88072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:25:41 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000040)=[@in6={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, @in={0x2, 0x4e22, @remote}, @in={0x2, 0x4e22, @local}, @in={0x2, 0x0, @remote}], 0x4c)

[  424.534341][ T6352]     0-536866815: 0000000000000000
[  424.539696][ T6352]     536866816-536870911: ffff88807cef72a0
[  424.561760][ T6352]     536870912-553627647: ffff88801fb9b700
[  424.567732][ T6352]     553627648-553639935: 0000000000000000
[  424.576478][ T6352]     553639936-553627647: ffff88807bda78c0
[  424.598397][ T6352]     553627648-553644031: ffff88807bda79a0
[  424.604459][ T6352]     553644032-553648127: ffff8880216d6b60
[  424.615211][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  424.616684][ T6937] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.3'.
[  424.621699][ T6352]     553652224-116809400319: 0000000000000000
[  424.637336][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
11:25:41 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x6, 0x0, 0x0, 0x0, 0x0, {}, ["", "", "", "", "", "", ""]}, 0x14}}, 0x0)

[  424.649675][ T6937] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.3'.
[  424.659286][ T6937] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  424.677069][ T6352]     116813594624-93825005334527: 0000000000000000
11:25:41 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0xa, &(0x7f0000000200)=[@in, @in={0x2, 0x0, @loopback}], 0x20)

[  424.691897][ T6412] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
11:25:41 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x64, &(0x7f0000000200)=[@in={0x2, 0x0, @loopback}], 0x10)

[  424.728376][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  424.752275][ T6352]     93825005473792-140593359482879: 0000000000000000
11:25:41 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x0)

[  424.769733][ T6937] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  424.779158][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:25:42 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000001c80)={0x0, 0x0, &(0x7f0000001c40)={&(0x7f0000001900)={0x1c, 0x1, 0x1, 0x301, 0x0, 0x0, {0xa}, [@CTA_STATUS_MASK={0x8}]}, 0x1c}}, 0x0)

[  424.786807][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  425.042596][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  425.068616][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  425.076229][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  425.083940][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
11:25:42 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001900)={0x20, 0x4, 0xa, 0x801, 0x0, 0x0, {}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}}, 0x0)

11:25:42 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000001bc0)={0x0, 0x0, &(0x7f0000001b80)={&(0x7f0000001ac0)={0x18, 0x1, 0x2, 0x401, 0x0, 0x0, {}, [@CTA_EXPECT_TUPLE={0x4}]}, 0x18}}, 0x0)

11:25:42 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="10010000030101040000000000000000020000014c0019000000020000010000080002008f0200000800010002020000080001000604000008000200e00000000800010001010000080001000004000008000100000400000800020008000000780001802c00018014000300fe8000000000000000000000000000bb14000400200100000000000000000000000000011400018008"], 0x110}}, 0x0)

11:25:42 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmmsg(r0, &(0x7f0000006440)=[{{&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @remote}, 0x80, &(0x7f0000002c40)=[{&(0x7f0000000140)=""/92, 0x5c}, {&(0x7f0000001900)=""/205, 0xcd}], 0x2, &(0x7f0000002cc0)=""/86, 0x56}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000003040)=""/202, 0xca}}], 0x2, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_EXPR={0x18, 0x11, 0x0, 0x1, @cmp={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8}]}}}, @NFTA_SET_EXPRESSIONS={0x20, 0x12, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @val={0x4}}}]}]}, @NFT_MSG_NEWTABLE={0x14}], {0x14}}, 0x88}}, 0x0)

[  425.091342][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  425.098426][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  425.106489][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  425.162227][ T6958] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.0'.
[  425.185026][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  425.202425][ T6958] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.0'.
[  425.218258][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  425.242275][ T6352]     140593381670912-140593381675007: 0000000000000000
[  425.249298][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  425.270089][ T6958] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  425.309344][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  425.350015][ T6352]     140593382076416-140593382096895: 0000000000000000
[  425.357393][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  425.385769][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
11:25:42 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r2, 0x80286722, &(0x7f0000000000)={&(0x7f00000000c0)=""/201, 0xc9, 0x7, 0x4})

11:25:42 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000240)={'syztnl1\x00', &(0x7f00000001c0)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, @local, @mcast1, 0x40, 0x7, 0x10001, 0x6}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))

11:25:42 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000001c80)={0x0, 0x0, &(0x7f0000001c40)={&(0x7f0000001900)={0x14, 0x2, 0x1, 0x301}, 0x14}}, 0x0)

11:25:42 executing program 4:
openat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x1040c0, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x48440, 0x0, 0x8}, 0x18)

11:25:42 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000001bc0)=ANY=[@ANYBLOB="e0000000040a0103000000000000000005"], 0xe0}}, 0x0)

11:25:42 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req={0x10000, 0x401, 0x1000000}, 0x10)

[  425.449517][ T6352]     140593393942528-140593395646463: 0000000000000000
[  425.463774][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
11:25:42 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000001c80)={0x0, 0x0, &(0x7f0000001c40)={&(0x7f0000000040)={0x1c, 0x0, 0x1, 0x301, 0x0, 0x0, {}, [@CTA_ZONE={0x6}]}, 0x1c}}, 0x0)

11:25:42 executing program 3:
r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040)={0x48440}, 0x18)
ioctl$FS_IOC_GETVERSION(r0, 0x80087601, 0x0)

11:25:42 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @loopback={0x0, 0xf}}], 0x1c)

11:25:42 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x4e23, @rand_addr=0x64010104}, @in6={0xa, 0x4e23, 0x0, @ipv4}], 0x2c)

[  425.501172][   T27] audit: type=1800 audit(1673263542.611:11): pid=6968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=1181 res=0 errno=0
[  425.535832][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
11:25:42 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0x40046607, 0x0)

11:25:42 executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='syzkaller\x00', 0x4, 0xff0, &(0x7f000062b000)=""/4080, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x3d)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x0, 0x2614, 0x0, &(0x7f0000000080)="851d5af81f5589", 0x0, 0x96c6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

[  425.630358][ T6352]     140593395781632-140727606853631: 0000000000000000
[  425.637383][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  425.649772][ T6352]     140727606988800-140727607586815: 0000000000000000
[  425.666046][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  425.711077][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  425.750159][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  425.771091][ T6352] Pass: 8834465 Run:8834559
[  425.781550][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  425.791426][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  425.801514][ T6352] Call Trace:
[  425.804821][ T6352]  <TASK>
[  425.807774][ T6352]  dump_stack_lvl+0xd1/0x138
[  425.812413][ T6352]  mt_find.cold+0x8b/0x90
[  425.816789][ T6352]  ? mas_find+0x1d0/0x1d0
[  425.821163][ T6352]  find_vma+0x10c/0x1b0
[  425.825335][ T6352]  ? can_vma_merge_before+0x390/0x390
[  425.830723][ T6352]  ? walk_page_test+0x78/0x180
[  425.835505][ T6352]  walk_page_range+0x2b1/0x4a0
[  425.840285][ T6352]  ? __walk_page_range+0x780/0x780
[  425.845428][ T6352]  mlock_fixup+0x650/0x810
[  425.849871][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  425.855091][ T6352]  ? mlock_fixup+0x810/0x810
[  425.859709][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  425.865623][ T6352]  do_mlock+0x25a/0x6d0
[  425.869806][ T6352]  ? folio_evictable+0x270/0x270
[  425.874770][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  425.880682][ T6352]  __x64_sys_mlock+0x59/0x80
[  425.885294][ T6352]  do_syscall_64+0x39/0xb0
[  425.889735][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  425.895647][ T6352] RIP: 0033:0x7fde7288c0c9
[  425.900068][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  425.919686][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  425.928109][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  425.936085][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  425.944059][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  425.952033][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  425.960014][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  425.968006][ T6352]  </TASK>
[  426.001112][ T6352] index not increased! 20ffb000 <= 20ffb000
[  426.007093][ T6352] BUG at mt_find:6473 (1)
[  426.024006][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  426.038096][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:25:43 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r2, 0x80286722, &(0x7f0000000000)={&(0x7f00000000c0)=""/201, 0xc9, 0x7, 0x4})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r2, 0x80286722, &(0x7f0000000000)={&(0x7f00000000c0)=""/201, 0xc9, 0x7, 0x4}) (async)

[  426.076427][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  426.140014][ T6352]     0-536866815: 0000000000000000
[  426.145486][ T6352]     536866816-536870911: ffff88807cef72a0
11:25:43 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWSET={0x1694, 0x9, 0xa, 0x101, 0x0, 0x0, {}, [@NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @cmp={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_CMP_SREG={0x8}, @NFTA_CMP_OP={0x8}]}}}, @NFTA_SET_EXPRESSIONS={0x1394, 0x12, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @osf={{0x8}, @void}}, {0x4c, 0x1, 0x0, 0x1, @flow_offload={{0x11}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOW_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}}}, {0x10, 0x1, 0x0, 0x1, @bitwise={{0xc}, @void}}, {0x131c, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x130c, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8}, @NFTA_BITWISE_MASK={0x12f0, 0x4, 0x0, 0x1, [@NFTA_DATA_VALUE={0x100, 0x1, "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"}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8}]}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8}]}, @NFTA_DATA_VALUE={0xa4, 0x1, "4decd1bc5242cf64686e37806ef2fb947cf6c29289e2ce3551458a30c7e0b5e0d0a8a178e785314f5b568009cc5352a8799c0124d643b8b8aee0347d2cf1974bd2aacce6bb159702e278472613347335dbcbe76748a872a67c0fcfca860dcbfbf673a401cde1a3b551d94cd9ad17436e8f95a3f5e82cadd94733f892db7a118830f9a0425c85fbef25b95bf5e99b7d7da3ee135fd4a137fa43a43adabe02838d"}, @NFTA_DATA_VALUE={0x98, 0x1, "4b74f22f845c45f01701b2d5580f97ef913eafc38e2375aadd1fa01f00fac5a33f5424b523a479aeae3c01850c2e8e9d89d2bd1831eafcac2035075e61fa34221f257eb43c50524e6c19ce52e256895eb6e0fc728cc575df3dda10575ba5b67ae07951e42e017aa32ba2e4c798ea34c295a6ba436a0d7a596c22d16543f0941eab694377c3a881378db7585298ccafee4237b41c"}, @NFTA_DATA_VERDICT={0x5c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8}]}, @NFTA_DATA_VALUE={0x1004, 0x1, "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"}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}, @NFTA_BITWISE_SREG={0x8}, @NFTA_BITWISE_SREG={0x8}]}}}, {0xc, 0x1, 0x0, 0x1, @ct={{0x7}, @void}}]}, @NFTA_SET_TIMEOUT={0xc}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_FLAGS={0x8}, @NFTA_SET_KEY_LEN={0x8}, @NFTA_SET_HANDLE={0xc}, @NFTA_SET_DESC={0x1c4, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0xfc, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}, @NFTA_SET_DESC_CONCAT={0xb4, 0x2, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x4}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}, @NFTA_SET_DESC_SIZE={0x8}]}, @NFTA_SET_EXPR={0x5, 0x11, 0x0, 0x1, @objref={{0xb}, @void}}, @NFTA_SET_USERDATA={0xc6, 0xd, 0x1, 0x0, "a8d613da0bfd5a9582b46c66b20250c815655a03f75f8e3d473c9e0923a21226155e000a776507a49160139372c5d79369ea0ccb74d43b3afcd6887f26e4e6c628f9cf2b5109fbcddf1e6abff58088c6549e7faede9c3a74741e21f4024bedee6bc73ef4a879483558278d0ef937d63d81fb5cf59bf3ee5e5d42cf6938657a12d9bcb71daf259384caf5507734c50cef0fe1e216ff8300e2f2f7f9241de4e88728c5039cfb28f0cb6f0fab53d77170621e594baaed568286abf44b2fb4f9b4e55cc5"}]}, @NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x16dc}}, 0x0)

11:25:43 executing program 0:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000680)='pagemap\x00')
lseek(r0, 0x0, 0x4)

11:25:43 executing program 5:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_GET(r0, &(0x7f0000001a40)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001900)={0x18, 0x1, 0x9, 0x3, 0x0, 0x0, {}, [@NFCTH_TUPLE={0x4}]}, 0x18}}, 0x0)

11:25:43 executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='syzkaller\x00', 0x4, 0xff0, &(0x7f000062b000)=""/4080, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x3d)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x0, 0x2614, 0x0, &(0x7f0000000080)="851d5af81f5589", 0x0, 0x96c6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

[  426.159768][ T6352]     536870912-553627647: ffff88801fb9b700
[  426.175387][ T6352]     553627648-553639935: 0000000000000000
[  426.181992][ T6352]     553639936-553627647: ffff88807bda78c0
[  426.195815][ T6352]     553627648-553644031: ffff88807bda79a0
[  426.236096][ T6352]     553644032-553648127: ffff8880216d6b60
[  426.243796][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  426.250188][ T6352]     553652224-116809400319: 0000000000000000
[  426.256500][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  426.263446][ T6352]     116813594624-93825005334527: 0000000000000000
[  426.270724][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  426.277634][ T6352]     93825005473792-140593359482879: 0000000000000000
11:25:43 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="10010000030101040000000000000000020000014c0019000000020000010000080002008f0200000800010002020000080001000604000008000200e00000000800010001010000080001000004000008000100000400000800020008000000780001802c00018014000300fe8000000000000000000000000000bb1400040020010000000000000000000000000001140001800800010000000000080002"], 0x110}}, 0x0)

[  426.285021][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  426.294017][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  426.362088][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
11:25:43 executing program 5:
syz_emit_ethernet(0x4a, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000020000086dd6043a5f90014060000000000000000000000fe8000000000000000000003000000bb01000000000000000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='X5'], 0x0)

[  426.385987][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  426.419780][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
11:25:43 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @loopback={0x0, 0xf}}], 0x1c)

11:25:43 executing program 5:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x121401)
write$sndseq(r0, 0x0, 0x0)
poll(&(0x7f00000001c0)=[{r0, 0x1189}], 0x1, 0x0)

11:25:43 executing program 0:
socketpair(0xa, 0x1, 0x0, &(0x7f0000000a40))

[  426.453279][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  426.483019][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
11:25:43 executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="18020000070000000000000000000000850000004100000095000000000000003d789ade838a5ad00c21f97a9d6f55528c474cb31df77098cacd277206f0902cf2c1d66e1ef4fe6deeaf8739f048bff4c9d61b5c334ef7384130fd875789e46307b8f29c46149360bea59a42011aabc5001093a06d23b6cf4f033c6000c3ab63ee036fe7023574b86ce453bc8964c32f955d410083f7567735a2ca15dbbf01550310a78644e801f1751307aca5ddc82c7addb04f55cee250cb3700000000b9e18a9c6cc8a194f6ea9566b0a4141ae3c08d264831d0f6365469c356218500000000000000000000000000000000000000000000001a18f6de0000000000000000000000000000009eba393daf3d7f743968d782589686e0cb06a5df331250090627812ad6b659e90ebcff66b746bb15ddc931128330b6015d4aa29f146d2b74c9af3f81c531513c893c03f93606ed1a076a4279c526e7a36c744fb3f5e1641f08e01691c97b954a3689e635825358c988ca083de05473909913abba576b07667dde8a1eafa2d76292f4a9bd5dca530ff7be28fcd6f1698788f778ec8fbcbee958d2e0df"], &(0x7f0000000240)='syzkaller\x00', 0x4, 0xff0, &(0x7f000062b000)=""/4080, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x3d)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x0, 0x2614, 0x0, &(0x7f0000000080)="851d5af81f5589", 0x0, 0x96c6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

11:25:43 executing program 1:
mknod(&(0x7f00000000c0)='./bus\x00', 0x8000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
fcntl$getown(r0, 0x5)

11:25:43 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
preadv(r0, &(0x7f0000000980)=[{&(0x7f0000000000)=""/102, 0x66}, {&(0x7f0000000300)=""/28, 0x1c}, {&(0x7f0000000340)=""/201, 0xc9}, {&(0x7f0000000440)=""/97, 0x61}, {&(0x7f0000000700)=""/229, 0xe5}, {&(0x7f0000000800)=""/37, 0x25}, {&(0x7f0000000840)=""/125, 0x7d}, {&(0x7f00000008c0)=""/177, 0xb1}], 0x8, 0x8, 0x800)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000000c0)={0x0, 0x0, @pic={0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}})

11:25:43 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000180)={'ip6gre0\x00', &(0x7f0000000100)={'ip6tnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast1, @remote}})

[  426.572280][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  426.607046][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
11:25:43 executing program 5:
mkdir(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x56f, &(0x7f00000001c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000240)=@vsock={0x28, 0x0, 0x0, @hyper}}, 0x0)
open(0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
io_uring_enter(r2, 0x6903, 0x0, 0x0, 0x0, 0x0)

[  426.618061][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  426.651545][ T6352]     140593381335040-140593381670911: ffff88806863a000
11:25:43 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x3d, &(0x7f0000000000)=""/130, &(0x7f00000000c0)=0x82)

11:25:43 executing program 1:
mknod(&(0x7f00000000c0)='./bus\x00', 0x8000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
fcntl$getown(r0, 0x5)

[  426.701397][ T6352]     140593381670912-140593381675007: 0000000000000000
11:25:43 executing program 0:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000400)={&(0x7f0000000000)={0xa, 0x4e21, 0x0, @loopback={0x0, 0x4800}}, 0x1c, 0x0}, 0x0)

[  426.736177][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  426.830015][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  426.865832][ T6352]     140593382076416-140593382096895: 0000000000000000
11:25:44 executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)='syzkaller\x00', 0x4, 0xff0, &(0x7f000062b000)=""/4080, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x3d)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x0, 0x2614, 0x0, &(0x7f0000000080)="851d5af81f5589", 0x0, 0x96c6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

[  426.898854][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  426.964225][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  427.092550][ T6352]     140593393942528-140593395646463: 0000000000000000
[  427.103018][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  427.127780][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  427.135688][ T6352]     140593395781632-140727606853631: 0000000000000000
[  427.143106][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  427.151411][ T6352]     140727606988800-140727607586815: 0000000000000000
[  427.158553][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  427.166082][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  427.175776][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  427.195568][ T6352] Pass: 8860210 Run:8860305
[  427.202576][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  427.212437][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  427.222507][ T6352] Call Trace:
[  427.225842][ T6352]  <TASK>
[  427.228797][ T6352]  dump_stack_lvl+0xd1/0x138
[  427.233419][ T6352]  mt_find.cold+0x8b/0x90
[  427.237762][ T6352]  ? mas_find+0x1d0/0x1d0
[  427.242109][ T6352]  find_vma+0x10c/0x1b0
[  427.246265][ T6352]  ? can_vma_merge_before+0x390/0x390
[  427.251637][ T6352]  ? walk_page_test+0x78/0x180
[  427.256402][ T6352]  walk_page_range+0x2b1/0x4a0
[  427.261170][ T6352]  ? __walk_page_range+0x780/0x780
[  427.266289][ T6352]  mlock_fixup+0x650/0x810
[  427.270714][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  427.275917][ T6352]  ? mlock_fixup+0x810/0x810
[  427.280519][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  427.286424][ T6352]  do_mlock+0x25a/0x6d0
[  427.290594][ T6352]  ? folio_evictable+0x270/0x270
[  427.295566][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  427.301479][ T6352]  __x64_sys_mlock+0x59/0x80
[  427.306093][ T6352]  do_syscall_64+0x39/0xb0
[  427.310528][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  427.316433][ T6352] RIP: 0033:0x7fde7288c0c9
[  427.320857][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  427.340482][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  427.348931][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  427.356917][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  427.364896][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  427.372870][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  427.380846][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  427.388928][ T6352]  </TASK>
11:25:44 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:44 executing program 1:
getresgid(&(0x7f00000000c0), 0x0, 0x0)
madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x4)

11:25:44 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
preadv(r0, &(0x7f0000000980)=[{&(0x7f0000000000)=""/102, 0x66}, {&(0x7f0000000300)=""/28, 0x1c}, {&(0x7f0000000340)=""/201, 0xc9}, {&(0x7f0000000440)=""/97, 0x61}, {&(0x7f0000000700)=""/229, 0xe5}, {&(0x7f0000000800)=""/37, 0x25}, {&(0x7f0000000840)=""/125, 0x7d}, {&(0x7f00000008c0)=""/177, 0xb1}], 0x8, 0x8, 0x800)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000000c0)={0x0, 0x0, @pic={0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
preadv(r0, &(0x7f0000000980)=[{&(0x7f0000000000)=""/102, 0x66}, {&(0x7f0000000300)=""/28, 0x1c}, {&(0x7f0000000340)=""/201, 0xc9}, {&(0x7f0000000440)=""/97, 0x61}, {&(0x7f0000000700)=""/229, 0xe5}, {&(0x7f0000000800)=""/37, 0x25}, {&(0x7f0000000840)=""/125, 0x7d}, {&(0x7f00000008c0)=""/177, 0xb1}], 0x8, 0x8, 0x800) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000000c0)={0x0, 0x0, @pic={0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}) (async)

11:25:44 executing program 3:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r0, 0x541c, 0x0)

11:25:44 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  427.407367][ T6352] index not increased! 20ffb000 <= 20ffb000
[  427.416108][ T6352] BUG at mt_find:6473 (1)
[  427.489905][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:25:44 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}}}}, &(0x7f00000000c0)=0x90)

[  427.544288][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  427.582825][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  427.634242][ T6352]     0-536866815: 0000000000000000
11:25:44 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)}, 0x80)

[  427.639480][ T6352]     536866816-536870911: ffff88807cef72a0
[  427.659342][ T6352]     536870912-553627647: ffff88801fb9b700
[  427.668107][ T6352]     553627648-553639935: 0000000000000000
11:25:44 executing program 5:
mkdir(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x56f, &(0x7f00000001c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000240)=@vsock={0x28, 0x0, 0x0, @hyper}}, 0x0)
open(0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
io_uring_enter(r2, 0x6903, 0x0, 0x0, 0x0, 0x0)

11:25:44 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:44 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  427.697719][ T6352]     553639936-553627647: ffff88807bda78c0
11:25:44 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet6_int(r0, 0x29, 0x4d, 0x0, &(0x7f0000000080))

[  427.749764][ T6352]     553627648-553644031: ffff88807bda79a0
11:25:44 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:44 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
preadv(r0, &(0x7f0000000980)=[{&(0x7f0000000000)=""/102, 0x66}, {&(0x7f0000000300)=""/28, 0x1c}, {&(0x7f0000000340)=""/201, 0xc9}, {&(0x7f0000000440)=""/97, 0x61}, {&(0x7f0000000700)=""/229, 0xe5}, {&(0x7f0000000800)=""/37, 0x25}, {&(0x7f0000000840)=""/125, 0x7d}, {&(0x7f00000008c0)=""/177, 0xb1}], 0x8, 0x8, 0x800)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000000c0)={0x0, 0x0, @pic={0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
preadv(r0, &(0x7f0000000980)=[{&(0x7f0000000000)=""/102, 0x66}, {&(0x7f0000000300)=""/28, 0x1c}, {&(0x7f0000000340)=""/201, 0xc9}, {&(0x7f0000000440)=""/97, 0x61}, {&(0x7f0000000700)=""/229, 0xe5}, {&(0x7f0000000800)=""/37, 0x25}, {&(0x7f0000000840)=""/125, 0x7d}, {&(0x7f00000008c0)=""/177, 0xb1}], 0x8, 0x8, 0x800) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000000c0)={0x0, 0x0, @pic={0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}) (async)

[  427.791686][ T6352]     553644032-553648127: ffff8880216d6b60
11:25:44 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:45 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:45 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8940, &(0x7f0000000640)={'wpan3\x00'})

[  427.929183][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  428.003108][ T6352]     553652224-116809400319: 0000000000000000
[  428.009963][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  428.017130][ T6352]     116813594624-93825005334527: 0000000000000000
[  428.024111][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  428.032321][ T6352]     93825005473792-140593359482879: 0000000000000000
[  428.039377][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:25:45 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:45 executing program 0:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  428.046635][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
11:25:45 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  428.172503][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  428.331207][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  428.339252][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  428.346523][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  428.354053][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  428.361736][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  428.369129][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  428.393010][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  428.419936][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  428.427772][ T6352]     140593381670912-140593381675007: 0000000000000000
[  428.453202][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  428.475444][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  428.499794][ T6352]     140593382076416-140593382096895: 0000000000000000
[  428.506840][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  428.530008][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  428.604898][ T6352]     140593393942528-140593395646463: 0000000000000000
[  428.619138][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  428.637543][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  428.655146][ T6352]     140593395781632-140727606853631: 0000000000000000
[  428.674686][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  428.694863][ T6352]     140727606988800-140727607586815: 0000000000000000
[  428.714405][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  428.735540][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  428.758210][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  428.778632][ T6352] Pass: 8875698 Run:8875794
[  428.793269][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  428.803146][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  428.813231][ T6352] Call Trace:
[  428.816529][ T6352]  <TASK>
[  428.819480][ T6352]  dump_stack_lvl+0xd1/0x138
[  428.824111][ T6352]  mt_find.cold+0x8b/0x90
[  428.828480][ T6352]  ? mas_find+0x1d0/0x1d0
[  428.832843][ T6352]  find_vma+0x10c/0x1b0
[  428.836997][ T6352]  ? can_vma_merge_before+0x390/0x390
[  428.842364][ T6352]  ? walk_page_test+0x78/0x180
[  428.847220][ T6352]  walk_page_range+0x2b1/0x4a0
[  428.851988][ T6352]  ? __walk_page_range+0x780/0x780
[  428.857137][ T6352]  mlock_fixup+0x650/0x810
[  428.861563][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  428.866764][ T6352]  ? mlock_fixup+0x810/0x810
[  428.871365][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  428.877292][ T6352]  do_mlock+0x25a/0x6d0
[  428.881456][ T6352]  ? folio_evictable+0x270/0x270
[  428.886578][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  428.892473][ T6352]  __x64_sys_mlock+0x59/0x80
[  428.897068][ T6352]  do_syscall_64+0x39/0xb0
[  428.901490][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  428.907389][ T6352] RIP: 0033:0x7fde7288c0c9
[  428.911798][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  428.931405][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  428.939819][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  428.947785][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  428.955765][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  428.963732][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  428.971695][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  428.979680][ T6352]  </TASK>
[  429.120404][ T6352] index not increased! 20ffb000 <= 20ffb000
[  429.126390][ T6352] BUG at mt_find:6473 (1)
[  429.135371][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:25:46 executing program 5:
mkdir(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x56f, &(0x7f00000001c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000240)=@vsock={0x28, 0x0, 0x0, @hyper}}, 0x0)
open(0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
io_uring_enter(r2, 0x6903, 0x0, 0x0, 0x0, 0x0)

11:25:46 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x19, 0x0, 0x0, 0x6}, 0x48)

11:25:46 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:46 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:46 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
open_by_handle_at(r2, &(0x7f0000000000)=@isofs_parent={0x14, 0x2, {0xff, 0x5, 0x2, 0x7, 0x101, 0x20}}, 0x80000)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000000)={@rand_addr, @broadcast}, 0xc)
preadv2(r3, &(0x7f00000005c0)=[{&(0x7f00000003c0)=""/246, 0xf6}, {&(0x7f0000000500)=""/158, 0x9e}, {&(0x7f0000000300)=""/104, 0x68}], 0x3, 0x40411ade, 0x1, 0x4)
io_submit(0x0, 0x3, &(0x7f0000000480)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x3, 0x9, r0, &(0x7f0000000100)="c3452c6cb3288b22d5ed69e3202fa91dfeeb06d00f98e7d59faa0a1fb49b216bc9a809e6c88ce05521f7f02c9a2388a71b41347cb3db76f5441381c054730254179c304268c492e02e63fdffb8a45e08bed2e005d375617281fd70a07a3b389581ee850e83e33e3cabb9fa03f444310bf18acc4e1eff7b3a8f374447fa5f3736ab00a2e7e6ade88a88e9c2193db3610443b8b49aac210d6dc5dcda3077e9d22be3cb1374dbbcce7b8180d2d46a32c55dd2765455a5034bd20dd3b5afc5662b4f8d458d7294ff55dcad0dca2b9f1fc965daf42e86213af63318a58c040bb87c72a0edc7f484c57edba475a6ad9a98", 0xee, 0x1, 0x0, 0x1}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2, 0x5, r1, &(0x7f0000000200)="c821791003418fbc3e8bb47a0e8666bef4107e32981e37b7b7ccbd058537a2681dff2e0c3cf0e2dc3c7299680d0d2ab635e8bdb44bac160636781a07a511f25404ea69936227100e6767d73730080238819162a11d1986fd8a570317f3b219c6f5e52a9ce7fc63dfa076ef6bc682be8bc7d92cc23be0d42c47af52bdd5751b39eb00cb0c9a5554d9ef5d126cc9e6e47f05db264443356f90ac17fbb6cba6285d1b91cec43c4057896e913bb7f9bd2f2cfdfd39e4b672b71870dffef235b60009d3e8aa6ec384ad7b21e366c098580cc339bea0c3bba983db1dc10fdbc6a9623b3a2c9125416700e607e2c1", 0xeb, 0x2, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x5e27, r3, &(0x7f0000000340)="caa690b2f3a3b1db743876f9ee1bd3f7789210bed9a0379b9f192b3d6d337b40409a09195143894601f271f6f387ca1959304b90a6c89f75c8c882ebbc5ccaa15c030b57e83eb032665b5f6dce2c9d9499fdc54824f39a7ba147ec270d56313801af50b4961e4438d96a4a58e5599bccd8e0aee14bc646b1f46d11c4ece1bbffee2e4ce639cdeb4337ed1bcf2fbc2a117bbe9a20d659adc943bc230052181433587d4b06ba0051f507b641ab346a45c4e37c6d9d198c116d1ca3c8e51ab35d634955d814f026630c03e763335cbd8d1038f1a24b11", 0xd5, 0x100000000000, 0x0, 0x2}])
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:25:46 executing program 0:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  429.143975][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:25:46 executing program 0:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  429.181905][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:25:46 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:46 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:46 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  429.429865][ T6352]     0-536866815: 0000000000000000
11:25:46 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  429.463985][ T6352]     536866816-536870911: ffff88807cef72a0
[  429.479936][ T6352]     536870912-553627647: ffff88801fb9b700
[  429.486379][ T6352]     553627648-553639935: 0000000000000000
[  429.493088][ T6352]     553639936-553627647: ffff88807bda78c0
[  429.499289][ T6352]     553627648-553644031: ffff88807bda79a0
11:25:46 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  429.509522][ T6352]     553644032-553648127: ffff8880216d6b60
[  429.573524][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  429.658918][ T6352]     553652224-116809400319: 0000000000000000
[  429.773032][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  429.797381][ T6352]     116813594624-93825005334527: 0000000000000000
[  429.849039][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  429.865491][ T6352]     93825005473792-140593359482879: 0000000000000000
[  429.885798][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  429.905208][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  430.049756][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  430.059243][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  430.085177][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  430.094454][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  430.101921][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  430.111944][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  430.127355][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  430.138414][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  430.154666][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  430.166141][ T6352]     140593381670912-140593381675007: 0000000000000000
[  430.187609][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  430.207031][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  430.224633][ T6352]     140593382076416-140593382096895: 0000000000000000
[  430.243887][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  430.263745][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
11:25:47 executing program 5:
mkdir(0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x56f, &(0x7f00000001c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000240)=@vsock={0x28, 0x0, 0x0, @hyper}}, 0x0)
open(0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x40, &(0x7f0000000140)=0x307e, 0x0, 0x4)
io_uring_enter(r2, 0x6903, 0x0, 0x0, 0x0, 0x0)

11:25:47 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:47 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:47 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:47 executing program 1:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:47 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
open_by_handle_at(r2, &(0x7f0000000000)=@isofs_parent={0x14, 0x2, {0xff, 0x5, 0x2, 0x7, 0x101, 0x20}}, 0x80000)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000000)={@rand_addr, @broadcast}, 0xc)
preadv2(r3, &(0x7f00000005c0)=[{&(0x7f00000003c0)=""/246, 0xf6}, {&(0x7f0000000500)=""/158, 0x9e}, {&(0x7f0000000300)=""/104, 0x68}], 0x3, 0x40411ade, 0x1, 0x4)
io_submit(0x0, 0x3, &(0x7f0000000480)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x3, 0x9, r0, &(0x7f0000000100)="c3452c6cb3288b22d5ed69e3202fa91dfeeb06d00f98e7d59faa0a1fb49b216bc9a809e6c88ce05521f7f02c9a2388a71b41347cb3db76f5441381c054730254179c304268c492e02e63fdffb8a45e08bed2e005d375617281fd70a07a3b389581ee850e83e33e3cabb9fa03f444310bf18acc4e1eff7b3a8f374447fa5f3736ab00a2e7e6ade88a88e9c2193db3610443b8b49aac210d6dc5dcda3077e9d22be3cb1374dbbcce7b8180d2d46a32c55dd2765455a5034bd20dd3b5afc5662b4f8d458d7294ff55dcad0dca2b9f1fc965daf42e86213af63318a58c040bb87c72a0edc7f484c57edba475a6ad9a98", 0xee, 0x1, 0x0, 0x1}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2, 0x5, r1, &(0x7f0000000200)="c821791003418fbc3e8bb47a0e8666bef4107e32981e37b7b7ccbd058537a2681dff2e0c3cf0e2dc3c7299680d0d2ab635e8bdb44bac160636781a07a511f25404ea69936227100e6767d73730080238819162a11d1986fd8a570317f3b219c6f5e52a9ce7fc63dfa076ef6bc682be8bc7d92cc23be0d42c47af52bdd5751b39eb00cb0c9a5554d9ef5d126cc9e6e47f05db264443356f90ac17fbb6cba6285d1b91cec43c4057896e913bb7f9bd2f2cfdfd39e4b672b71870dffef235b60009d3e8aa6ec384ad7b21e366c098580cc339bea0c3bba983db1dc10fdbc6a9623b3a2c9125416700e607e2c1", 0xeb, 0x2, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x5e27, r3, &(0x7f0000000340)="caa690b2f3a3b1db743876f9ee1bd3f7789210bed9a0379b9f192b3d6d337b40409a09195143894601f271f6f387ca1959304b90a6c89f75c8c882ebbc5ccaa15c030b57e83eb032665b5f6dce2c9d9499fdc54824f39a7ba147ec270d56313801af50b4961e4438d96a4a58e5599bccd8e0aee14bc646b1f46d11c4ece1bbffee2e4ce639cdeb4337ed1bcf2fbc2a117bbe9a20d659adc943bc230052181433587d4b06ba0051f507b641ab346a45c4e37c6d9d198c116d1ca3c8e51ab35d634955d814f026630c03e763335cbd8d1038f1a24b11", 0xd5, 0x100000000000, 0x0, 0x2}])
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)) (async)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) (async)
open_by_handle_at(r2, &(0x7f0000000000)=@isofs_parent={0x14, 0x2, {0xff, 0x5, 0x2, 0x7, 0x101, 0x20}}, 0x80000) (async)
socket$inet_udplite(0x2, 0x2, 0x88) (async)
setsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000000)={@rand_addr, @broadcast}, 0xc) (async)
preadv2(r3, &(0x7f00000005c0)=[{&(0x7f00000003c0)=""/246, 0xf6}, {&(0x7f0000000500)=""/158, 0x9e}, {&(0x7f0000000300)=""/104, 0x68}], 0x3, 0x40411ade, 0x1, 0x4) (async)
io_submit(0x0, 0x3, &(0x7f0000000480)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x3, 0x9, r0, &(0x7f0000000100)="c3452c6cb3288b22d5ed69e3202fa91dfeeb06d00f98e7d59faa0a1fb49b216bc9a809e6c88ce05521f7f02c9a2388a71b41347cb3db76f5441381c054730254179c304268c492e02e63fdffb8a45e08bed2e005d375617281fd70a07a3b389581ee850e83e33e3cabb9fa03f444310bf18acc4e1eff7b3a8f374447fa5f3736ab00a2e7e6ade88a88e9c2193db3610443b8b49aac210d6dc5dcda3077e9d22be3cb1374dbbcce7b8180d2d46a32c55dd2765455a5034bd20dd3b5afc5662b4f8d458d7294ff55dcad0dca2b9f1fc965daf42e86213af63318a58c040bb87c72a0edc7f484c57edba475a6ad9a98", 0xee, 0x1, 0x0, 0x1}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2, 0x5, r1, &(0x7f0000000200)="c821791003418fbc3e8bb47a0e8666bef4107e32981e37b7b7ccbd058537a2681dff2e0c3cf0e2dc3c7299680d0d2ab635e8bdb44bac160636781a07a511f25404ea69936227100e6767d73730080238819162a11d1986fd8a570317f3b219c6f5e52a9ce7fc63dfa076ef6bc682be8bc7d92cc23be0d42c47af52bdd5751b39eb00cb0c9a5554d9ef5d126cc9e6e47f05db264443356f90ac17fbb6cba6285d1b91cec43c4057896e913bb7f9bd2f2cfdfd39e4b672b71870dffef235b60009d3e8aa6ec384ad7b21e366c098580cc339bea0c3bba983db1dc10fdbc6a9623b3a2c9125416700e607e2c1", 0xeb, 0x2, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x5e27, r3, &(0x7f0000000340)="caa690b2f3a3b1db743876f9ee1bd3f7789210bed9a0379b9f192b3d6d337b40409a09195143894601f271f6f387ca1959304b90a6c89f75c8c882ebbc5ccaa15c030b57e83eb032665b5f6dce2c9d9499fdc54824f39a7ba147ec270d56313801af50b4961e4438d96a4a58e5599bccd8e0aee14bc646b1f46d11c4ece1bbffee2e4ce639cdeb4337ed1bcf2fbc2a117bbe9a20d659adc943bc230052181433587d4b06ba0051f507b641ab346a45c4e37c6d9d198c116d1ca3c8e51ab35d634955d814f026630c03e763335cbd8d1038f1a24b11", 0xd5, 0x100000000000, 0x0, 0x2}]) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

[  430.358748][ T6352]     140593393942528-140593395646463: 0000000000000000
[  430.365868][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  430.372944][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  430.380045][ T6352]     140593395781632-140727606853631: 0000000000000000
[  430.387908][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  430.395141][ T6352]     140727606988800-140727607586815: 0000000000000000
11:25:47 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
dup(r0)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:47 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  430.421088][ T6352]     140727607586816-140727607603199: ffff88806863a460
11:25:47 executing program 3:
setsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:47 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000340), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)={0x20, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}]}, 0x20}}, 0x0)

[  430.500758][ T6352]     140727607603200-140727607611391: ffff88806863a540
11:25:47 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
dup(r0)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:47 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  430.643325][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  430.693083][ T6352] Pass: 8895032 Run:8895129
[  430.697648][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  430.707480][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  430.717566][ T6352] Call Trace:
[  430.720877][ T6352]  <TASK>
[  430.723835][ T6352]  dump_stack_lvl+0xd1/0x138
[  430.728484][ T6352]  mt_find.cold+0x8b/0x90
[  430.732870][ T6352]  ? mas_find+0x1d0/0x1d0
[  430.737264][ T6352]  find_vma+0x10c/0x1b0
[  430.741456][ T6352]  ? can_vma_merge_before+0x390/0x390
[  430.746880][ T6352]  ? walk_page_test+0x78/0x180
[  430.751699][ T6352]  walk_page_range+0x2b1/0x4a0
[  430.756511][ T6352]  ? __walk_page_range+0x780/0x780
[  430.761676][ T6352]  mlock_fixup+0x650/0x810
[  430.766123][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  430.771340][ T6352]  ? mlock_fixup+0x810/0x810
[  430.775961][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  430.781875][ T6352]  do_mlock+0x25a/0x6d0
[  430.786048][ T6352]  ? folio_evictable+0x270/0x270
[  430.791009][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  430.796915][ T6352]  __x64_sys_mlock+0x59/0x80
[  430.801524][ T6352]  do_syscall_64+0x39/0xb0
[  430.805957][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  430.811860][ T6352] RIP: 0033:0x7fde7288c0c9
[  430.816284][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  430.835895][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  430.844309][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  430.852280][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  430.860249][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  430.868219][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  430.876225][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  430.884216][ T6352]  </TASK>
[  430.917954][ T6352] index not increased! 20ffb000 <= 20ffb000
[  430.940684][ T6352] BUG at mt_find:6473 (1)
[  430.947796][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  431.048526][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  431.142956][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  431.279316][ T6352]     0-536866815: 0000000000000000
[  431.295965][ T6352]     536866816-536870911: ffff88807cef72a0
[  431.310491][ T6352]     536870912-553627647: ffff88801fb9b700
[  431.316461][ T6352]     553627648-553639935: 0000000000000000
[  431.325594][ T6352]     553639936-553627647: ffff88807bda78c0
[  431.340752][ T6352]     553627648-553644031: ffff88807bda79a0
[  431.347872][ T6352]     553644032-553648127: ffff8880216d6b60
[  431.359946][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  431.369908][ T6352]     553652224-116809400319: 0000000000000000
[  431.376121][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  431.384455][ T6352]     116813594624-93825005334527: 0000000000000000
[  431.407766][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  431.421039][ T6352]     93825005473792-140593359482879: 0000000000000000
[  431.429950][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  431.444483][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
11:25:48 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:48 executing program 3:
setsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:48 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
dup(r0)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:48 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet6_int(r0, 0x29, 0x19, 0x0, &(0x7f0000000080))

11:25:48 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
open_by_handle_at(r2, &(0x7f0000000000)=@isofs_parent={0x14, 0x2, {0xff, 0x5, 0x2, 0x7, 0x101, 0x20}}, 0x80000)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000000)={@rand_addr, @broadcast}, 0xc) (async)
preadv2(r3, &(0x7f00000005c0)=[{&(0x7f00000003c0)=""/246, 0xf6}, {&(0x7f0000000500)=""/158, 0x9e}, {&(0x7f0000000300)=""/104, 0x68}], 0x3, 0x40411ade, 0x1, 0x4) (async)
io_submit(0x0, 0x3, &(0x7f0000000480)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x3, 0x9, r0, &(0x7f0000000100)="c3452c6cb3288b22d5ed69e3202fa91dfeeb06d00f98e7d59faa0a1fb49b216bc9a809e6c88ce05521f7f02c9a2388a71b41347cb3db76f5441381c054730254179c304268c492e02e63fdffb8a45e08bed2e005d375617281fd70a07a3b389581ee850e83e33e3cabb9fa03f444310bf18acc4e1eff7b3a8f374447fa5f3736ab00a2e7e6ade88a88e9c2193db3610443b8b49aac210d6dc5dcda3077e9d22be3cb1374dbbcce7b8180d2d46a32c55dd2765455a5034bd20dd3b5afc5662b4f8d458d7294ff55dcad0dca2b9f1fc965daf42e86213af63318a58c040bb87c72a0edc7f484c57edba475a6ad9a98", 0xee, 0x1, 0x0, 0x1}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2, 0x5, r1, &(0x7f0000000200)="c821791003418fbc3e8bb47a0e8666bef4107e32981e37b7b7ccbd058537a2681dff2e0c3cf0e2dc3c7299680d0d2ab635e8bdb44bac160636781a07a511f25404ea69936227100e6767d73730080238819162a11d1986fd8a570317f3b219c6f5e52a9ce7fc63dfa076ef6bc682be8bc7d92cc23be0d42c47af52bdd5751b39eb00cb0c9a5554d9ef5d126cc9e6e47f05db264443356f90ac17fbb6cba6285d1b91cec43c4057896e913bb7f9bd2f2cfdfd39e4b672b71870dffef235b60009d3e8aa6ec384ad7b21e366c098580cc339bea0c3bba983db1dc10fdbc6a9623b3a2c9125416700e607e2c1", 0xeb, 0x2, 0x0, 0x2}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x5e27, r3, &(0x7f0000000340)="caa690b2f3a3b1db743876f9ee1bd3f7789210bed9a0379b9f192b3d6d337b40409a09195143894601f271f6f387ca1959304b90a6c89f75c8c882ebbc5ccaa15c030b57e83eb032665b5f6dce2c9d9499fdc54824f39a7ba147ec270d56313801af50b4961e4438d96a4a58e5599bccd8e0aee14bc646b1f46d11c4ece1bbffee2e4ce639cdeb4337ed1bcf2fbc2a117bbe9a20d659adc943bc230052181433587d4b06ba0051f507b641ab346a45c4e37c6d9d198c116d1ca3c8e51ab35d634955d814f026630c03e763335cbd8d1038f1a24b11", 0xd5, 0x100000000000, 0x0, 0x2}])
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r4, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:25:48 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmmsg$inet6(r0, &(0x7f0000003b80)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @private0}, 0x1c, &(0x7f0000000240)=[{&(0x7f00000000c0)="c9", 0x1}], 0x1}}], 0x1, 0x0)

[  431.558083][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  431.568944][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  431.576731][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  431.589905][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
11:25:48 executing program 3:
setsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:48 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(0x0, r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  431.650800][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
11:25:48 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:48 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(0x0, r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:48 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_int(r0, 0x29, 0x49, &(0x7f0000000000)=0x4000000, 0x4)

11:25:48 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  431.792560][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  431.814825][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  431.824731][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  431.832355][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  431.864684][ T6352]     140593381670912-140593381675007: 0000000000000000
[  431.907161][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  431.942189][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  431.979749][ T6352]     140593382076416-140593382096895: 0000000000000000
[  431.995987][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  432.028180][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  432.087970][ T6352]     140593393942528-140593395646463: 0000000000000000
[  432.097697][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  432.106215][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  432.115790][ T6352]     140593395781632-140727606853631: 0000000000000000
[  432.124020][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  432.131611][ T6352]     140727606988800-140727607586815: 0000000000000000
[  432.138635][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  432.145807][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  432.152873][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  432.160425][ T6352] Pass: 8904946 Run:8905044
[  432.165031][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  432.174853][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  432.184905][ T6352] Call Trace:
[  432.188177][ T6352]  <TASK>
[  432.191101][ T6352]  dump_stack_lvl+0xd1/0x138
[  432.195694][ T6352]  mt_find.cold+0x8b/0x90
[  432.200025][ T6352]  ? mas_find+0x1d0/0x1d0
[  432.204359][ T6352]  find_vma+0x10c/0x1b0
[  432.208506][ T6352]  ? can_vma_merge_before+0x390/0x390
[  432.213879][ T6352]  ? walk_page_test+0x78/0x180
[  432.218643][ T6352]  walk_page_range+0x2b1/0x4a0
[  432.223436][ T6352]  ? __walk_page_range+0x780/0x780
[  432.228625][ T6352]  mlock_fixup+0x650/0x810
[  432.233092][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  432.238303][ T6352]  ? mlock_fixup+0x810/0x810
[  432.242909][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  432.248808][ T6352]  do_mlock+0x25a/0x6d0
[  432.252973][ T6352]  ? folio_evictable+0x270/0x270
[  432.257918][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  432.263810][ T6352]  __x64_sys_mlock+0x59/0x80
[  432.268401][ T6352]  do_syscall_64+0x39/0xb0
[  432.272838][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  432.278762][ T6352] RIP: 0033:0x7fde7288c0c9
[  432.283188][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  432.302806][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  432.311216][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  432.319183][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  432.327165][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  432.335153][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  432.343120][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  432.351098][ T6352]  </TASK>
[  432.358178][ T6352] index not increased! 20ffb000 <= 20ffb000
[  432.364616][ T6352] BUG at mt_find:6473 (1)
[  432.369048][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  432.378261][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  432.415646][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  432.467355][ T6352]     0-536866815: 0000000000000000
[  432.472780][ T6352]     536866816-536870911: ffff88807cef72a0
[  432.478795][ T6352]     536870912-553627647: ffff88801fb9b700
[  432.484854][ T6352]     553627648-553639935: 0000000000000000
[  432.490868][ T6352]     553639936-553627647: ffff88807bda78c0
[  432.496847][ T6352]     553627648-553644031: ffff88807bda79a0
[  432.502903][ T6352]     553644032-553648127: ffff8880216d6b60
[  432.508991][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  432.515038][ T6352]     553652224-116809400319: 0000000000000000
[  432.521386][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  432.527866][ T6352]     116813594624-93825005334527: 0000000000000000
[  432.535402][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  432.542310][ T6352]     93825005473792-140593359482879: 0000000000000000
[  432.549199][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:25:49 executing program 5:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000500)={'gretap0\x00', 0x0})

11:25:49 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = epoll_create(0x0)
read(r2, &(0x7f0000000180)=""/54, 0x36)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/xpad', 0x200, 0x40)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="0f0151522e0f2262f367640f35b9bf0a0000b800000000ba010000000f30b9c80a00000f32f20f38f127f30f09f30fc7714f0f3235000400000f3067f30fa7c00fb07300", 0x44}], 0x1, 0x4, &(0x7f0000000140), 0x0)

11:25:49 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:49 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(0x0, r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:49 executing program 4:
open(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:49 executing program 1:
bpf$MAP_CREATE(0x4, &(0x7f0000000040)=@bloom_filter={0x1e, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)

11:25:49 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:49 executing program 0:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  432.556246][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  432.630475][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
11:25:49 executing program 4:
open(0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  432.680165][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  432.687182][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
11:25:49 executing program 1:
r0 = epoll_create(0x9)
epoll_pwait(r0, &(0x7f0000000280)=[{}], 0x1, 0x2, &(0x7f00000002c0)={[0x3]}, 0x8)

11:25:49 executing program 3:
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:49 executing program 5:
r0 = epoll_create(0x9)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff)

[  432.731505][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
11:25:49 executing program 5:
creat(&(0x7f00000089c0)='./file0\x00', 0x0)
lgetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@known='trusted.overlay.opaque\x00', &(0x7f00000001c0)=""/107, 0x6b)

11:25:49 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = epoll_create(0x0)
read(r2, &(0x7f0000000180)=""/54, 0x36) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/xpad', 0x200, 0x40)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="0f0151522e0f2262f367640f35b9bf0a0000b800000000ba010000000f30b9c80a00000f32f20f38f127f30f09f30fc7714f0f3235000400000f3067f30fa7c00fb07300", 0x44}], 0x1, 0x4, &(0x7f0000000140), 0x0)

[  432.782171][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
11:25:49 executing program 0:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:50 executing program 4:
open(0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:50 executing program 3:
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:50 executing program 5:
creat(&(0x7f00000089c0)='./file0\x00', 0x0)
lgetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@known='trusted.overlay.opaque\x00', &(0x7f00000001c0)=""/107, 0x6b)

[  432.867200][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  432.934053][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  432.957611][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  432.965349][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  432.974889][ T6352]     140593381670912-140593381675007: 0000000000000000
11:25:50 executing program 0:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  432.982490][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  432.989995][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  432.997236][ T6352]     140593382076416-140593382096895: 0000000000000000
[  433.007076][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
11:25:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x797)

11:25:50 executing program 3:
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, &(0x7f0000000000), 0x1)

11:25:50 executing program 4:
open(0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:50 executing program 5:
creat(&(0x7f00000089c0)='./file0\x00', 0x0)
lgetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@known='trusted.overlay.opaque\x00', &(0x7f00000001c0)=""/107, 0x6b)

[  433.020584][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
11:25:50 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = epoll_create(0x0)
read(r2, &(0x7f0000000180)=""/54, 0x36)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/xpad', 0x200, 0x40)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="0f0151522e0f2262f367640f35b9bf0a0000b800000000ba010000000f30b9c80a00000f32f20f38f127f30f09f30fc7714f0f3235000400000f3067f30fa7c00fb07300", 0x44}], 0x1, 0x4, &(0x7f0000000140), 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
epoll_create(0x0) (async)
read(r2, &(0x7f0000000180)=""/54, 0x36) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/xpad', 0x200, 0x40) (async)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="0f0151522e0f2262f367640f35b9bf0a0000b800000000ba010000000f30b9c80a00000f32f20f38f127f30f09f30fc7714f0f3235000400000f3067f30fa7c00fb07300", 0x44}], 0x1, 0x4, &(0x7f0000000140), 0x0) (async)

[  433.120191][ T6352]     140593393942528-140593395646463: 0000000000000000
[  433.127212][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
11:25:50 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, 0x0, 0x0)

11:25:50 executing program 5:
creat(&(0x7f00000089c0)='./file0\x00', 0x0)
lgetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@known='trusted.overlay.opaque\x00', &(0x7f00000001c0)=""/107, 0x6b)

11:25:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:50 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, 0x0, 0x0)

[  433.233356][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
11:25:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:50 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:50 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000640)={0xec4, 0x0, 0x0, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x118, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x18}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_NODE={0xd98, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x79, 0x3, "755971de6a455e3c3660b0af9e0e7c750d8eefb5695f1a185668b9f7fa5154a659cb2e6e612d0fd0c37530512b6939e8ace8f5b16b7f2c4a5072698dcbeb6ec8945efa889e1fe8f4383b388fe55e064bcdd1be275da5a9ce6b29267334c6ea7e90dcd5af604fb125c6cb794f8a2baf0d3057c78033"}, @TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_ID={0xd0d, 0x3, "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"}]}]}, 0xec4}, 0x1, 0x0, 0x0, 0x20008040}, 0x8000)

[  433.310170][ T6352]     140593395781632-140727606853631: 0000000000000000
[  433.338532][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  433.403635][ T6352]     140727606988800-140727607586815: 0000000000000000
[  433.473529][ T6352]     140727607586816-140727607603199: ffff88806863a460
11:25:50 executing program 1:
syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x4a42)

11:25:50 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
setsockopt$bt_BT_POWER(r0, 0x112, 0x9, 0x0, 0x0)

11:25:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:50 executing program 5:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000140))

11:25:50 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x6000, 0x10000, 0x8, 0xff, 0x0, [{0x5, 0x4, 0x3d, '\x00', 0x5}, {0x6, 0x0, 0x3, '\x00', 0xe4}, {0x9, 0x8, 0x84}, {0x7, 0x4, 0x8, '\x00', 0x4}, {0x80, 0x3b, 0x1, '\x00', 0x7}, {0x1, 0x1, 0x5, '\x00', 0x3}, {0x6, 0x2, 0x81, '\x00', 0x8}, {0x9, 0x8, 0x55, '\x00', 0x7}, {0x3, 0x0, 0x11, '\x00', 0x8}, {0x20, 0x1, 0x3, '\x00', 0x1f}, {0x8, 0x8, 0xf7, '\x00', 0x4}, {0x8, 0x0, 0x20, '\x00', 0xc0}, {0x6, 0x7, 0x81, '\x00', 0x6}, {0x3, 0x3f, 0xff, '\x00', 0x2}, {0x2, 0x20, 0x40}, {0x5, 0x20, 0x1}, {0x7, 0x1, 0x1f, '\x00', 0x7}, {0x6, 0x81, 0x43, '\x00', 0x3}, {0x7f, 0x3d, 0xc7, '\x00', 0x6}, {0x5, 0x9, 0x9, '\x00', 0x2e}, {0x40, 0x9, 0x1}, {0x16, 0x7f, 0x9, '\x00', 0x4}, {0x1, 0x6, 0xd2, '\x00', 0x7f}, {0x8, 0x1, 0x0, '\x00', 0x7f}]}})

11:25:50 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  433.517019][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  433.527380][ T6352]     140727607611392-18446744073709551615: 0000000000000000
11:25:50 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x6000, 0x10000, 0x8, 0xff, 0x0, [{0x5, 0x4, 0x3d, '\x00', 0x5}, {0x6, 0x0, 0x3, '\x00', 0xe4}, {0x9, 0x8, 0x84}, {0x7, 0x4, 0x8, '\x00', 0x4}, {0x80, 0x3b, 0x1, '\x00', 0x7}, {0x1, 0x1, 0x5, '\x00', 0x3}, {0x6, 0x2, 0x81, '\x00', 0x8}, {0x9, 0x8, 0x55, '\x00', 0x7}, {0x3, 0x0, 0x11, '\x00', 0x8}, {0x20, 0x1, 0x3, '\x00', 0x1f}, {0x8, 0x8, 0xf7, '\x00', 0x4}, {0x8, 0x0, 0x20, '\x00', 0xc0}, {0x6, 0x7, 0x81, '\x00', 0x6}, {0x3, 0x3f, 0xff, '\x00', 0x2}, {0x2, 0x20, 0x40}, {0x5, 0x20, 0x1}, {0x7, 0x1, 0x1f, '\x00', 0x7}, {0x6, 0x81, 0x43, '\x00', 0x3}, {0x7f, 0x3d, 0xc7, '\x00', 0x6}, {0x5, 0x9, 0x9, '\x00', 0x2e}, {0x40, 0x9, 0x1}, {0x16, 0x7f, 0x9, '\x00', 0x4}, {0x1, 0x6, 0xd2, '\x00', 0x7f}, {0x8, 0x1, 0x0, '\x00', 0x7f}]}})

11:25:50 executing program 3:
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000000080)={0x7fff}, &(0x7f0000000100), &(0x7f0000000180)={&(0x7f0000000140)={[0x8]}, 0x8})

11:25:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, 0x0, 0x0)

[  433.613430][ T6352] Pass: 8923262 Run:8923361
[  433.630335][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  433.640197][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  433.650265][ T6352] Call Trace:
[  433.653566][ T6352]  <TASK>
[  433.656519][ T6352]  dump_stack_lvl+0xd1/0x138
[  433.661160][ T6352]  mt_find.cold+0x8b/0x90
[  433.665525][ T6352]  ? mas_find+0x1d0/0x1d0
[  433.669865][ T6352]  find_vma+0x10c/0x1b0
[  433.674016][ T6352]  ? can_vma_merge_before+0x390/0x390
[  433.679383][ T6352]  ? walk_page_test+0x78/0x180
[  433.684146][ T6352]  walk_page_range+0x2b1/0x4a0
[  433.688909][ T6352]  ? __walk_page_range+0x780/0x780
[  433.694027][ T6352]  mlock_fixup+0x650/0x810
[  433.698450][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  433.703649][ T6352]  ? mlock_fixup+0x810/0x810
[  433.708244][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  433.714134][ T6352]  do_mlock+0x25a/0x6d0
[  433.718291][ T6352]  ? folio_evictable+0x270/0x270
[  433.723234][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  433.729121][ T6352]  __x64_sys_mlock+0x59/0x80
[  433.733712][ T6352]  do_syscall_64+0x39/0xb0
[  433.738133][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  433.744021][ T6352] RIP: 0033:0x7fde7288c0c9
[  433.748427][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  433.768033][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  433.776440][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  433.784402][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  433.792365][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  433.800343][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
11:25:50 executing program 5:
clock_gettime(0x0, &(0x7f0000000400)={<r0=>0x0})
select(0x40, &(0x7f0000000340), &(0x7f0000000380)={0x4}, 0x0, &(0x7f0000000440)={r0})

[  433.808302][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  433.816291][ T6352]  </TASK>
11:25:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, 0x0, 0x0)

11:25:51 executing program 3:
socket$nl_generic(0x10, 0x3, 0x10)
seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0)

[  433.929246][   T27] audit: type=1326 audit(1673263551.031:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7294 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efd99e8c0c9 code=0x0
11:25:51 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000))

11:25:51 executing program 2:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async, rerun: 32)
ioctl$KVM_SET_IRQCHIP(0xffffffffffffffff, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @ioapic={0x6000, 0x10000, 0x8, 0xff, 0x0, [{0x5, 0x4, 0x3d, '\x00', 0x5}, {0x6, 0x0, 0x3, '\x00', 0xe4}, {0x9, 0x8, 0x84}, {0x7, 0x4, 0x8, '\x00', 0x4}, {0x80, 0x3b, 0x1, '\x00', 0x7}, {0x1, 0x1, 0x5, '\x00', 0x3}, {0x6, 0x2, 0x81, '\x00', 0x8}, {0x9, 0x8, 0x55, '\x00', 0x7}, {0x3, 0x0, 0x11, '\x00', 0x8}, {0x20, 0x1, 0x3, '\x00', 0x1f}, {0x8, 0x8, 0xf7, '\x00', 0x4}, {0x8, 0x0, 0x20, '\x00', 0xc0}, {0x6, 0x7, 0x81, '\x00', 0x6}, {0x3, 0x3f, 0xff, '\x00', 0x2}, {0x2, 0x20, 0x40}, {0x5, 0x20, 0x1}, {0x7, 0x1, 0x1f, '\x00', 0x7}, {0x6, 0x81, 0x43, '\x00', 0x3}, {0x7f, 0x3d, 0xc7, '\x00', 0x6}, {0x5, 0x9, 0x9, '\x00', 0x2e}, {0x40, 0x9, 0x1}, {0x16, 0x7f, 0x9, '\x00', 0x4}, {0x1, 0x6, 0xd2, '\x00', 0x7f}, {0x8, 0x1, 0x0, '\x00', 0x7f}]}}) (rerun: 32)

11:25:51 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x1, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:51 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, 0x0, 0x0)

11:25:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSBRK(r0, 0x540b)

[  433.975412][ T6352] index not increased! 20ffb000 <= 20ffb000
11:25:51 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x0, 0x0, @pic={0x8, 0x6, 0x0, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x10, 0x0, 0x9, 0x0, 0xfa}})
r2 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r2, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {0xee01, 0xee01}}, './file0\x00'})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="64360f01dff00fc05da9ba2100b8b0e6ef0fbb40000fdfe1bad004b86bbdef0f00d77008f30f182f36f20f00dc", 0x2d}], 0x1, 0x3, &(0x7f0000000100)=[@dstype3={0x7, 0xa}], 0x1)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:25:51 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

[  434.022098][ T6352] BUG at mt_find:6473 (1)
11:25:51 executing program 5:
openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000001280)=@bpf_lsm={0x1d, 0x3, &(0x7f0000001040)=@framed, &(0x7f00000010c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[  434.076043][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:25:51 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

11:25:51 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x1, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  434.124862][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  434.205265][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:25:51 executing program 5:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x40, @none}, 0xe)

[  434.320094][ T6352]     0-536866815: 0000000000000000
[  434.326192][ T6352]     536866816-536870911: ffff88807cef72a0
[  434.449701][ T6352]     536870912-553627647: ffff88801fb9b700
[  434.455687][ T6352]     553627648-553639935: 0000000000000000
[  434.523385][ T6352]     553639936-553627647: ffff88807bda78c0
[  434.529363][ T6352]     553627648-553644031: ffff88807bda79a0
[  434.545667][ T6352]     553644032-553648127: ffff8880216d6b60
[  434.552284][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  434.558223][ T6352]     553652224-116809400319: 0000000000000000
[  434.564889][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  434.594705][ T6352]     116813594624-93825005334527: 0000000000000000
[  434.607356][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  434.616048][ T6352]     93825005473792-140593359482879: 0000000000000000
[  434.623559][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  434.634168][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  434.690849][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  434.697949][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  434.705098][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  434.712148][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  434.719112][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  434.727580][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  434.734649][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
11:25:51 executing program 3:
openat$zero(0xffffffffffffff9c, &(0x7f0000000d80), 0x10000, 0x0)

11:25:51 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

11:25:51 executing program 1:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0x0, 0x0, 0x7fff, 0x0, 0x0, "165c1de6c9abb06c"})

11:25:51 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x0, 0x0, @pic={0x8, 0x6, 0x0, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x10, 0x0, 0x9, 0x0, 0xfa}}) (async, rerun: 64)
r2 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) (rerun: 64)
openat$cgroup_procs(r2, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {0xee01, 0xee01}}, './file0\x00'})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="64360f01dff00fc05da9ba2100b8b0e6ef0fbb40000fdfe1bad004b86bbdef0f00d77008f30f182f36f20f00dc", 0x2d}], 0x1, 0x3, &(0x7f0000000100)=[@dstype3={0x7, 0xa}], 0x1)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:25:51 executing program 5:
creat(&(0x7f0000000540)='./file0\x00', 0x0)
mount$binder(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000480), 0x0, &(0x7f00000004c0)={[{}]})

