a5e/0x2740
[ 95.977973][ T6534] __do_fault+0x10a/0x490
[ 95.979247][ T6534] do_pte_missing+0x1a6/0x3fb0
[ 95.980658][ T6534] __handle_mm_fault+0x103d/0x2a40
[ 95.982149][ T6534] handle_mm_fault+0x3fe/0xad0
[ 95.983646][ T6534] do_user_addr_fault+0x60c/0x1370
[ 95.985414][ T6534] exc_page_fault+0x5c/0xc0
[ 95.986804][ T6534] asm_exc_page_fault+0x26/0x30
[ 95.988290][ T6534] page last free pid 6530 tgid 6529 stack trace:
[ 95.990248][ T6534] free_unref_folios+0x999/0x1630
[ 95.991786][ T6534] folios_put_refs+0x56f/0x740
[ 95.993306][ T6534] truncate_inode_pages_range+0x311/0xe30
[ 95.995297][ T6534] blkdev_flush_mapping+0xfb/0x290
[ 95.996899][ T6534] blkdev_put_whole+0xc4/0xf0
[ 95.998345][ T6534] bdev_release+0x47e/0x6d0
[ 95.999774][ T6534] blkdev_release+0x15/0x20
[ 96.001197][ T6534] __fput+0x3ff/0xb70
[ 96.002434][ T6534] task_work_run+0x14d/0x240
[ 96.004083][ T6534] do_exit+0xafb/0x2c30
[ 96.005446][ T6534] do_group_exit+0xd3/0x2a0
[ 96.006829][ T6534] get_signal+0x2673/0x26d0
[ 96.008235][ T6534] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.009857][ T6534] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.011564][ T6534] do_syscall_64+0xda/0x260
[ 96.013048][ T6534] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.015164][ T6534] Modules linked in:
[ 96.016350][ T6534] CPU: 3 UID: 0 PID: 6534 Comm: syz.0.32 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 96.016366][ T6534] Tainted: [B]=BAD_PAGE
[ 96.016370][ T6534] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.016377][ T6534] Call Trace:
[ 96.016382][ T6534]
[ 96.016386][ T6534] dump_stack_lvl+0x16c/0x1f0
[ 96.016399][ T6534] bad_page+0xb3/0x1f0
[ 96.016411][ T6534] ? __pfx_bad_page+0x10/0x10
[ 96.016421][ T6534] ? __mem_cgroup_uncharge+0xda/0x130
[ 96.016433][ T6534] free_tail_page_prepare+0x44f/0x5b0
[ 96.016446][ T6534] __free_frozen_pages+0x96a/0xff0
[ 96.016462][ T6534] __folio_put+0x329/0x450
[ 96.016472][ T6534] ? __pfx___folio_put+0x10/0x10
[ 96.016483][ T6534] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.016494][ T6534] ? rcu_is_watching+0x12/0xc0
[ 96.016506][ T6534] ? lock_release+0x201/0x2f0
[ 96.016521][ T6534] filemap_free_folio+0x132/0x170
[ 96.016532][ T6534] delete_from_page_cache_batch+0x741/0x9b0
[ 96.016544][ T6534] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.016556][ T6534] ? __pfx_workingset_update_node+0x10/0x10
[ 96.016567][ T6534] ? xas_move_index+0xb0/0x110
[ 96.016579][ T6534] truncate_inode_pages_range+0x279/0xe30
[ 96.016594][ T6534] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.016616][ T6534] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.016637][ T6534] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.016652][ T6534] blkdev_flush_mapping+0xfb/0x290
[ 96.016664][ T6534] blkdev_put_whole+0xc4/0xf0
[ 96.016675][ T6534] bdev_release+0x47e/0x6d0
[ 96.016687][ T6534] ? __pfx_blkdev_release+0x10/0x10
[ 96.016699][ T6534] blkdev_release+0x15/0x20
[ 96.016711][ T6534] __fput+0x3ff/0xb70
[ 96.016723][ T6534] task_work_run+0x14d/0x240
[ 96.016734][ T6534] ? __pfx_task_work_run+0x10/0x10
[ 96.016744][ T6534] ? do_raw_spin_unlock+0x172/0x230
[ 96.016755][ T6534] do_exit+0xafb/0x2c30
[ 96.016772][ T6534] ? __pfx_do_exit+0x10/0x10
[ 96.016789][ T6534] ? preempt_schedule_thunk+0x16/0x30
[ 96.016799][ T6534] do_group_exit+0xd3/0x2a0
[ 96.016819][ T6534] __x64_sys_exit_group+0x3e/0x50
[ 96.016840][ T6534] x64_sys_call+0x1530/0x1730
[ 96.016863][ T6534] do_syscall_64+0xcd/0x260
[ 96.016883][ T6534] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.016900][ T6534] RIP: 0033:0x7fa53558e969
[ 96.016913][ T6534] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 96.016919][ T6534] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 96.016929][ T6534] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 96.016936][ T6534] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 96.016942][ T6534] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 96.016948][ T6534] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000010
[ 96.016954][ T6534] R13: 00000000000927c0 R14: 000000000001747b R15: 00007ffdfd5c05a0
[ 96.016962][ T6534]
[ 96.016978][ T6534] BUG: Bad page state in process syz.0.32 pfn:47a00
[ 96.106206][ T6534] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x47a00
[ 96.108881][ T6534] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 96.111420][ T6534] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 96.114269][ T6534] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.117491][ T6534] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.120189][ T6534] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.126441][ T6534] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.129197][ T6534] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.131812][ T6534] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.134596][ T6534] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 96.136961][ T6534] page_owner tracks the page as allocated
[ 96.138679][ T6534] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6534, tgid 6534 (syz.0.32), ts 95851917043, free_ts 95461930567
[ 96.145287][ T6534] post_alloc_hook+0x181/0x1b0
[ 96.147236][ T6534] prep_new_page+0x16/0xb0
[ 96.148856][ T6534] get_page_from_freelist+0x135b/0x3800
[ 96.150741][ T6534] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.152582][ T6534] alloc_pages_mpol+0x1fb/0x550
[ 96.154285][ T6534] folio_alloc_noprof+0x20/0x2d0
[ 96.155843][ T6534] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.157567][ T6534] page_cache_ra_order+0x4c0/0xd00
[ 96.159211][ T6534] filemap_fault+0x1a5e/0x2740
[ 96.160702][ T6534] __do_fault+0x10a/0x490
[ 96.162024][ T6534] do_pte_missing+0x1a6/0x3fb0
[ 96.163625][ T6534] __handle_mm_fault+0x103d/0x2a40
[ 96.165241][ T6534] handle_mm_fault+0x3fe/0xad0
[ 96.166700][ T6534] do_user_addr_fault+0x60c/0x1370
[ 96.168310][ T6534] exc_page_fault+0x5c/0xc0
[ 96.169700][ T6534] asm_exc_page_fault+0x26/0x30
[ 96.171180][ T6534] page last free pid 6530 tgid 6529 stack trace:
[ 96.173193][ T6534] free_unref_folios+0x999/0x1630
[ 96.174790][ T6534] folios_put_refs+0x56f/0x740
[ 96.176252][ T6534] truncate_inode_pages_range+0x311/0xe30
[ 96.178010][ T6534] blkdev_flush_mapping+0xfb/0x290
[ 96.179609][ T6534] blkdev_put_whole+0xc4/0xf0
[ 96.181050][ T6534] bdev_release+0x47e/0x6d0
[ 96.182463][ T6534] blkdev_release+0x15/0x20
[ 96.184028][ T6534] __fput+0x3ff/0xb70
[ 96.185261][ T6534] task_work_run+0x14d/0x240
[ 96.186712][ T6534] do_exit+0xafb/0x2c30
[ 96.188026][ T6534] do_group_exit+0xd3/0x2a0
[ 96.189469][ T6534] get_signal+0x2673/0x26d0
[ 96.190824][ T6534] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.192543][ T6534] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.194334][ T6534] do_syscall_64+0xda/0x260
[ 96.195750][ T6534] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.197533][ T6534] Modules linked in:
[ 96.198762][ T6534] CPU: 3 UID: 0 PID: 6534 Comm: syz.0.32 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 96.198778][ T6534] Tainted: [B]=BAD_PAGE
[ 96.198782][ T6534] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.198788][ T6534] Call Trace:
[ 96.198792][ T6534]
[ 96.198795][ T6534] dump_stack_lvl+0x16c/0x1f0
[ 96.198809][ T6534] bad_page+0xb3/0x1f0
[ 96.198820][ T6534] ? __pfx_bad_page+0x10/0x10
[ 96.198831][ T6534] ? page_bad_reason+0x9d/0x1e0
[ 96.198842][ T6534] __free_frozen_pages+0x76e/0xff0
[ 96.198857][ T6534] __folio_put+0x329/0x450
[ 96.198868][ T6534] ? __pfx___folio_put+0x10/0x10
[ 96.198879][ T6534] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.198890][ T6534] ? rcu_is_watching+0x12/0xc0
[ 96.198902][ T6534] ? lock_release+0x201/0x2f0
[ 96.198917][ T6534] filemap_free_folio+0x132/0x170
[ 96.198928][ T6534] delete_from_page_cache_batch+0x741/0x9b0
[ 96.198940][ T6534] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.198952][ T6534] ? __pfx_workingset_update_node+0x10/0x10
[ 96.198963][ T6534] ? xas_move_index+0xb0/0x110
[ 96.198975][ T6534] truncate_inode_pages_range+0x279/0xe30
[ 96.198990][ T6534] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.199013][ T6534] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.199032][ T6534] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.199054][ T6534] blkdev_flush_mapping+0xfb/0x290
[ 96.199075][ T6534] blkdev_put_whole+0xc4/0xf0
[ 96.199111][ T6534] bdev_release+0x47e/0x6d0
[ 96.199132][ T6534] ? __pfx_blkdev_release+0x10/0x10
[ 96.199152][ T6534] blkdev_release+0x15/0x20
[ 96.199164][ T6534] __fput+0x3ff/0xb70
[ 96.199176][ T6534] task_work_run+0x14d/0x240
[ 96.199186][ T6534] ? __pfx_task_work_run+0x10/0x10
[ 96.199196][ T6534] ? do_raw_spin_unlock+0x172/0x230
[ 96.199207][ T6534] do_exit+0xafb/0x2c30
[ 96.199222][ T6534] ? __pfx_do_exit+0x10/0x10
[ 96.199236][ T6534] ? preempt_schedule_thunk+0x16/0x30
[ 96.199247][ T6534] do_group_exit+0xd3/0x2a0
[ 96.199261][ T6534] __x64_sys_exit_group+0x3e/0x50
[ 96.199276][ T6534] x64_sys_call+0x1530/0x1730
[ 96.199290][ T6534] do_syscall_64+0xcd/0x260
[ 96.199302][ T6534] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.199312][ T6534] RIP: 0033:0x7fa53558e969
[ 96.199319][ T6534] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 96.199324][ T6534] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 96.199334][ T6534] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 96.199340][ T6534] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 96.199346][ T6534] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 96.199352][ T6534] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000010
[ 96.199358][ T6534] R13: 00000000000927c0 R14: 000000000001747b R15: 00007ffdfd5c05a0
[ 96.199366][ T6534]
[ 96.307421][ T6536] BUG: Bad page state in process syz.0.33 pfn:3a401
[ 96.309561][ T6536] page does not match folio
[ 96.311170][ T6536] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3a401
[ 96.314705][ T6536] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 96.317350][ T6536] raw: 00fff00000000000 ffffea0000e90000 00000000ffffffff ffffffffffffffff
[ 96.320035][ T6536] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.322616][ T6536] page dumped because: nonzero pincount
[ 96.324392][ T6536] page_owner tracks the page as allocated
[ 96.326094][ T6536] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6536, tgid 6536 (syz.0.33), ts 96291546200, free_ts 81500959973
[ 96.332158][ T6536] post_alloc_hook+0x181/0x1b0
[ 96.333701][ T6536] prep_new_page+0x16/0xb0
[ 96.335056][ T6536] get_page_from_freelist+0x135b/0x3800
[ 96.336790][ T6536] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.338738][ T6536] alloc_pages_mpol+0x1fb/0x550
[ 96.340236][ T6536] folio_alloc_noprof+0x20/0x2d0
[ 96.341689][ T6536] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.343448][ T6536] page_cache_ra_order+0x4c0/0xd00
[ 96.344959][ T6536] filemap_fault+0x1a5e/0x2740
[ 96.346368][ T6536] __do_fault+0x10a/0x490
[ 96.347650][ T6536] do_pte_missing+0x1a6/0x3fb0
[ 96.349146][ T6536] __handle_mm_fault+0x103d/0x2a40
[ 96.350677][ T6536] handle_mm_fault+0x3fe/0xad0
[ 96.352092][ T6536] do_user_addr_fault+0x60c/0x1370
[ 96.353677][ T6536] exc_page_fault+0x5c/0xc0
[ 96.355036][ T6536] asm_exc_page_fault+0x26/0x30
[ 96.356467][ T6536] page last free pid 6200 tgid 6200 stack trace:
[ 96.358320][ T6536] free_unref_folios+0x999/0x1630
[ 96.359981][ T6536] folios_put_refs+0x56f/0x740
[ 96.361398][ T6536] free_pages_and_swap_cache+0x245/0x4a0
[ 96.363116][ T6536] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 96.364913][ T6536] tlb_finish_mmu+0x168/0x7b0
[ 96.366371][ T6536] vms_clear_ptes+0x55e/0x770
[ 96.367753][ T6536] vms_complete_munmap_vmas+0x1ca/0x970
[ 96.369466][ T6536] do_vmi_align_munmap+0x43b/0x7d0
[ 96.370985][ T6536] do_vmi_munmap+0x208/0x3e0
[ 96.372415][ T6536] __vm_munmap+0x19a/0x390
[ 96.373834][ T6536] __x64_sys_munmap+0x59/0x80
[ 96.375214][ T6536] do_syscall_64+0xcd/0x260
[ 96.376599][ T6536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.378308][ T6536] Modules linked in:
[ 96.379549][ T6536] CPU: 1 UID: 0 PID: 6536 Comm: syz.0.33 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 96.379566][ T6536] Tainted: [B]=BAD_PAGE
[ 96.379569][ T6536] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.379576][ T6536] Call Trace:
[ 96.379579][ T6536]
[ 96.379583][ T6536] dump_stack_lvl+0x16c/0x1f0
