last executing test programs:
176.894491ms ago: executing program 2 (id=93):
setuid(0x0)
176.809331ms ago: executing program 0 (id=94):
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000))
132.649571ms ago: executing program 0 (id=97):
getpgid(0x0)
132.419913ms ago: executing program 2 (id=98):
setdomainname$auto(&(0x7f0000000000), 0x0)
132.353062ms ago: executing program 3 (id=99):
modify_ldt$auto(0x0, &(0x7f0000000000), 0x0)
132.07298ms ago: executing program 3 (id=101):
userfaultfd(0x0)
132.005303ms ago: executing program 0 (id=102):
alarm(0x0)
131.828166ms ago: executing program 2 (id=103):
pselect6(0x0, &(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000))
122.940798ms ago: executing program 0 (id=104):
pidfd_open(0x0, 0x0)
122.724168ms ago: executing program 1 (id=105):
symlink(&(0x7f0000000000), &(0x7f0000000000))
120.770803ms ago: executing program 3 (id=106):
getpgrp(0x0)
72.618232ms ago: executing program 2 (id=107):
openat2(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000000), 0x0)
72.434969ms ago: executing program 1 (id=108):
timer_settime(0x0, 0x0, &(0x7f0000000000), 0x0)
72.368414ms ago: executing program 0 (id=109):
ustat(0x0, &(0x7f0000000000))
72.187077ms ago: executing program 3 (id=110):
faccessat(0xffffffffffffffff, &(0x7f0000000000), 0x0)
72.094347ms ago: executing program 1 (id=111):
clone(0x0, &(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000))
exit(0x0)
69.927201ms ago: executing program 2 (id=112):
access$auto(&(0x7f0000000000), 0x0)
63.560758ms ago: executing program 3 (id=113):
removexattrat$auto(0xffffffffffffffff, &(0x7f0000000000), 0x0, &(0x7f0000000000))
58.323203ms ago: executing program 0 (id=114):
setrlimit(0x0, &(0x7f0000000000))
561.723µs ago: executing program 2 (id=115):
brk(0x0)
324.776µs ago: executing program 1 (id=116):
readlinkat(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000000), 0x0)
156.026µs ago: executing program 3 (id=117):
setxattr(&(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000), 0x0, 0x0)
62.491µs ago: executing program 1 (id=118):
sched_getaffinity(0x0, 0x0, &(0x7f0000000000))
0s ago: executing program 1 (id=119):
setfsgid(0x0)
kernel console output (not intermixed with test programs):
Warning: Permanently added '10.128.1.133' (ED25519) to the list of known hosts.
[ 61.776602][ T5817] cgroup: Unknown subsys name 'net'
[ 61.906477][ T5817] cgroup: Unknown subsys name 'cpuset'
[ 61.915661][ T5817] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 63.287120][ T5817] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 65.592784][ C1]
[ 65.595155][ C1] =============================
[ 65.600012][ C1] [ BUG: Invalid wait context ]
[ 65.605067][ C1] 6.13.0-rc2-syzkaller-00036-g231825b2e1ff #0 Not tainted
[ 65.612215][ C1] -----------------------------
[ 65.617080][ C1] syz.0.114/5948 is trying to lock:
[ 65.622291][ C1] ffff88813fffc298 (&zone->lock){-.-.}-{3:3}, at: __rmqueue_pcplist+0x6bb/0x1600