11:25:51 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x1, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  434.741731][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  434.748691][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  434.756135][ T6352]     140593381670912-140593381675007: 0000000000000000
[  434.763393][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
11:25:51 executing program 5:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KIOCSOUND(r0, 0x4b2f, 0x2)

11:25:51 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:25:51 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSBRK(r0, 0x5437)

[  434.808680][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  434.848312][ T6352]     140593382076416-140593382096895: 0000000000000000
11:25:52 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  434.882360][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
11:25:52 executing program 3:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000001440)='ns/cgroup\x00')
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0xb704, 0x0)

[  434.947192][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
11:25:52 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:25:52 executing program 5:
r0 = getpgrp(0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000080)=0x7)

11:25:52 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0)
syz_open_pts(r0, 0x971acdd2db675da)

11:25:52 executing program 1:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0x0, 0x0, 0x7fff, 0x0, 0x0, "165c1de6c9abb06c"})

11:25:52 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x0, 0x0, @pic={0x8, 0x6, 0x0, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x10, 0x0, 0x9, 0x0, 0xfa}}) (async)
r2 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r2, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {0xee01, 0xee01}}, './file0\x00'})
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000040)="64360f01dff00fc05da9ba2100b8b0e6ef0fbb40000fdfe1bad004b86bbdef0f00d77008f30f182f36f20f00dc", 0x2d}], 0x1, 0x3, &(0x7f0000000100)=[@dstype3={0x7, 0xa}], 0x1) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:25:52 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x0, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:52 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

11:25:52 executing program 5:
openat$zero(0xffffffffffffff9c, 0x0, 0x400000, 0x0)

[  435.184317][ T6352]     140593393942528-140593395646463: 0000000000000000
[  435.207851][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
11:25:52 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x0, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:52 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x0, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  435.238609][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
11:25:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)={0x28, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)

11:25:52 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x99fcfa1b851f7726, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000000)=0x6)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  435.279890][ T6352]     140593395781632-140727606853631: 0000000000000000
[  435.287013][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  435.304470][ T6352]     140727606988800-140727607586815: 0000000000000000
11:25:52 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:52 executing program 3:
syz_clone(0x20000, 0x0, 0x0, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180))

11:25:52 executing program 5:
open$dir(&(0x7f0000000080)='./file0\x00', 0x40640, 0x0)
mount$9p_virtio(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x1101463, 0x0)

11:25:52 executing program 1:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0x0, 0x0, 0x7fff, 0x0, 0x0, "165c1de6c9abb06c"})

11:25:52 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  435.369758][ T6352]     140727607586816-140727607603199: ffff88806863a460
11:25:52 executing program 3:
syz_genetlink_get_family_id$SEG6(&(0x7f0000001ac0), 0xffffffffffffffff)

[  435.485828][ T7390] =======================================================
[  435.485828][ T7390] WARNING: The mand mount option has been deprecated and
[  435.485828][ T7390]          and is ignored by this kernel. Remove the mand
[  435.485828][ T7390]          option from the mount to silence this warning.
[  435.485828][ T7390] =======================================================
11:25:52 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:52 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

[  435.530073][ T6352]     140727607603200-140727607611391: ffff88806863a540
11:25:52 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

11:25:52 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSBRK(r0, 0x5424)

11:25:52 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x890b, 0x0)

[  435.632719][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  435.760280][ T6352] Pass: 8948680 Run:8948780
[  435.770399][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  435.780227][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  435.790279][ T6352] Call Trace:
[  435.793554][ T6352]  <TASK>
[  435.796482][ T6352]  dump_stack_lvl+0xd1/0x138
[  435.801100][ T6352]  mt_find.cold+0x8b/0x90
[  435.805466][ T6352]  ? mas_find+0x1d0/0x1d0
[  435.809810][ T6352]  find_vma+0x10c/0x1b0
[  435.813974][ T6352]  ? can_vma_merge_before+0x390/0x390
[  435.819367][ T6352]  ? walk_page_test+0x78/0x180
[  435.824133][ T6352]  walk_page_range+0x2b1/0x4a0
[  435.828905][ T6352]  ? __walk_page_range+0x780/0x780
[  435.834120][ T6352]  mlock_fixup+0x650/0x810
[  435.838546][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  435.843750][ T6352]  ? mlock_fixup+0x810/0x810
[  435.848437][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  435.854343][ T6352]  do_mlock+0x25a/0x6d0
[  435.858504][ T6352]  ? folio_evictable+0x270/0x270
[  435.863468][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  435.869361][ T6352]  __x64_sys_mlock+0x59/0x80
[  435.873951][ T6352]  do_syscall_64+0x39/0xb0
[  435.878376][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  435.884266][ T6352] RIP: 0033:0x7fde7288c0c9
[  435.888674][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  435.908276][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  435.916688][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  435.924658][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  435.932624][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  435.940587][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  435.948563][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  435.956596][ T6352]  </TASK>
[  436.069263][ T6352] index not increased! 20ffb000 <= 20ffb000
[  436.081061][ T6352] BUG at mt_find:6473 (1)
[  436.085456][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  436.108530][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  436.197667][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:25:53 executing program 3:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$MRT6_DEL_MIF(r0, 0x29, 0xcb, &(0x7f0000000140), 0xc)

11:25:53 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, 0x0, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:53 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, 0x0, 0x0)

11:25:53 executing program 1:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0x0, 0x0, 0x7fff, 0x0, 0x0, "165c1de6c9abb06c"})

11:25:53 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x99fcfa1b851f7726, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async, rerun: 32)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) (async, rerun: 32)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000000)=0x6)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:25:53 executing program 5:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000036c0), 0x0, 0x0)
sendmsg$TEAM_CMD_PORT_LIST_GET(r0, 0x0, 0x0)

[  436.283212][ T6352]     0-536866815: 0000000000000000
[  436.288506][ T6352]     536866816-536870911: ffff88807cef72a0
11:25:53 executing program 3:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(0x0, 0xffffffffffffffff)
openat$zero(0xffffffffffffff9c, &(0x7f0000002180), 0xc080, 0x0)
epoll_wait(0xffffffffffffffff, &(0x7f00000021c0)=[{}], 0x1, 0x0)

11:25:53 executing program 5:
open$dir(&(0x7f0000000080)='./file0\x00', 0x40640, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000280)=ANY=[@ANYBLOB="02"], 0x4c, 0x0)

11:25:53 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x0, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

11:25:53 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, 0x0, 0x0)

11:25:53 executing program 5:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000041c0)={0x0, 0x0, &(0x7f0000004180)={&(0x7f0000000040)=@bridge_getvlan={0x18, 0x72, 0x1}, 0x18}}, 0x0)

[  436.437080][ T6352]     536870912-553627647: ffff88801fb9b700
11:25:53 executing program 3:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCGICOUNT(r0, 0x545d, 0x1ffff000)

11:25:53 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x0, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  436.512006][ T6352]     553627648-553639935: 0000000000000000
[  436.536422][ T6352]     553639936-553627647: ffff88807bda78c0
11:25:53 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, 0x0, 0x0)

11:25:53 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r2, 0x0, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x50}}, 0x0)

[  436.617526][ T6352]     553627648-553644031: ffff88807bda79a0
[  436.644359][ T6352]     553644032-553648127: ffff8880216d6b60
[  436.705195][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  436.718297][ T6352]     553652224-116809400319: 0000000000000000
[  436.736185][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  436.743037][ T6352]     116813594624-93825005334527: 0000000000000000
[  436.751467][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  436.763921][ T6352]     93825005473792-140593359482879: 0000000000000000
[  436.779275][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:25:53 executing program 1:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$RNDADDENTROPY(r0, 0x2, 0x0)

11:25:53 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, 0x0)

11:25:53 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

11:25:53 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x99fcfa1b851f7726, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000000)=0x6)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x99fcfa1b851f7726, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) (async)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000000)=0x6) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

11:25:53 executing program 3:
symlinkat(&(0x7f0000000000)='./file1/../file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00')
symlinkat(&(0x7f0000000080)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00')

11:25:53 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x28, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x28}}, 0x0)

[  436.808995][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
11:25:54 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

11:25:54 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x28, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x28}}, 0x0)

11:25:54 executing program 3:
r0 = syz_open_dev$loop(0x0, 0x1, 0x0)
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
write$FUSE_LSEEK(r1, &(0x7f0000002200)={0x18}, 0x18)
write$FUSE_GETXATTR(r1, 0x0, 0x0)
ioctl$IOC_PR_CLEAR(r0, 0x401070cd, &(0x7f0000000040)={0x101})
r2 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
write$FUSE_LSEEK(r2, &(0x7f0000002200)={0x6}, 0xfffffef2)
creat(&(0x7f0000000180)='./file0\x00', 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000002240)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_STATFS(r2, &(0x7f00000000c0)={0x60, 0x0, r3, {{0xfff, 0x4, 0x101, 0x8, 0x1, 0xe8}}}, 0x60)

11:25:54 executing program 5:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000002140), 0x8427fecf8e001b2b, 0x0)
read$FUSE(r0, 0x0, 0x0)

[  436.895280][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  436.917592][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  436.999642][ T5127] Bluetooth: hci0: command 0x0406 tx timeout
[  436.999755][ T4392] Bluetooth: hci1: command 0x0406 tx timeout
[  437.005710][ T5127] Bluetooth: hci2: command 0x0406 tx timeout
[  437.012504][ T5109] Bluetooth: hci3: command 0x0406 tx timeout
[  437.017776][ T5120] Bluetooth: hci5: command 0x0406 tx timeout
[  437.025342][ T5109] Bluetooth: hci4: command 0x0406 tx timeout
11:25:54 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

11:25:54 executing program 1:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0)

11:25:54 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="260f3566b9c609000066b87c00000066ba000000000f306766c7442400000000006766c7442402ea7800006766c744240600000000670f01142475fc0f20c06635080000000f22c00f78ace49764f30fc773f2f30f1ee6d9ee660f67af0000", 0x5f}], 0x1, 0x43, &(0x7f0000000100)=[@cr4={0x1, 0x800008}], 0x1)

[  437.055015][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
11:25:54 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000840)={0xec4, 0x0, 0x0, 0x0, 0x0, {}, [@TIPC_NLA_MEDIA={0xa8, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8}]}]}, @TIPC_NLA_NODE={0xe08, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_REKEYING={0x8}, @TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_ID={0xdd9, 0x3, "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"}]}]}, 0xec4}, 0x1, 0x0, 0x0, 0x40800}, 0x800)

11:25:54 executing program 5:
symlinkat(&(0x7f0000000080)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00')
fchownat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x0, 0xee00, 0x1100)

[  437.124541][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
11:25:54 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x28, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, 0x28}}, 0x0)

[  437.167314][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
11:25:54 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100), 0x0)

[  437.224899][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  437.232923][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  437.240544][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  437.248506][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  437.256423][ T6352]     140593381670912-140593381675007: 0000000000000000
[  437.264094][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
11:25:54 executing program 5:
symlinkat(&(0x7f0000000000)='./file1/../file0\x00', 0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00')
statx(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x100, 0x0, &(0x7f00000000c0))

[  437.276106][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  437.283565][ T6352]     140593382076416-140593382096895: 0000000000000000
[  437.291068][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
11:25:54 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x3c}}, 0x0)

[  437.298091][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
11:25:54 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="260f3566b9c609000066b87c00000066ba000000000f306766c7442400000000006766c7442402ea7800006766c744240600000000670f01142475fc0f20c06635080000000f22c00f78ace49764f30fc773f2f30f1ee6d9ee660f67af0000", 0x5f}], 0x1, 0x43, &(0x7f0000000100)=[@cr4={0x1, 0x800008}], 0x1)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="260f3566b9c609000066b87c00000066ba000000000f306766c7442400000000006766c7442402ea7800006766c744240600000000670f01142475fc0f20c06635080000000f22c00f78ace49764f30fc773f2f30f1ee6d9ee660f67af0000", 0x5f}], 0x1, 0x43, &(0x7f0000000100)=[@cr4={0x1, 0x800008}], 0x1) (async)

[  437.550990][ T6352]     140593393942528-140593395646463: 0000000000000000
[  437.558118][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  437.565362][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  437.572693][ T6352]     140593395781632-140727606853631: 0000000000000000
[  437.582606][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  437.590409][ T6352]     140727606988800-140727607586815: 0000000000000000
[  437.597901][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  437.605307][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  437.612505][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  437.620054][ T6352] Pass: 8971356 Run:8971457
[  437.624730][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  437.634562][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  437.644626][ T6352] Call Trace:
[  437.647919][ T6352]  <TASK>
[  437.650859][ T6352]  dump_stack_lvl+0xd1/0x138
[  437.655474][ T6352]  mt_find.cold+0x8b/0x90
[  437.659828][ T6352]  ? mas_find+0x1d0/0x1d0
[  437.664191][ T6352]  find_vma+0x10c/0x1b0
[  437.668357][ T6352]  ? can_vma_merge_before+0x390/0x390
[  437.673745][ T6352]  ? walk_page_test+0x78/0x180
[  437.678541][ T6352]  walk_page_range+0x2b1/0x4a0
[  437.683321][ T6352]  ? __walk_page_range+0x780/0x780
[  437.688462][ T6352]  mlock_fixup+0x650/0x810
[  437.692909][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  437.698138][ T6352]  ? mlock_fixup+0x810/0x810
[  437.702757][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  437.708670][ T6352]  do_mlock+0x25a/0x6d0
[  437.712846][ T6352]  ? folio_evictable+0x270/0x270
[  437.717811][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  437.723720][ T6352]  __x64_sys_mlock+0x59/0x80
[  437.728329][ T6352]  do_syscall_64+0x39/0xb0
[  437.732762][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  437.738666][ T6352] RIP: 0033:0x7fde7288c0c9
[  437.743084][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  437.762696][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  437.771116][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  437.779094][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  437.787068][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  437.795039][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  437.803548][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  437.811538][ T6352]  </TASK>
[  437.831761][ T6352] index not increased! 20ffb000 <= 20ffb000
[  437.850243][ T6352] BUG at mt_find:6473 (1)
[  437.862317][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  437.898992][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  437.937865][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  437.990789][ T6352]     0-536866815: 0000000000000000
11:25:55 executing program 3:
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000240), 0x8, 0x80800)
read$alg(r0, &(0x7f0000000040)=""/223, 0xdf)

11:25:55 executing program 5:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$RNDADDENTROPY(r0, 0x5421, &(0x7f00000015c0)=ANY=[])

11:25:55 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100), 0x0)

11:25:55 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x3c}}, 0x0)

11:25:55 executing program 1:
add_key$user(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="81", 0x1, 0xfffffffffffffffe)
r0 = add_key$user(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="81", 0x1, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000240), 0x0, 0x0, 0x0, r0)

11:25:55 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async, rerun: 32)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="260f3566b9c609000066b87c00000066ba000000000f306766c7442400000000006766c7442402ea7800006766c744240600000000670f01142475fc0f20c06635080000000f22c00f78ace49764f30fc773f2f30f1ee6d9ee660f67af0000", 0x5f}], 0x1, 0x43, &(0x7f0000000100)=[@cr4={0x1, 0x800008}], 0x1) (rerun: 32)

[  437.996145][ T6352]     536866816-536870911: ffff88807cef72a0
[  438.002664][ T6352]     536870912-553627647: ffff88801fb9b700
[  438.008696][ T6352]     553627648-553639935: 0000000000000000
[  438.014866][ T6352]     553639936-553627647: ffff88807bda78c0
11:25:55 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), r0)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_SECCTX={0x27, 0x7, 'system_u:object_r:insmod_exec_t:s0\x00'}]}, 0x3c}}, 0x0)

11:25:55 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100), 0x0)

11:25:55 executing program 5:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$RNDADDENTROPY(r0, 0x5452, &(0x7f0000000380)={0x40fff})

[  438.062956][ T6352]     553627648-553644031: ffff88807bda79a0
[  438.084170][ T6352]     553644032-553648127: ffff8880216d6b60
[  438.092979][ T6352]     553648128-553652223: ffff88801fb9b7e0
11:25:55 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{0x0}], 0x1}, 0x0)

[  438.134169][ T6352]     553652224-116809400319: 0000000000000000
11:25:55 executing program 3:
r0 = socket$inet(0x2, 0x1, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, 0x0)

11:25:55 executing program 1:
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x60140, 0x0, 0x14}, 0x18)

11:25:55 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{0x0}], 0x1}, 0x0)

11:25:55 executing program 0:
io_setup(0x401, &(0x7f0000000080)=<r0=>0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/syz0\x00', 0x200002, 0x0)
io_submit(r0, 0x1, &(0x7f0000000540)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
syz_genetlink_get_family_id$ethtool(&(0x7f00000005c0), 0xffffffffffffffff)

[  438.190287][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  438.205302][ T6352]     116813594624-93825005334527: 0000000000000000
[  438.213144][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
11:25:55 executing program 5:
add_key$user(&(0x7f0000000600), &(0x7f0000000640)={'syz', 0x1}, &(0x7f0000000680)="bb", 0x1, 0xfffffffffffffffc)

11:25:55 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/dev\x00')
openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000400)={0x2020}, 0x2020)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000003080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4005}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  438.289962][ T6352]     93825005473792-140593359482879: 0000000000000000
11:25:55 executing program 3:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/kexec_crash_size', 0x2001, 0x0)
write$tcp_mem(r0, &(0x7f0000000040), 0x48)

11:25:55 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{0x0}], 0x1}, 0x0)

11:25:55 executing program 0:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000800), 0x0, 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000040), 0x0, 0x0, 0x0)

[  438.375628][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:25:55 executing program 5:
mount$9p_fd(0x0, 0x0, 0x0, 0x0, &(0x7f00000010c0))
pipe2$9p(&(0x7f0000002700), 0x0)

11:25:55 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ADD(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000840)={0xec4, 0x0, 0x0, 0x0, 0x0, {}, [@TIPC_NLA_MEDIA={0xa8, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1000}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8}]}]}, @TIPC_NLA_NODE={0xdf4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_REKEYING={0x8}, @TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_ID={0xdc1, 0x3, "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"}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}]}]}, 0xec4}}, 0x800)

11:25:55 executing program 3:
mq_open(&(0x7f0000000180)='\xcc(]}[)[)\x00', 0x4000000, 0x0, 0x0)

[  438.442301][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
11:25:55 executing program 0:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$RNDADDENTROPY(r0, 0x5452, &(0x7f00000015c0)=ANY=[])

11:25:55 executing program 1:
io_setup(0x0, 0x0)
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000180), 0x2, 0x0)

11:25:55 executing program 5:
shmget$private(0x0, 0x3000, 0x9ce, &(0x7f0000ffa000/0x3000)=nil)

11:25:55 executing program 0:
r0 = inotify_init1(0x0)
inotify_add_watch(r0, 0x0, 0x40)

11:25:55 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)}], 0x1}, 0x0)

[  438.632963][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
11:25:55 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/dev\x00')
openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
read$FUSE(r0, &(0x7f0000000400)={0x2020}, 0x2020)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000003080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4005}, 0x0) (async)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:25:55 executing program 3:
request_key(&(0x7f0000000300)='keyring\x00', &(0x7f0000000340)={'syz', 0x2}, 0x0, 0xfffffffffffffffc)

11:25:55 executing program 0:
r0 = memfd_create(&(0x7f00000000c0)='\x00', 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffcdd, 0x0)

11:25:55 executing program 3:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x50009417, 0x0)

[  438.686808][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  438.705223][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  438.718545][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
11:25:55 executing program 5:
pipe2$9p(&(0x7f0000002780)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x4800)
write$P9_RLERRORu(r0, &(0x7f00000027c0)={0x29, 0x7, 0x0, {{0x1c, '/sys/fs/smackfs/change-rule\x00'}}}, 0x29)
write$P9_RREADLINK(r0, &(0x7f0000000040)={0x10, 0x17, 0x0, {0x7, './file0'}}, 0x10)

11:25:55 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)}], 0x1}, 0x0)

11:25:55 executing program 3:
r0 = io_uring_setup(0x6da4, &(0x7f0000000100))
io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, 0x0, 0x1)

[  438.789365][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
11:25:55 executing program 0:
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x200002, 0x0)

[  438.871272][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  438.922931][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  438.985157][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  439.000579][ T6352]     140593381335040-140593381670911: ffff88806863a000
11:25:56 executing program 1:
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
pwritev(r0, &(0x7f0000000800)=[{0x0}, {&(0x7f00000000c0)="f3", 0x1}, {&(0x7f00000001c0)='n', 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x3, 0x0)

11:25:56 executing program 5:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$RNDADDENTROPY(r0, 0x5421, 0x0)

11:25:56 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)}], 0x1}, 0x0)

11:25:56 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

11:25:56 executing program 3:
creat(&(0x7f0000000080)='./file0\x00', 0x0)
creat(&(0x7f0000000180)='./file0\x00', 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x0)

11:25:56 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/dev\x00')
openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000000400)={0x2020}, 0x2020)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000003080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4005}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
syz_open_procfs(0x0, &(0x7f0000000000)='net/dev\x00') (async)
openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0) (async)
read$FUSE(r0, &(0x7f0000000400)={0x2020}, 0x2020) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000003080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4005}, 0x0) (async)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

[  439.040652][ T6352]     140593381670912-140593381675007: 0000000000000000
[  439.047681][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
11:25:56 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32ef", 0x45}], 0x1}, 0x0)

11:25:56 executing program 5:
io_setup(0x401, &(0x7f0000000080))
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x0)

11:25:56 executing program 3:
add_key$user(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff)
add_key$user(&(0x7f0000000080), &(0x7f0000001180)={'syz', 0x2}, &(0x7f0000001580)='\"', 0x1, 0xfffffffffffffffd)

11:25:56 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

11:25:56 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32ef", 0x45}], 0x1}, 0x0)

[  439.177511][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  439.240800][ T6352]     140593382076416-140593382096895: 0000000000000000
11:25:56 executing program 5:
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='fd\x00')

[  439.288961][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
11:25:56 executing program 1:
io_uring_setup(0x3c01, &(0x7f0000000180)={0x0, 0x0, 0x2})
io_uring_setup(0xc39, &(0x7f0000000040))

11:25:56 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='task\x00')
fchownat(r0, &(0x7f0000000080)='./file0\x00', 0xee01, 0x0, 0x0)

11:25:56 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

11:25:56 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32ef", 0x45}], 0x1}, 0x0)

11:25:56 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

[  439.317106][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  439.430523][ T6352]     140593393942528-140593395646463: 0000000000000000
[  439.437544][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
11:25:56 executing program 5:
syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x84280)

11:25:56 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r1, 0x6628)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  439.517628][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
11:25:56 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f8", 0x67}], 0x1}, 0x0)

11:25:56 executing program 0:
readv(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

11:25:56 executing program 3:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x2, &(0x7f0000000140)=[{0x3, 0x3f}, {0x6}]})

11:25:56 executing program 5:
r0 = add_key$user(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="81", 0x1, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000240), 0x0, 0x0, 0x0, r0)

11:25:56 executing program 0:
readv(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

[  439.654659][ T6352]     140593395781632-140727606853631: 0000000000000000
11:25:56 executing program 1:
io_uring_setup(0x3c01, &(0x7f0000000180)={0x0, 0x0, 0x2})
io_uring_setup(0xc39, &(0x7f0000000040))

11:25:56 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f8", 0x67}], 0x1}, 0x0)

11:25:56 executing program 5:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = memfd_create(&(0x7f0000000080)='\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x2})

[  439.743441][   T27] audit: type=1326 audit(1673263556.851:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7642 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efd99e8c0c9 code=0x0
[  439.779470][ T6352]     140727606853632-140727606988799: ffff88806863a380
11:25:56 executing program 3:
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/kexec_crash_size', 0x20200, 0x0)

11:25:56 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f8", 0x67}], 0x1}, 0x0)

11:25:56 executing program 0:
readv(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

11:25:56 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r1, 0x6628) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  439.793871][ T6352]     140727606988800-140727607586815: 0000000000000000
[  439.816441][ T6352]     140727607586816-140727607603199: ffff88806863a460
11:25:57 executing program 3:
r0 = epoll_create(0x200)
epoll_wait(r0, &(0x7f0000000100)=[{}], 0x1, 0x0)

11:25:57 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e", 0x78}], 0x1}, 0x0)

[  439.863319][ T6352]     140727607603200-140727607611391: ffff88806863a540
11:25:57 executing program 5:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$FUSE_GETXATTR(r0, &(0x7f0000002080)={0x18, 0x0, 0x0, {0x400}}, 0x18)

[  439.919899][ T6352]     140727607611392-18446744073709551615: 0000000000000000
11:25:57 executing program 0:
r0 = fanotify_init(0x0, 0x0)
readv(r0, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

11:25:57 executing program 3:
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002140), 0x2, 0x0)
write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0xfffffffffffffefe)

[  440.020652][ T6352] Pass: 9006183 Run:9006285
[  440.020673][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.020701][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
11:25:57 executing program 1:
setgroups(0x4299, &(0x7f0000000280)=[0x0, 0x0, 0xee01, 0xffffffffffffffff, 0x0])

11:25:57 executing program 3:
socketpair(0x26, 0x5, 0x5, &(0x7f0000000040))

11:25:57 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r1, 0x6628) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:25:57 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e", 0x78}], 0x1}, 0x0)

[  440.020718][ T6352] Call Trace:
[  440.020726][ T6352]  <TASK>
[  440.020737][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.020779][ T6352]  mt_find.cold+0x8b/0x90
[  440.020819][ T6352]  ? mas_find+0x1d0/0x1d0
11:25:57 executing program 3:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
io_uring_setup(0x6d34, &(0x7f0000000000)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r0})

[  440.020866][ T6352]  find_vma+0x10c/0x1b0
[  440.020892][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.020924][ T6352]  ? walk_page_test+0x78/0x180
[  440.020960][ T6352]  walk_page_range+0x2b1/0x4a0
11:25:57 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e", 0x78}], 0x1}, 0x0)

[  440.020999][ T6352]  ? __walk_page_range+0x780/0x780
[  440.021053][ T6352]  mlock_fixup+0x650/0x810
[  440.021106][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.021150][ T6352]  ? mlock_fixup+0x810/0x810
[  440.021203][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.021245][ T6352]  do_mlock+0x25a/0x6d0
[  440.021288][ T6352]  ? folio_evictable+0x270/0x270
[  440.021343][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.021378][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.021416][ T6352]  do_syscall_64+0x39/0xb0
[  440.021454][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.021483][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.021503][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.021526][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
11:25:57 executing program 5:
socket(0x1, 0x0, 0x7fffffff)

[  440.021554][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.021571][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.021587][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.021603][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.021619][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.021658][ T6352]  </TASK>
[  440.021678][ T6352] index not increased! 20ffb000 <= 20ffb000
11:25:57 executing program 1:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$RNDADDENTROPY(r0, 0x5207, 0x0)

[  440.021693][ T6352] BUG at mt_find:6473 (1)
[  440.021708][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.021729][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:25:57 executing program 5:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$sock_linger(r0, 0x65, 0x2, 0x0, 0x4)

[  440.021973][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.022200][ T6352]     0-536866815: 0000000000000000
[  440.022223][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.022245][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.022268][ T6352]     553627648-553639935: 0000000000000000
[  440.022292][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.022314][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.022344][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.022368][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.022391][ T6352]     553652224-116809400319: 0000000000000000
11:25:57 executing program 1:
r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$RNDADDENTROPY(r0, 0x5207, 0x0)

[  440.022414][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.022437][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.022461][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.022485][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.022508][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.022533][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.022769][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.022794][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.022818][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.022842][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.022867][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.022890][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.022913][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.022936][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.022960][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.022984][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.023008][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.023032][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.023054][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.023077][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.023101][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.023333][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.023358][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.023382][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.023406][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.023429][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.023454][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.023478][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.023502][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.023527][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.023552][ T6352] Pass: 9006183 Run:9006286
[  440.023565][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.023589][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.023605][ T6352] Call Trace:
[  440.023613][ T6352]  <TASK>
[  440.023624][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.023661][ T6352]  mt_find.cold+0x8b/0x90
[  440.023696][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.023744][ T6352]  find_vma+0x10c/0x1b0
[  440.023771][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.023803][ T6352]  ? walk_page_test+0x78/0x180
[  440.023839][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.023878][ T6352]  ? __walk_page_range+0x780/0x780
[  440.023932][ T6352]  mlock_fixup+0x650/0x810
[  440.023983][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.024024][ T6352]  ? mlock_fixup+0x810/0x810
[  440.024074][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.024117][ T6352]  do_mlock+0x25a/0x6d0
[  440.024159][ T6352]  ? folio_evictable+0x270/0x270
[  440.024207][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.024243][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.024279][ T6352]  do_syscall_64+0x39/0xb0
[  440.024316][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.024352][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.024374][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.024398][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.024424][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.024442][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.024458][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.024474][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.024489][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.024529][ T6352]  </TASK>
[  440.024546][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.024559][ T6352] BUG at mt_find:6473 (1)
[  440.024573][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.024593][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.024839][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.025065][ T6352]     0-536866815: 0000000000000000
[  440.025087][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.025108][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.025131][ T6352]     553627648-553639935: 0000000000000000
[  440.025154][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.025176][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.025200][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.025223][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.025247][ T6352]     553652224-116809400319: 0000000000000000
[  440.025270][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.025293][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.025317][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.025347][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.025370][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.025395][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.025615][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.025638][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.025660][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.025681][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.025704][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.025728][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.025751][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.025775][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.025800][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.025824][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.025846][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.025870][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.025894][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.025917][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.025939][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.026160][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.026184][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.026207][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.026228][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.026252][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.026275][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.035396][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.035432][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.035457][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.035482][ T6352] Pass: 9006183 Run:9006287
[  440.035496][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.035522][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.035538][ T6352] Call Trace:
[  440.035546][ T6352]  <TASK>
[  440.035558][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.035598][ T6352]  mt_find.cold+0x8b/0x90
[  440.035637][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.035685][ T6352]  find_vma+0x10c/0x1b0
[  440.035711][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.035742][ T6352]  ? walk_page_test+0x78/0x180
[  440.035779][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.035817][ T6352]  ? __walk_page_range+0x780/0x780
[  440.035879][ T6352]  mlock_fixup+0x650/0x810
[  440.035931][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.035971][ T6352]  ? mlock_fixup+0x810/0x810
[  440.036023][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.036065][ T6352]  do_mlock+0x25a/0x6d0
[  440.036111][ T6352]  ? folio_evictable+0x270/0x270
[  440.036160][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.036194][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.036230][ T6352]  do_syscall_64+0x39/0xb0
[  440.036267][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.036295][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.036317][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.036340][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.036362][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.036379][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.036394][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.036411][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.036427][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.036468][ T6352]  </TASK>
[  440.036487][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.036502][ T6352] BUG at mt_find:6473 (1)
[  440.036517][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.036538][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.036754][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.036970][ T6352]     0-536866815: 0000000000000000
[  440.036991][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.037012][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.037032][ T6352]     553627648-553639935: 0000000000000000
[  440.037053][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.037075][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.037096][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.037117][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.037137][ T6352]     553652224-116809400319: 0000000000000000
[  440.037159][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.037181][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.037202][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.037224][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.037245][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.037269][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.037505][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.037530][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.037554][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.037579][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.037600][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.037622][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.037643][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.037663][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.037683][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.037704][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.037725][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.037746][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.037765][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.037785][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.037809][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.038029][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.038049][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.038069][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.038092][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.038116][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.038141][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.038164][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.038185][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.038205][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.038229][ T6352] Pass: 9006183 Run:9006288
[  440.038243][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.038267][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.038281][ T6352] Call Trace:
[  440.038290][ T6352]  <TASK>
[  440.038300][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.038339][ T6352]  mt_find.cold+0x8b/0x90
[  440.038376][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.038416][ T6352]  find_vma+0x10c/0x1b0
[  440.038439][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.038471][ T6352]  ? walk_page_test+0x78/0x180
[  440.038507][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.038546][ T6352]  ? __walk_page_range+0x780/0x780
[  440.038600][ T6352]  mlock_fixup+0x650/0x810
[  440.038652][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.038696][ T6352]  ? mlock_fixup+0x810/0x810
[  440.038750][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.038788][ T6352]  do_mlock+0x25a/0x6d0
[  440.038829][ T6352]  ? folio_evictable+0x270/0x270
[  440.038886][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.038921][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.038958][ T6352]  do_syscall_64+0x39/0xb0
[  440.038993][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.039023][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.039043][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.039067][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.039092][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.039109][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.039125][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.039141][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.039156][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.039193][ T6352]  </TASK>
[  440.039209][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.039221][ T6352] BUG at mt_find:6473 (1)
[  440.039235][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.039254][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.039478][ T1206] ieee802154 phy0 wpan0: encryption failed: -22
[  440.039487][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 
[  440.039529][ T1206] ieee802154 phy1 wpan1: encryption failed: -22
[  440.039538][ T6352] ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.039804][ T6352]     0-536866815: 0000000000000000
[  440.039827][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.039850][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.039880][ T6352]     553627648-553639935: 0000000000000000
[  440.039903][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.039926][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.039950][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.039973][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.039996][ T6352]     553652224-116809400319: 0000000000000000
[  440.040018][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.040041][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.040064][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.040088][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.040112][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.040136][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.040371][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.040395][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.040419][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.040444][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.040468][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.040492][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.040515][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.040539][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.040563][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.040586][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.040610][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.040631][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.040651][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.040673][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.040695][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.040901][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.040923][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.040946][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.040969][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.040991][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.041013][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.041035][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.041058][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.041080][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.041101][ T6352] Pass: 9006183 Run:9006289
[  440.041114][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.041138][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.041152][ T6352] Call Trace:
[  440.041159][ T6352]  <TASK>
[  440.041169][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.041205][ T6352]  mt_find.cold+0x8b/0x90
[  440.041240][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.041286][ T6352]  find_vma+0x10c/0x1b0
[  440.041312][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.041342][ T6352]  ? walk_page_test+0x78/0x180
[  440.041374][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.041412][ T6352]  ? __walk_page_range+0x780/0x780
[  440.041464][ T6352]  mlock_fixup+0x650/0x810
[  440.041515][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.041558][ T6352]  ? mlock_fixup+0x810/0x810
[  440.041608][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.041649][ T6352]  do_mlock+0x25a/0x6d0
[  440.041692][ T6352]  ? folio_evictable+0x270/0x270
[  440.041740][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.041774][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.041811][ T6352]  do_syscall_64+0x39/0xb0
[  440.041848][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.041887][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.041907][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.041931][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.041956][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.041974][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.041989][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.042006][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.042021][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.042060][ T6352]  </TASK>
[  440.042076][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.042089][ T6352] BUG at mt_find:6473 (1)
[  440.042104][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.042124][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.042354][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.042584][ T6352]     0-536866815: 0000000000000000
[  440.042607][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.042631][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.042653][ T6352]     553627648-553639935: 0000000000000000
[  440.042674][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.042698][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.042722][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.042742][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.042765][ T6352]     553652224-116809400319: 0000000000000000
[  440.042787][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.042811][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.042833][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.042857][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.042888][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.042912][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.043143][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.043168][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.043192][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.043217][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.043240][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.043264][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.043288][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.043311][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.043335][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.043358][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.043381][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.043405][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.043428][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.043451][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.043476][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.043700][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.043723][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.043748][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.043772][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.043796][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.043821][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.043844][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.043873][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.043898][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.043922][ T6352] Pass: 9006183 Run:9006290
[  440.043936][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.043962][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.043976][ T6352] Call Trace:
[  440.043983][ T6352]  <TASK>
[  440.043994][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.044031][ T6352]  mt_find.cold+0x8b/0x90
[  440.044070][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.044116][ T6352]  find_vma+0x10c/0x1b0
[  440.044143][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.044174][ T6352]  ? walk_page_test+0x78/0x180
[  440.044210][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.044249][ T6352]  ? __walk_page_range+0x780/0x780
[  440.044298][ T6352]  mlock_fixup+0x650/0x810
[  440.044346][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.044388][ T6352]  ? mlock_fixup+0x810/0x810
[  440.044440][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.044478][ T6352]  do_mlock+0x25a/0x6d0
[  440.044521][ T6352]  ? folio_evictable+0x270/0x270
[  440.044573][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.044609][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.044647][ T6352]  do_syscall_64+0x39/0xb0
[  440.044684][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.044715][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.044735][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.044757][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.044781][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.044795][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.044809][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.044824][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.044839][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.044883][ T6352]  </TASK>
[  440.044900][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.044913][ T6352] BUG at mt_find:6473 (1)
[  440.044927][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.044946][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.045187][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.045414][ T6352]     0-536866815: 0000000000000000
[  440.045437][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.045460][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.045483][ T6352]     553627648-553639935: 0000000000000000
[  440.045505][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.045528][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.045551][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.045573][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.045597][ T6352]     553652224-116809400319: 0000000000000000
[  440.045619][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.045643][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.045666][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.045690][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.045713][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.045737][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.045967][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.045992][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.046017][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.046041][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.046065][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.046089][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.046113][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.046136][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.046160][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.046183][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.046205][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.046228][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.046250][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.046272][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.046294][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.046498][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.046521][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.046546][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.046569][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.046592][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.046617][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.046641][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.046666][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.046691][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.046715][ T6352] Pass: 9006183 Run:9006291
[  440.046729][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.046754][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.046769][ T6352] Call Trace:
[  440.046777][ T6352]  <TASK>
[  440.046787][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.046824][ T6352]  mt_find.cold+0x8b/0x90
[  440.046862][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.046915][ T6352]  find_vma+0x10c/0x1b0
[  440.046939][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.046968][ T6352]  ? walk_page_test+0x78/0x180
[  440.047002][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.047037][ T6352]  ? __walk_page_range+0x780/0x780
[  440.047089][ T6352]  mlock_fixup+0x650/0x810
[  440.047136][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.047178][ T6352]  ? mlock_fixup+0x810/0x810
[  440.047230][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.047271][ T6352]  do_mlock+0x25a/0x6d0
[  440.047313][ T6352]  ? folio_evictable+0x270/0x270
[  440.047363][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.047397][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.047435][ T6352]  do_syscall_64+0x39/0xb0
[  440.047474][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.047502][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.047522][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.047546][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.047570][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.047588][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.047604][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.047620][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.047636][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.047671][ T6352]  </TASK>
[  440.047687][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.047701][ T6352] BUG at mt_find:6473 (1)
[  440.047715][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.047735][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.047984][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.048207][ T6352]     0-536866815: 0000000000000000
[  440.048229][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.048252][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.048274][ T6352]     553627648-553639935: 0000000000000000
[  440.048296][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.048318][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.048341][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.048364][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.048387][ T6352]     553652224-116809400319: 0000000000000000
[  440.048409][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.048433][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.048456][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.048481][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.048504][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.048529][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.048760][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.048785][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.048809][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.048832][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.048856][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.048887][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.048911][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.048933][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.048957][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.048978][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.049001][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.049025][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.049049][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.049072][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.049097][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.049322][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.049346][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.049370][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.049396][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.049420][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.049445][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.049468][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.049493][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.049518][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.049542][ T6352] Pass: 9006183 Run:9006292
[  440.052573][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.052603][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.052617][ T6352] Call Trace:
[  440.052625][ T6352]  <TASK>
[  440.052636][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.052673][ T6352]  mt_find.cold+0x8b/0x90
[  440.052710][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.052754][ T6352]  find_vma+0x10c/0x1b0
[  440.052778][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.052810][ T6352]  ? walk_page_test+0x78/0x180
[  440.052844][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.052890][ T6352]  ? __walk_page_range+0x780/0x780
[  440.052940][ T6352]  mlock_fixup+0x650/0x810
[  440.052995][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.053039][ T6352]  ? mlock_fixup+0x810/0x810
[  440.053090][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.053130][ T6352]  do_mlock+0x25a/0x6d0
[  440.053174][ T6352]  ? folio_evictable+0x270/0x270
[  440.053226][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.053263][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.053301][ T6352]  do_syscall_64+0x39/0xb0
[  440.053339][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.053368][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.053388][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.053411][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.053438][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.053457][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.053472][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.053488][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.053504][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.053544][ T6352]  </TASK>
[  440.053562][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.053576][ T6352] BUG at mt_find:6473 (1)
[  440.053591][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.053612][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.053856][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.054087][ T6352]     0-536866815: 0000000000000000
[  440.054111][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.054134][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.054157][ T6352]     553627648-553639935: 0000000000000000
[  440.054205][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.054230][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.054252][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.054275][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.054299][ T6352]     553652224-116809400319: 0000000000000000
[  440.054321][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.054345][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.054368][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.054391][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.054414][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.054438][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.054670][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.054695][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.054719][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.054743][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.054767][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.054791][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.054814][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.054838][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.054859][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.054887][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.054910][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.054934][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.054957][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.054980][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.055004][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.055228][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.055251][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.055275][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.055300][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.055323][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.055348][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.055371][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.055395][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.055419][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.055443][ T6352] Pass: 9006183 Run:9006293
[  440.055457][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.055485][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.055500][ T6352] Call Trace:
[  440.055508][ T6352]  <TASK>
[  440.055518][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.055556][ T6352]  mt_find.cold+0x8b/0x90
[  440.055594][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.055641][ T6352]  find_vma+0x10c/0x1b0
[  440.055668][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.055700][ T6352]  ? walk_page_test+0x78/0x180
[  440.055737][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.055775][ T6352]  ? __walk_page_range+0x780/0x780
[  440.055830][ T6352]  mlock_fixup+0x650/0x810
[  440.055883][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.055925][ T6352]  ? mlock_fixup+0x810/0x810
[  440.055979][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.056020][ T6352]  do_mlock+0x25a/0x6d0
[  440.056063][ T6352]  ? folio_evictable+0x270/0x270
[  440.056116][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.056152][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.056191][ T6352]  do_syscall_64+0x39/0xb0
[  440.056227][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.056256][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.056275][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.056297][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.056320][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.056336][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.056352][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.056367][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.056382][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.056416][ T6352]  </TASK>
[  440.056432][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.056444][ T6352] BUG at mt_find:6473 (1)
[  440.056456][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.056476][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.056718][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.056945][ T6352]     0-536866815: 0000000000000000
[  440.056967][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.056988][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.057010][ T6352]     553627648-553639935: 0000000000000000
[  440.057032][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.057052][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.062337][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.062366][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.062388][ T6352]     553652224-116809400319: 0000000000000000
[  440.062411][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.062435][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.062459][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.062484][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.062507][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.062533][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.062762][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.062786][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.062810][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.062834][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.062863][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.062893][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.062917][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.062940][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.062963][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.062986][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.063008][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.063032][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.063056][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.063078][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.063102][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.063317][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.063339][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.063363][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.063387][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.063411][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.063435][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.063459][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.063483][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.063507][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.063531][ T6352] Pass: 9006183 Run:9006294
[  440.063546][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.063572][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.063588][ T6352] Call Trace:
[  440.063596][ T6352]  <TASK>
[  440.063607][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.063644][ T6352]  mt_find.cold+0x8b/0x90
[  440.063680][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.063727][ T6352]  find_vma+0x10c/0x1b0
[  440.063752][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.063784][ T6352]  ? walk_page_test+0x78/0x180
[  440.063821][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.063858][ T6352]  ? __walk_page_range+0x780/0x780
[  440.063918][ T6352]  mlock_fixup+0x650/0x810
[  440.063970][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.064014][ T6352]  ? mlock_fixup+0x810/0x810
[  440.064069][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.064110][ T6352]  do_mlock+0x25a/0x6d0
[  440.064154][ T6352]  ? folio_evictable+0x270/0x270
[  440.064205][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.064239][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.064276][ T6352]  do_syscall_64+0x39/0xb0
[  440.064314][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.064345][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.064367][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.064390][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.064415][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.064433][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.064450][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.064465][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.064480][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.064517][ T6352]  </TASK>
[  440.067289][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.067307][ T6352] BUG at mt_find:6473 (1)
[  440.067322][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.067344][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.067586][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.067802][ T6352]     0-536866815: 0000000000000000
[  440.067826][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.067850][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.067881][ T6352]     553627648-553639935: 0000000000000000
[  440.067904][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.067927][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.067951][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.067976][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.068000][ T6352]     553652224-116809400319: 0000000000000000
[  440.068024][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.068048][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.068071][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.068096][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.068119][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.068145][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.068372][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.068397][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.068421][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.068446][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.068470][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.068492][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.068517][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.068541][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.068565][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.068589][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.068612][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.068636][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.068660][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.068684][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.068708][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.068934][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.068958][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.068984][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.069009][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.069034][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.069059][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.069083][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.069107][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.069133][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.069157][ T6352] Pass: 9006183 Run:9006295
[  440.069171][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.069198][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.069214][ T6352] Call Trace:
[  440.069222][ T6352]  <TASK>
[  440.069233][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.069273][ T6352]  mt_find.cold+0x8b/0x90
[  440.069312][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.069357][ T6352]  find_vma+0x10c/0x1b0
[  440.069382][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.069410][ T6352]  ? walk_page_test+0x78/0x180
[  440.069441][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.069474][ T6352]  ? __walk_page_range+0x780/0x780
[  440.069522][ T6352]  mlock_fixup+0x650/0x810
[  440.069572][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.069610][ T6352]  ? mlock_fixup+0x810/0x810
[  440.069660][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.069702][ T6352]  do_mlock+0x25a/0x6d0
[  440.069745][ T6352]  ? folio_evictable+0x270/0x270
[  440.069797][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.069834][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.069878][ T6352]  do_syscall_64+0x39/0xb0
[  440.069915][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.069946][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.069967][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.069991][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.070016][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.070034][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.070050][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.070066][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.070081][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.070118][ T6352]  </TASK>
[  440.070986][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.071000][ T6352] BUG at mt_find:6473 (1)
[  440.071014][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.071033][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.071271][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.071502][ T6352]     0-536866815: 0000000000000000
[  440.071525][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.071548][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.071572][ T6352]     553627648-553639935: 0000000000000000
[  440.071595][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.071618][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.071642][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.071665][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.071688][ T6352]     553652224-116809400319: 0000000000000000
[  440.071710][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.071732][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.071754][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.071777][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.071798][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.071822][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.072067][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.072092][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.072116][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.072141][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.072165][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.072189][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.072214][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.072238][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.072261][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.072284][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.072307][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.072331][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.072355][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.072378][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.072402][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.072628][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.072652][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.072677][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.072701][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.072726][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.072750][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.072773][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.072797][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.072822][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.072846][ T6352] Pass: 9006183 Run:9006296
[  440.072860][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.072894][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.072909][ T6352] Call Trace:
[  440.072918][ T6352]  <TASK>
[  440.072929][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.072969][ T6352]  mt_find.cold+0x8b/0x90
[  440.073008][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.073055][ T6352]  find_vma+0x10c/0x1b0
[  440.073082][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.073115][ T6352]  ? walk_page_test+0x78/0x180
[  440.073149][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.073186][ T6352]  ? __walk_page_range+0x780/0x780
[  440.073241][ T6352]  mlock_fixup+0x650/0x810
[  440.073292][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.073336][ T6352]  ? mlock_fixup+0x810/0x810
[  440.073389][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.073431][ T6352]  do_mlock+0x25a/0x6d0
[  440.073474][ T6352]  ? folio_evictable+0x270/0x270
[  440.073526][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.073563][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.073602][ T6352]  do_syscall_64+0x39/0xb0
[  440.073639][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.073669][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.073690][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.073714][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.073739][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.073756][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.073772][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.073788][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.073804][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.073843][ T6352]  </TASK>
[  440.073860][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.073880][ T6352] BUG at mt_find:6473 (1)
[  440.073895][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.073914][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.074161][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.074416][ T6352]     0-536866815: 0000000000000000
[  440.074439][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.074461][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.074483][ T6352]     553627648-553639935: 0000000000000000
[  440.074503][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.074525][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.074547][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.074569][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.074590][ T6352]     553652224-116809400319: 0000000000000000
[  440.074613][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.074635][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.074658][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.074682][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.074704][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.074729][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.074973][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.074998][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.075023][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.075047][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.075072][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.075096][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.075119][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.075142][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.075166][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.075189][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.075212][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.075236][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.075260][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.075284][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.075309][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.075538][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.075561][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.075587][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.075612][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.075636][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.075661][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.075686][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.075709][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.075733][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.075756][ T6352] Pass: 9006183 Run:9006297
[  440.075770][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.075797][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.075812][ T6352] Call Trace:
[  440.075820][ T6352]  <TASK>
[  440.075831][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.075874][ T6352]  mt_find.cold+0x8b/0x90
[  440.075913][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.075960][ T6352]  find_vma+0x10c/0x1b0
[  440.075986][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.076018][ T6352]  ? walk_page_test+0x78/0x180
[  440.076055][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.076095][ T6352]  ? __walk_page_range+0x780/0x780
[  440.076150][ T6352]  mlock_fixup+0x650/0x810
[  440.076202][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.076246][ T6352]  ? mlock_fixup+0x810/0x810
[  440.076299][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.076341][ T6352]  do_mlock+0x25a/0x6d0
[  440.076385][ T6352]  ? folio_evictable+0x270/0x270
[  440.076437][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.076474][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.076514][ T6352]  do_syscall_64+0x39/0xb0
[  440.076551][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.076581][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.076601][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.076625][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.076650][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.076668][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.076685][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.076701][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.076717][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.076754][ T6352]  </TASK>
[  440.076769][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.076781][ T6352] BUG at mt_find:6473 (1)
[  440.076796][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.076815][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.077067][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.077298][ T6352]     0-536866815: 0000000000000000
[  440.077321][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.077345][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.077369][ T6352]     553627648-553639935: 0000000000000000
[  440.077392][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.077416][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.077440][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.077463][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.077486][ T6352]     553652224-116809400319: 0000000000000000
[  440.077509][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.077532][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.077556][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.077581][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.077606][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.077631][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.077871][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.077896][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.077921][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.077946][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.077970][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.077994][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.078017][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.078041][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.078065][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.078089][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.078113][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.078137][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.078161][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.078185][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.078209][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.078437][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.078461][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.078485][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.078510][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.078534][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.078559][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.078584][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.078609][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.078633][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.078657][ T6352] Pass: 9006183 Run:9006298
[  440.078670][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.078696][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.078711][ T6352] Call Trace:
[  440.078719][ T6352]  <TASK>
[  440.078729][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.078767][ T6352]  mt_find.cold+0x8b/0x90
[  440.078805][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.078852][ T6352]  find_vma+0x10c/0x1b0
[  440.078883][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.078916][ T6352]  ? walk_page_test+0x78/0x180
[  440.078953][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.078992][ T6352]  ? __walk_page_range+0x780/0x780
[  440.079048][ T6352]  mlock_fixup+0x650/0x810
[  440.079098][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.079142][ T6352]  ? mlock_fixup+0x810/0x810
[  440.079196][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.079238][ T6352]  do_mlock+0x25a/0x6d0
[  440.079282][ T6352]  ? folio_evictable+0x270/0x270
[  440.079333][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.079368][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.079407][ T6352]  do_syscall_64+0x39/0xb0
[  440.079445][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.079474][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.079495][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.079518][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.079542][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.079564][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.079578][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.079592][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.079606][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.079641][ T6352]  </TASK>
[  440.079720][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.079734][ T6352] BUG at mt_find:6473 (1)
[  440.079749][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.079769][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.080025][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.080227][ T6352]     0-536866815: 0000000000000000
[  440.080241][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.080253][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.080266][ T6352]     553627648-553639935: 0000000000000000
[  440.080278][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.080291][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.080303][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.080316][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.080328][ T6352]     553652224-116809400319: 0000000000000000
[  440.080341][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.080353][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.080366][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.080379][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.080392][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.080405][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.080533][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.080546][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.080560][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.080573][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.080586][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.080599][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.080612][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.080625][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.080638][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.080650][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.080663][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.080676][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.080689][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.080702][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.080715][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.080838][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.080851][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.080869][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.080883][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.080896][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.080909][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.080922][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.080935][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.080949][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.080962][ T6352] Pass: 9006183 Run:9006299
[  440.080969][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.080984][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.080992][ T6352] Call Trace:
[  440.080997][ T6352]  <TASK>
[  440.081003][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.081024][ T6352]  mt_find.cold+0x8b/0x90
[  440.081045][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.081070][ T6352]  find_vma+0x10c/0x1b0
[  440.081085][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.081102][ T6352]  ? walk_page_test+0x78/0x180
[  440.081122][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.081143][ T6352]  ? __walk_page_range+0x780/0x780
[  440.081180][ T6352]  mlock_fixup+0x650/0x810
[  440.081229][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.081273][ T6352]  ? mlock_fixup+0x810/0x810
[  440.081310][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.081333][ T6352]  do_mlock+0x25a/0x6d0
[  440.081357][ T6352]  ? folio_evictable+0x270/0x270
[  440.081384][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.081405][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.081426][ T6352]  do_syscall_64+0x39/0xb0
[  440.081446][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.081462][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.081474][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.081487][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.081501][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.081511][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.081520][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.081529][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.081538][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.081558][ T6352]  </TASK>
[  440.081567][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.081575][ T6352] BUG at mt_find:6473 (1)
[  440.081583][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.081594][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.081728][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.081853][ T6352]     0-536866815: 0000000000000000
[  440.081871][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.081884][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.081896][ T6352]     553627648-553639935: 0000000000000000
[  440.081908][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.081921][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.081933][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.081946][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.081959][ T6352]     553652224-116809400319: 0000000000000000
[  440.081971][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.081984][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.081997][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.082010][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.082023][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.082036][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.082164][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.082178][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.082191][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.082204][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.082217][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.082230][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.082243][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.082256][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.082270][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.082282][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.082295][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.082314][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.082338][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.082361][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.082386][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.082526][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.082540][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.082553][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.082567][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.082580][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.082593][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.082607][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.082620][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.082633][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.082646][ T6352] Pass: 9006183 Run:9006300
[  440.082654][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.082668][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.082676][ T6352] Call Trace:
[  440.082681][ T6352]  <TASK>
[  440.082686][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.082707][ T6352]  mt_find.cold+0x8b/0x90
[  440.082727][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.082752][ T6352]  find_vma+0x10c/0x1b0
[  440.082765][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.082783][ T6352]  ? walk_page_test+0x78/0x180
[  440.082802][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.082823][ T6352]  ? __walk_page_range+0x780/0x780
[  440.082852][ T6352]  mlock_fixup+0x650/0x810
[  440.082884][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.082908][ T6352]  ? mlock_fixup+0x810/0x810
[  440.082936][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.082958][ T6352]  do_mlock+0x25a/0x6d0
[  440.082981][ T6352]  ? folio_evictable+0x270/0x270
[  440.083009][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.083028][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.083050][ T6352]  do_syscall_64+0x39/0xb0
[  440.083070][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.083086][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.083097][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.083110][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.083124][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.083133][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.083142][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.083151][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.083159][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.083180][ T6352]  </TASK>
[  440.083188][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.083195][ T6352] BUG at mt_find:6473 (1)
[  440.083203][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.083214][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.083348][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.083506][ T6352]     0-536866815: 0000000000000000
[  440.083529][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.083548][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.083560][ T6352]     553627648-553639935: 0000000000000000
[  440.083573][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.083585][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.083598][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.083610][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.083623][ T6352]     553652224-116809400319: 0000000000000000
[  440.083635][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.083648][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.083661][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.083674][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.083687][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.083700][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.083828][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.083841][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.083854][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.083872][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.083885][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.083898][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.083911][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.083924][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.083937][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.083950][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.083962][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.083975][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.083988][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.084001][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.084014][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.084138][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.084150][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.084164][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.084177][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.084190][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.084204][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.084217][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.084230][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.084243][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.084256][ T6352] Pass: 9006183 Run:9006301
[  440.084264][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.084278][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.084286][ T6352] Call Trace:
[  440.084290][ T6352]  <TASK>
[  440.084296][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.084316][ T6352]  mt_find.cold+0x8b/0x90
[  440.084336][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.084361][ T6352]  find_vma+0x10c/0x1b0
[  440.084375][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.084392][ T6352]  ? walk_page_test+0x78/0x180
[  440.084412][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.084432][ T6352]  ? __walk_page_range+0x780/0x780
[  440.084461][ T6352]  mlock_fixup+0x650/0x810
[  440.084488][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.084512][ T6352]  ? mlock_fixup+0x810/0x810
[  440.084540][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.084568][ T6352]  do_mlock+0x25a/0x6d0
[  440.084611][ T6352]  ? folio_evictable+0x270/0x270
[  440.084663][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.084684][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.084705][ T6352]  do_syscall_64+0x39/0xb0
[  440.084725][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.084741][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.084752][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.084765][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.084778][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.084788][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.084797][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.084805][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.084814][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.084834][ T6352]  </TASK>
[  440.084842][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.084850][ T6352] BUG at mt_find:6473 (1)
[  440.084857][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.084873][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.085008][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.085133][ T6352]     0-536866815: 0000000000000000
[  440.085145][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.085158][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.085171][ T6352]     553627648-553639935: 0000000000000000
[  440.085184][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.085196][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.085208][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.085221][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.085233][ T6352]     553652224-116809400319: 0000000000000000
[  440.085246][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.085259][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.085271][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.085284][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.085297][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.085310][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.085438][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.085451][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.085465][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.085478][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.085492][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.085505][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.085518][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.085531][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.085544][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.085557][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.085569][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.085582][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.085595][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.085607][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.085621][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.085794][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.085808][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.085821][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.085834][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.085847][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.085860][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.085877][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.085890][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.085904][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.085917][ T6352] Pass: 9006183 Run:9006302
[  440.085924][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.085939][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.085947][ T6352] Call Trace:
[  440.085951][ T6352]  <TASK>
[  440.085956][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.085976][ T6352]  mt_find.cold+0x8b/0x90
[  440.085997][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.086022][ T6352]  find_vma+0x10c/0x1b0
[  440.086036][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.086053][ T6352]  ? walk_page_test+0x78/0x180
[  440.086073][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.086093][ T6352]  ? __walk_page_range+0x780/0x780
[  440.086122][ T6352]  mlock_fixup+0x650/0x810
[  440.086149][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.086173][ T6352]  ? mlock_fixup+0x810/0x810
[  440.086201][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.086223][ T6352]  do_mlock+0x25a/0x6d0
[  440.086246][ T6352]  ? folio_evictable+0x270/0x270
[  440.086274][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.086293][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.086314][ T6352]  do_syscall_64+0x39/0xb0
[  440.086334][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.086350][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.086361][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.086374][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.086388][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.086397][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.086407][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.086415][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.086424][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.086444][ T6352]  </TASK>
[  440.086452][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.086460][ T6352] BUG at mt_find:6473 (1)
[  440.086468][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.086479][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.086610][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.086735][ T6352]     0-536866815: 0000000000000000
[  440.086748][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.086760][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.086773][ T6352]     553627648-553639935: 0000000000000000
[  440.086786][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.086800][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.086823][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.086846][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.086876][ T6352]     553652224-116809400319: 0000000000000000
[  440.086900][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.086916][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.086929][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.086942][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.086955][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.086969][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.087095][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.087108][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.087121][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.087134][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.087147][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.087160][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.087173][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.087186][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.087200][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.087213][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.087226][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.087239][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.087252][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.087265][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.087278][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.087400][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.087413][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.087426][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.087439][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.087452][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.087465][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.087478][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.087491][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.087506][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.087519][ T6352] Pass: 9006183 Run:9006303
[  440.087526][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.087541][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.087549][ T6352] Call Trace:
[  440.087553][ T6352]  <TASK>
[  440.087558][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.087578][ T6352]  mt_find.cold+0x8b/0x90
[  440.087599][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.087624][ T6352]  find_vma+0x10c/0x1b0
[  440.087638][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.087655][ T6352]  ? walk_page_test+0x78/0x180
[  440.087674][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.087695][ T6352]  ? __walk_page_range+0x780/0x780
[  440.087724][ T6352]  mlock_fixup+0x650/0x810
[  440.087751][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.087774][ T6352]  ? mlock_fixup+0x810/0x810
[  440.087803][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.087825][ T6352]  do_mlock+0x25a/0x6d0
[  440.087849][ T6352]  ? folio_evictable+0x270/0x270
[  440.087881][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.087900][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.087925][ T6352]  do_syscall_64+0x39/0xb0
[  440.087963][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.087991][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.088011][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.088031][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.088046][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.088055][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.088064][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.088073][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.088082][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.088103][ T6352]  </TASK>
[  440.088111][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.088119][ T6352] BUG at mt_find:6473 (1)
[  440.088127][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.088138][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.088271][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.088395][ T6352]     0-536866815: 0000000000000000
[  440.088407][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.088420][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.088432][ T6352]     553627648-553639935: 0000000000000000
[  440.088445][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.088457][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.088470][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.088483][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.088495][ T6352]     553652224-116809400319: 0000000000000000
[  440.088507][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.088520][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.088533][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.088546][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.088559][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.088572][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.088698][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.088711][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.088724][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.088737][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.088751][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.088764][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.088777][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.088790][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.088803][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.088816][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.088829][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.088842][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.088855][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.088873][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.088886][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.089008][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.089021][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.089034][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.089057][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.089081][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.089106][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.089130][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.089147][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.089160][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.089173][ T6352] Pass: 9006183 Run:9006304
[  440.089180][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.089194][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.089202][ T6352] Call Trace:
[  440.089206][ T6352]  <TASK>
[  440.089212][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.089232][ T6352]  mt_find.cold+0x8b/0x90
[  440.089252][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.089283][ T6352]  find_vma+0x10c/0x1b0
[  440.089298][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.089315][ T6352]  ? walk_page_test+0x78/0x180
[  440.089335][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.089355][ T6352]  ? __walk_page_range+0x780/0x780
[  440.089384][ T6352]  mlock_fixup+0x650/0x810
[  440.089411][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.089434][ T6352]  ? mlock_fixup+0x810/0x810
[  440.089462][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.089484][ T6352]  do_mlock+0x25a/0x6d0
[  440.089508][ T6352]  ? folio_evictable+0x270/0x270
[  440.089535][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.089567][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.089601][ T6352]  do_syscall_64+0x39/0xb0
[  440.089633][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.089661][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.089678][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.089700][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.089725][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.089741][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.089757][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.089773][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.089789][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.089829][ T6352]  </TASK>
[  440.113280][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.113295][ T6352] BUG at mt_find:6473 (1)
[  440.113305][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.113318][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.113458][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.113583][ T6352]     0-536866815: 0000000000000000
[  440.113595][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.113608][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.113621][ T6352]     553627648-553639935: 0000000000000000
[  440.113634][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.113647][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.113659][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.113672][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.113685][ T6352]     553652224-116809400319: 0000000000000000
[  440.113697][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.113710][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.113723][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.113736][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.113749][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.113762][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.113895][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.113908][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.113921][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.113934][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.113947][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.113961][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.113974][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.113987][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.114000][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.114013][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.114026][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.114039][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.114053][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.114066][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.114079][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.114247][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.114260][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.114273][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.114289][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.132677][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.132711][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.132736][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.132762][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.132785][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.132808][ T6352] Pass: 9006264 Run:9006386
[  440.132821][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.132847][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.132868][ T6352] Call Trace:
[  440.132876][ T6352]  <TASK>
[  440.132887][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.132927][ T6352]  mt_find.cold+0x8b/0x90
[  440.132966][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.133014][ T6352]  find_vma+0x10c/0x1b0
[  440.133042][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.133074][ T6352]  ? walk_page_test+0x78/0x180
[  440.133110][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.133147][ T6352]  ? __walk_page_range+0x780/0x780
[  440.133199][ T6352]  mlock_fixup+0x650/0x810
[  440.133249][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.133288][ T6352]  ? mlock_fixup+0x810/0x810
[  440.133338][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.133377][ T6352]  do_mlock+0x25a/0x6d0
[  440.133417][ T6352]  ? folio_evictable+0x270/0x270
[  440.133465][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.133500][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.133538][ T6352]  do_syscall_64+0x39/0xb0
[  440.133574][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.133603][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.133622][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.133643][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.133673][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.133691][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.133707][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.133723][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.133737][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.133774][ T6352]  </TASK>
[  440.139322][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.139342][ T6352] BUG at mt_find:6473 (1)
[  440.139357][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.139378][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.143093][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.143324][ T6352]     0-536866815: 0000000000000000
[  440.143347][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.143369][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.143390][ T6352]     553627648-553639935: 0000000000000000
[  440.143413][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.143436][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.143458][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.143482][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.143504][ T6352]     553652224-116809400319: 0000000000000000
[  440.143525][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.143548][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.143571][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.143594][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.143617][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.143639][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.143963][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.143985][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.146489][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.146517][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.146540][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.146563][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.146585][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.146607][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.146631][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.146655][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.146678][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.146702][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.146726][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.146750][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.146775][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.147012][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.147036][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.147061][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.147085][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.147109][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.147133][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.147156][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.147179][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.147203][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.147227][ T6352] Pass: 9006653 Run:9006776
[  440.147241][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.147268][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.147283][ T6352] Call Trace:
[  440.147291][ T6352]  <TASK>
[  440.147302][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.147344][ T6352]  mt_find.cold+0x8b/0x90
[  440.147385][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.147434][ T6352]  find_vma+0x10c/0x1b0
[  440.147463][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.147495][ T6352]  ? walk_page_test+0x78/0x180
[  440.147532][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.147571][ T6352]  ? __walk_page_range+0x780/0x780
[  440.147627][ T6352]  mlock_fixup+0x650/0x810
[  440.147680][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.147724][ T6352]  ? mlock_fixup+0x810/0x810
[  440.147779][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.147821][ T6352]  do_mlock+0x25a/0x6d0
[  440.147872][ T6352]  ? folio_evictable+0x270/0x270
[  440.147925][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.147963][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.148002][ T6352]  do_syscall_64+0x39/0xb0
[  440.148040][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.148072][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.148094][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.148118][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.148144][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.148162][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.148179][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.148196][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.148211][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.148248][ T6352]  </TASK>
[  440.150807][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.150826][ T6352] BUG at mt_find:6473 (1)
[  440.150840][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.150867][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.151099][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.151324][ T6352]     0-536866815: 0000000000000000
[  440.151346][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.151369][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.151392][ T6352]     553627648-553639935: 0000000000000000
[  440.151415][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.151438][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.151461][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.151484][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.151507][ T6352]     553652224-116809400319: 0000000000000000
[  440.151528][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.151549][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.151573][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.151596][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.151618][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.151641][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.155463][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.155486][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.155509][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.155531][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.155552][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.155573][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.155595][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.155616][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.191563][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.191598][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.191624][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.191649][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.191673][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.191697][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.191722][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.191955][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.191980][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.192004][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.192029][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.192052][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.192076][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.192099][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.192123][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.192147][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.192170][ T6352] Pass: 9007072 Run:9007196
[  440.192184][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.192210][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.192225][ T6352] Call Trace:
[  440.192234][ T6352]  <TASK>
[  440.192245][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.192287][ T6352]  mt_find.cold+0x8b/0x90
[  440.192326][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.192373][ T6352]  find_vma+0x10c/0x1b0
[  440.192403][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.192435][ T6352]  ? walk_page_test+0x78/0x180
[  440.192476][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.192514][ T6352]  ? __walk_page_range+0x780/0x780
[  440.192564][ T6352]  mlock_fixup+0x650/0x810
[  440.192617][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.192661][ T6352]  ? mlock_fixup+0x810/0x810
[  440.192716][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.192757][ T6352]  do_mlock+0x25a/0x6d0
[  440.192802][ T6352]  ? folio_evictable+0x270/0x270
[  440.192854][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.192898][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.192936][ T6352]  do_syscall_64+0x39/0xb0
[  440.192971][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.192999][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.193019][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.193042][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.193066][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.193083][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.193098][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.193112][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.193126][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.193162][ T6352]  </TASK>
[  440.208781][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.208803][ T6352] BUG at mt_find:6473 (1)
[  440.208818][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.208840][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.209095][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.214502][ T6352]     0-536866815: 0000000000000000
[  440.214526][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.214550][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.214573][ T6352]     553627648-553639935: 0000000000000000
[  440.214596][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.214619][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.214642][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.214666][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.214689][ T6352]     553652224-116809400319: 0000000000000000
[  440.214712][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.214735][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.214759][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.214783][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.214807][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.214832][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.215076][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.215101][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.215125][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.215150][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.215175][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.215200][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.222482][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.222512][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.222537][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.222562][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.222587][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.222611][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.229047][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.229313][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.229341][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.231242][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.231270][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.231297][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.231321][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.231346][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.231373][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.231397][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.231422][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.231447][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.231472][ T6352] Pass: 9007089 Run:9007214
[  440.231487][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.231515][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.231530][ T6352] Call Trace:
[  440.231538][ T6352]  <TASK>
[  440.231549][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.231589][ T6352]  mt_find.cold+0x8b/0x90
[  440.231625][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.231669][ T6352]  find_vma+0x10c/0x1b0
[  440.231698][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.231730][ T6352]  ? walk_page_test+0x78/0x180
[  440.231773][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.231812][ T6352]  ? __walk_page_range+0x780/0x780
[  440.231867][ T6352]  mlock_fixup+0x650/0x810
[  440.231919][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.231963][ T6352]  ? mlock_fixup+0x810/0x810
[  440.232017][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.232060][ T6352]  do_mlock+0x25a/0x6d0
[  440.232104][ T6352]  ? folio_evictable+0x270/0x270
[  440.232158][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.232196][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.232234][ T6352]  do_syscall_64+0x39/0xb0
[  440.232271][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.232301][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.232323][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.232347][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.232372][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.232389][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.232407][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.232423][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.232440][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.232480][ T6352]  </TASK>
[  440.252078][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.252099][ T6352] BUG at mt_find:6473 (1)
[  440.252116][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.252138][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.252390][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.252621][ T6352]     0-536866815: 0000000000000000
[  440.252644][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.252667][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.252691][ T6352]     553627648-553639935: 0000000000000000
[  440.252713][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.252736][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.252765][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.252789][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.252812][ T6352]     553652224-116809400319: 0000000000000000
[  440.252835][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.252859][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.252882][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.252906][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.252930][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.252954][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.256825][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.256853][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.256878][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.256903][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.256928][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.256952][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.256976][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.257001][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.257024][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.257045][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.257066][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.257088][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.257109][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.257128][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.257148][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.257357][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.257380][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.257402][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.257424][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.257446][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.257468][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.257488][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.257514][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.257536][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.257559][ T6352] Pass: 9007100 Run:9007226
[  440.257571][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.257596][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.257613][ T6352] Call Trace:
[  440.257621][ T6352]  <TASK>
[  440.257632][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.257671][ T6352]  mt_find.cold+0x8b/0x90
[  440.257710][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.257765][ T6352]  find_vma+0x10c/0x1b0
[  440.257793][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.257825][ T6352]  ? walk_page_test+0x78/0x180
[  440.257862][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.257900][ T6352]  ? __walk_page_range+0x780/0x780
[  440.257955][ T6352]  mlock_fixup+0x650/0x810
[  440.258009][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.258053][ T6352]  ? mlock_fixup+0x810/0x810
[  440.258109][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.258152][ T6352]  do_mlock+0x25a/0x6d0
[  440.258196][ T6352]  ? folio_evictable+0x270/0x270
[  440.258246][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.258282][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.258319][ T6352]  do_syscall_64+0x39/0xb0
[  440.258357][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.258388][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.258411][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.258436][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.258462][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.258480][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.258496][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.258513][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.258529][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.258569][ T6352]  </TASK>
[  440.268531][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.268550][ T6352] BUG at mt_find:6473 (1)
[  440.268566][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.268588][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.268849][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.269077][ T6352]     0-536866815: 0000000000000000
[  440.269098][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.269120][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.269143][ T6352]     553627648-553639935: 0000000000000000
[  440.269166][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.269190][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.269213][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.269236][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.269257][ T6352]     553652224-116809400319: 0000000000000000
[  440.269278][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.269302][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.311330][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.311356][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.311369][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.311384][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.311513][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.311526][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.311539][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.311552][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.311565][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.311578][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.311591][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.311604][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.311617][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.311630][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.311642][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.311655][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.311668][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.311681][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.311694][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.311824][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.311837][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.311851][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.311864][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.311877][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.311890][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.311903][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.311916][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.311929][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.311942][ T6352] Pass: 9007806 Run:9007933
[  440.311950][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.311965][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.311973][ T6352] Call Trace:
[  440.311978][ T6352]  <TASK>
[  440.311983][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.312008][ T6352]  mt_find.cold+0x8b/0x90
[  440.312028][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.312054][ T6352]  find_vma+0x10c/0x1b0
[  440.312072][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.312089][ T6352]  ? walk_page_test+0x78/0x180
[  440.312109][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.312129][ T6352]  ? __walk_page_range+0x780/0x780
[  440.312159][ T6352]  mlock_fixup+0x650/0x810
[  440.312188][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.312212][ T6352]  ? mlock_fixup+0x810/0x810
[  440.312240][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.312263][ T6352]  do_mlock+0x25a/0x6d0
[  440.312287][ T6352]  ? folio_evictable+0x270/0x270
[  440.312315][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.312335][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.312370][ T6352]  do_syscall_64+0x39/0xb0
[  440.312408][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.312439][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.312459][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.312472][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.312487][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.312497][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.312506][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.312515][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.312524][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.312545][ T6352]  </TASK>
[  440.319172][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.319192][ T6352] BUG at mt_find:6473 (1)
[  440.319206][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.319227][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.319472][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.330522][ T6352]     0-536866815: 0000000000000000
[  440.330537][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.330550][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.330563][ T6352]     553627648-553639935: 0000000000000000
[  440.330576][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.330589][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.330601][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.330614][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.330627][ T6352]     553652224-116809400319: 0000000000000000
[  440.330640][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.330653][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.330666][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.330680][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.330693][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.330707][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.330841][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.330855][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.330868][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.330882][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.330895][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.330908][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.330921][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.330935][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.330948][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.330961][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.330974][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.330987][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.331000][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.331013][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.331026][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.331148][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.331161][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.331174][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.331187][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.331200][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.331214][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.331226][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.331240][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.331253][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.331266][ T6352] Pass: 9008228 Run:9008356
[  440.331275][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.331290][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.331299][ T6352] Call Trace:
[  440.331304][ T6352]  <TASK>
[  440.331310][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.331335][ T6352]  mt_find.cold+0x8b/0x90
[  440.331356][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.331382][ T6352]  find_vma+0x10c/0x1b0
[  440.331401][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.331432][ T6352]  ? walk_page_test+0x78/0x180
[  440.331472][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.331510][ T6352]  ? __walk_page_range+0x780/0x780
[  440.331539][ T6352]  mlock_fixup+0x650/0x810
[  440.331567][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.331590][ T6352]  ? mlock_fixup+0x810/0x810
[  440.331619][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.331642][ T6352]  do_mlock+0x25a/0x6d0
[  440.331665][ T6352]  ? folio_evictable+0x270/0x270
[  440.331693][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.331713][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.331734][ T6352]  do_syscall_64+0x39/0xb0
[  440.331760][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.331778][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.331790][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.331803][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.331819][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.331828][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.331838][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.331847][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.331856][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.331877][ T6352]  </TASK>
[  440.336524][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.336538][ T6352] BUG at mt_find:6473 (1)
[  440.336547][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.336560][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.336695][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.336826][ T6352]     0-536866815: 0000000000000000
[  440.336839][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.336852][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.336865][ T6352]     553627648-553639935: 0000000000000000
[  440.336878][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.336891][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.336903][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.336916][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.336929][ T6352]     553652224-116809400319: 0000000000000000
[  440.336942][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.336955][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.336968][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.336981][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.336994][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.337007][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.346650][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.346665][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.346679][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.346692][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.346705][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.346718][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.346731][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.346754][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.346767][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.346780][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.346793][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.346807][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.346820][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.346833][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.346846][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.346970][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.346983][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.346996][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.347009][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.347021][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.347034][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.347047][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.347060][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  440.347073][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  440.347086][ T6352] Pass: 9008244 Run:9008373
[  440.347095][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  440.347110][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  440.347119][ T6352] Call Trace:
[  440.347124][ T6352]  <TASK>
[  440.347130][ T6352]  dump_stack_lvl+0xd1/0x138
[  440.347154][ T6352]  mt_find.cold+0x8b/0x90
[  440.347175][ T6352]  ? mas_find+0x1d0/0x1d0
[  440.347200][ T6352]  find_vma+0x10c/0x1b0
[  440.347223][ T6352]  ? can_vma_merge_before+0x390/0x390
[  440.347254][ T6352]  ? walk_page_test+0x78/0x180
[  440.347294][ T6352]  walk_page_range+0x2b1/0x4a0
[  440.347333][ T6352]  ? __walk_page_range+0x780/0x780
[  440.347365][ T6352]  mlock_fixup+0x650/0x810
[  440.347394][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  440.347417][ T6352]  ? mlock_fixup+0x810/0x810
[  440.347446][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  440.347469][ T6352]  do_mlock+0x25a/0x6d0
[  440.347493][ T6352]  ? folio_evictable+0x270/0x270
[  440.347525][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  440.347546][ T6352]  __x64_sys_mlock+0x59/0x80
[  440.347567][ T6352]  do_syscall_64+0x39/0xb0
[  440.347588][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  440.347605][ T6352] RIP: 0033:0x7fde7288c0c9
[  440.347618][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  440.347631][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  440.347646][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  440.347656][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  440.347666][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  440.347675][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  440.347684][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  440.347705][ T6352]  </TASK>
[  440.352317][ T6352] index not increased! 20ffb000 <= 20ffb000
[  440.352330][ T6352] BUG at mt_find:6473 (1)
[  440.352340][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  440.352353][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  440.352491][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  440.352615][ T6352]     0-536866815: 0000000000000000
[  440.352627][ T6352]     536866816-536870911: ffff88807cef72a0
[  440.352640][ T6352]     536870912-553627647: ffff88801fb9b700
[  440.352653][ T6352]     553627648-553639935: 0000000000000000
[  440.352666][ T6352]     553639936-553627647: ffff88807bda78c0
[  440.352679][ T6352]     553627648-553644031: ffff88807bda79a0
[  440.352691][ T6352]     553644032-553648127: ffff8880216d6b60
[  440.352704][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  440.353530][ T6352]     553652224-116809400319: 0000000000000000
[  440.353555][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  440.353577][ T6352]     116813594624-93825005334527: 0000000000000000
[  440.353599][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  440.353625][ T6352]     93825005473792-140593359482879: 0000000000000000
[  440.353649][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  440.353673][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  440.354651][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  440.354676][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  440.354702][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  440.354727][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  440.354758][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  440.354783][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  440.354807][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  440.354831][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  440.354856][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  440.354880][ T6352]     140593381670912-140593381675007: 0000000000000000
[  440.354904][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  440.355043][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  440.355070][ T6352]     140593382076416-140593382096895: 0000000000000000
[  440.355092][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  440.355115][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  440.355336][ T6352]     140593393942528-140593395646463: 0000000000000000
[  440.355358][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  440.355382][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  440.355406][ T6352]     140593395781632-140727606853631: 0000000000000000
[  440.355427][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  440.355451][ T6352]     140727606988800-140727607586815: 0000000000000000
[  440.355473][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  440.355496][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  458.470113][    C0] clocksource: timekeeping watchdog on CPU0: Marking clocksource 'acpi_pm' as unstable because the skew is too large:
[  458.470183][    C0] clocksource:                       'tsc' wd_nsec: 18058020676 wd_now: ecdeca35da wd_last: e39eabf9ac mask: ffffffffffffffff
11:26:15 executing program 0:
r0 = fanotify_init(0x0, 0x0)
readv(r0, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