[ 96.379597][ T6536] bad_page+0xb3/0x1f0
[ 96.379607][ T6536] ? __pfx_bad_page+0x10/0x10
[ 96.379618][ T6536] ? __mem_cgroup_uncharge+0xda/0x130
[ 96.379630][ T6536] free_tail_page_prepare+0x44f/0x5b0
[ 96.379643][ T6536] __free_frozen_pages+0x96a/0xff0
[ 96.379658][ T6536] __folio_put+0x329/0x450
[ 96.379669][ T6536] ? __pfx___folio_put+0x10/0x10
[ 96.379680][ T6536] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.379691][ T6536] ? rcu_is_watching+0x12/0xc0
[ 96.379703][ T6536] ? lock_release+0x201/0x2f0
[ 96.379719][ T6536] filemap_free_folio+0x132/0x170
[ 96.379729][ T6536] delete_from_page_cache_batch+0x741/0x9b0
[ 96.379741][ T6536] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.379753][ T6536] ? __pfx_workingset_update_node+0x10/0x10
[ 96.379764][ T6536] ? xas_move_index+0xb0/0x110
[ 96.379776][ T6536] truncate_inode_pages_range+0x279/0xe30
[ 96.379791][ T6536] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.379813][ T6536] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.379830][ T6536] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.379844][ T6536] blkdev_flush_mapping+0xfb/0x290
[ 96.379856][ T6536] blkdev_put_whole+0xc4/0xf0
[ 96.379867][ T6536] bdev_release+0x47e/0x6d0
[ 96.379879][ T6536] ? __pfx_blkdev_release+0x10/0x10
[ 96.379892][ T6536] blkdev_release+0x15/0x20
[ 96.379903][ T6536] __fput+0x3ff/0xb70
[ 96.379915][ T6536] task_work_run+0x14d/0x240
[ 96.379925][ T6536] ? __pfx_task_work_run+0x10/0x10
[ 96.379935][ T6536] ? do_raw_spin_unlock+0x172/0x230
[ 96.379946][ T6536] do_exit+0xafb/0x2c30
[ 96.379961][ T6536] ? __pfx_do_exit+0x10/0x10
[ 96.379975][ T6536] ? preempt_schedule_thunk+0x16/0x30
[ 96.379986][ T6536] do_group_exit+0xd3/0x2a0
[ 96.380001][ T6536] __x64_sys_exit_group+0x3e/0x50
[ 96.380015][ T6536] x64_sys_call+0x1530/0x1730
[ 96.380029][ T6536] do_syscall_64+0xcd/0x260
[ 96.380042][ T6536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.380052][ T6536] RIP: 0033:0x7fa53558e969
[ 96.380059][ T6536] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 96.380063][ T6536] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 96.380073][ T6536] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 96.380079][ T6536] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 96.380085][ T6536] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 96.380091][ T6536] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000011
[ 96.380097][ T6536] R13: 00000000000927c0 R14: 00000000000175fc R15: 00007ffdfd5c05a0
[ 96.380105][ T6536]
[ 96.380120][ T6536] BUG: Bad page state in process syz.0.33 pfn:3a400
[ 96.483841][ T6536] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3a400
[ 96.486986][ T6536] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 96.490055][ T6536] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 96.493396][ T6536] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.496542][ T6536] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.499691][ T6536] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.504666][ T6536] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.507826][ T6536] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.510973][ T6536] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.514554][ T6536] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 96.517385][ T6536] page_owner tracks the page as allocated
[ 96.519617][ T6536] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6536, tgid 6536 (syz.0.33), ts 96291546200, free_ts 81500954735
[ 96.527524][ T6536] post_alloc_hook+0x181/0x1b0
[ 96.529437][ T6536] prep_new_page+0x16/0xb0
[ 96.531232][ T6536] get_page_from_freelist+0x135b/0x3800
[ 96.533659][ T6536] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.535975][ T6536] alloc_pages_mpol+0x1fb/0x550
[ 96.537908][ T6536] folio_alloc_noprof+0x20/0x2d0
[ 96.539840][ T6536] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.542045][ T6536] page_cache_ra_order+0x4c0/0xd00
[ 96.544504][ T6536] filemap_fault+0x1a5e/0x2740
[ 96.546460][ T6536] __do_fault+0x10a/0x490
[ 96.548188][ T6536] do_pte_missing+0x1a6/0x3fb0
[ 96.550105][ T6536] __handle_mm_fault+0x103d/0x2a40
[ 96.552118][ T6536] handle_mm_fault+0x3fe/0xad0
[ 96.554095][ T6536] do_user_addr_fault+0x60c/0x1370
[ 96.556121][ T6536] exc_page_fault+0x5c/0xc0
[ 96.557910][ T6536] asm_exc_page_fault+0x26/0x30
[ 96.559835][ T6536] page last free pid 6200 tgid 6200 stack trace:
[ 96.562247][ T6536] free_unref_folios+0x999/0x1630
[ 96.564324][ T6536] folios_put_refs+0x56f/0x740
[ 96.566235][ T6536] free_pages_and_swap_cache+0x245/0x4a0
[ 96.568382][ T6536] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 96.570725][ T6536] tlb_finish_mmu+0x168/0x7b0
[ 96.572573][ T6536] vms_clear_ptes+0x55e/0x770
[ 96.574581][ T6536] vms_complete_munmap_vmas+0x1ca/0x970
[ 96.576750][ T6536] do_vmi_align_munmap+0x43b/0x7d0
[ 96.578748][ T6536] do_vmi_munmap+0x208/0x3e0
[ 96.580562][ T6536] __vm_munmap+0x19a/0x390
[ 96.582325][ T6536] __x64_sys_munmap+0x59/0x80
[ 96.584320][ T6536] do_syscall_64+0xcd/0x260
[ 96.586118][ T6536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.588478][ T6536] Modules linked in:
[ 96.590066][ T6536] CPU: 0 UID: 0 PID: 6536 Comm: syz.0.33 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 96.590092][ T6536] Tainted: [B]=BAD_PAGE
[ 96.590097][ T6536] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.590107][ T6536] Call Trace:
[ 96.590113][ T6536]
[ 96.590119][ T6536] dump_stack_lvl+0x16c/0x1f0
[ 96.590140][ T6536] bad_page+0xb3/0x1f0
[ 96.590156][ T6536] ? __pfx_bad_page+0x10/0x10
[ 96.590173][ T6536] ? page_bad_reason+0x9d/0x1e0
[ 96.590190][ T6536] __free_frozen_pages+0x76e/0xff0
[ 96.590214][ T6536] __folio_put+0x329/0x450
[ 96.590230][ T6536] ? __pfx___folio_put+0x10/0x10
[ 96.590248][ T6536] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.590265][ T6536] ? rcu_is_watching+0x12/0xc0
[ 96.590283][ T6536] ? lock_release+0x201/0x2f0
[ 96.590312][ T6536] filemap_free_folio+0x132/0x170
[ 96.590329][ T6536] delete_from_page_cache_batch+0x741/0x9b0
[ 96.590349][ T6536] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.590368][ T6536] ? __pfx_workingset_update_node+0x10/0x10
[ 96.590385][ T6536] ? xas_move_index+0xb0/0x110
[ 96.590405][ T6536] truncate_inode_pages_range+0x279/0xe30
[ 96.590428][ T6536] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.590466][ T6536] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.590491][ T6536] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.590513][ T6536] blkdev_flush_mapping+0xfb/0x290
[ 96.590533][ T6536] blkdev_put_whole+0xc4/0xf0
[ 96.590549][ T6536] bdev_release+0x47e/0x6d0
[ 96.590569][ T6536] ? __pfx_blkdev_release+0x10/0x10
[ 96.590587][ T6536] blkdev_release+0x15/0x20
[ 96.590606][ T6536] __fput+0x3ff/0xb70
[ 96.590624][ T6536] task_work_run+0x14d/0x240
[ 96.590641][ T6536] ? __pfx_task_work_run+0x10/0x10
[ 96.590657][ T6536] ? do_raw_spin_unlock+0x172/0x230
[ 96.590675][ T6536] do_exit+0xafb/0x2c30
[ 96.590699][ T6536] ? __pfx_do_exit+0x10/0x10
[ 96.590720][ T6536] ? preempt_schedule_thunk+0x16/0x30
[ 96.590737][ T6536] do_group_exit+0xd3/0x2a0
[ 96.590760][ T6536] __x64_sys_exit_group+0x3e/0x50
[ 96.590783][ T6536] x64_sys_call+0x1530/0x1730
[ 96.590804][ T6536] do_syscall_64+0xcd/0x260
[ 96.590823][ T6536] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.590840][ T6536] RIP: 0033:0x7fa53558e969
[ 96.590852][ T6536] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 96.590859][ T6536] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 96.590874][ T6536] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 96.590884][ T6536] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 96.590893][ T6536] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 96.590902][ T6536] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000011
[ 96.590911][ T6536] R13: 00000000000927c0 R14: 00000000000175fc R15: 00007ffdfd5c05a0
[ 96.590926][ T6536]
[ 96.722853][ T6540] BUG: Bad page state in process syz.0.34 pfn:48e01
[ 96.725178][ T6540] page does not match folio
[ 96.726591][ T6540] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x48e01
[ 96.729949][ T6540] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 96.732607][ T6540] raw: 00fff00000000000 ffffea0001238000 00000000ffffffff ffffffffffffffff
[ 96.735557][ T6540] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.738274][ T6540] page dumped because: nonzero pincount
[ 96.740127][ T6540] page_owner tracks the page as allocated
[ 96.742062][ T6540] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6539, tgid 6539 (syz.0.34), ts 96706706697, free_ts 96199394421
[ 96.749021][ T6540] post_alloc_hook+0x181/0x1b0
[ 96.750670][ T6540] prep_new_page+0x16/0xb0
[ 96.752110][ T6540] get_page_from_freelist+0x135b/0x3800
[ 96.754363][ T6540] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.756524][ T6540] alloc_pages_mpol+0x1fb/0x550
[ 96.758223][ T6540] folio_alloc_noprof+0x20/0x2d0
[ 96.759944][ T6540] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.761690][ T6540] page_cache_ra_order+0x4c0/0xd00
[ 96.767787][ T6540] filemap_fault+0x1a5e/0x2740
[ 96.769504][ T6540] __do_fault+0x10a/0x490
[ 96.771010][ T6540] do_pte_missing+0x1a6/0x3fb0
[ 96.772722][ T6540] __handle_mm_fault+0x103d/0x2a40
[ 96.774571][ T6540] handle_mm_fault+0x3fe/0xad0
[ 96.776329][ T6540] do_user_addr_fault+0x60c/0x1370
[ 96.778173][ T6540] exc_page_fault+0x5c/0xc0
[ 96.779603][ T6540] asm_exc_page_fault+0x26/0x30
[ 96.781313][ T6540] page last free pid 6534 tgid 6534 stack trace:
[ 96.783496][ T6540] free_unref_folios+0x999/0x1630
[ 96.785357][ T6540] folios_put_refs+0x56f/0x740
[ 96.787098][ T6540] truncate_inode_pages_range+0x311/0xe30
[ 96.789195][ T6540] blkdev_flush_mapping+0xfb/0x290
[ 96.790921][ T6540] blkdev_put_whole+0xc4/0xf0
[ 96.792370][ T6540] bdev_release+0x47e/0x6d0
[ 96.793911][ T6540] blkdev_release+0x15/0x20
[ 96.795555][ T6540] __fput+0x3ff/0xb70
[ 96.796981][ T6540] task_work_run+0x14d/0x240
[ 96.798661][ T6540] do_exit+0xafb/0x2c30
[ 96.800252][ T6540] do_group_exit+0xd3/0x2a0
[ 96.801974][ T6540] __x64_sys_exit_group+0x3e/0x50
[ 96.803989][ T6540] x64_sys_call+0x1530/0x1730
[ 96.805774][ T6540] do_syscall_64+0xcd/0x260
[ 96.807563][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.809590][ T6540] Modules linked in:
[ 96.810965][ T6540] CPU: 3 UID: 0 PID: 6540 Comm: syz.0.34 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 96.810988][ T6540] Tainted: [B]=BAD_PAGE
[ 96.810993][ T6540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 96.811003][ T6540] Call Trace:
[ 96.811009][ T6540]
[ 96.811014][ T6540] dump_stack_lvl+0x16c/0x1f0
[ 96.811034][ T6540] bad_page+0xb3/0x1f0
[ 96.811049][ T6540] ? __pfx_bad_page+0x10/0x10
[ 96.811065][ T6540] ? __mem_cgroup_uncharge+0xda/0x130
[ 96.811098][ T6540] free_tail_page_prepare+0x44f/0x5b0
[ 96.811119][ T6540] __free_frozen_pages+0x96a/0xff0
[ 96.811141][ T6540] __folio_put+0x329/0x450
[ 96.811156][ T6540] ? __pfx___folio_put+0x10/0x10
[ 96.811172][ T6540] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 96.811187][ T6540] ? rcu_is_watching+0x12/0xc0
[ 96.811199][ T6540] ? lock_release+0x201/0x2f0
[ 96.811214][ T6540] filemap_free_folio+0x132/0x170
[ 96.811225][ T6540] delete_from_page_cache_batch+0x741/0x9b0
[ 96.811237][ T6540] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 96.811249][ T6540] ? __pfx_workingset_update_node+0x10/0x10
[ 96.811259][ T6540] ? xas_move_index+0xb0/0x110
[ 96.811272][ T6540] truncate_inode_pages_range+0x279/0xe30
[ 96.811286][ T6540] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 96.811313][ T6540] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 96.811335][ T6540] ? __pfx_has_bh_in_lru+0x10/0x10
[ 96.811356][ T6540] blkdev_flush_mapping+0xfb/0x290
[ 96.811372][ T6540] ? filemap_check_errors+0xa9/0x160
[ 96.811394][ T6540] blkdev_put_whole+0xc4/0xf0
[ 96.811404][ T6540] bdev_release+0x47e/0x6d0
[ 96.811417][ T6540] ? __pfx_blkdev_release+0x10/0x10
[ 96.811429][ T6540] blkdev_release+0x15/0x20
[ 96.811441][ T6540] __fput+0x3ff/0xb70
[ 96.811452][ T6540] task_work_run+0x14d/0x240
[ 96.811463][ T6540] ? __pfx_task_work_run+0x10/0x10
[ 96.811473][ T6540] ? do_raw_spin_unlock+0x172/0x230
[ 96.811484][ T6540] do_exit+0xafb/0x2c30
[ 96.811499][ T6540] ? __pfx_try_to_wake_up+0x10/0x10
[ 96.811510][ T6540] ? futex_wake+0x432/0x4e0
