program:
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
clock_nanosleep(0xfffffffa, 0x0, &(0x7f0000000080)={0x77359400}, 0x0)

[   79.396870][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[   79.399509][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[   79.403088][ T5305] Bluetooth: hci0: command tx timeout
[   79.545491][    C0] 
[   79.546394][    C0] =============================
[   79.548082][    C0] [ BUG: Invalid wait context ]
[   79.549762][    C0] 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0 Not tainted
[   79.552324][    C0] -----------------------------
[   79.554234][    C0] syz.0.0/5319 is trying to lock:
[   79.556226][    C0] ffff88805ffd7298 (&zone->lock){-.-.}-{3:3}, at: get_page_from_freelist+0xb3d/0x37a0
[   79.559925][    C0] other info that might help us debug this:
[   79.562439][    C0] context-{2:2}
[   79.564160][    C0] 3 locks held by syz.0.0/5319:
[   79.566328][    C0]  #0: ffff8880120ed9a0 (&mm->mmap_lock){++++}-{4:4}, at: exit_mmap+0x165/0xc20
[   79.569619][    C0]  #1: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: page_ext_get+0x20/0x2a0
[   79.573279][    C0]  #2: ffff88801fc44ad8 (&pcp->lock){+.+.}-{3:3}, at: get_page_from_freelist+0x7d3/0x37a0
[   79.576959][    C0] stack backtrace:
[   79.578384][    C0] CPU: 0 UID: 0 PID: 5319 Comm: syz.0.0 Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   79.581852][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.585464][    C0] Call Trace:
[   79.586646][    C0]  <IRQ>
[   79.587717][    C0]  dump_stack_lvl+0x241/0x360
[   79.589549][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[   79.591556][    C0]  ? __pfx__printk+0x10/0x10
[   79.593374][    C0]  __lock_acquire+0x15a8/0x2100
[   79.595292][    C0]  lock_acquire+0x1ed/0x550
[   79.597066][    C0]  ? get_page_from_freelist+0xb3d/0x37a0
[   79.599207][    C0]  ? __pfx_lock_acquire+0x10/0x10
[   79.601132][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   79.603631][    C0]  ? arch_stack_walk+0x11c/0x150
[   79.605495][    C0]  ? ret_from_fork_asm+0x1a/0x30
[   79.607375][    C0]  _raw_spin_lock_irqsave+0xd5/0x120
[   79.609419][    C0]  ? get_page_from_freelist+0xb3d/0x37a0
[   79.611624][    C0]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[   79.614041][    C0]  get_page_from_freelist+0xb3d/0x37a0
[   79.616190][    C0]  __alloc_pages_noprof+0x292/0x710
[   79.618227][    C0]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   79.620475][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   79.622912][    C0]  ? __kernel_text_address+0xd/0x40
[   79.624909][    C0]  ? unwind_get_return_address+0x4d/0x90
[   79.627088][    C0]  alloc_pages_mpol_noprof+0x3e1/0x780
[   79.629125][    C0]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   79.631487][    C0]  ? stack_trace_save+0x118/0x1d0
[   79.633489][    C0]  ? alloc_pages_noprof+0x43/0x170
[   79.635490][    C0]  stack_depot_save_flags+0x72d/0x940
[   79.638986][    C0]  kasan_save_stack+0x4f/0x60
[   79.640827][    C0]  ? kasan_save_stack+0x3f/0x60
[   79.642756][    C0]  ? __kasan_record_aux_stack+0xac/0xc0
[   79.644906][    C0]  ? task_work_add+0xd9/0x490
[   79.646763][    C0]  ? run_posix_cpu_timers+0x6ac/0x810
[   79.648883][    C0]  ? tick_nohz_handler+0x37c/0x500
[   79.650982][    C0]  ? __hrtimer_run_queues+0x551/0xd30
[   79.653141][    C0]  ? hrtimer_interrupt+0x403/0xa40
[   79.655189][    C0]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[   79.657588][    C0]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[   79.659851][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   79.662232][    C0]  ? _raw_spin_unlock_irqrestore+0xd8/0x140
[   79.664522][    C0]  ? __rmqueue_pcplist+0x21fd/0x2a90
[   79.666537][    C0]  ? get_page_from_freelist+0x886/0x37a0
[   79.668729][    C0]  ? __alloc_pages_noprof+0x292/0x710
[   79.670859][    C0]  ? alloc_pages_mpol_noprof+0x3e1/0x780
