syzbot

 nl80211_set_interface+0x8e0/0xc80 net/wireless/nl80211.c:4638
 genl_family_rcv_msg_doit+0x209/0x2f0 net/netlink/genetlink.c:1115
 genl_family_rcv_msg net/netlink/genetlink.c:1195 [inline]
 genl_rcv_msg+0x55c/0x800 net/netlink/genetlink.c:1210
 netlink_rcv_skb+0x158/0x420 net/netlink/af_netlink.c:2550
 genl_rcv+0x28/0x40 net/netlink/genetlink.c:1219
------------[ cut here ]------------
kernel BUG at mm/filemap.c:858!
Oops: invalid opcode: 0000 [#1] SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 6061 Comm: syz.4.21 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
RIP: 0010:__filemap_add_folio+0xf29/0x11b0 mm/filemap.c:858
Code: 97 c6 ff 48 c7 c6 80 ed 99 8b 4c 89 ef e8 0f 74 11 00 90 0f 0b e8 07 97 c6 ff 48 c7 c6 e0 ed 99 8b 4c 89 ef e8 f8 73 11 00 90 <0f> 0b e8 f0 96 c6 ff 90 0f 0b 90 e9 1c fc ff ff e8 e2 96 c6 ff 48
RSP: 0018:ffffc90003ae7450 EFLAGS: 00010293
RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
RDX: ffff888031a98000 RSI: ffffffff81f84f78 RDI: ffff888031a98484
RBP: 0000000000112cc0 R08: 0000000000000001 R09: 0000000000000001
R10: ffffffff9088b4d7 R11: 0000000000000001 R12: 0000000000000002
R13: ffffea0001aa27c0 R14: 0000000000000000 R15: 0000000000000000
FS:  000055556791a500(0000) GS:ffff8881248f5000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055556f889808 CR3: 00000000609d2000 CR4: 00000000003526f0
Call Trace:
 <TASK>
 filemap_add_folio+0x19a/0x610 mm/filemap.c:966
 ra_alloc_folio mm/readahead.c:453 [inline]
 page_cache_ra_order+0x637/0xed0 mm/readahead.c:512
 do_sync_mmap_readahead mm/filemap.c:3400 [inline]
 filemap_fault+0x16ac/0x29d0 mm/filemap.c:3549
 __do_fault+0x10d/0x490 mm/memory.c:5320
 do_shared_fault mm/memory.c:5819 [inline]
 do_fault+0x302/0x1ad0 mm/memory.c:5893
 do_pte_missing mm/memory.c:4401 [inline]
 handle_pte_fault mm/memory.c:6273 [inline]
 __handle_mm_fault+0x1919/0x2bb0 mm/memory.c:6411
 handle_mm_fault+0x3fe/0xad0 mm/memory.c:6580
 faultin_page mm/gup.c:1126 [inline]
 __get_user_pages+0x54e/0x3590 mm/gup.c:1428
 __get_user_pages_locked mm/gup.c:1692 [inline]
 faultin_page_range+0x338/0x940 mm/gup.c:1912
 madvise_populate mm/madvise.c:976 [inline]
 madvise_do_behavior+0x34c/0x530 mm/madvise.c:1935
 do_madvise+0x176/0x240 mm/madvise.c:2030
 __do_sys_madvise mm/madvise.c:2039 [inline]
 __se_sys_madvise mm/madvise.c:2037 [inline]
 __x64_sys_madvise+0xa9/0x110 mm/madvise.c:2037
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xcd/0xf80 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f2f5f18f749
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffca999c7e8 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
RAX: ffffffffffffffda RBX: 00007f2f5f3e5fa0 RCX: 00007f2f5f18f749
RDX: 0000000000000017 RSI: 0000000000c00000 RDI: 0000200000000000
RBP: 00007f2f5f213f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007f2f5f3e5fa0 R14: 00007f2f5f3e5fa0 R15: 0000000000000003
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:__filemap_add_folio+0xf29/0x11b0 mm/filemap.c:858
Code: 97 c6 ff 48 c7 c6 80 ed 99 8b 4c 89 ef e8 0f 74 11 00 90 0f 0b e8 07 97 c6 ff 48 c7 c6 e0 ed 99 8b 4c 89 ef e8 f8 73 11 00 90 <0f> 0b e8 f0 96 c6 ff 90 0f 0b 90 e9 1c fc ff ff e8 e2 96 c6 ff 48
RSP: 0018:ffffc90003ae7450 EFLAGS: 00010293
RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
RDX: ffff888031a98000 RSI: ffffffff81f84f78 RDI: ffff888031a98484
RBP: 0000000000112cc0 R08: 0000000000000001 R09: 0000000000000001
R10: ffffffff9088b4d7 R11: 0000000000000001 R12: 0000000000000002
R13: ffffea0001aa27c0 R14: 0000000000000000 R15: 0000000000000000
FS:  000055556791a500(0000) GS:ffff8881248f5000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000c0043bd000 CR3: 00000000609d2000 CR4: 00000000003526f0