[   61.584349][    C0] 
[   61.585367][    C0] =============================
[   61.587070][    C0] [ BUG: Invalid wait context ]
[   61.588932][    C0] 6.12.0-syzkaller-03657-g43fb83c17ba2 #0 Not tainted
[   61.591335][    C0] -----------------------------
[   61.593018][    C0] sshd/5306 is trying to lock:
[   61.594845][    C0] ffff88805ffd7298 (&zone->lock){..-.}-{3:3}, at: __rmqueue_pcplist+0x4a2/0x2a80
[   61.598384][    C0] other info that might help us debug this:
[   61.600592][    C0] context-{2:2}
[   61.601961][    C0] 5 locks held by sshd/5306:
[   61.603653][    C0]  #0: ffff888035bc0808 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x34b/0x790
[   61.607357][    C0]  #1: ffffffff8e93c820 (rcu_read_lock){....}-{1:3}, at: __pte_offset_map+0x82/0x380
[   61.610914][    C0]  #2: ffff88803f310798 (ptlock_ptr(ptdesc)#2){+.+.}-{3:3}, at: __pte_offset_map_lock+0x1ba/0x300
[   61.614585][    C0]  #3: ffff88801fc3ea98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[   61.618131][    C0]  #4: ffff88801fc44c98 (&pcp->lock){+.+.}-{3:3}, at: get_page_from_freelist+0x7d3/0x3790
[   61.621769][    C0] stack backtrace:
[   61.623183][    C0] CPU: 0 UID: 0 PID: 5306 Comm: sshd Not tainted 6.12.0-syzkaller-03657-g43fb83c17ba2 #0
[   61.626735][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.630646][    C0] Call Trace:
[   61.631968][    C0]  <IRQ>
[   61.633075][    C0]  dump_stack_lvl+0x241/0x360
[   61.634951][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[   61.636716][    C0]  ? __pfx__printk+0x10/0x10
[   61.638338][    C0]  __lock_acquire+0x15a8/0x2100
[   61.640175][    C0]  lock_acquire+0x1ed/0x550
[   61.641846][    C0]  ? __rmqueue_pcplist+0x4a2/0x2a80
[   61.643801][    C0]  ? __pfx_lock_acquire+0x10/0x10
[   61.645668][    C0]  ? validate_chain+0x11e/0x5920
[   61.647449][    C0]  _raw_spin_lock_irqsave+0xd5/0x120
[   61.649395][    C0]  ? __rmqueue_pcplist+0x4a2/0x2a80
[   61.651348][    C0]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[   61.653748][    C0]  ? validate_chain+0x11e/0x5920
[   61.655557][    C0]  __rmqueue_pcplist+0x4a2/0x2a80
[   61.657376][    C0]  ? __pfx_validate_chain+0x10/0x10
[   61.659202][    C0]  get_page_from_freelist+0x886/0x3790
[   61.661231][    C0]  __alloc_pages_noprof+0x292/0x710
[   61.663113][    C0]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   61.665353][    C0]  ? is_bpf_text_address+0x26/0x2a0
[   61.667289][    C0]  ? kernel_text_address+0xa7/0xe0
[   61.669257][    C0]  ? arch_stack_walk+0xfd/0x150
[   61.671108][    C0]  alloc_pages_mpol_noprof+0x3e8/0x680
[   61.673127][    C0]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   61.675491][    C0]  ? stack_trace_save+0x118/0x1d0
[   61.677560][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[   61.679538][    C0]  ? alloc_pages_noprof+0x43/0x170
[   61.681562][    C0]  stack_depot_save_flags+0x666/0x830
[   61.684436][    C0]  kasan_save_stack+0x4f/0x60
[   61.686228][    C0]  ? kasan_save_stack+0x3f/0x60
[   61.688060][    C0]  ? __kasan_record_aux_stack+0xac/0xc0
[   61.690100][    C0]  ? task_work_add+0xd9/0x490
[   61.691891][    C0]  ? task_tick_fair+0x58c/0x7b0
[   61.693792][    C0]  ? sched_tick+0x21e/0x660
[   61.695390][    C0]  ? update_process_times+0x276/0x2f0
[   61.697118][    C0]  ? tick_nohz_handler+0x37c/0x500
[   61.698829][    C0]  ? __hrtimer_run_queues+0x551/0xd50
[   61.700771][    C0]  ? hrtimer_interrupt+0x403/0xa40
[   61.702635][    C0]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[   61.704926][    C0]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[   61.706978][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   61.709249][    C0]  ? __page_table_check_ptes_set+0x32a/0x410
[   61.711446][    C0]  ? handle_pte_fault+0x6359/0x6820
[   61.713358][    C0]  ? handle_mm_fault+0x1106/0x1bb0
[   61.715242][    C0]  ? exc_page_fault+0x459/0x8c0
