[   63.405558][    C0] 
[   63.406715][    C0] =============================
[   63.408464][    C0] [ BUG: Invalid wait context ]
[   63.410193][    C0] 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0 Not tainted
[   63.412841][    C0] -----------------------------
[   63.414650][    C0] sshd/5214 is trying to lock:
[   63.416726][    C0] ffffffff8ea6dd58 (stack_list_lock){-.-.}-{3:3}, at: __set_page_owner+0x5cb/0x800
[   63.420841][    C0] other info that might help us debug this:
[   63.423521][    C0] context-{2:2}
[   63.424935][    C0] 4 locks held by sshd/5214:
[   63.426616][    C0]  #0: ffff888035a923d0 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x34b/0x790
[   63.430242][    C0]  #1: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: ___pte_offset_map+0x82/0x380
[   63.433847][    C0]  #2: ffff88801ef82af8 (ptlock_ptr(ptdesc)#2){+.+.}-{3:3}, at: __pte_offset_map_lock+0x1ba/0x300
[   63.437850][    C0]  #3: ffff88801fc3e8d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[   63.441574][    C0] stack backtrace:
[   63.443067][    C0] CPU: 0 UID: 0 PID: 5214 Comm: sshd Not tainted 6.13.0-rc7-syzkaller-00191-gfda5e3f28400 #0
[   63.446918][    C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   63.451063][    C0] Call Trace:
[   63.452589][    C0]  <IRQ>
[   63.453852][    C0]  dump_stack_lvl+0x241/0x360
[   63.455738][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[   63.457742][    C0]  ? __pfx__printk+0x10/0x10
[   63.459579][    C0]  ? stack_trace_save+0x118/0x1d0
[   63.461541][    C0]  __lock_acquire+0x15a8/0x2100
[   63.463395][    C0]  lock_acquire+0x1ed/0x550
[   63.465146][    C0]  ? __set_page_owner+0x5cb/0x800
[   63.467113][    C0]  ? handle_pte_fault+0x488b/0x5ed0
[   63.469132][    C0]  ? handle_mm_fault+0x1106/0x1bb0
[   63.471071][    C0]  ? exc_page_fault+0x459/0x8b0
[   63.473228][    C0]  ? __pfx_lock_acquire+0x10/0x10
[   63.475369][    C0]  _raw_spin_lock_irqsave+0xd5/0x120
[   63.477353][    C0]  ? __set_page_owner+0x5cb/0x800
[   63.479358][    C0]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[   63.481655][    C0]  ? __kmalloc_cache_noprof+0x243/0x390
[   63.483681][    C0]  ? __set_page_owner+0x55f/0x800
[   63.485602][    C0]  __set_page_owner+0x5cb/0x800
[   63.487428][    C0]  ? __pfx___set_page_owner+0x10/0x10
[   63.489445][    C0]  post_alloc_hook+0x1f3/0x230
[   63.491218][    C0]  get_page_from_freelist+0x365c/0x37a0
[   63.493528][    C0]  __alloc_pages_noprof+0x292/0x710
[   63.495410][    C0]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   63.497526][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   63.499752][    C0]  ? __kernel_text_address+0xd/0x40
[   63.501719][    C0]  ? unwind_get_return_address+0x4d/0x90
[   63.503734][    C0]  alloc_pages_mpol_noprof+0x3e1/0x780
[   63.505742][    C0]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   63.507871][    C0]  ? stack_trace_save+0x118/0x1d0
[   63.509775][    C0]  ? alloc_pages_noprof+0x43/0x170
[   63.511844][    C0]  stack_depot_save_flags+0x72d/0x940
[   63.513847][    C0]  kasan_save_stack+0x4f/0x60
[   63.515551][    C0]  ? kasan_save_stack+0x3f/0x60
[   63.517287][    C0]  ? __kasan_record_aux_stack+0xac/0xc0
[   63.519113][    C0]  ? task_work_add+0xd9/0x490
[   63.520645][    C0]  ? task_tick_fair+0x58c/0x7b0
[   63.522517][    C0]  ? sched_tick+0x21e/0x660
[   63.524156][    C0]  ? update_process_times+0x276/0x2f0
[   63.526132][    C0]  ? tick_nohz_handler+0x37c/0x500
[   63.528095][    C0]  ? __hrtimer_run_queues+0x551/0xd30
[   63.530110][    C0]  ? hrtimer_interrupt+0x403/0xa40