[ 96.811528][ T6540] ? __pfx_do_exit+0x10/0x10
[ 96.811548][ T6540] ? do_raw_spin_lock+0x12c/0x2b0
[ 96.811562][ T6540] ? get_signal+0x8f5/0x26d0
[ 96.811579][ T6540] ? rcu_is_watching+0x12/0xc0
[ 96.811596][ T6540] do_group_exit+0xd3/0x2a0
[ 96.811617][ T6540] get_signal+0x2673/0x26d0
[ 96.811637][ T6540] ? __pfx_get_signal+0x10/0x10
[ 96.811654][ T6540] ? do_futex+0x122/0x350
[ 96.811673][ T6540] ? __pfx_do_futex+0x10/0x10
[ 96.811692][ T6540] arch_do_signal_or_restart+0x8f/0x7d0
[ 96.811713][ T6540] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 96.811735][ T6540] ? rcu_is_watching+0x12/0xc0
[ 96.811752][ T6540] syscall_exit_to_user_mode+0x150/0x2a0
[ 96.811772][ T6540] do_syscall_64+0xda/0x260
[ 96.811790][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 96.811805][ T6540] RIP: 0033:0x7fa53558e969
[ 96.811816][ T6540] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 96.811822][ T6540] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 96.811837][ T6540] RAX: 0000000000000001 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 96.811847][ T6540] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa5357b5fac
[ 96.811856][ T6540] RBP: 00007fa5357b5fa0 R08: 00007fa536434000 R09: 0000000000000000
[ 96.811865][ T6540] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fa5357b5fac
[ 96.811875][ T6540] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 96.811884][ T6540]
[ 96.811900][ T6540] BUG: Bad page state in process syz.0.34 pfn:48e00
[ 96.929371][ T6540] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x48e00
[ 96.933039][ T6540] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 96.936530][ T6540] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 96.939791][ T6540] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.942568][ T6540] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.945371][ T6540] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 96.947931][ T6540] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.950485][ T6540] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 96.953065][ T6540] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 96.955667][ T6540] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 96.957752][ T6540] page_owner tracks the page as allocated
[ 96.959430][ T6540] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6539, tgid 6539 (syz.0.34), ts 96706706697, free_ts 96199394421
[ 96.965440][ T6540] post_alloc_hook+0x181/0x1b0
[ 96.966878][ T6540] prep_new_page+0x16/0xb0
[ 96.968216][ T6540] get_page_from_freelist+0x135b/0x3800
[ 96.969848][ T6540] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 96.971598][ T6540] alloc_pages_mpol+0x1fb/0x550
[ 96.973100][ T6540] folio_alloc_noprof+0x20/0x2d0
[ 96.974610][ T6540] filemap_alloc_folio_noprof+0x3a1/0x470
[ 96.976309][ T6540] page_cache_ra_order+0x4c0/0xd00
[ 96.977807][ T6540] filemap_fault+0x1a5e/0x2740
[ 96.979234][ T6540] __do_fault+0x10a/0x490
[ 96.980526][ T6540] do_pte_missing+0x1a6/0x3fb0
[ 96.981940][ T6540] __handle_mm_fault+0x103d/0x2a40
[ 96.983553][ T6540] handle_mm_fault+0x3fe/0xad0
[ 96.985010][ T6540] do_user_addr_fault+0x60c/0x1370
[ 96.986522][ T6540] exc_page_fault+0x5c/0xc0
[ 96.987872][ T6540] asm_exc_page_fault+0x26/0x30
[ 96.989289][ T6540] page last free pid 6534 tgid 6534 stack trace:
[ 96.991117][ T6540] free_unref_folios+0x999/0x1630
[ 96.992636][ T6540] folios_put_refs+0x56f/0x740
[ 96.994261][ T6540] truncate_inode_pages_range+0x311/0xe30
[ 96.995972][ T6540] blkdev_flush_mapping+0xfb/0x290
[ 96.997488][ T6540] blkdev_put_whole+0xc4/0xf0
[ 96.998885][ T6540] bdev_release+0x47e/0x6d0
[ 97.000242][ T6540] blkdev_release+0x15/0x20
[ 97.001566][ T6540] __fput+0x3ff/0xb70
[ 97.002796][ T6540] task_work_run+0x14d/0x240
[ 97.004208][ T6540] do_exit+0xafb/0x2c30
[ 97.005543][ T6540] do_group_exit+0xd3/0x2a0
[ 97.007073][ T6540] __x64_sys_exit_group+0x3e/0x50
[ 97.008609][ T6540] x64_sys_call+0x1530/0x1730
[ 97.010011][ T6540] do_syscall_64+0xcd/0x260
[ 97.011425][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.013526][ T6540] Modules linked in:
[ 97.014781][ T6540] CPU: 1 UID: 0 PID: 6540 Comm: syz.0.34 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 97.014797][ T6540] Tainted: [B]=BAD_PAGE
[ 97.014801][ T6540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.014807][ T6540] Call Trace:
[ 97.014811][ T6540]
[ 97.014815][ T6540] dump_stack_lvl+0x16c/0x1f0
[ 97.014829][ T6540] bad_page+0xb3/0x1f0
[ 97.014841][ T6540] ? __pfx_bad_page+0x10/0x10
[ 97.014851][ T6540] ? page_bad_reason+0x9d/0x1e0
[ 97.014862][ T6540] __free_frozen_pages+0x76e/0xff0
[ 97.014877][ T6540] __folio_put+0x329/0x450
[ 97.014887][ T6540] ? __pfx___folio_put+0x10/0x10
[ 97.014898][ T6540] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.014909][ T6540] ? rcu_is_watching+0x12/0xc0
[ 97.014921][ T6540] ? lock_release+0x201/0x2f0
[ 97.014936][ T6540] filemap_free_folio+0x132/0x170
[ 97.014947][ T6540] delete_from_page_cache_batch+0x741/0x9b0
[ 97.014959][ T6540] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.014971][ T6540] ? __pfx_workingset_update_node+0x10/0x10
[ 97.014981][ T6540] ? xas_move_index+0xb0/0x110
[ 97.014994][ T6540] truncate_inode_pages_range+0x279/0xe30
[ 97.015009][ T6540] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.015032][ T6540] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.015048][ T6540] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.015063][ T6540] blkdev_flush_mapping+0xfb/0x290
[ 97.015074][ T6540] ? filemap_check_errors+0xa9/0x160
[ 97.015112][ T6540] blkdev_put_whole+0xc4/0xf0
[ 97.015123][ T6540] bdev_release+0x47e/0x6d0
[ 97.015136][ T6540] ? __pfx_blkdev_release+0x10/0x10
[ 97.015148][ T6540] blkdev_release+0x15/0x20
[ 97.015160][ T6540] __fput+0x3ff/0xb70
[ 97.015172][ T6540] task_work_run+0x14d/0x240
[ 97.015182][ T6540] ? __pfx_task_work_run+0x10/0x10
[ 97.015192][ T6540] ? do_raw_spin_unlock+0x172/0x230
2025/05/03 07:09:31 executed programs: 21
[ 97.015203][ T6540] do_exit+0xafb/0x2c30
[ 97.015218][ T6540] ? __pfx_try_to_wake_up+0x10/0x10
[ 97.015230][ T6540] ? futex_wake+0x432/0x4e0
[ 97.015244][ T6540] ? __pfx_do_exit+0x10/0x10
[ 97.015258][ T6540] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.015268][ T6540] ? get_signal+0x8f5/0x26d0
[ 97.015285][ T6540] ? rcu_is_watching+0x12/0xc0
[ 97.015302][ T6540] do_group_exit+0xd3/0x2a0
[ 97.015327][ T6540] get_signal+0x2673/0x26d0
[ 97.015348][ T6540] ? __pfx_get_signal+0x10/0x10
[ 97.015360][ T6540] ? do_futex+0x122/0x350
[ 97.015373][ T6540] ? __pfx_do_futex+0x10/0x10
[ 97.015386][ T6540] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.015400][ T6540] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.015415][ T6540] ? rcu_is_watching+0x12/0xc0
[ 97.015427][ T6540] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.015440][ T6540] do_syscall_64+0xda/0x260
[ 97.015452][ T6540] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.015462][ T6540] RIP: 0033:0x7fa53558e969
[ 97.015469][ T6540] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 97.015474][ T6540] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.015483][ T6540] RAX: 0000000000000001 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 97.015489][ T6540] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa5357b5fac
[ 97.015495][ T6540] RBP: 00007fa5357b5fa0 R08: 00007fa536434000 R09: 0000000000000000
[ 97.015502][ T6540] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007fa5357b5fac
[ 97.015508][ T6540] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 97.015516][ T6540]
[ 97.078753][ T6543] atomic_op ffff88804b7a1998 conn xmit_atomic 0000000000000000
[ 97.171065][ T6545] BUG: Bad page state in process syz.0.36 pfn:51a01
[ 97.173169][ T6545] page does not match folio
[ 97.174620][ T6545] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51a01
[ 97.177636][ T6545] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.179897][ T6545] raw: 00fff00000000000 ffffea0001468000 00000000ffffffff ffffffffffffffff
[ 97.182429][ T6545] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.184969][ T6545] page dumped because: nonzero pincount
[ 97.186649][ T6545] page_owner tracks the page as allocated
[ 97.188316][ T6545] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6544, tgid 6544 (syz.0.36), ts 97154758896, free_ts 0
[ 97.195353][ T6545] post_alloc_hook+0x181/0x1b0
[ 97.196824][ T6545] prep_new_page+0x16/0xb0
[ 97.198202][ T6545] get_page_from_freelist+0x135b/0x3800
[ 97.199846][ T6545] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.201596][ T6545] alloc_pages_mpol+0x1fb/0x550
[ 97.203099][ T6545] folio_alloc_noprof+0x20/0x2d0
[ 97.204586][ T6545] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.206238][ T6545] page_cache_ra_order+0x4c0/0xd00
[ 97.207770][ T6545] filemap_fault+0x1a5e/0x2740
[ 97.209216][ T6545] __do_fault+0x10a/0x490
[ 97.210518][ T6545] do_pte_missing+0x1a6/0x3fb0
[ 97.211950][ T6545] __handle_mm_fault+0x103d/0x2a40
[ 97.213587][ T6545] handle_mm_fault+0x3fe/0xad0
[ 97.215001][ T6545] do_user_addr_fault+0x60c/0x1370
[ 97.216527][ T6545] exc_page_fault+0x5c/0xc0
[ 97.217864][ T6545] asm_exc_page_fault+0x26/0x30
[ 97.219290][ T6545] page_owner free stack trace missing
[ 97.220847][ T6545] Modules linked in:
[ 97.222012][ T6545] CPU: 0 UID: 0 PID: 6545 Comm: syz.0.36 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 97.222028][ T6545] Tainted: [B]=BAD_PAGE
[ 97.222031][ T6545] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.222038][ T6545] Call Trace:
[ 97.222041][ T6545]
[ 97.222045][ T6545] dump_stack_lvl+0x16c/0x1f0
[ 97.222058][ T6545] bad_page+0xb3/0x1f0
[ 97.222068][ T6545] ? __pfx_bad_page+0x10/0x10
[ 97.222079][ T6545] ? __mem_cgroup_uncharge+0xda/0x130
[ 97.222091][ T6545] free_tail_page_prepare+0x44f/0x5b0
[ 97.222103][ T6545] __free_frozen_pages+0x96a/0xff0
[ 97.222118][ T6545] __folio_put+0x329/0x450
[ 97.222129][ T6545] ? __pfx___folio_put+0x10/0x10
[ 97.222139][ T6545] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.222151][ T6545] ? rcu_is_watching+0x12/0xc0
[ 97.222163][ T6545] ? lock_release+0x201/0x2f0
[ 97.222178][ T6545] filemap_free_folio+0x132/0x170
[ 97.222189][ T6545] delete_from_page_cache_batch+0x741/0x9b0
[ 97.222202][ T6545] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.222214][ T6545] ? __pfx_workingset_update_node+0x10/0x10
[ 97.222224][ T6545] ? xas_move_index+0xb0/0x110
[ 97.222236][ T6545] truncate_inode_pages_range+0x279/0xe30
[ 97.222251][ T6545] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.222269][ T6545] ? __pfx___send_ipi_mask+0x10/0x10
[ 97.222290][ T6545] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.222306][ T6545] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.222320][ T6545] blkdev_flush_mapping+0xfb/0x290
[ 97.222332][ T6545] ? filemap_check_errors+0xa9/0x160
[ 97.222347][ T6545] blkdev_put_whole+0xc4/0xf0
[ 97.222357][ T6545] bdev_release+0x47e/0x6d0
[ 97.222370][ T6545] ? __pfx_blkdev_release+0x10/0x10
[ 97.222382][ T6545] blkdev_release+0x15/0x20
[ 97.222393][ T6545] __fput+0x3ff/0xb70
[ 97.222405][ T6545] task_work_run+0x14d/0x240
[ 97.222416][ T6545] ? __pfx_task_work_run+0x10/0x10
[ 97.222426][ T6545] ? do_raw_spin_unlock+0x172/0x230
[ 97.222437][ T6545] do_exit+0xafb/0x2c30
[ 97.222450][ T6545] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.222467][ T6545] ? __pfx_do_exit+0x10/0x10
[ 97.222481][ T6545] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.222490][ T6545] ? get_signal+0x8f5/0x26d0
[ 97.222502][ T6545] ? rcu_is_watching+0x12/0xc0
[ 97.222513][ T6545] do_group_exit+0xd3/0x2a0
[ 97.222528][ T6545] get_signal+0x2673/0x26d0
[ 97.222541][ T6545] ? __pfx_get_signal+0x10/0x10
[ 97.222553][ T6545] ? do_futex+0x122/0x350
[ 97.222567][ T6545] ? __pfx_do_futex+0x10/0x10
[ 97.222580][ T6545] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.222595][ T6545] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.222611][ T6545] ? rcu_is_watching+0x12/0xc0
[ 97.222622][ T6545] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.222635][ T6545] do_syscall_64+0xda/0x260
[ 97.222648][ T6545] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.222658][ T6545] RIP: 0033:0x7fa53558e969