[   61.717066][    C0]  ? asm_exc_page_fault+0x26/0x30
[   61.718904][    C0]  ? __phys_addr+0xba/0x170
[   61.720596][    C0]  __kasan_record_aux_stack+0xac/0xc0
[   61.722600][    C0]  task_work_add+0xd9/0x490
[   61.724319][    C0]  ? __pfx_task_work_add+0x10/0x10
[   61.726315][    C0]  ? task_scan_start+0x14c/0x430
[   61.728168][    C0]  ? task_scan_start+0x14c/0x430
[   61.730024][    C0]  ? task_scan_start+0x3f5/0x430
[   61.731920][    C0]  task_tick_fair+0x58c/0x7b0
[   61.733658][    C0]  sched_tick+0x21e/0x660
[   61.735264][    C0]  update_process_times+0x276/0x2f0
[   61.737242][    C0]  tick_nohz_handler+0x37c/0x500
[   61.738997][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[   61.740940][    C0]  __hrtimer_run_queues+0x551/0xd50
[   61.742753][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[   61.744925][    C0]  ? kvm_clock_get_cycles+0x52/0x70
[   61.746904][    C0]  ? ktime_get_update_offsets_now+0x393/0x3b0
[   61.749200][    C0]  hrtimer_interrupt+0x403/0xa40
[   61.751132][    C0]  __sysvec_apic_timer_interrupt+0x110/0x420
[   61.753436][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[   61.755550][    C0]  </IRQ>
[   61.756656][    C0]  <TASK>
[   61.757720][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   61.759804][    C0] RIP: 0010:__page_table_check_ptes_set+0x32a/0x410
[   61.762216][    C0] Code: 01 0f b6 d0 48 89 df 4c 89 e6 e8 11 01 00 00 48 c7 44 24 20 0e 36 e0 45 48 b8 00 00 00 00 00 fc ff df 4a c7 04 30 00 00 00 00 <65> 48 8b 04 25 28 00 00 00 48 3b 44 24 60 0f 85 93 00 00 00 48 8d
[   61.769112][    C0] RSP: 0000:ffffc9000ceaf8c0 EFLAGS: 00000283
[   61.771344][    C0] RAX: dffffc0000000000 RBX: 000000000004439e RCX: ffffc9000ceaf703
[   61.774246][    C0] RDX: 0000000000000003 RSI: ffffffff8c0ae480 RDI: ffffffff8c612b60
[   61.777133][    C0] RBP: ffffc9000ceaf970 R08: ffffffff901de177 R09: 1ffffffff203bc2e
[   61.780123][    C0] R10: dffffc0000000000 R11: fffffbfff203bc2f R12: 0000000000000001
[   61.783086][    C0] R13: 800000004439e867 R14: 1ffff920019d5f1c R15: 1ffff920019d5f20
[   61.786033][    C0]  ? __pfx___page_table_check_ptes_set+0x10/0x10
[   61.788375][    C0]  ? folio_add_lru+0x349/0x870
[   61.790142][    C0]  handle_pte_fault+0x6359/0x6820
[   61.792076][    C0]  ? mark_lock+0x9a/0x360
[   61.793713][    C0]  ? __pfx_handle_pte_fault+0x10/0x10
[   61.795810][    C0]  ? __lock_acquire+0x1397/0x2100
[   61.797709][    C0]  ? reacquire_held_locks+0x3eb/0x690
[   61.799740][    C0]  ? lock_vma_under_rcu+0x34b/0x790
[   61.801722][    C0]  ? __pfx_reacquire_held_locks+0x10/0x10
[   61.804076][    C0]  handle_mm_fault+0x1106/0x1bb0
[   61.805982][    C0]  ? __pfx_handle_mm_fault+0x10/0x10
[   61.807925][    C0]  ? lock_vma_under_rcu+0x602/0x790
[   61.809860][    C0]  ? lock_vma_under_rcu+0x1dd/0x790
[   61.811800][    C0]  ? exc_page_fault+0x113/0x8c0
[   61.813647][    C0]  exc_page_fault+0x459/0x8c0
[   61.815345][    C0]  asm_exc_page_fault+0x26/0x30
[   61.817176][    C0] RIP: 0033:0x559f34a91823
[   61.818831][    C0] Code: 4c 89 ed 4c 89 e7 f3 aa eb 48 4c 89 e7 e8 95 48 f7 ff 48 89 c5 48 85 c0 74 38 48 89 c7 4c 89 ee 4d 39 f4 76 11 4c 89 f1 31 c0 <f3> a4 4c 89 e1 4c 29 f1 f3 aa eb 05 4c 89 e1 f3 a4 4c 89 ef 48 83
[   61.826189][    C0] RSP: 002b:00007ffe0a221de0 EFLAGS: 00010246
[   61.828434][    C0] RAX: 0000000000000000 RBX: 0000000000290000 RCX: 0000000000210010
[   61.831377][    C0] RDX: 0000000000000003 RSI: 00007f690963e000 RDI: 00007f69093ad000
[   61.834416][    C0] RBP: 00007f6909335010 R08: 00007f6909335010 R09: 0000000000000000
[   61.837420][    C0] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000290000
[   61.840304][    C0] R13: 00007f69095c6010 R14: 0000000000288000 R15: 00007ffe0a221f98
[   61.843207][    C0]  </TASK>
Warning: Permanently added '[localhost]:14523' (ED25519) to the list of known hosts.