11:26:15 executing program 1:
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f000000e400)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, &(0x7f000000e280)="1c", &(0x7f000000e300)='P'}, 0x48)

11:26:15 executing program 5:
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreq(r0, 0x0, 0x20, &(0x7f0000000000)={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2=0x7f000001}, 0x20000008)

11:26:15 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af9234751", 0x81}], 0x1}, 0x0)

11:26:15 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r0, {0xfffffffe}}, './file0\x00'})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x10004, 0x6be0fd8bb884bd12, 0x5000, 0x1000, &(0x7f0000fff000/0x1000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x3000, 0x10000})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
r3 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f0000000100)={0xf000, 0xd000})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  458.470198][    C0] clocksource:                       'acpi_pm' cs_nsec: 0 cs_now: 98c6d cs_last: 2f289b mask: ffffff
11:26:15 executing program 5:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$alg(0x26, 0x5, 0x0)
signalfd4(r0, &(0x7f0000000000), 0x8, 0x0)

[  458.470210][    C0] clocksource:                       Clocksource 'acpi_pm' skewed -18058020676 ns (18446744055651 ms) over watchdog 'tsc' interval of 18058020676 ns (18058 ms)
[  458.470225][    C0] clocksource:                       'tsc' (not 'acpi_pm') is current clocksource.
[  458.529935][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  458.529976][ T6352] Pass: 9014496 Run:9014626
[  458.529992][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  458.530019][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  458.530034][ T6352] Call Trace:
[  458.530043][ T6352]  <TASK>
[  458.530054][ T6352]  dump_stack_lvl+0xd1/0x138
[  458.530095][ T6352]  mt_find.cold+0x8b/0x90
[  458.530133][ T6352]  ? mas_find+0x1d0/0x1d0
[  458.530181][ T6352]  find_vma+0x10c/0x1b0
[  458.530209][ T6352]  ? can_vma_merge_before+0x390/0x390
[  458.530241][ T6352]  ? walk_page_test+0x78/0x180
[  458.530278][ T6352]  walk_page_range+0x2b1/0x4a0
[  458.530317][ T6352]  ? __walk_page_range+0x780/0x780
[  458.530374][ T6352]  mlock_fixup+0x650/0x810
[  458.530426][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  458.530471][ T6352]  ? mlock_fixup+0x810/0x810
[  458.530526][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  458.530575][ T6352]  do_mlock+0x25a/0x6d0
[  458.530620][ T6352]  ? folio_evictable+0x270/0x270
[  458.530673][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  458.530710][ T6352]  __x64_sys_mlock+0x59/0x80
[  458.530751][ T6352]  do_syscall_64+0x39/0xb0
[  458.530789][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  458.530820][ T6352] RIP: 0033:0x7fde7288c0c9
[  458.530842][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  458.530867][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  458.530893][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
11:26:16 executing program 3:
openat$full(0xffffffffffffff9c, &(0x7f0000000800), 0x0, 0x0)
socketpair(0x0, 0x0, 0x0, &(0x7f00000001c0))
openat$full(0xffffffffffffff9c, &(0x7f0000000800), 0x0, 0x0)
select(0x40, &(0x7f0000000240)={0x43}, 0x0, &(0x7f00000002c0)={0x8}, 0x0)

11:26:16 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af9234751", 0x81}], 0x1}, 0x0)

11:26:16 executing program 5:
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
add_key$user(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="81", 0x1, 0xfffffffffffffffe)

11:26:16 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r0, {0xfffffffe}}, './file0\x00'})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x10004, 0x6be0fd8bb884bd12, 0x5000, 0x1000, &(0x7f0000fff000/0x1000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x3000, 0x10000})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
r3 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f0000000100)={0xf000, 0xd000})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xfffffffe}}, './file0\x00'}) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x10004, 0x6be0fd8bb884bd12, 0x5000, 0x1000, &(0x7f0000fff000/0x1000)=nil}) (async)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x3000, 0x10000}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) (async)
openat$cgroup_procs(r3, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0) (async)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f0000000100)={0xf000, 0xd000}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

11:26:16 executing program 1:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000380)='net/dev\x00')
readv(r0, &(0x7f0000000080)=[{&(0x7f0000000540)=""/4096, 0x1000}], 0x1)
readv(r0, &(0x7f00000004c0)=[{&(0x7f00000000c0)=""/228, 0xe4}], 0x1)

[  458.530911][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  458.530927][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  458.530944][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.530960][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  458.531000][ T6352]  </TASK>
[  458.531018][ T6352] index not increased! 20ffb000 <= 20ffb000
[  458.531033][ T6352] BUG at mt_find:6473 (1)
[  458.531048][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  458.531068][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  458.531311][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  458.531537][ T6352]     0-536866815: 0000000000000000
[  458.531565][ T6352]     536866816-536870911: ffff88807cef72a0
[  458.531589][ T6352]     536870912-553627647: ffff88801fb9b700
[  458.531612][ T6352]     553627648-553639935: 0000000000000000
[  458.531634][ T6352]     553639936-553627647: ffff88807bda78c0
[  458.531657][ T6352]     553627648-553644031: ffff88807bda79a0
[  458.531680][ T6352]     553644032-553648127: ffff8880216d6b60
[  458.531703][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  458.531726][ T6352]     553652224-116809400319: 0000000000000000
[  458.531749][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
11:26:16 executing program 1:
r0 = socket$inet(0x2, 0x3, 0x0)
close(r0)
bind$inet(r0, 0x0, 0x0)

[  458.531773][ T6352]     116813594624-93825005334527: 0000000000000000
[  458.531796][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  458.531818][ T6352]     93825005473792-140593359482879: 0000000000000000
[  458.531839][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:26:16 executing program 0:
r0 = fanotify_init(0x0, 0x0)
readv(r0, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

11:26:16 executing program 5:
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
add_key$user(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x0}, &(0x7f0000000140)="81", 0x1, 0xfffffffffffffffe)

[  458.531862][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  458.532088][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  458.532113][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  458.532137][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  458.532161][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  458.532185][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  458.532209][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  458.532234][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  458.532258][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  458.532282][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  458.532307][ T6352]     140593381670912-140593381675007: 0000000000000000
[  458.532331][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  458.532355][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  458.532379][ T6352]     140593382076416-140593382096895: 0000000000000000
[  458.532402][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  458.532426][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  458.532656][ T6352]     140593393942528-140593395646463: 0000000000000000
[  458.532681][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  458.532705][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  458.532729][ T6352]     140593395781632-140727606853631: 0000000000000000
[  458.532754][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  458.532778][ T6352]     140727606988800-140727607586815: 0000000000000000
[  458.532802][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  458.532826][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  458.532850][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  458.532873][ T6352] Pass: 9014496 Run:9014627
[  458.532910][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  458.532936][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  458.532950][ T6352] Call Trace:
[  458.532958][ T6352]  <TASK>
[  458.532968][ T6352]  dump_stack_lvl+0xd1/0x138
[  458.533004][ T6352]  mt_find.cold+0x8b/0x90
[  458.533042][ T6352]  ? mas_find+0x1d0/0x1d0
[  458.533088][ T6352]  find_vma+0x10c/0x1b0
[  458.533114][ T6352]  ? can_vma_merge_before+0x390/0x390
[  458.533147][ T6352]  ? walk_page_test+0x78/0x180
[  458.533184][ T6352]  walk_page_range+0x2b1/0x4a0
[  458.533221][ T6352]  ? __walk_page_range+0x780/0x780
[  458.533278][ T6352]  mlock_fixup+0x650/0x810
[  458.533329][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  458.533373][ T6352]  ? mlock_fixup+0x810/0x810
[  458.533427][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  458.533467][ T6352]  do_mlock+0x25a/0x6d0
[  458.533506][ T6352]  ? folio_evictable+0x270/0x270
[  458.533557][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  458.533595][ T6352]  __x64_sys_mlock+0x59/0x80
[  458.533629][ T6352]  do_syscall_64+0x39/0xb0
[  458.533664][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  458.533695][ T6352] RIP: 0033:0x7fde7288c0c9
[  458.533715][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  458.533736][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  458.533759][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  458.533774][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  458.533790][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  458.533803][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.533816][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  458.533845][ T6352]  </TASK>
[  458.533857][ T6352] index not increased! 20ffb000 <= 20ffb000
[  458.533867][ T6352] BUG at mt_find:6473 (1)
[  458.533881][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  458.533901][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  458.534139][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  458.534360][ T6352]     0-536866815: 0000000000000000
[  458.534383][ T6352]     536866816-536870911: ffff88807cef72a0
[  458.534406][ T6352]     536870912-553627647: ffff88801fb9b700
[  458.534430][ T6352]     553627648-553639935: 0000000000000000
[  458.534453][ T6352]     553639936-553627647: ffff88807bda78c0
[  458.534477][ T6352]     553627648-553644031: ffff88807bda79a0
[  458.534500][ T6352]     553644032-553648127: ffff8880216d6b60
[  458.534524][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  458.534548][ T6352]     553652224-116809400319: 0000000000000000
[  458.534577][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
11:26:17 executing program 3:
utimensat(0xffffffffffffffff, 0x0, &(0x7f0000000080)={{}, {0x0, 0xffffffffffffffff}}, 0x0)

[  458.534601][ T6352]     116813594624-93825005334527: 0000000000000000
[  458.534625][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  458.534649][ T6352]     93825005473792-140593359482879: 0000000000000000
[  458.534673][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  458.534697][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  458.534930][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  458.534954][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  458.534979][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  458.535003][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  458.535026][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  458.535050][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  458.535074][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  458.535099][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  458.535122][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  458.535146][ T6352]     140593381670912-140593381675007: 0000000000000000
[  458.535170][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  458.535194][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  458.535218][ T6352]     140593382076416-140593382096895: 0000000000000000
[  458.535243][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  458.535267][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  458.535493][ T6352]     140593393942528-140593395646463: 0000000000000000
[  458.535516][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  458.535540][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  458.535569][ T6352]     140593395781632-140727606853631: 0000000000000000
[  458.535591][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  458.535615][ T6352]     140727606988800-140727607586815: 0000000000000000
[  458.535639][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  458.535663][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  458.535687][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  458.535711][ T6352] Pass: 9014496 Run:9014628
[  458.535724][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  458.535751][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  458.535765][ T6352] Call Trace:
[  458.535773][ T6352]  <TASK>
[  458.535783][ T6352]  dump_stack_lvl+0xd1/0x138
[  458.535821][ T6352]  mt_find.cold+0x8b/0x90
[  458.535860][ T6352]  ? mas_find+0x1d0/0x1d0
[  458.535907][ T6352]  find_vma+0x10c/0x1b0
[  458.535935][ T6352]  ? can_vma_merge_before+0x390/0x390
[  458.535966][ T6352]  ? walk_page_test+0x78/0x180
[  458.536003][ T6352]  walk_page_range+0x2b1/0x4a0
11:26:17 executing program 5:
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x9010, 0xffffffffffffffff, 0x0)

[  458.536041][ T6352]  ? __walk_page_range+0x780/0x780
[  458.536095][ T6352]  mlock_fixup+0x650/0x810
[  458.536147][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  458.536192][ T6352]  ? mlock_fixup+0x810/0x810
[  458.536246][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  458.536288][ T6352]  do_mlock+0x25a/0x6d0
[  458.536330][ T6352]  ? folio_evictable+0x270/0x270
[  458.536384][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  458.536421][ T6352]  __x64_sys_mlock+0x59/0x80
[  458.536462][ T6352]  do_syscall_64+0x39/0xb0
[  458.536499][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  458.536529][ T6352] RIP: 0033:0x7fde7288c0c9
[  458.536550][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  458.536581][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  458.536606][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
11:26:17 executing program 1:
r0 = socket$inet6(0x18, 0x2, 0x0)
sendmsg(r0, &(0x7f0000000100)={&(0x7f0000000000)=@un=@file={0x0, './file0\x00'}, 0xa, 0x0}, 0xb)

[  458.536625][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  458.536641][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  458.536658][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.536675][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  458.536713][ T6352]  </TASK>
[  458.536728][ T6352] index not increased! 20ffb000 <= 20ffb000
[  458.536741][ T6352] BUG at mt_find:6473 (1)
[  458.536756][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  458.536776][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  458.537022][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  458.537247][ T6352]     0-536866815: 0000000000000000
[  458.537270][ T6352]     536866816-536870911: ffff88807cef72a0
[  458.537294][ T6352]     536870912-553627647: ffff88801fb9b700
11:26:17 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r2=>r0, {0xfffffffe}}, './file0\x00'})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x10004, 0x6be0fd8bb884bd12, 0x5000, 0x1000, &(0x7f0000fff000/0x1000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000000c0)={0x3000, 0x10000}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 64)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (rerun: 64)
r3 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0) (async, rerun: 64)
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r3, 0x4010ae68, &(0x7f0000000100)={0xf000, 0xd000}) (async, rerun: 64)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  458.537317][ T6352]     553627648-553639935: 0000000000000000
[  458.537339][ T6352]     553639936-553627647: ffff88807bda78c0
[  458.537363][ T6352]     553627648-553644031: ffff88807bda79a0
[  458.537386][ T6352]     553644032-553648127: ffff8880216d6b60
[  458.537409][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  458.537431][ T6352]     553652224-116809400319: 0000000000000000
[  458.537454][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  458.537478][ T6352]     116813594624-93825005334527: 0000000000000000
[  458.537500][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  458.537525][ T6352]     93825005473792-140593359482879: 0000000000000000
[  458.537548][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  458.537578][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  458.537815][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  458.537840][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  458.537864][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
11:26:18 executing program 0:
fanotify_init(0x2, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

[  458.537888][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  458.537913][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  458.537937][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  458.537961][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  458.537985][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  458.538009][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  458.538032][ T6352]     140593381670912-140593381675007: 0000000000000000
[  458.538056][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  458.538079][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  458.538103][ T6352]     140593382076416-140593382096895: 0000000000000000
[  458.538126][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  458.538149][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  458.538374][ T6352]     140593393942528-140593395646463: 0000000000000000
[  458.538398][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  458.538423][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  458.538446][ T6352]     140593395781632-140727606853631: 0000000000000000
[  458.538470][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  458.538494][ T6352]     140727606988800-140727607586815: 0000000000000000
[  458.538517][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  458.538541][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  458.538572][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  458.538596][ T6352] Pass: 9014496 Run:9014629
[  458.538610][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  458.538636][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  458.538650][ T6352] Call Trace:
[  458.538658][ T6352]  <TASK>
[  458.538667][ T6352]  dump_stack_lvl+0xd1/0x138
[  458.538704][ T6352]  mt_find.cold+0x8b/0x90
[  458.538742][ T6352]  ? mas_find+0x1d0/0x1d0
[  458.538789][ T6352]  find_vma+0x10c/0x1b0
[  458.538816][ T6352]  ? can_vma_merge_before+0x390/0x390
[  458.538848][ T6352]  ? walk_page_test+0x78/0x180
[  458.538885][ T6352]  walk_page_range+0x2b1/0x4a0
[  458.538923][ T6352]  ? __walk_page_range+0x780/0x780
[  458.538976][ T6352]  mlock_fixup+0x650/0x810
[  458.539028][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  458.539072][ T6352]  ? mlock_fixup+0x810/0x810
[  458.539126][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  458.539167][ T6352]  do_mlock+0x25a/0x6d0
[  458.539211][ T6352]  ? folio_evictable+0x270/0x270
[  458.539263][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  458.539299][ T6352]  __x64_sys_mlock+0x59/0x80
[  458.539337][ T6352]  do_syscall_64+0x39/0xb0
[  458.539375][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  458.539404][ T6352] RIP: 0033:0x7fde7288c0c9
[  458.539424][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  458.539447][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  458.539472][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  458.539490][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  458.539506][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  458.539523][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.539542][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  458.539579][ T6352]  </TASK>
[  458.634147][ T6352] index not increased! 20ffb000 <= 20ffb000
[  458.634168][ T6352] BUG at mt_find:6473 (1)
[  458.634186][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  458.634209][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  458.634468][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  458.634700][ T6352]     0-536866815: 0000000000000000
[  458.634724][ T6352]     536866816-536870911: ffff88807cef72a0
[  458.634748][ T6352]     536870912-553627647: ffff88801fb9b700
[  458.634772][ T6352]     553627648-553639935: 0000000000000000
[  458.634795][ T6352]     553639936-553627647: ffff88807bda78c0
[  458.634818][ T6352]     553627648-553644031: ffff88807bda79a0
[  458.634842][ T6352]     553644032-553648127: ffff8880216d6b60
[  458.634865][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  458.634889][ T6352]     553652224-116809400319: 0000000000000000
[  458.634912][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  458.634936][ T6352]     116813594624-93825005334527: 0000000000000000
[  458.634959][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  458.634983][ T6352]     93825005473792-140593359482879: 0000000000000000
[  458.635006][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  458.635029][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  458.635260][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  458.635284][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  458.635308][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  458.635333][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  458.635357][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  458.635381][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  458.635406][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  458.635430][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  458.635460][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  458.635484][ T6352]     140593381670912-140593381675007: 0000000000000000
[  458.635508][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  458.635533][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  458.635556][ T6352]     140593382076416-140593382096895: 0000000000000000
[  458.635580][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  458.635604][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  458.635827][ T6352]     140593393942528-140593395646463: 0000000000000000
[  458.635850][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  458.635873][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  458.635897][ T6352]     140593395781632-140727606853631: 0000000000000000
[  458.635920][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  458.635945][ T6352]     140727606988800-140727607586815: 0000000000000000
[  458.635967][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  458.635992][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  458.636016][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  458.636040][ T6352] Pass: 9014895 Run:9015029
[  458.636054][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  458.636080][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  458.636096][ T6352] Call Trace:
[  458.636104][ T6352]  <TASK>
[  458.636116][ T6352]  dump_stack_lvl+0xd1/0x138
[  458.636158][ T6352]  mt_find.cold+0x8b/0x90
[  458.636197][ T6352]  ? mas_find+0x1d0/0x1d0
[  458.636245][ T6352]  find_vma+0x10c/0x1b0
[  458.636274][ T6352]  ? can_vma_merge_before+0x390/0x390
[  458.636306][ T6352]  ? walk_page_test+0x78/0x180
[  458.636343][ T6352]  walk_page_range+0x2b1/0x4a0
[  458.636383][ T6352]  ? __walk_page_range+0x780/0x780
[  458.636438][ T6352]  mlock_fixup+0x650/0x810
[  458.636498][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  458.636542][ T6352]  ? mlock_fixup+0x810/0x810
[  458.636594][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  458.636637][ T6352]  do_mlock+0x25a/0x6d0
[  458.636681][ T6352]  ? folio_evictable+0x270/0x270
[  458.636733][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  458.636770][ T6352]  __x64_sys_mlock+0x59/0x80
[  458.636810][ T6352]  do_syscall_64+0x39/0xb0
[  458.636848][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  458.636879][ T6352] RIP: 0033:0x7fde7288c0c9
[  458.636901][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  458.636925][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  458.636951][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  458.636969][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  458.636986][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  458.637003][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.637018][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  458.637058][ T6352]  </TASK>
[  458.680125][ T6352] index not increased! 20ffb000 <= 20ffb000
[  458.680147][ T6352] BUG at mt_find:6473 (1)
[  458.680161][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  458.680182][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  458.680398][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  458.680626][ T6352]     0-536866815: 0000000000000000
[  458.680649][ T6352]     536866816-536870911: ffff88807cef72a0
[  458.680672][ T6352]     536870912-553627647: ffff88801fb9b700
[  458.680695][ T6352]     553627648-553639935: 0000000000000000
[  458.680718][ T6352]     553639936-553627647: ffff88807bda78c0
[  458.680741][ T6352]     553627648-553644031: ffff88807bda79a0
[  458.680764][ T6352]     553644032-553648127: ffff8880216d6b60
[  458.680787][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  458.680811][ T6352]     553652224-116809400319: 0000000000000000
[  458.680833][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  458.680857][ T6352]     116813594624-93825005334527: 0000000000000000
[  458.680880][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  458.680903][ T6352]     93825005473792-140593359482879: 0000000000000000
[  458.680926][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  458.680950][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  458.681176][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  458.681200][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  458.681224][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  458.681247][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  458.681269][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  458.681290][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  458.681312][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  458.681334][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  458.681357][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  458.681379][ T6352]     140593381670912-140593381675007: 0000000000000000
[  458.681403][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  458.681427][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  458.681451][ T6352]     140593382076416-140593382096895: 0000000000000000
[  458.681474][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  458.681499][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  458.681729][ T6352]     140593393942528-140593395646463: 0000000000000000
[  458.681754][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  458.681779][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  458.681804][ T6352]     140593395781632-140727606853631: 0000000000000000
[  458.681827][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  458.681851][ T6352]     140727606988800-140727607586815: 0000000000000000
[  458.681875][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  458.681899][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  458.681923][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  458.681944][ T6352] Pass: 9014917 Run:9015052
[  458.681958][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  458.681984][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  458.681999][ T6352] Call Trace:
[  458.682007][ T6352]  <TASK>
[  458.682019][ T6352]  dump_stack_lvl+0xd1/0x138
[  458.682061][ T6352]  mt_find.cold+0x8b/0x90
[  458.682099][ T6352]  ? mas_find+0x1d0/0x1d0
[  458.682147][ T6352]  find_vma+0x10c/0x1b0
[  458.682175][ T6352]  ? can_vma_merge_before+0x390/0x390
[  458.682208][ T6352]  ? walk_page_test+0x78/0x180
[  458.682244][ T6352]  walk_page_range+0x2b1/0x4a0
[  458.682283][ T6352]  ? __walk_page_range+0x780/0x780
[  458.682338][ T6352]  mlock_fixup+0x650/0x810
[  458.682390][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  458.682434][ T6352]  ? mlock_fixup+0x810/0x810
[  458.682487][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  458.682529][ T6352]  do_mlock+0x25a/0x6d0
[  458.682578][ T6352]  ? folio_evictable+0x270/0x270
[  458.682630][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  458.682667][ T6352]  __x64_sys_mlock+0x59/0x80
[  458.682706][ T6352]  do_syscall_64+0x39/0xb0
[  458.682743][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  458.682773][ T6352] RIP: 0033:0x7fde7288c0c9
[  458.682795][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  458.682819][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  458.682845][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  458.682863][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  458.682880][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  458.682897][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.682913][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  458.682952][ T6352]  </TASK>
[  458.682969][ T6352] index not increased! 20ffb000 <= 20ffb000
[  458.682984][ T6352] BUG at mt_find:6473 (1)
[  458.682999][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  458.683020][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  458.683269][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  458.683496][ T6352]     0-536866815: 0000000000000000
[  458.683519][ T6352]     536866816-536870911: ffff88807cef72a0
[  458.683543][ T6352]     536870912-553627647: ffff88801fb9b700
[  458.683572][ T6352]     553627648-553639935: 0000000000000000
[  458.683594][ T6352]     553639936-553627647: ffff88807bda78c0
[  458.683618][ T6352]     553627648-553644031: ffff88807bda79a0
[  458.683641][ T6352]     553644032-553648127: ffff8880216d6b60
[  458.683664][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  458.683688][ T6352]     553652224-116809400319: 0000000000000000
[  458.683711][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  458.683735][ T6352]     116813594624-93825005334527: 0000000000000000
[  458.683759][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  458.683783][ T6352]     93825005473792-140593359482879: 0000000000000000
[  458.683806][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  458.683830][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  458.684060][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  458.684085][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  458.684109][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  458.684134][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  458.684158][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  458.684182][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  458.684206][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  458.684231][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  458.684255][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  458.684279][ T6352]     140593381670912-140593381675007: 0000000000000000
[  458.684304][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  458.684328][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  458.684352][ T6352]     140593382076416-140593382096895: 0000000000000000
[  458.684375][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  458.684399][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  458.684627][ T6352]     140593393942528-140593395646463: 0000000000000000
[  458.684651][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  458.684676][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  458.684700][ T6352]     140593395781632-140727606853631: 0000000000000000
[  458.684723][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  458.684747][ T6352]     140727606988800-140727607586815: 0000000000000000
[  458.684770][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  458.684794][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  458.684818][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  458.684842][ T6352] Pass: 9014917 Run:9015053
[  458.684855][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  458.684881][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  458.684896][ T6352] Call Trace:
[  458.684904][ T6352]  <TASK>
[  458.684914][ T6352]  dump_stack_lvl+0xd1/0x138
[  458.684951][ T6352]  mt_find.cold+0x8b/0x90
[  458.684989][ T6352]  ? mas_find+0x1d0/0x1d0
[  458.685036][ T6352]  find_vma+0x10c/0x1b0
[  458.685063][ T6352]  ? can_vma_merge_before+0x390/0x390
[  458.685095][ T6352]  ? walk_page_test+0x78/0x180
[  458.685131][ T6352]  walk_page_range+0x2b1/0x4a0
[  458.685170][ T6352]  ? __walk_page_range+0x780/0x780
[  458.685224][ T6352]  mlock_fixup+0x650/0x810
[  458.685275][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  458.685319][ T6352]  ? mlock_fixup+0x810/0x810
[  458.685373][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  458.685410][ T6352]  do_mlock+0x25a/0x6d0
[  458.685453][ T6352]  ? folio_evictable+0x270/0x270
[  458.685506][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  458.685542][ T6352]  __x64_sys_mlock+0x59/0x80
[  458.685588][ T6352]  do_syscall_64+0x39/0xb0
[  458.685625][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  458.685654][ T6352] RIP: 0033:0x7fde7288c0c9
[  458.685674][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  458.685697][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  458.685722][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  458.685740][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  458.685757][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  458.685774][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.685790][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  458.685829][ T6352]  </TASK>
[  458.685843][ T6352] index not increased! 20ffb000 <= 20ffb000
[  458.685859][ T6352] BUG at mt_find:6473 (1)
[  458.685873][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  458.685894][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  458.686141][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  458.686340][ T6352]     0-536866815: 0000000000000000
[  458.686361][ T6352]     536866816-536870911: ffff88807cef72a0
[  458.686383][ T6352]     536870912-553627647: ffff88801fb9b700
[  458.686404][ T6352]     553627648-553639935: 0000000000000000
[  458.686426][ T6352]     553639936-553627647: ffff88807bda78c0
[  458.686448][ T6352]     553627648-553644031: ffff88807bda79a0
[  458.686469][ T6352]     553644032-553648127: ffff8880216d6b60
[  458.686492][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  458.686515][ T6352]     553652224-116809400319: 0000000000000000
[  458.686536][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  458.686565][ T6352]     116813594624-93825005334527: 0000000000000000
[  458.686586][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  458.686611][ T6352]     93825005473792-140593359482879: 0000000000000000
[  458.686634][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  458.686655][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  458.686878][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  458.686901][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  458.686923][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  458.686944][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  458.686968][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  458.686989][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  458.687012][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  458.687035][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  458.687058][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  458.687082][ T6352]     140593381670912-140593381675007: 0000000000000000
[  458.687104][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  458.687126][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  458.687148][ T6352]     140593382076416-140593382096895: 0000000000000000
[  458.687169][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  458.687192][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  458.687413][ T6352]     140593393942528-140593395646463: 0000000000000000
[  458.687437][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  458.687461][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  458.687484][ T6352]     140593395781632-140727606853631: 0000000000000000
[  458.687506][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  458.687530][ T6352]     140727606988800-140727607586815: 0000000000000000
[  458.687563][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  458.687588][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  458.687612][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  458.687635][ T6352] Pass: 9014917 Run:9015054
[  458.687649][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  458.687675][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  458.687690][ T6352] Call Trace:
[  458.687697][ T6352]  <TASK>
[  458.687708][ T6352]  dump_stack_lvl+0xd1/0x138
[  458.687747][ T6352]  mt_find.cold+0x8b/0x90
[  458.687785][ T6352]  ? mas_find+0x1d0/0x1d0
[  458.687833][ T6352]  find_vma+0x10c/0x1b0
[  458.687860][ T6352]  ? can_vma_merge_before+0x390/0x390
[  458.687891][ T6352]  ? walk_page_test+0x78/0x180
[  458.687927][ T6352]  walk_page_range+0x2b1/0x4a0
[  458.687966][ T6352]  ? __walk_page_range+0x780/0x780
[  458.688015][ T6352]  mlock_fixup+0x650/0x810
[  458.688062][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  458.688105][ T6352]  ? mlock_fixup+0x810/0x810
[  458.688159][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  458.688201][ T6352]  do_mlock+0x25a/0x6d0
[  458.688245][ T6352]  ? folio_evictable+0x270/0x270
[  458.688297][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  458.688333][ T6352]  __x64_sys_mlock+0x59/0x80
[  458.688371][ T6352]  do_syscall_64+0x39/0xb0
[  458.688405][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  458.688432][ T6352] RIP: 0033:0x7fde7288c0c9
[  458.688452][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  458.688473][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  458.688494][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  458.688509][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  458.688525][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  458.688540][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.688562][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  458.688599][ T6352]  </TASK>
[  458.688613][ T6352] index not increased! 20ffb000 <= 20ffb000
[  458.688626][ T6352] BUG at mt_find:6473 (1)
[  458.688639][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  458.688658][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  458.688890][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  458.689111][ T6352]     0-536866815: 0000000000000000
[  458.689133][ T6352]     536866816-536870911: ffff88807cef72a0
[  458.689156][ T6352]     536870912-553627647: ffff88801fb9b700
[  458.689178][ T6352]     553627648-553639935: 0000000000000000
[  458.689200][ T6352]     553639936-553627647: ffff88807bda78c0
[  458.689223][ T6352]     553627648-553644031: ffff88807bda79a0
[  458.689244][ T6352]     553644032-553648127: ffff8880216d6b60
[  458.689265][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  458.689289][ T6352]     553652224-116809400319: 0000000000000000
[  458.689312][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  458.689336][ T6352]     116813594624-93825005334527: 0000000000000000
[  458.689359][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  458.689383][ T6352]     93825005473792-140593359482879: 0000000000000000
[  458.689406][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:26:21 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af9234751", 0x81}], 0x1}, 0x0)

11:26:21 executing program 5:
r0 = socket$inet(0x2, 0x3, 0x0)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000b40), 0x0, 0x0)
dup2(r3, r1)
dup2(r0, r2)

11:26:21 executing program 3:
r0 = socket$inet(0x2, 0x3, 0x0)
getsockopt$sock_int(r0, 0xffff, 0x4, 0x0, 0x0)

11:26:21 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
dup2(r1, r0)

11:26:21 executing program 0:
fanotify_init(0x2, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

[  458.689430][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
11:26:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)

11:26:21 executing program 0:
fanotify_init(0x2, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000000)=""/186, 0xba}], 0x1)

11:26:21 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a2", 0x85}], 0x1}, 0x0)

11:26:21 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, 0x0, 0x0)

11:26:21 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)

11:26:21 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a2", 0x85}], 0x1}, 0x0)

11:26:21 executing program 3:
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0xc07b2b747d7de3ae, 0x0)
r1 = dup2(r0, r0)
fcntl$lock(r1, 0x7, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x100000000080})

[  464.554311][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
11:26:21 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, 0x0, 0x0)

11:26:21 executing program 5:
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000001240)={0x2, 0x2}, 0xc)
semctl$GETALL(0x0, 0x0, 0x9, &(0x7f0000001580)=""/71)

[  464.621960][ T6352]     140593367875584-140593369972735: ffff88802866f700
11:26:21 executing program 5:
utimensat(0xffffffffffffffff, 0x0, &(0x7f00000008c0)={{0x0, 0xffffffffffffff77}}, 0x0)

[  464.733966][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
11:26:22 executing program 1:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f00000001c0), &(0x7f0000000280)=0x98)

11:26:22 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a2", 0x85}], 0x1}, 0x0)

11:26:22 executing program 3:
sendmsg(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000040)=@in6={0x18}, 0xc, 0x0, 0xc600, &(0x7f0000000140)}, 0x0)

11:26:22 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, 0x0, 0x0)

11:26:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
r2 = creat(&(0x7f0000000000)='./file0\x00', 0x1)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
creat(&(0x7f0000000000)='./file0\x00', 0x1) (async)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)

11:26:22 executing program 5:
r0 = socket$inet6(0x18, 0x2, 0x0)
poll(&(0x7f0000000040)=[{r0, 0x4}], 0x1, 0x0)

[  464.983512][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  464.998915][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
11:26:22 executing program 3:
syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x44e501)

11:26:22 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff2", 0x87}], 0x1}, 0x0)

11:26:22 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
ioctl$BLKGETSIZE(r0, 0xc020660b, 0x0)

11:26:22 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, &(0x7f0000000580), 0x0)

[  465.129739][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  465.136811][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
11:26:22 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, &(0x7f0000000580), 0x0)

11:26:22 executing program 5:
r0 = eventfd(0x7)
read$eventfd(r0, &(0x7f0000002680), 0x8)

[  465.205993][ T6352]     140593380605952-140593381335039: ffff888021dae620
11:26:22 executing program 3:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000001080)=@req={0x0, 0x8}, 0x10)

11:26:22 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff2", 0x87}], 0x1}, 0x0)

11:26:22 executing program 1:
eventfd2(0x0, 0x289c3323950b7397)

[  465.267062][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  465.281710][ T6352]     140593381670912-140593381675007: 0000000000000000
11:26:22 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff2", 0x87}], 0x1}, 0x0)

[  465.319733][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  465.362132][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  465.400404][ T6352]     140593382076416-140593382096895: 0000000000000000
[  465.425489][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
11:26:22 executing program 3:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
ioctl$BLKIOOPT(r0, 0x125e, 0x0)

11:26:22 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f0000000100)=@framed={{}, [@exit]}, &(0x7f0000000140)='syzkaller\x00', 0x5, 0xe3, &(0x7f0000000180)=""/227, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

11:26:22 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, &(0x7f0000000580), 0x0)

11:26:22 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0xf43, 0x0, &(0x7f0000000000)=[r0]}, 0x1)

[  465.470265][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
11:26:22 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, &(0x7f0000000580)=[{0x0}], 0x1)

11:26:22 executing program 5:
r0 = socket(0x2a, 0x2, 0x0)
bind$l2tp(r0, 0x0, 0x0)

11:26:22 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27f", 0x88}], 0x1}, 0x0)

11:26:22 executing program 3:
r0 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000001c00))
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f00000004c0))

11:26:22 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, &(0x7f0000000580)=[{0x0}], 0x1)

[  465.642106][ T6352]     140593393942528-140593395646463: 0000000000000000
11:26:22 executing program 5:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f0000000240)=@framed={{}, [@kfunc]}, &(0x7f0000000280)='GPL\x00', 0x2, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[  465.690415][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  465.733655][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
11:26:22 executing program 1:
io_uring_setup(0x3c01, &(0x7f0000000180)={0x0, 0x7, 0x8})

11:26:22 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27f", 0x88}], 0x1}, 0x0)

11:26:22 executing program 5:
socket(0x18, 0x0, 0x237d)

11:26:22 executing program 3:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000800), 0x0, 0x0)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
dup2(r0, r1)

11:26:22 executing program 0:
r0 = fanotify_init(0x2, 0x0)
readv(r0, &(0x7f0000000580)=[{0x0}], 0x1)

[  465.893244][ T6352]     140593395781632-140727606853631: 0000000000000000
[  466.070895][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  466.077932][ T6352]     140727606988800-140727607586815: 0000000000000000
[  466.087821][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  466.094937][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  466.102175][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  466.111190][ T6352] Pass: 9127233 Run:9127371
[  466.115725][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  466.125568][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  466.135653][ T6352] Call Trace:
[  466.138952][ T6352]  <TASK>
[  466.141911][ T6352]  dump_stack_lvl+0xd1/0x138
[  466.146545][ T6352]  mt_find.cold+0x8b/0x90
[  466.150919][ T6352]  ? mas_find+0x1d0/0x1d0
[  466.155301][ T6352]  find_vma+0x10c/0x1b0
[  466.159494][ T6352]  ? can_vma_merge_before+0x390/0x390
[  466.164902][ T6352]  ? walk_page_test+0x78/0x180
[  466.169708][ T6352]  walk_page_range+0x2b1/0x4a0
[  466.174522][ T6352]  ? __walk_page_range+0x780/0x780
[  466.179665][ T6352]  mlock_fixup+0x650/0x810
[  466.184108][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  466.189324][ T6352]  ? mlock_fixup+0x810/0x810
[  466.193952][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  466.199862][ T6352]  do_mlock+0x25a/0x6d0
[  466.204039][ T6352]  ? folio_evictable+0x270/0x270
[  466.209006][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  466.214913][ T6352]  __x64_sys_mlock+0x59/0x80
[  466.219520][ T6352]  do_syscall_64+0x39/0xb0
[  466.223957][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  466.229864][ T6352] RIP: 0033:0x7fde7288c0c9
[  466.234294][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  466.253910][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  466.262328][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  466.270319][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  466.278305][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  466.286281][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  466.294256][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  466.302251][ T6352]  </TASK>
[  466.307215][ T6352] index not increased! 20ffb000 <= 20ffb000
[  466.325692][ T6352] BUG at mt_find:6473 (1)
[  466.350569][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  466.365367][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  466.445798][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  466.507553][ T6352]     0-536866815: 0000000000000000
[  466.516090][ T6352]     536866816-536870911: ffff88807cef72a0
[  466.522520][ T6352]     536870912-553627647: ffff88801fb9b700
[  466.528456][ T6352]     553627648-553639935: 0000000000000000
[  466.536576][ T6352]     553639936-553627647: ffff88807bda78c0
[  466.542856][ T6352]     553627648-553644031: ffff88807bda79a0
[  466.548789][ T6352]     553644032-553648127: ffff8880216d6b60
[  466.557379][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  466.563723][ T6352]     553652224-116809400319: 0000000000000000
[  466.570313][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  466.576935][ T6352]     116813594624-93825005334527: 0000000000000000
[  466.584855][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  466.592149][ T6352]     93825005473792-140593359482879: 0000000000000000
[  466.599147][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  466.606600][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  466.667017][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  466.675530][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  466.682927][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  466.690331][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  466.697414][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  466.705461][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  466.716716][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  466.729387][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  466.748530][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  466.759179][ T6352]     140593381670912-140593381675007: 0000000000000000
[  466.776489][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  466.786299][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  466.799695][ T6352]     140593382076416-140593382096895: 0000000000000000
[  466.806696][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
11:26:23 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async, rerun: 32)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) (rerun: 32)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) (async, rerun: 32)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async, rerun: 32)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0xf43, 0x0, &(0x7f0000000000)=[r0]}, 0x1)

11:26:23 executing program 5:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000f00)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, 0x0, 0x0)

11:26:23 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0)
ioctl$BLKBSZSET(r0, 0x40081271, 0x0)

11:26:23 executing program 4:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)="89000000120081ae08060cdc016b3f087f03e3040000000000e2ffca1b1f0000000004c00e72f75000000080000000009ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27f", 0x88}], 0x1}, 0x0)

11:26:23 executing program 0:
io_uring_setup(0x58de, &(0x7f0000001780)={0x0, 0x0, 0x100})

11:26:23 executing program 3:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000800), 0x0, 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000080), 0x0, 0x0, 0x1)

[  466.822928][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
11:26:24 executing program 3:
r0 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000001c00)={<r1=>0xffffffffffffffff})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000180)={'ip6gre0\x00', &(0x7f0000000100)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast2, @private0}})

11:26:24 executing program 5:
semop(0x0, &(0x7f0000000000)=[{0x0, 0x19b}, {0x0, 0x4}], 0x2)

11:26:24 executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(r0, 0x107, 0x13, &(0x7f0000000000)="fa7d7138", 0x4)

11:26:24 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
ioctl$BLKIOOPT(r0, 0x1279, &(0x7f0000000040))

[  466.910019][ T6352]     140593393942528-140593395646463: 0000000000000000
[  466.944186][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
11:26:24 executing program 1:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000b00)={'batadv_slave_1\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)

[  466.992032][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  467.006153][ T6352]     140593395781632-140727606853631: 0000000000000000
11:26:24 executing program 4:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000280), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r0, 0xc0a85322, &(0x7f00000002c0))

[  467.092780][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  467.102229][ T6352]     140727606988800-140727607586815: 0000000000000000
[  467.110157][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  467.140422][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  467.162398][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  467.186819][ T6352] Pass: 9135628 Run:9135767
[  467.200550][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  467.210419][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  467.220596][ T6352] Call Trace:
[  467.223984][ T6352]  <TASK>
[  467.226950][ T6352]  dump_stack_lvl+0xd1/0x138
[  467.231588][ T6352]  mt_find.cold+0x8b/0x90
[  467.235968][ T6352]  ? mas_find+0x1d0/0x1d0
[  467.240356][ T6352]  find_vma+0x10c/0x1b0
[  467.244550][ T6352]  ? can_vma_merge_before+0x390/0x390
[  467.249967][ T6352]  ? walk_page_test+0x78/0x180
[  467.254778][ T6352]  walk_page_range+0x2b1/0x4a0
[  467.259598][ T6352]  ? __walk_page_range+0x780/0x780
[  467.264775][ T6352]  mlock_fixup+0x650/0x810
[  467.269251][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  467.274493][ T6352]  ? mlock_fixup+0x810/0x810
[  467.279118][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  467.285034][ T6352]  do_mlock+0x25a/0x6d0
[  467.289210][ T6352]  ? folio_evictable+0x270/0x270
[  467.294163][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  467.300053][ T6352]  __x64_sys_mlock+0x59/0x80
[  467.304643][ T6352]  do_syscall_64+0x39/0xb0
[  467.309077][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  467.314992][ T6352] RIP: 0033:0x7fde7288c0c9
[  467.319430][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  467.339058][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  467.347486][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  467.355458][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  467.363439][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  467.371423][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  467.379387][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  467.387373][ T6352]  </TASK>
[  467.393503][ T6352] index not increased! 20ffb000 <= 20ffb000
[  467.399694][ T6352] BUG at mt_find:6473 (1)
[  467.404498][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  467.414061][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:26:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
ioctl$KVM_GET_VCPU_MMAP_SIZE(r2, 0xae04) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0xf43, 0x0, &(0x7f0000000000)=[r0]}, 0x1)

11:26:24 executing program 5:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
ioctl$BLKGETSIZE(r0, 0x4020940d, 0x0)

11:26:24 executing program 3:
r0 = io_uring_setup(0x2fe6, &(0x7f0000000040))
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000001640)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f00000000c0)=r1, 0x1)

11:26:24 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(r0, 0x107, 0x9, &(0x7f0000000000)="fa7d7138", 0x4)

11:26:24 executing program 4:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, &(0x7f00000004c0))

11:26:24 executing program 1:
r0 = socket(0x28, 0x1, 0x0)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, 0x0, 0x0)

[  467.452593][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  467.513459][ T6352]     0-536866815: 0000000000000000
[  467.518742][ T6352]     536866816-536870911: ffff88807cef72a0
[  467.525152][ T6352]     536870912-553627647: ffff88801fb9b700
11:26:24 executing program 4:
mknodat$loop(0xffffffffffffffff, &(0x7f0000001880)='./file0\x00', 0x8000, 0x0)

11:26:24 executing program 5:
r0 = socket$kcm(0x29, 0x5, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000000)=0x21a, 0x4)

11:26:24 executing program 0:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_LOOPBACK(r0, 0x65, 0x3, &(0x7f00000001c0), 0x4)

[  467.550262][ T6352]     553627648-553639935: 0000000000000000
11:26:24 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

[  467.600324][ T6352]     553639936-553627647: ffff88807bda78c0
[  467.633330][ T6352]     553627648-553644031: ffff88807bda79a0
11:26:24 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000140)={r0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "294d0d470ed8946b7962be5ee48b5726d3fad4ee60c2ba011f13903e25ef4999aaad5c2124c2d35196d501ea5be8edce52723c91205e78f44b07d5955b5575d0", "806e4de25e4dcb4fbfea548acb77d67f19996238423d6c323805faaba2036174d223bc0aa0b10e158bdb788283428398044a4f5f569f20e4a34c5575e85efd2a", "8cc0bfce72a4b76d46b235e052ba8725f19b4a014927a8b16b3989adee6a494f"}})

11:26:24 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

11:26:24 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000000)=ANY=[@ANYBLOB="00003800b3b153ca6a491a518a973ba25339f0e50b616bc560c676ffffc279125945b9ebf2c6de0900be1406000000000000003ca4"])

11:26:24 executing program 5:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
sendmsg$can_raw(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@canfd={{}, 0x0, 0x0, 0x0, 0x0, "13b8cde646342eb8607f5d81773ca0fcb403ebf89d864eb2c0b67550f162a0af3313074c0c7621d7278c6e69dd3e9eeb03cf212f79bbae1925e40e950f27e187"}, 0x48}}, 0x0)

11:26:24 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000f00)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0)
getsockopt$inet_dccp_int(r0, 0x21, 0x0, 0x0, 0x0)

11:26:24 executing program 0:
add_key$fscrypt_v1(&(0x7f00000028c0), 0x0, &(0x7f0000002940)={0x0, "66623bd9d5e72a7dcb79043f98d0c4bad62277a7fea83348ff4f823cb876599f5fe2cd4866b2f33c884bf5582ecf7ab3e1881498ea847cb6ca99c5f3f87749e2"}, 0x48, 0xfffffffffffffffd)

[  467.705966][ T6352]     553644032-553648127: ffff8880216d6b60
[  467.734104][ T6352]     553648128-553652223: ffff88801fb9b7e0
11:26:24 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@bloom_filter={0x1e, 0x0, 0x10000, 0x3, 0x0, 0x1}, 0x48)

11:26:24 executing program 5:
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000100)={{0x0, 0x0, 0xffffffffffffffff}})

[  467.777945][ T6352]     553652224-116809400319: 0000000000000000
11:26:24 executing program 0:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000480)=[{}], &(0x7f00000004c0)=0x8)

11:26:24 executing program 3:
r0 = syz_open_dev$loop(&(0x7f00000003c0), 0x0, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000040), 0x81, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000140)={r1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, "00dca086d78425eb3828b9cbc8613ce4fdabe4e98ddaf5636fade5803ef351dfa3606a3a2034c6c00ca822c264b08e6bc1259e468bde49fec499833ca5b9c618", "ec94d0f11757cdac4cf62447010446cc5f221045a47cf6f94ce132fb012eefa6e58733647021b063612745b3acf26087aac0350c931ee369a0eed78754fbdddc", "f080074499db574d433329adf7dfbdeed4daf2e22b3bfbb4b724c8251269dc69"}})

[  467.820143][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  467.869086][ T6352]     116813594624-93825005334527: 0000000000000000
[  467.876285][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  467.883484][ T6352]     93825005473792-140593359482879: 0000000000000000
[  467.891110][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:26:25 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
ioctl$BLKGETSIZE(r0, 0x40086602, 0x0)

11:26:25 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

[  467.898094][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  467.953315][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  467.960736][ T6352]     140593367875584-140593369972735: ffff88802866f700
11:26:25 executing program 3:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
ioctl$BLKIOOPT(r0, 0x40101287, 0x0)

11:26:25 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
ioctl$BLKGETSIZE(r0, 0x1265, 0x0)

11:26:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000000)=ANY=[@ANYBLOB="00003800b3b153ca6a491a518a973ba25339f0e50b616bc560c676ffffc279125945b9ebf2c6de0900be1406000000000000003ca4"])
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000000)=ANY=[@ANYBLOB="00003800b3b153ca6a491a518a973ba25339f0e50b616bc560c676ffffc279125945b9ebf2c6de0900be1406000000000000003ca4"]) (async)

