last executing test programs:

kernel console output (not intermixed with test programs):

[   73.607876][   T40] audit: type=1400 audit(1776714899.725:61): avc:  denied  { siginh } for  pid=5852 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '[localhost]:52584' (ED25519) to the list of known hosts.
[   75.484297][   T40] audit: type=1400 audit(1776714901.615:62): avc:  denied  { name_bind } for  pid=5862 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1
[   75.518695][   T40] audit: type=1400 audit(1776714901.655:63): avc:  denied  { execute } for  pid=5863 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   75.525466][   T40] audit: type=1400 audit(1776714901.655:64): avc:  denied  { execute_no_trans } for  pid=5863 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   77.911018][   T40] audit: type=1400 audit(1776714904.045:65): avc:  denied  { mounton } for  pid=5863 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   77.919297][   T40] audit: type=1400 audit(1776714904.055:66): avc:  denied  { mount } for  pid=5863 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   77.921394][ T5863] cgroup: Unknown subsys name 'net'
[   78.118974][ T5863] cgroup: Unknown subsys name 'cpuset'
[   78.123651][ T5863] cgroup: Unknown subsys name 'rlimit'
[   78.267779][ T5886] 
[   78.268928][ T5886] =====================================
[   78.271435][ T5886] WARNING: bad unlock balance detected!
[   78.273849][ T5886] syzkaller #0 Not tainted
[   78.275774][ T5886] -------------------------------------
[   78.278068][ T5886] dhcpcd-run-hook/5886 is trying to release lock (rcu_read_lock) at:
[   78.281468][ T5886] [<ffffffff825b687c>] __zap_vma_range+0x22dc/0x4bf0
[   78.284329][ T5886] but there are no more locks to release!
[   78.286764][ T5886] 
[   78.286764][ T5886] other info that might help us debug this:
[   78.290142][ T5886] 1 lock held by dhcpcd-run-hook/5886:
[   78.292487][ T5886]  #0: ffff88802b94b438 (&mm->mmap_lock){++++}-{4:4}, at: exit_mmap+0x124/0xa10
[   78.296311][ T5886] 
[   78.296311][ T5886] stack backtrace:
[   78.298858][ T5886] CPU: 2 UID: 0 PID: 5886 Comm: dhcpcd-run-hook Not tainted syzkaller #0 PREEMPT(full) 
[   78.298879][ T5886] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   78.298889][ T5886] Call Trace:
[   78.298963][ T5886]  <TASK>
[   78.298971][ T5886]  dump_stack_lvl+0x100/0x190
[   78.298994][ T5886]  ? __zap_vma_range+0x22dc/0x4bf0
[   78.299012][ T5886]  print_unlock_imbalance_bug.part.0+0xfb/0x106
[   78.299039][ T5886]  ? __zap_vma_range+0x22dc/0x4bf0
[   78.299053][ T5886]  lock_release+0x28d/0x310
[   78.299075][ T5886]  __zap_vma_range+0x22e1/0x4bf0
[   78.299099][ T5886]  ? __pfx___zap_vma_range+0x10/0x10
[   78.299117][ T5886]  ? find_held_lock+0x2b/0x80
[   78.299135][ T5886]  unmap_vmas+0x299/0x5f0
[   78.299152][ T5886]  ? __pfx_unmap_vmas+0x10/0x10
[   78.299167][ T5886]  ? mas_next_slot+0x10a3/0x1960
[   78.299190][ T5886]  exit_mmap+0x1ef/0xa10
[   78.299209][ T5886]  ? __pfx_exit_mmap+0x10/0x10
[   78.299226][ T5886]  ? trace_contention_end+0x122/0x170
[   78.299249][ T5886]  ? uprobe_clear_state+0x5f/0x260
[   78.299272][ T5886]  ? uprobe_clear_state+0x5f/0x260
[   78.299296][ T5886]  ? __lock_acquire+0x4a5/0x2630
[   78.299323][ T5886]  ? arch_uprobe_clear_state+0x107/0x150
[   78.299347][ T5886]  __mmput+0x12a/0x410
[   78.299371][ T5886]  mmput+0x67/0x80
[   78.299390][ T5886]  do_exit+0x833/0x2a60
[   78.299408][ T5886]  ? do_raw_spin_lock+0x128/0x260
[   78.299429][ T5886]  ? __pfx_do_exit+0x10/0x10
[   78.299444][ T5886]  ? do_group_exit+0x1bd/0x2a0
[   78.299460][ T5886]  ? rcu_is_watching+0x12/0xc0
[   78.299484][ T5886]  do_group_exit+0xd5/0x2a0
[   78.299498][ T5886]  __x64_sys_exit_group+0x3e/0x50
[   78.299514][ T5886]  x64_sys_call+0x102c/0x1530
[   78.299535][ T5886]  do_syscall_64+0x10b/0xf80
[   78.299551][ T5886]  ? clear_bhb_loop+0x40/0x90
[   78.299570][ T5886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.299587][ T5886] RIP: 0033:0x7f4a27bab6c5
[   78.299600][ T5886] Code: Unable to access opcode bytes at 0x7f4a27bab69b.