[   63.531984][    C0]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[   63.534639][    C0]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[   63.537046][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   63.539338][    C0]  ? folio_add_lru_vma+0x4/0x120
[   63.541150][    C0]  ? handle_pte_fault+0x488b/0x5ed0
[   63.543168][    C0]  ? handle_mm_fault+0x1106/0x1bb0
[   63.545045][    C0]  ? exc_page_fault+0x459/0x8b0
[   63.546770][    C0]  ? asm_exc_page_fault+0x26/0x30
[   63.548662][    C0]  ? __phys_addr+0xba/0x170
[   63.550444][    C0]  __kasan_record_aux_stack+0xac/0xc0
[   63.552458][    C0]  task_work_add+0xd9/0x490
[   63.554161][    C0]  ? __pfx_task_work_add+0x10/0x10
[   63.556134][    C0]  task_tick_fair+0x58c/0x7b0
[   63.557939][    C0]  sched_tick+0x21e/0x660
[   63.559575][    C0]  update_process_times+0x276/0x2f0
[   63.561633][    C0]  tick_nohz_handler+0x37c/0x500
[   63.563404][    C0]  ? __pfx_tick_nohz_handler+0x10/0x10
[   63.565334][    C0]  __hrtimer_run_queues+0x551/0xd30
[   63.567241][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[   63.569360][    C0]  ? kvm_clock_get_cycles+0x52/0x70
[   63.571341][    C0]  ? ktime_get_update_offsets_now+0x393/0x3b0
[   63.573586][    C0]  hrtimer_interrupt+0x403/0xa40
[   63.575514][    C0]  __sysvec_apic_timer_interrupt+0x110/0x420
[   63.577722][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[   63.579792][    C0]  </IRQ>
[   63.580878][    C0]  <TASK>
[   63.582079][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   63.584332][    C0] RIP: 0010:folio_add_lru_vma+0x4/0x120
[   63.586381][    C0] Code: 5d fe ff ff e8 ad 34 c3 ff e8 08 0a 2e ff e9 1f fc ff ff 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 <41> 57 41 56 41 54 53 49 89 f7 49 89 fe 49 bc 00 00 00 00 00 fc ff
[   63.594044][    C0] RSP: 0000:ffffc9000d1cf958 EFLAGS: 00000286
[   63.596298][    C0] RAX: ffffffff81f307a4 RBX: ffffea000116b8c0 RCX: ffff888000bfc880
[   63.599192][    C0] RDX: 0000000000000000 RSI: ffff8880409543e0 RDI: ffffea000116b8c0
[   63.602140][    C0] RBP: ffffc9000d1cfc70 R08: ffffffff81f30799 R09: 1ffffd400022d718
[   63.605094][    C0] R10: dffffc0000000000 R11: fffff9400022d719 R12: dffffc0000000000
[   63.608118][    C0] R13: ffffc9000d1cfe58 R14: 0000000000000000 R15: ffff8880409543e0
[   63.611067][    C0]  ? folio_add_new_anon_rmap+0x839/0x1a30
[   63.613231][    C0]  ? folio_add_new_anon_rmap+0x844/0x1a30
[   63.615237][    C0]  handle_pte_fault+0x488b/0x5ed0
[   63.617129][    C0]  ? __pfx_handle_pte_fault+0x10/0x10
[   63.619005][    C0]  ? __lock_acquire+0x1397/0x2100
[   63.620901][    C0]  ? reacquire_held_locks+0x3eb/0x690
[   63.622944][    C0]  ? lock_vma_under_rcu+0x34b/0x790
[   63.624726][    C0]  ? __pfx_reacquire_held_locks+0x10/0x10
[   63.626910][    C0]  handle_mm_fault+0x1106/0x1bb0
[   63.628840][    C0]  ? __pfx_handle_mm_fault+0x10/0x10
[   63.630784][    C0]  ? lock_vma_under_rcu+0x602/0x790
[   63.632603][    C0]  ? lock_vma_under_rcu+0x1dd/0x790
[   63.634342][    C0]  ? exc_page_fault+0x113/0x8b0
[   63.635909][    C0]  exc_page_fault+0x459/0x8b0
[   63.637559][    C0]  asm_exc_page_fault+0x26/0x30
[   63.639134][    C0] RIP: 0033:0x55c4c45f3823
[   63.640581][    C0] Code: 4c 89 ed 4c 89 e7 f3 aa eb 48 4c 89 e7 e8 95 48 f7 ff 48 89 c5 48 85 c0 74 38 48 89 c7 4c 89 ee 4d 39 f4 76 11 4c 89 f1 31 c0 <f3> a4 4c 89 e1 4c 29 f1 f3 aa eb 05 4c 89 e1 f3 a4 4c 89 ef 48 83
[   63.647968][    C0] RSP: 002b:00007ffde1ee94f0 EFLAGS: 00010246
[   63.650179][    C0] RAX: 0000000000000000 RBX: 00000000003b8000 RCX: 00000000000ff010