[  467.969161][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  467.990087][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  468.006631][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
11:26:25 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@bloom_filter={0x1e, 0x0, 0x10000, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x4}, 0x48)

[  468.069797][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  468.100543][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  468.111066][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  468.120954][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  468.127953][ T6352]     140593381670912-140593381675007: 0000000000000000
[  468.135277][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  468.142639][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  468.149811][ T6352]     140593382076416-140593382096895: 0000000000000000
[  468.157756][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
11:26:25 executing program 1:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000000), 0x2, 0x0)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000000140)={r0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d0448bc8117a0a7ae9da2b87929dcb9bdccd8581ef7a28642bbe981e74dee902125de116f47b9e9a5aa854da8baec8ede8b32c3108caf6047c5eb197775bf567", "9d4f4e61a9f1264a165345a043057a002de48b817357a961781c4d3b5880fde6f9e46b3ba0b37a1e911e488d0ce0c3bc6af0bd6034de6084dea55c620f47f969", "1d7b6aff0f42956bf83169316fd3d55ddccef03c1484027a444963a736185b99"}})

11:26:25 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x7, &(0x7f0000000100)=@framed={{}, [@map_idx, @map_val]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

11:26:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000580)={'vlan0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$team(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)={0x20, r3, 0x22d, 0x0, 0x0, {}, [{{0x8, 0x1, r1}, {0x4}}]}, 0x20}}, 0x0)

11:26:25 executing program 0:
r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x0)
ioctl$BLKBSZSET(r0, 0x40081271, &(0x7f00000000c0))

[  468.166456][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  468.219261][ T6352]     140593393942528-140593395646463: 0000000000000000
[  468.226501][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  468.233572][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  468.240643][ T6352]     140593395781632-140727606853631: 0000000000000000
[  468.247625][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  468.254775][ T6352]     140727606988800-140727607586815: 0000000000000000
[  468.261867][ T6352]     140727607586816-140727607603199: ffff88806863a460
11:26:25 executing program 4:
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
ioctl$BLKSECDISCARD(r0, 0x127d, 0x0)

11:26:25 executing program 3:
creat(&(0x7f0000000440)='./file0\x00', 0x0)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000cc0)='./file0\x00', &(0x7f0000000d00), &(0x7f0000000d40)={'L+'}, 0x16, 0x0)

[  468.277203][ T6352]     140727607603200-140727607611391: ffff88806863a540
11:26:25 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002bc0)={0x11, 0x4, &(0x7f0000002a80)=@framed={{}, [@jmp]}, &(0x7f0000002ac0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000002b40), 0x10}, 0x80)

[  468.326624][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  468.347758][ T6352] Pass: 9151317 Run:9151457
[  468.355472][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  468.365330][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  468.375425][ T6352] Call Trace:
[  468.378736][ T6352]  <TASK>
[  468.381696][ T6352]  dump_stack_lvl+0xd1/0x138
[  468.386339][ T6352]  mt_find.cold+0x8b/0x90
[  468.390722][ T6352]  ? mas_find+0x1d0/0x1d0
[  468.395111][ T6352]  find_vma+0x10c/0x1b0
[  468.399301][ T6352]  ? can_vma_merge_before+0x390/0x390
[  468.404713][ T6352]  ? walk_page_test+0x78/0x180
[  468.409524][ T6352]  walk_page_range+0x2b1/0x4a0
[  468.414332][ T6352]  ? __walk_page_range+0x780/0x780
[  468.419511][ T6352]  mlock_fixup+0x650/0x810
[  468.423984][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  468.429237][ T6352]  ? mlock_fixup+0x810/0x810
[  468.433895][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  468.439857][ T6352]  do_mlock+0x25a/0x6d0
[  468.444069][ T6352]  ? folio_evictable+0x270/0x270
[  468.449063][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  468.455006][ T6352]  __x64_sys_mlock+0x59/0x80
[  468.459643][ T6352]  do_syscall_64+0x39/0xb0
[  468.464109][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  468.470036][ T6352] RIP: 0033:0x7fde7288c0c9
[  468.474473][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  468.494112][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  468.502566][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  468.510568][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  468.518566][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  468.526569][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  468.534571][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  468.542598][ T6352]  </TASK>
[  468.628311][ T6352] index not increased! 20ffb000 <= 20ffb000
[  468.634653][ T6352] BUG at mt_find:6473 (1)
[  468.639162][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  468.705668][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  468.747124][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  468.801628][ T6352]     0-536866815: 0000000000000000
[  468.807023][ T6352]     536866816-536870911: ffff88807cef72a0
[  468.813862][ T6352]     536870912-553627647: ffff88801fb9b700
[  468.821253][ T6352]     553627648-553639935: 0000000000000000
[  468.827189][ T6352]     553639936-553627647: ffff88807bda78c0
[  468.838602][ T6352]     553627648-553644031: ffff88807bda79a0
[  468.844651][ T6352]     553644032-553648127: ffff8880216d6b60
[  468.850639][ T6352]     553648128-553652223: ffff88801fb9b7e0
11:26:25 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:25 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000000)=ANY=[@ANYBLOB="00003800b3b153ca6a491a518a973ba25339f0e50b616bc560c676ffffc279125945b9ebf2c6de0900be1406000000000000003ca4"])

11:26:25 executing program 3:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, &(0x7f0000000f80)={&(0x7f0000000e80)={0x24, @short}, 0x14, &(0x7f0000000f40)={0x0}}, 0x0)

11:26:25 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

11:26:25 executing program 0:
bpf$BPF_BTF_LOAD(0x21, 0x0, 0x0)

11:26:25 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x29, 0x30, 0x0, 0x300)

11:26:26 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  468.856557][ T6352]     553652224-116809400319: 0000000000000000
[  468.862833][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  468.869282][ T6352]     116813594624-93825005334527: 0000000000000000
11:26:26 executing program 3:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

11:26:26 executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_buf(r0, 0x107, 0x12, &(0x7f0000000000)="fa7d7138", 0x4)

[  468.924215][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  468.965464][ T6352]     93825005473792-140593359482879: 0000000000000000
11:26:26 executing program 1:
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000001640)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
getpeername$l2tp6(r0, 0x0, 0x0)

11:26:26 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x29, 0x10, 0x0, 0x0)

11:26:26 executing program 3:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  469.038355][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  469.088062][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  469.214375][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  469.226741][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  469.238102][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  469.245501][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  469.258016][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  469.265404][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  469.272748][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  469.280170][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  469.287205][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  469.295267][ T6352]     140593381670912-140593381675007: 0000000000000000
[  469.302476][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  469.309491][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  469.316764][ T6352]     140593382076416-140593382096895: 0000000000000000
[  469.325458][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  469.332574][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  469.382526][ T6352]     140593393942528-140593395646463: 0000000000000000
[  469.389652][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  469.397536][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  469.404709][ T6352]     140593395781632-140727606853631: 0000000000000000
[  469.412052][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  469.419123][ T6352]     140727606988800-140727607586815: 0000000000000000
[  469.426250][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  469.434120][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  469.441215][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  469.448614][ T6352] Pass: 9160108 Run:9160249
[  469.453193][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  469.463010][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  469.473057][ T6352] Call Trace:
[  469.476328][ T6352]  <TASK>
[  469.479266][ T6352]  dump_stack_lvl+0xd1/0x138
[  469.483866][ T6352]  mt_find.cold+0x8b/0x90
[  469.488203][ T6352]  ? mas_find+0x1d0/0x1d0
[  469.492561][ T6352]  find_vma+0x10c/0x1b0
[  469.496734][ T6352]  ? can_vma_merge_before+0x390/0x390
[  469.502115][ T6352]  ? walk_page_test+0x78/0x180
[  469.506885][ T6352]  walk_page_range+0x2b1/0x4a0
[  469.511670][ T6352]  ? __walk_page_range+0x780/0x780
[  469.516839][ T6352]  mlock_fixup+0x650/0x810
[  469.521309][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  469.526553][ T6352]  ? mlock_fixup+0x810/0x810
[  469.531204][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  469.537149][ T6352]  do_mlock+0x25a/0x6d0
[  469.541340][ T6352]  ? folio_evictable+0x270/0x270
[  469.546287][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  469.552195][ T6352]  __x64_sys_mlock+0x59/0x80
[  469.556804][ T6352]  do_syscall_64+0x39/0xb0
[  469.561240][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  469.567163][ T6352] RIP: 0033:0x7fde7288c0c9
[  469.571606][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  469.591219][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  469.599644][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  469.607622][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  469.615598][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  469.623570][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  469.631543][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  469.639536][ T6352]  </TASK>
[  469.647938][ T6352] index not increased! 20ffb000 <= 20ffb000
[  469.654053][ T6352] BUG at mt_find:6473 (1)
[  469.658413][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  469.667305][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  469.705071][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  469.757370][ T6352]     0-536866815: 0000000000000000
[  469.762879][ T6352]     536866816-536870911: ffff88807cef72a0
[  469.768903][ T6352]     536870912-553627647: ffff88801fb9b700
[  469.774951][ T6352]     553627648-553639935: 0000000000000000
[  469.781020][ T6352]     553639936-553627647: ffff88807bda78c0
[  469.787050][ T6352]     553627648-553644031: ffff88807bda79a0
[  469.793089][ T6352]     553644032-553648127: ffff8880216d6b60
[  469.799063][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  469.805074][ T6352]     553652224-116809400319: 0000000000000000
[  469.812635][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  469.819165][ T6352]     116813594624-93825005334527: 0000000000000000
[  469.825896][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  469.832836][ T6352]     93825005473792-140593359482879: 0000000000000000
[  469.839887][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:26:27 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:27 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x29, 0x1b, 0x0, 0x300)

11:26:27 executing program 1:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x14, 0x0, 0x54})

11:26:27 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

11:26:27 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @ioapic={0x1000, 0x5a27, 0x10001, 0x4, 0x0, [{0x8b, 0x4, 0x3, '\x00', 0xff}, {0x8, 0x6, 0x8, '\x00', 0xe1}, {0x0, 0x3, 0x4, '\x00', 0x80}, {0x3, 0x7f, 0x1}, {0x25, 0x7b, 0x9, '\x00', 0x75}, {0x7, 0xb3, 0x5, '\x00', 0x7f}, {0x1f, 0x1, 0x8, '\x00', 0x1f}, {0x85, 0x8, 0xcf, '\x00', 0xfd}, {0x20, 0xfd, 0x9, '\x00', 0x7e}, {0x1f, 0x1f, 0x6, '\x00', 0x5}, {0x4, 0x1, 0x6, '\x00', 0xf9}, {0x8, 0x9, 0x3, '\x00', 0x3f}, {0x1, 0xff, 0x1, '\x00', 0x3}, {0x5, 0xf8, 0x5f, '\x00', 0x80}, {0x1, 0x8, 0x81}, {0xe1, 0x5, 0x4, '\x00', 0x96}, {0x7c, 0x6, 0x2, '\x00', 0x7}, {0x0, 0x5, 0x0, '\x00', 0x3f}, {0x0, 0xff, 0x8}, {0x9, 0x9, 0x2, '\x00', 0x3}, {0x1, 0x20, 0x40, '\x00', 0x2}, {0xa, 0x5, 0x8, '\x00', 0x8b}, {0x80, 0xf8, 0x9, '\x00', 0x3f}, {0x4, 0x6, 0x7f, '\x00', 0x8}]}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000140)="64ca0400440f20c0350c000000440f22c066baf80cb82ba42f8bef66bafc0cecdf9c59fbff00000f6fb706000000f466baf80cb828b66084ef66bafc0cedf30fc735a1e400000f07b805000000b9c30000000f01d9", 0x55}], 0x1, 0x69, &(0x7f00000000c0)=[@dstype3={0x7, 0x7}, @cr0={0x0, 0x10}], 0x2)
r3 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
ioctl$KVM_GET_NR_MMU_PAGES(r3, 0xae45, 0x38)

11:26:27 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r0)

[  469.846909][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
11:26:27 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000280)={&(0x7f0000000180), 0xfffffffffffffd91, &(0x7f0000000240)={&(0x7f0000000440)={0x70, 0x0, 0x0, 0x0, 0x0, {}, [@NBD_ATTR_BACKEND_IDENTIFIER={0x0, 0xa, 'team\x00'}, @NBD_ATTR_CLIENT_FLAGS, @NBD_ATTR_SOCKETS={0x24, 0x7, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}]}, @NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc}, @NBD_ATTR_TIMEOUT={0xc}]}, 0x70}}, 0x0)

[  469.931927][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
11:26:27 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

11:26:27 executing program 3:
bpf$BPF_BTF_LOAD(0x1e, 0x0, 0x0)

11:26:27 executing program 4:
write$rfkill(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  469.974019][ T6352]     140593367875584-140593369972735: ffff88802866f700
11:26:27 executing program 4:
write$rfkill(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

11:26:27 executing program 4:
write$rfkill(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  470.041571][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  470.066235][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  470.081259][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  470.099107][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  470.121411][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  470.128562][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  470.180411][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  470.187417][ T6352]     140593381670912-140593381675007: 0000000000000000
[  470.196388][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  470.203745][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  470.224489][ T6352]     140593382076416-140593382096895: 0000000000000000
[  470.235995][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  470.249031][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  470.309953][ T6352]     140593393942528-140593395646463: 0000000000000000
[  470.317061][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  470.338623][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  470.347237][ T6352]     140593395781632-140727606853631: 0000000000000000
[  470.364378][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  470.375614][ T6352]     140727606988800-140727607586815: 0000000000000000
[  470.388173][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  470.399381][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  470.416179][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  470.428833][ T6352] Pass: 9167315 Run:9167457
[  470.445286][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  470.455284][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  470.465371][ T6352] Call Trace:
[  470.468675][ T6352]  <TASK>
[  470.471627][ T6352]  dump_stack_lvl+0xd1/0x138
[  470.476271][ T6352]  mt_find.cold+0x8b/0x90
[  470.480646][ T6352]  ? mas_find+0x1d0/0x1d0
[  470.485039][ T6352]  find_vma+0x10c/0x1b0
[  470.489227][ T6352]  ? can_vma_merge_before+0x390/0x390
[  470.494637][ T6352]  ? walk_page_test+0x78/0x180
[  470.499459][ T6352]  walk_page_range+0x2b1/0x4a0
[  470.504269][ T6352]  ? __walk_page_range+0x780/0x780
[  470.509445][ T6352]  mlock_fixup+0x650/0x810
[  470.513923][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  470.519171][ T6352]  ? mlock_fixup+0x810/0x810
[  470.523822][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  470.529766][ T6352]  do_mlock+0x25a/0x6d0
[  470.533970][ T6352]  ? folio_evictable+0x270/0x270
[  470.538965][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  470.544902][ T6352]  __x64_sys_mlock+0x59/0x80
[  470.549543][ T6352]  do_syscall_64+0x39/0xb0
[  470.554008][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  470.559945][ T6352] RIP: 0033:0x7fde7288c0c9
[  470.564386][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  470.584031][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  470.592486][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  470.600492][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  470.608482][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  470.616477][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  470.624475][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  470.632500][ T6352]  </TASK>
[  470.641942][ T6352] index not increased! 20ffb000 <= 20ffb000
[  470.647889][ T6352] BUG at mt_find:6473 (1)
[  470.652700][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  470.661556][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  470.698878][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  470.754685][ T6352]     0-536866815: 0000000000000000
[  470.760312][ T6352]     536866816-536870911: ffff88807cef72a0
[  470.772104][ T6352]     536870912-553627647: ffff88801fb9b700
[  470.781510][ T6352]     553627648-553639935: 0000000000000000
[  470.789144][ T6352]     553639936-553627647: ffff88807bda78c0
11:26:27 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:27 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000200)={0x38, 0x5, r2, 0x0, <r3=>0xffffffffffffffff})
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES(r4, 0x3ba0, &(0x7f0000000100)={0x38, 0x7, r3})

11:26:27 executing program 1:
syz_mount_image$fuse(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000280)={{}, 0x2c, {}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {}, 0x2c, {[{@default_permissions}, {}, {@allow_other}, {@blksize}, {@default_permissions}], [{@euid_lt}]}}, 0x0, 0x0, 0x0)

11:26:27 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  470.795809][ T6352]     553627648-553644031: ffff88807bda79a0
[  470.808896][ T6352]     553644032-553648127: ffff8880216d6b60
[  470.816580][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  470.823184][ T6352]     553652224-116809400319: 0000000000000000
[  470.840207][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
11:26:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @ioapic={0x1000, 0x5a27, 0x10001, 0x4, 0x0, [{0x8b, 0x4, 0x3, '\x00', 0xff}, {0x8, 0x6, 0x8, '\x00', 0xe1}, {0x0, 0x3, 0x4, '\x00', 0x80}, {0x3, 0x7f, 0x1}, {0x25, 0x7b, 0x9, '\x00', 0x75}, {0x7, 0xb3, 0x5, '\x00', 0x7f}, {0x1f, 0x1, 0x8, '\x00', 0x1f}, {0x85, 0x8, 0xcf, '\x00', 0xfd}, {0x20, 0xfd, 0x9, '\x00', 0x7e}, {0x1f, 0x1f, 0x6, '\x00', 0x5}, {0x4, 0x1, 0x6, '\x00', 0xf9}, {0x8, 0x9, 0x3, '\x00', 0x3f}, {0x1, 0xff, 0x1, '\x00', 0x3}, {0x5, 0xf8, 0x5f, '\x00', 0x80}, {0x1, 0x8, 0x81}, {0xe1, 0x5, 0x4, '\x00', 0x96}, {0x7c, 0x6, 0x2, '\x00', 0x7}, {0x0, 0x5, 0x0, '\x00', 0x3f}, {0x0, 0xff, 0x8}, {0x9, 0x9, 0x2, '\x00', 0x3}, {0x1, 0x20, 0x40, '\x00', 0x2}, {0xa, 0x5, 0x8, '\x00', 0x8b}, {0x80, 0xf8, 0x9, '\x00', 0x3f}, {0x4, 0x6, 0x7f, '\x00', 0x8}]}}) (async, rerun: 64)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async, rerun: 64)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async, rerun: 64)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000140)="64ca0400440f20c0350c000000440f22c066baf80cb82ba42f8bef66bafc0cecdf9c59fbff00000f6fb706000000f466baf80cb828b66084ef66bafc0cedf30fc735a1e400000f07b805000000b9c30000000f01d9", 0x55}], 0x1, 0x69, &(0x7f00000000c0)=[@dstype3={0x7, 0x7}, @cr0={0x0, 0x10}], 0x2) (async, rerun: 64)
r3 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
ioctl$KVM_GET_NR_MMU_PAGES(r3, 0xae45, 0x38)

11:26:28 executing program 3:
io_uring_setup(0x7c3e, &(0x7f0000000000)={0x0, 0x2b78, 0x90a})

11:26:28 executing program 0:
r0 = socket(0x2, 0xa, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000000000), r0)

11:26:28 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  470.873249][ T6352]     116813594624-93825005334527: 0000000000000000
[  470.900704][ T8076] fuse: Bad value for 'fd'
11:26:28 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f0000000600)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000040)={0x550, 0x0, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8}]}, @TIPC_NLA_NODE={0x10c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xec, 0x3, "07a0688f17998754e4e99e1205a884dd35290753f5ffd24a5d8661d63e8210079d39ce80cc63a4c2b44891a94e154c0dc44d765a05eddeeadaa5f472adab52e1c7881add2981cb88e443161cb8c540b416e648bf274ebbc5e07ccbc98786ecc68ba0b635c7026436b4945f980cdd0061ca0ba33218a9a51125f9b00c60dd30dfadbcf7f39f4e248a8afa81752718d1bf0b2fe40f3c798a797dc38443206d0929d324a57dbff2f7f4a632719a26e73c979b6234b03d10a12759e1755d63303d18fd62402b4284570b88dec011664dc8ab2b9b633cbb1296c114587fb8e48c397e79323e8f74aa3e7c"}, @TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ID={0x10, 0x3, "6b47e693d7a4ba99471a31fa"}]}, @TIPC_NLA_LINK={0x58, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3f}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}]}, @TIPC_NLA_MEDIA={0x88, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe687}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x90}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffff}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_NODE={0x2f0, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xce, 0x3, "3776af411063d3d538b929aaf1daeb691a1cae4f1e21e1833f2af0234f466f0a2eb8144a0c663c344869fcf73e3a53d1f3c7fc2ec805c252bba43278650ae0e7d101abb5797ab66f614d495079002fa53b8c58b6d7d966902da230cd2b20486d7b18df2cc77aa121bfd76d0dda792dddb18fdd678e538c8c4c6c7245bd0cfd8388787cd0eb83a58d109e57d7981cc79e14f38e438d4cc99b68b06c3a4bd07010eb0ea3017d9f246fdc015987e86c2751ede8ccfc8c7232997b148ba03dcb7f2e55b2cca533a1e6bc393f"}, @TIPC_NLA_NODE_KEY={0x49, 0x4, {'gcm(aes)\x00', 0x21, "5d5f98f228397d0ba3482d844164ff8d33a8f7c068b6a5c8ae1a4ae0467cf71271"}}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_ID={0x8e, 0x3, "aa7dcb43bcf63bd19c977da8ff3509e8f63a4c1834ccde7780df8c371e43c36b6d747a5bce4dcb3f1e6113b791d89784240f8d004eac50acac8968467ef4914b19dcb7e1f062c235179bc0cf4225ac72e641d47860d6cedea2e5c243214d240546eb66723b7967073c067e7cbcfc4dbd55baa5a499072136c9ef2f87885c78dbe022b4e9b99bb3614d83"}, @TIPC_NLA_NODE_ID={0x42, 0x3, "273c589d2869f7be82e56e5f111c57e4177c5515f19c1f39e2359bfef66cc550547ed0dd7fa529adf24253efb64b17c0ff4d403af1216da38d48ad87e305"}, @TIPC_NLA_NODE_ID={0xdd, 0x3, "ea400adbc19b64e6e47ea0ca7789de997bde5955b8f104de828ce6abe5925c58b812902e5e2f6d47b505f78845dcef73cd5550b0d72d5bce5eea9ca0a9dcbf0191a546be692cf5ab82d8c0a8716856b767b49fa93e619a86e5f3528f92c330fcd06b980302e106760945726fbceffed50c9bdde2555d95164f8bdf1c1f67f37aac27d8727628ff93a47bded51dd81cbfe17bf37d2dc107a3c6617814289632d67c69317b51486cbbb0056549b594f5f8758dcf1d6491f4f1da4301aa53452d94d08a9d5e16c6fefbd3ddc4058fa03c874363f5507459bfd5f0"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xfff}]}, @TIPC_NLA_BEARER={0x30, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @multicast1}}, {0x14, 0x2, @in={0x2, 0xbbf, @dev={0xac, 0x14, 0x14, 0xa}}}}}]}, @TIPC_NLA_NODE={0x1c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xfffffc01}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x550}, 0x1, 0x0, 0x0, 0x80}, 0x10)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
mmap$KVM_VCPU(&(0x7f0000ffd000/0x3000)=nil, 0x930, 0x2, 0x100010, r1, 0x0)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x1c, 0x0, 0x800, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x1}]}, 0x1c}}, 0x80)
r2 = socket$kcm(0x29, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f0000000740)={r0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000780))
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x30, 0x0, 0x4, 0x70bd2c, 0x25dfdbff, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x5}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004090}, 0x44840)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f00000008c0)={<r4=>r3})
sendmsg$kcm(r2, &(0x7f0000001f00)={&(0x7f0000000900)=@generic={0xfdfa7dd3576181d5, "072ef7d61ae84082e9039c85cb5beecf37687575bcf9c45615a48f2436a19206365c8909f5dc38c2de1abcffc84f25b0f101c0304d025d3dd6965f859ebf6559ec3c55b7a562a1ffa053d88956d53e652157052b6931d5f840dd1939195fa8b99fc26cbc4cab32e3db084406b7467a5717a1df82a78fd93ce227fdc688ae"}, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000980)="cf0537ddf96a3abc00546d836323fb18528f6f593dda62429a296d9ca5ee31424864c53a729fd6719fb7282de2fc481fd4facb8fea35e4613f9f32ddd94f769e77cef0ad6c", 0x45}, {&(0x7f0000000a00)="8ed7c26c1864ae932fc0320f3d629e390961e48926f759b7a0c8067ae22f543cd9470d", 0x23}], 0x2, &(0x7f0000000a80)=[{0x50, 0x20, 0x401, "0e3056a7a7ec73c82b1f6e7f2e2b6f383728b06b50cc92d01d481ee1cf6272122f547f64031c64696f918ae002846620c7da63bf4bd683f2d2cc1e"}, {0x40, 0x118, 0x6, "89b234eca910b97b7c5cc465c01c8553bbee48732bfc3cbf46febb68f7fb7d68d439c33d4c2f188aeac5a0429799"}, {0xa8, 0x104, 0x432c0408, "12b2cb24134f21992d2af6ba3e440f2caef933e821d564d773b4afbb0ac6ed295263c1ed0f80b2108ea61379eb98412a3971341efc29106bc227a00d5950a197675c1c50f059273d04f6460a5e2cc8c743add73073391e2686b5c2c0d5c7f569ac1e85b37e0fd5fc3efe0d432b92ceeaa04e69c1b0723410e3480643165cd1ad79539d4b393d2eb17c3e82ebed0f66f5eb772079dab74f"}, {0x110, 0x10a, 0x200, "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"}, {0x78, 0x116, 0x6, "0944e2d6af1ef22c28845c05a7679d42214e4aaa7376ab8634b718eec0c00eda6d81bf1290bfe33cfff88df43a34c67e050b77d69a266ce3fd4786b4a83b13e941730633ffce9cc4f7b914859def3424368c63d3248e701891e29fa70608e55d5454ab3d88a18ed8"}, {0x88, 0xff, 0x1, "2e193b48cfd79b03f7bf5f8b3fe6fc0a2406a52b51558dac876a3ec6368b00dae1a593e2e8985034caac759ac7dbfd9566d961beea8b048a4f07512a7ba210d5407f3c9045b36d32fa3709ccba927a5a1fc2b8bc66658bace9b93036f83dd8db3d6e739606fc71a18efc3b22feea2beee91b05b2be95"}, {0x40, 0x116, 0x9, "df785318ffaea53612a91ffd47fd3b2683a5ff8082cc0fe86fc3ab1ecc04b79da5889e4aae38da157c64db"}, {0xb0, 0x110, 0x9, "79c860f4d1f22373c4d56e626c5c8f9c44c73168e643bc88f664e6001b575b1ec0606cf8e1a938e862f315ed9481e7f3fe9799b91929b74037d305c993d3f3a65b52a62a74016d080901b08f40300a17983a1cba60ffa6f4ebbfaa28d5b91a11044a83cecab33893ce7c61a76b5469e55b74a4889e15d237e806419df323306d8a37c600941f1e53e95bc394cafa1314cd9da2ff78be01aea42d1de308ed"}, {0x1010, 0x103, 0x9, "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"}], 0x1448}, 0x24000004)
r5 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000001f40), 0x8c501, 0x0)
ioctl$DRM_IOCTL_SG_FREE(r5, 0x40106439, &(0x7f0000001f80)={0x7fffffffffffffff})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000002000), r4)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r6, &(0x7f00000020c0)={&(0x7f0000001fc0), 0xc, &(0x7f0000002080)={&(0x7f0000002040)={0x24, r7, 0x800, 0x70bd2a, 0x25dfdbfc, {{}, {}, {0x8, 0x11, 0x3}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4008881}, 0x40000)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$inet6_udplite(0xa, 0x2, 0x88)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SET_NETID(r8, &(0x7f00000021c0)={&(0x7f0000002100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000002180)={&(0x7f0000002140)={0x24, r7, 0x100, 0x70bd27, 0x25dfdbff, {{}, {}, {0x8, 0x2, 0xfffffff8}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x6ef4bd4decb57229}, 0x4)
ioctl$USBDEVFS_GETDRIVER(0xffffffffffffffff, 0x41045508, &(0x7f0000002200)={0x1, "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"})
ioctl$DRM_IOCTL_SG_FREE(r5, 0x40106439, &(0x7f0000002340)={0x7f})
syz_open_procfs$namespace(0x0, &(0x7f0000002380)='ns/time_for_children\x00')
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_FD(r5, 0xc01064c2, &(0x7f00000023c0))
sendmsg$TIPC_CMD_RESET_LINK_STATS(r6, &(0x7f00000024c0)={&(0x7f0000002400)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000002480)={&(0x7f0000002440)={0x28, r7, 0x800, 0x70bd27, 0x25dfdbfc, {{}, {}, {0xc, 0x14, 'syz0\x00'}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
ioctl$IOCTL_VMCI_NOTIFICATIONS_RECEIVE(0xffffffffffffffff, 0x7a6, &(0x7f0000002500)={0x4, 0x2, 0x3, 0x80000000, 0xd64, 0x5})
sendmsg$TIPC_CMD_SET_LINK_PRI(r6, &(0x7f0000002640)={&(0x7f0000002540)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000002600)={&(0x7f0000002580)={0x68, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {{}, {}, {0x4c, 0x18, {0x6, @media='udp\x00'}}}, ["", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x4000045)
syz_genetlink_get_family_id$nbd(&(0x7f00000026c0), 0xffffffffffffffff)

11:26:28 executing program 1:
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc)
keyctl$get_persistent(0x16, 0x0, r0)

11:26:28 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  470.928314][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
11:26:28 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x29, 0x32, 0x0, 0x0)

[  471.042547][ T6352]     93825005473792-140593359482879: 0000000000000000
[  471.069798][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  471.112828][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  471.219386][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  471.251638][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  471.266833][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  471.277885][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  471.296135][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  471.308952][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  471.317216][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  471.324489][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  471.331661][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  471.338729][ T6352]     140593381670912-140593381675007: 0000000000000000
[  471.356866][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  471.364376][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  471.371559][ T6352]     140593382076416-140593382096895: 0000000000000000
[  471.378633][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  471.385791][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  471.441233][ T6352]     140593393942528-140593395646463: 0000000000000000
[  471.450673][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  471.457953][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  471.468115][ T6352]     140593395781632-140727606853631: 0000000000000000
[  471.475387][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  471.482654][ T6352]     140727606988800-140727607586815: 0000000000000000
[  471.489806][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  471.496902][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  471.504213][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  471.512506][ T6352] Pass: 9175841 Run:9175984
[  471.517052][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  471.526871][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  471.536925][ T6352] Call Trace:
[  471.540221][ T6352]  <TASK>
[  471.543159][ T6352]  dump_stack_lvl+0xd1/0x138
[  471.547767][ T6352]  mt_find.cold+0x8b/0x90
[  471.552141][ T6352]  ? mas_find+0x1d0/0x1d0
[  471.556518][ T6352]  find_vma+0x10c/0x1b0
[  471.560693][ T6352]  ? can_vma_merge_before+0x390/0x390
[  471.566104][ T6352]  ? walk_page_test+0x78/0x180
[  471.570910][ T6352]  walk_page_range+0x2b1/0x4a0
[  471.575714][ T6352]  ? __walk_page_range+0x780/0x780
[  471.580885][ T6352]  mlock_fixup+0x650/0x810
[  471.585337][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  471.590561][ T6352]  ? mlock_fixup+0x810/0x810
[  471.595209][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  471.601146][ T6352]  do_mlock+0x25a/0x6d0
[  471.605331][ T6352]  ? folio_evictable+0x270/0x270
[  471.610388][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  471.616296][ T6352]  __x64_sys_mlock+0x59/0x80
[  471.620904][ T6352]  do_syscall_64+0x39/0xb0
[  471.625339][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  471.631241][ T6352] RIP: 0033:0x7fde7288c0c9
[  471.635663][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  471.655279][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  471.663702][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  471.671677][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  471.679650][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  471.687623][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  471.695597][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  471.703589][ T6352]  </TASK>
[  471.710218][ T6352] index not increased! 20ffb000 <= 20ffb000
[  471.716152][ T6352] BUG at mt_find:6473 (1)
11:26:28 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=0x0], &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:28 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x29, 0x5, 0x0, 0x300)

11:26:28 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

11:26:28 executing program 0:
creat(&(0x7f0000000680)='./file1\x00', 0x0)
mount$nfs4(&(0x7f0000000000)='\x00', &(0x7f0000000040)='./file1\x00', 0x0, 0x81890, 0x0)

11:26:28 executing program 1:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000140)={0x28, 0x0, 0x0, 0x2, &(0x7f0000ffb000/0x2000)=nil, 0x2000})

11:26:28 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @ioapic={0x1000, 0x5a27, 0x10001, 0x4, 0x0, [{0x8b, 0x4, 0x3, '\x00', 0xff}, {0x8, 0x6, 0x8, '\x00', 0xe1}, {0x0, 0x3, 0x4, '\x00', 0x80}, {0x3, 0x7f, 0x1}, {0x25, 0x7b, 0x9, '\x00', 0x75}, {0x7, 0xb3, 0x5, '\x00', 0x7f}, {0x1f, 0x1, 0x8, '\x00', 0x1f}, {0x85, 0x8, 0xcf, '\x00', 0xfd}, {0x20, 0xfd, 0x9, '\x00', 0x7e}, {0x1f, 0x1f, 0x6, '\x00', 0x5}, {0x4, 0x1, 0x6, '\x00', 0xf9}, {0x8, 0x9, 0x3, '\x00', 0x3f}, {0x1, 0xff, 0x1, '\x00', 0x3}, {0x5, 0xf8, 0x5f, '\x00', 0x80}, {0x1, 0x8, 0x81}, {0xe1, 0x5, 0x4, '\x00', 0x96}, {0x7c, 0x6, 0x2, '\x00', 0x7}, {0x0, 0x5, 0x0, '\x00', 0x3f}, {0x0, 0xff, 0x8}, {0x9, 0x9, 0x2, '\x00', 0x3}, {0x1, 0x20, 0x40, '\x00', 0x2}, {0xa, 0x5, 0x8, '\x00', 0x8b}, {0x80, 0xf8, 0x9, '\x00', 0x3f}, {0x4, 0x6, 0x7f, '\x00', 0x8}]}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000140)="64ca0400440f20c0350c000000440f22c066baf80cb82ba42f8bef66bafc0cecdf9c59fbff00000f6fb706000000f466baf80cb828b66084ef66bafc0cedf30fc735a1e400000f07b805000000b9c30000000f01d9", 0x55}], 0x1, 0x69, &(0x7f00000000c0)=[@dstype3={0x7, 0x7}, @cr0={0x0, 0x10}], 0x2)
r3 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r3, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
ioctl$KVM_GET_NR_MMU_PAGES(r3, 0xae45, 0x38)

[  471.729065][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  471.737944][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:26:28 executing program 0:
creat(&(0x7f0000000680)='./file1\x00', 0x0)
mount(&(0x7f0000000000)=@sg0, &(0x7f0000000040)='./file1\x00', &(0x7f0000000140)='romfs\x00', 0x0, 0x0)

[  471.792939][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:26:28 executing program 3:
creat(&(0x7f0000000680)='./file1\x00', 0x0)
lchown(&(0x7f0000000000)='./file1\x00', 0xee01, 0x0)
lchown(&(0x7f00000002c0)='./file1\x00', 0xffffffffffffffff, 0xee01)

11:26:28 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  471.857914][ T6352]     0-536866815: 0000000000000000
11:26:29 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
write$rfkill(r0, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  471.903469][ T6352]     536866816-536870911: ffff88807cef72a0
[  471.930326][ T8122] MTD: Couldn't look up '/dev/sg0': -15
[  471.944818][ T6352]     536870912-553627647: ffff88801fb9b700
11:26:29 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0x84, 0x0, 0x0)

11:26:29 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0xfd}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  471.993678][ T6352]     553627648-553639935: 0000000000000000
[  472.051439][ T6352]     553639936-553627647: ffff88807bda78c0
[  472.094989][ T6352]     553627648-553644031: ffff88807bda79a0
[  472.124630][ T6352]     553644032-553648127: ffff8880216d6b60
[  472.131280][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  472.142095][ T6352]     553652224-116809400319: 0000000000000000
[  472.174455][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  472.183610][ T6352]     116813594624-93825005334527: 0000000000000000
[  472.193798][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  472.202139][ T6352]     93825005473792-140593359482879: 0000000000000000
[  472.209363][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  472.217293][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  472.275003][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  472.282179][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  472.289151][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  472.296456][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  472.303533][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  472.310590][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  472.317580][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  472.324669][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  472.332326][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  472.339337][ T6352]     140593381670912-140593381675007: 0000000000000000
[  472.346573][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  472.353848][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  472.361404][ T6352]     140593382076416-140593382096895: 0000000000000000
[  472.369353][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  472.376813][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  472.429972][ T6352]     140593393942528-140593395646463: 0000000000000000
[  472.437074][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  472.444603][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  472.452271][ T6352]     140593395781632-140727606853631: 0000000000000000
[  472.459343][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  472.466646][ T6352]     140727606988800-140727607586815: 0000000000000000
[  472.474930][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  472.482052][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  472.489069][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  472.496542][ T6352] Pass: 9182296 Run:9182440
[  472.501132][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  472.510962][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  472.521049][ T6352] Call Trace:
[  472.524338][ T6352]  <TASK>
[  472.527260][ T6352]  dump_stack_lvl+0xd1/0x138
[  472.531870][ T6352]  mt_find.cold+0x8b/0x90
[  472.536262][ T6352]  ? mas_find+0x1d0/0x1d0
[  472.540642][ T6352]  find_vma+0x10c/0x1b0
[  472.544815][ T6352]  ? can_vma_merge_before+0x390/0x390
[  472.550200][ T6352]  ? walk_page_test+0x78/0x180
[  472.555006][ T6352]  walk_page_range+0x2b1/0x4a0
[  472.559828][ T6352]  ? __walk_page_range+0x780/0x780
[  472.564972][ T6352]  mlock_fixup+0x650/0x810
[  472.569396][ T6352]  apply_vma_lock_flags+0x23d/0x350
11:26:29 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=0x0], &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:29 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xe, 0x0, 0x0)

11:26:29 executing program 4:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

11:26:29 executing program 1:
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f00000000c0)='.log\x00', 0x1011c1, 0x0)
write$rfkill(r0, &(0x7f0000000100), 0x8)
openat$incfs(0xffffffffffffff9c, &(0x7f0000000100)='.log\x00', 0x0, 0x0)

11:26:29 executing program 0:
socket$isdn_base(0x22, 0x3, 0x6)

11:26:29 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0xfd}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  472.574619][ T6352]  ? mlock_fixup+0x810/0x810
[  472.579249][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  472.585149][ T6352]  do_mlock+0x25a/0x6d0
[  472.589333][ T6352]  ? folio_evictable+0x270/0x270
[  472.594299][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  472.600239][ T6352]  __x64_sys_mlock+0x59/0x80
[  472.604876][ T6352]  do_syscall_64+0x39/0xb0
[  472.609294][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  472.615197][ T6352] RIP: 0033:0x7fde7288c0c9
[  472.619637][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  472.639536][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  472.647990][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  472.655998][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  472.664015][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
11:26:29 executing program 4:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  472.672033][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  472.680045][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  472.688073][ T6352]  </TASK>
11:26:29 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0x16, 0x0, 0x0)

11:26:29 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
recvmsg$can_raw(r0, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0)

11:26:29 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0xfd}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0xfd}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

[  472.746979][ T6352] index not increased! 20ffb000 <= 20ffb000
11:26:29 executing program 1:
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f00000000c0)='.log\x00', 0x1011c1, 0x0)
write$rfkill(r0, &(0x7f0000000100), 0x8)
openat$incfs(0xffffffffffffff9c, &(0x7f0000000100)='.log\x00', 0x0, 0x0)

11:26:30 executing program 4:
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, 0x3}, 0x8)

[  472.810778][   T27] audit: type=1804 audit(1673263589.921:14): pid=8140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2131349212/syzkaller.NizUKW/79/.log" dev="sda1" ino=1153 res=1 errno=0
[  472.814052][ T6352] BUG at mt_find:6473 (1)
[  472.904775][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  472.925610][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  473.018338][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  473.069338][ T6352]     0-536866815: 0000000000000000
[  473.077904][ T6352]     536866816-536870911: ffff88807cef72a0
[  473.098723][   T27] audit: type=1804 audit(1673263590.201:15): pid=8170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2131349212/syzkaller.NizUKW/80/.log" dev="sda1" ino=1163 res=1 errno=0
[  473.110727][ T6352]     536870912-553627647: ffff88801fb9b700
[  473.139701][ T6352]     553627648-553639935: 0000000000000000
[  473.145770][ T6352]     553639936-553627647: ffff88807bda78c0
[  473.162510][ T6352]     553627648-553644031: ffff88807bda79a0
[  473.168627][ T6352]     553644032-553648127: ffff8880216d6b60
[  473.177437][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  473.186208][ T6352]     553652224-116809400319: 0000000000000000
[  473.197512][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  473.207520][ T6352]     116813594624-93825005334527: 0000000000000000
[  473.214373][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  473.221382][ T6352]     93825005473792-140593359482879: 0000000000000000
[  473.228342][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  473.235865][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  473.293960][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  473.301560][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  473.308508][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  473.315823][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  473.324352][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  473.332487][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  473.339675][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  473.346760][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  473.353892][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  473.361073][ T6352]     140593381670912-140593381675007: 0000000000000000
[  473.368115][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  473.375246][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  473.382324][ T6352]     140593382076416-140593382096895: 0000000000000000
[  473.389322][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  473.397516][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  473.447691][ T6352]     140593393942528-140593395646463: 0000000000000000
[  473.455763][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  473.462992][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  473.470666][ T6352]     140593395781632-140727606853631: 0000000000000000
[  473.477737][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  473.484884][ T6352]     140727606988800-140727607586815: 0000000000000000
[  473.492750][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  473.499949][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  473.506997][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  473.514546][ T6352] Pass: 9190223 Run:9190368
[  473.519139][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  473.528946][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  473.538990][ T6352] Call Trace:
[  473.542258][ T6352]  <TASK>
[  473.545178][ T6352]  dump_stack_lvl+0xd1/0x138
[  473.549768][ T6352]  mt_find.cold+0x8b/0x90
[  473.554095][ T6352]  ? mas_find+0x1d0/0x1d0
[  473.558426][ T6352]  find_vma+0x10c/0x1b0
[  473.562570][ T6352]  ? can_vma_merge_before+0x390/0x390
[  473.567937][ T6352]  ? walk_page_test+0x78/0x180
[  473.572715][ T6352]  walk_page_range+0x2b1/0x4a0
[  473.577517][ T6352]  ? __walk_page_range+0x780/0x780
[  473.582656][ T6352]  mlock_fixup+0x650/0x810
[  473.587083][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  473.592279][ T6352]  ? mlock_fixup+0x810/0x810
[  473.596883][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  473.602777][ T6352]  do_mlock+0x25a/0x6d0
[  473.606973][ T6352]  ? folio_evictable+0x270/0x270
[  473.611913][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  473.617803][ T6352]  __x64_sys_mlock+0x59/0x80
[  473.622407][ T6352]  do_syscall_64+0x39/0xb0
[  473.626904][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  473.632821][ T6352] RIP: 0033:0x7fde7288c0c9
[  473.637243][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  473.656872][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  473.665288][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  473.673261][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  473.681235][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  473.689209][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  473.697180][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  473.705172][ T6352]  </TASK>
11:26:30 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=0x0], &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:30 executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x2, 0xb, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

11:26:30 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xffffffffffffff83})

11:26:30 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, 0x0, 0x0)

11:26:30 executing program 1:
select(0xfffffffffffffdfe, 0x0, 0x0, 0xfffffffffffffffe, &(0x7f0000000000)={0x77359400})

11:26:30 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x80501, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x9, 0x6}})
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f, 0x0, 0x0, 0x0, 0x0, 0x8}})

11:26:30 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000002c0)={0x14, r1, 0x71f}, 0x14}}, 0x0)

[  473.720637][ T6352] index not increased! 20ffb000 <= 20ffb000
11:26:30 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x29, 0x35, 0x0, 0x300)

11:26:30 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, 0x0, 0x0)

[  473.778269][ T6352] BUG at mt_find:6473 (1)
[  473.802981][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:26:31 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  473.859459][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  473.899693][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:26:31 executing program 1:
socketpair(0xa, 0x0, 0x3ff, &(0x7f0000000000))

11:26:31 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, 0x0, 0x0)

[  473.966947][ T6352]     0-536866815: 0000000000000000
[  473.973951][ T6352]     536866816-536870911: ffff88807cef72a0
[  473.980066][ T6352]     536870912-553627647: ffff88801fb9b700
[  473.986119][ T6352]     553627648-553639935: 0000000000000000
[  473.992124][ T6352]     553639936-553627647: ffff88807bda78c0
[  473.998102][ T6352]     553627648-553644031: ffff88807bda79a0
[  474.005220][ T6352]     553644032-553648127: ffff8880216d6b60
[  474.069980][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  474.075958][ T6352]     553652224-116809400319: 0000000000000000
[  474.101365][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  474.116914][ T6352]     116813594624-93825005334527: 0000000000000000
[  474.125253][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  474.132563][ T6352]     93825005473792-140593359482879: 0000000000000000
[  474.140342][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  474.147475][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  474.206027][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  474.215141][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  474.223111][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  474.230166][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  474.237123][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  474.244161][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  474.251262][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  474.258324][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  474.266107][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  474.273456][ T6352]     140593381670912-140593381675007: 0000000000000000
[  474.280792][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  474.287771][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  474.294824][ T6352]     140593382076416-140593382096895: 0000000000000000
[  474.301843][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  474.308776][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  474.361547][ T6352]     140593393942528-140593395646463: 0000000000000000
[  474.370881][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  474.377922][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  474.384943][ T6352]     140593395781632-140727606853631: 0000000000000000
[  474.392022][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  474.398985][ T6352]     140727606988800-140727607586815: 0000000000000000
[  474.406008][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  474.413041][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  474.420955][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  474.428357][ T6352] Pass: 9196139 Run:9196285
[  474.433063][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  474.442885][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  474.452936][ T6352] Call Trace:
[  474.456205][ T6352]  <TASK>
[  474.459127][ T6352]  dump_stack_lvl+0xd1/0x138
[  474.463721][ T6352]  mt_find.cold+0x8b/0x90
[  474.468052][ T6352]  ? mas_find+0x1d0/0x1d0
[  474.472387][ T6352]  find_vma+0x10c/0x1b0
[  474.476537][ T6352]  ? can_vma_merge_before+0x390/0x390
[  474.481907][ T6352]  ? walk_page_test+0x78/0x180
[  474.486670][ T6352]  walk_page_range+0x2b1/0x4a0
[  474.491455][ T6352]  ? __walk_page_range+0x780/0x780
[  474.496624][ T6352]  mlock_fixup+0x650/0x810
[  474.501095][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  474.506328][ T6352]  ? mlock_fixup+0x810/0x810
[  474.510926][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  474.516839][ T6352]  do_mlock+0x25a/0x6d0
[  474.521030][ T6352]  ? folio_evictable+0x270/0x270
[  474.525978][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  474.531868][ T6352]  __x64_sys_mlock+0x59/0x80
[  474.536475][ T6352]  do_syscall_64+0x39/0xb0
[  474.540918][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  474.546840][ T6352] RIP: 0033:0x7fde7288c0c9
[  474.551269][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  474.570894][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  474.579297][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  474.587266][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  474.595245][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  474.603230][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  474.611193][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  474.619196][ T6352]  </TASK>
[  474.624627][ T6352] index not increased! 20ffb000 <= 20ffb000
[  474.630615][ T6352] BUG at mt_find:6473 (1)
[  474.634963][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  474.643491][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:26:31 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:31 executing program 3:
r0 = io_uring_setup(0x765, &(0x7f0000000200))
r1 = io_uring_setup(0x2b1b, &(0x7f0000000000))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x8000000)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x20000, 0x0, 0x12, r0, 0x0)

11:26:31 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x80501, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x9, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f, 0x0, 0x0, 0x0, 0x0, 0x8}})

11:26:31 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:31 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440), 0x8)

11:26:31 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0x75, 0x0, 0x0)

[  474.680812][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:26:31 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440), 0x8)

11:26:31 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  474.781755][ T6352]     0-536866815: 0000000000000000
11:26:31 executing program 3:
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_rr_get_interval(r0, &(0x7f0000001440))

11:26:31 executing program 1:
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x10)

11:26:31 executing program 4:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0)
write$rfkill(r0, &(0x7f0000000440), 0x8)

[  474.838017][ T6352]     536866816-536870911: ffff88807cef72a0
11:26:32 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  474.892599][ T6352]     536870912-553627647: ffff88801fb9b700
[  474.951834][ T6352]     553627648-553639935: 0000000000000000
[  475.019075][ T6352]     553639936-553627647: ffff88807bda78c0
[  475.044924][ T6352]     553627648-553644031: ffff88807bda79a0
[  475.059932][ T6352]     553644032-553648127: ffff8880216d6b60
[  475.068878][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  475.078061][ T6352]     553652224-116809400319: 0000000000000000
[  475.084833][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  475.097586][ T6352]     116813594624-93825005334527: 0000000000000000
[  475.119843][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  475.126758][ T6352]     93825005473792-140593359482879: 0000000000000000
[  475.136159][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  475.146775][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  475.205488][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  475.213215][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  475.220340][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  475.227672][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  475.236465][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  475.243663][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  475.250703][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  475.257659][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  475.264649][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  475.271862][ T6352]     140593381670912-140593381675007: 0000000000000000
[  475.278827][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  475.285834][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  475.292884][ T6352]     140593382076416-140593382096895: 0000000000000000
[  475.299919][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  475.306878][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  475.358728][ T6352]     140593393942528-140593395646463: 0000000000000000
[  475.368111][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  475.378955][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  475.387769][ T6352]     140593395781632-140727606853631: 0000000000000000
[  475.395228][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  475.402630][ T6352]     140727606988800-140727607586815: 0000000000000000
[  475.409946][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  475.416983][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  475.425336][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  475.433160][ T6352] Pass: 9202586 Run:9202733
[  475.438810][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  475.448642][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  475.458866][ T6352] Call Trace:
[  475.462145][ T6352]  <TASK>
[  475.465079][ T6352]  dump_stack_lvl+0xd1/0x138
[  475.469701][ T6352]  mt_find.cold+0x8b/0x90
[  475.474057][ T6352]  ? mas_find+0x1d0/0x1d0
[  475.478410][ T6352]  find_vma+0x10c/0x1b0
[  475.482575][ T6352]  ? can_vma_merge_before+0x390/0x390
[  475.487960][ T6352]  ? walk_page_test+0x78/0x180
[  475.492794][ T6352]  walk_page_range+0x2b1/0x4a0
[  475.497576][ T6352]  ? __walk_page_range+0x780/0x780
[  475.502717][ T6352]  mlock_fixup+0x650/0x810
[  475.507172][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  475.512392][ T6352]  ? mlock_fixup+0x810/0x810
[  475.517009][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  475.522922][ T6352]  do_mlock+0x25a/0x6d0
[  475.527099][ T6352]  ? folio_evictable+0x270/0x270
[  475.532068][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  475.537975][ T6352]  __x64_sys_mlock+0x59/0x80
[  475.542585][ T6352]  do_syscall_64+0x39/0xb0
[  475.547021][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  475.552926][ T6352] RIP: 0033:0x7fde7288c0c9
[  475.557345][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  475.576960][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  475.585383][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  475.593369][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  475.601342][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  475.609315][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
11:26:32 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:32 executing program 3:
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f00000025c0)="660ff7e266baf80cb8885efb83ef66bafc0cb8f3ffffffefc4c1ce2a89180000008fe978d306c4e37502a6fc0000002f66baf80cb89c2b8b86ef66bafc0cecb8010000000f01c126642ef36f3e0f01c9c4c3112049b699", 0x57}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

11:26:32 executing program 4:
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, 0x0)

11:26:32 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:32 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x80501, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x9, 0x6}})
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f, 0x0, 0x0, 0x0, 0x0, 0x8}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x80501, 0x0) (async)
ioctl$KVM_RUN(r1, 0xae80, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x9, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f, 0x0, 0x0, 0x0, 0x0, 0x8}}) (async)

11:26:32 executing program 1:
creat(&(0x7f0000000680)='./file1\x00', 0x0)
mount(&(0x7f0000000080)=@sg0, &(0x7f00000000c0)='./file1\x00', 0x0, 0xff00, 0x0)

[  475.617287][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  475.625287][ T6352]  </TASK>
[  475.629821][ T6352] index not increased! 20ffb000 <= 20ffb000
[  475.635767][ T6352] BUG at mt_find:6473 (1)
[  475.643771][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:26:32 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:32 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

[  475.684413][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  475.751698][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:26:32 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

[  475.802685][ T6352]     0-536866815: 0000000000000000
11:26:32 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

11:26:32 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  475.828011][ T6352]     536866816-536870911: ffff88807cef72a0
11:26:33 executing program 1:
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
recvfrom$inet6(0xffffffffffffffff, &(0x7f0000000280)=""/232, 0xe8, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x400000001, 0x0, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_usb_connect$cdc_ecm(0x6, 0xe6, &(0x7f00000005c0)=ANY=[@ANYBLOB], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x800, 0x0, 0x3}, 0x20)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f000000ad80)=[{{0x0, 0x0, 0x0}}, {{&(0x7f00000096c0)={0xa, 0x4e22, 0x200, @remote}, 0x1c, 0x0}}], 0x2, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000002c0)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2}}}, 0x24}}, 0x0)
r3 = dup(0xffffffffffffffff)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f00000025c0)="660ff7e266baf80cb8885efb83ef66bafc0cb8f3ffffffefc4c1ce2a89180000008fe978d306c4e37502a6fc0000002f66baf80cb89c2b8b86ef66bafc0cecb8010000000f01c126642ef36f3e0f01c9c4c3112049b699", 0x57}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

[  475.896045][ T6352]     536870912-553627647: ffff88801fb9b700
[  475.935512][ T6352]     553627648-553639935: 0000000000000000
[  475.987493][ T6352]     553639936-553627647: ffff88807bda78c0
[  476.008123][ T6352]     553627648-553644031: ffff88807bda79a0
[  476.018664][ T6352]     553644032-553648127: ffff8880216d6b60
[  476.040354][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  476.078155][ T6352]     553652224-116809400319: 0000000000000000
[  476.088467][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  476.095708][ T6352]     116813594624-93825005334527: 0000000000000000
[  476.102996][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  476.110162][ T6352]     93825005473792-140593359482879: 0000000000000000
[  476.117148][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  476.124507][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  476.181420][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  476.188426][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  476.196216][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  476.203399][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  476.210689][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  476.217696][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  476.224781][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  476.231836][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  476.238848][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  476.245945][ T6352]     140593381670912-140593381675007: 0000000000000000
[  476.252957][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  476.261604][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  476.268598][ T6352]     140593382076416-140593382096895: 0000000000000000
[  476.276304][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  476.283500][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  476.334838][ T6352]     140593393942528-140593395646463: 0000000000000000
[  476.343357][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  476.350566][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  476.357631][ T6352]     140593395781632-140727606853631: 0000000000000000
[  476.366299][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  476.373438][ T6352]     140727606988800-140727607586815: 0000000000000000
[  476.380542][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  476.387564][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  476.394684][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  476.402243][ T6352] Pass: 9210088 Run:9210236
[  476.406867][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  476.416696][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  476.426756][ T6352] Call Trace:
[  476.430050][ T6352]  <TASK>
[  476.432989][ T6352]  dump_stack_lvl+0xd1/0x138
[  476.437582][ T6352]  mt_find.cold+0x8b/0x90
[  476.441914][ T6352]  ? mas_find+0x1d0/0x1d0
[  476.446247][ T6352]  find_vma+0x10c/0x1b0
[  476.450397][ T6352]  ? can_vma_merge_before+0x390/0x390
[  476.455777][ T6352]  ? walk_page_test+0x78/0x180
[  476.460539][ T6352]  walk_page_range+0x2b1/0x4a0
[  476.465311][ T6352]  ? __walk_page_range+0x780/0x780
[  476.470441][ T6352]  mlock_fixup+0x650/0x810
[  476.474863][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  476.480076][ T6352]  ? mlock_fixup+0x810/0x810
[  476.484696][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  476.490591][ T6352]  do_mlock+0x25a/0x6d0
[  476.494751][ T6352]  ? folio_evictable+0x270/0x270
[  476.499696][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  476.505592][ T6352]  __x64_sys_mlock+0x59/0x80
[  476.510207][ T6352]  do_syscall_64+0x39/0xb0
[  476.514657][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  476.520553][ T6352] RIP: 0033:0x7fde7288c0c9
[  476.525044][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  476.544648][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  476.553062][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  476.561040][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  476.569027][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  476.576995][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  476.584958][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  476.592935][ T6352]  </TASK>
[  476.600067][ T6352] index not increased! 20ffb000 <= 20ffb000
[  476.606948][ T6352] BUG at mt_find:6473 (1)
[  476.611530][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  476.620186][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:26:33 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:33 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:33 executing program 3:
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f00000025c0)="660ff7e266baf80cb8885efb83ef66bafc0cb8f3ffffffefc4c1ce2a89180000008fe978d306c4e37502a6fc0000002f66baf80cb89c2b8b86ef66bafc0cecb8010000000f01c126642ef36f3e0f01c9c4c3112049b699", 0x57}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

11:26:33 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

11:26:33 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x10201, 0x1, 0xd000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000000)={0xa8, 0x0, 0x2})
write$binfmt_script(r2, &(0x7f0000000100)={'#! ', './file0', [], 0xa, "a65532dcdf1f1edf62e8b529f928f8e339dc9c65efb8b707505d9e2203fe61e2dfadeef8dabe2a900cbb0f0a59f055edc83333a927af966b3e679d9d4a8b00cbaec7d7f4a0fd85bf0314952d100df09314682b032a91c0d0f6fbbf6170d609431460459a3a62bb216861be67cb74"}, 0x79)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  476.657370][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  476.710558][ T6352]     0-536866815: 0000000000000000
11:26:33 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1})

11:26:33 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  476.750288][ T6352]     536866816-536870911: ffff88807cef72a0
[  476.756254][ T6352]     536870912-553627647: ffff88801fb9b700
[  476.780789][ T6352]     553627648-553639935: 0000000000000000
11:26:33 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1})

[  476.800114][ T6352]     553639936-553627647: ffff88807bda78c0
[  476.813631][ T6352]     553627648-553644031: ffff88807bda79a0
[  476.837860][ T6352]     553644032-553648127: ffff8880216d6b60
[  476.866210][ T6352]     553648128-553652223: ffff88801fb9b7e0
11:26:34 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1})

[  476.915728][ T6352]     553652224-116809400319: 0000000000000000
11:26:34 executing program 3:
r0 = io_uring_setup(0x765, &(0x7f0000000200))
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x9000000)

11:26:34 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:34 executing program 1:
creat(&(0x7f0000000680)='./file1\x00', 0x0)
mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f0000000040)='./file1\x00', 0x0, 0x1883001, 0x0)

[  476.993215][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  477.045006][ T6352]     116813594624-93825005334527: 0000000000000000
[  477.099699][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  477.152671][ T6352]     93825005473792-140593359482879: 0000000000000000
[  477.171031][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  477.186282][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  477.244092][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  477.252329][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  477.259457][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  477.267015][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  477.274587][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  477.282935][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  477.290825][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  477.297989][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  477.306436][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  477.314127][ T6352]     140593381670912-140593381675007: 0000000000000000
[  477.321597][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  477.328777][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  477.336413][ T6352]     140593382076416-140593382096895: 0000000000000000
[  477.343931][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  477.353136][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  477.406440][ T6352]     140593393942528-140593395646463: 0000000000000000
[  477.417124][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  477.424862][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  477.432357][ T6352]     140593395781632-140727606853631: 0000000000000000
[  477.439892][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  477.447094][ T6352]     140727606988800-140727607586815: 0000000000000000
[  477.454716][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  477.463905][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  477.471407][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  477.479042][ T6352] Pass: 9218464 Run:9218613
[  477.484214][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  477.494057][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  477.504133][ T6352] Call Trace:
[  477.507426][ T6352]  <TASK>
[  477.510374][ T6352]  dump_stack_lvl+0xd1/0x138
[  477.515005][ T6352]  mt_find.cold+0x8b/0x90
[  477.519377][ T6352]  ? mas_find+0x1d0/0x1d0
[  477.523753][ T6352]  find_vma+0x10c/0x1b0
[  477.527935][ T6352]  ? can_vma_merge_before+0x390/0x390
[  477.533338][ T6352]  ? walk_page_test+0x78/0x180
[  477.538138][ T6352]  walk_page_range+0x2b1/0x4a0
[  477.542933][ T6352]  ? __walk_page_range+0x780/0x780
[  477.548078][ T6352]  mlock_fixup+0x650/0x810
[  477.552525][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  477.557853][ T6352]  ? mlock_fixup+0x810/0x810
[  477.562573][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  477.568511][ T6352]  do_mlock+0x25a/0x6d0
[  477.572700][ T6352]  ? folio_evictable+0x270/0x270
[  477.577669][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  477.583608][ T6352]  __x64_sys_mlock+0x59/0x80
[  477.588225][ T6352]  do_syscall_64+0x39/0xb0
[  477.592666][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  477.598594][ T6352] RIP: 0033:0x7fde7288c0c9
[  477.603025][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  477.622644][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  477.631070][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  477.639045][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  477.647030][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
11:26:34 executing program 3:
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/meminfo\x00', 0x0, 0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_window_scaling\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000002080)=0x64, 0x875)

11:26:34 executing program 4:
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r0=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(0xffffffffffffffff, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r0})

11:26:34 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
close(0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:34 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  477.655024][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  477.663023][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  477.671035][ T6352]  </TASK>
[  477.689167][ T6352] index not increased! 20ffb000 <= 20ffb000
[  477.739691][ T6352] BUG at mt_find:6473 (1)
[  477.764265][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  477.792644][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  477.846789][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  477.898040][ T6352]     0-536866815: 0000000000000000
[  477.906220][ T6352]     536866816-536870911: ffff88807cef72a0
11:26:35 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x10201, 0x1, 0xd000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000000)={0xa8, 0x0, 0x2}) (async)
write$binfmt_script(r2, &(0x7f0000000100)={'#! ', './file0', [], 0xa, "a65532dcdf1f1edf62e8b529f928f8e339dc9c65efb8b707505d9e2203fe61e2dfadeef8dabe2a900cbb0f0a59f055edc83333a927af966b3e679d9d4a8b00cbaec7d7f4a0fd85bf0314952d100df09314682b032a91c0d0f6fbbf6170d609431460459a3a62bb216861be67cb74"}, 0x79) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:35 executing program 1:
syz_clone(0x8220400, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x6800400, 0x0, 0x0, 0x0, 0x0, 0x0)

11:26:35 executing program 4:
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r0=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(0xffffffffffffffff, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r0})

11:26:35 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:35 executing program 3:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
r0 = syz_io_uring_setup(0x3edc, &(0x7f00000000c0)={0x0, 0xff25}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000840)={0x0, 0x0, 0x0}}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@l2={0x1f, 0x0, @fixed}, 0x80, 0x0}}], 0x1, 0x11)
io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x1e00)

[  477.913318][ T6352]     536870912-553627647: ffff88801fb9b700
[  477.919359][ T6352]     553627648-553639935: 0000000000000000
[  477.925557][ T6352]     553639936-553627647: ffff88807bda78c0
[  477.940865][ T6352]     553627648-553644031: ffff88807bda79a0
11:26:35 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:35 executing program 4:
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r0=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(0xffffffffffffffff, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r0})