[ 65.631475][ C1] other info that might help us debug this:
[ 65.637355][ C1] context-{2:2}
[ 65.640803][ C1] 4 locks held by syz.0.114/5948:
[ 65.645930][ C1] #0: ffff88807df01f20 (&mm->mmap_lock){++++}-{4:4}, at: exit_mmap+0x10c/0xb20
[ 65.655079][ C1] #1: ffffffff8ddba940 (rcu_read_lock){....}-{1:3}, at: __pte_offset_map+0x42/0x540
[ 65.664652][ C1] #2: ffff888028da3d98 (ptlock_ptr(ptdesc)#2){+.+.}-{3:3}, at: __pte_offset_map_lock+0xf1/0x300
[ 65.675274][ C1] #3: ffff8880b8744d98 (&pcp->lock){+.+.}-{3:3}, at: get_page_from_freelist+0x350/0x2f80
[ 65.685203][ C1] stack backtrace:
[ 65.688921][ C1] CPU: 1 UID: 0 PID: 5948 Comm: syz.0.114 Not tainted 6.13.0-rc2-syzkaller-00036-g231825b2e1ff #0
[ 65.699504][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 65.709707][ C1] Call Trace:
[ 65.713038][ C1]
[ 65.715895][ C1] dump_stack_lvl+0x116/0x1f0
[ 65.720684][ C1] __lock_acquire+0x878/0x3c40
[ 65.725462][ C1] ? __free_zapped_classes+0x2c3/0x2f0
[ 65.730929][ C1] ? mark_lock+0xb5/0xc60
[ 65.735261][ C1] ? __pfx_mark_lock+0x10/0x10
[ 65.740030][ C1] ? hrtimer_reprogram+0x283/0x460
[ 65.745153][ C1] ? __pfx___lock_acquire+0x10/0x10
[ 65.750377][ C1] ? __pfx_mark_lock+0x10/0x10
[ 65.755161][ C1] ? hlock_class+0x4e/0x130
[ 65.759682][ C1] lock_acquire.part.0+0x11b/0x380
[ 65.764796][ C1] ? __rmqueue_pcplist+0x6bb/0x1600
[ 65.769998][ C1] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 65.775628][ C1] ? rcu_is_watching+0x12/0xc0
[ 65.780401][ C1] ? trace_lock_acquire+0x14e/0x1f0
[ 65.785598][ C1] ? __rmqueue_pcplist+0x6bb/0x1600
[ 65.790899][ C1] ? lock_acquire+0x2f/0xb0
[ 65.795399][ C1] ? __rmqueue_pcplist+0x6bb/0x1600
[ 65.800702][ C1] _raw_spin_lock_irqsave+0x3a/0x60
[ 65.805918][ C1] ? __rmqueue_pcplist+0x6bb/0x1600
[ 65.811122][ C1] __rmqueue_pcplist+0x6bb/0x1600
[ 65.816158][ C1] ? __pfx_lock_acquire.part.0+0x10/0x10
[ 65.821787][ C1] ? rcu_is_watching+0x12/0xc0
[ 65.826649][ C1] ? trace_lock_acquire+0x14e/0x1f0
[ 65.831949][ C1] ? do_raw_spin_trylock+0xb1/0x180
[ 65.837160][ C1] ? __pfx___rmqueue_pcplist+0x10/0x10
[ 65.842623][ C1] ? lock_acquire+0x2f/0xb0
[ 65.847234][ C1] ? get_page_from_freelist+0x350/0x2f80
[ 65.852890][ C1] get_page_from_freelist+0x3d2/0x2f80
[ 65.858371][ C1] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 65.864538][ C1] ? __pfx_get_page_from_freelist+0x10/0x10
[ 65.870440][ C1] ? should_fail_alloc_page+0xee/0x130
[ 65.875909][ C1] ? prepare_alloc_pages.constprop.0+0x16f/0x560
[ 65.882238][ C1] __alloc_pages_noprof+0x223/0x25b0
[ 65.887528][ C1] ? hlock_class+0x4e/0x130
[ 65.892123][ C1] ? __pfx___lock_acquire+0x10/0x10
[ 65.897412][ C1] ? mark_lock+0xb5/0xc60
[ 65.901742][ C1] ? __pfx_mark_lock+0x10/0x10
[ 65.906595][ C1] ? mark_lock+0xb5/0xc60
[ 65.910928][ C1] ? __pfx_mark_lock+0x10/0x10
[ 65.915696][ C1] ? __pfx___alloc_pages_noprof+0x10/0x10
[ 65.921416][ C1] ? find_held_lock+0x2d/0x110