[ 97.222665][ T6545] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 97.222669][ T6545] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.222679][ T6545] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 97.222685][ T6545] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 97.222691][ T6545] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.222697][ T6545] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 97.222706][ T6545] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 97.222715][ T6545]
[ 97.222729][ T6545] BUG: Bad page state in process syz.0.36 pfn:51a00
[ 97.326191][ T6545] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51a00
[ 97.329412][ T6545] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 97.331928][ T6545] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 97.334806][ T6545] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.337364][ T6545] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.340130][ T6545] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.342809][ T6545] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.345459][ T6545] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.348031][ T6545] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.350647][ T6545] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 97.352825][ T6545] page_owner tracks the page as allocated
[ 97.354510][ T6545] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6544, tgid 6544 (syz.0.36), ts 97154758896, free_ts 0
[ 97.360137][ T6545] post_alloc_hook+0x181/0x1b0
[ 97.361540][ T6545] prep_new_page+0x16/0xb0
[ 97.362949][ T6545] get_page_from_freelist+0x135b/0x3800
[ 97.364946][ T6545] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.367003][ T6545] alloc_pages_mpol+0x1fb/0x550
[ 97.368551][ T6545] folio_alloc_noprof+0x20/0x2d0
[ 97.370057][ T6545] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.371923][ T6545] page_cache_ra_order+0x4c0/0xd00
[ 97.373512][ T6545] filemap_fault+0x1a5e/0x2740
[ 97.374910][ T6545] __do_fault+0x10a/0x490
[ 97.376205][ T6545] do_pte_missing+0x1a6/0x3fb0
[ 97.377621][ T6545] __handle_mm_fault+0x103d/0x2a40
[ 97.379185][ T6545] handle_mm_fault+0x3fe/0xad0
[ 97.380634][ T6545] do_user_addr_fault+0x60c/0x1370
[ 97.382181][ T6545] exc_page_fault+0x5c/0xc0
[ 97.383667][ T6545] asm_exc_page_fault+0x26/0x30
[ 97.385186][ T6545] page_owner free stack trace missing
[ 97.386866][ T6545] Modules linked in:
[ 97.388118][ T6545] CPU: 1 UID: 0 PID: 6545 Comm: syz.0.36 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 97.388134][ T6545] Tainted: [B]=BAD_PAGE
[ 97.388138][ T6545] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.388144][ T6545] Call Trace:
[ 97.388148][ T6545]
[ 97.388151][ T6545] dump_stack_lvl+0x16c/0x1f0
[ 97.388165][ T6545] bad_page+0xb3/0x1f0
[ 97.388176][ T6545] ? __pfx_bad_page+0x10/0x10
[ 97.388186][ T6545] ? page_bad_reason+0x9d/0x1e0
[ 97.388197][ T6545] __free_frozen_pages+0x76e/0xff0
[ 97.388212][ T6545] __folio_put+0x329/0x450
[ 97.388222][ T6545] ? __pfx___folio_put+0x10/0x10
[ 97.388233][ T6545] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.388244][ T6545] ? rcu_is_watching+0x12/0xc0
[ 97.388256][ T6545] ? lock_release+0x201/0x2f0
[ 97.388277][ T6545] filemap_free_folio+0x132/0x170
[ 97.388288][ T6545] delete_from_page_cache_batch+0x741/0x9b0
[ 97.388300][ T6545] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.388312][ T6545] ? __pfx_workingset_update_node+0x10/0x10
[ 97.388323][ T6545] ? xas_move_index+0xb0/0x110
[ 97.388335][ T6545] truncate_inode_pages_range+0x279/0xe30
[ 97.388350][ T6545] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.388368][ T6545] ? __pfx___send_ipi_mask+0x10/0x10
[ 97.388386][ T6545] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.388402][ T6545] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.388416][ T6545] blkdev_flush_mapping+0xfb/0x290
[ 97.388428][ T6545] ? filemap_check_errors+0xa9/0x160
[ 97.388443][ T6545] blkdev_put_whole+0xc4/0xf0
[ 97.388453][ T6545] bdev_release+0x47e/0x6d0
[ 97.388466][ T6545] ? __pfx_blkdev_release+0x10/0x10
[ 97.388478][ T6545] blkdev_release+0x15/0x20
[ 97.388490][ T6545] __fput+0x3ff/0xb70
[ 97.388502][ T6545] task_work_run+0x14d/0x240
[ 97.388513][ T6545] ? __pfx_task_work_run+0x10/0x10
[ 97.388524][ T6545] ? do_raw_spin_unlock+0x172/0x230
[ 97.388536][ T6545] do_exit+0xafb/0x2c30
[ 97.388550][ T6545] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.388567][ T6545] ? __pfx_do_exit+0x10/0x10
[ 97.388581][ T6545] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.388591][ T6545] ? get_signal+0x8f5/0x26d0
[ 97.388602][ T6545] ? rcu_is_watching+0x12/0xc0
[ 97.388613][ T6545] do_group_exit+0xd3/0x2a0
[ 97.388628][ T6545] get_signal+0x2673/0x26d0
[ 97.388642][ T6545] ? __pfx_get_signal+0x10/0x10
[ 97.388654][ T6545] ? do_futex+0x122/0x350
[ 97.388666][ T6545] ? __pfx_do_futex+0x10/0x10
[ 97.388679][ T6545] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.388694][ T6545] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.388709][ T6545] ? rcu_is_watching+0x12/0xc0
[ 97.388720][ T6545] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.388734][ T6545] do_syscall_64+0xda/0x260
[ 97.388747][ T6545] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.388757][ T6545] RIP: 0033:0x7fa53558e969
[ 97.388764][ T6545] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 97.388769][ T6545] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.388778][ T6545] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 97.388785][ T6545] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 97.388790][ T6545] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.388796][ T6545] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 97.388802][ T6545] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 97.388810][ T6545]
[ 97.430128][ T6547] BUG: Bad page state in process syz.0.37 pfn:3a601
[ 97.517949][ T6547] page does not match folio
[ 97.519363][ T6547] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x3a601
[ 97.522402][ T6547] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.530736][ T6547] raw: 00fff00000000000 ffffea0000e98000 00000000ffffffff ffffffffffffffff
[ 97.535954][ T6547] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.552912][ T6547] page dumped because: nonzero pincount
[ 97.555009][ T6547] page_owner tracks the page as allocated
[ 97.557435][ T6547] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6546, tgid 6546 (syz.0.37), ts 97398223076, free_ts 96590979954
[ 97.564904][ T6547] post_alloc_hook+0x181/0x1b0
[ 97.566331][ T6547] prep_new_page+0x16/0xb0
[ 97.567674][ T6547] get_page_from_freelist+0x135b/0x3800
[ 97.569304][ T6547] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.571024][ T6547] alloc_pages_mpol+0x1fb/0x550
[ 97.572443][ T6547] folio_alloc_noprof+0x20/0x2d0
[ 97.574090][ T6547] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.575912][ T6547] page_cache_ra_order+0x4c0/0xd00
[ 97.577429][ T6547] filemap_fault+0x1a5e/0x2740
[ 97.578911][ T6547] __do_fault+0x10a/0x490
[ 97.580198][ T6547] do_pte_missing+0x1a6/0x3fb0
[ 97.581615][ T6547] __handle_mm_fault+0x103d/0x2a40
[ 97.583286][ T6547] handle_mm_fault+0x3fe/0xad0
[ 97.584813][ T6547] do_user_addr_fault+0x60c/0x1370
[ 97.586280][ T6547] exc_page_fault+0x5c/0xc0
[ 97.587708][ T6547] asm_exc_page_fault+0x26/0x30
[ 97.589108][ T6547] page last free pid 6536 tgid 6536 stack trace:
[ 97.590930][ T6547] free_unref_folios+0x999/0x1630
[ 97.592419][ T6547] folios_put_refs+0x56f/0x740
[ 97.593913][ T6547] truncate_inode_pages_range+0x311/0xe30
[ 97.595591][ T6547] blkdev_flush_mapping+0xfb/0x290
[ 97.597079][ T6547] blkdev_put_whole+0xc4/0xf0
[ 97.598478][ T6547] bdev_release+0x47e/0x6d0
[ 97.599800][ T6547] blkdev_release+0x15/0x20
[ 97.601092][ T6547] __fput+0x3ff/0xb70
[ 97.602255][ T6547] task_work_run+0x14d/0x240
[ 97.603682][ T6547] do_exit+0xafb/0x2c30
[ 97.604981][ T6547] do_group_exit+0xd3/0x2a0
[ 97.606337][ T6547] __x64_sys_exit_group+0x3e/0x50
[ 97.607795][ T6547] x64_sys_call+0x1530/0x1730
[ 97.609163][ T6547] do_syscall_64+0xcd/0x260
[ 97.610515][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.612235][ T6547] Modules linked in:
[ 97.613615][ T6547] CPU: 1 UID: 0 PID: 6547 Comm: syz.0.37 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 97.613631][ T6547] Tainted: [B]=BAD_PAGE
[ 97.613635][ T6547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.613641][ T6547] Call Trace:
[ 97.613645][ T6547]
[ 97.613648][ T6547] dump_stack_lvl+0x16c/0x1f0
[ 97.613662][ T6547] bad_page+0xb3/0x1f0
[ 97.613672][ T6547] ? __pfx_bad_page+0x10/0x10
[ 97.613683][ T6547] ? __mem_cgroup_uncharge+0xda/0x130
[ 97.613695][ T6547] free_tail_page_prepare+0x44f/0x5b0
[ 97.613708][ T6547] __free_frozen_pages+0x96a/0xff0
[ 97.613723][ T6547] __folio_put+0x329/0x450
[ 97.613734][ T6547] ? __pfx___folio_put+0x10/0x10
[ 97.613745][ T6547] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.613756][ T6547] ? rcu_is_watching+0x12/0xc0
[ 97.613767][ T6547] ? lock_release+0x201/0x2f0
[ 97.613782][ T6547] filemap_free_folio+0x132/0x170
[ 97.613793][ T6547] delete_from_page_cache_batch+0x741/0x9b0
[ 97.613805][ T6547] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.613817][ T6547] ? __pfx_workingset_update_node+0x10/0x10
[ 97.613827][ T6547] ? xas_move_index+0xb0/0x110
[ 97.613840][ T6547] truncate_inode_pages_range+0x279/0xe30
[ 97.613854][ T6547] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.613876][ T6547] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.613893][ T6547] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.613907][ T6547] blkdev_flush_mapping+0xfb/0x290
[ 97.613918][ T6547] ? filemap_check_errors+0xa9/0x160
[ 97.613934][ T6547] blkdev_put_whole+0xc4/0xf0
[ 97.613944][ T6547] bdev_release+0x47e/0x6d0
[ 97.613957][ T6547] ? __pfx_blkdev_release+0x10/0x10
[ 97.613969][ T6547] blkdev_release+0x15/0x20
[ 97.613980][ T6547] __fput+0x3ff/0xb70
[ 97.613992][ T6547] task_work_run+0x14d/0x240
[ 97.614003][ T6547] ? __pfx_task_work_run+0x10/0x10
[ 97.614012][ T6547] ? do_raw_spin_unlock+0x172/0x230
[ 97.614024][ T6547] do_exit+0xafb/0x2c30
[ 97.614037][ T6547] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.614053][ T6547] ? __pfx_do_exit+0x10/0x10
[ 97.614067][ T6547] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.614077][ T6547] ? get_signal+0x8f5/0x26d0
[ 97.614088][ T6547] ? rcu_is_watching+0x12/0xc0
[ 97.614099][ T6547] do_group_exit+0xd3/0x2a0
[ 97.614114][ T6547] get_signal+0x2673/0x26d0
[ 97.614127][ T6547] ? __pfx_get_signal+0x10/0x10
[ 97.614139][ T6547] ? do_futex+0x122/0x350
[ 97.614151][ T6547] ? __pfx_do_futex+0x10/0x10
[ 97.614164][ T6547] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.614178][ T6547] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.614194][ T6547] ? madvise_unlock+0xc6/0x190
[ 97.614205][ T6547] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.614218][ T6547] do_syscall_64+0xda/0x260
[ 97.614230][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.614239][ T6547] RIP: 0033:0x7fa53558e969
[ 97.614247][ T6547] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 97.614251][ T6547] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.614261][ T6547] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 97.614267][ T6547] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 97.614277][ T6547] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.614283][ T6547] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 97.614289][ T6547] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 97.614297][ T6547]
[ 97.614312][ T6547] BUG: Bad page state in process syz.0.37 pfn:3a600
[ 97.718013][ T6547] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3a600
[ 97.720611][ T6547] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 97.723521][ T6547] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 97.726127][ T6547] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.728889][ T6547] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.731452][ T6547] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 97.734132][ T6547] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.736860][ T6547] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 97.739374][ T6547] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.741891][ T6547] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 97.744266][ T6547] page_owner tracks the page as allocated