[  477.979405][ T6352]     553644032-553648127: ffff8880216d6b60
11:26:35 executing program 0:
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r1})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000000c0)={0x38})

11:26:35 executing program 3:
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd2c)
r0 = syz_io_uring_setup(0x3edc, &(0x7f00000000c0)={0x0, 0xff25}, &(0x7f0000002000/0x2000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000840)={0x0, 0x0, 0x0}}, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000001380)=@l2={0x1f, 0x0, @fixed}, 0x80, 0x0}}], 0x1, 0x11)
io_uring_enter(r0, 0x2ff, 0x0, 0x0, 0x0, 0x1e00)

[  478.028841][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  478.088959][ T6352]     553652224-116809400319: 0000000000000000
[  478.133151][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  478.167317][ T6352]     116813594624-93825005334527: 0000000000000000
[  478.209633][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  478.223215][ T6352]     93825005473792-140593359482879: 0000000000000000
[  478.239213][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  478.267819][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  478.362732][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  478.379981][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  478.387156][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  478.399444][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  478.409972][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  478.425883][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  478.433563][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  478.441558][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  478.448746][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  478.458749][ T6352]     140593381670912-140593381675007: 0000000000000000
[  478.468115][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  478.475393][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  478.482691][ T6352]     140593382076416-140593382096895: 0000000000000000
[  478.490526][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  478.497659][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  478.548704][ T6352]     140593393942528-140593395646463: 0000000000000000
[  478.555969][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  478.564891][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  478.572059][ T6352]     140593395781632-140727606853631: 0000000000000000
[  478.579166][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  478.586361][ T6352]     140727606988800-140727607586815: 0000000000000000
[  478.593559][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  478.600784][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  478.608094][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  478.616541][ T6352] Pass: 9227713 Run:9227863
[  478.621292][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  478.631131][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  478.641218][ T6352] Call Trace:
[  478.644603][ T6352]  <TASK>
[  478.647542][ T6352]  dump_stack_lvl+0xd1/0x138
[  478.652134][ T6352]  mt_find.cold+0x8b/0x90
[  478.656464][ T6352]  ? mas_find+0x1d0/0x1d0
[  478.660795][ T6352]  find_vma+0x10c/0x1b0
[  478.664944][ T6352]  ? can_vma_merge_before+0x390/0x390
[  478.670312][ T6352]  ? walk_page_test+0x78/0x180
[  478.675075][ T6352]  walk_page_range+0x2b1/0x4a0
[  478.679851][ T6352]  ? __walk_page_range+0x780/0x780
[  478.684994][ T6352]  mlock_fixup+0x650/0x810
[  478.689442][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  478.694663][ T6352]  ? mlock_fixup+0x810/0x810
[  478.699288][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  478.705204][ T6352]  do_mlock+0x25a/0x6d0
[  478.709381][ T6352]  ? folio_evictable+0x270/0x270
[  478.714437][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  478.720351][ T6352]  __x64_sys_mlock+0x59/0x80
[  478.724962][ T6352]  do_syscall_64+0x39/0xb0
[  478.729402][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  478.735307][ T6352] RIP: 0033:0x7fde7288c0c9
[  478.739725][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  478.759338][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  478.767758][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  478.775731][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  478.783706][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  478.791681][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  478.799658][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  478.807650][ T6352]  </TASK>
11:26:35 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
close(0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:35 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

11:26:35 executing program 0:
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r1})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000000c0)={0x38})

[  478.814625][ T6352] index not increased! 20ffb000 <= 20ffb000
[  478.844878][ T6352] BUG at mt_find:6473 (1)
[  478.849274][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  478.898494][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  478.956727][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:26:36 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x10201, 0x1, 0xd000, 0x2000, &(0x7f0000ffb000/0x2000)=nil})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000000)={0xa8, 0x0, 0x2})
write$binfmt_script(r2, &(0x7f0000000100)={'#! ', './file0', [], 0xa, "a65532dcdf1f1edf62e8b529f928f8e339dc9c65efb8b707505d9e2203fe61e2dfadeef8dabe2a900cbb0f0a59f055edc83333a927af966b3e679d9d4a8b00cbaec7d7f4a0fd85bf0314952d100df09314682b032a91c0d0f6fbbf6170d609431460459a3a62bb216861be67cb74"}, 0x79)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x10201, 0x1, 0xd000, 0x2000, &(0x7f0000ffb000/0x2000)=nil}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
ioctl$KVM_CAP_MANUAL_DIRTY_LOG_PROTECT2(r2, 0x4068aea3, &(0x7f0000000000)={0xa8, 0x0, 0x2}) (async)
write$binfmt_script(r2, &(0x7f0000000100)={'#! ', './file0', [], 0xa, "a65532dcdf1f1edf62e8b529f928f8e339dc9c65efb8b707505d9e2203fe61e2dfadeef8dabe2a900cbb0f0a59f055edc83333a927af966b3e679d9d4a8b00cbaec7d7f4a0fd85bf0314952d100df09314682b032a91c0d0f6fbbf6170d609431460459a3a62bb216861be67cb74"}, 0x79) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

11:26:36 executing program 1:
syz_clone(0x8220400, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x6800400, 0x0, 0x0, 0x0, 0x0, 0x0)

11:26:36 executing program 3:
r0 = syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

11:26:36 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

11:26:36 executing program 0:
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r1})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000000c0)={0x38})

11:26:36 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

[  479.007442][ T6352]     0-536866815: 0000000000000000
[  479.020230][ T6352]     536866816-536870911: ffff88807cef72a0
[  479.043400][ T6352]     536870912-553627647: ffff88801fb9b700
11:26:36 executing program 0:
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r0=>0x0})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r0})

11:26:36 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

[  479.079299][ T6352]     553627648-553639935: 0000000000000000
[  479.111981][ T6352]     553639936-553627647: ffff88807bda78c0
[  479.159925][ T6352]     553627648-553644031: ffff88807bda79a0
[  479.165970][ T6352]     553644032-553648127: ffff8880216d6b60
[  479.172147][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  479.178089][ T6352]     553652224-116809400319: 0000000000000000
[  479.184617][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  479.191391][ T6352]     116813594624-93825005334527: 0000000000000000
[  479.198051][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  479.204974][ T6352]     93825005473792-140593359482879: 0000000000000000
[  479.212105][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:26:36 executing program 0:
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r0=>0x0})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r0})

[  479.219094][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  479.288100][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  479.306080][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  479.313504][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  479.331402][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  479.338451][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  479.348906][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  479.356516][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  479.384781][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  479.405285][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  479.419989][ T6352]     140593381670912-140593381675007: 0000000000000000
[  479.427005][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  479.468681][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  479.475922][ T6352]     140593382076416-140593382096895: 0000000000000000
[  479.484943][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  479.503204][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  479.554163][ T6352]     140593393942528-140593395646463: 0000000000000000
[  479.562091][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  479.569311][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  479.579784][ T6352]     140593395781632-140727606853631: 0000000000000000
[  479.586877][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  479.594352][ T6352]     140727606988800-140727607586815: 0000000000000000
[  479.603321][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  479.612148][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  479.629266][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  479.638739][ T6352] Pass: 9236017 Run:9236168
[  479.643841][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  479.653683][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  479.663748][ T6352] Call Trace:
[  479.667020][ T6352]  <TASK>
[  479.669945][ T6352]  dump_stack_lvl+0xd1/0x138
[  479.674627][ T6352]  mt_find.cold+0x8b/0x90
[  479.678970][ T6352]  ? mas_find+0x1d0/0x1d0
[  479.683301][ T6352]  find_vma+0x10c/0x1b0
[  479.687449][ T6352]  ? can_vma_merge_before+0x390/0x390
[  479.692823][ T6352]  ? walk_page_test+0x78/0x180
[  479.697585][ T6352]  walk_page_range+0x2b1/0x4a0
[  479.702377][ T6352]  ? __walk_page_range+0x780/0x780
[  479.707547][ T6352]  mlock_fixup+0x650/0x810
[  479.712039][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  479.717279][ T6352]  ? mlock_fixup+0x810/0x810
[  479.721879][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  479.727770][ T6352]  do_mlock+0x25a/0x6d0
[  479.731933][ T6352]  ? folio_evictable+0x270/0x270
[  479.736874][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  479.742770][ T6352]  __x64_sys_mlock+0x59/0x80
[  479.747364][ T6352]  do_syscall_64+0x39/0xb0
[  479.751797][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  479.757721][ T6352] RIP: 0033:0x7fde7288c0c9
[  479.762160][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  479.781785][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  479.790189][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  479.798150][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  479.806142][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  479.814122][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  479.822081][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
11:26:36 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
close(0xffffffffffffffff)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:36 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

11:26:36 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100))

11:26:36 executing program 0:
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r0=>0x0})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r0})

11:26:36 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="0f23ecc4e10561d3660fc770d866b807018ed8c4e37d39d60066baf80cb82db4ba83ef66bafc0cec0f20979a00400000c80066ba610066edd9c0", 0x3a}], 0x1, 0x11, &(0x7f0000000100)=[@efer={0x2, 0x7100}], 0x1)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

11:26:36 executing program 3:
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r1, r0, &(0x7f0000002080)=0x64, 0x875)

[  479.830055][ T6352]  </TASK>
[  479.837320][ T6352] index not increased! 20ffb000 <= 20ffb000
11:26:37 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  479.880268][ T6352] BUG at mt_find:6473 (1)
[  479.884673][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:26:37 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

[  479.928017][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  480.007367][ T8385] Bluetooth: hci7: Frame reassembly failed (-84)
11:26:37 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  480.019088][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  480.093520][ T6352]     0-536866815: 0000000000000000
[  480.099224][ T6352]     536866816-536870911: ffff88807cef72a0
11:26:37 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1})

[  480.105671][ T6352]     536870912-553627647: ffff88801fb9b700
[  480.111896][ T6352]     553627648-553639935: 0000000000000000
[  480.118060][ T6352]     553639936-553627647: ffff88807bda78c0
[  480.124492][ T6352]     553627648-553644031: ffff88807bda79a0
[  480.130740][ T6352]     553644032-553648127: ffff8880216d6b60
[  480.136905][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  480.143179][ T6352]     553652224-116809400319: 0000000000000000
[  480.159070][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  480.188746][ T6352]     116813594624-93825005334527: 0000000000000000
11:26:37 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="0f23ecc4e10561d3660fc770d866b807018ed8c4e37d39d60066baf80cb82db4ba83ef66bafc0cec0f20979a00400000c80066ba610066edd9c0", 0x3a}], 0x1, 0x11, &(0x7f0000000100)=[@efer={0x2, 0x7100}], 0x1)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

11:26:37 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  480.221612][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  480.234653][ T6352]     93825005473792-140593359482879: 0000000000000000
[  480.273130][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  480.296822][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  480.461598][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  480.476688][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  480.489321][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  480.498921][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  480.506422][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  480.516162][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  480.523633][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  480.531143][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  480.538344][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  480.545863][ T6352]     140593381670912-140593381675007: 0000000000000000
[  480.553309][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  480.563398][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  480.578007][ T6352]     140593382076416-140593382096895: 0000000000000000
[  480.586082][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  480.593715][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  480.645721][ T6352]     140593393942528-140593395646463: 0000000000000000
[  480.653189][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  480.661538][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  480.668751][ T6352]     140593395781632-140727606853631: 0000000000000000
[  480.676296][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  480.683737][ T6352]     140727606988800-140727607586815: 0000000000000000
[  480.691885][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  480.699095][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  480.706725][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  480.714927][ T6352] Pass: 9243545 Run:9243697
[  480.719934][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  480.729774][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  480.739863][ T6352] Call Trace:
[  480.743157][ T6352]  <TASK>
[  480.746102][ T6352]  dump_stack_lvl+0xd1/0x138
[  480.750730][ T6352]  mt_find.cold+0x8b/0x90
[  480.755098][ T6352]  ? mas_find+0x1d0/0x1d0
[  480.759484][ T6352]  find_vma+0x10c/0x1b0
[  480.763672][ T6352]  ? can_vma_merge_before+0x390/0x390
[  480.769077][ T6352]  ? walk_page_test+0x78/0x180
[  480.773886][ T6352]  walk_page_range+0x2b1/0x4a0
[  480.778687][ T6352]  ? __walk_page_range+0x780/0x780
[  480.783857][ T6352]  mlock_fixup+0x650/0x810
[  480.788327][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  480.793567][ T6352]  ? mlock_fixup+0x810/0x810
[  480.798213][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  480.804153][ T6352]  do_mlock+0x25a/0x6d0
[  480.808354][ T6352]  ? folio_evictable+0x270/0x270
[  480.813345][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  480.819275][ T6352]  __x64_sys_mlock+0x59/0x80
[  480.823902][ T6352]  do_syscall_64+0x39/0xb0
[  480.828342][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  480.834247][ T6352] RIP: 0033:0x7fde7288c0c9
[  480.838665][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  480.858278][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  480.866698][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  480.874675][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  480.882651][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  480.890628][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  480.898602][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  480.906609][ T6352]  </TASK>
11:26:38 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040), &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:38 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1})

[  480.929077][ T6352] index not increased! 20ffb000 <= 20ffb000
[  480.977084][ T6352] BUG at mt_find:6473 (1)
[  480.995401][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  481.048044][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  481.087887][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  481.137207][ T6352]     0-536866815: 0000000000000000
[  481.145457][ T6352]     536866816-536870911: ffff88807cef72a0
[  481.151914][ T6352]     536870912-553627647: ffff88801fb9b700
[  481.157934][ T6352]     553627648-553639935: 0000000000000000
[  481.164051][ T6352]     553639936-553627647: ffff88807bda78c0
[  481.179667][ T6352]     553627648-553644031: ffff88807bda79a0
[  481.185721][ T6352]     553644032-553648127: ffff8880216d6b60
[  481.195488][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  481.208023][ T6352]     553652224-116809400319: 0000000000000000
[  481.217136][ T8376] syz-executor.3 (8376): drop_caches: 2
[  481.223367][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  481.234454][ T6352]     116813594624-93825005334527: 0000000000000000
[  481.248323][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  481.262527][ T6352]     93825005473792-140593359482879: 0000000000000000
[  481.269616][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  481.283738][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  481.339634][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  481.346766][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  481.354154][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  481.361394][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  481.368549][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  481.375729][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  481.383940][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  481.391147][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  481.398118][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  481.405135][ T6352]     140593381670912-140593381675007: 0000000000000000
[  481.412139][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  481.419419][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  481.429717][ T6352]     140593382076416-140593382096895: 0000000000000000
[  481.436714][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  481.443802][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  481.497567][ T6352]     140593393942528-140593395646463: 0000000000000000
[  481.508926][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  481.516454][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  481.523957][ T6352]     140593395781632-140727606853631: 0000000000000000
[  481.531391][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  481.538439][ T6352]     140727606988800-140727607586815: 0000000000000000
[  481.545971][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  481.553599][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  481.561002][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  481.568544][ T6352] Pass: 9246309 Run:9246462
[  481.573617][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  481.583457][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  481.593538][ T6352] Call Trace:
[  481.596827][ T6352]  <TASK>
[  481.599766][ T6352]  dump_stack_lvl+0xd1/0x138
[  481.604393][ T6352]  mt_find.cold+0x8b/0x90
[  481.608753][ T6352]  ? mas_find+0x1d0/0x1d0
[  481.613473][ T6352]  find_vma+0x10c/0x1b0
[  481.617657][ T6352]  ? can_vma_merge_before+0x390/0x390
[  481.623063][ T6352]  ? walk_page_test+0x78/0x180
[  481.627854][ T6352]  walk_page_range+0x2b1/0x4a0
[  481.632640][ T6352]  ? __walk_page_range+0x780/0x780
[  481.637785][ T6352]  mlock_fixup+0x650/0x810
[  481.642233][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  481.647468][ T6352]  ? mlock_fixup+0x810/0x810
[  481.652116][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  481.658062][ T6352]  do_mlock+0x25a/0x6d0
[  481.662238][ T6352]  ? folio_evictable+0x270/0x270
[  481.667211][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  481.673118][ T6352]  __x64_sys_mlock+0x59/0x80
[  481.677738][ T6352]  do_syscall_64+0x39/0xb0
[  481.682171][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  481.688084][ T6352] RIP: 0033:0x7fde7288c0c9
[  481.692509][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  481.712340][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  481.720786][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  481.728773][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  481.736754][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  481.744720][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  481.752696][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  481.760714][ T6352]  </TASK>
[  481.769456][ T6352] index not increased! 20ffb000 <= 20ffb000
[  481.776483][ T6352] BUG at mt_find:6473 (1)
[  481.780944][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  481.790482][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  481.827478][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  481.879509][ T6352]     0-536866815: 0000000000000000
[  481.890632][ T6352]     536866816-536870911: ffff88807cef72a0
[  481.896572][ T6352]     536870912-553627647: ffff88801fb9b700
[  481.902614][ T6352]     553627648-553639935: 0000000000000000
[  481.908545][ T6352]     553639936-553627647: ffff88807bda78c0
[  481.914542][ T6352]     553627648-553644031: ffff88807bda79a0
[  481.920512][ T6352]     553644032-553648127: ffff8880216d6b60
[  481.926429][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  481.932396][ T6352]     553652224-116809400319: 0000000000000000
[  481.938667][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  481.945215][ T6352]     116813594624-93825005334527: 0000000000000000
[  481.952008][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  481.958833][ T6352]     93825005473792-140593359482879: 0000000000000000
[  481.965769][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  481.972798][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  482.029672][   T48] Bluetooth: hci7: Opcode 0x1003 failed: -110
[  482.032175][ T7454] Bluetooth: hci7: command 0x1003 tx timeout
[  482.044068][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
11:26:39 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100))

11:26:39 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="0f23ecc4e10561d3660fc770d866b807018ed8c4e37d39d60066baf80cb82db4ba83ef66bafc0cec0f20979a00400000c80066ba610066edd9c0", 0x3a}], 0x1, 0x11, &(0x7f0000000100)=[@efer={0x2, 0x7100}], 0x1) (async)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

11:26:39 executing program 0:
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r0=>0x0})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r0})

11:26:39 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1})

11:26:39 executing program 3:
openat$rfkill(0xffffffffffffff9c, &(0x7f00000003c0), 0x2200, 0x0)

[  482.051170][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  482.058177][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  482.065281][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  482.077680][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  482.084790][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
11:26:39 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040), &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:39 executing program 0:
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r0=>0x0})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r0})

[  482.096665][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  482.116616][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  482.123858][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  482.131006][ T6352]     140593381670912-140593381675007: 0000000000000000
[  482.138219][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
11:26:39 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(0xffffffffffffffff, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

11:26:39 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100))

[  482.158446][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
11:26:39 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(0xffffffffffffffff, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

[  482.206870][ T6352]     140593382076416-140593382096895: 0000000000000000
[  482.224920][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  482.236618][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
11:26:39 executing program 0:
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r0=>0x0})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r0})

11:26:39 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(0xffffffffffffffff, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1, 0x0, r1})

[  482.419838][ T6352]     140593393942528-140593395646463: 0000000000000000
[  482.475751][ T5120] Bluetooth: hci8: sending frame failed (-49)
[  482.483401][ T7454] Bluetooth: hci8: Opcode 0x1003 failed: -49
[  482.492551][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  482.493391][ T8437] Bluetooth: hci8: Frame reassembly failed (-84)
[  482.599638][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  482.616315][ T6352]     140593395781632-140727606853631: 0000000000000000
11:26:39 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100))

11:26:39 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38})

11:26:39 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, 0x0)

11:26:39 executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000001c0)=ANY=[], 0x208e24b)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, &(0x7f0000000380)={0x6, 0x24b6, {<r2=>0x0}, {<r3=>0x0}, 0x0, 0x9})
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
r5 = getpid()
fsync(r0)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000480)={@local, 0x1})
write$binfmt_script(r6, &(0x7f00000001c0)=ANY=[], 0x208e24b)
r7 = syz_clone3(&(0x7f0000000400)={0x0, &(0x7f00000000c0)=<r8=>0xffffffffffffffff, &(0x7f0000000100)=<r9=>0x0, &(0x7f0000000140), {0x21}, &(0x7f0000000280)=""/193, 0xc1, &(0x7f0000000180)=""/142, &(0x7f00000003c0)=[0xffffffffffffffff, r1, r2, r4, 0xffffffffffffffff, r5], 0x6, {r0}}, 0x58)
r10 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
fcntl$getown(r8, 0x9)
ioctl$KVM_RUN(r10, 0xae80, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000000)=0x3)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r12, 0xae60)
ioctl$KVM_SET_IRQCHIP(r12, 0x8208ae63, &(0x7f00000004c0)={0x0, 0x0, @pic={0x3, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x8}})
ioctl$KVM_SET_IRQCHIP(r12, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r13 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r13, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r13, 0x29, 0x23, &(0x7f0000000580)={{{@in=@broadcast, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0}}, {{@in=@multicast1}, 0x0, @in6}}, &(0x7f0000000300)=0xe8)
read$FUSE(0xffffffffffffffff, &(0x7f0000002fc0)={0x2020, 0x0, 0x0, 0x0, <r15=>0x0}, 0xffffffffffffff53)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008380)="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", 0x2000, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000240)={0x18, 0x0, 0x26}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="cd89bc3d1500000000f3b300e6b9535c000000bc6d2e86f55bc635575cda5e4f771538b3b3e03fb5d402f2627928750495ca35755070b2e6b446edcb68db5029c1f1597666c6d7f880a5a5024281f7fdfa9d0ce047fc27e5e19878bbc4584483d28a"], &(0x7f0000000640)={0x20, 0x0, 0x8001}, 0x0, &(0x7f0000000700)={0x90, 0x0, 0x0, {0x0, 0x0, 0x80000005, 0x0, 0x8000, 0x0, {0x1, 0x0, 0x0, 0x1, 0x0, 0x80000001, 0x400, 0x0, 0x0, 0x0, 0xfffff801, 0x0, 0xffffffffffffffff, 0x0, 0xb830}}}, &(0x7f0000000f00)=ANY=[@ANYBLOB="180100000000000001000000000010000600000000000000010000000000000002000000000000000000000000000400000000000000ffffff7f00000000120000000200000066ad10ffc02b6935b7000000000000001121000000000000000000000000000001"], 0x0, &(0x7f0000000a80)={0xa0, 0x0, 0xa0c7, {{0x0, 0x0, 0x0, 0x7fff, 0x0, 0x82e, {0x0, 0x0, 0x9, 0x6, 0x0, 0x4, 0x5, 0x8, 0x0, 0x2000, 0x8b, r14, r15, 0x7, 0x4}}, {0x0, 0x11}}}, 0x0})
sendmmsg$unix(r0, &(0x7f00000068c0)=[{{&(0x7f0000000940)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000009c0), 0x0, &(0x7f0000000a40)=[@cred={{0x1c, 0x1, 0x2, {r9}}}], 0x20, 0x40000}}, {{&(0x7f0000000a80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000b80)=[{&(0x7f0000000b00)="d7accc87b4f03491cc4c2723e2bb222848d839c9154bab44", 0x18}, {&(0x7f0000000b40)="e904ab8bce23213825447fe6cce7f07e4192e365e0137f4a4753b06177cd95d3a23bbe3ed540000b82c49c40b683dec50d48afc0f4169bf49654c2", 0x3b}], 0x2, &(0x7f00000050c0)=[@cred={{0x1c, 0x1, 0x2, {r4}}}, @cred={{0x1c, 0x1, 0x2, {r1, r3, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r7}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r3}}}, @cred={{0x1c, 0x1, 0x2, {r9}}}], 0xe0, 0x8000}}, {{&(0x7f00000051c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000006380)=[{&(0x7f0000005240)="93445ca8efab4c389da40ba8399753b88f95a3d8b7b33c9a", 0x18}, {&(0x7f0000005280)="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", 0x1000}, {&(0x7f0000006280)="5492ad18e9f7a8fddae45985330b3de4c242909675ebc5f177d999018f37fbf7b1ef926048f6b63f1042858da1f5623d9ccb9c9ce38dbd536f444e7f5a035627d4e20fc8a94ce27d423776ced79abd1f76de2d2dc89b5638d38413d5630d5e8bb7d2eae00012e1631faba43524dfb9e54f5acd3b0de2c767cd8948689ecedec4d55253c70ea83666b47722ac7b9488705433c194dc8c97e696849441bee9e892a1e9350e2878b03d4cfd76674df19b5a88eb5da5de145fa8c12fd6f78cac3263e5598f1671ce1f0b33374b4cf4faeef7b45b87be2518fcd51a76a5e7de054d5800d8a1cdcd5a3080b0cf97", 0xeb}], 0x3, &(0x7f00000063c0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r3}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r14, 0xee00}}}], 0x40, 0x8c0}}, {{&(0x7f0000006400)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000006640)=[{&(0x7f0000006480)="d38e6717f5dfd739d4041451de85a5983d44e9a9dd35155cd8005b25ce7bf933833a8fe79c415dc86174609c09785fa2e1737ba6977b31132977dcc7d200afa2f1124ae94c3adcba5e730ee3659dfb74ddc96507d6285e49283906bed525aa3b1e064cac6e10fd7716de019eace04780005fea3fbdb7cbb0d70e41a705499a62e6b328cd697fe6bb6c02f59334f5c6", 0x8f}, {&(0x7f0000006540)="b9470ab2061fcd736fadd908ea1c7072d9d2024f4aeecf82555499c3cee37d68e1c01d767cc32e9744ed7e62dca4cc56cffef922a5beed3ac25c4d76d53495fe9e2184e586119d28aa40c0fe112ec42e10a7ce7126923ba99343caa4dbf911a5735613c106b3bf6ad8d5de9daa7ddbe8d63c2f061e8025388e022338683bfa8db2c25d67ac8dcf0504aace1cc41795391e09b7d68f8cffafce5771f84f35ae7088f9aa69ecd4fae4c6971e282159c281dabdb89214ef29b7ecdefc044c4d71e7726039c20c9812164fa6252b24bd06cb41cb165702e6", 0xd6}], 0x2, &(0x7f0000006680)}}, {{&(0x7f00000066c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000006880)=[{&(0x7f0000006740)="f36e873bf19e87f963c85dbd84c5f4193915b654ebbf58aeacd343c309793679cc35f59e300734247ec8d9b74defbbddece9dd702f85561ae21201d59363d8e53a246d7c6b3b84c1fa8cd15689c8b9e84b24cb5fbb450826eec95044c2e23e671e29526dffa3a025ba6a0747", 0x6c}, {&(0x7f00000067c0)="9bb7a6519f504bc094ddeb024f3bbc7548e84ae0e8b26be9036aef4b7b3ac887088df2b2172e8d59441deb60786a37a198bf9893bb81971f1737f6638447e1f53d280935f6f0d92bc5b664b7589626c6100a055317c47a0d39f96a4dff9eedd173cb921a7dce25eecba2f93b9423d11652e8e0931fdbd8ff673f10fce09d26682e2bcac46102ef751f012cb3dae766c4cace31cc8ca09029a4d5b4e3e426fdc7f5e4531168af6d441e7495dc8635618dc619e9b7a76735a9a5e8888da13717", 0xbf}], 0x2}}], 0x5, 0x800)

11:26:39 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, 0x0)

[  482.641244][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  482.648481][ T6352]     140727606988800-140727607586815: 0000000000000000
[  482.655951][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  482.663406][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  482.676048][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  482.735489][ T6352] Pass: 9255944 Run:9256098
[  482.762654][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  482.772525][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  482.782606][ T6352] Call Trace:
[  482.785912][ T6352]  <TASK>
[  482.788869][ T6352]  dump_stack_lvl+0xd1/0x138
[  482.793510][ T6352]  mt_find.cold+0x8b/0x90
[  482.797889][ T6352]  ? mas_find+0x1d0/0x1d0
[  482.802280][ T6352]  find_vma+0x10c/0x1b0
[  482.806479][ T6352]  ? can_vma_merge_before+0x390/0x390
[  482.811893][ T6352]  ? walk_page_test+0x78/0x180
[  482.812699][ T5120] Bluetooth: hci8: sending frame failed (-49)
[  482.816679][ T6352]  walk_page_range+0x2b1/0x4a0
[  482.816720][ T6352]  ? __walk_page_range+0x780/0x780
[  482.823991][ T7454] Bluetooth: hci8: Opcode 0x1003 failed: -49
[  482.828441][ T6352]  mlock_fixup+0x650/0x810
[  482.840786][ T8451] Bluetooth: hci8: Frame reassembly failed (-84)
[  482.844018][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  482.844072][ T6352]  ? mlock_fixup+0x810/0x810
[  482.860269][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  482.866210][ T6352]  do_mlock+0x25a/0x6d0
[  482.870428][ T6352]  ? folio_evictable+0x270/0x270
[  482.875432][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  482.881371][ T6352]  __x64_sys_mlock+0x59/0x80
[  482.886007][ T6352]  do_syscall_64+0x39/0xb0
[  482.890467][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  482.896393][ T6352] RIP: 0033:0x7fde7288c0c9
[  482.900839][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  482.920484][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  482.928938][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  482.936940][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  482.944941][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  482.952941][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
11:26:40 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040), &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:40 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38})

11:26:40 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, 0x0)

[  482.960941][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  482.968965][ T6352]  </TASK>
[  483.001226][ T6352] index not increased! 20ffb000 <= 20ffb000
[  483.007403][ T6352] BUG at mt_find:6473 (1)
[  483.018292][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  483.034945][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  483.120108][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  483.173832][ T6352]     0-536866815: 0000000000000000
[  483.179270][ T6352]     536866816-536870911: ffff88807cef72a0
[  483.185853][ T6352]     536870912-553627647: ffff88801fb9b700
[  483.192570][ T6352]     553627648-553639935: 0000000000000000
[  483.198672][ T6352]     553639936-553627647: ffff88807bda78c0
[  483.205227][ T6352]     553627648-553644031: ffff88807bda79a0
[  483.215051][ T6352]     553644032-553648127: ffff8880216d6b60
[  483.223198][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  483.229800][ T6352]     553652224-116809400319: 0000000000000000
[  483.236239][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  483.242827][ T6352]     116813594624-93825005334527: 0000000000000000
[  483.249460][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  483.256797][ T6352]     93825005473792-140593359482879: 0000000000000000
[  483.284277][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  483.307697][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  483.365625][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  483.373387][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  483.381289][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  483.388510][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  483.396795][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  483.404067][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  483.411245][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  483.418531][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  483.429755][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  483.439388][ T6352]     140593381670912-140593381675007: 0000000000000000
[  483.455921][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  483.468463][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  483.479669][ T6352]     140593382076416-140593382096895: 0000000000000000
[  483.486666][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  483.497110][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  483.569704][ T6352]     140593393942528-140593395646463: 0000000000000000
[  483.576716][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  483.589662][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  483.611998][ T6352]     140593395781632-140727606853631: 0000000000000000
[  483.625758][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  483.643992][ T6352]     140727606988800-140727607586815: 0000000000000000
[  483.663149][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  483.675753][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  483.685475][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  483.707193][ T6352] Pass: 9263458 Run:9263613
[  483.718157][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  483.728019][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  483.738103][ T6352] Call Trace:
[  483.741399][ T6352]  <TASK>
[  483.744349][ T6352]  dump_stack_lvl+0xd1/0x138
[  483.748981][ T6352]  mt_find.cold+0x8b/0x90
[  483.753353][ T6352]  ? mas_find+0x1d0/0x1d0
[  483.757731][ T6352]  find_vma+0x10c/0x1b0
[  483.761915][ T6352]  ? can_vma_merge_before+0x390/0x390
[  483.767324][ T6352]  ? walk_page_test+0x78/0x180
[  483.772135][ T6352]  walk_page_range+0x2b1/0x4a0
[  483.776940][ T6352]  ? __walk_page_range+0x780/0x780
[  483.782118][ T6352]  mlock_fixup+0x650/0x810
[  483.786587][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  483.791833][ T6352]  ? mlock_fixup+0x810/0x810
[  483.796485][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  483.802462][ T6352]  do_mlock+0x25a/0x6d0
[  483.806676][ T6352]  ? folio_evictable+0x270/0x270
[  483.811680][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  483.817606][ T6352]  __x64_sys_mlock+0x59/0x80
[  483.822205][ T6352]  do_syscall_64+0x39/0xb0
[  483.826623][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  483.832511][ T6352] RIP: 0033:0x7fde7288c0c9
[  483.836922][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  483.856522][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  483.864929][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  483.872893][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  483.880855][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  483.888814][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  483.896774][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  483.904747][ T6352]  </TASK>
[  483.916945][ T6352] index not increased! 20ffb000 <= 20ffb000
[  483.923018][ T6352] BUG at mt_find:6473 (1)
[  483.935159][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  483.948359][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  483.985553][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  484.036517][ T6352]     0-536866815: 0000000000000000
[  484.042809][ T6352]     536866816-536870911: ffff88807cef72a0
[  484.049022][ T6352]     536870912-553627647: ffff88801fb9b700
[  484.055079][ T6352]     553627648-553639935: 0000000000000000
[  484.061521][ T6352]     553639936-553627647: ffff88807bda78c0
[  484.067533][ T6352]     553627648-553644031: ffff88807bda79a0
[  484.078952][ T6352]     553644032-553648127: ffff8880216d6b60
[  484.085143][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  484.096338][ T6352]     553652224-116809400319: 0000000000000000
[  484.102758][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  484.109225][ T6352]     116813594624-93825005334527: 0000000000000000
[  484.116529][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  484.123754][ T6352]     93825005473792-140593359482879: 0000000000000000
[  484.130874][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  484.137984][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  484.195301][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  484.208033][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  484.215541][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  484.222915][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  484.230282][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  484.237305][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  484.246808][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  484.255256][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  484.263346][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  484.270740][ T6352]     140593381670912-140593381675007: 0000000000000000
[  484.277774][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  484.284899][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  484.294226][ T6352]     140593382076416-140593382096895: 0000000000000000
[  484.304264][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  484.311437][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  484.362584][ T6352]     140593393942528-140593395646463: 0000000000000000
[  484.369637][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  484.376609][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  484.383639][ T6352]     140593395781632-140727606853631: 0000000000000000
[  484.390664][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  484.397640][ T6352]     140727606988800-140727607586815: 0000000000000000
[  484.404642][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  484.414778][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  484.421859][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  484.429266][ T6352] Pass: 9264394 Run:9264550
[  484.444384][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  484.454250][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  484.464329][ T6352] Call Trace:
[  484.467602][ T6352]  <TASK>
[  484.470539][ T6352]  dump_stack_lvl+0xd1/0x138
[  484.475159][ T6352]  mt_find.cold+0x8b/0x90
[  484.479491][ T6352]  ? mas_find+0x1d0/0x1d0
[  484.483849][ T6352]  find_vma+0x10c/0x1b0
[  484.488021][ T6352]  ? can_vma_merge_before+0x390/0x390
[  484.493405][ T6352]  ? walk_page_test+0x78/0x180
[  484.498196][ T6352]  walk_page_range+0x2b1/0x4a0
[  484.502977][ T6352]  ? __walk_page_range+0x780/0x780
[  484.508131][ T6352]  mlock_fixup+0x650/0x810
[  484.509792][   T48] Bluetooth: hci7: Opcode 0x1003 failed: -110
[  484.512552][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  484.512600][ T6352]  ? mlock_fixup+0x810/0x810
[  484.528649][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  484.534590][ T6352]  do_mlock+0x25a/0x6d0
[  484.538783][ T6352]  ? folio_evictable+0x270/0x270
[  484.543751][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  484.549658][ T6352]  __x64_sys_mlock+0x59/0x80
[  484.554272][ T6352]  do_syscall_64+0x39/0xb0
[  484.558707][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  484.564611][ T6352] RIP: 0033:0x7fde7288c0c9
[  484.569030][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  484.588645][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  484.597063][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  484.605036][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
11:26:41 executing program 3:
openat$bsg(0xffffffffffffff9c, 0x0, 0x42c080, 0x0)

11:26:41 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100))

11:26:41 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x0, 0x0, r1})

11:26:41 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38})

11:26:41 executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) (async)
ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, &(0x7f0000000380)={0x6, 0x24b6, {<r2=>0x0}, {<r3=>0x0}, 0x0, 0x9})
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4) (async)
r5 = getpid() (async)
fsync(r0)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4) (async)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000480)={@local, 0x1}) (async)
write$binfmt_script(r6, &(0x7f00000001c0)=ANY=[], 0x208e24b)
r7 = syz_clone3(&(0x7f0000000400)={0x0, &(0x7f00000000c0)=<r8=>0xffffffffffffffff, &(0x7f0000000100)=<r9=>0x0, &(0x7f0000000140), {0x21}, &(0x7f0000000280)=""/193, 0xc1, &(0x7f0000000180)=""/142, &(0x7f00000003c0)=[0xffffffffffffffff, r1, r2, r4, 0xffffffffffffffff, r5], 0x6, {r0}}, 0x58) (async)
r10 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
fcntl$getown(r8, 0x9) (async)
ioctl$KVM_RUN(r10, 0xae80, 0x0) (async)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000000)=0x3) (async, rerun: 64)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (rerun: 64)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r12, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r12, 0x8208ae63, &(0x7f00000004c0)={0x0, 0x0, @pic={0x3, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x8}})
ioctl$KVM_SET_IRQCHIP(r12, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async, rerun: 32)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) (rerun: 32)
r13 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r13, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0) (async)
getsockopt$inet6_IPV6_XFRM_POLICY(r13, 0x29, 0x23, &(0x7f0000000580)={{{@in=@broadcast, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0}}, {{@in=@multicast1}, 0x0, @in6}}, &(0x7f0000000300)=0xe8)
read$FUSE(0xffffffffffffffff, &(0x7f0000002fc0)={0x2020, 0x0, 0x0, 0x0, <r15=>0x0}, 0xffffffffffffff53)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008380)="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", 0x2000, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000240)={0x18, 0x0, 0x26}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="cd89bc3d1500000000f3b300e6b9535c000000bc6d2e86f55bc635575cda5e4f771538b3b3e03fb5d402f2627928750495ca35755070b2e6b446edcb68db5029c1f1597666c6d7f880a5a5024281f7fdfa9d0ce047fc27e5e19878bbc4584483d28a"], &(0x7f0000000640)={0x20, 0x0, 0x8001}, 0x0, &(0x7f0000000700)={0x90, 0x0, 0x0, {0x0, 0x0, 0x80000005, 0x0, 0x8000, 0x0, {0x1, 0x0, 0x0, 0x1, 0x0, 0x80000001, 0x400, 0x0, 0x0, 0x0, 0xfffff801, 0x0, 0xffffffffffffffff, 0x0, 0xb830}}}, &(0x7f0000000f00)=ANY=[@ANYBLOB="180100000000000001000000000010000600000000000000010000000000000002000000000000000000000000000400000000000000ffffff7f00000000120000000200000066ad10ffc02b6935b7000000000000001121000000000000000000000000000001"], 0x0, &(0x7f0000000a80)={0xa0, 0x0, 0xa0c7, {{0x0, 0x0, 0x0, 0x7fff, 0x0, 0x82e, {0x0, 0x0, 0x9, 0x6, 0x0, 0x4, 0x5, 0x8, 0x0, 0x2000, 0x8b, r14, r15, 0x7, 0x4}}, {0x0, 0x11}}}, 0x0}) (async)
sendmmsg$unix(r0, &(0x7f00000068c0)=[{{&(0x7f0000000940)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000009c0), 0x0, &(0x7f0000000a40)=[@cred={{0x1c, 0x1, 0x2, {r9}}}], 0x20, 0x40000}}, {{&(0x7f0000000a80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000b80)=[{&(0x7f0000000b00)="d7accc87b4f03491cc4c2723e2bb222848d839c9154bab44", 0x18}, {&(0x7f0000000b40)="e904ab8bce23213825447fe6cce7f07e4192e365e0137f4a4753b06177cd95d3a23bbe3ed540000b82c49c40b683dec50d48afc0f4169bf49654c2", 0x3b}], 0x2, &(0x7f00000050c0)=[@cred={{0x1c, 0x1, 0x2, {r4}}}, @cred={{0x1c, 0x1, 0x2, {r1, r3, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r7}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r3}}}, @cred={{0x1c, 0x1, 0x2, {r9}}}], 0xe0, 0x8000}}, {{&(0x7f00000051c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000006380)=[{&(0x7f0000005240)="93445ca8efab4c389da40ba8399753b88f95a3d8b7b33c9a", 0x18}, {&(0x7f0000005280)="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", 0x1000}, {&(0x7f0000006280)="5492ad18e9f7a8fddae45985330b3de4c242909675ebc5f177d999018f37fbf7b1ef926048f6b63f1042858da1f5623d9ccb9c9ce38dbd536f444e7f5a035627d4e20fc8a94ce27d423776ced79abd1f76de2d2dc89b5638d38413d5630d5e8bb7d2eae00012e1631faba43524dfb9e54f5acd3b0de2c767cd8948689ecedec4d55253c70ea83666b47722ac7b9488705433c194dc8c97e696849441bee9e892a1e9350e2878b03d4cfd76674df19b5a88eb5da5de145fa8c12fd6f78cac3263e5598f1671ce1f0b33374b4cf4faeef7b45b87be2518fcd51a76a5e7de054d5800d8a1cdcd5a3080b0cf97", 0xeb}], 0x3, &(0x7f00000063c0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r3}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r14, 0xee00}}}], 0x40, 0x8c0}}, {{&(0x7f0000006400)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000006640)=[{&(0x7f0000006480)="d38e6717f5dfd739d4041451de85a5983d44e9a9dd35155cd8005b25ce7bf933833a8fe79c415dc86174609c09785fa2e1737ba6977b31132977dcc7d200afa2f1124ae94c3adcba5e730ee3659dfb74ddc96507d6285e49283906bed525aa3b1e064cac6e10fd7716de019eace04780005fea3fbdb7cbb0d70e41a705499a62e6b328cd697fe6bb6c02f59334f5c6", 0x8f}, {&(0x7f0000006540)="b9470ab2061fcd736fadd908ea1c7072d9d2024f4aeecf82555499c3cee37d68e1c01d767cc32e9744ed7e62dca4cc56cffef922a5beed3ac25c4d76d53495fe9e2184e586119d28aa40c0fe112ec42e10a7ce7126923ba99343caa4dbf911a5735613c106b3bf6ad8d5de9daa7ddbe8d63c2f061e8025388e022338683bfa8db2c25d67ac8dcf0504aace1cc41795391e09b7d68f8cffafce5771f84f35ae7088f9aa69ecd4fae4c6971e282159c281dabdb89214ef29b7ecdefc044c4d71e7726039c20c9812164fa6252b24bd06cb41cb165702e6", 0xd6}], 0x2, &(0x7f0000006680)}}, {{&(0x7f00000066c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000006880)=[{&(0x7f0000006740)="f36e873bf19e87f963c85dbd84c5f4193915b654ebbf58aeacd343c309793679cc35f59e300734247ec8d9b74defbbddece9dd702f85561ae21201d59363d8e53a246d7c6b3b84c1fa8cd15689c8b9e84b24cb5fbb450826eec95044c2e23e671e29526dffa3a025ba6a0747", 0x6c}, {&(0x7f00000067c0)="9bb7a6519f504bc094ddeb024f3bbc7548e84ae0e8b26be9036aef4b7b3ac887088df2b2172e8d59441deb60786a37a198bf9893bb81971f1737f6638447e1f53d280935f6f0d92bc5b664b7589626c6100a055317c47a0d39f96a4dff9eedd173cb921a7dce25eecba2f93b9423d11652e8e0931fdbd8ff673f10fce09d26682e2bcac46102ef751f012cb3dae766c4cace31cc8ca09029a4d5b4e3e426fdc7f5e4531168af6d441e7495dc8635618dc619e9b7a76735a9a5e8888da13717", 0xbf}], 0x2}}], 0x5, 0x800)

11:26:41 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

[  484.613010][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  484.621329][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  484.629302][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  484.637296][ T6352]  </TASK>
[  484.642626][ T6352] index not increased! 20ffb000 <= 20ffb000
[  484.649611][ T6352] BUG at mt_find:6473 (1)
11:26:41 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x0, 0x0, r1})

11:26:41 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:41 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

[  484.656345][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:26:41 executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async, rerun: 32)
r1 = getpid() (rerun: 32)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) (async)
ioctl$DRM_IOCTL_GET_CLIENT(r0, 0xc0286405, &(0x7f0000000380)={0x6, 0x24b6, {<r2=>0x0}, {<r3=>0x0}, 0x0, 0x9}) (async)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
r5 = getpid()
fsync(r0) (async, rerun: 64)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4) (rerun: 64)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000480)={@local, 0x1}) (async)
write$binfmt_script(r6, &(0x7f00000001c0)=ANY=[], 0x208e24b)
r7 = syz_clone3(&(0x7f0000000400)={0x0, &(0x7f00000000c0)=<r8=>0xffffffffffffffff, &(0x7f0000000100)=<r9=>0x0, &(0x7f0000000140), {0x21}, &(0x7f0000000280)=""/193, 0xc1, &(0x7f0000000180)=""/142, &(0x7f00000003c0)=[0xffffffffffffffff, r1, r2, r4, 0xffffffffffffffff, r5], 0x6, {r0}}, 0x58)
r10 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
fcntl$getown(r8, 0x9) (async, rerun: 64)
ioctl$KVM_RUN(r10, 0xae80, 0x0) (rerun: 64)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000000)=0x3) (async, rerun: 64)
r11 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (rerun: 64)
r12 = ioctl$KVM_CREATE_VM(r11, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r12, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r12, 0x8208ae63, &(0x7f00000004c0)={0x0, 0x0, @pic={0x3, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x8}}) (async, rerun: 64)
ioctl$KVM_SET_IRQCHIP(r12, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async, rerun: 64)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) (async)
r13 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
openat$cgroup_procs(r13, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0) (async)
getsockopt$inet6_IPV6_XFRM_POLICY(r13, 0x29, 0x23, &(0x7f0000000580)={{{@in=@broadcast, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r14=>0x0}}, {{@in=@multicast1}, 0x0, @in6}}, &(0x7f0000000300)=0xe8)
read$FUSE(0xffffffffffffffff, &(0x7f0000002fc0)={0x2020, 0x0, 0x0, 0x0, <r15=>0x0}, 0xffffffffffffff53)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000008380)="b39000031794b4db00457b4d45160130665a942e034fc2e38a554ac273199b7bc3d69e1f8bdcd41627bdc56e3af4bfdf0cc465e6bca06430b1532054ac54ceb9b00e620238be77945302d41431d722dee8f64158b819096f6db88cbe5a9931063e95a867758412a20ead4e92b9f3fa477077cf783c5856f9f475b40d291dd380c64eeacd618ba92d977f81a56191dd42b25ce0855419de94759a42a79818bee3b0beaaadefe13d4559e86d7b064fa1aff5dda5463af200257a77ecf376a7ab9b5c955a94728d0d694b57726a94515b6d402c09e130732ce7eb5308e177fdaad16bff9f117802e53709c51774edf801e6ef0a2e62a8fae14f66ae54fb9c060560ee2b0f31fd45f0d0b3a2625d2848443a578e3a349c421787607774087eab0a8f26c671b6b0e72a38a33667413c9fa87a6be2207496bca4dfce517bb40a119ae7904682b317f9d4efca335e96475c0b3d9578235d674bc1da4bc91b2452151a164b15ce6f0f957babbc3ac03ee54cd252b1a20725e8368e4aafd23e3944279af5fa50cc830053ddf231d1a5e9d91cbc52cfeeeefd2236343857b35af8343efb2813f87c16bf06d0a0aab4d21c06b54ec52efde50fc9b2b5658a80dfb8b0fe6e22f07e57a5ed14372c180a47bae8375acab68011c8a54ec8097f3d78da237216e2f91fe34fe78b4d69c29956f0786e80e3104ba316e89bceab54cd62751834bbb11e7f4c460b9d7deb70ad6f6aba5fbbc998633badd3a46adf6aec814377236700bc81431f5ffc7d147ff3ae1b56eb33e013b4f16bb4fcbe07cf7b8ecdfb28990cf865ad2cd46a441f5614d5db98d500380363b9026db16eb0e726995b979214bfce957b3bf21c27c120c617613a54458070df43d1bed278060107fc335781c896294fc19202bc4cb6077541782d0406a6b96037892464838f465125523ea8d56d6031f027bc9aca883a2bc88bcf571ce41e5450352fc9763e5836732db638bb8c5ad6645b93db54c312d81298acab46df9ac0f694fe430d2ca1cc1771d7bcb72118a04e73544e7b5f8800e2da6c01b4c83fd9a53868c61fc3040541ef09375131a2bbf892f826e12793c24969c5bae4b18ec3c687380bc2f7625da1e51266fa185ff2f8ad3ae00db537dd561695d390a72dc56273938ce4696787d4251801bc9edfb3c6696e9a34c7cde6ef7bc5fd0f891627c75526b5baaacdab0f71e19d35ef641294b7485d8221534984c2a3dbcc6c4e08ca187d0aa3873894cf950c44e46c46e196f4b8e90a1b3c684839d2fffb34784ac4584ea69b1a0883294b8ac8eb97ed3b134e82f9544ec2a4e76cae4ae56be5848f58737d74155256501ba0ea6d68f9ecc460caab7532791974587a898b6c2e61fc4d9122250496511256c047a0402f6743f7e7dc363ffd46b6f18d940e870f079e70a98987d213e2f917186829c8c0bcef643f3967c977d62248a457fc802f87cac145ad8b6ba7727bfa6833ddd430e569b39c7038db02a917891d6d30b19970bb9dfb02ea8df3b0b87988acb68ac610144afee0f5a703be784d9399e5cdea82caaf053c458994305c08b081ae2d08636dd3f2a3a12b583d16cad09d67cd539fc0675bb33ded0dd58dfbe50adc88ed91282915fb1e237be7af25804025f720384d4af077f1da96cb3544626c0bf399257698c292c6f22fdd5fc2218b00eefaa73e8100f0a93b755cff7fffc309b30161bf82759a3f94dc69b78a6fe66ade483dbe823242b1763a764cccd9421fb4bcf0f3fe09ded92c7ad7c9405bc6ee5aa167f0685c6b6b7c912299f49963026fb8002e5a0b7412c1fedb6ec96e354c481d11f11f2eb577c000ea04d88060e4575794e35e9d99709e44ba0a27a5ae137795277a67f7a99cd9a8191aef46d58e4952e7e40fec7761728ed58a247b3d75f5646b487d101da3faac44ae8185e5cb8788e315c2d5e763d84cde9921c294323cf0cfeba6dfb59b0388f9232830cbb6c6c04b4dfa48696875ca64eb23ce76b1094e5005bbb5f96486ab4f0dc8273ddf04aae7a1bbe5253fbec18646fb4171f5221a617b9d4d7d3d949e3f4f4060567a64018f5e86de8212fd85f91ea25acb2f57bccb7a3d8c19227828abfec4cf5352b1bfde31766c3c5eeede82af1fcbd57797ff804841a5a5f9e1b0a4225408465edb96b4b57361b1b92e20788f473e7fcfe7f34759a2d87f8a64184ef60fb3dc9e4534e172bbcba3e8f0d975437e610bcd12b853e17581c29e07ef5611ca6e46ef43ded81f62432ee999205f0ba884545c9e50f0588e987349745587eda38ca40635b254d088b677e71bd0cf8d53d98266fa0f53a55a6f61520b4bc7d802559f6963225a82871617909dada0834195617c4f377be949fd33f65c2583de74cf85007719629a039baba06744239da0620c0ac9877496a7f72aaed4ee1e8ff67cf09efe8688346e41eea895d1b40920dec724cd04c1f6ba391c6f20d213f504ac36541de9e4f58f38aa3c9d5fd8d17f05f54b73e90d2922ee5d17f5b914c6118bd7c911bd76180bd46b9828bf0f6644df09355983d435b5640bed2f8a20f88f0b4833d048b2c9ce3c171367cdcfd966f51ebae682f264a4fe7c19226626411dc180c08903ac51ea535aef18deb9976c915da190aacf417bcdafab7abcb954a50c86c3149e7f4b6302aa354750c3515cd9d9ec2347a374fe3d2e37e806d4a70eb3bdd9bd8ef2b142f4e0ff97c556ef7db16917fe8a9dc17a31b3f039b7c790c91724aace371b8ad6c05ea58532b0a859b2447b65e362e0aa213fa54dacf3a522862d9393ac9c376c8e5b03fbb28840518baf2d8fcd712e1423dcf2308ff5dd3aeb948ee51951bc3f23a2913a84bd36c47a5e3fa26dee9fab899c31e8ed6ca1f9bde5f9f65a8ac90e472d1bd87cff0f088380fae4723914668912ff37670e50c69b5a6d36e8e15b143876087228a9c2525a3aa0f09cc2f055e85f8f3c13cc94a9ba47cf7ac5b369d0e15d6af8a516450df23818c0094cedf7904c3b9fbc010d9fb2f03837455f42a22c86ddccf34c019225db6eb65cf82123e38c0f4e9646d20438771e2105b95f3fa2261f115e4952091a81d092106f67330592e7efeed6215ec4a0acf6d7a9ff05a91a4c1198c270141d73c2fabf90a9234a09d3fb0d1f5435feb87a2db9b3ea9722095b761c3a467ea5ec27a2e651f7a6cde1664ec28a8b95f1f4134fe950f9452bb47a9fd01236729b67e4c560029ab9721afeb6bd633205497bd6590507f23b562904760b8a0d0305c8ae806bf132c039f6010af60bf68cf8227f806ca7a7555531a7d1eb712e2e8ebf2772f8df9c9530a896da851ead6f89af5889d49152280024fcef14e44c999e05bbb887eed5582ef852240d6b28d1e5bc49d6362258c2622875faaf2345eda8e74abb0c7a15a6ad1ab667ecebdb0cdb59abb66925c75e3bf7f3dd1d6facc822f25da114695e5dbbbc498637a067148adb0ad33e625abb8df4abc6a88543b3bb653156c51825ccb4549509caec677c9be18861790bf4acce7f5124be5e7c2d0eebdcc2d02db228c559f2614ac448f93b7ea9b5959894eb87cd792ca4b1083cff08f29decabcb2af81ced316760db4d9645361ce1ebd85b18189f306666bce44ac4e1b9bce5b1137bfc77b069b0ad9330995b5b1da25dc01c3cf1b492365d813c25b14cf29abbcb32476136c6c9ac1ac31ca441c4b41fbf37c1e21b97bce328cdc951c577743cdbc5310ce95bb6de0a7e98fc154350fd1d8549d1cf241d73ab52dfa0bc0f4b88e1d4625fdd09ffeae047161e339d678e4e1db58cdf11af3e36477b4948795a7aafbdcb3306aab2196610f16c22547e3a3fba26b4ee9c7dad5a4ca39b14202c59ea08c99467c8b525f5a3f39d76b608ba525391208856cc7f8d570998e5599b2fd738decde76b9163b4a42c0ce27b2f6c544fe56a50ab9dcd637b0b10ba25fdcb997e6fbc6703c50fcddcabfec947ebb07445452d86f4d775f9c15940f6ac8b0e2264ec13ac50bb9bba9dc4f29a6ca77cd31dd67294ebaf2f5280583b41ad15492ba2838bb43e1dcc4e754f759b9debe0e680ace63249fc3b4881a8e205435e6e92d93677a07ecac22da4a42357cc69af9305c9a7187468b9e3d22d186707751136138753c7da1aa96ccdd15f0c63b6a0dd127c344b4f382e78a06f8816123afcbff6b39012fdbf1ec7e69f041dd9cb827bd4baba48ebf74bb76ccbaaf4112ad668370d4bc25ac44e92169679d23778eebc137dc4438b0da3cdddedafa9f0ccae686c09f90c7332d95ae603c0020a20fa6acf2cbbeb57175986a702cd214cda8d2810986ba2f112b2583e86df4f1c7fb8588d293565ed4678ca320e02c4e26db865c8da4ef8725c5410da4ababa01a137dda2b610d20acce8a9a57a87c2c71fcf422d0f38bd5833a96ad12a0ed1da4200d0f91baf3065475acb5768ec62466816d8036ede4e93244ad28eb8c4c3f01bb986aa7867de063aaf0cf1855ddf3c7e7d2b8f7d7a10c922fcea7c2e89360a64352d73053ce6fe379ce5917f1e51a71f82d22574b3fa14fb52f29545b04ccb32f93480d9cf28cfe0e8ec9137657c9116a748ace1a415fec901ca4f68e1ed440e475cb208dc6fdfce70a071b652881dbf5ac31e735acd4375eeebe3fb214d117f1acb1ef9e80bbbb16821d62f4b395c85d0b8350233659d707e69781425229f8619474fc587071f9e6cfefbda9bff7b766ac0212291fd1b123b1cbecf84b8cc9dbf0bf7e862a5c5f1e9ab1a732f135530796fbb709d7b636e818dd5b25c03f234731f279860e35b26962476e2e533cea5db7e3fb582b2f5751437775532344df7dc5b1d30f4d326091d0b2bceae714eff3d1e73be25b899a2f54cd1e420ca86b9529a01021165c0f8757d43b870374b5390d7b1feb97a04cb851234071bbb3c8705027f0ca7fcf75044d49a774bf3ab3ac4d36af87a4df2910d8c90b48e31e541a9ac1253f9197eb8add3f768d0e86256455be406d0b68a883a3e72d1c3b53fbe9d6d3f52beaa0572ed8f5a6c1133870e3e107fae0ce6cada794ec0db4c2505df00a472ef4b1e5ce927eb342208374d76ef51549a87e1cc6d31839474acd2786a327d3ee5661c0bbee0190a6e7975847b052c15f0f4d6d79e4ccfafda7539344f9b489c765bf593bcf42890a3d4a8dd7f5d83b8923a51f60d7ed5aa563101b387fd69a8751b70f96e404645791a14a1065ca4356c2967307a1af855e588b01385dce0d483902f84824b9bc758a7e8e956fb7faa3abf6999696347a8518a4a794c2489f2602f1fc25e97dc7b21696124526008705e5a3b204123d28c5f3a3b0f65c06f4bd2d78188a19dff12ee93cbb0636c38298c64c23c7aa22a02809fda4d9884b96020edcfee276eccbd91226ad4c191c2e1f24dd3a5586482d40bb9dd668142bfea4fd6dbc7b2c70a862657de3bac27ad85170549e85eb37754160f4d4695d3a15a300a66af3d0ea339e7fcca92d22d51f199b3aa92f9a9c3142bbc8af59f472425fdfcb08740bf23fffb14d2bf0407d14bcfdcf96512266c3cb5c5732ff6c7ac483f9a59f0620c79af4556ad781e481f8b39723682348bff16c931e6b16111538d9812ee591926346c84f9dde18cf5985072fff39d060f204e245b991c5c7522180b1d1b8f308dda298d8559ef54cb643f75132494d6950e32ad55b75900ae7e39653180443e4c4fa03bd1893b4d84342d708a71237eee6ee332b81a8402fe6e3a3af224bbb2f8e6e272b7ea2edd7035b81a9bf19b7439a3d3d84c5ff2dac411cf89ee4424e92cfffa20ff65172a54adb7649dc86cd53f58be15573d1fe4583a007f3183029532aadf24fe71a38bf0b8a72ae794efea7b8175fc9d3c882f3f6da3b043b91c7f890430265f439834b0c6d231e4c68b018f80fe4c2019b2bfa97ac196ee39e28dfd5b8e45ec12ea1e471c47cf2167c722e5a1ed5b18ce17aa9c8705f2567ef4624e956d903fb661b78e2744826fe98ca6e9d50fe2be2e2d7cd5920fac6893b0922e9fc422cc38197ae02eb5525d13280e0538305a8e39e0edbd73d95ae50c93d51ddb874cc2f7bdb6a5e4eb62cc62fb5e37a13528ebe40f182d59b8bda00ff36e1ab5c78a1aa2708082a9a8faa48b8d1ef9a0376dbc313752676296e7395d503250b5c43c3a71b253e3346f29c40f8547bbb95f345b0ecad899a07f8ee6256a09d4514652e108a18c1d82c665426dfea5bf342b7eff4c0a274551d894fad5bb5db73812976771fd19f2215ff183e91181025e0fe903c5c4dbf39a16a90cab78530b16a6562a5bc5da6c2e92c6e0d698960552719e9233a7bec0a14d5136d1a4d5c61f88ea26aaa145fb8d20b89ce8779e2662c1291b3455a8dbb3244133f7294cc9e8d123b47d33354e2061eca5cea5d6fe6b558a96fc2ee126286d50ac4e763487b47e86070757290c49ad4c9068411fd434a5b9337459cf0a337cfd51257b2193a3262e06cc7104b07dccb7b13e15028f68da222437ffe6a39bb4c51533bb1bf8222dbdc6ab8503b6a6d8a90ccd34e64083621af4947160d11d9aa1aa094dd2965cf430be975c4f0cc7110aff09a45878b884ff6d660a9ffa57bcb989fd1ff68ba2a6e3692d2a7a5dfd6b74869549f5008a115ff75a4cc12ac2ab4e35a8d33e80fc7e0e4e1bf01989aaffb3727880b7abca2cfe944a401d146daec34ae26bca41e476701036bf987667cc34e625bc1f573b1c2526aedae1b29f3d6372b96801a25688216db468066faee50807bef8b8ccc835f13c673cdcaf0fb64f26885ca3328db1429c801a76fd6ef88fb773705cd5751096551fb1f3b0123b03ca85cb8fb441c4e46f952ce7f64fb5ece6decc65f7a285e45d33494696c02a344b61d044a2548aa75a3eb1df1458ed12d93d41c154297dbcf6a79843769001beb5a0a251c1c8d02512b14a1744bc806703a6678574cb84e015cdaf8aa8c584b119f378be0e3f439fa1dde68d48a2526044171c1997c20f6214a17f91ddf3e5a4d1d7c79aaac5c74bd0a9ad30f69aec6f5ebbef8ff7df31da1d19f48ab90839e5d9dc825509f21d0d0635d65d9fdbd2f03049872bfe6c6375bc1a5e04ea4efcc70aa283735869d3839724c8cd021290c14d833a6a5fb1408ce6328f5ca08558f2b37f1103cf731e5f4d0141a90b41d69626be1f61f5a32b4475443edb184abf2e615b49377c5d603640f664ac81d1cad8eb4223f1f1766bdf19c53d089b1b90e8e3102a954ec8c53a6190689867f8accf02f138cfaff8de20a3891fd80882a89a605072c975d2b085c34ed0a58d23dd9227f7bf7785678104996b80554ac1b9d18c7fc7fb289afa8bad86d26007757d36f02ff60826e86268d6a0c48928fd6867940032143bc47fd50d9aa43638b59cf17205be081e0ddfbbdf410a7e4d903c9679ac8d86ebec10f0717a680151ca1339ef7d35fb0e8df18a7311d4d0b55c945ced503f12cda550cda2e694bb0256c2835c539783fd69c8cadde4e6f38fad61c56920c2bb67ddc08ea7d74b1807a039ca6b3437bdcefb71b2aa8d1f5617b9042078928860466c143b7a34ddb442e47fa5531d7ba072988387e41ad7174bbf353d915343c6487a97d99382cbadb6802397a7dbc9f75d83ba02a19e6d18a71e48d2585e946a5c603a7ba1be001d460011600dd1ac483e856805a4744281b7c927a718f28674b9494bf199c55276a400ada0af59e5bf9dae7f58bef7cd682032a9c897c173995cb18fbda68880d8e1161041a5d6c1873eb980767ca6dd1bc73a74529215577fd0ee32f16d2a594f3acef73f3de031025270cd25bd210411c6d67c2d2c673b443a512c9368599f1d7307bdd9730969d6d4dd07656e227871aee7fa945a24ee4249c5b498748a14dc8d7b1dbf8059afb99b99b7dea89c610521408512a7ee8940afeb0878e780eabf31e9aa356900bd87cdaae2d155d939c7033fab8947d690d30a451c1aabade8da29db8082c1ccbea27889067e0b23de6c320e72d717b9df986a7be30703e348795a7eb46e9177c08a0e87a4b0bfe0991868062f72bb570829a69fbba9fc0921c35282a112ea3ce478ea242965b7d6cded9134e890b0d9ee338863e8e1e8278f3461cd01acb9d09023913ad23346c661885b8ab0719117a03759ee3e44c44d4b6a3ea4cc9b49518cdce752f3cb5ded7fa411f49f84bf04dc599c4dfb7aac8f810c86430c6c5c2370622d9dba03342ce2c71adb6e51d9a61ea59b54b215ff1358b1264bd96d9a182c0c50288194da7f09626dc912966b0ee09ba6ab892958109db3cf357a758fdce997cea1767c89bc519f1bc5469785a9128b2d1d7785b7e9943b1dc6c308dddf5a8e3cd210f9fe91a077888aa1e9a3838826803817ae55573be50c6cd9de0c4f76ad93dc2e8d95233a5f335f9f2d0019d706f723c31fe59d95dcfce7ab828f37f87bc12926a0c4d4206c8288bf33662d022df282fdbce78383846eb5cc8f6c79d14bb742658a8056403753a9a05a0b4e3bed83ccb574f147e3a7886cebbe423e60dfbcc2f3e3b806cf0233654ce58dd0c5452632438c91b06423a4bf944edda4c479071ca5ba7279f8a23e300ba42dcfbccc13bd5a618bb405c4de2a1c14289b2d5c5e1ccb2fbcdc2e1feb9b9d6b83f198fdfb821aeebf34ce443065094f779c10320b73d1464a5d2264894b62a7ddcb2124e9fa34ded529d9c4a7d99eb9a1ef80e7683482e6a7305b4323185b1e2ccc22a353f16b8584136e2ef2a6492243523c23bf3717c04ab75c5d26927e80cc958f25999b54160d7fe26b49dd94082ebea1a4b0daf418f81e65991ca871f359200a02c1dd43d14dacae4948030a80ff24d07ab6f90009dfc5efb693e18de4494b113cc79a4a686ec8cf9ab5081731d1cbd94a74287c75558b5f4badb7dfa7154b67067e786befecdaca2284d57836217248b06a4f97fa635e9ef6588c4f4528ccd84cdcf0fd8ee201ae597040ddc574bef24d06e6f0a127ec3c604f8e9cae2cc8d3864b9d608f7c07476dc4b836e7bd0fce7f4fee4e77dc3ed8e038cfe9c85453f6ad7f06ed7dd6cc69a8a796b8beca4d2d4ec1a3fd680bb8f1f39f152b785fbf941b3b1b4a81f900e1828efd86f53659d872ccd58545058e75dbf7053db53023eee2cf496070d1e86b2b92a1080d5db52c5ec61018ded25f1ffe318f741ab24049cec2285fac028d5a835fdfb14fd2b4ae46d5d2d74263ed2337d4e9ecad03884a50b3cea756601babfc226cbf9933bff9a518f627df8ca82802fa5436184ba9d2d06d38486113ea675c33593a6fde0ec7292fa4182fc30c474daa4408de64239f3b32680c7f7ee7e30cac251cbcbefa188f8f417a7ee422380102109ae813b0ab7619bc5ae1e80b94c4cd3b4ddeed8ca78f493e8019964b0a7bd3109dc4b78255f4b2937adf2741627c9fcd1ec76d18cdfdca25c160f7ce6fa7d9b33ae58e8719410b1b04891c107dcf1ebc2953148c1cf338074a065e2820cd1d2c6909e6cf57d4f4e7c3457ad4d2a6400154b4514155f955a190abcdf34cf577f448e5d87ed91658fbeeed08ab23c6d7d049150a3327b203450e07dc5dd17d9cbbfdde1bf458023740585c55d11b16dd1e0c300040ab0a88ca8ef20ebd79d28fa1ed8b2fc3e593416d0c355f6e1472df8e5d64d6ed4e82aa6150418078848305a44c948fe8108806737666db72558f50b5c40803349d56353371ec456e9d76ee39096507d036e02adaaae946b4bded091a426cb4ecfa209f9631af6d4756427cace2632a54922608b42e6cf3616d8f504b46be360032c0444a8edd3ec537bb09ef1247934565aaeec7b3a361a527dfe8b678afa481d42027fcbc2c765970cd5eba6a561ce71367909896c70ea695e48553142619b44fa6c3435ea08352b40b762acaa90847efd500431e6677379cf48b2fb3133206cd9bb95663faa6f99fc2dc0249a8d59f4f63cd4ec70807bedf5f7b22b03438f46624d7bd865deacbac131b1ad33c53ee237b53e83b5fdb79e80b7398ae4a415c21aba3594cde947e6d450254a90fa420bc11aa0a0d53cfdafbe462b6f31e483e2fe55bddb5d953ffa929793d63c8904d845024dd89d208f06ac0e2add33d2501764ed652b937916fb7b74140338e1686bd6758e8f7449ad4a3899bb61cc071f27dc2ca20e4f2793aaf18d3592aabe1d63c642850ca0cc421d2e3e026abd141acd5f5ec694598c59aa72af0829f8c5f50f8eedc81dda5370b1e3d08ab9957e2c4775da611b12d13182168f52318cca96ea902393d2386e1e5ce53d895f237c2d645b9fac1a31535e7df75a8c614419a4c47d9b6bee0800a24c8be7f06565e35f292876a18552630278cfd8ce42b97038fc85b0c9b020031bd71ed1570cf247ea8e8791ce4940952286e5f00bc7d87c91b727aa792475489b84544164b6ab343ccd3bf56b911eab1a058979f60950f13a1406726b33a0baa6f168747856d64093c580c1bb2d0978f81c2fa62cf3902000a94b7bce28819a5a6e196469fa40a7b650968c9a92977bd1e58a82ee84baba8817b84354087c065cecaffcd98622ddf7f2c71979a3d0f7a6297c01dea8bb3a1778cffcf97528c4c8387b14533ef53795a7098840e314bec8d4d9aeaea0ec4ac74ea7f12d57ea48f81a872b43ce24fccdb2eed4dc71b614c18a1d842eadc867c28803381ae6405bb5dc6c72b2076b9c36f6c6fd573ea56da7af12678e95c7245495a231f01e063ccc60c1250a00b444c53358c9f6b3b8653e6c8e717df1ad86c6d7ee8bd3a4a0c40ef1df98eb3cfb08e96b62cd00b8ced4d297b21475ff44052922fa10e1dc118a89100d3ba4f94cd037ac61724ac1124d6578331a21bc2c0522cb8acf55612ab11788d3592101a7b5e22b6371008c11d9713ebe3ebefaf482b3776b373d6fcf952b802bb5f220693e9d767d662eb1adac00ef8433c3061f37b64cf514e216c45ffe5237a6ef127b1b417c6625189cee4fc033ac9f178c105da37c2c9807b53cb1f9017e95106ab7fb62a37b4a0f6c7f7df3e997bccdee7c3250940573e17d4e0831ffc81feeebb1e32511d6c9cc7462a9f6288b74acaadd609bb5d49f0b3182161f8b8fad112413e36bda60035d12ff37cee2e0135696cb4b3f5556fc9c2f11c6c223aa07c0917dcaeb12779aa61507ff31f64c5c0a3f56afcd56f6ceab08c961115e7fa289ebd2a32e51999ba6343f240348e8cb8e6e7985cccd6d2b227ad43e2484498a2713f41693ba6d490896065d47fd78ef21098e396d09c5dc9575c4bd5dd58022f55a3f214fef7cc6d84c0ad99aa50a11bf4311a352a3e8d8a9cf7c54ad69640c9aa946a30d370eb031eb9fcc6c2e0854aa8f328bb48cf8245d9a2748ade9a816995833c6be4a08b72aaf310e9773946d19cb2530131af6cf527b72cc6a93e66142f0cc643527bd8f17b264e431be01a6c8aa15d95be51ed03ef5493ae2713cdea391e27307a53e15721fe05afaf92a2e4e0d7eeb3213db8d5b376be742561e33d17b83990e2e3a237e5243e350dfa7d8b599094042ee5a8270e660bddbae790e6365db8d9694544e0d407661103", 0x2000, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000240)={0x18, 0x0, 0x26}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="cd89bc3d1500000000f3b300e6b9535c000000bc6d2e86f55bc635575cda5e4f771538b3b3e03fb5d402f2627928750495ca35755070b2e6b446edcb68db5029c1f1597666c6d7f880a5a5024281f7fdfa9d0ce047fc27e5e19878bbc4584483d28a"], &(0x7f0000000640)={0x20, 0x0, 0x8001}, 0x0, &(0x7f0000000700)={0x90, 0x0, 0x0, {0x0, 0x0, 0x80000005, 0x0, 0x8000, 0x0, {0x1, 0x0, 0x0, 0x1, 0x0, 0x80000001, 0x400, 0x0, 0x0, 0x0, 0xfffff801, 0x0, 0xffffffffffffffff, 0x0, 0xb830}}}, &(0x7f0000000f00)=ANY=[@ANYBLOB="180100000000000001000000000010000600000000000000010000000000000002000000000000000000000000000400000000000000ffffff7f00000000120000000200000066ad10ffc02b6935b7000000000000001121000000000000000000000000000001"], 0x0, &(0x7f0000000a80)={0xa0, 0x0, 0xa0c7, {{0x0, 0x0, 0x0, 0x7fff, 0x0, 0x82e, {0x0, 0x0, 0x9, 0x6, 0x0, 0x4, 0x5, 0x8, 0x0, 0x2000, 0x8b, r14, r15, 0x7, 0x4}}, {0x0, 0x11}}}, 0x0})
sendmmsg$unix(r0, &(0x7f00000068c0)=[{{&(0x7f0000000940)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000009c0), 0x0, &(0x7f0000000a40)=[@cred={{0x1c, 0x1, 0x2, {r9}}}], 0x20, 0x40000}}, {{&(0x7f0000000a80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000b80)=[{&(0x7f0000000b00)="d7accc87b4f03491cc4c2723e2bb222848d839c9154bab44", 0x18}, {&(0x7f0000000b40)="e904ab8bce23213825447fe6cce7f07e4192e365e0137f4a4753b06177cd95d3a23bbe3ed540000b82c49c40b683dec50d48afc0f4169bf49654c2", 0x3b}], 0x2, &(0x7f00000050c0)=[@cred={{0x1c, 0x1, 0x2, {r4}}}, @cred={{0x1c, 0x1, 0x2, {r1, r3, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r7}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r3}}}, @cred={{0x1c, 0x1, 0x2, {r9}}}], 0xe0, 0x8000}}, {{&(0x7f00000051c0)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000006380)=[{&(0x7f0000005240)="93445ca8efab4c389da40ba8399753b88f95a3d8b7b33c9a", 0x18}, {&(0x7f0000005280)="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", 0x1000}, {&(0x7f0000006280)="5492ad18e9f7a8fddae45985330b3de4c242909675ebc5f177d999018f37fbf7b1ef926048f6b63f1042858da1f5623d9ccb9c9ce38dbd536f444e7f5a035627d4e20fc8a94ce27d423776ced79abd1f76de2d2dc89b5638d38413d5630d5e8bb7d2eae00012e1631faba43524dfb9e54f5acd3b0de2c767cd8948689ecedec4d55253c70ea83666b47722ac7b9488705433c194dc8c97e696849441bee9e892a1e9350e2878b03d4cfd76674df19b5a88eb5da5de145fa8c12fd6f78cac3263e5598f1671ce1f0b33374b4cf4faeef7b45b87be2518fcd51a76a5e7de054d5800d8a1cdcd5a3080b0cf97", 0xeb}], 0x3, &(0x7f00000063c0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r3}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r14, 0xee00}}}], 0x40, 0x8c0}}, {{&(0x7f0000006400)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000006640)=[{&(0x7f0000006480)="d38e6717f5dfd739d4041451de85a5983d44e9a9dd35155cd8005b25ce7bf933833a8fe79c415dc86174609c09785fa2e1737ba6977b31132977dcc7d200afa2f1124ae94c3adcba5e730ee3659dfb74ddc96507d6285e49283906bed525aa3b1e064cac6e10fd7716de019eace04780005fea3fbdb7cbb0d70e41a705499a62e6b328cd697fe6bb6c02f59334f5c6", 0x8f}, {&(0x7f0000006540)="b9470ab2061fcd736fadd908ea1c7072d9d2024f4aeecf82555499c3cee37d68e1c01d767cc32e9744ed7e62dca4cc56cffef922a5beed3ac25c4d76d53495fe9e2184e586119d28aa40c0fe112ec42e10a7ce7126923ba99343caa4dbf911a5735613c106b3bf6ad8d5de9daa7ddbe8d63c2f061e8025388e022338683bfa8db2c25d67ac8dcf0504aace1cc41795391e09b7d68f8cffafce5771f84f35ae7088f9aa69ecd4fae4c6971e282159c281dabdb89214ef29b7ecdefc044c4d71e7726039c20c9812164fa6252b24bd06cb41cb165702e6", 0xd6}], 0x2, &(0x7f0000006680)}}, {{&(0x7f00000066c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000006880)=[{&(0x7f0000006740)="f36e873bf19e87f963c85dbd84c5f4193915b654ebbf58aeacd343c309793679cc35f59e300734247ec8d9b74defbbddece9dd702f85561ae21201d59363d8e53a246d7c6b3b84c1fa8cd15689c8b9e84b24cb5fbb450826eec95044c2e23e671e29526dffa3a025ba6a0747", 0x6c}, {&(0x7f00000067c0)="9bb7a6519f504bc094ddeb024f3bbc7548e84ae0e8b26be9036aef4b7b3ac887088df2b2172e8d59441deb60786a37a198bf9893bb81971f1737f6638447e1f53d280935f6f0d92bc5b664b7589626c6100a055317c47a0d39f96a4dff9eedd173cb921a7dce25eecba2f93b9423d11652e8e0931fdbd8ff673f10fce09d26682e2bcac46102ef751f012cb3dae766c4cace31cc8ca09029a4d5b4e3e426fdc7f5e4531168af6d441e7495dc8635618dc619e9b7a76735a9a5e8888da13717", 0xbf}], 0x2}}], 0x5, 0x800)