[   78.299726][ T5886] RSP: 002b:00007ffe0faf6ed8 EFLAGS: 00000202 ORIG_RAX: 00000000000000e7
[   78.299740][ T5886] RAX: ffffffffffffffda RBX: 00007ffe0faf7104 RCX: 00007f4a27bab6c5
[   78.299750][ T5886] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000000
[   78.299760][ T5886] RBP: 0000000000000003 R08: 00007ffe0faf6fd0 R09: 0000000000000002
[   78.299769][ T5886] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[   78.299778][ T5886] R13: 00007ffe0faf7210 R14: 00007f4a27dbb000 R15: 00005576e2150d98
[   78.299793][ T5886]  </TASK>
[   78.379427][ T5886] ------------[ cut here ]------------
[   78.381158][ T5886] rrln < 0 || rrln > RCU_NEST_PMAX
[   78.381165][ T5886] WARNING: kernel/rcu/tree_plugin.h:443 at __rcu_read_unlock+0x235/0x5e0, CPU#2: dhcpcd-run-hook/5886
[   78.386565][ T5886] Modules linked in:
[   78.387905][ T5886] CPU: 2 UID: 0 PID: 5886 Comm: dhcpcd-run-hook Not tainted syzkaller #0 PREEMPT(full) 
[   78.390864][ T5886] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   78.394084][ T5886] RIP: 0010:__rcu_read_unlock+0x235/0x5e0
[   78.396165][ T5886] Code: 74 11 c7 45 58 01 00 00 00 bf 09 00 00 00 e8 d2 70 da ff e8 cd fd 22 00 9c 58 f6 c4 02 0f 85 dd 02 00 00 fb e9 57 fe ff ff 90 <0f> 0b 90 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc e8 a4 74 88
[   78.402244][ T5886] RSP: 0018:ffffc90003387778 EFLAGS: 00010286
[   78.404196][ T5886] RAX: 00000000ffffffff RBX: ffff888025320000 RCX: ffffffff81e8a36e
[   78.406862][ T5886] RDX: 0000000000000000 RSI: ffffffff8df30d5f RDI: ffff8880253204c4
[   78.409366][ T5886] RBP: 0000000000000004 R08: 0000000000000005 R09: 0000000000000000
[   78.411820][ T5886] R10: 0000000080000000 R11: 0000000000000001 R12: ffff88802b94b9b8
[   78.414232][ T5886] R13: fffffbfff21b8360 R14: 0000000000000000 R15: 00007f4a27cba000
[   78.416839][ T5886] FS:  0000000000000000(0000) GS:ffff8880d64e7000(0000) knlGS:0000000000000000
[   78.419575][ T5886] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   78.421650][ T5886] CR2: 00007ffe0faf6018 CR3: 0000000037c7b000 CR4: 0000000000352ef0
[   78.424051][ T5886] Call Trace:
[   78.425241][ T5886]  <TASK>
[   78.427088][ T5886]  __zap_vma_range+0x22e6/0x4bf0
[   78.433235][ T5886]  ? __pfx___zap_vma_range+0x10/0x10
[   78.436534][ T5886]  ? find_held_lock+0x2b/0x80
[   78.439708][ T5886]  unmap_vmas+0x299/0x5f0
[   78.442569][ T5886]  ? __pfx_unmap_vmas+0x10/0x10
[   78.444932][ T5886]  ? mas_next_slot+0x10a3/0x1960
[   78.449817][ T5886]  exit_mmap+0x1ef/0xa10
[   78.459887][ T5886]  ? __pfx_exit_mmap+0x10/0x10
[   78.461771][ T5886]  ? trace_contention_end+0x122/0x170
[   78.464579][ T5886]  ? uprobe_clear_state+0x5f/0x260
[   78.466420][ T5888] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   78.470060][ T5886]  ? uprobe_clear_state+0x5f/0x260
[   78.567957][ T5886]  ? __lock_acquire+0x4a5/0x2630