[ 97.746405][ T6547] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6546, tgid 6546 (syz.0.37), ts 97398223076, free_ts 96590979954
[ 97.752330][ T6547] post_alloc_hook+0x181/0x1b0
[ 97.753818][ T6547] prep_new_page+0x16/0xb0
[ 97.755157][ T6547] get_page_from_freelist+0x135b/0x3800
[ 97.756775][ T6547] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.758505][ T6547] alloc_pages_mpol+0x1fb/0x550
[ 97.759933][ T6547] folio_alloc_noprof+0x20/0x2d0
[ 97.761390][ T6547] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.763172][ T6547] page_cache_ra_order+0x4c0/0xd00
[ 97.764682][ T6547] filemap_fault+0x1a5e/0x2740
[ 97.766112][ T6547] __do_fault+0x10a/0x490
[ 97.767422][ T6547] do_pte_missing+0x1a6/0x3fb0
[ 97.768837][ T6547] __handle_mm_fault+0x103d/0x2a40
[ 97.770412][ T6547] handle_mm_fault+0x3fe/0xad0
[ 97.771840][ T6547] do_user_addr_fault+0x60c/0x1370
[ 97.773480][ T6547] exc_page_fault+0x5c/0xc0
[ 97.774932][ T6547] asm_exc_page_fault+0x26/0x30
[ 97.776399][ T6547] page last free pid 6536 tgid 6536 stack trace:
[ 97.778350][ T6547] free_unref_folios+0x999/0x1630
[ 97.779873][ T6547] folios_put_refs+0x56f/0x740
[ 97.781466][ T6547] truncate_inode_pages_range+0x311/0xe30
[ 97.783319][ T6547] blkdev_flush_mapping+0xfb/0x290
[ 97.785063][ T6547] blkdev_put_whole+0xc4/0xf0
[ 97.786429][ T6547] bdev_release+0x47e/0x6d0
[ 97.787811][ T6547] blkdev_release+0x15/0x20
[ 97.789168][ T6547] __fput+0x3ff/0xb70
[ 97.790392][ T6547] task_work_run+0x14d/0x240
[ 97.791778][ T6547] do_exit+0xafb/0x2c30
[ 97.793103][ T6547] do_group_exit+0xd3/0x2a0
[ 97.794522][ T6547] __x64_sys_exit_group+0x3e/0x50
[ 97.795985][ T6547] x64_sys_call+0x1530/0x1730
[ 97.797473][ T6547] do_syscall_64+0xcd/0x260
[ 97.798827][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.800783][ T6547] Modules linked in:
[ 97.801951][ T6547] CPU: 0 UID: 0 PID: 6547 Comm: syz.0.37 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 97.801967][ T6547] Tainted: [B]=BAD_PAGE
[ 97.801971][ T6547] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 97.801977][ T6547] Call Trace:
[ 97.801981][ T6547]
[ 97.801985][ T6547] dump_stack_lvl+0x16c/0x1f0
[ 97.801999][ T6547] bad_page+0xb3/0x1f0
[ 97.802010][ T6547] ? __pfx_bad_page+0x10/0x10
[ 97.802021][ T6547] ? page_bad_reason+0x9d/0x1e0
[ 97.802031][ T6547] __free_frozen_pages+0x76e/0xff0
[ 97.802046][ T6547] __folio_put+0x329/0x450
[ 97.802057][ T6547] ? __pfx___folio_put+0x10/0x10
[ 97.802068][ T6547] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 97.802079][ T6547] ? rcu_is_watching+0x12/0xc0
[ 97.802091][ T6547] ? lock_release+0x201/0x2f0
[ 97.802106][ T6547] filemap_free_folio+0x132/0x170
[ 97.802117][ T6547] delete_from_page_cache_batch+0x741/0x9b0
[ 97.802129][ T6547] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 97.802140][ T6547] ? __pfx_workingset_update_node+0x10/0x10
[ 97.802151][ T6547] ? xas_move_index+0xb0/0x110
[ 97.802164][ T6547] truncate_inode_pages_range+0x279/0xe30
[ 97.802179][ T6547] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 97.802201][ T6547] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 97.802218][ T6547] ? __pfx_has_bh_in_lru+0x10/0x10
[ 97.802232][ T6547] blkdev_flush_mapping+0xfb/0x290
[ 97.802243][ T6547] ? filemap_check_errors+0xa9/0x160
[ 97.802258][ T6547] blkdev_put_whole+0xc4/0xf0
[ 97.802268][ T6547] bdev_release+0x47e/0x6d0
[ 97.802281][ T6547] ? __pfx_blkdev_release+0x10/0x10
[ 97.802293][ T6547] blkdev_release+0x15/0x20
[ 97.802304][ T6547] __fput+0x3ff/0xb70
[ 97.802316][ T6547] task_work_run+0x14d/0x240
[ 97.802327][ T6547] ? __pfx_task_work_run+0x10/0x10
[ 97.802337][ T6547] ? do_raw_spin_unlock+0x172/0x230
[ 97.802348][ T6547] do_exit+0xafb/0x2c30
[ 97.802366][ T6547] ? __pfx_futex_wake_mark+0x10/0x10
[ 97.802383][ T6547] ? __pfx_do_exit+0x10/0x10
[ 97.802397][ T6547] ? do_raw_spin_lock+0x12c/0x2b0
[ 97.802407][ T6547] ? get_signal+0x8f5/0x26d0
[ 97.802418][ T6547] ? rcu_is_watching+0x12/0xc0
[ 97.802429][ T6547] do_group_exit+0xd3/0x2a0
[ 97.802444][ T6547] get_signal+0x2673/0x26d0
[ 97.802458][ T6547] ? __pfx_get_signal+0x10/0x10
[ 97.802470][ T6547] ? do_futex+0x122/0x350
[ 97.802484][ T6547] ? __pfx_do_futex+0x10/0x10
[ 97.802496][ T6547] arch_do_signal_or_restart+0x8f/0x7d0
[ 97.802511][ T6547] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 97.802527][ T6547] ? madvise_unlock+0xc6/0x190
[ 97.802538][ T6547] syscall_exit_to_user_mode+0x150/0x2a0
[ 97.802551][ T6547] do_syscall_64+0xda/0x260
[ 97.802563][ T6547] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 97.802573][ T6547] RIP: 0033:0x7fa53558e969
[ 97.802582][ T6547] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 97.802586][ T6547] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 97.802596][ T6547] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 97.802605][ T6547] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 97.802614][ T6547] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 97.802622][ T6547] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 97.802631][ T6547] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 97.802645][ T6547]
[ 97.929162][ T6549] BUG: Bad page state in process syz.0.38 pfn:48c01
[ 97.931132][ T6549] page does not match folio
[ 97.932504][ T6549] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x48c01
[ 97.935919][ T6549] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 97.938843][ T6549] raw: 00fff00000000000 ffffea0001230000 00000000ffffffff ffffffffffffffff
[ 97.941731][ T6549] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 97.945073][ T6549] page dumped because: nonzero pincount
[ 97.947176][ T6549] page_owner tracks the page as allocated
[ 97.949308][ T6549] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6548, tgid 6548 (syz.0.38), ts 97912351735, free_ts 97802688537
[ 97.957284][ T6549] post_alloc_hook+0x181/0x1b0
[ 97.958959][ T6549] prep_new_page+0x16/0xb0
[ 97.960636][ T6549] get_page_from_freelist+0x135b/0x3800
[ 97.962703][ T6549] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 97.964559][ T6549] alloc_pages_mpol+0x1fb/0x550
[ 97.965972][ T6549] folio_alloc_noprof+0x20/0x2d0
[ 97.967440][ T6549] filemap_alloc_folio_noprof+0x3a1/0x470
[ 97.969100][ T6549] page_cache_ra_order+0x4c0/0xd00
[ 97.970588][ T6549] filemap_fault+0x1a5e/0x2740
[ 97.971999][ T6549] __do_fault+0x10a/0x490
[ 97.973363][ T6549] do_pte_missing+0x1a6/0x3fb0
[ 97.974776][ T6549] __handle_mm_fault+0x103d/0x2a40
[ 97.976285][ T6549] handle_mm_fault+0x3fe/0xad0
[ 97.977698][ T6549] do_user_addr_fault+0x60c/0x1370
[ 97.979285][ T6549] exc_page_fault+0x5c/0xc0
[ 97.980641][ T6549] asm_exc_page_fault+0x26/0x30
[ 97.982086][ T6549] page last free pid 6547 tgid 6546 stack trace:
[ 97.984050][ T6549] free_unref_folios+0x999/0x1630
[ 97.985545][ T6549] folios_put_refs+0x56f/0x740
[ 97.986929][ T6549] truncate_inode_pages_range+0x311/0xe30
[ 97.988653][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 97.990506][ T6549] blkdev_put_whole+0xc4/0xf0
[ 97.992321][ T6549] bdev_release+0x47e/0x6d0
[ 97.994141][ T6549] blkdev_release+0x15/0x20
[ 97.995712][ T6549] __fput+0x3ff/0xb70
[ 97.997253][ T6549] task_work_run+0x14d/0x240
[ 97.998866][ T6549] do_exit+0xafb/0x2c30
[ 98.000235][ T6549] do_group_exit+0xd3/0x2a0
[ 98.001952][ T6549] get_signal+0x2673/0x26d0
[ 98.003675][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.005312][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.006969][ T6549] do_syscall_64+0xda/0x260
[ 98.008466][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.010229][ T6549] Modules linked in:
[ 98.011436][ T6549] CPU: 3 UID: 0 PID: 6549 Comm: syz.0.38 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 98.011453][ T6549] Tainted: [B]=BAD_PAGE
[ 98.011457][ T6549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.011475][ T6549] Call Trace:
[ 98.011479][ T6549]
[ 98.011483][ T6549] dump_stack_lvl+0x16c/0x1f0
[ 98.011496][ T6549] bad_page+0xb3/0x1f0
[ 98.011507][ T6549] ? __pfx_bad_page+0x10/0x10
[ 98.011517][ T6549] ? __mem_cgroup_uncharge+0xda/0x130
[ 98.011530][ T6549] free_tail_page_prepare+0x44f/0x5b0
[ 98.011543][ T6549] __free_frozen_pages+0x96a/0xff0
[ 98.011558][ T6549] __folio_put+0x329/0x450
[ 98.011569][ T6549] ? __pfx___folio_put+0x10/0x10
[ 98.011580][ T6549] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.011591][ T6549] ? rcu_is_watching+0x12/0xc0
[ 98.011603][ T6549] ? lock_release+0x201/0x2f0
[ 98.011620][ T6549] filemap_free_folio+0x132/0x170
[ 98.011631][ T6549] delete_from_page_cache_batch+0x741/0x9b0
[ 98.011643][ T6549] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.011656][ T6549] ? __pfx_workingset_update_node+0x10/0x10
[ 98.011666][ T6549] ? xas_move_index+0xb0/0x110
[ 98.011679][ T6549] truncate_inode_pages_range+0x279/0xe30
[ 98.011694][ T6549] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.011716][ T6549] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.011732][ T6549] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.011746][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 98.011758][ T6549] ? filemap_check_errors+0xa9/0x160
[ 98.011773][ T6549] blkdev_put_whole+0xc4/0xf0
[ 98.011783][ T6549] bdev_release+0x47e/0x6d0
[ 98.011795][ T6549] ? __pfx_blkdev_release+0x10/0x10
[ 98.011807][ T6549] blkdev_release+0x15/0x20
[ 98.011819][ T6549] __fput+0x3ff/0xb70
[ 98.011831][ T6549] task_work_run+0x14d/0x240
[ 98.011841][ T6549] ? __pfx_task_work_run+0x10/0x10
[ 98.011851][ T6549] ? do_raw_spin_unlock+0x172/0x230
[ 98.011862][ T6549] do_exit+0xafb/0x2c30
[ 98.011876][ T6549] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.011892][ T6549] ? __pfx_do_exit+0x10/0x10
[ 98.011906][ T6549] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.011916][ T6549] ? get_signal+0x8f5/0x26d0
[ 98.011927][ T6549] ? rcu_is_watching+0x12/0xc0
[ 98.011938][ T6549] do_group_exit+0xd3/0x2a0
[ 98.011953][ T6549] get_signal+0x2673/0x26d0
[ 98.011967][ T6549] ? __pfx_get_signal+0x10/0x10
[ 98.011979][ T6549] ? do_futex+0x122/0x350
[ 98.011992][ T6549] ? __pfx_do_futex+0x10/0x10
[ 98.012004][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.012019][ T6549] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.012035][ T6549] ? madvise_unlock+0xc6/0x190
[ 98.012046][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.012058][ T6549] do_syscall_64+0xda/0x260
[ 98.012070][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.012080][ T6549] RIP: 0033:0x7fa53558e969
[ 98.012087][ T6549] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 98.012092][ T6549] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.012102][ T6549] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 98.012108][ T6549] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 98.012114][ T6549] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.012134][ T6549] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 98.012140][ T6549] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 98.012148][ T6549]
[ 98.012174][ T6549] BUG: Bad page state in process syz.0.38 pfn:48c00
[ 98.121872][ T6549] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x48c00
[ 98.125391][ T6549] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 98.128004][ T6549] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 98.131055][ T6549] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.134383][ T6549] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.136977][ T6549] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.139993][ T6549] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.142881][ T6549] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.145458][ T6549] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.148027][ T6549] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 98.150772][ T6549] page_owner tracks the page as allocated
[ 98.153079][ T6549] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6548, tgid 6548 (syz.0.38), ts 97912351735, free_ts 97802688537
[ 98.160731][ T6549] post_alloc_hook+0x181/0x1b0
[ 98.162638][ T6549] prep_new_page+0x16/0xb0
[ 98.164403][ T6549] get_page_from_freelist+0x135b/0x3800
[ 98.166053][ T6549] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.167832][ T6549] alloc_pages_mpol+0x1fb/0x550
[ 98.169416][ T6549] folio_alloc_noprof+0x20/0x2d0
[ 98.170990][ T6549] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.172839][ T6549] page_cache_ra_order+0x4c0/0xd00
[ 98.174413][ T6549] filemap_fault+0x1a5e/0x2740