11:26:41 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
getsockname$netlink(r0, &(0x7f00000002c0), &(0x7f0000000340)=0xc)

11:26:41 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  484.766475][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:26:41 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

[  484.929310][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  484.939104][ T5227] Bluetooth: hci7: Frame reassembly failed (-84)
[  485.003173][ T6352]     0-536866815: 0000000000000000
[  485.014306][ T6352]     536866816-536870911: ffff88807cef72a0
[  485.029772][ T6352]     536870912-553627647: ffff88801fb9b700
[  485.044538][ T6352]     553627648-553639935: 0000000000000000
[  485.052001][ T6352]     553639936-553627647: ffff88807bda78c0
[  485.105045][ T6352]     553627648-553644031: ffff88807bda79a0
[  485.114950][ T6352]     553644032-553648127: ffff8880216d6b60
[  485.118053][ T8484] Bluetooth: hci7: Frame reassembly failed (-84)
[  485.121891][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  485.133809][ T6352]     553652224-116809400319: 0000000000000000
[  485.140090][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  485.146610][ T6352]     116813594624-93825005334527: 0000000000000000
[  485.154854][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  485.161861][ T6352]     93825005473792-140593359482879: 0000000000000000
[  485.169912][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  485.176884][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  485.233126][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  485.240562][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  485.247550][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  485.254692][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  485.267233][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  485.275184][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  485.282363][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  485.289332][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  485.296396][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  485.303444][ T6352]     140593381670912-140593381675007: 0000000000000000
[  485.310694][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  485.317666][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  485.324708][ T6352]     140593382076416-140593382096895: 0000000000000000
[  485.331720][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  485.338676][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  485.392486][ T6352]     140593393942528-140593395646463: 0000000000000000
[  485.399501][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  485.406580][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  485.413585][ T6352]     140593395781632-140727606853631: 0000000000000000
[  485.420595][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  485.427571][ T6352]     140727606988800-140727607586815: 0000000000000000
[  485.434588][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  485.441649][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  485.448609][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  485.456054][ T6352] Pass: 9272979 Run:9273136
[  485.460639][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  485.470470][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  485.480554][ T6352] Call Trace:
[  485.483848][ T6352]  <TASK>
[  485.486784][ T6352]  dump_stack_lvl+0xd1/0x138
[  485.491386][ T6352]  mt_find.cold+0x8b/0x90
[  485.495739][ T6352]  ? mas_find+0x1d0/0x1d0
[  485.500095][ T6352]  find_vma+0x10c/0x1b0
[  485.504257][ T6352]  ? can_vma_merge_before+0x390/0x390
[  485.509642][ T6352]  ? walk_page_test+0x78/0x180
[  485.514423][ T6352]  walk_page_range+0x2b1/0x4a0
[  485.519201][ T6352]  ? __walk_page_range+0x780/0x780
[  485.524340][ T6352]  mlock_fixup+0x650/0x810
[  485.528782][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  485.534000][ T6352]  ? mlock_fixup+0x810/0x810
[  485.538625][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  485.544538][ T6352]  do_mlock+0x25a/0x6d0
[  485.548713][ T6352]  ? folio_evictable+0x270/0x270
[  485.553678][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  485.559597][ T6352]  __x64_sys_mlock+0x59/0x80
[  485.564212][ T6352]  do_syscall_64+0x39/0xb0
[  485.568645][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  485.574551][ T6352] RIP: 0033:0x7fde7288c0c9
[  485.578969][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  485.598584][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  485.607023][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  485.614999][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  485.622975][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  485.630947][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  485.638931][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  485.646925][ T6352]  </TASK>
[  485.656656][ T6352] index not increased! 20ffb000 <= 20ffb000
[  485.663103][ T6352] BUG at mt_find:6473 (1)
[  485.667699][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  485.676348][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  485.715094][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  485.765075][ T6352]     0-536866815: 0000000000000000
[  485.771539][ T6352]     536866816-536870911: ffff88807cef72a0
[  485.777532][ T6352]     536870912-553627647: ffff88801fb9b700
[  485.785086][ T6352]     553627648-553639935: 0000000000000000
[  485.791421][ T6352]     553639936-553627647: ffff88807bda78c0
[  485.797448][ T6352]     553627648-553644031: ffff88807bda79a0
[  485.803529][ T6352]     553644032-553648127: ffff8880216d6b60
[  485.809595][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  485.815609][ T6352]     553652224-116809400319: 0000000000000000
[  485.821889][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  485.828381][ T6352]     116813594624-93825005334527: 0000000000000000
[  485.835140][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  485.842062][ T6352]     93825005473792-140593359482879: 0000000000000000
[  485.848987][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  485.856097][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  485.915421][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  485.922545][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  485.929653][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  485.936723][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  485.944563][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  485.952074][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  485.959109][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  485.966374][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  485.973704][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  485.981036][ T6352]     140593381670912-140593381675007: 0000000000000000
[  485.988813][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  485.995930][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  486.003005][ T6352]     140593382076416-140593382096895: 0000000000000000
[  486.010110][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  486.017230][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  486.070161][ T6352]     140593393942528-140593395646463: 0000000000000000
[  486.077265][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  486.084377][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  486.092625][ T6352]     140593395781632-140727606853631: 0000000000000000
[  486.100385][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  486.107416][ T6352]     140727606988800-140727607586815: 0000000000000000
[  486.114948][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  486.122270][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  486.129296][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  486.136875][ T6352] Pass: 9272979 Run:9273137
[  486.141551][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  486.151378][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  486.161426][ T6352] Call Trace:
[  486.164695][ T6352]  <TASK>
[  486.167628][ T6352]  dump_stack_lvl+0xd1/0x138
[  486.172245][ T6352]  mt_find.cold+0x8b/0x90
[  486.176615][ T6352]  ? mas_find+0x1d0/0x1d0
[  486.180983][ T6352]  find_vma+0x10c/0x1b0
[  486.185147][ T6352]  ? can_vma_merge_before+0x390/0x390
[  486.190536][ T6352]  ? walk_page_test+0x78/0x180
[  486.195330][ T6352]  walk_page_range+0x2b1/0x4a0
[  486.200114][ T6352]  ? __walk_page_range+0x780/0x780
[  486.205262][ T6352]  mlock_fixup+0x650/0x810
[  486.209688][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  486.214891][ T6352]  ? mlock_fixup+0x810/0x810
[  486.219488][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  486.225383][ T6352]  do_mlock+0x25a/0x6d0
[  486.229549][ T6352]  ? folio_evictable+0x270/0x270
[  486.234521][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  486.240438][ T6352]  __x64_sys_mlock+0x59/0x80
[  486.245055][ T6352]  do_syscall_64+0x39/0xb0
[  486.249477][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  486.255373][ T6352] RIP: 0033:0x7fde7288c0c9
[  486.259784][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  486.279384][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  486.287808][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  486.295783][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  486.303753][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  486.311719][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  486.319700][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  486.327702][ T6352]  </TASK>
[  486.334727][ T6352] index not increased! 20ffb000 <= 20ffb000
[  486.340748][ T6352] BUG at mt_find:6473 (1)
[  486.345100][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  486.353633][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  486.391347][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  486.441910][ T6352]     0-536866815: 0000000000000000
[  486.447257][ T6352]     536866816-536870911: ffff88807cef72a0
[  486.457001][ T6352]     536870912-553627647: ffff88801fb9b700
[  486.463555][ T6352]     553627648-553639935: 0000000000000000
[  486.469505][ T6352]     553639936-553627647: ffff88807bda78c0
[  486.475519][ T6352]     553627648-553644031: ffff88807bda79a0
[  486.481585][ T6352]     553644032-553648127: ffff8880216d6b60
[  486.487559][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  486.493600][ T6352]     553652224-116809400319: 0000000000000000
[  486.501065][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  486.507581][ T6352]     116813594624-93825005334527: 0000000000000000
[  486.514310][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  486.521216][ T6352]     93825005473792-140593359482879: 0000000000000000
[  486.528139][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  486.535188][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  486.593135][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  486.601868][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  486.608941][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  486.616064][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  486.623129][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  486.630189][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  486.637251][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  486.644333][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  486.651420][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  486.658433][ T6352]     140593381670912-140593381675007: 0000000000000000
[  486.665500][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  486.677941][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  486.686076][ T6352]     140593382076416-140593382096895: 0000000000000000
[  486.693208][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  486.700970][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  486.753204][ T6352]     140593393942528-140593395646463: 0000000000000000
[  486.760502][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  486.767467][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  486.775157][ T6352]     140593395781632-140727606853631: 0000000000000000
[  486.782506][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  486.789937][ T6352]     140727606988800-140727607586815: 0000000000000000
[  486.796962][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  486.805095][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  486.812441][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  486.820184][ T6352] Pass: 9273006 Run:9273165
[  486.824713][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  486.834540][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  486.844588][ T6352] Call Trace:
[  486.847859][ T6352]  <TASK>
[  486.850780][ T6352]  dump_stack_lvl+0xd1/0x138
[  486.855373][ T6352]  mt_find.cold+0x8b/0x90
[  486.859700][ T6352]  ? mas_find+0x1d0/0x1d0
[  486.864031][ T6352]  find_vma+0x10c/0x1b0
[  486.868179][ T6352]  ? can_vma_merge_before+0x390/0x390
[  486.873545][ T6352]  ? walk_page_test+0x78/0x180
[  486.878306][ T6352]  walk_page_range+0x2b1/0x4a0
[  486.883098][ T6352]  ? __walk_page_range+0x780/0x780
[  486.888244][ T6352]  mlock_fixup+0x650/0x810
[  486.892689][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  486.897909][ T6352]  ? mlock_fixup+0x810/0x810
[  486.902527][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  486.908442][ T6352]  do_mlock+0x25a/0x6d0
[  486.912620][ T6352]  ? folio_evictable+0x270/0x270
[  486.917588][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  486.923499][ T6352]  __x64_sys_mlock+0x59/0x80
[  486.928107][ T6352]  do_syscall_64+0x39/0xb0
[  486.932541][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  486.938455][ T6352] RIP: 0033:0x7fde7288c0c9
[  486.942876][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  486.962486][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  486.970913][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  486.978890][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  486.986863][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  486.994835][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  487.002809][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  487.010802][ T6352]  </TASK>
11:26:44 executing program 3:
openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000f40)='io.pressure\x00', 0x2, 0x0)

11:26:44 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x0, 0x0, r1})

11:26:44 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:44 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:44 executing program 5:
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r0=>0x0], &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000040)={r0}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:44 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x70}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  487.016554][ T7454] Bluetooth: hci7: command 0x1003 tx timeout
[  487.017414][ T6352] index not increased! 20ffb000 <= 20ffb000
[  487.025507][   T48] Bluetooth: hci7: Opcode 0x1003 failed: -110
[  487.028754][ T6352] BUG at mt_find:6473 (1)
[  487.039364][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:26:44 executing program 5:
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r0=>0x0], &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000040)={r0}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:44 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  487.077492][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:26:44 executing program 5:
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r0=>0x0], &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000040)={r0}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:44 executing program 3:
msgget$private(0x0, 0x261)
msgctl$MSG_INFO(0x0, 0xc, &(0x7f00000000c0)=""/140)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, 0x0)

[  487.155401][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:26:44 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:44 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1})

[  487.227307][ T6352]     0-536866815: 0000000000000000
11:26:44 executing program 3:
syz_open_dev$vcsa(0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

11:26:44 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:44 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  487.302220][ T6352]     536866816-536870911: ffff88807cef72a0
[  487.370065][ T6352]     536870912-553627647: ffff88801fb9b700
[  487.376616][ T5120] Bluetooth: hci7: sending frame failed (-49)
[  487.384605][   T48] Bluetooth: hci7: Opcode 0x1003 failed: -49
11:26:44 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:44 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  487.429757][ T6352]     553627648-553639935: 0000000000000000
[  487.458584][ T6352]     553639936-553627647: ffff88807bda78c0
[  487.519014][ T6352]     553627648-553644031: ffff88807bda79a0
[  487.548160][ T6352]     553644032-553648127: ffff8880216d6b60
[  487.560327][ T6352]     553648128-553652223: ffff88801fb9b7e0
11:26:44 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x70}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:44 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1})

11:26:44 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}}, 0x0)

11:26:44 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  487.568878][ T6352]     553652224-116809400319: 0000000000000000
11:26:44 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x8, 0x0, 0x0)

11:26:44 executing program 4:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_OPTION$IOMMU_OPTION_HUGE_PAGES(r0, 0x3b87, &(0x7f00000001c0)={0x18, 0x1, 0x1})

11:26:44 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:44 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

[  487.660124][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  487.696125][ T6352]     116813594624-93825005334527: 0000000000000000
[  487.745685][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  487.770078][ T6352]     93825005473792-140593359482879: 0000000000000000
[  487.824943][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  487.858990][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
11:26:45 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:45 executing program 3:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x0, 0x0, 0x0, {}, {0x77359400}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "8f8b4bc9088878cef3b0e15d3d60b80419cbfa7182295d960c7853759d8f11895fa53ce08f0df65cee1370c982609630cb43f2d256fb69b6b0f032fb1a5ab286"}}, 0x80}}, 0x0)

11:26:45 executing program 4:
getegid()
getegid()
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f0000000140), &(0x7f0000000180)={'syz', 0x2}, &(0x7f00000001c0)="417ee27542a7c9d456dffbd082255ad7136b6480657336141cc4c3d6c5d608425727bd3454f7aac1e1550ca6051c5fc94758377d81e69d0d38d8d959edca78adfef5c60185fb60efd1470b00d8b9abe6ee5026a8", 0x54, r0)
keyctl$chown(0x4, r1, 0x0, 0xee00)
add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)="101f1db8baf9c3ca90557044168b7753ac473d49", 0x14, 0xfffffffffffffffb)

11:26:45 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:45 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x70}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x70}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

[  487.934132][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  487.943057][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  487.950467][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  487.957550][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
11:26:45 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:45 executing program 3:
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r0, 0x7a4, 0x0)

11:26:45 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

[  488.009379][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
11:26:45 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000040)={@multicast2, @local}, 0xc)

11:26:45 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  488.081019][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  488.088915][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  488.096235][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  488.103632][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  488.111019][ T6352]     140593381670912-140593381675007: 0000000000000000
[  488.118242][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  488.125452][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  488.132861][ T6352]     140593382076416-140593382096895: 0000000000000000
[  488.142803][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
11:26:45 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$inet(r0, &(0x7f00000003c0)={&(0x7f0000000300)={0x2, 0x4e21, @private}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000340)="e3f33cd882e5", 0x6}], 0x1}, 0x0)

11:26:45 executing program 4:
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x22040, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, 0x0)

[  488.151606][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  488.215787][ T6352]     140593393942528-140593395646463: 0000000000000000
[  488.283410][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  488.325489][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  488.385499][ T6352]     140593395781632-140727606853631: 0000000000000000
[  488.405838][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  488.419063][ T6352]     140727606988800-140727607586815: 0000000000000000
11:26:45 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:45 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:45 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000006, 0x110, r0, 0x77bd7000)
write$binfmt_script(r1, &(0x7f00000001c0)=ANY=[], 0x208e24b)
r2 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x60, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_9p2000}, {@debug={'debug', 0x3d, 0x9}}, {@dfltgid={'dfltgid', 0x3d, 0xee00}}], [{@smackfsfloor={'smackfsfloor', 0x3d, '('}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@subj_type={'subj_type', 0x3d, '^\x7f/%!\\-!*%'}}]}})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:45 executing program 4:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x89a1, &(0x7f0000000280))

11:26:45 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$inet(r0, &(0x7f00000003c0)={&(0x7f0000000300)={0x2, 0x4e21, @private}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000340)="e3f33cd882e5", 0x6}], 0x1}, 0x0)

11:26:45 executing program 1:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x0)

[  488.436076][ T6352]     140727607586816-140727607603199: ffff88806863a460
11:26:45 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$inet(r0, &(0x7f00000003c0)={&(0x7f0000000300)={0x2, 0x4e21, @private}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000340)="e3f33cd882e5", 0x6}], 0x1}, 0x0)

11:26:45 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000003740)={'vxcan0\x00'})

11:26:45 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  488.493196][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  488.526666][ T6352]     140727607611392-18446744073709551615: 0000000000000000
11:26:45 executing program 4:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x481, 0x0, &(0x7f0000003780))

11:26:45 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$inet(r0, &(0x7f00000003c0)={&(0x7f0000000300)={0x2, 0x4e21, @private}, 0x10, &(0x7f0000000380)=[{&(0x7f0000000340)="e3f33cd882e5", 0x6}], 0x1}, 0x0)

11:26:45 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

[  488.639742][ T6352] Pass: 9342795 Run:9342955
[  488.644318][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  488.654155][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  488.664239][ T6352] Call Trace:
[  488.667545][ T6352]  <TASK>
[  488.670504][ T6352]  dump_stack_lvl+0xd1/0x138
[  488.675234][ T6352]  mt_find.cold+0x8b/0x90
[  488.679619][ T6352]  ? mas_find+0x1d0/0x1d0
[  488.684001][ T6352]  find_vma+0x10c/0x1b0
[  488.688198][ T6352]  ? can_vma_merge_before+0x390/0x390
[  488.693613][ T6352]  ? walk_page_test+0x78/0x180
[  488.698428][ T6352]  walk_page_range+0x2b1/0x4a0
[  488.703240][ T6352]  ? __walk_page_range+0x780/0x780
[  488.708423][ T6352]  mlock_fixup+0x650/0x810
[  488.712909][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  488.718168][ T6352]  ? mlock_fixup+0x810/0x810
[  488.722823][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  488.728771][ T6352]  do_mlock+0x25a/0x6d0
[  488.732987][ T6352]  ? folio_evictable+0x270/0x270
[  488.737989][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  488.743935][ T6352]  __x64_sys_mlock+0x59/0x80
[  488.748580][ T6352]  do_syscall_64+0x39/0xb0
[  488.753052][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  488.758984][ T6352] RIP: 0033:0x7fde7288c0c9
[  488.763431][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  488.783080][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  488.791535][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  488.799544][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  488.807550][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  488.815555][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  488.823564][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  488.831593][ T6352]  </TASK>
11:26:46 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:46 executing program 1:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x0)

[  489.098275][ T6352] index not increased! 20ffb000 <= 20ffb000
[  489.104644][ T6352] BUG at mt_find:6473 (1)
[  489.109135][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  489.118198][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  489.155554][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  489.219075][ T6352]     0-536866815: 0000000000000000
[  489.227342][ T6352]     536866816-536870911: ffff88807cef72a0
[  489.247805][ T6352]     536870912-553627647: ffff88801fb9b700
[  489.256966][ T6352]     553627648-553639935: 0000000000000000
[  489.285147][ T6352]     553639936-553627647: ffff88807bda78c0
[  489.306576][ T6352]     553627648-553644031: ffff88807bda79a0
[  489.321023][ T6352]     553644032-553648127: ffff8880216d6b60
[  489.327879][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  489.337078][ T6352]     553652224-116809400319: 0000000000000000
[  489.344064][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  489.350808][ T6352]     116813594624-93825005334527: 0000000000000000
[  489.357546][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  489.366265][ T6352]     93825005473792-140593359482879: 0000000000000000
[  489.374125][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  489.396057][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
11:26:46 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000006, 0x110, r0, 0x77bd7000)
write$binfmt_script(r1, &(0x7f00000001c0)=ANY=[], 0x208e24b)
r2 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x60, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_9p2000}, {@debug={'debug', 0x3d, 0x9}}, {@dfltgid={'dfltgid', 0x3d, 0xee00}}], [{@smackfsfloor={'smackfsfloor', 0x3d, '('}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@subj_type={'subj_type', 0x3d, '^\x7f/%!\\-!*%'}}]}})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) (async)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000006, 0x110, r0, 0x77bd7000) (async)
write$binfmt_script(r1, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0) (async)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x60, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_9p2000}, {@debug={'debug', 0x3d, 0x9}}, {@dfltgid={'dfltgid', 0x3d, 0xee00}}], [{@smackfsfloor={'smackfsfloor', 0x3d, '('}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@subj_type={'subj_type', 0x3d, '^\x7f/%!\\-!*%'}}]}}) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

11:26:46 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000002700)={&(0x7f00000001c0)={0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, '\x00', 0x3a}, 0x3}, 0x1c, &(0x7f0000002640)=[{&(0x7f00000002c0)="4310942952f62b1f69384cee86b0fefcc1c9453e0e3fc7437f87e4b8ffbedf0f04c379d3cbfb81218cb505e49f2e916d7b0571a1da42fd30ffd17745abdd893f2e32316f0d38fd531bdd27abfdc1c30213d710303bd9a4cdc695a838e987a1af97c87510630a9cc70c69b5952383497da25f9ceb610f1325a3cee73c1b03976f06e51ad2f2807d0c3fa7ed501412438312db86992a215180cb5a8b476c47517cedfee52cf1df10119f9d242586eb69a170b35acf5f57012e9afdde97e43de5df1fef9b36c02debe872af51a1345031f1edf6657e4074a35b3f54c5805a1dc0b122710f29f6c7764a024033", 0xeb}, {&(0x7f00000003c0)="2c315dad2b16d69d34ddb59fe63c4f22b8caf5498d145c750bc98ee29b1e105a2257bdcae0a867058af01e39039fd61449204604651cc80262f522631773ddc21cc4371e54a53323957fffb79d715484f5e364e76342715fe7e35b77312bc0c4cd8efb2d442cf80475da09481aea28ecfbe2af3a7449f5dc054f0b0bf759b4ea45b4dc7c6e6cef827b0cfcb4988298927db069ddc4d2875884d397ce3e623d5f985c55", 0xa3}, {&(0x7f0000000480)="a2a83d80125e5ca7ee5d7f74f6fdca20d42ddd82d727ab7bd838cfd34a4bbb652ec65efc3bcd667e9719194ec49f2d68a7341048d2df1e6bf3c101ef027b036b63697b098176c613fe18a7d34c675af263d356d86319470eeb0364f5d60071afb57918374057a498e0cc519f3eb4e5c3e872a52c823ffb5474b9fcc8734c66f25ff17893ce5edc00c45704440ba95e80942009e5ebd76e8f1122cc50b7a6295fbedc50f1b85a85adb774ae3940c8e9bfa72c", 0xb2}, {&(0x7f0000000200)="5e414a13dd53fe97b8f021d96a3e68", 0xf}, {&(0x7f0000000540)="cd1198b0119e8f5696222324df125536a19b26e9bdacf5788289bc1f85d6f0c3f61794fa4a785650396870a308c1029937b029fff8b5da7f9e15858883a40f13e93fc79fc68f86efc6ea9ffc585d3a095a69b15f934b062e05f979fba3177f5f9502", 0x62}, {&(0x7f00000005c0)="9bbf5c1e6fcb8e6a66f1638902e096bcad618b8f77ba59b317b91c3a6f8a3108d41d4ef6ece075bbb16fc7da25429bbaaed3008514b5542133ef61b4563d8052f4bc2d638ec58ab8d4647c2b834a6dc1529884441aeaa0402961d7e09259991cb80f82261f4bda", 0x67}, {&(0x7f0000000640)="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", 0x801}], 0x7, &(0x7f00000026c0)=[@tclass={{0x14}}], 0x18}, 0x0)

11:26:46 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:46 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:46 executing program 3:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x5, &(0x7f0000000100)=@framed={{}, [@map_val]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80)

11:26:46 executing program 1:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x0)

11:26:46 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x11, 0x0, 0x0, 0x0)

[  489.491110][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
11:26:46 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:46 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:46 executing program 4:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
read$dsp(r0, &(0x7f0000000040)=""/4096, 0x1000)
ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0x5001, 0x0)

[  489.550673][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  489.557793][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
11:26:46 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:46 executing program 3:
process_vm_writev(0x0, &(0x7f00000014c0)=[{&(0x7f0000000340)=""/108, 0x6c}], 0x1, &(0x7f0000001640)=[{0x0}], 0x1, 0x0)

[  489.619649][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  489.697552][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  489.763043][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  489.794921][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  489.817170][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  489.829948][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  489.837000][ T6352]     140593381670912-140593381675007: 0000000000000000
[  489.847213][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  489.864289][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  489.875888][ T6352]     140593382076416-140593382096895: 0000000000000000
[  489.909684][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  489.934799][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  490.010038][ T6352]     140593393942528-140593395646463: 0000000000000000
[  490.017053][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  490.027214][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  490.035221][ T6352]     140593395781632-140727606853631: 0000000000000000
[  490.042497][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  490.052453][ T6352]     140727606988800-140727607586815: 0000000000000000
[  490.059448][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  490.068340][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  490.076535][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  490.086319][ T6352] Pass: 9373241 Run:9373402
[  490.091736][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  490.101583][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  490.111665][ T6352] Call Trace:
[  490.114989][ T6352]  <TASK>
[  490.117941][ T6352]  dump_stack_lvl+0xd1/0x138
[  490.122574][ T6352]  mt_find.cold+0x8b/0x90
[  490.126956][ T6352]  ? mas_find+0x1d0/0x1d0
[  490.131330][ T6352]  find_vma+0x10c/0x1b0
[  490.135500][ T6352]  ? can_vma_merge_before+0x390/0x390
[  490.141401][ T6352]  ? walk_page_test+0x78/0x180
[  490.146179][ T6352]  walk_page_range+0x2b1/0x4a0
[  490.150956][ T6352]  ? __walk_page_range+0x780/0x780
[  490.156093][ T6352]  mlock_fixup+0x650/0x810
[  490.160532][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  490.165749][ T6352]  ? mlock_fixup+0x810/0x810
[  490.170359][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  490.176264][ T6352]  do_mlock+0x25a/0x6d0
[  490.180456][ T6352]  ? folio_evictable+0x270/0x270
[  490.185441][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  490.191359][ T6352]  __x64_sys_mlock+0x59/0x80
[  490.195967][ T6352]  do_syscall_64+0x39/0xb0
[  490.200399][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  490.206303][ T6352] RIP: 0033:0x7fde7288c0c9
[  490.210746][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  490.230375][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  490.238802][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  490.246798][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  490.254771][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  490.262748][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  490.270718][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  490.278707][ T6352]  </TASK>
[  490.306257][ T6352] index not increased! 20ffb000 <= 20ffb000
[  490.312885][ T6352] BUG at mt_find:6473 (1)
[  490.317342][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  490.326582][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  490.364076][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  490.415482][ T6352]     0-536866815: 0000000000000000
[  490.420965][ T6352]     536866816-536870911: ffff88807cef72a0
[  490.426966][ T6352]     536870912-553627647: ffff88801fb9b700
[  490.433084][ T6352]     553627648-553639935: 0000000000000000
[  490.439047][ T6352]     553639936-553627647: ffff88807bda78c0
[  490.445032][ T6352]     553627648-553644031: ffff88807bda79a0
[  490.451046][ T6352]     553644032-553648127: ffff8880216d6b60
11:26:47 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) (async)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000006, 0x110, r0, 0x77bd7000)
write$binfmt_script(r1, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
r2 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f00000000c0), 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x60, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_9p2000}, {@debug={'debug', 0x3d, 0x9}}, {@dfltgid={'dfltgid', 0x3d, 0xee00}}], [{@smackfsfloor={'smackfsfloor', 0x3d, '('}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@subj_type={'subj_type', 0x3d, '^\x7f/%!\\-!*%'}}]}}) (async)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:47 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:47 executing program 3:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000001300)={@private1, @rand_addr=' \x01\x00', @private2, 0x0, 0x0, 0x100})

11:26:47 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:47 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:47 executing program 4:
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
sendmmsg$inet(r0, 0x0, 0x0, 0x0)

[  490.456960][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  490.462961][ T6352]     553652224-116809400319: 0000000000000000
[  490.469132][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  490.475653][ T6352]     116813594624-93825005334527: 0000000000000000
[  490.482356][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  490.489139][ T6352]     93825005473792-140593359482879: 0000000000000000
[  490.496650][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:26:47 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:47 executing program 3:
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000380)=[{0x0}, {&(0x7f0000000180)=""/213, 0xd5}], 0x2, &(0x7f0000000500)=[{&(0x7f0000000400)=""/207, 0xcf}], 0x1, 0x0)

11:26:47 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:47 executing program 4:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000080)={'gre0\x00', &(0x7f0000000000)={'gretap0\x00', 0x0, 0x0, 0x0, 0x40, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty}}}})

[  490.536952][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
11:26:47 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:47 executing program 3:
waitid$P_PIDFD(0x3, 0xffffffffffffffff, 0x0, 0x2, &(0x7f0000001100))

[  490.689944][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  490.747835][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  490.783445][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  490.799333][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  490.806832][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  490.814874][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  490.823511][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  490.831190][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  490.838280][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  490.853174][ T6352]     140593381670912-140593381675007: 0000000000000000
[  490.860595][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  490.886382][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  490.907008][ T6352]     140593382076416-140593382096895: 0000000000000000
[  490.914803][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
11:26:48 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$KVM_PPC_GET_SMMU_INFO(r2, 0x8250aea6, &(0x7f00000000c0)=""/183)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, 0x1})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:48 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4), 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000001400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000013c0)={&(0x7f00000001c0)={0xec4, 0x0, 0x0, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0xeb0, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x29, 0x4, "6f826455d480adfbbcba7d33d212e7a6c0e131c56c70c7370951b36f7a9c5d30ac90b7f599"}, @ETHTOOL_A_BITSET_MASK={0xe79, 0x5, "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"}]}]}, 0xec4}}, 0x0)

11:26:48 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r3=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r3})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(0xffffffffffffffff, 0x3ba0, &(0x7f00000000c0)={0x38, 0x5, r1})

11:26:48 executing program 4:
openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)

11:26:48 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f0000000000)=0xa, 0x4)

[  490.921950][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  490.972136][ T6352]     140593393942528-140593395646463: 0000000000000000
[  490.979201][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
11:26:48 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4), 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:48 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, 0x0)

11:26:48 executing program 4:
rseq(&(0x7f00000000c0), 0x20, 0x0, 0x0)

[  491.030666][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
11:26:48 executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$tun(r0, 0x0, 0x0)

11:26:48 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0xa, &(0x7f0000000080)={@multicast2, @multicast2}, 0xc)

[  491.170808][ T6352]     140593395781632-140727606853631: 0000000000000000
[  491.187717][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  491.195579][ T6352]     140727606988800-140727607586815: 0000000000000000
[  491.203993][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  491.231047][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  491.238082][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  491.246050][ T6352] Pass: 9385308 Run:9385470
[  491.250939][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  491.260779][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  491.270843][ T6352] Call Trace:
[  491.274123][ T6352]  <TASK>
[  491.277058][ T6352]  dump_stack_lvl+0xd1/0x138
[  491.281670][ T6352]  mt_find.cold+0x8b/0x90
[  491.286020][ T6352]  ? mas_find+0x1d0/0x1d0
[  491.290374][ T6352]  find_vma+0x10c/0x1b0
[  491.294536][ T6352]  ? can_vma_merge_before+0x390/0x390
[  491.299919][ T6352]  ? walk_page_test+0x78/0x180
[  491.304699][ T6352]  walk_page_range+0x2b1/0x4a0
[  491.309484][ T6352]  ? __walk_page_range+0x780/0x780
[  491.314627][ T6352]  mlock_fixup+0x650/0x810
[  491.319072][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  491.324290][ T6352]  ? mlock_fixup+0x810/0x810
[  491.328910][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  491.334820][ T6352]  do_mlock+0x25a/0x6d0
[  491.339008][ T6352]  ? folio_evictable+0x270/0x270
[  491.343971][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  491.349877][ T6352]  __x64_sys_mlock+0x59/0x80
[  491.354486][ T6352]  do_syscall_64+0x39/0xb0
[  491.358918][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  491.364821][ T6352] RIP: 0033:0x7fde7288c0c9
[  491.369257][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  491.388872][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  491.397291][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  491.405265][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  491.413239][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  491.421211][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  491.429186][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  491.437180][ T6352]  </TASK>
[  491.508446][ T6352] index not increased! 20ffb000 <= 20ffb000
[  491.517197][ T6352] BUG at mt_find:6473 (1)
[  491.522234][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  491.531094][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  491.574769][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  491.632055][ T6352]     0-536866815: 0000000000000000
[  491.637381][ T6352]     536866816-536870911: ffff88807cef72a0
[  491.643857][ T6352]     536870912-553627647: ffff88801fb9b700
[  491.650359][ T6352]     553627648-553639935: 0000000000000000
[  491.656341][ T6352]     553639936-553627647: ffff88807bda78c0
[  491.668120][ T6352]     553627648-553644031: ffff88807bda79a0
[  491.674432][ T6352]     553644032-553648127: ffff8880216d6b60
[  491.683870][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  491.690176][ T6352]     553652224-116809400319: 0000000000000000
[  491.696513][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  491.703060][ T6352]     116813594624-93825005334527: 0000000000000000
[  491.710263][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  491.717246][ T6352]     93825005473792-140593359482879: 0000000000000000
[  491.726690][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:26:48 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$KVM_PPC_GET_SMMU_INFO(r2, 0x8250aea6, &(0x7f00000000c0)=""/183)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, 0x1}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:48 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4), 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:48 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, 0x0)

11:26:48 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:48 executing program 4:
bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000040), 0xffffffffffffffdf)

11:26:48 executing program 3:
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x22040, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), r0)

[  491.734611][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  491.819045][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
11:26:48 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, 0x0)

11:26:48 executing program 3:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0xc004500a, 0x0)

11:26:48 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r0)

11:26:49 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

[  491.861271][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  491.892420][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  491.899445][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
11:26:49 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38})

[  491.921895][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  491.988544][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
11:26:49 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$netlink(r0, 0x10e, 0x3, &(0x7f00000000c0)=""/4096, &(0x7f0000000040)=0x1000)

[  492.036343][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  492.044725][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  492.051805][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  492.058799][ T6352]     140593381670912-140593381675007: 0000000000000000
[  492.065874][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  492.073236][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  492.102468][ T6352]     140593382076416-140593382096895: 0000000000000000
[  492.173915][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
11:26:49 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
ioctl$KVM_PPC_GET_SMMU_INFO(r2, 0x8250aea6, &(0x7f00000000c0)=""/183)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000000)={0x79, 0x0, 0x1}) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:49 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38})

11:26:49 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:49 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:49 executing program 3:
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

11:26:49 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000180)={'ip_vti0\x00', &(0x7f00000000c0)={'gretap0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x6, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x4, 0x0, @loopback, @multicast2, {[@timestamp_addr={0x44, 0x4}]}}}}})

11:26:49 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

[  492.187841][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  492.241377][ T6352]     140593393942528-140593395646463: 0000000000000000
[  492.248585][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
11:26:49 executing program 0:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc})
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000080)={0x38, 0x5, r2})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f00000000c0)={0x38})

11:26:49 executing program 4:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x4a, &(0x7f00000000c0)={@private1}, 0x14)

11:26:49 executing program 3:
r0 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private1, @empty, 0x0, 0x0, 0x0, 0x500})

[  492.339759][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  492.353738][ T6352]     140593395781632-140727606853631: 0000000000000000
[  492.363573][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  492.370723][ T6352]     140727606988800-140727607586815: 0000000000000000
[  492.377811][ T6352]     140727607586816-140727607603199: ffff88806863a460
11:26:49 executing program 3:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000300), 0x10)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f0000000000), 0x10)

[  492.384927][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  492.393914][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  492.401485][ T6352] Pass: 9395614 Run:9395777
[  492.411001][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  492.420861][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  492.430947][ T6352] Call Trace:
[  492.434256][ T6352]  <TASK>
11:26:49 executing program 4:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000080)=0x9)

[  492.437215][ T6352]  dump_stack_lvl+0xd1/0x138
[  492.441852][ T6352]  mt_find.cold+0x8b/0x90
[  492.446231][ T6352]  ? mas_find+0x1d0/0x1d0
[  492.450626][ T6352]  find_vma+0x10c/0x1b0
[  492.454814][ T6352]  ? can_vma_merge_before+0x390/0x390
[  492.460218][ T6352]  ? walk_page_test+0x78/0x180
[  492.465027][ T6352]  walk_page_range+0x2b1/0x4a0
[  492.469839][ T6352]  ? __walk_page_range+0x780/0x780
[  492.475011][ T6352]  mlock_fixup+0x650/0x810
[  492.479494][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  492.484750][ T6352]  ? mlock_fixup+0x810/0x810
[  492.489394][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  492.495314][ T6352]  do_mlock+0x25a/0x6d0
[  492.499497][ T6352]  ? folio_evictable+0x270/0x270
[  492.504467][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  492.510384][ T6352]  __x64_sys_mlock+0x59/0x80
[  492.514991][ T6352]  do_syscall_64+0x39/0xb0
[  492.519425][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  492.525327][ T6352] RIP: 0033:0x7fde7288c0c9
[  492.529745][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  492.549366][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  492.557794][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  492.565769][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  492.573742][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  492.581715][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  492.589689][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  492.597682][ T6352]  </TASK>
[  492.731329][ T6352] index not increased! 20ffb000 <= 20ffb000
[  492.760442][ T6352] BUG at mt_find:6473 (1)
[  492.777162][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  492.786989][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  492.824665][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:26:50 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffff1f}, 0x0)

11:26:50 executing program 3:
openat$autofs(0xffffffffffffff9c, &(0x7f0000000280), 0x26a682, 0x0)

11:26:50 executing program 4:
syz_clone(0x80804000, 0x0, 0x0, 0x0, 0x0, 0x0)

11:26:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:50 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$LOOP_SET_FD(r2, 0x4c00, r1)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffff1f}, 0x0)

[  492.883809][ T6352]     0-536866815: 0000000000000000
[  492.889101][ T6352]     536866816-536870911: ffff88807cef72a0
[  492.895278][ T6352]     536870912-553627647: ffff88801fb9b700
[  492.901807][ T6352]     553627648-553639935: 0000000000000000
[  492.907768][ T6352]     553639936-553627647: ffff88807bda78c0
11:26:50 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000040)={@rand_addr, @multicast1}, 0xc)

[  492.947176][ T6352]     553627648-553644031: ffff88807bda79a0
11:26:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffff1f}, 0x0)

[  492.994844][ T6352]     553644032-553648127: ffff8880216d6b60
[  493.010652][ T6352]     553648128-553652223: ffff88801fb9b7e0
11:26:50 executing program 3:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x3c, &(0x7f00000000c0)={@private1}, 0x14)

[  493.042683][ T6352]     553652224-116809400319: 0000000000000000
[  493.061233][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
11:26:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

[  493.086039][ T6352]     116813594624-93825005334527: 0000000000000000
11:26:50 executing program 4:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000040)=0x7fffffff)

[  493.198678][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  493.222702][ T6352]     93825005473792-140593359482879: 0000000000000000
[  493.269866][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  493.284029][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  493.348893][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  493.356777][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  493.365889][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  493.378816][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  493.404447][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  493.418017][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  493.426404][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  493.434545][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  493.442072][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  493.449298][ T6352]     140593381670912-140593381675007: 0000000000000000
[  493.462668][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  493.470419][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  493.477675][ T6352]     140593382076416-140593382096895: 0000000000000000
[  493.485238][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  493.492797][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  493.543299][ T6352]     140593393942528-140593395646463: 0000000000000000
[  493.550870][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  493.558111][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  493.573903][ T6352]     140593395781632-140727606853631: 0000000000000000
[  493.587862][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  493.603401][ T6352]     140727606988800-140727607586815: 0000000000000000
[  493.618935][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  493.626530][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  493.634498][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  493.642464][ T6352] Pass: 9406173 Run:9406337
[  493.647234][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  493.657069][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  493.667148][ T6352] Call Trace:
[  493.670463][ T6352]  <TASK>
[  493.673416][ T6352]  dump_stack_lvl+0xd1/0x138
[  493.678045][ T6352]  mt_find.cold+0x8b/0x90
[  493.682415][ T6352]  ? mas_find+0x1d0/0x1d0
[  493.686795][ T6352]  find_vma+0x10c/0x1b0
[  493.690983][ T6352]  ? can_vma_merge_before+0x390/0x390
[  493.696378][ T6352]  ? walk_page_test+0x78/0x180
[  493.701175][ T6352]  walk_page_range+0x2b1/0x4a0
[  493.705959][ T6352]  ? __walk_page_range+0x780/0x780
[  493.711105][ T6352]  mlock_fixup+0x650/0x810
[  493.715548][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  493.720770][ T6352]  ? mlock_fixup+0x810/0x810
[  493.725387][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  493.731302][ T6352]  do_mlock+0x25a/0x6d0
[  493.735481][ T6352]  ? folio_evictable+0x270/0x270
[  493.740448][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  493.746360][ T6352]  __x64_sys_mlock+0x59/0x80
[  493.750970][ T6352]  do_syscall_64+0x39/0xb0
[  493.755408][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  493.761311][ T6352] RIP: 0033:0x7fde7288c0c9
[  493.765730][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  493.785434][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  493.793854][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  493.801829][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  493.809802][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
11:26:50 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:50 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffff1f}, 0x0)

11:26:50 executing program 3:
syz_open_dev$media(&(0x7f00000003c0), 0x0, 0x0)

11:26:50 executing program 4:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000001380), 0x0, 0x0)
read$ptp(r0, &(0x7f0000001440)=""/4096, 0x1000)

11:26:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

[  493.817775][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  493.825747][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  493.833739][ T6352]  </TASK>
[  493.903783][ T6352] index not increased! 20ffb000 <= 20ffb000
[  493.929919][ T6352] BUG at mt_find:6473 (1)
[  493.987459][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:26:51 executing program 3:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={0x0}, 0x1, 0x0, 0x3e80}, 0x0)

11:26:51 executing program 4:
syz_open_dev$cec(&(0x7f0000000000), 0x1, 0x2)

11:26:51 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:51 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$LOOP_SET_FD(r2, 0x4c00, r1)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) (async)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
ioctl$LOOP_SET_FD(r2, 0x4c00, r1) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

11:26:51 executing program 0:
socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x6, 0x0, 0x3)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0)
r0 = gettid()
syz_open_procfs$namespace(r0, 0x0)
syz_clone(0x100000, &(0x7f0000000640)="3ed44a101b49570582723e9b328a50743720599f65c51669489214908a7c5d0e71164787fb4187e2f38b1400", 0x2c, &(0x7f0000000680), &(0x7f00000006c0), &(0x7f0000000700))

[  494.017447][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:26:51 executing program 4:
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @private1}, 0x1c)

[  494.063548][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:26:51 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCADDDLCI(r0, 0x8904, 0x0)

[  494.248030][ T6352]     0-536866815: 0000000000000000
[  494.276717][ T6352]     536866816-536870911: ffff88807cef72a0
[  494.286072][ T6352]     536870912-553627647: ffff88801fb9b700
[  494.303464][ T6352]     553627648-553639935: 0000000000000000
[  494.310345][ T6352]     553639936-553627647: ffff88807bda78c0
[  494.316404][ T6352]     553627648-553644031: ffff88807bda79a0
[  494.323045][ T6352]     553644032-553648127: ffff8880216d6b60
[  494.329959][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  494.335995][ T6352]     553652224-116809400319: 0000000000000000
[  494.342662][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  494.363106][ T6352]     116813594624-93825005334527: 0000000000000000
[  494.371989][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  494.378903][ T6352]     93825005473792-140593359482879: 0000000000000000
[  494.387978][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  494.395845][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  494.458815][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  494.467028][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  494.475218][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  494.485269][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  494.492700][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  494.500080][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  494.507151][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  494.514708][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  494.522064][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  494.529085][ T6352]     140593381670912-140593381675007: 0000000000000000
[  494.536388][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  494.543762][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  494.551140][ T6352]     140593382076416-140593382096895: 0000000000000000
[  494.558216][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  494.567978][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  494.620476][ T6352]     140593393942528-140593395646463: 0000000000000000
[  494.627728][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  494.635834][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  494.647523][ T6352]     140593395781632-140727606853631: 0000000000000000
[  494.659782][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  494.666973][ T6352]     140727606988800-140727607586815: 0000000000000000
[  494.674256][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  494.681474][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  494.688598][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  494.697655][ T6352] Pass: 9414286 Run:9414451
[  494.703267][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  494.713118][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  494.723202][ T6352] Call Trace:
[  494.726511][ T6352]  <TASK>
[  494.729470][ T6352]  dump_stack_lvl+0xd1/0x138
[  494.734104][ T6352]  mt_find.cold+0x8b/0x90
[  494.738474][ T6352]  ? mas_find+0x1d0/0x1d0
[  494.742853][ T6352]  find_vma+0x10c/0x1b0
[  494.747037][ T6352]  ? can_vma_merge_before+0x390/0x390
[  494.752425][ T6352]  ? walk_page_test+0x78/0x180
[  494.757215][ T6352]  walk_page_range+0x2b1/0x4a0
[  494.762091][ T6352]  ? __walk_page_range+0x780/0x780
[  494.767243][ T6352]  mlock_fixup+0x650/0x810
[  494.771693][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  494.776913][ T6352]  ? mlock_fixup+0x810/0x810
[  494.781620][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  494.787543][ T6352]  do_mlock+0x25a/0x6d0
[  494.791722][ T6352]  ? folio_evictable+0x270/0x270
[  494.796691][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  494.802605][ T6352]  __x64_sys_mlock+0x59/0x80
[  494.807216][ T6352]  do_syscall_64+0x39/0xb0
[  494.811677][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  494.817583][ T6352] RIP: 0033:0x7fde7288c0c9
[  494.822005][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  494.841617][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  494.850037][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  494.858012][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  494.865988][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
11:26:52 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5", @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:52 executing program 3:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8921, &(0x7f0000000280))

11:26:52 executing program 4:
mq_open(&(0x7f0000000200)='[\x00', 0x0, 0x0, 0x0)

11:26:52 executing program 0:
r0 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private1, @empty})

11:26:52 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:52 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f0000001ac0), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001f00)={&(0x7f0000001b80)={0x20, r1, 0x1, 0x0, 0x0, {}, [{{0x8}, {0x4}}]}, 0x20}, 0x1, 0x0, 0x0, 0x8010}, 0x0)

[  494.873967][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  494.881950][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  494.889942][ T6352]  </TASK>
11:26:52 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f00000002c0)=0x7, 0x4)
socketpair(0x0, 0x0, 0x0, 0x0)
sendmsg$inet6(r0, &(0x7f0000000a00)={&(0x7f00000003c0)={0xa, 0x0, 0x9, @remote, 0x1}, 0x1c, &(0x7f0000000940)=[{0x0}, {&(0x7f0000000440)="e6", 0x1}, {&(0x7f0000000540)='(', 0x1}, {0x0}], 0x4, &(0x7f00000019c0)=[@hoplimit_2292={{0x14}}, @rthdrdstopts={{0x18}}], 0x30}, 0x0)

11:26:52 executing program 3:
keyctl$search(0xa, 0x0, &(0x7f0000000380)='trusted\x00', &(0x7f00000003c0)={'syz', 0x0}, 0x0)

11:26:52 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f00000001c0)=ANY=[], 0x208e24b)
ioctl$LOOP_SET_FD(r2, 0x4c00, r1)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  494.958526][ T6352] index not increased! 20ffb000 <= 20ffb000
[  494.976471][ T6352] BUG at mt_find:6473 (1)
[  495.030153][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:26:52 executing program 4:
fanotify_mark(0xffffffffffffffff, 0x21, 0x0, 0xffffffffffffff9c, 0x0)

11:26:52 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080))
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:52 executing program 3:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f00000001c0)=0x1, 0x4)