[ 65.926185][ C1] ? is_bpf_text_address+0x8a/0x1a0
[ 65.931389][ C1] ? lock_acquire+0x2f/0xb0
[ 65.935889][ C1] ? is_bpf_text_address+0x30/0x1a0
[ 65.941088][ C1] ? bpf_ksym_find+0x124/0x1c0
[ 65.945850][ C1] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 65.951749][ C1] ? policy_nodemask+0xea/0x4e0
[ 65.956605][ C1] alloc_pages_mpol_noprof+0x2c9/0x610
[ 65.962097][ C1] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 65.968265][ C1] stack_depot_save_flags+0x8e0/0x9e0
[ 65.973782][ C1] ? __lock_acquire+0xcc5/0x3c40
[ 65.978833][ C1] kasan_save_stack+0x42/0x60
[ 65.983517][ C1] ? kasan_save_stack+0x33/0x60
[ 65.988365][ C1] ? __kasan_record_aux_stack+0xba/0xd0
[ 65.993915][ C1] ? task_work_add+0xc0/0x3b0
[ 65.998598][ C1] ? run_posix_cpu_timers+0x69f/0x7d0
[ 66.003970][ C1] ? update_process_times+0x1a1/0x2d0
[ 66.009336][ C1] ? tick_nohz_handler+0x376/0x530
[ 66.014457][ C1] ? __hrtimer_run_queues+0x5fb/0xae0
[ 66.019825][ C1] ? hrtimer_interrupt+0x392/0x8e0
[ 66.024934][ C1] ? __sysvec_apic_timer_interrupt+0x10f/0x400
[ 66.031093][ C1] ? sysvec_apic_timer_interrupt+0x9f/0xc0
[ 66.036985][ C1] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 66.043153][ C1] ? write_comp_data+0x11/0x90
[ 66.047920][ C1] ? unmap_page_range+0x1a0a/0x3d40
[ 66.053118][ C1] ? unmap_single_vma+0x194/0x2b0
[ 66.058137][ C1] ? unmap_vmas+0x22f/0x490
[ 66.062634][ C1] ? exit_mmap+0x1c6/0xb20
[ 66.067044][ C1] ? __mmput+0x12a/0x4c0
[ 66.071375][ C1] ? mmput+0x62/0x70
[ 66.075264][ C1] ? do_exit+0x9bf/0x2d70
[ 66.079602][ C1] ? do_group_exit+0xd3/0x2a0
[ 66.084277][ C1] ? __x64_sys_exit_group+0x3e/0x50
[ 66.089500][ C1] ? x64_sys_call+0x151f/0x1720
[ 66.094376][ C1] ? do_syscall_64+0xcd/0x250
[ 66.099060][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 66.105137][ C1] __kasan_record_aux_stack+0xba/0xd0
[ 66.110514][ C1] task_work_add+0xc0/0x3b0
[ 66.115024][ C1] ? __pfx_task_work_add+0x10/0x10
[ 66.120148][ C1] ? lock_acquire.part.0+0x11b/0x380
[ 66.125424][ C1] ? find_held_lock+0x2d/0x110
[ 66.130217][ C1] run_posix_cpu_timers+0x69f/0x7d0
[ 66.135463][ C1] ? __pfx_run_posix_cpu_timers+0x10/0x10
[ 66.141197][ C1] ? sched_balance_trigger+0x225/0xea0
[ 66.146686][ C1] ? __pfx_sched_balance_trigger+0x10/0x10
[ 66.152492][ C1] ? sched_tick+0x286/0x4f0
[ 66.157085][ C1] update_process_times+0x1a1/0x2d0
[ 66.162371][ C1] ? __pfx_update_process_times+0x10/0x10
[ 66.168162][ C1] ? read_tsc+0x9/0x20
[ 66.172239][ C1] ? ktime_get+0x1ac/0x300
[ 66.176670][ C1] tick_nohz_handler+0x376/0x530
[ 66.181617][ C1] ? __pfx_tick_nohz_handler+0x10/0x10
[ 66.187091][ C1] __hrtimer_run_queues+0x5fb/0xae0
[ 66.192295][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10
[ 66.198013][ C1] ? read_tsc+0x9/0x20
[ 66.202086][ C1] hrtimer_interrupt+0x392/0x8e0
[ 66.207200][ C1] __sysvec_apic_timer_interrupt+0x10f/0x400
[ 66.213187][ C1] sysvec_apic_timer_interrupt+0x9f/0xc0
[ 66.218820][ C1]