[   79.673032][    C0]  ? stack_depot_save_flags+0x72d/0x940
[   79.675195][    C0]  ? save_stack+0x109/0x1f0
[   79.677051][    C0]  ? __reset_page_owner+0x76/0x430
[   79.683766][    C0]  ? free_unref_folios+0xe39/0x18b0
[   79.685788][    C0]  ? folios_put_refs+0x76c/0x860
[   79.687745][    C0]  ? free_pages_and_swap_cache+0x5c8/0x690
[   79.690024][    C0]  ? tlb_flush_mmu+0x3a3/0x680
[   79.691957][    C0]  ? unmap_page_range+0x3770/0x4040
[   79.694012][    C0]  ? unmap_vmas+0x3cc/0x5f0
[   79.695766][    C0]  ? exit_mmap+0x275/0xc20
[   79.697489][    C0]  ? __mmput+0x115/0x3c0
[   79.699156][    C0]  ? exit_mm+0x220/0x310
[   79.700862][    C0]  ? do_exit+0x9ad/0x28e0
[   79.702628][    C0]  ? do_group_exit+0x207/0x2c0
[   79.704503][    C0]  ? __x64_sys_exit_group+0x3f/0x40
[   79.706515][    C0]  ? x64_sys_call+0x26a8/0x26b0
[   79.708399][    C0]  ? do_syscall_64+0xf3/0x230
[   79.710302][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.712745][    C0]  ? __phys_addr+0xba/0x170
[   79.714585][    C0]  __kasan_record_aux_stack+0xac/0xc0
[   79.716747][    C0]  task_work_add+0xd9/0x490
[   79.718577][    C0]  ? __pfx_lock_acquire+0x10/0x10
[   79.720523][    C0]  ? __pfx_task_work_add+0x10/0x10
[   79.722570][    C0]  run_posix_cpu_timers+0x6ac/0x810
[   79.724639][    C0]  ? __pfx_run_posix_cpu_timers+0x10/0x10
[   79.726910][    C0]  ? sched_balance_trigger+0x51/0x890
[   79.729131][    C0]  tick_nohz_handler+0x37c/0x500
[   79.731030][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[   79.733235][    C0]  __hrtimer_run_queues+0x551/0xd30
[   79.735263][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[   79.737401][    C0]  ? kvm_clock_get_cycles+0x52/0x70
[   79.739346][    C0]  ? ktime_get_update_offsets_now+0x393/0x3b0
[   79.741589][    C0]  hrtimer_interrupt+0x403/0xa40
[   79.743436][    C0]  __sysvec_apic_timer_interrupt+0x110/0x420
[   79.745742][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[   79.747841][    C0]  </IRQ>
[   79.748960][    C0]  <TASK>
[   79.750175][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   79.752492][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140
[   79.754928][    C0] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 fe 0f 3a f6 f6 44 24 21 02 75 52 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> 43 b6 a1 f5 65 8b 05 b4 f8 37 74 85 c0 74 43 48 c7 04 24 0e 36
[   79.762347][    C0] RSP: 0018:ffffc9000d3267c0 EFLAGS: 00000206
[   79.764605][    C0] RAX: 60edf57ece901b00 RBX: 1ffff92001a64cfc RCX: ffffffff817b387a
[   79.767501][    C0] RDX: dffffc0000000000 RSI: ffffffff8c0a98e0 RDI: 0000000000000001
[   79.770383][    C0] RBP: ffffc9000d326858 R08: ffffffff942ab887 R09: 1ffffffff2855710
[   79.773250][    C0] R10: dffffc0000000000 R11: fffffbfff2855711 R12: dffffc0000000000
[   79.776178][    C0] R13: 1ffff92001a64cf8 R14: ffffc9000d3267e0 R15: 0000000000000246
[   79.779230][    C0]  ? mark_lock+0x9a/0x360
[   79.781018][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   79.783870][    C0]  __rmqueue_pcplist+0x21fd/0x2a90
[   79.786352][    C0]  ? is_bpf_text_address+0x26/0x2a0
[   79.788508][    C0]  get_page_from_freelist+0x886/0x37a0
[   79.790618][    C0]  __alloc_pages_noprof+0x292/0x710
[   79.792800][    C0]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   79.794989][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   79.797298][    C0]  ? __kernel_text_address+0xd/0x40
[   79.799195][    C0]  ? unwind_get_return_address+0x4d/0x90
[   79.801362][    C0]  alloc_pages_mpol_noprof+0x3e1/0x780
[   79.803524][    C0]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   79.805861][    C0]  ? stack_trace_save+0x118/0x1d0
[   79.807773][    C0]  ? alloc_pages_noprof+0xef/0x170
[   79.809751][    C0]  stack_depot_save_flags+0x72d/0x940
[   79.811892][    C0]  save_stack+0x109/0x1f0