[   63.653206][    C0] RDX: 0000000000000002 RSI: 00007f731874f000 RDI: 00007f7318396000
[   63.656217][    C0] RBP: 00007f73180e5010 R08: 00007f73180e5010 R09: 0000000000000000
[   63.659251][    C0] R10: 0000000000000022 R11: 0000000000000246 R12: 00000000003b8000
[   63.662316][    C0] R13: 00007f731849e010 R14: 00000000003b0000 R15: 00007ffde1ee96a8
[   63.665416][    C0]  </TASK>
Warning: Permanently added '[localhost]:32917' (ED25519) to the list of known hosts.
2025/01/19 18:05:20 ignoring optional flag "sandboxArg"="0"
2025/01/19 18:05:20 parsed 1 programs
[   71.996182][ T5308] cgroup: Unknown subsys name 'net'
[   72.057713][ T5308] cgroup: Unknown subsys name 'cpuset'
[   72.061162][ T5308] cgroup: Unknown subsys name 'rlimit'
[   73.211373][ T5308] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   76.126719][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.129877][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.225554][ T1035] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.228473][ T1035] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.319327][ T5323] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   76.370522][ T1309] ieee802154 phy0 wpan0: encryption failed: -22
[   76.373142][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[   76.735667][ T5324] syz-executor (5324) used greatest stack depth: 18384 bytes left
[   77.205344][ T5367] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.208232][ T5367] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.210970][ T5367] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.214268][ T5367] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.217723][ T5367] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   77.220205][ T5367] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   78.039065][ T5345] chnl_net:caif_netlink_parms(): no params data found

VM DIAGNOSIS:
18:05:19  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000000 RCX=ffffffff817ae7d0 RDX=0000000000000000
RSI=0000000000000008 RDI=ffffffff9019b430 RBP=ffffc9000d27f138 RSP=ffffc9000d27eff8
R8 =ffffffff81ae9344 R9 =1ffffffff2033686 R10=dffffc0000000000 R11=fffffbfff2033687
R12=1ffff92001a4fe0c R13=ffffffff81ae9176 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff8205d620 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88801fc00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00005641067ee210 CR3=000000000e736000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000ffff3f01 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000002
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 62b907a562b907a5 62b907a562b907a5 62b907a562b907a5 62b907a562b907a5
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 74480a0474480a04 74480a0474480a04 74480a0474480a04 74480a0474480a04
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ab69ec78ab69ec78 ab69ec78ab69ec78 ab69ec78ab69ec78 ab69ec78ab69ec78
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 73be3e4073be3e40 73be3e4073be3e40 73be3e4073be3e40 73be3e4073be3e40
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 39771a2039771a20 39771a2039771a20 39771a2039771a20 39771a2039771a20
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 889e6171889e6171 889e6171889e6171 889e6171889e6171 889e6171889e6171
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6772d6126772d612 6772d6126772d612 6772d6126772d612 6772d6126772d612
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000001800000016 0000001400000012 0000001700000015 0000001300000011
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0c0000000c000000 0c0000000c000000 0c0000000c000000 0c0000000c000000