[ 66.221832][ C1]
[ 66.224767][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 66.230842][ C1] RIP: 0010:write_comp_data+0x11/0x90
[ 66.236215][ C1] Code: cc cc cc cc 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 49 89 d2 49 89 f8 49 89 f1 65 48 8b 15 bf 9b 6a 7e <65> 8b 05 c0 9b 6a 7e a9 00 01 ff 00 74 1d f6 c4 01 74 67 a9 00 00
[ 66.255826][ C1] RSP: 0018:ffffc9000433f888 EFLAGS: 00000246
[ 66.261894][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff81e2c81a
[ 66.269859][ C1] RDX: ffff88807b435a00 RSI: 0000000000000000 RDI: 0000000000000005
[ 66.277829][ C1] RBP: 0000000000000002 R08: 0000000000000005 R09: 0000000000000000
[ 66.285798][ C1] R10: 0000000000000002 R11: 0000000000000003 R12: dffffc0000000000
[ 66.293916][ C1] R13: 00007fa58e0b5000 R14: ffffea0001d88a80 R15: ffffc9000433fcc8
[ 66.301912][ C1] ? unmap_page_range+0x1a0a/0x3d40
[ 66.307134][ C1] unmap_page_range+0x1a0a/0x3d40
[ 66.312168][ C1] ? __pfx_unmap_page_range+0x10/0x10
[ 66.317567][ C1] ? mas_next_slot+0xf00/0x1620
[ 66.322422][ C1] ? uprobe_munmap+0x20/0x5c0
[ 66.327102][ C1] unmap_single_vma+0x194/0x2b0
[ 66.332051][ C1] unmap_vmas+0x22f/0x490
[ 66.336382][ C1] ? __pfx_unmap_vmas+0x10/0x10
[ 66.341233][ C1] ? __pfx_lock_release+0x10/0x10
[ 66.346265][ C1] ? lock_acquire+0x2f/0xb0
[ 66.350860][ C1] ? mlock_drain_local+0x6f/0x4f0
[ 66.355889][ C1] exit_mmap+0x1c6/0xb20
[ 66.360155][ C1] ? __pfx_exit_mmap+0x10/0x10
[ 66.364947][ C1] ? __pfx_mark_lock+0x10/0x10
[ 66.369731][ C1] __mmput+0x12a/0x4c0
[ 66.373810][ C1] mmput+0x62/0x70
[ 66.377536][ C1] do_exit+0x9bf/0x2d70
[ 66.381691][ C1] ? do_group_exit+0x1c3/0x2a0
[ 66.386460][ C1] ? __pfx_lock_release+0x10/0x10
[ 66.391487][ C1] ? do_raw_spin_lock+0x12d/0x2c0
[ 66.396516][ C1] ? __pfx_do_exit+0x10/0x10
[ 66.401102][ C1] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 66.406472][ C1] do_group_exit+0xd3/0x2a0
[ 66.410979][ C1] __x64_sys_exit_group+0x3e/0x50
[ 66.416014][ C1] x64_sys_call+0x151f/0x1720
[ 66.420881][ C1] do_syscall_64+0xcd/0x250
[ 66.425404][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 66.431325][ C1] RIP: 0033:0x7fa58df85d19
[ 66.435750][ C1] Code: Unable to access opcode bytes at 0x7fa58df85cef.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 66.442761][ C1] RSP: 002b:00007ffd067f71d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 66.451178][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa58df85d19
[ 66.459324][ C1] RDX: ffffffffffffffff RSI: ffffffffffffffff RDI: 0000000000000000
[ 66.467376][ C1] RBP: 00007ffd067f722c R08: 0000000000000001 R09: 000000000000ffe8
[ 66.475513][ C1] R10: 00007fa58de00000 R11: 0000000000000246 R12: 0000000000000032
[ 66.483476][ C1] R13: 000000000000ffe8 R14: 00007ffd067f7280 R15: 00007ffd067f7280
[ 66.491652][ C1]
[ 71.764169][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.770468][ T1295] ieee802154 phy1 wpan1: encryption failed: -22