[   78.571945][ T5886]  ? arch_uprobe_clear_state+0x107/0x150
[   78.575041][ T5886]  __mmput+0x12a/0x410
[   78.577652][ T5886]  mmput+0x67/0x80
[   78.579278][ T5886]  do_exit+0x833/0x2a60
[   78.581571][ T5886]  ? do_raw_spin_lock+0x128/0x260
[   78.583546][ T5886]  ? __pfx_do_exit+0x10/0x10
[   78.585164][ T5886]  ? do_group_exit+0x1bd/0x2a0
[   78.587287][ T5886]  ? rcu_is_watching+0x12/0xc0
[   78.590036][ T5886]  do_group_exit+0xd5/0x2a0
[   78.592331][ T5886]  __x64_sys_exit_group+0x3e/0x50
[   78.594182][ T5886]  x64_sys_call+0x102c/0x1530
[   78.595991][ T5886]  do_syscall_64+0x10b/0xf80
[   78.597631][ T5886]  ? clear_bhb_loop+0x40/0x90
[   78.599913][ T5886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.601953][ T5886] RIP: 0033:0x7f4a27bab6c5
[   78.603457][ T5886] Code: Unable to access opcode bytes at 0x7f4a27bab69b.
[   78.605628][ T5886] RSP: 002b:00007ffe0faf6ed8 EFLAGS: 00000202 ORIG_RAX: 00000000000000e7
[   78.608320][ T5886] RAX: ffffffffffffffda RBX: 00007ffe0faf7104 RCX: 00007f4a27bab6c5
[   78.610730][ T5886] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000000
[   78.613211][ T5886] RBP: 0000000000000003 R08: 00007ffe0faf6fd0 R09: 0000000000000002
[   78.615659][ T5886] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[   78.618222][ T5886] R13: 00007ffe0faf7210 R14: 00007f4a27dbb000 R15: 00005576e2150d98
[   78.623193][ T5886]  </TASK>
[   78.624188][ T5886] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   78.626453][ T5886] CPU: 2 UID: 0 PID: 5886 Comm: dhcpcd-run-hook Not tainted syzkaller #0 PREEMPT(full) 
[   78.629418][ T5886] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   78.632705][ T5886] Call Trace:
[   78.633896][ T5886]  <TASK>
[   78.634958][ T5886]  dump_stack_lvl+0x100/0x190
[   78.637240][ T5886]  vpanic+0x552/0x970
[   78.638937][ T5886]  ? __pfx_vpanic+0x10/0x10
[   78.642370][ T5886]  panic+0xd1/0xe0
[   78.643994][ T5886]  ? __pfx_panic+0x10/0x10
[   78.647499][ T5886]  ? check_panic_on_warn+0x1f/0x90
[   78.649857][ T5886]  check_panic_on_warn.cold+0x19/0x34
[   78.651994][ T5886]  ? __rcu_read_unlock+0x235/0x5e0
[   78.653751][ T5886]  __warn.cold+0x191/0x328
[   78.656204][ T5886]  __report_bug+0x296/0x3d0
[   78.657814][ T5886]  ? __rcu_read_unlock+0x235/0x5e0
[   78.660145][ T5886]  ? __pfx___report_bug+0x10/0x10
[   78.663345][ T5886]  ? __pfx___schedule+0x10/0x10
[   78.665597][ T5886]  ? preempt_schedule_irq+0x7b/0x90
[   78.667829][ T5886]  ? __rcu_read_unlock+0x235/0x5e0
[   78.669894][ T5886]  report_bug+0xb2/0x220
[   78.671647][ T5886]  ? __rcu_read_unlock+0x235/0x5e0
[   78.673665][ T5886]  handle_bug+0x16a/0x2a0
[   78.675618][ T5886]  exc_invalid_op+0x17/0x50
[   78.677530][ T5886]  asm_exc_invalid_op+0x1a/0x20
[   78.679225][ T5886] RIP: 0010:__rcu_read_unlock+0x235/0x5e0