[  495.159967][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  495.198136][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  495.269437][ T6352]     0-536866815: 0000000000000000
[  495.275158][ T6352]     536866816-536870911: ffff88807cef72a0
[  495.281485][ T6352]     536870912-553627647: ffff88801fb9b700
[  495.287439][ T6352]     553627648-553639935: 0000000000000000
[  495.301133][ T6352]     553639936-553627647: ffff88807bda78c0
[  495.312092][ T6352]     553627648-553644031: ffff88807bda79a0
[  495.329266][ T6352]     553644032-553648127: ffff8880216d6b60
[  495.338651][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  495.368817][ T6352]     553652224-116809400319: 0000000000000000
[  495.381956][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  495.388809][ T6352]     116813594624-93825005334527: 0000000000000000
[  495.395911][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  495.403134][ T6352]     93825005473792-140593359482879: 0000000000000000
[  495.416290][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  495.424005][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  495.479956][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  495.487130][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  495.496267][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  495.503991][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  495.512965][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  495.520421][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  495.527487][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  495.534869][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  495.542159][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  495.549157][ T6352]     140593381670912-140593381675007: 0000000000000000
[  495.556587][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  495.563847][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  495.571220][ T6352]     140593382076416-140593382096895: 0000000000000000
[  495.578241][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  495.585554][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  495.637094][ T6352]     140593393942528-140593395646463: 0000000000000000
[  495.648435][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  495.655591][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  495.662914][ T6352]     140593395781632-140727606853631: 0000000000000000
[  495.670302][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  495.677464][ T6352]     140727606988800-140727607586815: 0000000000000000
[  495.684629][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  495.691775][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  495.698832][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  495.706568][ T6352] Pass: 9420293 Run:9420459
[  495.711368][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  495.721210][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  495.731318][ T6352] Call Trace:
[  495.734618][ T6352]  <TASK>
[  495.737558][ T6352]  dump_stack_lvl+0xd1/0x138
[  495.742169][ T6352]  mt_find.cold+0x8b/0x90
[  495.746532][ T6352]  ? mas_find+0x1d0/0x1d0
[  495.750908][ T6352]  find_vma+0x10c/0x1b0
[  495.755099][ T6352]  ? can_vma_merge_before+0x390/0x390
[  495.760507][ T6352]  ? walk_page_test+0x78/0x180
[  495.765309][ T6352]  walk_page_range+0x2b1/0x4a0
[  495.770114][ T6352]  ? __walk_page_range+0x780/0x780
[  495.775290][ T6352]  mlock_fixup+0x650/0x810
[  495.779797][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  495.785047][ T6352]  ? mlock_fixup+0x810/0x810
[  495.789671][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  495.795612][ T6352]  do_mlock+0x25a/0x6d0
[  495.799823][ T6352]  ? folio_evictable+0x270/0x270
[  495.804805][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  495.810718][ T6352]  __x64_sys_mlock+0x59/0x80
[  495.815350][ T6352]  do_syscall_64+0x39/0xb0
[  495.819814][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  495.825739][ T6352] RIP: 0033:0x7fde7288c0c9
[  495.830161][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  495.849895][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  495.858344][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  495.866338][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  495.874326][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
11:26:53 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040), &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:53 executing program 4:
openat$sndseq(0xffffffffffffff9c, 0x0, 0x507300)

11:26:53 executing program 3:
r0 = syz_open_dev$ndb(&(0x7f0000000080), 0x0, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0)
ioctl$NBD_SET_SOCK(r0, 0xab00, r1)

11:26:53 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x220403)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r0, {r0}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r2, {0x4}}, './file0\x00'})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f00000001c0)=ANY=[], 0x208e24b)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000100)="670fc7bafe4f00000f212166b8b3fae82d0f23d00f21f866351000000e0f23f8ba4000b000eef2a3fa003e0f01d1baa100b000eeb800008ed0f2f20f0198c3d4658c540c", 0x44}], 0x1, 0x24, &(0x7f00000001c0)=[@dstype3={0x7, 0xc}, @dstype3={0x7, 0x5}], 0x2)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:53 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080))
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

11:26:53 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0}}, 0x8041)

[  495.882328][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  495.890423][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  495.898459][ T6352]  </TASK>
11:26:53 executing program 4:
r0 = socket$netlink(0x10, 0x3, 0xa)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000300)={0x2c, 0x0, 0x0, 0x0, 0x0, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}]}]}, 0x2c}}, 0x0)

11:26:53 executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000080), r0)

[  495.958788][ T6352] index not increased! 20ffb000 <= 20ffb000
11:26:53 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000000)=0x1, 0x4)

[  496.050861][ T6352] BUG at mt_find:6473 (1)
11:26:53 executing program 4:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8922, &(0x7f0000000280))

11:26:53 executing program 3:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/block/loop6', 0x105400, 0x0)

[  496.082769][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  496.092167][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  496.148011][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:26:53 executing program 0:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$fscrypt_v1(&(0x7f0000000080), &(0x7f00000000c0)={'fscrypt:', @desc3}, &(0x7f0000000100)={0x0, "840570cce9a5f6033875fcd9df92ce5446bcda37e80d3f4381ca97d4b2c17ff635cb799459dde3de7723d1c949c76cf11c69382e56bacb7011664674fea33350"}, 0x48, r0)
keyctl$chown(0x16, r1, 0xffffffffffffffff, 0x0)

[  496.267920][ T8908] team0: mtu less than device minimum
[  496.271456][ T6352]     0-536866815: 0000000000000000
[  496.311171][ T6352]     536866816-536870911: ffff88807cef72a0
[  496.331367][ T6352]     536870912-553627647: ffff88801fb9b700
[  496.337542][ T6352]     553627648-553639935: 0000000000000000
[  496.395870][ T6352]     553639936-553627647: ffff88807bda78c0
[  496.402886][ T6352]     553627648-553644031: ffff88807bda79a0
[  496.409347][ T6352]     553644032-553648127: ffff8880216d6b60
[  496.416567][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  496.423185][ T6352]     553652224-116809400319: 0000000000000000
[  496.433013][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  496.439705][ T6352]     116813594624-93825005334527: 0000000000000000
[  496.446631][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  496.453821][ T6352]     93825005473792-140593359482879: 0000000000000000
[  496.460970][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  496.468233][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  496.531006][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  496.549176][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  496.559195][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  496.576648][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  496.587125][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  496.601016][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  496.615984][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  496.627080][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  496.637241][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  496.644488][ T6352]     140593381670912-140593381675007: 0000000000000000
[  496.653236][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  496.660468][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  496.667620][ T6352]     140593382076416-140593382096895: 0000000000000000
[  496.674871][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  496.682088][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  496.732278][ T6352]     140593393942528-140593395646463: 0000000000000000
[  496.740324][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  496.747459][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  496.754644][ T6352]     140593395781632-140727606853631: 0000000000000000
[  496.763493][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  496.770701][ T6352]     140727606988800-140727607586815: 0000000000000000
[  496.777812][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  496.786257][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  496.793914][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  496.801570][ T6352] Pass: 9428829 Run:9428996
[  496.806216][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  496.816050][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  496.826131][ T6352] Call Trace:
[  496.829432][ T6352]  <TASK>
[  496.832386][ T6352]  dump_stack_lvl+0xd1/0x138
[  496.837022][ T6352]  mt_find.cold+0x8b/0x90
[  496.841399][ T6352]  ? mas_find+0x1d0/0x1d0
[  496.845787][ T6352]  find_vma+0x10c/0x1b0
[  496.850061][ T6352]  ? can_vma_merge_before+0x390/0x390
[  496.855475][ T6352]  ? walk_page_test+0x78/0x180
[  496.860284][ T6352]  walk_page_range+0x2b1/0x4a0
[  496.865089][ T6352]  ? __walk_page_range+0x780/0x780
[  496.870282][ T6352]  mlock_fixup+0x650/0x810
[  496.874765][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  496.880016][ T6352]  ? mlock_fixup+0x810/0x810
[  496.884665][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  496.890613][ T6352]  do_mlock+0x25a/0x6d0
[  496.894817][ T6352]  ? folio_evictable+0x270/0x270
[  496.899808][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  496.905743][ T6352]  __x64_sys_mlock+0x59/0x80
[  496.910468][ T6352]  do_syscall_64+0x39/0xb0
[  496.914921][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  496.920827][ T6352] RIP: 0033:0x7fde7288c0c9
[  496.925249][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  496.944864][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  496.953551][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  496.961528][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  496.969506][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  496.977487][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  496.985467][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  496.993467][ T6352]  </TASK>
11:26:54 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040), &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:54 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@ipv4_getnetconf={0x1c, 0x52, 0x1, 0x70bd25, 0x0, {}, [@NETCONFA_FORWARDING={0x8, 0x2, 0x6}]}, 0x1c}}, 0x0)

11:26:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080))
ioctl$KDADDIO(r0, 0x400455c8, 0x0)

[  497.004578][ T6352] index not increased! 20ffb000 <= 20ffb000
[  497.031464][ T6352] BUG at mt_find:6473 (1)
11:26:54 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x220403)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r0, {r0}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r2, {0x4}}, './file0\x00'})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f00000001c0)=ANY=[], 0x208e24b)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000100)="670fc7bafe4f00000f212166b8b3fae82d0f23d00f21f866351000000e0f23f8ba4000b000eef2a3fa003e0f01d1baa100b000eeb800008ed0f2f20f0198c3d4658c540c", 0x44}], 0x1, 0x24, &(0x7f00000001c0)=[@dstype3={0x7, 0xc}, @dstype3={0x7, 0x5}], 0x2)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x220403) (async)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r2, {0x4}}, './file0\x00'}) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) (async)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0) (async)
write$binfmt_script(r4, &(0x7f00000001c0)=ANY=[], 0x208e24b) (async)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000100)="670fc7bafe4f00000f212166b8b3fae82d0f23d00f21f866351000000e0f23f8ba4000b000eef2a3fa003e0f01d1baa100b000eeb800008ed0f2f20f0198c3d4658c540c", 0x44}], 0x1, 0x24, &(0x7f00000001c0)=[@dstype3={0x7, 0xc}, @dstype3={0x7, 0x5}], 0x2) (async)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

11:26:54 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r1, 0x1}, 0x14}}, 0x0)

11:26:54 executing program 4:
socketpair(0x2b, 0x1, 0x9, &(0x7f0000000080))

11:26:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x0)

[  497.062292][ T8914] __nla_validate_parse: 4 callbacks suppressed
[  497.062311][ T8914] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  497.078606][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:26:54 executing program 0:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, 0x0)

11:26:54 executing program 4:
accept4$inet(0xffffffffffffffff, 0x0, 0x0, 0x1800)

11:26:54 executing program 3:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0x5000, 0x0)

[  497.139880][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:26:54 executing program 0:
syz_open_dev$vcsn(&(0x7f0000000780), 0x3, 0x20002)

11:26:54 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x32, &(0x7f0000000080)={@multicast2, @multicast2}, 0xc)

[  497.395113][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  497.452829][ T6352]     0-536866815: 0000000000000000
[  497.460588][ T6352]     536866816-536870911: ffff88807cef72a0
[  497.479288][ T6352]     536870912-553627647: ffff88801fb9b700
[  497.492613][ T6352]     553627648-553639935: 0000000000000000
[  497.498719][ T6352]     553639936-553627647: ffff88807bda78c0
[  497.505213][ T6352]     553627648-553644031: ffff88807bda79a0
[  497.511887][ T6352]     553644032-553648127: ffff8880216d6b60
[  497.517974][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  497.524580][ T6352]     553652224-116809400319: 0000000000000000
[  497.531194][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  497.537803][ T6352]     116813594624-93825005334527: 0000000000000000
[  497.545116][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  497.553746][ T6352]     93825005473792-140593359482879: 0000000000000000
[  497.569081][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  497.576507][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  497.631887][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  497.639170][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  497.646720][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  497.653969][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  497.663417][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  497.670582][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  497.677631][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  497.684698][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  497.691770][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  497.698746][ T6352]     140593381670912-140593381675007: 0000000000000000
[  497.706457][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  497.713818][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  497.721389][ T6352]     140593382076416-140593382096895: 0000000000000000
[  497.728444][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  497.735547][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  497.787837][ T6352]     140593393942528-140593395646463: 0000000000000000
[  497.794938][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  497.802115][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  497.809135][ T6352]     140593395781632-140727606853631: 0000000000000000
[  497.816280][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  497.823402][ T6352]     140727606988800-140727607586815: 0000000000000000
[  497.830548][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  497.837567][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  497.844689][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  497.852163][ T6352] Pass: 9436489 Run:9436657
[  497.856683][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  497.866507][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  497.876570][ T6352] Call Trace:
[  497.879850][ T6352]  <TASK>
[  497.882786][ T6352]  dump_stack_lvl+0xd1/0x138
[  497.887400][ T6352]  mt_find.cold+0x8b/0x90
[  497.891752][ T6352]  ? mas_find+0x1d0/0x1d0
[  497.896106][ T6352]  find_vma+0x10c/0x1b0
[  497.900272][ T6352]  ? can_vma_merge_before+0x390/0x390
[  497.905655][ T6352]  ? walk_page_test+0x78/0x180
[  497.910437][ T6352]  walk_page_range+0x2b1/0x4a0
[  497.915222][ T6352]  ? __walk_page_range+0x780/0x780
[  497.920366][ T6352]  mlock_fixup+0x650/0x810
[  497.924813][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  497.930055][ T6352]  ? mlock_fixup+0x810/0x810
[  497.934686][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  497.940610][ T6352]  do_mlock+0x25a/0x6d0
[  497.944790][ T6352]  ? folio_evictable+0x270/0x270
[  497.949757][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  497.955670][ T6352]  __x64_sys_mlock+0x59/0x80
[  497.960286][ T6352]  do_syscall_64+0x39/0xb0
[  497.964726][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  497.970631][ T6352] RIP: 0033:0x7fde7288c0c9
[  497.975050][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  497.994665][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  498.003090][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  498.011065][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  498.019039][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  498.027022][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  498.034995][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  498.042985][ T6352]  </TASK>
[  498.052243][ T6352] index not increased! 20ffb000 <= 20ffb000
[  498.059081][ T6352] BUG at mt_find:6473 (1)
[  498.066313][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:26:55 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040), &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:55 executing program 4:
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff8)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000001740), r0)

11:26:55 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0xf)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000200), r0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x0)

11:26:55 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DISABLE_FRAGMENTS(r0, 0x84, 0x8, &(0x7f00000002c0), 0x4)

11:26:55 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x0)

11:26:55 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x220403)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r0, {r0}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r2, {0x4}}, './file0\x00'}) (async, rerun: 64)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (rerun: 64)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}) (async)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f00000001c0)=ANY=[], 0x208e24b)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@textreal={0x8, &(0x7f0000000100)="670fc7bafe4f00000f212166b8b3fae82d0f23d00f21f866351000000e0f23f8ba4000b000eef2a3fa003e0f01d1baa100b000eeb800008ed0f2f20f0198c3d4658c540c", 0x44}], 0x1, 0x24, &(0x7f00000001c0)=[@dstype3={0x7, 0xc}, @dstype3={0x7, 0x5}], 0x2)
ioctl$KVM_SET_IRQCHIP(r3, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:55 executing program 3:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc0189436, 0x0)

[  498.076433][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:26:55 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @mcast2, @private0, 0x0, 0x700}})

[  498.165708][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:26:55 executing program 4:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
add_key$user(0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFC_CMD_GET_TARGET(r0, &(0x7f0000002ac0)={&(0x7f0000002a00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000002a80)={&(0x7f0000002a40)={0x14}, 0x14}}, 0x0)

11:26:55 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x17, 0x0, 0x0)

11:26:55 executing program 4:
socketpair(0x2c, 0x0, 0x0, &(0x7f00000001c0))

[  498.274862][ T6352]     0-536866815: 0000000000000000
[  498.287277][ T6352]     536866816-536870911: ffff88807cef72a0
[  498.301432][ T6352]     536870912-553627647: ffff88801fb9b700
[  498.308242][ T6352]     553627648-553639935: 0000000000000000
[  498.316046][ T6352]     553639936-553627647: ffff88807bda78c0
11:26:55 executing program 3:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x5, 0x0, 0x0, {0x0, 0xea60}, {0x77359400}, {0x0, 0x0, 0x1}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "dd0ded4d432cda73"}}, 0x48}}, 0x0)

[  498.322362][ T6352]     553627648-553644031: ffff88807bda79a0
[  498.348970][ T6352]     553644032-553648127: ffff8880216d6b60
[  498.368992][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  498.384322][ T6352]     553652224-116809400319: 0000000000000000
[  498.391661][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  498.398291][ T6352]     116813594624-93825005334527: 0000000000000000
[  498.405889][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  498.413109][ T6352]     93825005473792-140593359482879: 0000000000000000
[  498.420822][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  498.442884][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  498.518195][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  498.531668][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  498.540819][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  498.556896][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  498.570473][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  498.579468][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  498.603751][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  498.612642][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  498.621712][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  498.628838][ T6352]     140593381670912-140593381675007: 0000000000000000
[  498.636510][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  498.644028][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  498.651341][ T6352]     140593382076416-140593382096895: 0000000000000000
[  498.658517][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  498.666002][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  498.718155][ T6352]     140593393942528-140593395646463: 0000000000000000
[  498.727383][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  498.745078][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  498.758097][ T6352]     140593395781632-140727606853631: 0000000000000000
[  498.770159][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  498.777883][ T6352]     140727606988800-140727607586815: 0000000000000000
[  498.786048][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  498.793491][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  498.801095][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  498.809102][ T6352] Pass: 9443538 Run:9443707
[  498.817247][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  498.827101][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  498.837191][ T6352] Call Trace:
[  498.840494][ T6352]  <TASK>
[  498.843439][ T6352]  dump_stack_lvl+0xd1/0x138
[  498.848053][ T6352]  mt_find.cold+0x8b/0x90
[  498.852402][ T6352]  ? mas_find+0x1d0/0x1d0
[  498.856759][ T6352]  find_vma+0x10c/0x1b0
[  498.860926][ T6352]  ? can_vma_merge_before+0x390/0x390
[  498.866311][ T6352]  ? walk_page_test+0x78/0x180
[  498.871090][ T6352]  walk_page_range+0x2b1/0x4a0
[  498.875874][ T6352]  ? __walk_page_range+0x780/0x780
[  498.881017][ T6352]  mlock_fixup+0x650/0x810
[  498.885461][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  498.890682][ T6352]  ? mlock_fixup+0x810/0x810
[  498.895312][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  498.901235][ T6352]  do_mlock+0x25a/0x6d0
[  498.905414][ T6352]  ? folio_evictable+0x270/0x270
[  498.910379][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  498.916289][ T6352]  __x64_sys_mlock+0x59/0x80
[  498.920899][ T6352]  do_syscall_64+0x39/0xb0
[  498.925334][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  498.931241][ T6352] RIP: 0033:0x7fde7288c0c9
[  498.935668][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  498.955457][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  498.963875][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
11:26:56 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x0)

11:26:56 executing program 4:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x5, 0x0, 0x0, {0x0, 0xea60}, {0x77359400}, {0x0, 0x1, 0x0, 0x1}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "dd0ded4d432cda73"}}, 0x48}}, 0x0)

11:26:56 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$inet6(r0, &(0x7f0000000a00)={0x0, 0x0, 0x0}, 0x0)

11:26:56 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5"], &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040), &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:56 executing program 3:
openat$vcs(0xffffffffffffff9c, &(0x7f0000000400), 0x8801, 0x0)

[  498.971851][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  498.979826][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  498.987978][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  498.995955][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  499.003951][ T6352]  </TASK>
[  499.033171][ T6352] index not increased! 20ffb000 <= 20ffb000
[  499.074850][ T6352] BUG at mt_find:6473 (1)
[  499.089777][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  499.119318][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  499.181342][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  499.240165][ T6352]     0-536866815: 0000000000000000
[  499.258656][ T6352]     536866816-536870911: ffff88807cef72a0
[  499.285671][ T6352]     536870912-553627647: ffff88801fb9b700
[  499.352738][ T6352]     553627648-553639935: 0000000000000000
[  499.386034][ T6352]     553639936-553627647: ffff88807bda78c0
[  499.408037][ T6352]     553627648-553644031: ffff88807bda79a0
[  499.430591][ T6352]     553644032-553648127: ffff8880216d6b60
[  499.439655][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  499.445647][ T6352]     553652224-116809400319: 0000000000000000
[  499.452721][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  499.468099][ T6352]     116813594624-93825005334527: 0000000000000000
[  499.477299][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  499.490989][ T6352]     93825005473792-140593359482879: 0000000000000000
[  499.510100][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  499.517220][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  499.583953][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  499.596191][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  499.608511][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  499.627949][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  499.635522][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  499.652136][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  499.659234][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  499.666879][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  499.674392][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  499.686638][ T6352]     140593381670912-140593381675007: 0000000000000000
[  499.697140][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  499.704651][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  499.714559][ T6352]     140593382076416-140593382096895: 0000000000000000
[  499.736319][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  499.743828][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  499.796526][ T6352]     140593393942528-140593395646463: 0000000000000000
[  499.806190][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  499.823200][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  499.838378][ T6352]     140593395781632-140727606853631: 0000000000000000
[  499.847001][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  499.875302][ T6352]     140727606988800-140727607586815: 0000000000000000
[  499.886126][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  499.898841][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  499.914213][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  499.921918][ T6352] Pass: 9448923 Run:9449093
[  499.926444][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  499.936279][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  499.946449][ T6352] Call Trace:
[  499.949755][ T6352]  <TASK>
[  499.952709][ T6352]  dump_stack_lvl+0xd1/0x138
[  499.957439][ T6352]  mt_find.cold+0x8b/0x90
[  499.961820][ T6352]  ? mas_find+0x1d0/0x1d0
[  499.966201][ T6352]  find_vma+0x10c/0x1b0
[  499.970394][ T6352]  ? can_vma_merge_before+0x390/0x390
[  499.975813][ T6352]  ? walk_page_test+0x78/0x180
[  499.980629][ T6352]  walk_page_range+0x2b1/0x4a0
[  499.985436][ T6352]  ? __walk_page_range+0x780/0x780
[  499.990606][ T6352]  mlock_fixup+0x650/0x810
[  499.995088][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  500.000349][ T6352]  ? mlock_fixup+0x810/0x810
[  500.005000][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  500.010942][ T6352]  do_mlock+0x25a/0x6d0
[  500.015154][ T6352]  ? folio_evictable+0x270/0x270
[  500.020158][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  500.026103][ T6352]  __x64_sys_mlock+0x59/0x80
[  500.030741][ T6352]  do_syscall_64+0x39/0xb0
[  500.035204][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  500.041136][ T6352] RIP: 0033:0x7fde7288c0c9
[  500.045572][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  500.065393][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  500.073843][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  500.081845][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  500.089847][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  500.097852][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  500.105865][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  500.113899][ T6352]  </TASK>
[  500.128743][ T6352] index not increased! 20ffb000 <= 20ffb000
[  500.136201][ T6352] BUG at mt_find:6473 (1)
[  500.140897][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  500.149339][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  500.187445][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  500.238274][ T6352]     0-536866815: 0000000000000000
[  500.245320][ T6352]     536866816-536870911: ffff88807cef72a0
[  500.257395][ T6352]     536870912-553627647: ffff88801fb9b700
[  500.263575][ T6352]     553627648-553639935: 0000000000000000
[  500.270370][ T6352]     553639936-553627647: ffff88807bda78c0
11:26:57 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0xb, &(0x7f0000000080)={@multicast2, @multicast2}, 0xc)

11:26:57 executing program 0:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x38, 0x0, 0x0)

11:26:57 executing program 4:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x42, &(0x7f00000000c0)={@private1}, 0x14)

11:26:57 executing program 1:
openat$nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x80202, 0x0)

11:26:57 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5"], &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040), &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:57 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x10900, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x2, 0x1, 0x6000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x4, 0x80}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

[  500.276318][ T6352]     553627648-553644031: ffff88807bda79a0
[  500.282355][ T6352]     553644032-553648127: ffff8880216d6b60
[  500.288284][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  500.300718][ T6352]     553652224-116809400319: 0000000000000000
11:26:57 executing program 3:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, &(0x7f0000000180)={&(0x7f0000000000), 0x14, &(0x7f0000000140)={&(0x7f0000000040)="73fda068b982cbaf02726baaaa62a6005c04e8e1301635217062dc5d9356e669d27b5bee2802df43a677095299fd5c1c33be8de36390b71b01a19dc08158ae492fdd475aa75ebe760dd4d03bde603ebaae1940372f532bc789e352348e0c1e075dca6c80cb160fdd9dd6607656d8c3ba3e374352a423769d2b68a4a707a0beb6", 0x80}}, 0x0)

11:26:57 executing program 4:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x42, &(0x7f00000000c0)={@private1}, 0x14)

11:26:57 executing program 0:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8937, &(0x7f0000000280))

[  500.334328][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  500.372287][ T6352]     116813594624-93825005334527: 0000000000000000
11:26:57 executing program 4:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x42, &(0x7f00000000c0)={@private1}, 0x14)

11:26:57 executing program 0:
openat$audio1(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x20902, 0x0)

11:26:57 executing program 3:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, &(0x7f0000000180)={&(0x7f0000000000), 0x14, &(0x7f0000000140)={&(0x7f0000000040)="73fda068b982cbaf02726baaaa62a6005c04e8e1301635217062dc5d9356e669d27b5bee2802df43a677095299fd5c1c33be8de36390b71b01a19dc08158ae492fdd475aa75ebe760dd4d03bde603ebaae1940372f532bc789e352348e0c1e075dca6c80cb160fdd9dd6607656d8c3ba3e374352a423769d2b68a4a707a0beb6", 0x80}}, 0x0)

[  500.425719][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
11:26:57 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000180)={@empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4={'\x00', '\xff\xff', @empty}})

11:26:57 executing program 4:
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x42, &(0x7f00000000c0)={@private1}, 0x14)

[  500.471172][ T6352]     93825005473792-140593359482879: 0000000000000000
[  500.524742][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
11:26:57 executing program 3:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, &(0x7f0000000180)={&(0x7f0000000000), 0x14, &(0x7f0000000140)={&(0x7f0000000040)="73fda068b982cbaf02726baaaa62a6005c04e8e1301635217062dc5d9356e669d27b5bee2802df43a677095299fd5c1c33be8de36390b71b01a19dc08158ae492fdd475aa75ebe760dd4d03bde603ebaae1940372f532bc789e352348e0c1e075dca6c80cb160fdd9dd6607656d8c3ba3e374352a423769d2b68a4a707a0beb6", 0x80}}, 0x0)

11:26:57 executing program 4:
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x5, &(0x7f0000000140), 0x4)

[  500.549787][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  500.788302][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  500.804633][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  500.822995][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  500.838295][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  500.853262][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  500.876083][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  500.888369][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  500.903596][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  500.921138][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  500.928551][ T6352]     140593381670912-140593381675007: 0000000000000000
[  500.941834][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  500.949132][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  500.956387][ T6352]     140593382076416-140593382096895: 0000000000000000
[  500.963629][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  500.976160][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  501.027071][ T6352]     140593393942528-140593395646463: 0000000000000000
[  501.039852][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  501.046999][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  501.057516][ T6352]     140593395781632-140727606853631: 0000000000000000
[  501.064941][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  501.072506][ T6352]     140727606988800-140727607586815: 0000000000000000
[  501.079806][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  501.086943][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  501.094089][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  501.101769][ T6352] Pass: 9456649 Run:9456820
[  501.106297][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  501.116114][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  501.126176][ T6352] Call Trace:
[  501.129460][ T6352]  <TASK>
[  501.132398][ T6352]  dump_stack_lvl+0xd1/0x138
[  501.137019][ T6352]  mt_find.cold+0x8b/0x90
[  501.141368][ T6352]  ? mas_find+0x1d0/0x1d0
[  501.145755][ T6352]  find_vma+0x10c/0x1b0
[  501.149942][ T6352]  ? can_vma_merge_before+0x390/0x390
[  501.155353][ T6352]  ? walk_page_test+0x78/0x180
[  501.160158][ T6352]  walk_page_range+0x2b1/0x4a0
[  501.164963][ T6352]  ? __walk_page_range+0x780/0x780
[  501.170135][ T6352]  mlock_fixup+0x650/0x810
[  501.174592][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  501.179817][ T6352]  ? mlock_fixup+0x810/0x810
[  501.184470][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  501.190408][ T6352]  do_mlock+0x25a/0x6d0
[  501.194609][ T6352]  ? folio_evictable+0x270/0x270
[  501.199601][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  501.205541][ T6352]  __x64_sys_mlock+0x59/0x80
[  501.210164][ T6352]  do_syscall_64+0x39/0xb0
[  501.214601][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  501.220508][ T6352] RIP: 0033:0x7fde7288c0c9
[  501.224935][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  501.244559][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  501.252986][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  501.261228][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  501.269316][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  501.277313][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  501.285297][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
11:26:58 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="7c3b6ad5"], &(0x7f000095dffc)=0x8)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040), &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:58 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCADDDLCI(r0, 0x89a0, 0x0)

11:26:58 executing program 3:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, &(0x7f0000000180)={&(0x7f0000000000), 0x14, &(0x7f0000000140)={&(0x7f0000000040)="73fda068b982cbaf02726baaaa62a6005c04e8e1301635217062dc5d9356e669d27b5bee2802df43a677095299fd5c1c33be8de36390b71b01a19dc08158ae492fdd475aa75ebe760dd4d03bde603ebaae1940372f532bc789e352348e0c1e075dca6c80cb160fdd9dd6607656d8c3ba3e374352a423769d2b68a4a707a0beb6", 0x80}}, 0x0)

11:26:58 executing program 4:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x89a0, &(0x7f0000000280))

11:26:58 executing program 0:
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendmmsg$inet6(r0, &(0x7f0000002f00)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x0)

11:26:58 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x10900, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x2, 0x1, 0x6000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x4, 0x80}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x10900, 0x0) (async)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x2, 0x1, 0x6000, 0x1000, &(0x7f0000ffc000/0x1000)=nil}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x4, 0x80}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)

11:26:58 executing program 4:
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)

[  501.293728][ T6352]  </TASK>
[  501.300276][ T6352] index not increased! 20ffb000 <= 20ffb000
11:26:58 executing program 3:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/msr', 0x201, 0x0)

11:26:58 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r0, &(0x7f0000000780)={&(0x7f0000000000)={0xa, 0x4e22, 0x0, @loopback}, 0x1c, &(0x7f00000005c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, &(0x7f0000000680)=[@dontfrag={{0x14, 0x29, 0x3e, 0x8}}], 0x18}, 0x0)

[  501.347833][ T6352] BUG at mt_find:6473 (1)
[  501.367490][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  501.430061][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  501.471783][ T1206] ieee802154 phy0 wpan0: encryption failed: -22
11:26:58 executing program 0:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'})

11:26:58 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$netlink(r0, 0x10e, 0x3, 0x0, &(0x7f0000000040))

[  501.478128][ T1206] ieee802154 phy1 wpan1: encryption failed: -22
11:26:58 executing program 3:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f0000000080)=0x7fff)

[  501.539384][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  501.705291][ T6352]     0-536866815: 0000000000000000
[  501.712931][ T6352]     536866816-536870911: ffff88807cef72a0
[  501.719047][ T6352]     536870912-553627647: ffff88801fb9b700
[  501.726539][ T6352]     553627648-553639935: 0000000000000000
[  501.742265][ T6352]     553639936-553627647: ffff88807bda78c0
[  501.748490][ T6352]     553627648-553644031: ffff88807bda79a0
[  501.764002][ T6352]     553644032-553648127: ffff8880216d6b60
[  501.771059][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  501.777084][ T6352]     553652224-116809400319: 0000000000000000
[  501.783659][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  501.791291][ T6352]     116813594624-93825005334527: 0000000000000000
[  501.798022][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  501.805234][ T6352]     93825005473792-140593359482879: 0000000000000000
[  501.812514][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  501.819849][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  501.878914][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  501.886131][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  501.893240][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  501.900360][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  501.907350][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  501.914455][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  501.921593][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  501.928560][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  501.935631][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  501.942670][ T6352]     140593381670912-140593381675007: 0000000000000000
[  501.951266][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  501.958252][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  501.966110][ T6352]     140593382076416-140593382096895: 0000000000000000
[  501.973264][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  501.980290][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  502.030385][ T6352]     140593393942528-140593395646463: 0000000000000000
[  502.037371][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  502.044456][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  502.051529][ T6352]     140593395781632-140727606853631: 0000000000000000
[  502.058502][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  502.068129][ T6352]     140727606988800-140727607586815: 0000000000000000
[  502.075221][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  502.082237][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  502.089227][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  502.096785][ T6352] Pass: 9464336 Run:9464508
[  502.101477][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  502.111315][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  502.121384][ T6352] Call Trace:
[  502.124655][ T6352]  <TASK>
[  502.127581][ T6352]  dump_stack_lvl+0xd1/0x138
[  502.132177][ T6352]  mt_find.cold+0x8b/0x90
[  502.136510][ T6352]  ? mas_find+0x1d0/0x1d0
[  502.140848][ T6352]  find_vma+0x10c/0x1b0
[  502.145008][ T6352]  ? can_vma_merge_before+0x390/0x390
[  502.150391][ T6352]  ? walk_page_test+0x78/0x180
[  502.155178][ T6352]  walk_page_range+0x2b1/0x4a0
[  502.159957][ T6352]  ? __walk_page_range+0x780/0x780
[  502.165127][ T6352]  mlock_fixup+0x650/0x810
[  502.169601][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  502.174832][ T6352]  ? mlock_fixup+0x810/0x810
[  502.179441][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  502.185335][ T6352]  do_mlock+0x25a/0x6d0
[  502.189495][ T6352]  ? folio_evictable+0x270/0x270
[  502.194445][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  502.200337][ T6352]  __x64_sys_mlock+0x59/0x80
[  502.204927][ T6352]  do_syscall_64+0x39/0xb0
[  502.209346][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  502.215246][ T6352] RIP: 0033:0x7fde7288c0c9
[  502.219667][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  502.239279][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  502.247698][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  502.255672][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  502.263649][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  502.271625][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  502.279606][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  502.287612][ T6352]  </TASK>
[  502.297379][ T6352] index not increased! 20ffb000 <= 20ffb000
[  502.312711][ T6352] BUG at mt_find:6473 (1)
11:26:59 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:26:59 executing program 0:
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x4}, 0x1c)

11:26:59 executing program 4:
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)

11:26:59 executing program 1:
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x22040, 0x48)
socketpair(0x26, 0x4, 0x0, 0x0)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(0xffffffffffffffff, 0x10e, 0x8, 0x0, 0x0)
socket(0x0, 0x0, 0x0)

11:26:59 executing program 3:
openat$autofs(0xffffffffffffff9c, &(0x7f00000006c0), 0x101, 0x0)

11:26:59 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x10900, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000040)={0x2, 0x1, 0x6000, 0x1000, &(0x7f0000ffc000/0x1000)=nil})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x4, 0x80}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})

11:26:59 executing program 4:
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)

[  502.317108][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
11:26:59 executing program 0:
mq_open(&(0x7f0000000040)='#(#\x00', 0x40, 0x0, &(0x7f0000000080)={0x4bf, 0x6, 0x10001, 0x3})

[  502.412594][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:26:59 executing program 4:
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)

11:26:59 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

[  502.450194][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  502.501414][ T6352]     0-536866815: 0000000000000000
[  502.506683][ T6352]     536866816-536870911: ffff88807cef72a0
11:26:59 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000300)={'sit0\x00', &(0x7f0000000200)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @local}}}})

[  502.515781][ T6352]     536870912-553627647: ffff88801fb9b700
[  502.543142][ T6352]     553627648-553639935: 0000000000000000
[  502.560713][ T6352]     553639936-553627647: ffff88807bda78c0
11:26:59 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = socket$l2tp(0x2, 0x2, 0x73)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000180)={@empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4={'\x00', '\xff\xff', @empty}, 0x0, 0x6c08, 0x0, 0x0, 0x0, 0x0, r2})

[  502.615659][ T6352]     553627648-553644031: ffff88807bda79a0
[  502.652702][ T6352]     553644032-553648127: ffff8880216d6b60
[  502.671626][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  502.693567][ T6352]     553652224-116809400319: 0000000000000000
[  502.708972][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  502.716388][ T6352]     116813594624-93825005334527: 0000000000000000
[  502.734527][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  502.758249][ T6352]     93825005473792-140593359482879: 0000000000000000
[  502.782573][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  502.794141][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  502.857747][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  502.870864][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  502.882785][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  502.893086][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  502.900424][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  502.907482][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  502.914704][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  502.922050][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  502.929102][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  502.936282][ T6352]     140593381670912-140593381675007: 0000000000000000
[  502.943448][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  502.950605][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  502.957647][ T6352]     140593382076416-140593382096895: 0000000000000000
[  502.964798][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  502.971947][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  503.024321][ T6352]     140593393942528-140593395646463: 0000000000000000
[  503.031714][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  503.038682][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  503.046067][ T6352]     140593395781632-140727606853631: 0000000000000000
[  503.053602][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  503.060962][ T6352]     140727606988800-140727607586815: 0000000000000000
[  503.067950][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  503.075976][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  503.083291][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  503.092364][ T6352] Pass: 9480449 Run:9480622
[  503.096899][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  503.106711][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  503.116758][ T6352] Call Trace:
[  503.120031][ T6352]  <TASK>
[  503.122955][ T6352]  dump_stack_lvl+0xd1/0x138
[  503.127549][ T6352]  mt_find.cold+0x8b/0x90
[  503.131880][ T6352]  ? mas_find+0x1d0/0x1d0
[  503.136213][ T6352]  find_vma+0x10c/0x1b0
[  503.140374][ T6352]  ? can_vma_merge_before+0x390/0x390
[  503.145761][ T6352]  ? walk_page_test+0x78/0x180
[  503.150540][ T6352]  walk_page_range+0x2b1/0x4a0
[  503.155345][ T6352]  ? __walk_page_range+0x780/0x780
[  503.160512][ T6352]  mlock_fixup+0x650/0x810
[  503.164963][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  503.170166][ T6352]  ? mlock_fixup+0x810/0x810
[  503.174791][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
11:27:00 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:27:00 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x602200, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="260f994a0b66b84c008ed0672e400f08b8010000000f01c1c4e1796ed766ba2100edc44231be7d000fc77b0976ff0f01cf", 0x31}], 0x1, 0x60, &(0x7f0000000180)=[@cr4={0x1, 0x400}], 0x1)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'})
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000040)={0x101ff, 0x0, &(0x7f0000ff9000/0x4000)=nil})
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x3, 0x0)
fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f0000000200)=0x1)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000240))

11:27:00 executing program 3:
wait4(0xffffffffffffffff, 0x0, 0x4, &(0x7f0000000040))

11:27:00 executing program 4:
pselect6(0x0, 0x0, 0x0, &(0x7f0000001d00), &(0x7f0000001d40)={0x0, 0x989680}, 0x0)

11:27:00 executing program 0:
socketpair(0x2, 0x3, 0x0, &(0x7f0000000900))

11:27:00 executing program 1:
pselect6(0x40, &(0x7f0000001c80), &(0x7f0000001cc0)={0xb93}, &(0x7f0000001d00), &(0x7f0000001d40)={0x0, 0x989680}, &(0x7f0000001dc0)={&(0x7f0000001d80)={[0x8]}, 0x8})

[  503.180714][ T6352]  do_mlock+0x25a/0x6d0
[  503.184887][ T6352]  ? folio_evictable+0x270/0x270
[  503.189887][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  503.195818][ T6352]  __x64_sys_mlock+0x59/0x80
[  503.200430][ T6352]  do_syscall_64+0x39/0xb0
[  503.204897][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  503.210836][ T6352] RIP: 0033:0x7fde7288c0c9
[  503.215265][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  503.234907][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  503.243360][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  503.251371][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  503.259376][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  503.267377][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  503.275374][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
11:27:00 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000003e40)=@bloom_filter={0x1e, 0x0, 0xffffffff, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48)

11:27:00 executing program 4:
r0 = io_uring_setup(0x2af0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1})
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000004c0)={0xffffffffffffffff}, 0x4)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000540)=[0xffffffffffffffff], 0x1)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
openat$pidfd(0xffffff9c, 0x0, 0x4a0002, 0x0)

[  503.283394][ T6352]  </TASK>
[  503.289458][ T6352] index not increased! 20ffb000 <= 20ffb000
[  503.316973][ T6352] BUG at mt_find:6473 (1)
11:27:00 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000002140)={'gre0\x00', &(0x7f00000020c0)={'sit0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @remote}}}})

[  503.349702][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  503.358293][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
11:27:00 executing program 3:
io_uring_setup(0x0, &(0x7f00000017c0))

11:27:00 executing program 3:
ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0)

[  503.433220][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
11:27:00 executing program 1:
openat$cgroup_root(0xffffff9c, &(0x7f00000003c0)='./cgroup/syz0\x00', 0x200002, 0x0)
openat$cgroup_root(0xffffff9c, &(0x7f0000000b80)='./cgroup/syz1\x00', 0x200002, 0x0)

[  503.494226][ T6352]     0-536866815: 0000000000000000
[  503.511759][ T6352]     536866816-536870911: ffff88807cef72a0
[  503.580111][ T6352]     536870912-553627647: ffff88801fb9b700
[  503.590689][ T6352]     553627648-553639935: 0000000000000000
[  503.596656][ T6352]     553639936-553627647: ffff88807bda78c0
[  503.623234][ T6352]     553627648-553644031: ffff88807bda79a0
[  503.646615][ T6352]     553644032-553648127: ffff8880216d6b60
[  503.653821][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  503.660484][ T6352]     553652224-116809400319: 0000000000000000
[  503.667090][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  503.675711][ T6352]     116813594624-93825005334527: 0000000000000000
[  503.684844][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  503.697875][ T6352]     93825005473792-140593359482879: 0000000000000000
[  503.726779][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  503.735203][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  503.793630][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  503.800797][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  503.808523][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  503.815580][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  503.823695][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  503.830770][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  503.837734][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  503.844764][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  503.851841][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  503.858859][ T6352]     140593381670912-140593381675007: 0000000000000000
[  503.865919][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  503.873266][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  503.880605][ T6352]     140593382076416-140593382096895: 0000000000000000
[  503.887569][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  503.894727][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  503.950433][ T6352]     140593393942528-140593395646463: 0000000000000000
[  503.957527][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  503.964706][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  503.971760][ T6352]     140593395781632-140727606853631: 0000000000000000
[  503.978727][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  503.985739][ T6352]     140727606988800-140727607586815: 0000000000000000
[  503.992785][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  503.999842][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  504.006802][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  504.015329][ T6352] Pass: 9507842 Run:9508016
[  504.019953][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  504.029793][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  504.039877][ T6352] Call Trace:
[  504.043172][ T6352]  <TASK>
[  504.046110][ T6352]  dump_stack_lvl+0xd1/0x138
[  504.050804][ T6352]  mt_find.cold+0x8b/0x90
[  504.055174][ T6352]  ? mas_find+0x1d0/0x1d0
[  504.059536][ T6352]  find_vma+0x10c/0x1b0
[  504.063708][ T6352]  ? can_vma_merge_before+0x390/0x390
[  504.069079][ T6352]  ? walk_page_test+0x78/0x180
[  504.073861][ T6352]  walk_page_range+0x2b1/0x4a0
[  504.078655][ T6352]  ? __walk_page_range+0x780/0x780
[  504.083775][ T6352]  mlock_fixup+0x650/0x810
[  504.088202][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  504.093417][ T6352]  ? mlock_fixup+0x810/0x810
[  504.098040][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  504.103951][ T6352]  do_mlock+0x25a/0x6d0
[  504.108168][ T6352]  ? folio_evictable+0x270/0x270
[  504.113169][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  504.119099][ T6352]  __x64_sys_mlock+0x59/0x80
[  504.123744][ T6352]  do_syscall_64+0x39/0xb0
[  504.128210][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  504.134138][ T6352] RIP: 0033:0x7fde7288c0c9
[  504.138584][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  504.158227][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  504.166685][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
11:27:01 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

11:27:01 executing program 3:
syz_genetlink_get_family_id$team(&(0x7f0000000900), 0xffffffffffffffff)

11:27:01 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x602200, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="260f994a0b66b84c008ed0672e400f08b8010000000f01c1c4e1796ed766ba2100edc44231be7d000fc77b0976ff0f01cf", 0x31}], 0x1, 0x60, &(0x7f0000000180)=[@cr4={0x1, 0x400}], 0x1)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'})
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000040)={0x101ff, 0x0, &(0x7f0000ff9000/0x4000)=nil})
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x3, 0x0)
fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f0000000200)=0x1)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000240))
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) (async)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) (async)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x602200, 0x0) (async)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="260f994a0b66b84c008ed0672e400f08b8010000000f01c1c4e1796ed766ba2100edc44231be7d000fc77b0976ff0f01cf", 0x31}], 0x1, 0x60, &(0x7f0000000180)=[@cr4={0x1, 0x400}], 0x1) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}}) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'}) (async)
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000040)={0x101ff, 0x0, &(0x7f0000ff9000/0x4000)=nil}) (async)
syz_open_dev$MSR(&(0x7f00000001c0), 0x3, 0x0) (async)
fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f0000000200)=0x1) (async)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000240)) (async)

11:27:01 executing program 4:
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = io_uring_setup(0x2af0, &(0x7f0000000440)={0x0, 0x3402, 0x0, 0x0, 0xcd})
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000540)=[r0, 0xffffffffffffffff, 0xffffffffffffffff], 0x3)

11:27:01 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cpuset.effective_mems\x00', 0x275a, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x10001, 0x0, 0x0, 0x1000, &(0x7f0000001000/0x1000)=nil})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x40000000011, r2, 0x0)

11:27:01 executing program 0:
openat$tun(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
msgctl$IPC_INFO(0x0, 0x3, &(0x7f00000021c0)=""/246)

11:27:01 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000002b40))

[  504.174692][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  504.182701][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  504.190697][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  504.198706][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  504.206735][ T6352]  </TASK>
11:27:01 executing program 3:
syz_genetlink_get_family_id$team(&(0x7f0000000900), 0xffffffffffffffff)

11:27:01 executing program 4:
pipe2(0x0, 0x80080)
r0 = io_uring_setup(0x2af0, &(0x7f0000000440)={0x0, 0x3402, 0x0, 0x1})
openat$pidfd(0xffffff9c, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000540)=[0xffffffffffffffff], 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_ENABLE_RINGS(0xffffffffffffffff, 0xc, 0x0, 0x0)
bpf$BPF_LINK_UPDATE(0x1d, 0x0, 0x0)

[  504.250024][ T6352] index not increased! 20ffb000 <= 20ffb000
[  504.256383][ T6352] BUG at mt_find:6473 (1)
[  504.260903][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  504.279873][ T9143] syz-executor.2: vmalloc error: size 4096, page order 0, failed to allocate pages, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1
11:27:01 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000001f80)={&(0x7f0000001840), 0xc, &(0x7f0000001f40)={0x0}}, 0x0)

11:27:01 executing program 0:
syz_open_dev$ttys(0xc, 0x2, 0x0)
r0 = syz_open_dev$ptys(0xc, 0x3, 0x0)
ioctl$TIOCSPGRP(r0, 0x5410, 0x0)

[  504.332232][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  504.371325][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  504.424471][ T6352]     0-536866815: 0000000000000000
[  504.430874][ T9143] CPU: 0 PID: 9143 Comm: syz-executor.2 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  504.440716][ T9143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  504.450780][ T9143] Call Trace:
[  504.454058][ T9143]  <TASK>
[  504.456992][ T9143]  dump_stack_lvl+0xd1/0x138
[  504.461606][ T9143]  warn_alloc.cold+0x95/0x1a7
[  504.466319][ T9143]  ? zone_watermark_ok_safe+0x300/0x300
[  504.471888][ T9143]  ? find_held_lock+0x2d/0x110
[  504.476679][ T9143]  ? lock_downgrade+0x6e0/0x6e0
[  504.481547][ T9143]  __vmalloc_node_range+0xef7/0x12e0
[  504.486848][ T9143]  ? kvm_dev_ioctl+0x191/0x1ce0
[  504.491712][ T9143]  ? vfree_atomic+0xe0/0xe0
[  504.496216][ T9143]  ? vsprintf+0x30/0x30
[  504.500390][ T9143]  ? _raw_spin_unlock+0x28/0x40
[  504.505253][ T9143]  ? alloc_fd+0x2e4/0x6e0
[  504.509590][ T9143]  ? kvm_dev_ioctl+0x191/0x1ce0
[  504.514444][ T9143]  __vmalloc+0x6d/0x90
[  504.518519][ T9143]  ? kvm_dev_ioctl+0x191/0x1ce0
[  504.523377][ T9143]  kvm_dev_ioctl+0x191/0x1ce0
[  504.528061][ T9143]  ? trace_lock_acquire+0x1f1/0x290
[  504.533269][ T9143]  ? receive_fd+0x110/0x110
[  504.537781][ T9143]  ? kvm_stat_data_open+0x380/0x380
[  504.542985][ T9143]  ? __fget_files+0x26a/0x480
[  504.547671][ T9143]  ? bpf_lsm_file_ioctl+0x9/0x10
[  504.552688][ T9143]  ? kvm_stat_data_open+0x380/0x380
[  504.557894][ T9143]  __x64_sys_ioctl+0x197/0x210
[  504.562665][ T9143]  do_syscall_64+0x39/0xb0
[  504.567101][ T9143]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  504.573002][ T9143] RIP: 0033:0x7f428208c0c9
[  504.577422][ T9143] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  504.597034][ T9143] RSP: 002b:00007f4282e1d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  504.605450][ T9143] RAX: ffffffffffffffda RBX: 00007f42821ac120 RCX: 00007f428208c0c9
[  504.613422][ T9143] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003
[  504.621396][ T9143] RBP: 00007f42820e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  504.629367][ T9143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  504.637336][ T9143] R13: 00007ffcbc9642af R14: 00007f4282e1d300 R15: 0000000000022000
[  504.645326][ T9143]  </TASK>
[  504.665305][ T6352]     536866816-536870911: ffff88807cef72a0
[  504.670318][   T28] INFO: task syz-executor.1:6343 blocked for more than 144 seconds.
11:27:01 executing program 4:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f0000001140)={0x1, 0x0, 0xf, 0x18, 0x0, 0x0})

[  504.679258][   T28]       Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  504.699587][ T6352]     536870912-553627647: ffff88801fb9b700
[  504.721851][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  504.747635][ T6352]     553627648-553639935: 0000000000000000
[  504.788824][   T28] task:syz-executor.1  state:D stack:28152 pid:6343  ppid:5111   flags:0x00000004
[  504.804274][ T6352]     553639936-553627647: ffff88807bda78c0
[  504.810444][ T9143] Mem-Info:
[  504.823160][ T9143] active_anon:3003 inactive_anon:188514 isolated_anon:0
[  504.823160][ T9143]  active_file:12711 inactive_file:490 isolated_file:0
[  504.823160][ T9143]  unevictable:768 dirty:2 writeback:0
[  504.823160][ T9143]  slab_reclaimable:19890 slab_unreclaimable:101077
[  504.823160][ T9143]  mapped:21504 shmem:10034 pagetables:1005
[  504.823160][ T9143]  sec_pagetables:0 bounce:0
[  504.823160][ T9143]  kernel_misc_reclaimable:0
[  504.823160][ T9143]  free:1228231 free_pcp:10536 free_cma:0
[  504.828062][ T6352]     553627648-553644031: 
[  504.872836][   T28] Call Trace:
[  504.881312][   T28]  <TASK>
[  504.884443][   T28]  __schedule+0x25d0/0x5a70
[  504.889135][   T28]  ? lock_chain_count+0x20/0x20
[  504.897131][ T9143] Node 0 active_anon:12020kB inactive_anon:754040kB active_file:50768kB inactive_file:1960kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:86032kB dirty:4kB writeback:0kB shmem:38608kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 28672kB writeback_tmp:0kB kernel_stack:11048kB pagetables:3936kB sec_pagetables:0kB all_unreclaimable? no
[  504.897629][   T28]  ? find_held_lock+0x2d/0x110
[  504.936262][ T6352] ffff88807bda79a0
[  504.940543][ T6352]     553644032-553648127: ffff8880216d6b60
[  504.946529][ T9143] Node 1 active_anon:0kB inactive_anon:0kB active_file:76kB inactive_file:0kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  504.948000][   T28]  ? io_schedule_timeout+0x150/0x150
[  504.977665][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  504.991067][ T6352]     553652224-116809400319: 0000000000000000
[  504.992956][   T28]  ? rwsem_down_read_slowpath+0x29f/0xb20
[  504.997322][ T6352]     116809400320-116813594623: 
[  505.003428][ T9143] Node 0 DMA free:15360kB boost:0kB min:200kB low:248kB high:296kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  505.012216][   T28]  schedule+0xde/0x1b0
[  505.036973][ T6352] ffff88801fb9b8c0
[  505.045369][ T6352]     116813594624-93825005334527: 0000000000000000
[  505.052565][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  505.053625][   T28]  rwsem_down_read_slowpath+0x5a7/0xb20
[  505.059415][ T6352]     93825005473792-140593359482879: 0000000000000000
[  505.072757][   T28]  ? down_write+0x220/0x220
[  505.072896][ T6352]     140593359482880-140593359486975: 
[  505.077343][ T9143] lowmem_reserve[]:
[  505.077433][   T28]  ? lock_release+0x810/0x810
[  505.083533][ T6352] ffff88801fb9b540
[  505.094707][   T28]  ? do_user_addr_fault+0xa51/0x1210
[  505.097167][ T9143]  0 2619 2621 2621 2621
[  505.105239][ T9143] Node 0 DMA32 free:959012kB boost:0kB min:35456kB low:44320kB high:53184kB reserved_highatomic:0KB active_anon:12028kB inactive_anon:754028kB active_file:50768kB inactive_file:1960kB unevictable:1536kB writepending:0kB present:3129332kB managed:2686572kB mlocked:0kB bounce:0kB free_pcp:27248kB local_pcp:16916kB free_cma:0kB
[  505.107111][   T28]  ? rcu_read_lock_sched_held+0x3e/0x70
11:27:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_SOCK_GET(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000600)={0x14}, 0x14}}, 0x0)
sendmsg$TIPC_CMD_GET_NETID(r0, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x1c}, 0x1c}}, 0x0)

11:27:02 executing program 4:
pselect6(0x40, &(0x7f0000001c80), 0x0, &(0x7f0000001d00)={0x1}, &(0x7f0000001d40)={0x0, 0x989680}, &(0x7f0000001dc0)={&(0x7f0000001d80)={[0x8]}, 0x8})

[  505.136802][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  505.168356][   T28]  ? do_user_addr_fault+0xa51/0x1210
[  505.203242][ T9143] lowmem_reserve[]: 0 0 1 1 1
[  505.208007][ T9143] Node 0 Normal free:0kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:1048576kB managed:1868kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  505.257692][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  505.265994][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  505.277557][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  505.284728][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  505.291891][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  505.298993][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  505.306214][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  505.313592][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  505.320819][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  505.327923][ T6352]     140593381670912-140593381675007: 0000000000000000
[  505.335161][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  505.344006][   T28]  ? lock_acquire+0x32/0xc0
[  505.347194][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  505.354272][ T9143] lowmem_reserve[]: 0 0 0 0 0
[  505.359867][ T6352]     140593382076416-140593382096895: 0000000000000000
[  505.360924][   T28]  ? do_user_addr_fault+0xa51/0x1210
[  505.373763][ T9143] Node 1 Normal free:3938104kB boost:0kB min:54424kB low:68028kB high:81632kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:76kB inactive_file:0kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117612kB mlocked:0kB bounce:0kB free_pcp:15200kB local_pcp:7776kB free_cma:0kB
[  505.376083][ T6352]     140593382096896-140593393942527: 
[  505.403714][   T28]  down_read+0xe6/0x450
[  505.409665][ T6352] ffff88806863a2a0
[  505.413929][   T28]  ? rwsem_down_read_slowpath+0xb20/0xb20
[  505.420242][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 
[  505.423235][   T28]  do_user_addr_fault+0xa51/0x1210
[  505.423253][ T6352] 0000000000000000 0 
[  505.423280][   T28]  ? rcu_read_lock_sched_held+0x3e/0x70
[  505.483642][ T9143] lowmem_reserve[]: 0 0 0 0 0
[  505.484200][ T6352] 0000000000000000 0 
[  505.488382][ T9143] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  505.500369][ T6352] 0000000000000000 0 
[  505.505233][ T9143] Node 0 
[  505.505280][ T6352] 0000000000000008
[  505.509207][ T9143] DMA32: 5999*4kB (UME) 6597*8kB (UME) 3428*16kB (UME) 1592*32kB (UME) 675*64kB (UME) 152*128kB (UME) 57*256kB (UME) 25*512kB (ME) 11*1024kB (UME) 3*2048kB (UM) 163*4096kB (UM) = 957668kB
[  505.521835][ T6352]     140593393942528-140593395646463: 
[  505.534788][   T28]  exc_page_fault+0x98/0x170
[  505.534829][   T28]  asm_exc_page_fault+0x26/0x30
[  505.551435][   T28] RIP: 0033:0x7fde728276c6
[  505.552356][ T6352] 0000000000000000
[  505.555864][   T28] RSP: 002b:00007ffdb30627b8 EFLAGS: 00010287
[  505.555890][   T28] RAX: 0000001b32622000 RBX: 00007fde729ac018 RCX: 0000001b32620000
[  505.555908][   T28] RDX: 0000001b32622004 RSI: 0000001b3262176c RDI: 000000003d5a31d6
[  505.560358][ T6352]     140593395646464-140593395650559: 
[  505.565750][ T9143] Node 0 Normal: 0*4kB 
[  505.583366][ T6352] ffff88807bda7ee0
[  505.587393][   T28] RBP: 000000003d5a31d6 R08: 0000001b32a20000 R09: 000000003d5a31da
[  505.587415][   T28] R10: 00007ffdb30f7090 R11: 0000000000010df6 R12: 00007fde729a0000
[  505.614307][ T9143] 0*8kB 
[  505.614318][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  505.617170][ T9143] 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 
[  505.624599][   T28] R13: 0000000000000001 R14: 0000000000003108 R15: ffffffff89b8d635
[  505.630805][ T6352]     140593395781632-140727606853631: 
[  505.632007][   T28]  ? string+0xd5/0x3d0
[  505.648558][ T6352] 0000000000000000
[  505.650537][ T9143] 0*2048kB 0*4096kB = 0kB
[  505.655931][ T6352]     140727606853632-140727606988799: 
[  505.657414][ T9143] Node 1 Normal: 176*4kB (UME) 31*8kB (UE) 
[  505.663109][ T6352] ffff88806863a380
[  505.663820][   T28]  </TASK>
[  505.669122][ T6352]     140727606988800-140727607586815: 
[  505.673014][ T9143] 16*16kB 
[  505.681994][   T28] 
[  505.681994][   T28] Showing all threads with locks held in the system:
[  505.685088][ T6352] 0000000000000000
[  505.695012][ T9143] (UE) 82*32kB (UME) 31*64kB (UME) 7*128kB (UE) 3*256kB (UE) 1*512kB (U) 2*1024kB (UM) 0*2048kB 959*4096kB (M) = 3938104kB
[  505.711521][   T28] task:rcu_tasks_kthre state:I stack:29056 pid:12    ppid:2      flags:0x00004000
[  505.718015][ T6352]     140727607586816-140727607603199: 
[  505.723053][   T28] Call Trace:
[  505.739201][   T28]  <TASK>
[  505.742576][ T6352] ffff88806863a460
[  505.746509][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  505.749663][   T28]  __schedule+0x25d0/0x5a70
[  505.761462][ T9143] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  505.767147][ T6352]     140727607611392-18446744073709551615: 
[  505.771361][   T28]  ? lock_chain_count+0x20/0x20
[  505.772587][ T6352] 0000000000000000
[  505.777375][   T28]  ? find_held_lock+0x2d/0x110
[  505.782370][ T6352] Pass: 9516877 Run:9517052
[  505.789638][ T9143] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  505.805178][   T28]  ? io_schedule_timeout+0x150/0x150
[  505.808935][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  505.811374][   T28]  ? mark_held_locks+0x9f/0xe0
[  505.820272][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  505.820288][ T6352] Call Trace:
[  505.820295][ T6352]  <TASK>
[  505.820305][ T6352]  dump_stack_lvl+0xd1/0x138
[  505.820342][ T6352]  mt_find.cold+0x8b/0x90
[  505.820378][ T6352]  ? mas_find+0x1d0/0x1d0
[  505.826088][   T28]  schedule+0xde/0x1b0
[  505.835185][ T6352]  find_vma+0x10c/0x1b0
[  505.835215][ T6352]  ? can_vma_merge_before+0x390/0x390
[  505.835245][ T6352]  ? walk_page_test+0x78/0x180
[  505.835284][ T6352]  walk_page_range+0x2b1/0x4a0
[  505.835322][ T6352]  ? __walk_page_range+0x780/0x780
[  505.835369][ T6352]  mlock_fixup+0x650/0x810
[  505.842518][ T9143] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  505.846161][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  505.851628][   T28]  rcu_tasks_one_gp+0x484/0xcd0
[  505.854774][ T6352]  ? mlock_fixup+0x810/0x810
[  505.858841][   T28]  rcu_tasks_kthread+0x77/0xa0
[  505.862967][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  505.863008][ T6352]  do_mlock+0x25a/0x6d0
[  505.863047][ T6352]  ? folio_evictable+0x270/0x270
[  505.863096][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  505.869456][ T9143] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  505.873180][ T6352]  __x64_sys_mlock+0x59/0x80
[  505.873222][ T6352]  do_syscall_64+0x39/0xb0
[  505.873264][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  505.873293][ T6352] RIP: 0033:0x7fde7288c0c9
[  505.873314][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  505.873338][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  505.873366][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  505.873383][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  505.873398][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  505.873413][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  505.873428][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  505.879933][   T28]  ? synchronize_rcu_tasks_trace+0x70/0x70
[  505.883371][ T6352]  </TASK>
[  505.887757][   T28]  kthread+0x2e8/0x3a0
[  505.928398][ T6352] index not increased! 20ffb000 <= 20ffb000
[  505.944079][ T9143] 23245 total pagecache pages
[  505.974480][ T6352] BUG at mt_find:6473 (1)
[  505.989755][   T28]  ? kthread_complete_and_exit+0x40/0x40
[  506.005891][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  506.013004][ T9143] 0 pages in swap cache
[  506.048362][ T6352] 0-18446744073709551615: 
[  506.050607][   T28]  ret_from_fork+0x1f/0x30
[  506.082691][ T9143] Free swap  = 0kB
[  506.084507][ T6352] node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901
[  506.088686][ T9143] Total swap = 0kB
[  506.088700][ T9143] 2097051 pages RAM
[  506.094373][ T6352]  contents: 
[  506.103357][ T9143] 0 pages HighMem/MovableOnly
[  506.105655][   T28]  </TASK>
[  506.108373][ T9143] 391698 pages reserved
[  506.112447][   T28] 1 lock held by rcu_tasks_kthre/12:
[  506.124360][ T9143] 0 pages cma reserved
[  506.127799][ T6352] 93708191739904 
[  506.137664][   T28]  #0: ffffffff8c7929f0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x31/0xcd0
[  506.142091][ T6352] 20480 
11:27:03 executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) (async)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x602200, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="260f994a0b66b84c008ed0672e400f08b8010000000f01c1c4e1796ed766ba2100edc44231be7d000fc77b0976ff0f01cf", 0x31}], 0x1, 0x60, &(0x7f0000000180)=[@cr4={0x1, 0x400}], 0x1) (async)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f00000004c0)={0x1, 0x0, @pic={0x0, 0x6}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000700)={0x0, 0x0, @pic={0x3f}}) (async)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'}) (async)
ioctl$KVM_GET_DIRTY_LOG(r1, 0x4010ae42, &(0x7f0000000040)={0x101ff, 0x0, &(0x7f0000ff9000/0x4000)=nil}) (async)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x3, 0x0)
fcntl$F_SET_RW_HINT(r3, 0x40c, &(0x7f0000000200)=0x1) (async)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000240))

11:27:03 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB, @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