2024/11/21 22:15:01 ignoring optional flag "sandboxArg"="0"
2024/11/21 22:15:01 parsed 1 programs
[   70.902990][ T5323] cgroup: Unknown subsys name 'net'
[   70.966242][ T5323] cgroup: Unknown subsys name 'cpuset'
[   70.969709][ T5323] cgroup: Unknown subsys name 'rlimit'
[   72.087123][ T5323] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   74.922124][ T5340] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   75.015442][   T48] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   75.018328][   T48] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   75.021100][   T48] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   75.024020][   T48] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   75.027345][   T48] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   75.030146][   T48] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   75.489156][ T1037] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.491873][ T1037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.599207][ T1027] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.632010][ T1027] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.282027][ T5341] chnl_net:caif_netlink_parms(): no params data found
[   76.342519][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[   76.354478][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[   76.642612][ T5341] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.664561][ T5341] bridge0: port 1(bridge_slave_0) entered disabled state
[   76.667226][ T5341] bridge_slave_0: entered allmulticast mode
[   76.669836][ T5341] bridge_slave_0: entered promiscuous mode
[   76.694601][ T5341] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.697297][ T5341] bridge0: port 2(bridge_slave_1) entered disabled state
[   76.700030][ T5341] bridge_slave_1: entered allmulticast mode
[   76.728917][ T5341] bridge_slave_1: entered promiscuous mode
[   76.786176][ T5341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   76.805900][ T5341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   76.835452][ T5341] team0: Port device team_slave_0 added
[   76.838563][ T5341] team0: Port device team_slave_1 added
[   76.857421][ T5341] batman_adv: batadv0: Adding interface: batadv_slave_0
[   76.860147][ T5341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.884645][ T5341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.890055][ T5341] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.892652][ T5341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   76.914858][ T5341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.965128][ T5341] hsr_slave_0: entered promiscuous mode
[   76.975074][ T5341] hsr_slave_1: entered promiscuous mode

VM DIAGNOSIS:
22:15:00  Registers:
info registers vcpu 0

CPU#0
RAX=ffffc90000015000 RBX=0000000000000500 RCX=0000000000000004 RDX=ffff888030403850
RSI=ffffc90000007a00 RDI=ffff88801baf54f0 RBP=ffffc90000007a90 RSP=ffffc900000078a0
R8 =0000000200000025 R9 =000000001badb93c R10=0000000200000025 R11=000000001badb93c
R12=dffffc0000000000 R13=ffff888030403848 R14=ffff88801badb000 R15=000000000000013c
RIP=ffffffff85569e94 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88801fc00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00005592611d6048 CR3=0000000042c22000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000ffff3f01 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000002
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 e5e7d9cce5e7d9cc e5e7d9cce5e7d9cc e5e7d9cce5e7d9cc e5e7d9cce5e7d9cc
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 9ef84ec79ef84ec7 9ef84ec79ef84ec7 9ef84ec79ef84ec7 9ef84ec79ef84ec7
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 fca5b9fcfca5b9fc fca5b9fcfca5b9fc fca5b9fcfca5b9fc fca5b9fcfca5b9fc
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0498988b0498988b 0498988b0498988b 0498988b0498988b 0498988b0498988b
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e1ad6c62e1ad6c6 2e1ad6c62e1ad6c6 2e1ad6c62e1ad6c6 2e1ad6c62e1ad6c6
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 70765c1770765c17 70765c1770765c17 70765c1770765c17 70765c1770765c17
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 15fa47b615fa47b6 15fa47b615fa47b6 15fa47b615fa47b6 15fa47b615fa47b6
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000800000006 0000000400000002 0000000700000005 0000000300000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0c0000000c000000 0c0000000c000000 0c0000000c000000 0c0000000c000000