[   78.681121][ T5886] Code: 74 11 c7 45 58 01 00 00 00 bf 09 00 00 00 e8 d2 70 da ff e8 cd fd 22 00 9c 58 f6 c4 02 0f 85 dd 02 00 00 fb e9 57 fe ff ff 90 <0f> 0b 90 5b 5d 41 5c 41 5d 41 5e 41 5f c3 cc cc cc cc e8 a4 74 88
[   78.686913][ T5886] RSP: 0018:ffffc90003387778 EFLAGS: 00010286
[   78.688978][ T5886] RAX: 00000000ffffffff RBX: ffff888025320000 RCX: ffffffff81e8a36e
[   78.691495][ T5886] RDX: 0000000000000000 RSI: ffffffff8df30d5f RDI: ffff8880253204c4
[   78.694007][ T5886] RBP: 0000000000000004 R08: 0000000000000005 R09: 0000000000000000
[   78.696530][ T5886] R10: 0000000080000000 R11: 0000000000000001 R12: ffff88802b94b9b8
[   78.698985][ T5886] R13: fffffbfff21b8360 R14: 0000000000000000 R15: 00007f4a27cba000
[   78.702848][ T5886]  ? nbcon_cpu_emergency_exit+0x11e/0x1e0
[   78.706719][ T5886]  __zap_vma_range+0x22e6/0x4bf0
[   78.713451][ T5886]  ? __pfx___zap_vma_range+0x10/0x10
[   78.716788][ T5886]  ? find_held_lock+0x2b/0x80
[   78.720169][ T5886]  unmap_vmas+0x299/0x5f0
[   78.723106][ T5886]  ? __pfx_unmap_vmas+0x10/0x10
[   78.725578][ T5886]  ? mas_next_slot+0x10a3/0x1960
[   78.730765][ T5886]  exit_mmap+0x1ef/0xa10
[   78.733206][ T5886]  ? __pfx_exit_mmap+0x10/0x10
[   78.735113][ T5886]  ? trace_contention_end+0x122/0x170
[   78.738114][ T5886]  ? uprobe_clear_state+0x5f/0x260
[   78.740010][ T5886]  ? uprobe_clear_state+0x5f/0x260
[   78.743514][ T5886]  ? __lock_acquire+0x4a5/0x2630
[   78.747867][ T5886]  ? arch_uprobe_clear_state+0x107/0x150
[   78.751159][ T5886]  __mmput+0x12a/0x410
[   78.753320][ T5886]  mmput+0x67/0x80
[   78.755187][ T5886]  do_exit+0x833/0x2a60
[   78.757632][ T5886]  ? do_raw_spin_lock+0x128/0x260
[   78.759612][ T5886]  ? __pfx_do_exit+0x10/0x10
[   78.761243][ T5886]  ? do_group_exit+0x1bd/0x2a0
[   78.763271][ T5886]  ? rcu_is_watching+0x12/0xc0
[   78.766193][ T5886]  do_group_exit+0xd5/0x2a0
[   78.768593][ T5886]  __x64_sys_exit_group+0x3e/0x50
[   78.770516][ T5886]  x64_sys_call+0x102c/0x1530
[   78.772251][ T5886]  do_syscall_64+0x10b/0xf80
[   78.773919][ T5886]  ? clear_bhb_loop+0x40/0x90
[   78.776313][ T5886]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.778431][ T5886] RIP: 0033:0x7f4a27bab6c5
[   78.779999][ T5886] Code: Unable to access opcode bytes at 0x7f4a27bab69b.
[   78.782201][ T5886] RSP: 002b:00007ffe0faf6ed8 EFLAGS: 00000202 ORIG_RAX: 00000000000000e7
[   78.784836][ T5886] RAX: ffffffffffffffda RBX: 00007ffe0faf7104 RCX: 00007f4a27bab6c5
[   78.787363][ T5886] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000000
[   78.789871][ T5886] RBP: 0000000000000003 R08: 00007ffe0faf6fd0 R09: 0000000000000002
[   78.792387][ T5886] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[   78.794869][ T5886] R13: 00007ffe0faf7210 R14: 00007f4a27dbb000 R15: 00005576e2150d98
[   78.800254][ T5886]  </TASK>
[   78.802023][ T5886] Kernel Offset: disabled
[   78.803537][ T5886] Rebooting in 86400 seconds..