[   79.813590][    C0]  ? __pfx_lock_acquire+0x10/0x10
[   79.815470][    C0]  ? __pfx_save_stack+0x10/0x10
[   79.817374][    C0]  ? free_unref_folios+0xe39/0x18b0
[   79.819417][    C0]  ? folios_put_refs+0x76c/0x860
[   79.821251][    C0]  ? free_pages_and_swap_cache+0x5c8/0x690
[   79.823593][    C0]  ? tlb_flush_mmu+0x3a3/0x680
[   79.825465][    C0]  ? unmap_page_range+0x3770/0x4040
[   79.827464][    C0]  ? unmap_vmas+0x3cc/0x5f0
[   79.829204][    C0]  ? exit_mmap+0x275/0xc20
[   79.830981][    C0]  ? __mmput+0x115/0x3c0
[   79.832708][    C0]  ? exit_mm+0x220/0x310
[   79.834512][    C0]  ? do_exit+0x9ad/0x28e0
[   79.836162][    C0]  ? do_group_exit+0x207/0x2c0
[   79.838035][    C0]  ? __x64_sys_exit_group+0x3f/0x40
[   79.840091][    C0]  ? x64_sys_call+0x26a8/0x26b0
[   79.842090][    C0]  ? do_syscall_64+0xf3/0x230
[   79.843996][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.846357][    C0]  ? page_ext_get+0x20/0x2a0
[   79.848200][    C0]  __reset_page_owner+0x76/0x430
[   79.850127][    C0]  ? __mem_cgroup_uncharge_folios+0x14a/0x1c0
[   79.852656][    C0]  free_unref_folios+0xe39/0x18b0
[   79.854608][    C0]  folios_put_refs+0x76c/0x860
[   79.856444][    C0]  ? __pfx_folios_put_refs+0x10/0x10
[   79.858465][    C0]  ? free_swap_cache+0x115/0x3e0
[   79.860374][    C0]  free_pages_and_swap_cache+0x5c8/0x690
[   79.862547][    C0]  ? __pfx_free_pages_and_swap_cache+0x10/0x10
[   79.864916][    C0]  ? tlb_table_flush+0x143/0x410
[   79.866820][    C0]  ? __pfx_lock_release+0x10/0x10
[   79.868788][    C0]  tlb_flush_mmu+0x3a3/0x680
[   79.870654][    C0]  unmap_page_range+0x3770/0x4040
[   79.872798][    C0]  ? __lock_acquire+0x1397/0x2100
[   79.874981][    C0]  ? __pfx_unmap_page_range+0x10/0x10
[   79.877246][    C0]  ? mas_next_slot+0xdc6/0xea0
[   79.879317][    C0]  ? uprobe_munmap+0x183/0x460
[   79.881408][    C0]  ? unmap_single_vma+0x1bd/0x2b0
[   79.883756][    C0]  unmap_vmas+0x3cc/0x5f0
[   79.885507][    C0]  ? __pfx_unmap_vmas+0x10/0x10
[   79.887451][    C0]  ? tlb_gather_mmu_fullmm+0x160/0x210
[   79.889559][    C0]  exit_mmap+0x275/0xc20
[   79.891161][    C0]  ? __pfx_exit_mmap+0x10/0x10
[   79.893441][    C0]  ? __pfx_exit_aio+0x10/0x10
[   79.895337][    C0]  ? uprobe_clear_state+0x271/0x290
[   79.897382][    C0]  ? mm_update_next_owner+0xa4/0x810
[   79.899522][    C0]  ? do_raw_spin_unlock+0x58/0x8b0
[   79.901485][    C0]  __mmput+0x115/0x3c0
[   79.903182][    C0]  exit_mm+0x220/0x310
[   79.904795][    C0]  ? __pfx_exit_mm+0x10/0x10
[   79.906553][    C0]  ? taskstats_exit+0x326/0xa60
[   79.908377][    C0]  do_exit+0x9ad/0x28e0
[   79.909972][    C0]  ? preempt_schedule_common+0x84/0xd0
[   79.912021][    C0]  ? __pfx_do_exit+0x10/0x10
[   79.913832][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   79.916095][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   79.918588][    C0]  ? preempt_schedule_thunk+0x1a/0x30
[   79.920569][    C0]  do_group_exit+0x207/0x2c0
[   79.922365][    C0]  __x64_sys_exit_group+0x3f/0x40
[   79.924293][    C0]  x64_sys_call+0x26a8/0x26b0
[   79.926154][    C0]  do_syscall_64+0xf3/0x230
[   79.927973][    C0]  ? clear_bhb_loop+0x35/0x90
[   79.929850][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.932187][    C0] RIP: 0033:0x7f8bac985d29
[   79.934099][    C0] Code: Unable to access opcode bytes at 0x7f8bac985cff.
[   79.936531][    C0] RSP: 002b:00007fff5165fe38 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   79.939481][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8bac985d29
[   79.942236][    C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[   79.945147][    C0] RBP: 0000000000000003 R08: 00007fff5165ff1f R09: 00007f8bacb45260
[   79.947918][    C0] R10: 0000000000000001 R11: 0000000000000246 R12: 00007f8bacb45f68
[   79.950926][    C0] R13: 00007f8bacb45260 R14: 00007fff5165fee0 R15: 00007fff5165fee0
[   79.953675][    C0]  </TASK>