[ 98.175873][ T6549] __do_fault+0x10a/0x490
[ 98.177174][ T6549] do_pte_missing+0x1a6/0x3fb0
[ 98.178701][ T6549] __handle_mm_fault+0x103d/0x2a40
[ 98.180798][ T6549] handle_mm_fault+0x3fe/0xad0
[ 98.182715][ T6549] do_user_addr_fault+0x60c/0x1370
[ 98.184850][ T6549] exc_page_fault+0x5c/0xc0
[ 98.186671][ T6549] asm_exc_page_fault+0x26/0x30
[ 98.188632][ T6549] page last free pid 6547 tgid 6546 stack trace:
[ 98.191028][ T6549] free_unref_folios+0x999/0x1630
[ 98.193163][ T6549] folios_put_refs+0x56f/0x740
[ 98.195126][ T6549] truncate_inode_pages_range+0x311/0xe30
[ 98.197408][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 98.199433][ T6549] blkdev_put_whole+0xc4/0xf0
[ 98.201320][ T6549] bdev_release+0x47e/0x6d0
[ 98.203200][ T6549] blkdev_release+0x15/0x20
[ 98.205178][ T6549] __fput+0x3ff/0xb70
[ 98.206782][ T6549] task_work_run+0x14d/0x240
[ 98.208641][ T6549] do_exit+0xafb/0x2c30
[ 98.210304][ T6549] do_group_exit+0xd3/0x2a0
[ 98.212145][ T6549] get_signal+0x2673/0x26d0
[ 98.214162][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.216364][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.218564][ T6549] do_syscall_64+0xda/0x260
[ 98.220387][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.222713][ T6549] Modules linked in:
[ 98.224404][ T6549] CPU: 0 UID: 0 PID: 6549 Comm: syz.0.38 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 98.224431][ T6549] Tainted: [B]=BAD_PAGE
[ 98.224437][ T6549] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.224447][ T6549] Call Trace:
[ 98.224454][ T6549]
[ 98.224461][ T6549] dump_stack_lvl+0x16c/0x1f0
[ 98.224481][ T6549] bad_page+0xb3/0x1f0
[ 98.224498][ T6549] ? __pfx_bad_page+0x10/0x10
[ 98.224515][ T6549] ? page_bad_reason+0x9d/0x1e0
[ 98.224533][ T6549] __free_frozen_pages+0x76e/0xff0
[ 98.224562][ T6549] __folio_put+0x329/0x450
[ 98.224579][ T6549] ? __pfx___folio_put+0x10/0x10
[ 98.224597][ T6549] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.224616][ T6549] ? rcu_is_watching+0x12/0xc0
[ 98.224635][ T6549] ? lock_release+0x201/0x2f0
[ 98.224660][ T6549] filemap_free_folio+0x132/0x170
[ 98.224678][ T6549] delete_from_page_cache_batch+0x741/0x9b0
[ 98.224698][ T6549] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.224718][ T6549] ? __pfx_workingset_update_node+0x10/0x10
[ 98.224735][ T6549] ? xas_move_index+0xb0/0x110
[ 98.224756][ T6549] truncate_inode_pages_range+0x279/0xe30
[ 98.224779][ T6549] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.224818][ T6549] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.224843][ T6549] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.224867][ T6549] blkdev_flush_mapping+0xfb/0x290
[ 98.224885][ T6549] ? filemap_check_errors+0xa9/0x160
[ 98.224908][ T6549] blkdev_put_whole+0xc4/0xf0
[ 98.224925][ T6549] bdev_release+0x47e/0x6d0
[ 98.224946][ T6549] ? __pfx_blkdev_release+0x10/0x10
[ 98.224965][ T6549] blkdev_release+0x15/0x20
[ 98.224986][ T6549] __fput+0x3ff/0xb70
[ 98.225004][ T6549] task_work_run+0x14d/0x240
[ 98.225021][ T6549] ? __pfx_task_work_run+0x10/0x10
[ 98.225038][ T6549] ? do_raw_spin_unlock+0x172/0x230
[ 98.225056][ T6549] do_exit+0xafb/0x2c30
[ 98.225076][ T6549] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.225103][ T6549] ? __pfx_do_exit+0x10/0x10
[ 98.225124][ T6549] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.225141][ T6549] ? get_signal+0x8f5/0x26d0
[ 98.225159][ T6549] ? rcu_is_watching+0x12/0xc0
[ 98.225178][ T6549] do_group_exit+0xd3/0x2a0
[ 98.225202][ T6549] get_signal+0x2673/0x26d0
[ 98.225224][ T6549] ? __pfx_get_signal+0x10/0x10
[ 98.225242][ T6549] ? do_futex+0x122/0x350
[ 98.225262][ T6549] ? __pfx_do_futex+0x10/0x10
[ 98.225284][ T6549] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.225306][ T6549] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.225331][ T6549] ? madvise_unlock+0xc6/0x190
[ 98.225350][ T6549] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.225370][ T6549] do_syscall_64+0xda/0x260
[ 98.225389][ T6549] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.225406][ T6549] RIP: 0033:0x7fa53558e969
[ 98.225418][ T6549] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 98.225426][ T6549] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.225442][ T6549] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 98.225452][ T6549] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 98.225462][ T6549] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.225471][ T6549] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 98.225481][ T6549] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 98.225495][ T6549]
[ 98.268419][ T6551] BUG: Bad page state in process syz.0.39 pfn:51c01
[ 98.360826][ T6551] page does not match folio
[ 98.362725][ T6551] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51c01
[ 98.367323][ T6551] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 98.370190][ T6551] raw: 00fff00000000000 ffffea0001470000 00000000ffffffff ffffffffffffffff
[ 98.378852][ T6551] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.382252][ T6551] page dumped because: nonzero pincount
[ 98.384605][ T6551] page_owner tracks the page as allocated
[ 98.386847][ T6551] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6550, tgid 6550 (syz.0.39), ts 98234847335, free_ts 97388841877
[ 98.396121][ T6551] post_alloc_hook+0x181/0x1b0
[ 98.398069][ T6551] prep_new_page+0x16/0xb0
[ 98.399931][ T6551] get_page_from_freelist+0x135b/0x3800
[ 98.402207][ T6551] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.405036][ T6551] alloc_pages_mpol+0x1fb/0x550
[ 98.407166][ T6551] folio_alloc_noprof+0x20/0x2d0
[ 98.409210][ T6551] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.412677][ T6551] page_cache_ra_order+0x4c0/0xd00
[ 98.414933][ T6551] filemap_fault+0x1a5e/0x2740
[ 98.416922][ T6551] __do_fault+0x10a/0x490
[ 98.418730][ T6551] do_pte_missing+0x1a6/0x3fb0
[ 98.420821][ T6551] __handle_mm_fault+0x103d/0x2a40
[ 98.423270][ T6551] handle_mm_fault+0x3fe/0xad0
[ 98.425324][ T6551] do_user_addr_fault+0x60c/0x1370
[ 98.427475][ T6551] exc_page_fault+0x5c/0xc0
[ 98.429323][ T6551] asm_exc_page_fault+0x26/0x30
[ 98.431325][ T6551] page last free pid 6545 tgid 6544 stack trace:
[ 98.434043][ T6551] free_unref_folios+0x999/0x1630
[ 98.436101][ T6551] folios_put_refs+0x56f/0x740
[ 98.438067][ T6551] truncate_inode_pages_range+0x311/0xe30
[ 98.440370][ T6551] blkdev_flush_mapping+0xfb/0x290
[ 98.442544][ T6551] blkdev_put_whole+0xc4/0xf0
[ 98.444821][ T6551] bdev_release+0x47e/0x6d0
[ 98.446676][ T6551] blkdev_release+0x15/0x20
[ 98.448663][ T6551] __fput+0x3ff/0xb70
[ 98.450407][ T6551] task_work_run+0x14d/0x240
[ 98.452488][ T6551] do_exit+0xafb/0x2c30
[ 98.454676][ T6551] do_group_exit+0xd3/0x2a0
[ 98.456762][ T6551] get_signal+0x2673/0x26d0
[ 98.458731][ T6551] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.461024][ T6551] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.463587][ T6551] do_syscall_64+0xda/0x260
[ 98.465420][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.467786][ T6551] Modules linked in:
[ 98.469428][ T6551] CPU: 2 UID: 0 PID: 6551 Comm: syz.0.39 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 98.469454][ T6551] Tainted: [B]=BAD_PAGE
[ 98.469460][ T6551] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.469470][ T6551] Call Trace:
[ 98.469476][ T6551]
[ 98.469483][ T6551] dump_stack_lvl+0x16c/0x1f0
[ 98.469503][ T6551] bad_page+0xb3/0x1f0
[ 98.469521][ T6551] ? __pfx_bad_page+0x10/0x10
[ 98.469538][ T6551] ? __mem_cgroup_uncharge+0xda/0x130
[ 98.469558][ T6551] free_tail_page_prepare+0x44f/0x5b0
[ 98.469579][ T6551] __free_frozen_pages+0x96a/0xff0
[ 98.469603][ T6551] __folio_put+0x329/0x450
[ 98.469619][ T6551] ? __pfx___folio_put+0x10/0x10
[ 98.469636][ T6551] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.469652][ T6551] ? rcu_is_watching+0x12/0xc0
[ 98.469670][ T6551] ? lock_release+0x201/0x2f0
[ 98.469693][ T6551] filemap_free_folio+0x132/0x170
[ 98.469709][ T6551] delete_from_page_cache_batch+0x741/0x9b0
[ 98.469729][ T6551] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.469748][ T6551] ? __pfx_workingset_update_node+0x10/0x10
[ 98.469764][ T6551] ? xas_move_index+0xb0/0x110
[ 98.469785][ T6551] truncate_inode_pages_range+0x279/0xe30
[ 98.469808][ T6551] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.469844][ T6551] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.469867][ T6551] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.469888][ T6551] blkdev_flush_mapping+0xfb/0x290
[ 98.469907][ T6551] ? filemap_check_errors+0xa9/0x160
[ 98.469929][ T6551] blkdev_put_whole+0xc4/0xf0
[ 98.469943][ T6551] bdev_release+0x47e/0x6d0
[ 98.469961][ T6551] ? __pfx_blkdev_release+0x10/0x10
[ 98.469979][ T6551] blkdev_release+0x15/0x20
[ 98.469996][ T6551] __fput+0x3ff/0xb70
[ 98.470014][ T6551] task_work_run+0x14d/0x240
[ 98.470030][ T6551] ? __pfx_task_work_run+0x10/0x10
[ 98.470045][ T6551] ? do_raw_spin_unlock+0x172/0x230
[ 98.470062][ T6551] do_exit+0xafb/0x2c30
[ 98.470081][ T6551] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.470104][ T6551] ? __pfx_do_exit+0x10/0x10
[ 98.470124][ T6551] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.470137][ T6551] ? get_signal+0x8f5/0x26d0
[ 98.470152][ T6551] ? rcu_is_watching+0x12/0xc0
[ 98.470168][ T6551] do_group_exit+0xd3/0x2a0
[ 98.470188][ T6551] get_signal+0x2673/0x26d0
[ 98.470207][ T6551] ? __pfx_get_signal+0x10/0x10
[ 98.470223][ T6551] ? do_futex+0x122/0x350
[ 98.470241][ T6551] ? __pfx_do_futex+0x10/0x10
[ 98.470267][ T6551] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.470288][ T6551] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.470309][ T6551] ? madvise_unlock+0xc6/0x190
[ 98.470325][ T6551] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.470343][ T6551] do_syscall_64+0xda/0x260
[ 98.470360][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.470375][ T6551] RIP: 0033:0x7fa53558e969
[ 98.470386][ T6551] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 98.470393][ T6551] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.470407][ T6551] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 98.470416][ T6551] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 98.470426][ T6551] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.470435][ T6551] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 98.470443][ T6551] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 98.470457][ T6551]
[ 98.470484][ T6551] BUG: Bad page state in process syz.0.39 pfn:51c00
[ 98.608653][ T6551] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51c00
[ 98.612076][ T6551] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 98.615528][ T6551] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 98.619208][ T6551] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.622560][ T6551] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.626062][ T6551] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 98.629574][ T6551] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.633240][ T6551] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 98.636788][ T6551] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.640211][ T6551] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 98.643214][ T6551] page_owner tracks the page as allocated
[ 98.645499][ T6551] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6550, tgid 6550 (syz.0.39), ts 98234847335, free_ts 97388841877
[ 98.653431][ T6551] post_alloc_hook+0x181/0x1b0
[ 98.655382][ T6551] prep_new_page+0x16/0xb0
[ 98.657210][ T6551] get_page_from_freelist+0x135b/0x3800
[ 98.659393][ T6551] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.661783][ T6551] alloc_pages_mpol+0x1fb/0x550
[ 98.663857][ T6551] folio_alloc_noprof+0x20/0x2d0
[ 98.665878][ T6551] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.668152][ T6551] page_cache_ra_order+0x4c0/0xd00
[ 98.670191][ T6551] filemap_fault+0x1a5e/0x2740
[ 98.672093][ T6551] __do_fault+0x10a/0x490
[ 98.673938][ T6551] do_pte_missing+0x1a6/0x3fb0
[ 98.675872][ T6551] __handle_mm_fault+0x103d/0x2a40
[ 98.677963][ T6551] handle_mm_fault+0x3fe/0xad0
[ 98.679845][ T6551] do_user_addr_fault+0x60c/0x1370
[ 98.681915][ T6551] exc_page_fault+0x5c/0xc0
[ 98.683833][ T6551] asm_exc_page_fault+0x26/0x30
[ 98.685802][ T6551] page last free pid 6545 tgid 6544 stack trace:
[ 98.688342][ T6551] free_unref_folios+0x999/0x1630
[ 98.690355][ T6551] folios_put_refs+0x56f/0x740
[ 98.692307][ T6551] truncate_inode_pages_range+0x311/0xe30
[ 98.694736][ T6551] blkdev_flush_mapping+0xfb/0x290
[ 98.696822][ T6551] blkdev_put_whole+0xc4/0xf0
[ 98.698722][ T6551] bdev_release+0x47e/0x6d0
[ 98.700550][ T6551] blkdev_release+0x15/0x20
[ 98.702320][ T6551] __fput+0x3ff/0xb70
[ 98.704052][ T6551] task_work_run+0x14d/0x240
[ 98.705887][ T6551] do_exit+0xafb/0x2c30
[ 98.707502][ T6551] do_group_exit+0xd3/0x2a0
[ 98.709340][ T6551] get_signal+0x2673/0x26d0
[ 98.711399][ T6551] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.713742][ T6551] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.715932][ T6551] do_syscall_64+0xda/0x260
[ 98.717745][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.720087][ T6551] Modules linked in:
[ 98.721671][ T6551] CPU: 2 UID: 0 PID: 6551 Comm: syz.0.39 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 98.721696][ T6551] Tainted: [B]=BAD_PAGE
[ 98.721702][ T6551] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.721712][ T6551] Call Trace:
[ 98.721719][ T6551]
[ 98.721725][ T6551] dump_stack_lvl+0x16c/0x1f0
[ 98.721745][ T6551] bad_page+0xb3/0x1f0
[ 98.721762][ T6551] ? __pfx_bad_page+0x10/0x10
[ 98.721779][ T6551] ? page_bad_reason+0x9d/0x1e0
[ 98.721796][ T6551] __free_frozen_pages+0x76e/0xff0
[ 98.721819][ T6551] __folio_put+0x329/0x450
[ 98.721835][ T6551] ? __pfx___folio_put+0x10/0x10
[ 98.721853][ T6551] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.721870][ T6551] ? rcu_is_watching+0x12/0xc0
[ 98.721889][ T6551] ? lock_release+0x201/0x2f0
[ 98.721912][ T6551] filemap_free_folio+0x132/0x170
[ 98.721929][ T6551] delete_from_page_cache_batch+0x741/0x9b0
[ 98.721949][ T6551] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.721968][ T6551] ? __pfx_workingset_update_node+0x10/0x10
[ 98.721986][ T6551] ? xas_move_index+0xb0/0x110
[ 98.722007][ T6551] truncate_inode_pages_range+0x279/0xe30
[ 98.722031][ T6551] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.722069][ T6551] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.722095][ T6551] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.722118][ T6551] blkdev_flush_mapping+0xfb/0x290
[ 98.722136][ T6551] ? filemap_check_errors+0xa9/0x160
[ 98.722159][ T6551] blkdev_put_whole+0xc4/0xf0
[ 98.722176][ T6551] bdev_release+0x47e/0x6d0
[ 98.722195][ T6551] ? __pfx_blkdev_release+0x10/0x10
[ 98.722213][ T6551] blkdev_release+0x15/0x20
[ 98.722232][ T6551] __fput+0x3ff/0xb70
[ 98.722251][ T6551] task_work_run+0x14d/0x240
[ 98.722268][ T6551] ? __pfx_task_work_run+0x10/0x10
[ 98.722284][ T6551] ? do_raw_spin_unlock+0x172/0x230
[ 98.722303][ T6551] do_exit+0xafb/0x2c30
[ 98.722324][ T6551] ? __pfx_futex_wake_mark+0x10/0x10
[ 98.722349][ T6551] ? __pfx_do_exit+0x10/0x10
[ 98.722371][ T6551] ? do_raw_spin_lock+0x12c/0x2b0
[ 98.722387][ T6551] ? get_signal+0x8f5/0x26d0
[ 98.722404][ T6551] ? rcu_is_watching+0x12/0xc0
[ 98.722423][ T6551] do_group_exit+0xd3/0x2a0
[ 98.722445][ T6551] get_signal+0x2673/0x26d0
[ 98.722466][ T6551] ? __pfx_get_signal+0x10/0x10
[ 98.722484][ T6551] ? do_futex+0x122/0x350
[ 98.722505][ T6551] ? __pfx_do_futex+0x10/0x10
[ 98.722525][ T6551] arch_do_signal_or_restart+0x8f/0x7d0
[ 98.722548][ T6551] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 98.722578][ T6551] ? madvise_unlock+0xc6/0x190
[ 98.722596][ T6551] syscall_exit_to_user_mode+0x150/0x2a0
[ 98.722616][ T6551] do_syscall_64+0xda/0x260
[ 98.722634][ T6551] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.722650][ T6551] RIP: 0033:0x7fa53558e969
[ 98.722662][ T6551] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 98.722669][ T6551] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 98.722684][ T6551] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 98.722694][ T6551] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 98.722704][ T6551] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 98.722713][ T6551] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 98.722723][ T6551] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 98.722751][ T6551]
[ 98.878015][ T6552] BUG: Bad page state in process syz.0.40 pfn:51e01
[ 98.880006][ T6552] page does not match folio
[ 98.881446][ T6552] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x51e01
[ 98.884646][ T6552] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 98.886910][ T6552] raw: 00fff00000000000 ffffea0001478000 00000000ffffffff ffffffffffffffff
[ 98.889469][ T6552] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 98.891950][ T6552] page dumped because: nonzero pincount
[ 98.893831][ T6552] page_owner tracks the page as allocated
[ 98.895490][ T6552] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6552, tgid 6552 (syz.0.40), ts 98861302638, free_ts 0
[ 98.900996][ T6552] post_alloc_hook+0x181/0x1b0
[ 98.902432][ T6552] prep_new_page+0x16/0xb0
[ 98.904084][ T6552] get_page_from_freelist+0x135b/0x3800
[ 98.905759][ T6552] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 98.907490][ T6552] alloc_pages_mpol+0x1fb/0x550
[ 98.908992][ T6552] folio_alloc_noprof+0x20/0x2d0
[ 98.910432][ T6552] filemap_alloc_folio_noprof+0x3a1/0x470
[ 98.912130][ T6552] page_cache_ra_order+0x4c0/0xd00
[ 98.913732][ T6552] filemap_fault+0x1a5e/0x2740
[ 98.915135][ T6552] __do_fault+0x10a/0x490
[ 98.916410][ T6552] do_pte_missing+0x1a6/0x3fb0
[ 98.917813][ T6552] __handle_mm_fault+0x103d/0x2a40
[ 98.919343][ T6552] handle_mm_fault+0x3fe/0xad0
[ 98.920765][ T6552] do_user_addr_fault+0x60c/0x1370
[ 98.922256][ T6552] exc_page_fault+0x5c/0xc0
[ 98.923678][ T6552] asm_exc_page_fault+0x26/0x30
[ 98.925112][ T6552] page_owner free stack trace missing
[ 98.926660][ T6552] Modules linked in:
[ 98.927822][ T6552] CPU: 0 UID: 0 PID: 6552 Comm: syz.0.40 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 98.927839][ T6552] Tainted: [B]=BAD_PAGE
[ 98.927842][ T6552] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 98.927849][ T6552] Call Trace:
[ 98.927853][ T6552]
[ 98.927856][ T6552] dump_stack_lvl+0x16c/0x1f0
[ 98.927869][ T6552] bad_page+0xb3/0x1f0
[ 98.927880][ T6552] ? __pfx_bad_page+0x10/0x10
[ 98.927890][ T6552] ? __mem_cgroup_uncharge+0xda/0x130
[ 98.927902][ T6552] free_tail_page_prepare+0x44f/0x5b0
[ 98.927915][ T6552] __free_frozen_pages+0x96a/0xff0
[ 98.927931][ T6552] __folio_put+0x329/0x450
[ 98.927943][ T6552] ? __pfx___folio_put+0x10/0x10
[ 98.927958][ T6552] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 98.927974][ T6552] ? rcu_is_watching+0x12/0xc0
[ 98.927993][ T6552] ? lock_release+0x201/0x2f0
[ 98.928013][ T6552] filemap_free_folio+0x132/0x170
[ 98.928024][ T6552] delete_from_page_cache_batch+0x741/0x9b0
[ 98.928036][ T6552] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 98.928048][ T6552] ? __pfx_workingset_update_node+0x10/0x10
[ 98.928058][ T6552] ? xas_move_index+0xb0/0x110
[ 98.928071][ T6552] truncate_inode_pages_range+0x279/0xe30
[ 98.928085][ T6552] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 98.928108][ T6552] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 98.928124][ T6552] ? __pfx_has_bh_in_lru+0x10/0x10
[ 98.928139][ T6552] blkdev_flush_mapping+0xfb/0x290
[ 98.928151][ T6552] blkdev_put_whole+0xc4/0xf0
[ 98.928161][ T6552] bdev_release+0x47e/0x6d0
[ 98.928174][ T6552] ? __pfx_blkdev_release+0x10/0x10
[ 98.928186][ T6552] blkdev_release+0x15/0x20
[ 98.928197][ T6552] __fput+0x3ff/0xb70
[ 98.928209][ T6552] task_work_run+0x14d/0x240
[ 98.928219][ T6552] ? __pfx_task_work_run+0x10/0x10
[ 98.928229][ T6552] ? do_raw_spin_unlock+0x172/0x230
[ 98.928241][ T6552] do_exit+0xafb/0x2c30
[ 98.928256][ T6552] ? __pfx_do_exit+0x10/0x10
[ 98.928269][ T6552] ? preempt_schedule_thunk+0x16/0x30
[ 98.928281][ T6552] do_group_exit+0xd3/0x2a0
[ 98.928296][ T6552] __x64_sys_exit_group+0x3e/0x50
[ 98.928311][ T6552] x64_sys_call+0x1530/0x1730
[ 98.928325][ T6552] do_syscall_64+0xcd/0x260
[ 98.928337][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 98.928348][ T6552] RIP: 0033:0x7fa53558e969
[ 98.928356][ T6552] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 98.928360][ T6552] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 98.928370][ T6552] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 98.928376][ T6552] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 98.928382][ T6552] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 98.928388][ T6552] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000018
[ 98.928394][ T6552] R13: 00000000000927c0 R14: 0000000000017f64 R15: 00007ffdfd5c05a0
[ 98.928402][ T6552]
[ 98.928417][ T6552] BUG: Bad page state in process syz.0.40 pfn:51e00
[ 99.016372][ T6552] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x51e00
[ 99.019828][ T6552] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 99.023422][ T6552] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 99.026988][ T6552] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.030298][ T6552] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.033757][ T6552] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.037083][ T6552] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.040461][ T6552] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.043909][ T6552] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.047264][ T6552] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 99.050091][ T6552] page_owner tracks the page as allocated
[ 99.052370][ T6552] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6552, tgid 6552 (syz.0.40), ts 98861302638, free_ts 0
[ 99.059704][ T6552] post_alloc_hook+0x181/0x1b0
[ 99.061629][ T6552] prep_new_page+0x16/0xb0
[ 99.063476][ T6552] get_page_from_freelist+0x135b/0x3800
[ 99.065688][ T6552] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.068110][ T6552] alloc_pages_mpol+0x1fb/0x550
[ 99.070023][ T6552] folio_alloc_noprof+0x20/0x2d0
[ 99.072028][ T6552] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.074423][ T6552] page_cache_ra_order+0x4c0/0xd00
[ 99.076547][ T6552] filemap_fault+0x1a5e/0x2740
[ 99.078471][ T6552] __do_fault+0x10a/0x490
[ 99.080210][ T6552] do_pte_missing+0x1a6/0x3fb0
[ 99.082093][ T6552] __handle_mm_fault+0x103d/0x2a40
[ 99.084279][ T6552] handle_mm_fault+0x3fe/0xad0
[ 99.086241][ T6552] do_user_addr_fault+0x60c/0x1370
[ 99.088337][ T6552] exc_page_fault+0x5c/0xc0
[ 99.090120][ T6552] asm_exc_page_fault+0x26/0x30
[ 99.092052][ T6552] page_owner free stack trace missing
[ 99.094307][ T6552] Modules linked in:
[ 99.096012][ T6552] CPU: 1 UID: 0 PID: 6552 Comm: syz.0.40 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 99.096036][ T6552] Tainted: [B]=BAD_PAGE
[ 99.096041][ T6552] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.096050][ T6552] Call Trace:
[ 99.096055][ T6552]
[ 99.096061][ T6552] dump_stack_lvl+0x16c/0x1f0
[ 99.096081][ T6552] bad_page+0xb3/0x1f0
[ 99.096096][ T6552] ? __pfx_bad_page+0x10/0x10
[ 99.096112][ T6552] ? page_bad_reason+0x9d/0x1e0
[ 99.096128][ T6552] __free_frozen_pages+0x76e/0xff0
[ 99.096151][ T6552] __folio_put+0x329/0x450
[ 99.096167][ T6552] ? __pfx___folio_put+0x10/0x10
[ 99.096183][ T6552] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.096199][ T6552] ? rcu_is_watching+0x12/0xc0
[ 99.096217][ T6552] ? lock_release+0x201/0x2f0
[ 99.096239][ T6552] filemap_free_folio+0x132/0x170
[ 99.096255][ T6552] delete_from_page_cache_batch+0x741/0x9b0
[ 99.096274][ T6552] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.096292][ T6552] ? __pfx_workingset_update_node+0x10/0x10
[ 99.096307][ T6552] ? xas_move_index+0xb0/0x110
[ 99.096326][ T6552] truncate_inode_pages_range+0x279/0xe30
[ 99.096347][ T6552] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.096385][ T6552] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.096408][ T6552] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.096430][ T6552] blkdev_flush_mapping+0xfb/0x290
[ 99.096448][ T6552] blkdev_put_whole+0xc4/0xf0
[ 99.096464][ T6552] bdev_release+0x47e/0x6d0
[ 99.096483][ T6552] ? __pfx_blkdev_release+0x10/0x10
[ 99.096501][ T6552] blkdev_release+0x15/0x20
[ 99.096518][ T6552] __fput+0x3ff/0xb70
[ 99.096536][ T6552] task_work_run+0x14d/0x240
[ 99.096551][ T6552] ? __pfx_task_work_run+0x10/0x10
[ 99.096573][ T6552] ? do_raw_spin_unlock+0x172/0x230