[  506.152503][   T28] task:rcu_tasks_trace state:I stack:29224 pid:13    ppid:2      flags:0x00004000
[  506.152545][   T28] Call Trace:
[  506.152553][   T28]  <TASK>
[  506.173189][ T6352] 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  506.198511][   T28]  __schedule+0x25d0/0x5a70
[  506.205381][   T28]  ? lock_chain_count+0x20/0x20
[  506.210339][   T28]  ? find_held_lock+0x2d/0x110
[  506.215534][   T28]  ? io_schedule_timeout+0x150/0x150
[  506.220935][   T28]  ? mark_held_locks+0x9f/0xe0
[  506.225737][   T28]  schedule+0xde/0x1b0
[  506.229883][   T28]  rcu_tasks_one_gp+0x484/0xcd0
[  506.234800][   T28]  rcu_tasks_kthread+0x77/0xa0
[  506.239661][   T28]  ? synchronize_rcu_tasks_trace+0x70/0x70
[  506.245646][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  506.248067][   T28]  kthread+0x2e8/0x3a0
[  506.302682][   T28]  ? kthread_complete_and_exit+0x40/0x40
[  506.308383][   T28]  ret_from_fork+0x1f/0x30
[  506.316571][ T6352]     0-536866815: 0000000000000000
[  506.320719][   T28]  </TASK>
[  506.330533][   T28] 1 lock held by rcu_tasks_trace/13:
[  506.335863][   T28]  #0: ffffffff8c7926f0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x31/0xcd0
[  506.337732][ T6352]     536866816-536870911: ffff88807cef72a0
[  506.358758][ T6352]     536870912-553627647: ffff88801fb9b700
[  506.369495][   T28] task:kworker/1:1     state:R  running task     stack:26064 pid:26    ppid:2      flags:0x00004000
[  506.377095][ T6352]     553627648-553639935: 0000000000000000
[  506.386501][ T6352]     553639936-553627647: ffff88807bda78c0
[  506.390620][   T28] Workqueue:  0x0
[  506.392598][ T6352]     553627648-553644031: 
[  506.393002][   T28]  (rcu_gp)
[  506.407627][ T6352] ffff88807bda79a0
[  506.409142][   T28] 
[  506.410978][ T6352]     553644032-553648127: 
[  506.416728][   T28] Call Trace:
[  506.416942][ T6352] ffff8880216d6b60
[  506.431207][   T28]  <TASK>
[  506.431860][ T6352]     553648128-553652223: 
[  506.435809][   T28]  ? kasan_save_stack+0x35/0x40
[  506.440749][ T6352] ffff88801fb9b7e0
[  506.449884][ T6352]     553652224-116809400319: 0000000000000000
[  506.451975][   T28]  ? kasan_save_stack+0x22/0x40
[  506.456182][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  506.469184][   T28]  ? __kasan_record_aux_stack+0xbc/0xd0
[  506.469433][ T6352]     116813594624-93825005334527: 0000000000000000
[  506.478336][   T28]  ? synchronize_rcu+0x302/0x3b0
[  506.482418][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  506.494613][ T6352]     93825005473792-140593359482879: 0000000000000000
[  506.495867][   T28]  ? synchronize_rcu_expedited+0x770/0x770
[  506.502062][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  506.508670][   T28]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  506.515194][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  506.529655][   T28]  ? lockdep_hardirqs_on+0x7d/0x100
[  506.584445][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  506.593229][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  506.593239][   T28]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  506.600766][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  506.609744][   T28]  ? lockdep_unregister_key+0x282/0x460
[  506.614252][ T6352]     140593372069888-140593374167039: 
[  506.619185][   T28]  ? lockdep_register_key+0x410/0x410
[  506.619217][   T28]  ? lockdep_hardirqs_on+0x7d/0x100
[  506.619257][   T28]  ? pwq_unbound_release_workfn+0x258/0x340
[  506.625418][ T6352] ffff88802866f8c0
[  506.638505][   T28]  ? process_one_work+0x9bf/0x1750
[  506.642023][ T6352]     140593374167040-140593376264191: 
[  506.645252][   T28]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  506.645287][   T28]  ? rcu_read_lock_sched_held+0x3e/0x70
[  506.645320][   T28]  ? rwlock_bug.part.0+0x90/0x90
[  506.651142][ T6352] ffff88802866f9a0
[  506.659667][   T28]  ? lock_acquire+0x32/0xc0
[  506.662142][ T6352]     140593376264192-140593380458495: 
[  506.667228][   T28]  ? worker_thread+0x16d/0x1090
[  506.673682][ T6352] ffff888028a9b1c0
[  506.686198][   T28]  ? worker_thread+0x669/0x1090
[  506.690096][ T6352]     140593380458496-140593380605951: 
[  506.693278][   T28]  ? process_one_work+0x1750/0x1750
[  506.696944][ T6352] ffff888028a9bc40
[  506.700589][   T28]  ? kthread+0x2e8/0x3a0
[  506.719410][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  506.719447][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  506.734079][ T6352]     140593381670912-140593381675007: 0000000000000000
[  506.736190][   T28]  ? kthread_complete_and_exit+0x40/0x40
[  506.741216][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  506.754393][   T28]  ? ret_from_fork+0x1f/0x30
[  506.754954][ T6352]     140593382039552-140593382076415: 
[  506.759188][   T28]  </TASK>
[  506.759200][ T6352] ffff88806863a1c0
[  506.768523][   T28] 3 locks held by kworker/1:1/26:
[  506.778513][   T28]  #0: ffff888012470d38 ((wq_completion)events){+.+.}-{0:0}
[  506.778640][ T6352]     140593382076416-140593382096895: 0000000000000000
[  506.786430][   T28] , at: process_one_work+0x86d/0x1750
[  506.796940][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  506.798754][   T28]  #1: ffffc90000a1fda8 ((work_completion)(&pwq->unbound_release_work)){+.+.}-{0:0}, at: process_one_work+0x8a1/0x1750
[  506.814093][ T6352]   140593393942528-18446744073709551615: 
[  506.821065][   T28]  #2: ffffffff8c79e6b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x400/0x770
[  506.829311][ T6352] node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  506.839333][   T28] task:getty           state:S stack:23184 pid:4749  ppid:1      flags:0x00000000
[  506.898331][ T6352]     140593393942528-140593395646463: 0000000000000000
[  506.905574][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  506.905856][   T28] Call Trace:
[  506.915446][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  506.923285][ T6352]     140593395781632-140727606853631: 0000000000000000
[  506.923510][   T28]  <TASK>
[  506.930379][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  506.940629][ T6352]     140727606988800-140727607586815: 0000000000000000
[  506.941518][   T28]  __schedule+0x25d0/0x5a70
[  506.947691][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  506.959359][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  506.961707][   T28]  ? __flush_work+0x8b8/0xb60
[  506.966522][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  506.979105][   T28]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  506.979141][   T28]  ? trace_lock_acquire+0x1f1/0x290
[  506.979170][   T28]  ? io_schedule_timeout+0x150/0x150
[  506.979216][   T28]  schedule+0xde/0x1b0
[  506.979241][   T28]  schedule_timeout+0x1e1/0x2a0
[  506.979272][   T28]  ? usleep_range_state+0x1b0/0x1b0
[  506.979309][   T28]  ? __up_read+0x192/0x720
[  506.979343][   T28]  ? down_read+0x19c/0x450
[  506.979370][   T28]  ? up_write+0x520/0x520
[  506.979412][   T28]  wait_woken+0x197/0x200
[  506.979516][   T28]  n_tty_read+0x1055/0x13e0
[  506.988866][ T6352] Pass: 9519519 Run:9519695
[  507.001146][   T28]  ? n_tty_receive_buf_closing+0x5b0/0x5b0
[  507.022173][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  507.053558][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  507.063615][ T6352] Call Trace:
[  507.066894][ T6352]  <TASK>
[  507.069827][ T6352]  dump_stack_lvl+0xd1/0x138
[  507.074437][ T6352]  mt_find.cold+0x8b/0x90
[  507.078784][ T6352]  ? mas_find+0x1d0/0x1d0
[  507.083137][ T6352]  find_vma+0x10c/0x1b0
[  507.087308][ T6352]  ? can_vma_merge_before+0x390/0x390
[  507.092695][ T6352]  ? walk_page_test+0x78/0x180
[  507.097478][ T6352]  walk_page_range+0x2b1/0x4a0
[  507.102262][ T6352]  ? __walk_page_range+0x780/0x780
[  507.107401][ T6352]  mlock_fixup+0x650/0x810
[  507.111847][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  507.117068][ T6352]  ? mlock_fixup+0x810/0x810
[  507.121689][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  507.127604][ T6352]  do_mlock+0x25a/0x6d0
[  507.131781][ T6352]  ? folio_evictable+0x270/0x270
[  507.136746][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  507.142656][ T6352]  __x64_sys_mlock+0x59/0x80
[  507.147264][ T6352]  do_syscall_64+0x39/0xb0
[  507.151700][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  507.157605][ T6352] RIP: 0033:0x7fde7288c0c9
[  507.162023][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  507.181653][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  507.190075][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  507.198049][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  507.206021][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  507.213996][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  507.221984][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  507.229992][ T6352]  </TASK>
[  507.244212][ T6352] index not increased! 20ffb000 <= 20ffb000
[  507.260400][ T6352] BUG at mt_find:6473 (1)
[  507.272430][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  507.274333][   T28]  ? __init_waitqueue_head+0x150/0x150
[  507.288590][   T28]  tty_read+0x30e/0x5a0
[  507.291818][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 
[  507.293170][   T28]  ? do_SAK+0x70/0x70
[  507.293212][   T28]  ? fsnotify_perm.part.0+0x221/0x610
[  507.337224][ T6352] 0000000000000000
[  507.338444][   T28]  ? apparmor_file_permission+0x272/0x4e0
[  507.342433][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  507.349128][   T28]  ? security_file_permission+0xaf/0xd0
[  507.408761][ T6352]     0-536866815: 0000000000000000
[  507.412911][   T28]  vfs_read+0x681/0x930
[  507.414516][ T6352]     536866816-536870911: 
[  507.418229][   T28]  ? kernel_read+0x1c0/0x1c0
[  507.418276][ T6352] ffff88807cef72a0
[  507.429651][   T28]  ? __fget_light+0x20a/0x270
[  507.431753][ T6352]     536870912-553627647: ffff88801fb9b700
[  507.438097][   T28]  ksys_read+0x12b/0x250
[  507.442293][ T6352]     553627648-553639935: 0000000000000000
[  507.452597][   T28]  ? vfs_write+0xe10/0xe10
[  507.453545][ T6352]     553639936-553627647: 
[  507.457109][   T28]  ? syscall_enter_from_user_mode+0x26/0xb0
[  507.457125][ T6352] ffff88807bda78c0
[  507.457155][   T28]  do_syscall_64+0x39/0xb0
[  507.463834][ T6352]     553627648-553644031: ffff88807bda79a0
[  507.477092][   T28]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  507.482817][ T6352]     553644032-553648127: ffff8880216d6b60
[  507.493100][   T28] RIP: 0033:0x7f58c0bd48fe
[  507.496148][ T6352]     553648128-553652223: 
[  507.498635][   T28] RSP: 002b:00007fff4b7bc5f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  507.498665][   T28] RAX: ffffffffffffffda RBX: 0000561d576a4910 RCX: 00007f58c0bd48fe
[  507.510566][ T6352] ffff88801fb9b7e0
[  507.519921][   T28] RDX: 0000000000000001 RSI: 00007fff4b7bc610 RDI: 0000000000000000
[  507.519942][   T28] RBP: 0000561d576a4970 R08: 0000000000000007 R09: 0000561d576a5cd0
[  507.519959][   T28] R10: 0000000000000063 R11: 0000000000000246 R12: 0000561d576a49ac
[  507.519975][   T28] R13: 00007fff4b7bc610 R14: 0000000000000000 R15: 0000561d576a49ac
[  507.531973][ T6352]     553652224-116809400319: 
[  507.546157][   T28]  </TASK>
[  507.548300][ T6352] 0000000000000000
[  507.556119][   T28] 2 locks held by getty/4749:
[  507.556136][   T28]  #0: ffff888027965098 (&tty->ldisc_sem){++++}-{0:0}
[  507.571075][ T6352]     116809400320-116813594623: 
[  507.573994][   T28] , at: tty_ldisc_ref_wait+0x26/0x80
[  507.579238][ T6352] ffff88801fb9b8c0
[  507.584319][   T28]  #1: ffffc900015c02f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xef4/0x13e0
[  507.584402][   T28] task:kworker/0:3     state:D stack:26232 pid:5070  ppid:2      flags:0x00004000
[  507.584442][   T28] Workqueue: events pwq_unbound_release_workfn
[  507.601084][ T6352]     116813594624-93825005334527: 
[  507.605443][   T28] 
[  507.623504][ T6352] 0000000000000000
[  507.626297][   T28] Call Trace:
[  507.627401][ T6352]     93825005334528-93825005473791: 
[  507.631172][   T28]  <TASK>
[  507.636153][   T28]  __schedule+0x25d0/0x5a70
[  507.644413][ T6352] ffff88801fb9b620
[  507.647508][   T28]  ? io_schedule_timeout+0x150/0x150
[  507.651622][ T6352]     93825005473792-140593359482879: 0000000000000000
[  507.659637][   T28]  ? io_schedule_timeout+0x150/0x150
[  507.670591][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  507.677655][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 
[  507.677779][   T28]  ? preempt_schedule_common+0x59/0xc0
[  507.677794][ T6352] ffff888028a9b1c0 140593380458495 
[  507.677832][   T28]  schedule+0xde/0x1b0
[  507.705327][ T6352] ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  507.722712][   T28]  synchronize_rcu_expedited+0x5e2/0x770
[  507.749843][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  507.762761][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  507.764239][   T28]  ? wait_rcu_exp_gp+0x40/0x40
[  507.772158][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  507.779580][   T28]  ? prepare_to_wait_exclusive+0x2c0/0x2c0
[  507.787692][   T28]  ? finish_task_switch.isra.0+0x2b5/0xc80
[  507.788000][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  507.802769][   T28]  ? mark_lock.part.0+0xee/0x1910
[  507.804461][ T6352]     140593374167040-140593376264191: 
[  507.807829][   T28]  ? rcu_exp_wait_wake+0x11c0/0x11c0
[  507.807878][   T28]  ? lock_downgrade+0x6e0/0x6e0
[  507.813945][ T6352] ffff88802866f9a0
[  507.823787][   T28]  ? rwlock_bug.part.0+0x90/0x90
[  507.823839][   T28]  synchronize_rcu+0x302/0x3b0
[  507.823872][   T28]  ? synchronize_rcu_expedited+0x770/0x770
[  507.828136][ T6352]     140593376264192-140593380458495: 
[  507.841308][   T28]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  507.843667][ T6352] ffff888028a9b1c0
[  507.848689][   T28]  ? lockdep_hardirqs_on+0x7d/0x100
[  507.848723][   T28]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  507.856150][ T6352]     140593380458496-140593380605951: 
[  507.867394][   T28]  lockdep_unregister_key+0x282/0x460
[  507.871003][ T6352] ffff888028a9bc40
[  507.877367][   T28]  ? lockdep_register_key+0x410/0x410
[  507.881932][ T6352]     140593380605952-140593381335039: 
[  507.885337][   T28]  ? lockdep_hardirqs_on+0x7d/0x100
[  507.885382][   T28]  pwq_unbound_release_workfn+0x258/0x340
[  507.892488][ T6352] ffff888021dae620
[  507.910012][   T28]  process_one_work+0x9bf/0x1750
[  507.913188][ T6352]     140593381335040-140593381670911: 
[  507.916705][   T28]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  507.928077][ T6352] ffff88806863a000
[  507.931897][   T28]  ? rcu_read_lock_sched_held+0x3e/0x70
[  507.932715][ T6352]     140593381670912-140593381675007: 
[  507.937459][   T28]  ? rwlock_bug.part.0+0x90/0x90
[  507.937493][   T28]  ? lock_acquire+0x32/0xc0
[  507.952292][ T6352] 0000000000000000
[  507.956527][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  507.965405][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  507.971424][   T28]  ? worker_thread+0x16d/0x1090
[  507.973124][ T6352]     140593382076416-140593382096895: 0000000000000000
[  507.978466][   T28]  worker_thread+0x669/0x1090
[  507.984894][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  507.996753][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  507.997881][   T28]  ? __kthread_parkme+0x163/0x220
[  508.048902][ T6352]     140593393942528-140593395646463: 0000000000000000
[  508.060108][   T28]  ? process_one_work+0x1750/0x1750
[  508.065538][   T28]  kthread+0x2e8/0x3a0
[  508.071251][   T28]  ? kthread_complete_and_exit+0x40/0x40
[  508.075429][ T6352]     140593395646464-140593395650559: 
[  508.076921][   T28]  ret_from_fork+0x1f/0x30
[  508.076975][   T28]  </TASK>
[  508.090085][   T28] 3 locks held by kworker/0:3/5070:
[  508.091737][ T6352] ffff88807bda7ee0
[  508.095277][   T28]  #0: ffff888012470d38 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x86d/0x1750
[  508.103897][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  508.118578][ T6352]     140593395781632-140727606853631: 0000000000000000
[  508.122331][   T28]  #1: ffffc90003c8fda8 ((work_completion)(&pwq->unbound_release_work)){+.+.}-{0:0}, at: process_one_work+0x8a1/0x1750
[  508.126143][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  508.145747][ T6352]     140727606988800-140727607586815: 0000000000000000
[  508.147448][   T28]  #2: 
[  508.153897][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  508.159173][   T28] ffffffff8c79e6b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x658/0x770
[  508.164327][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  508.182907][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  508.188919][   T28] task:kworker/0:6     state:D
[  508.190784][ T6352] Pass: 9519536 Run:9519713
[  508.201279][ T6352] CPU: 0 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  508.201340][   T28]  stack:25456 pid:5168  ppid:2      flags:0x00004000
[  508.211096][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  508.211111][ T6352] Call Trace:
[  508.211119][ T6352]  <TASK>
[  508.211128][ T6352]  dump_stack_lvl+0xd1/0x138
[  508.211166][ T6352]  mt_find.cold+0x8b/0x90
[  508.211200][ T6352]  ? mas_find+0x1d0/0x1d0
[  508.211248][ T6352]  find_vma+0x10c/0x1b0
[  508.211274][ T6352]  ? can_vma_merge_before+0x390/0x390
[  508.211303][ T6352]  ? walk_page_test+0x78/0x180
[  508.211336][ T6352]  walk_page_range+0x2b1/0x4a0
[  508.211370][ T6352]  ? __walk_page_range+0x780/0x780
[  508.211429][ T6352]  mlock_fixup+0x650/0x810
[  508.211481][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  508.211523][ T6352]  ? mlock_fixup+0x810/0x810
[  508.211575][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  508.211617][ T6352]  do_mlock+0x25a/0x6d0
[  508.211660][ T6352]  ? folio_evictable+0x270/0x270
[  508.211712][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  508.211748][ T6352]  __x64_sys_mlock+0x59/0x80
[  508.211787][ T6352]  do_syscall_64+0x39/0xb0
[  508.211824][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  508.211855][ T6352] RIP: 0033:0x7fde7288c0c9
[  508.211877][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  508.211901][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  508.211926][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  508.211945][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  508.211961][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  508.211977][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  508.386267][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  508.394262][ T6352]  </TASK>
[  508.405461][   T28] Workqueue: rcu_gp wait_rcu_exp_gp
[  508.412421][   T28] Call Trace:
[  508.416098][   T28]  <TASK>
[  508.419110][ T6352] index not increased! 20ffb000 <= 20ffb000
[  508.419118][   T28]  __schedule+0x25d0/0x5a70
[  508.425189][ T6352] BUG at mt_find:6473 (1)
[  508.430321][   T28]  ? mark_held_locks+0x9f/0xe0
[  508.438875][   T28]  ? find_held_lock+0x2d/0x110
[  508.442661][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  508.444177][   T28]  ? wq_worker_sleeping+0x1e9/0x250
[  508.457715][   T28]  ? io_schedule_timeout+0x150/0x150
[  508.459575][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  508.463331][   T28]  ? mark_held_locks+0x9f/0xe0
[  508.501455][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  508.505394][   T28]  ? rwlock_bug.part.0+0x90/0x90
[  508.562255][   T28]  ? _raw_spin_unlock_irq+0x23/0x50
[  508.567631][   T28]  ? lockdep_hardirqs_on+0x7d/0x100
[  508.574764][   T28]  schedule+0xde/0x1b0
[  508.575766][ T6352]     0-536866815: 
[  508.578924][   T28]  schedule_timeout+0x14e/0x2a0
[  508.578940][ T6352] 0000000000000000
[  508.578962][   T28]  ? usleep_range_state+0x1b0/0x1b0
[  508.589103][ T6352]     536866816-536870911: 
[  508.592564][   T28]  ? __next_timer_interrupt+0x2a0/0x2a0
[  508.599448][ T6352] ffff88807cef72a0
[  508.601850][   T28]  ? __ipv6_ifa_notify.cold+0x43/0x48
[  508.613600][ T6352]     536870912-553627647: 
[  508.617361][   T28]  ? lockdep_hardirqs_on+0x7d/0x100
[  508.618939][ T6352] ffff88801fb9b700
[  508.622383][   T28]  ? _raw_spin_unlock_irqrestore+0x41/0x70
[  508.629615][ T6352]     553627648-553639935: 
[  508.631391][   T28]  rcu_exp_wait_wake+0x28f/0x11c0
[  508.643823][ T6352] 0000000000000000
[  508.646863][   T28]  ? rcu_exp_handler+0x390/0x390
[  508.655583][   T28]  ? _raw_spin_unlock_irqrestore+0x54/0x70
[  508.656488][ T6352]     553639936-553627647: 
[  508.661921][   T28]  ? rcu_gp_kthread+0x360/0x360
[  508.664071][ T6352] ffff88807bda78c0
[  508.666527][   T28]  ? sync_rcu_exp_select_cpus+0x3de/0xab0
[  508.671411][ T6352]     553627648-553644031: ffff88807bda79a0
[  508.671438][ T6352]     553644032-553648127: ffff8880216d6b60
[  508.671460][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  508.671489][ T6352]     553652224-116809400319: 0000000000000000
[  508.671513][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  508.671533][ T6352]     116813594624-93825005334527: 
[  508.677498][   T28]  process_one_work+0x9bf/0x1750
[  508.699641][ T6352] 0000000000000000
[  508.705498][   T28]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  508.721730][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  508.721762][ T6352]     93825005473792-140593359482879: 0000000000000000
[  508.721787][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  508.721811][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  508.722044][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  508.722068][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  508.722092][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  508.722116][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  508.722140][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  508.722163][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  508.722187][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  508.722211][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  508.722235][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  508.722259][ T6352]     140593381670912-140593381675007: 
[  508.728490][   T28]  ? rcu_read_lock_sched_held+0x3e/0x70
[  508.740841][ T6352] 0000000000000000
[  508.745634][   T28]  ? rwlock_bug.part.0+0x90/0x90
[  508.752131][ T6352]     140593381675008-140593382039551: 
[  508.817877][   T28]  ? lock_acquire+0x32/0xc0
[  508.824858][ T6352] ffff88806863a0e0
[  508.843081][   T28]  ? worker_thread+0x16d/0x1090
[  508.860115][ T6352]     140593382039552-140593382076415: 
[  508.879804][   T28]  worker_thread+0x669/0x1090
[  508.882351][ T6352] ffff88806863a1c0
[  508.885953][   T28]  ? __kthread_parkme+0x163/0x220
[  508.890982][ T6352]     140593382076416-140593382096895: 
[  508.903364][   T28]  ? process_one_work+0x1750/0x1750
[  508.905020][ T6352] 0000000000000000
[  508.914356][   T28]  kthread+0x2e8/0x3a0
[  508.926043][ T6352]     140593382096896-140593393942527: 
[  508.934564][   T28]  ? kthread_complete_and_exit+0x40/0x40
[  508.938094][ T6352] ffff88806863a2a0
[  508.941802][   T28]  ret_from_fork+0x1f/0x30
[  508.944477][ T6352]   140593393942528-18446744073709551615: 
[  508.948544][   T28]  </TASK>
[  508.963112][ T6352] node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16
[  508.964182][   T28] 2 locks held by kworker/0:6/5168:
[  508.968139][ T6352]  contents: 
[  508.974216][   T28]  #0: 
[  508.982103][ T6352] 0000000000000000 140593395646463 
[  508.985046][   T28] ffff888012472538
[  509.001193][ T6352] ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 
[  509.005714][   T28]  (
[  509.012420][ T6352] 0000000000000000 140727606853631 
[  509.014487][   T28] (wq_completion)rcu_gp
[  509.018631][ T6352] ffff88806863a380 140727606988799 
[  509.023405][   T28] ){+.+.}-{0:0}, at: process_one_work+0x86d/0x1750
[  509.035410][ T6352] 0000000000000000 140727607586815 
[  509.038725][   T28]  #1: ffffc9000429fda8 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x8a1/0x1750
[  509.051975][ T6352] ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  509.056278][   T28] task:syz-executor.1  state:D stack:28152 pid:6343  ppid:5111   flags:0x00000004
[  509.088615][   T28] Call Trace:
[  509.089843][ T6352]     140593393942528-140593395646463: 0000000000000000
[  509.092430][   T28]  <TASK>
[  509.098864][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  509.098896][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  509.102400][   T28]  __schedule+0x25d0/0x5a70
[  509.116801][ T6352]     140593395781632-140727606853631: 0000000000000000
[  509.130291][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  509.131772][   T28]  ? lock_chain_count+0x20/0x20
[  509.137426][ T6352]     140727606988800-140727607586815: 0000000000000000
[  509.149297][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  509.154605][   T28]  ? find_held_lock+0x2d/0x110
[  509.159061][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  509.168106][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  509.170443][   T28]  ? io_schedule_timeout+0x150/0x150
[  509.175645][ T6352] Pass: 9519539 Run:9519717
[  509.185352][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  509.193065][   T28]  ? rwsem_down_read_slowpath+0x29f/0xb20
[  509.195158][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  509.195175][ T6352] Call Trace:
[  509.195184][ T6352]  <TASK>
[  509.195194][ T6352]  dump_stack_lvl+0xd1/0x138
[  509.207501][   T28]  schedule+0xde/0x1b0
[  509.210939][ T6352]  mt_find.cold+0x8b/0x90
[  509.210980][ T6352]  ? mas_find+0x1d0/0x1d0
[  509.211028][ T6352]  find_vma+0x10c/0x1b0
[  509.211053][ T6352]  ? can_vma_merge_before+0x390/0x390
[  509.211084][ T6352]  ? walk_page_test+0x78/0x180
[  509.211119][ T6352]  walk_page_range+0x2b1/0x4a0
[  509.217802][   T28]  rwsem_down_read_slowpath+0x5a7/0xb20
[  509.221917][ T6352]  ? __walk_page_range+0x780/0x780
[  509.221972][ T6352]  mlock_fixup+0x650/0x810
[  509.222024][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  509.222068][ T6352]  ? mlock_fixup+0x810/0x810
[  509.222119][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  509.237116][   T28]  ? down_write+0x220/0x220
[  509.238968][ T6352]  do_mlock+0x25a/0x6d0
[  509.248767][   T28]  ? lock_release+0x810/0x810
[  509.249106][ T6352]  ? folio_evictable+0x270/0x270
[  509.260898][   T28]  ? do_user_addr_fault+0xa51/0x1210
[  509.264535][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  509.273410][   T28]  ? rcu_read_lock_sched_held+0x3e/0x70
[  509.274150][ T6352]  __x64_sys_mlock+0x59/0x80
[  509.284723][   T28]  ? do_user_addr_fault+0xa51/0x1210
[  509.289092][ T6352]  do_syscall_64+0x39/0xb0
[  509.297874][   T28]  ? lock_acquire+0x32/0xc0
[  509.297913][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  509.308286][   T28]  ? do_user_addr_fault+0xa51/0x1210
[  509.313982][ T6352] RIP: 0033:0x7fde7288c0c9
[  509.314007][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  509.314029][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  509.314053][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  509.314070][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  509.314085][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  509.314101][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  509.314118][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  509.314152][ T6352]  </TASK>
[  509.341022][ T6352] index not increased! 20ffb000 <= 20ffb000
[  509.346643][   T28]  down_read+0xe6/0x450
[  509.359393][ T6352] BUG at mt_find:6473 (1)
[  509.385428][   T28]  ? rwsem_down_read_slowpath+0xb20/0xb20
[  509.391287][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  509.391311][ T6352] 0-18446744073709551615: node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901 contents: 93708191739904 20480 18446603346101940224 0 0 0 0 0 0 
[  509.407748][   T28]  do_user_addr_fault+0xa51/0x1210
[  509.419796][ T6352] 0 
[  509.424315][   T28]  ? rcu_read_lock_sched_held+0x3e/0x70
[  509.433123][ T6352] | 02 02| 
[  509.437991][   T28]  exc_page_fault+0x98/0x170
[  509.456261][ T6352] ffff888072b9c60c 140593359486975 
[  509.486982][   T28]  asm_exc_page_fault+0x26/0x30
[  509.497801][ T6352] ffff888072b9c40c 140593393942527 ffff888022069c0c 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  509.504581][   T28] RIP: 0033:0x7fde728276c6
[  509.523647][ T6352]   0-140593359486975: node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 0000000000000000 536866815 ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  509.538922][   T28] RSP: 002b:00007ffdb30627b8 EFLAGS: 00010287
[  509.581329][ T6352]     0-536866815: 
[  509.587008][   T28] 
[  509.587507][ T6352] 0000000000000000
[  509.593711][   T28] RAX: 0000001b32622000 RBX: 00007fde729ac018 RCX: 0000001b32620000
[  509.597469][ T6352]     536866816-536870911: ffff88807cef72a0
[  509.613227][   T28] RDX: 0000001b32622004 RSI: 0000001b3262176c RDI: 000000003d5a31d6
[  509.620889][ T6352]     536870912-553627647: ffff88801fb9b700
[  509.621648][   T28] RBP: 000000003d5a31d6 R08: 0000001b32a20000 R09: 000000003d5a31da
[  509.627219][ T6352]     553627648-553639935: 
[  509.635503][   T28] R10: 00007ffdb30f7090 R11: 0000000000010df6 R12: 00007fde729a0000
[  509.646032][ T6352] 0000000000000000
[  509.649261][   T28] R13: 0000000000000001 R14: 0000000000003108 R15: ffffffff89b8d635
[  509.652510][ T6352]     553639936-553627647: ffff88807bda78c0
[  509.666743][ T6352]     553627648-553644031: ffff88807bda79a0
[  509.670334][   T28]  ? string+0xd5/0x3d0
[  509.672769][ T6352]     553644032-553648127: ffff8880216d6b60
[  509.677401][   T28]  </TASK>
[  509.683591][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  509.694319][ T6352]     553652224-116809400319: 0000000000000000
[  509.695229][   T28] 1 lock held by syz-executor.1/6343:
[  509.700622][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  509.709106][   T28]  #0: 
[  509.712826][ T6352]     116813594624-93825005334527: 0000000000000000
[  509.720998][   T28] ffff888078bf8a98 (&mm->mmap_lock){++++}-{3:3}, at: do_user_addr_fault+0xa51/0x1210
[  509.724943][ T6352]     93825005334528-93825005473791: 
[  509.732870][   T28] task:syz-executor.1  state:R  running task     stack:26944 pid:6352  ppid:5111   flags:0x00004006
[  509.739877][ T6352] ffff88801fb9b620
[  509.750445][   T28] Call Trace:
[  509.756920][   T28]  <TASK>
[  509.760413][   T28]  __schedule+0x25d0/0x5a70
[  509.761169][ T6352]     93825005473792-140593359482879: 0000000000000000
[  509.764965][   T28]  ? prb_final_commit+0xb0/0xb0
[  509.777403][   T28]  ? preempt_schedule_thunk+0x1a/0x20
[  509.779496][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  509.783152][   T28]  ? console_flush_all+0x6e0/0x6e0
[  509.789839][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  509.796055][   T28]  console_unlock+0xb8/0x1f0
[  509.853919][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  509.862351][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  509.869379][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  509.877331][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  509.884395][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  509.884751][   T28]  ? lock_acquire+0x32/0xc0
[  509.891376][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  509.891404][ T6352]     140593380458496-140593380605951: ffff888028a9bc40
[  509.891426][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  509.891480][ T6352]     140593381335040-140593381670911: 
[  509.907491][   T28]  ? lock_acquire+0x32/0xc0
[  509.912678][ T6352] ffff88806863a000
[  509.917139][   T28]  ? vprintk_emit+0x3fa/0x600
[  509.928921][ T6352]     140593381670912-140593381675007: 
[  509.933750][   T28]  ? vprintk_emit+0x1bd/0x600
[  509.935811][ T6352] 0000000000000000
[  509.941338][   T28]  ? vprintk_emit+0x1bd/0x600
[  509.956332][   T28]  ? vprintk+0x84/0xa0
[  509.959368][ T6352]     140593381675008-140593382039551: 
[  509.961931][   T28]  ? record_print_text.cold+0x16/0x16
[  509.963546][ T6352] ffff88806863a0e0
[  509.967719][   T28]  ? _printk+0xbe/0xf1
[  509.979575][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  509.987786][ T6352]     140593382076416-140593382096895: 0000000000000000
[  509.987825][   T28]  ? record_print_text.cold+0x16/0x16
[  510.000728][   T28]  ? record_print_text.cold+0x16/0x16
[  510.002745][ T6352]     140593382096896-140593393942527: ffff88806863a2a0
[  510.006134][   T28]  ? mt_dump_range+0x62/0x6b
[  510.017956][   T28]  ? mt_dump_entry+0xb3/0xf4
[  510.019579][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 
[  510.022698][   T28]  ? mt_dump_node+0xf0/0x927
[  510.035027][   T28]  ? mt_dump_node+0x851/0x927
[  510.035078][   T28]  ? mt_dump.cold+0xf2/0x115
[  510.035112][   T28]  ? mt_find.cold+0x48/0x90
[  510.035147][   T28]  ? mas_find+0x1d0/0x1d0
[  510.035291][   T28]  ? find_vma+0x10c/0x1b0
[  510.035320][   T28]  ? can_vma_merge_before+0x390/0x390
[  510.035352][   T28]  ? walk_page_test+0x78/0x180
[  510.035383][   T28]  ? walk_page_range+0x2b1/0x4a0
[  510.062030][ T6352] 0000000000000000 140593395646463 
[  510.064673][   T28]  ? __walk_page_range+0x780/0x780
[  510.068465][ T6352] ffff88807bda7ee0 140593395650559 
[  510.083342][   T28]  ? mlock_fixup+0x650/0x810
[  510.086643][ T6352] ffff88807bda7c40 140593395781631 
[  510.089061][   T28]  ? apply_vma_lock_flags+0x23d/0x350
[  510.099921][ T6352] 0000000000000000 140727606853631 
[  510.104274][   T28]  ? mlock_fixup+0x810/0x810
[  510.109758][ T6352] ffff88806863a380 140727606988799 
[  510.119114][   T28]  ? __ia32_sys_get_robust_list+0x400/0x400
[  510.119163][   T28]  ? do_mlock+0x25a/0x6d0
[  510.135087][ T6352] 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  510.135412][   T28]  ? folio_evictable+0x270/0x270
[  510.167680][   T28]  ? syscall_enter_from_user_mode+0x26/0xb0
[  510.172142][ T6352]     140593393942528-140593395646463: 0000000000000000
[  510.173968][   T28]  ? __x64_sys_mlock+0x59/0x80
[  510.187552][   T28]  ? do_syscall_64+0x39/0xb0
[  510.189610][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  510.192864][   T28]  ? entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  510.199118][ T6352]     140593395650560-140593395781631: 
[  510.205531][   T28]  </TASK>
[  510.205560][   T28] 5 locks held by syz-executor.1/6352:
[  510.205597][   T28] task:syz-executor.1  state:D stack:27576 pid:9141  ppid:6412   flags:0x00004002
[  510.230865][   T28] Call Trace:
[  510.234179][   T28]  <TASK>
[  510.236728][ T6352] ffff88807bda7c40
[  510.237113][   T28]  __schedule+0x25d0/0x5a70
[  510.240929][ T6352]     140593395781632-140727606853631: 0000000000000000
[  510.246174][   T28]  ? __lock_acquire+0x166e/0x5660
[  510.258488][ T6352]     140727606853632-140727606988799: ffff88806863a380
[  510.259810][   T28]  ? io_schedule_timeout+0x150/0x150
[  510.271563][   T28]  ? llist_add_batch+0x107/0x180
[  510.274261][ T6352]     140727606988800-140727607586815: 0000000000000000
[  510.293162][ T6352]     140727607586816-140727607603199: ffff88806863a460
[  510.305637][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  510.308298][   T28]  schedule+0xde/0x1b0
[  510.316522][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  510.317295][   T28]  schedule_timeout+0x1e1/0x2a0
[  510.329388][   T28]  ? usleep_range_state+0x1b0/0x1b0
[  510.331936][ T6352] Pass: 9520782 Run:9520961
[  510.334996][   T28]  ? __wait_for_common+0x1c4/0x5c0
[  510.339099][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  510.344543][   T28]  ? mark_held_locks+0x9f/0xe0
[  510.353963][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  510.353979][ T6352] Call Trace:
[  510.353986][ T6352]  <TASK>
[  510.353996][ T6352]  dump_stack_lvl+0xd1/0x138
[  510.354031][ T6352]  mt_find.cold+0x8b/0x90
[  510.354067][ T6352]  ? mas_find+0x1d0/0x1d0
[  510.360317][   T28]  ? rwlock_bug.part.0+0x90/0x90
[  510.368877][ T6352]  find_vma+0x10c/0x1b0
[  510.368912][ T6352]  ? can_vma_merge_before+0x390/0x390
[  510.373541][   T28]  ? _raw_spin_unlock_irq+0x23/0x50
[  510.375101][ T6352]  ? walk_page_test+0x78/0x180
[  510.375139][ T6352]  walk_page_range+0x2b1/0x4a0
[  510.375176][ T6352]  ? __walk_page_range+0x780/0x780
[  510.375229][ T6352]  mlock_fixup+0x650/0x810
[  510.375278][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  510.375320][ T6352]  ? mlock_fixup+0x810/0x810
[  510.375371][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  510.375411][ T6352]  do_mlock+0x25a/0x6d0
[  510.375452][ T6352]  ? folio_evictable+0x270/0x270
[  510.375503][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  510.375541][ T6352]  __x64_sys_mlock+0x59/0x80
[  510.375579][ T6352]  do_syscall_64+0x39/0xb0
[  510.375616][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  510.375647][ T6352] RIP: 0033:0x7fde7288c0c9
[  510.375670][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  510.375694][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  510.375721][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  510.375739][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  510.375755][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  510.393189][   T28]  __wait_for_common+0x1ce/0x5c0
[  510.393894][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  510.398037][   T28]  ? usleep_range_state+0x1b0/0x1b0
[  510.403383][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  510.403420][ T6352]  </TASK>
[  510.423573][ T6352] index not increased! 20ffb000 <= 20ffb000
[  510.430834][   T28]  ? bit_wait_timeout+0x160/0x160
[  510.449585][ T6352] BUG at mt_find:6473 (1)
[  510.453775][   T28]  ? rcu_barrier_entrain+0x290/0x290
[  510.468670][ T6352] maple_tree(ffff888078bf8900) flags 309, height 2 root ffff888072b9dc1e
[  510.474824][   T28]  rcu_barrier+0x37f/0x6d0
[  510.482733][ T6352] 0-18446744073709551615: 
[  510.498958][   T28]  kvm_mmu_uninit_vm+0x6a/0x70
[  510.520579][ T6352] node ffff888072b9dc00 depth 0 type 3 parent ffff888078bf8901
[  510.523820][   T28]  kvm_arch_destroy_vm+0x369/0x490
[  510.555805][ T6352]  contents: 
[  510.559339][   T28]  ? kvm_arch_pre_destroy_vm+0x20/0x20
[  510.567698][ T6352] 93708191739904 
[  510.572892][   T28]  kvm_put_kvm+0x4ea/0xb90
[  510.576504][ T6352] 20480 
[  510.582190][   T28]  kvm_vm_release+0x43/0x50
[  510.599886][ T6352] 18446603346101940224 
[  510.605150][   T28]  __fput+0x27c/0xa90
[  510.619593][ T6352] 0 
[  510.620945][   T28]  ? kvm_put_kvm+0xb90/0xb90
[  510.626018][ T6352] 0 
[  510.630022][   T28]  task_work_run+0x16f/0x270
[  510.642394][ T6352] 0 
[  510.646190][   T28]  ? task_work_cancel+0x30/0x30
[  510.657837][ T6352] 0 
[  510.661127][   T28]  ? do_raw_spin_unlock+0x175/0x230
[  510.670604][ T6352] 0 
[  510.673546][   T28]  do_exit+0xb17/0x2a90
[  510.674589][ T6352] 0 
[  510.680123][   T28]  ? find_held_lock+0x2d/0x110
[  510.689577][ T6352] 0 | 02 02| ffff888072b9c60c 140593359486975 ffff888072b9c40c 140593393942527 
[  510.694441][   T28]  ? get_signal+0x8a0/0x24f0
[  510.708982][   T28]  ? mm_update_next_owner+0x7b0/0x7b0
[  510.714717][   T28]  do_group_exit+0xd4/0x2a0
[  510.716291][ T6352] ffff888022069c0c 18446744073709551615 
[  510.719259][   T28]  get_signal+0x225f/0x24f0
[  510.719299][   T28]  ? exit_signals+0x910/0x910
[  510.731328][ T6352] 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000
[  510.734831][   T28]  ? kvm_dev_ioctl+0x6a3/0x1ce0
[  510.753343][   T28]  ? __virt_addr_valid+0x61/0x2e0
[  510.756861][ T6352]   0-140593359486975: 
[  510.758408][   T28]  arch_do_signal_or_restart+0x79/0x5c0
[  510.758423][ T6352] node ffff888072b9c600 depth 1 type 1 parent ffff888072b9dc06 contents: 
[  510.763056][   T28]  ? get_sigframe_size+0x10/0x10
[  510.774673][ T6352] 0000000000000000 536866815 
[  510.779137][   T28]  ? task_work_add+0x18e/0x2c0
[  510.785291][ T6352] ffff88807cef72a0 536870911 ffff88801fb9b700 553627647 0000000000000000 553639935 ffff88807bda78c0 553627647 ffff88807bda79a0 553644031 ffff8880216d6b60 553648127 ffff88801fb9b7e0 553652223 0000000000000000 116809400319 ffff88801fb9b8c0 116813594623 0000000000000000 93825005334527 ffff88801fb9b620 93825005473791 0000000000000000 140593359482879 ffff88801fb9b540 140593359486975 0000000000000000 0 000000000000000d
[  510.797415][   T28]  exit_to_user_mode_prepare+0x11f/0x240
[  510.830789][ T6352]     0-536866815: 0000000000000000
[  510.830819][ T6352]     536866816-536870911: 
[  510.842485][   T28]  syscall_exit_to_user_mode+0x1d/0x50
[  510.849580][ T6352] ffff88807cef72a0
[  510.853105][   T28]  do_syscall_64+0x46/0xb0
[  510.857619][ T6352]     536870912-553627647: 
[  510.860919][   T28]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  510.869569][ T6352] ffff88801fb9b700
[  510.873789][   T28] RIP: 0033:0x7f918b08c0c9
[  510.875068][ T6352]     553627648-553639935: 
[  510.879431][   T28] RSP: 002b:00007f918be22168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  510.892923][ T6352] 0000000000000000
[  510.894549][   T28] RAX: 0000000000000004 RBX: 00007f918b1abf80 RCX: 00007f918b08c0c9
[  510.896651][ T6352]     553639936-553627647: 
[  510.904972][   T28] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003
[  510.915019][ T6352] ffff88807bda78c0
[  510.918189][   T28] RBP: 00007f918b0e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  510.929593][ T6352]     553627648-553644031: ffff88807bda79a0
[  510.929811][   T28] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  510.935893][ T6352]     553644032-553648127: 
[  510.943980][   T28] R13: 00007fffd7edb1df R14: 00007f918be22300 R15: 0000000000022000
[  510.952174][ T6352] ffff8880216d6b60
[  510.957077][   T28]  </TASK>
[  510.963592][   T28] 1 lock held by syz-executor.1/9141:
[  510.968977][   T28]  #0: ffffffff8c79e580 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x48/0x6d0
[  510.981560][   T28] task:syz-executor.2  state:D stack:27760 pid:9176  ppid:5106   flags:0x00004002
[  510.988741][ T6352]     553648128-553652223: ffff88801fb9b7e0
[  510.991560][   T28] Call Trace:
[  510.997004][ T6352]     553652224-116809400319: 0000000000000000
[  511.006693][ T6352]     116809400320-116813594623: ffff88801fb9b8c0
[  511.009653][   T28]  <TASK>
[  511.015955][ T6352]     116813594624-93825005334527: 0000000000000000
[  511.017140][   T28]  __schedule+0x25d0/0x5a70
[  511.022834][ T6352]     93825005334528-93825005473791: ffff88801fb9b620
[  511.034192][ T6352]     93825005473792-140593359482879: 0000000000000000
[  511.035235][   T28]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  511.041222][ T6352]     140593359482880-140593359486975: ffff88801fb9b540
[  511.054258][ T6352]   140593359486976-140593393942527: node ffff888072b9c400 depth 1 type 1 parent ffff888072b9dc0e contents: ffff88801fb9b9a0 140593367875583 ffff88802866f700 140593369972735 ffff88802866f7e0 140593372069887 ffff88802866f8c0 140593374167039 ffff88802866f9a0 140593376264191 ffff888028a9b1c0 140593380458495 ffff888028a9bc40 140593380605951 ffff888021dae620 140593381335039 ffff88806863a000 140593381670911 0000000000000000 140593381675007 ffff88806863a0e0 140593382039551 ffff88806863a1c0 140593382076415 0000000000000000 140593382096895 ffff88806863a2a0 140593393942527 0000000000000000 0 000000000000000d
[  511.056559][   T28]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  511.119814][   T28]  ? find_held_lock+0x2d/0x110
[  511.124425][ T6352]     140593359486976-140593367875583: ffff88801fb9b9a0
[  511.124934][   T28]  ? try_to_wake_up+0xd34/0x1bf0
[  511.132544][ T6352]     140593367875584-140593369972735: ffff88802866f700
[  511.136747][   T28]  ? io_schedule_timeout+0x150/0x150
[  511.149077][   T28]  ? __mutex_lock+0xa43/0x1360
[  511.153953][   T28]  schedule+0xde/0x1b0
[  511.158200][   T28]  schedule_preempt_disabled+0x13/0x20
[  511.163802][   T28]  __mutex_lock+0xa48/0x1360
[  511.168566][   T28]  ? rcu_barrier+0x48/0x6d0
[  511.169701][ T6352]     140593369972736-140593372069887: ffff88802866f7e0
[  511.173169][   T28]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  511.186612][   T28]  ? destroy_workqueue+0x65b/0x810
[  511.191846][   T28]  rcu_barrier+0x48/0x6d0
[  511.194403][ T6352]     140593372069888-140593374167039: ffff88802866f8c0
[  511.196333][   T28]  ? _raw_spin_unlock_irq+0x2e/0x50
[  511.208606][   T28]  ? destroy_workqueue+0x65b/0x810
[  511.209761][ T6352]     140593374167040-140593376264191: ffff88802866f9a0
[  511.213826][   T28]  kvm_mmu_uninit_vm+0x6a/0x70
[  511.226618][   T28]  kvm_arch_destroy_vm+0x369/0x490
[  511.229850][ T6352]     140593376264192-140593380458495: ffff888028a9b1c0
[  511.232547][   T28]  ? kvm_arch_pre_destroy_vm+0x20/0x20
[  511.238947][ T6352]     140593380458496-140593380605951: 
[  511.244423][   T28]  kvm_put_kvm+0x4ea/0xb90
[  511.244465][   T28]  kvm_vm_release+0x43/0x50
[  511.244490][   T28]  __fput+0x27c/0xa90
[  511.244522][   T28]  ? kvm_put_kvm+0xb90/0xb90
[  511.244555][   T28]  task_work_run+0x16f/0x270
[  511.244597][   T28]  ? task_work_cancel+0x30/0x30
[  511.244635][   T28]  ? do_raw_spin_unlock+0x175/0x230
[  511.244673][   T28]  do_exit+0xb17/0x2a90
[  511.244709][   T28]  ? find_held_lock+0x2d/0x110
[  511.244751][   T28]  ? get_signal+0x8a0/0x24f0
[  511.272565][ T6352] ffff888028a9bc40
[  511.278882][   T28]  ? mm_update_next_owner+0x7b0/0x7b0
[  511.292970][ T6352]     140593380605952-140593381335039: ffff888021dae620
[  511.306590][   T28]  do_group_exit+0xd4/0x2a0
[  511.312747][ T6352]     140593381335040-140593381670911: ffff88806863a000
[  511.324468][ T6352]     140593381670912-140593381675007: 0000000000000000
[  511.324538][   T28]  get_signal+0x225f/0x24f0
[  511.331797][ T6352]     140593381675008-140593382039551: ffff88806863a0e0
[  511.343375][ T6352]     140593382039552-140593382076415: ffff88806863a1c0
[  511.345588][   T28]  ? exit_signals+0x910/0x910
[  511.350671][ T6352]     140593382076416-140593382096895: 0000000000000000
[  511.357556][   T28]  ? kvm_dev_ioctl+0x6a3/0x1ce0
[  511.365139][ T6352]     140593382096896-140593393942527: 
[  511.367069][   T28]  arch_do_signal_or_restart+0x79/0x5c0
[  511.373774][ T6352] ffff88806863a2a0
[  511.383959][ T6352]   140593393942528-18446744073709551615: node ffff888022069c00 depth 1 type 1 parent ffff888072b9dc16 contents: 0000000000000000 140593395646463 ffff88807bda7ee0 140593395650559 ffff88807bda7c40 140593395781631 0000000000000000 140727606853631 ffff88806863a380 140727606988799 0000000000000000 140727607586815 ffff88806863a460 140727607603199 ffff88806863a540 140727607611391 0000000000000000 18446744073709551615 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000000 0 0000000000000008
[  511.389382][   T28]  ? get_sigframe_size+0x10/0x10
[  511.434313][ T6352]     140593393942528-140593395646463: 0000000000000000
[  511.446178][ T6352]     140593395646464-140593395650559: ffff88807bda7ee0
[  511.450242][   T28]  ? kvm_stat_data_open+0x380/0x380
[  511.454149][ T6352]     140593395650560-140593395781631: ffff88807bda7c40
[  511.458343][   T28]  exit_to_user_mode_prepare+0x11f/0x240
[  511.471222][   T28]  syscall_exit_to_user_mode+0x1d/0x50
[  511.476729][   T28]  do_syscall_64+0x46/0xb0
[  511.476796][ T6352]     140593395781632-140727606853631: 
[  511.481232][   T28]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  511.481267][   T28] RIP: 0033:0x7f428208c0c9
[  511.481288][   T28] RSP: 002b:00007f4282e5f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  511.481315][   T28] RAX: 0000000000000004 RBX: 00007f42821abf80 RCX: 00007f428208c0c9
[  511.481332][   T28] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003
[  511.481347][   T28] RBP: 00007f42820e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  511.481363][   T28] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  511.481379][   T28] R13: 00007ffcbc9642af R14: 00007f4282e5f300 R15: 0000000000022000
[  511.481416][   T28]  </TASK>
[  511.481427][   T28] 1 lock held by syz-executor.2/9176:
[  511.481442][   T28]  #0: ffffffff8c79e580 (rcu_state.barrier_mutex){+.+.}-{3:3}, at: rcu_barrier+0x48/0x6d0
[  511.498759][ T6352] 0000000000000000
[  511.506826][   T28] 
[  511.524178][ T6352]     140727606853632-140727606988799: 
[  511.530973][   T28] =============================================
[  511.530973][   T28] 
[  511.530986][   T28] NMI backtrace for cpu 0
[  511.530997][   T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  511.531021][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  511.531035][   T28] Call Trace:
[  511.531043][   T28]  <TASK>
[  511.531052][   T28]  dump_stack_lvl+0xd1/0x138
[  511.531090][   T28]  nmi_cpu_backtrace.cold+0x24/0x18a
[  511.531127][   T28]  nmi_trigger_cpumask_backtrace+0x32f/0x3c0
[  511.531155][   T28]  ? lapic_can_unplug_cpu+0x80/0x80
[  511.531184][   T28]  watchdog+0xcae/0x1050
[  511.531224][   T28]  ? proc_dohung_task_timeout_secs+0x80/0x80
[  511.545888][ T6352] ffff88806863a380
[  511.547163][   T28]  kthread+0x2e8/0x3a0
[  511.550211][ T6352]     140727606988800-140727607586815: 
[  511.555521][   T28]  ? kthread_complete_and_exit+0x40/0x40
[  511.567511][ T6352] 0000000000000000
[  511.569088][   T28]  ret_from_fork+0x1f/0x30
[  511.571708][ T6352]     140727607586816-140727607603199: 
[  511.576942][   T28]  </TASK>
[  511.587591][ T6352] ffff88806863a460
[  511.590379][   T28] Sending NMI from CPU 0 to CPUs 1:
[  511.609447][ T6352]     140727607603200-140727607611391: ffff88806863a540
[  511.609481][ T6352]     140727607611392-18446744073709551615: 0000000000000000
[  511.609503][ T6352] Pass: 9520836 Run:9521016
[  511.609516][ T6352] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  511.609545][ T6352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  511.609560][ T6352] Call Trace:
[  511.609568][ T6352]  <TASK>
[  511.609579][ T6352]  dump_stack_lvl+0xd1/0x138
[  511.609619][ T6352]  mt_find.cold+0x8b/0x90
[  511.609657][ T6352]  ? mas_find+0x1d0/0x1d0
[  511.609704][ T6352]  find_vma+0x10c/0x1b0
[  511.609731][ T6352]  ? can_vma_merge_before+0x390/0x390
[  511.613025][    C1] NMI backtrace for cpu 1
[  511.613033][    C1] CPU: 1 PID: 6352 Comm: syz-executor.1 Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  511.613053][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  511.613063][    C1] RIP: 0010:number+0x2/0xad0
[  511.613091][    C1] Code: c2 00 e1 f5 05 48 89 d3 48 29 c6 e8 88 fc ff ff 49 89 c4 e9 67 ff ff ff 48 89 eb e9 5f ff ff ff 0f 1f 84 00 00 00 00 00 41 57 <49> 89 ff 41 56 49 89 f6 41 55 41 54 55 53 48 bb 00 00 00 00 00 fc
[  511.613109][    C1] RSP: 0018:ffffc9000652f1d8 EFLAGS: 00000046
[  511.613123][    C1] RAX: 0000000000040000 RBX: dffffc0000000000 RCX: ffff0a0000000509
[  511.613136][    C1] RDX: 00000000000001ff RSI: ffffc9008652f4b7 RDI: ffffc9000652f4b9
[  511.613149][    C1] RBP: 0000000000000018 R08: 0000000000000005 R09: 000000000000002f
[  511.613161][    C1] R10: 0000000000000010 R11: 0000000000000000 R12: ffffc9000652f4b9
[  511.613172][    C1] R13: ffffffff8a4d1fc5 R14: 00000000000001ff R15: 0000000000000009
[  511.613184][    C1] FS:  00007fde7369c700(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[  511.613199][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  511.613211][    C1] CR2: 0000555555733848 CR3: 00000000774c9000 CR4: 00000000003526e0
[  511.613223][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  511.613234][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  511.613244][    C1] Call Trace:
[  511.613249][    C1]  <TASK>
[  511.613255][    C1]  vsnprintf+0x775/0x16b0
[  511.613287][    C1]  ? pointer+0xc50/0xc50
[  511.613316][    C1]  ? memcpy+0x3d/0x60
[  511.613344][    C1]  sprintf+0xc4/0x100
[  511.613372][    C1]  ? snprintf+0x100/0x100
[  511.613401][    C1]  ? mark_lock.part.0+0xee/0x1910
[  511.613420][    C1]  ? get_data+0x3c5/0x5d0
[  511.613445][    C1]  info_print_prefix+0x248/0x340
[  511.613463][    C1]  ? msg_add_ext_text+0x1d0/0x1d0
[  511.613481][    C1]  ? get_data+0x5d0/0x5d0
[  511.613503][    C1]  record_print_text+0x14d/0x3e0
[  511.613523][    C1]  ? find_first_fitting_seq+0x210/0x210
[  511.613543][    C1]  ? prb_read_valid+0x79/0xa0
[  511.613564][    C1]  ? prb_final_commit+0xb0/0xb0
[  511.613589][    C1]  console_emit_next_record.constprop.0+0x714/0x890
[  511.613613][    C1]  ? devkmsg_read+0x730/0x730
[  511.613643][    C1]  console_flush_all+0x547/0x6e0
[  511.613665][    C1]  console_unlock+0xb8/0x1f0
[  511.613683][    C1]  ? console_flush_all+0x6e0/0x6e0
[  511.613703][    C1]  ? vprintk_emit+0x3fa/0x600
[  511.613722][    C1]  ? lock_acquire+0x32/0xc0
[  511.613739][    C1]  ? vprintk_emit+0x3fa/0x600
[  511.613766][    C1]  vprintk_emit+0x1bd/0x600
[  511.613787][    C1]  vprintk+0x84/0xa0
[  511.613806][    C1]  _printk+0xbe/0xf1
[  511.613830][    C1]  ? record_print_text.cold+0x16/0x16
[  511.613854][    C1]  ? is_bpf_text_address+0x4/0x1b0
[  511.613950][    C1]  ? is_bpf_text_address+0x9d/0x1b0
[  511.613976][    C1]  ? can_vma_merge_before+0x390/0x390
[  511.613997][    C1]  show_trace_log_lvl+0x221/0x2ba
[  511.614033][    C1]  ? can_vma_merge_before+0x390/0x390
[  511.614057][    C1]  ? walk_page_range+0x2b1/0x4a0
[  511.614084][    C1]  dump_stack_lvl+0xd1/0x138
[  511.614109][    C1]  mt_find.cold+0x8b/0x90
[  511.614136][    C1]  ? mas_find+0x1d0/0x1d0
[  511.614160][    C1]  find_vma+0x10c/0x1b0
[  511.614178][    C1]  ? can_vma_merge_before+0x390/0x390
[  511.614199][    C1]  ? walk_page_test+0x78/0x180
[  511.614223][    C1]  walk_page_range+0x2b1/0x4a0
[  511.614250][    C1]  ? __walk_page_range+0x780/0x780
[  511.614280][    C1]  mlock_fixup+0x650/0x810
[  511.614314][    C1]  apply_vma_lock_flags+0x23d/0x350
[  511.614346][    C1]  ? mlock_fixup+0x810/0x810
[  511.614378][    C1]  ? __ia32_sys_get_robust_list+0x400/0x400
[  511.614408][    C1]  do_mlock+0x25a/0x6d0
[  511.614438][    C1]  ? folio_evictable+0x270/0x270
[  511.614472][    C1]  ? syscall_enter_from_user_mode+0x26/0xb0
[  511.614496][    C1]  __x64_sys_mlock+0x59/0x80
[  511.614526][    C1]  do_syscall_64+0x39/0xb0
[  511.614554][    C1]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  511.614578][    C1] RIP: 0033:0x7fde7288c0c9
[  511.614592][    C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  511.614610][    C1] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  511.614628][    C1] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  511.614640][    C1] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  511.614652][    C1] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  511.614664][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  511.614675][    C1] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  511.614695][    C1]  </TASK>
[  512.215537][ T6352]  ? walk_page_test+0x78/0x180
[  512.220332][ T6352]  walk_page_range+0x2b1/0x4a0
[  512.225146][ T6352]  ? __walk_page_range+0x780/0x780
[  512.230289][ T6352]  mlock_fixup+0x650/0x810
[  512.234741][ T6352]  apply_vma_lock_flags+0x23d/0x350
[  512.239962][ T6352]  ? mlock_fixup+0x810/0x810
[  512.244578][ T6352]  ? __ia32_sys_get_robust_list+0x400/0x400
[  512.250489][ T6352]  do_mlock+0x25a/0x6d0
[  512.254668][ T6352]  ? folio_evictable+0x270/0x270
[  512.259631][ T6352]  ? syscall_enter_from_user_mode+0x26/0xb0
[  512.265539][ T6352]  __x64_sys_mlock+0x59/0x80
[  512.270154][ T6352]  do_syscall_64+0x39/0xb0
[  512.274600][ T6352]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  512.280505][ T6352] RIP: 0033:0x7fde7288c0c9
[  512.284926][ T6352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  512.304536][ T6352] RSP: 002b:00007fde7369c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  512.312958][ T6352] RAX: ffffffffffffffda RBX: 00007fde729abf80 RCX: 00007fde7288c0c9
[  512.320932][ T6352] RDX: 0000000000000000 RSI: 0000000000004000 RDI: 0000000020ffb000
[  512.328905][ T6352] RBP: 00007fde728e7ae9 R08: 0000000000000000 R09: 0000000000000000
[  512.336877][ T6352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  512.344851][ T6352] R13: 00007ffdb30627ef R14: 00007fde7369c300 R15: 0000000000022000
[  512.352845][ T6352]  </TASK>
[  512.371672][   T28] Kernel panic - not syncing: hung_task: blocked tasks
[  512.378575][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.2.0-rc3-next-20230109-syzkaller #0
[  512.387889][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  512.397973][   T28] Call Trace:
[  512.401269][   T28]  <TASK>
[  512.404222][   T28]  dump_stack_lvl+0xd1/0x138
[  512.408856][   T28]  panic+0x2cc/0x626
[  512.412790][   T28]  ? panic_print_sys_info.part.0+0x112/0x112
[  512.418812][   T28]  ? preempt_schedule_thunk+0x1a/0x20
[  512.424235][   T28]  ? watchdog.cold+0x130/0x158
[  512.429115][   T28]  watchdog.cold+0x141/0x158
[  512.433749][   T28]  ? proc_dohung_task_timeout_secs+0x80/0x80
[  512.439778][   T28]  kthread+0x2e8/0x3a0
[  512.443876][   T28]  ? kthread_complete_and_exit+0x40/0x40
11:27:09 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cpuset.effective_mems\x00', 0x275a, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x10001, 0x0, 0x0, 0x1000, &(0x7f0000001000/0x1000)=nil})
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x40000000011, r2, 0x0)

11:27:09 executing program 0:
pipe2(0x0, 0x80080)
mq_timedreceive(0xffffffffffffffff, &(0x7f00000000c0)=""/207, 0xcf, 0x5778, &(0x7f00000001c0)={0x77359400})
r0 = io_uring_setup(0x2af0, &(0x7f0000000440)={0x0, 0x3402, 0x0, 0x0, 0xcd})
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000540)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2)
io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000780)={'gretap0\x00', &(0x7f0000000700)={'syztnl0\x00', 0x0, 0x1, 0x7, 0x9, 0x0, {{0x6, 0x4, 0x0, 0x35, 0x18, 0x67, 0x0, 0x9, 0x0, 0x0, @private=0xa010102, @local, {[@ra={0x94, 0x4}]}}}}})
openat$pidfd(0xffffff9c, &(0x7f0000000a40), 0x4a0002, 0x0)

11:27:09 executing program 3:
socket$nl_generic(0x10, 0x3, 0x10)
pipe2(0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

11:27:09 executing program 4:
pselect6(0x40, &(0x7f0000001c80), &(0x7f0000001cc0), 0x0, &(0x7f0000001d40)={0x0, 0x989680}, 0x0)

11:27:09 executing program 5:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000961fe4)=[@in={0x2, 0x0, @private=0xa010102}], 0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB, @ANYRES32=<r1=>0x0], &(0x7f000095dffc)=0x8)
r2 = socket(0xa, 0x1, 0x0)
close(r2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000040)={r1}, &(0x7f0000000140)=0x8)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90)

[  512.449543][   T28]  ret_from_fork+0x1f/0x30
[  512.454001][   T28]  </TASK>
[  512.457235][   T28] Kernel Offset: disabled
[  512.461563][   T28] Rebooting in 86400 seconds..