[ 99.096591][ T6552] do_exit+0xafb/0x2c30
[ 99.096615][ T6552] ? __pfx_do_exit+0x10/0x10
[ 99.096636][ T6552] ? preempt_schedule_thunk+0x16/0x30
[ 99.096654][ T6552] do_group_exit+0xd3/0x2a0
[ 99.096677][ T6552] __x64_sys_exit_group+0x3e/0x50
[ 99.096698][ T6552] x64_sys_call+0x1530/0x1730
[ 99.096721][ T6552] do_syscall_64+0xcd/0x260
[ 99.096740][ T6552] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.096755][ T6552] RIP: 0033:0x7fa53558e969
[ 99.096767][ T6552] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 99.096775][ T6552] RSP: 002b:00007ffdfd5c04e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 99.096790][ T6552] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa53558e969
[ 99.096800][ T6552] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 99.096810][ T6552] RBP: 00007ffdfd5c054c R08: 00000006fd5c05df R09: 00000000000927c0
[ 99.096820][ T6552] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000018
[ 99.096830][ T6552] R13: 00000000000927c0 R14: 0000000000017f64 R15: 00007ffdfd5c05a0
[ 99.096844][ T6552]
[ 99.250948][ T6555] BUG: Bad page state in process syz.0.41 pfn:52001
[ 99.253745][ T6555] page does not match folio
[ 99.255572][ T6555] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffffffffffffffff pfn:0x52001
[ 99.259472][ T6555] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 99.262426][ T6555] raw: 00fff00000000000 ffffea0001480000 00000000ffffffff ffffffffffffffff
[ 99.265846][ T6555] raw: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.269187][ T6555] page dumped because: nonzero pincount
[ 99.271360][ T6555] page_owner tracks the page as allocated
[ 99.273647][ T6555] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6554, tgid 6554 (syz.0.41), ts 99217689754, free_ts 99096899232
[ 99.281443][ T6555] post_alloc_hook+0x181/0x1b0
[ 99.283477][ T6555] prep_new_page+0x16/0xb0
[ 99.285287][ T6555] get_page_from_freelist+0x135b/0x3800
[ 99.287470][ T6555] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.289927][ T6555] alloc_pages_mpol+0x1fb/0x550
[ 99.291869][ T6555] folio_alloc_noprof+0x20/0x2d0
[ 99.293929][ T6555] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.296211][ T6555] page_cache_ra_order+0x4c0/0xd00
[ 99.298207][ T6555] filemap_fault+0x1a5e/0x2740
[ 99.300128][ T6555] __do_fault+0x10a/0x490
[ 99.301861][ T6555] do_pte_missing+0x1a6/0x3fb0
[ 99.303905][ T6555] __handle_mm_fault+0x103d/0x2a40
[ 99.305938][ T6555] handle_mm_fault+0x3fe/0xad0
[ 99.307835][ T6555] do_user_addr_fault+0x60c/0x1370
[ 99.309812][ T6555] exc_page_fault+0x5c/0xc0
[ 99.311616][ T6555] asm_exc_page_fault+0x26/0x30
[ 99.313597][ T6555] page last free pid 6552 tgid 6552 stack trace:
[ 99.316000][ T6555] free_unref_folios+0x999/0x1630
[ 99.317985][ T6555] folios_put_refs+0x56f/0x740
[ 99.319874][ T6555] truncate_inode_pages_range+0x311/0xe30
[ 99.322065][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 99.324145][ T6555] blkdev_put_whole+0xc4/0xf0
[ 99.326208][ T6555] bdev_release+0x47e/0x6d0
[ 99.327997][ T6555] blkdev_release+0x15/0x20
[ 99.329785][ T6555] __fput+0x3ff/0xb70
[ 99.331384][ T6555] task_work_run+0x14d/0x240
[ 99.333343][ T6555] do_exit+0xafb/0x2c30
[ 99.335085][ T6555] do_group_exit+0xd3/0x2a0
[ 99.336968][ T6555] __x64_sys_exit_group+0x3e/0x50
[ 99.338958][ T6555] x64_sys_call+0x1530/0x1730
[ 99.340823][ T6555] do_syscall_64+0xcd/0x260
[ 99.342617][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.344990][ T6555] Modules linked in:
[ 99.346572][ T6555] CPU: 3 UID: 0 PID: 6555 Comm: syz.0.41 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 99.346598][ T6555] Tainted: [B]=BAD_PAGE
[ 99.346603][ T6555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.346613][ T6555] Call Trace:
[ 99.346619][ T6555]
[ 99.346625][ T6555] dump_stack_lvl+0x16c/0x1f0
[ 99.346647][ T6555] bad_page+0xb3/0x1f0
[ 99.346663][ T6555] ? __pfx_bad_page+0x10/0x10
[ 99.346681][ T6555] ? __mem_cgroup_uncharge+0xda/0x130
[ 99.346699][ T6555] free_tail_page_prepare+0x44f/0x5b0
[ 99.346718][ T6555] __free_frozen_pages+0x96a/0xff0
[ 99.346742][ T6555] __folio_put+0x329/0x450
[ 99.346759][ T6555] ? __pfx___folio_put+0x10/0x10
[ 99.346777][ T6555] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.346795][ T6555] ? rcu_is_watching+0x12/0xc0
[ 99.346813][ T6555] ? lock_release+0x201/0x2f0
[ 99.346837][ T6555] filemap_free_folio+0x132/0x170
[ 99.346855][ T6555] delete_from_page_cache_batch+0x741/0x9b0
[ 99.346874][ T6555] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.346892][ T6555] ? __pfx_workingset_update_node+0x10/0x10
[ 99.346909][ T6555] ? xas_move_index+0xb0/0x110
[ 99.346929][ T6555] truncate_inode_pages_range+0x279/0xe30
[ 99.346954][ T6555] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.346990][ T6555] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.347016][ T6555] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.347038][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 99.347056][ T6555] ? filemap_check_errors+0xa9/0x160
[ 99.347105][ T6555] blkdev_put_whole+0xc4/0xf0
[ 99.347121][ T6555] bdev_release+0x47e/0x6d0
[ 99.347141][ T6555] ? __pfx_blkdev_release+0x10/0x10
[ 99.347161][ T6555] blkdev_release+0x15/0x20
[ 99.347180][ T6555] __fput+0x3ff/0xb70
[ 99.347198][ T6555] task_work_run+0x14d/0x240
[ 99.347215][ T6555] ? __pfx_task_work_run+0x10/0x10
[ 99.347232][ T6555] ? do_raw_spin_unlock+0x172/0x230
[ 99.347250][ T6555] do_exit+0xafb/0x2c30
[ 99.347272][ T6555] ? __pfx_futex_wake_mark+0x10/0x10
[ 99.347299][ T6555] ? __pfx_do_exit+0x10/0x10
[ 99.347327][ T6555] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.347342][ T6555] ? get_signal+0x8f5/0x26d0
[ 99.347360][ T6555] ? rcu_is_watching+0x12/0xc0
[ 99.347378][ T6555] do_group_exit+0xd3/0x2a0
[ 99.347400][ T6555] get_signal+0x2673/0x26d0
[ 99.347421][ T6555] ? __pfx_get_signal+0x10/0x10
[ 99.347439][ T6555] ? do_futex+0x122/0x350
[ 99.347460][ T6555] ? __pfx_do_futex+0x10/0x10
[ 99.347479][ T6555] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.347503][ T6555] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.347528][ T6555] ? madvise_unlock+0xc6/0x190
[ 99.347547][ T6555] syscall_exit_to_user_mode+0x150/0x2a0
[ 99.347568][ T6555] do_syscall_64+0xda/0x260
[ 99.347588][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.347604][ T6555] RIP: 0033:0x7fa53558e969
[ 99.347617][ T6555] Code: Unable to access opcode bytes at 0x7fa53558e93f.
[ 99.347624][ T6555] RSP: 002b:00007fa5364330e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 99.347639][ T6555] RAX: fffffffffffffe00 RBX: 00007fa5357b5fa8 RCX: 00007fa53558e969
[ 99.347649][ T6555] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fa5357b5fa8
[ 99.347659][ T6555] RBP: 00007fa5357b5fa0 R08: 0000000000000000 R09: 0000000000000000
[ 99.347669][ T6555] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa5357b5fac
[ 99.347678][ T6555] R13: 0000000000000000 R14: 00007ffdfd5c00a0 R15: 00007ffdfd5c0188
[ 99.347693][ T6555]
[ 99.347722][ T6555] BUG: Bad page state in process syz.0.41 pfn:52000
[ 99.484092][ T6555] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x52000
[ 99.487591][ T6555] head: order:0 mapcount:0 entire_mapcount:1 nr_pages_mapped:0 pincount:0
[ 99.490956][ T6555] flags: 0xfff00000000049(locked|uptodate|head|node=0|zone=1|lastcpupid=0x7ff)
[ 99.494653][ T6555] raw: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.498016][ T6555] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.500858][ T6555] head: 00fff00000000049 dead000000000100 dead000000000122 0000000000000000
[ 99.506223][ T6555] head: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.508799][ T6555] head: 00fff00000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 99.511349][ T6555] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000000
[ 99.513977][ T6555] page dumped because: PAGE_FLAGS_CHECK_AT_FREE flag(s) set
[ 99.516124][ T6555] page_owner tracks the page as allocated
[ 99.517814][ T6555] page last allocated via order 9, migratetype Unmovable, gfp_mask 0x152c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 6554, tgid 6554 (syz.0.41), ts 99217689754, free_ts 99096899232
[ 99.523727][ T6555] post_alloc_hook+0x181/0x1b0
[ 99.525179][ T6555] prep_new_page+0x16/0xb0
[ 99.526519][ T6555] get_page_from_freelist+0x135b/0x3800
[ 99.528194][ T6555] __alloc_frozen_pages_noprof+0x263/0x23a0
[ 99.530155][ T6555] alloc_pages_mpol+0x1fb/0x550
[ 99.531697][ T6555] folio_alloc_noprof+0x20/0x2d0
[ 99.533261][ T6555] filemap_alloc_folio_noprof+0x3a1/0x470
[ 99.534943][ T6555] page_cache_ra_order+0x4c0/0xd00
[ 99.536511][ T6555] filemap_fault+0x1a5e/0x2740
[ 99.537938][ T6555] __do_fault+0x10a/0x490
[ 99.539258][ T6555] do_pte_missing+0x1a6/0x3fb0
[ 99.540730][ T6555] __handle_mm_fault+0x103d/0x2a40
[ 99.542264][ T6555] handle_mm_fault+0x3fe/0xad0
[ 99.543768][ T6555] do_user_addr_fault+0x60c/0x1370
[ 99.545293][ T6555] exc_page_fault+0x5c/0xc0
[ 99.546667][ T6555] asm_exc_page_fault+0x26/0x30
[ 99.548140][ T6555] page last free pid 6552 tgid 6552 stack trace:
[ 99.549988][ T6555] free_unref_folios+0x999/0x1630
[ 99.551511][ T6555] folios_put_refs+0x56f/0x740
[ 99.552994][ T6555] truncate_inode_pages_range+0x311/0xe30
[ 99.554704][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 99.556241][ T6555] blkdev_put_whole+0xc4/0xf0
[ 99.557660][ T6555] bdev_release+0x47e/0x6d0
[ 99.559028][ T6555] blkdev_release+0x15/0x20
[ 99.560419][ T6555] __fput+0x3ff/0xb70
[ 99.561719][ T6555] task_work_run+0x14d/0x240
[ 99.563179][ T6555] do_exit+0xafb/0x2c30
[ 99.564508][ T6555] do_group_exit+0xd3/0x2a0
[ 99.565881][ T6555] __x64_sys_exit_group+0x3e/0x50
[ 99.567405][ T6555] x64_sys_call+0x1530/0x1730
[ 99.568824][ T6555] do_syscall_64+0xcd/0x260
[ 99.570167][ T6555] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 99.571948][ T6555] Modules linked in:
[ 99.573218][ T6555] CPU: 3 UID: 0 PID: 6555 Comm: syz.0.41 Tainted: G B 6.15.0-rc4-syzkaller-g95d3481af6dc-dirty #0 PREEMPT(full)
[ 99.573236][ T6555] Tainted: [B]=BAD_PAGE
[ 99.573239][ T6555] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 99.573246][ T6555] Call Trace:
[ 99.573250][ T6555]
[ 99.573254][ T6555] dump_stack_lvl+0x16c/0x1f0
[ 99.573268][ T6555] bad_page+0xb3/0x1f0
[ 99.573279][ T6555] ? __pfx_bad_page+0x10/0x10
[ 99.573294][ T6555] ? page_bad_reason+0x9d/0x1e0
[ 99.573305][ T6555] __free_frozen_pages+0x76e/0xff0
[ 99.573320][ T6555] __folio_put+0x329/0x450
[ 99.573331][ T6555] ? __pfx___folio_put+0x10/0x10
[ 99.573342][ T6555] ? delete_from_page_cache_batch+0x6c9/0x9b0
[ 99.573353][ T6555] ? rcu_is_watching+0x12/0xc0
[ 99.573364][ T6555] ? lock_release+0x201/0x2f0
[ 99.573379][ T6555] filemap_free_folio+0x132/0x170
[ 99.573390][ T6555] delete_from_page_cache_batch+0x741/0x9b0
[ 99.573402][ T6555] ? __pfx_delete_from_page_cache_batch+0x10/0x10
[ 99.573414][ T6555] ? __pfx_workingset_update_node+0x10/0x10
[ 99.573425][ T6555] ? xas_move_index+0xb0/0x110
[ 99.573437][ T6555] truncate_inode_pages_range+0x279/0xe30
[ 99.573452][ T6555] ? __pfx_truncate_inode_pages_range+0x10/0x10
[ 99.573475][ T6555] ? __pfx_invalidate_bh_lru+0x10/0x10
[ 99.573490][ T6555] ? __pfx_has_bh_in_lru+0x10/0x10
[ 99.573505][ T6555] blkdev_flush_mapping+0xfb/0x290
[ 99.573517][ T6555] ? filemap_check_errors+0xa9/0x160
[ 99.573531][ T6555] blkdev_put_whole+0xc4/0xf0
[ 99.573542][ T6555] bdev_release+0x47e/0x6d0
[ 99.573554][ T6555] ? __pfx_blkdev_release+0x10/0x10
[ 99.573566][ T6555] blkdev_release+0x15/0x20
[ 99.573578][ T6555] __fput+0x3ff/0xb70
[ 99.573590][ T6555] task_work_run+0x14d/0x240
[ 99.573600][ T6555] ? __pfx_task_work_run+0x10/0x10
[ 99.573610][ T6555] ? do_raw_spin_unlock+0x172/0x230
[ 99.573621][ T6555] do_exit+0xafb/0x2c30
[ 99.573635][ T6555] ? __pfx_futex_wake_mark+0x10/0x10
[ 99.573652][ T6555] ? __pfx_do_exit+0x10/0x10
[ 99.573665][ T6555] ? do_raw_spin_lock+0x12c/0x2b0
[ 99.573675][ T6555] ? get_signal+0x8f5/0x26d0
[ 99.573687][ T6555] ? rcu_is_watching+0x12/0xc0
[ 99.573698][ T6555] do_group_exit+0xd3/0x2a0
[ 99.573713][ T6555] get_signal+0x2673/0x26d0
[ 99.573726][ T6555] ? __pfx_get_signal+0x10/0x10
[ 99.573738][ T6555] ? do_futex+0x122/0x350
[ 99.573751][ T6555] ? __pfx_do_futex+0x10/0x10
[ 99.573764][ T6555] arch_do_signal_or_restart+0x8f/0x7d0
[ 99.573779][ T6555] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 99.573795][ T6555] ? madvise_unlock+0xc6/0x190