last executing test programs:

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:1958' (ED25519) to the list of known hosts.
[   49.415858][ T5864] cgroup: Unknown subsys name 'net'
[   49.586534][ T5864] cgroup: Unknown subsys name 'cpuset'
[   49.595168][ T5864] cgroup: Unknown subsys name 'rlimit'
[   49.599179][ T5927] 
[   49.600208][ T5927] ================================================
[   49.603162][ T5927] WARNING: lock held when returning to user space!
[   49.606144][ T5927] syzkaller #0 Not tainted
[   49.608239][ T5927] ------------------------------------------------
[   49.611422][ T5927] rm/5927 is leaving the kernel with locks still held!
[   49.614742][ T5927] 1 lock held by rm/5927:
[   49.616850][ T5927]  #0: ffffffff8e7e5260 (rcu_read_lock){....}-{1:3}, at: __pte_offset_map+0x2f/0x310
[   49.621519][ T5927] BUG: sleeping function called from invalid context at ./include/linux/sched/mm.h:323
[   49.626085][ T5927] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 5927, name: rm
[   49.630841][ T5927] preempt_count: 0, expected: 0
[   49.633573][ T5927] RCU nest depth: 1, expected: 0
[   49.635766][ T5927] INFO: lockdep is turned off.
[   49.637906][ T5927] CPU: 1 UID: 0 PID: 5927 Comm: rm Not tainted syzkaller #0 PREEMPT(full) 
[   49.637929][ T5927] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   49.637983][ T5927] Call Trace:
[   49.638022][ T5927]  <TASK>
[   49.638029][ T5927]  dump_stack_lvl+0x100/0x190
[   49.638052][ T5927]  __might_resched.cold+0x1ec/0x232
[   49.638081][ T5927]  ? __pfx___might_resched+0x10/0x10
[   49.638102][ T5927]  ? lock_release+0x245/0x310
[   49.638118][ T5927]  prepare_alloc_pages+0x44a/0x5f0
[   49.638142][ T5927]  __alloc_frozen_pages_noprof+0x19a/0x2bc0
[   49.638169][ T5927]  ? cpu_util.constprop.0+0x1a7/0x370
[   49.638194][ T5927]  ? update_sd_lb_stats.constprop.0+0x13ab/0x3360
[   49.638222][ T5927]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   49.638249][ T5927]  ? rcu_is_watching+0x12/0xc0
[   49.638269][ T5927]  ? page_table_check_set+0x477/0x920
[   49.638289][ T5927]  ? rcu_is_watching+0x12/0xc0
[   49.638310][ T5927]  ? page_table_check_set+0x486/0x920
[   49.638328][ T5927]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   49.638354][ T5927]  ? policy_nodemask+0xed/0x4f0
[   49.638373][ T5927]  alloc_pages_mpol+0x1fb/0x540
[   49.638394][ T5927]  ? __pfx_alloc_pages_mpol+0x10/0x10
[   49.638412][ T5927]  ? filemap_map_pages+0x15ac/0x2140
[   49.638438][ T5927]  ? filemap_map_pages+0x950/0x2140
[   49.638462][ T5927]  ? rcu_is_watching+0x12/0xc0
[   49.638482][ T5927]  ? filemap_map_pages+0x950/0x2140
[   49.638506][ T5927]  ? lock_release+0x245/0x310
[   49.638523][ T5927]  folio_alloc_mpol_noprof+0x36/0x260
[   49.638546][ T5927]  vma_alloc_folio_noprof+0xed/0x1d0
[   49.638567][ T5927]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   49.638590][ T5927]  ? rcu_read_unlock+0x2d/0xb0
[   49.638615][ T5927]  ? lock_release+0x245/0x310
[   49.638632][ T5927]  do_wp_page+0x1ee1/0x4350
[   49.638655][ T5927]  ? rcu_is_watching+0x12/0xc0
[   49.638676][ T5927]  ? __pfx_do_wp_page+0x10/0x10
[   49.638697][ T5927]  ? __pfx_do_raw_spin_lock+0x10/0x10
[   49.638716][ T5927]  ? __pte_offset_map+0x50/0x310
[   49.638736][ T5927]  __handle_mm_fault+0x1ab6/0x2a00
[   49.638763][ T5927]  ? __pfx___handle_mm_fault+0x10/0x10
[   49.638786][ T5927]  ? __pfx_vma_start_read+0x10/0x10
[   49.638810][ T5927]  ? rcu_is_watching+0x12/0xc0
[   49.638832][ T5927]  ? count_memcg_events_mm.constprop.0+0xfa/0x2a0
[   49.638853][ T5927]  handle_mm_fault+0x36d/0xa20
[   49.638878][ T5927]  do_user_addr_fault+0x5a3/0x12f0
[   49.638901][ T5927]  exc_page_fault+0x6f/0xd0
[   49.638929][ T5927]  asm_exc_page_fault+0x26/0x30
[   49.638947][ T5927] RIP: 0033:0x7f414273e418
[   49.638963][ T5927] Code: fe ff ff 0f 1f 80 00 00 00 00 48 85 f6 0f 84 af 00 00 00 41 f6 85 56 03 00 00 20 0f 85 a1 00 00 00 49 8b 45 60 48 85 c0 74 04 <48> 01 70 08 49 8b 45 58 48 85 c0 74 04 48 01 70 08 49 8b 45 68 48
[   49.638980][ T5927] RSP: 002b:00007ffe638c10d0 EFLAGS: 00010202
[   49.638996][ T5927] RAX: 00007f4142489be0 RBX: 0000000000000030 RCX: 00007f414272db60
[   49.639008][ T5927] RDX: 00007f4142489d30 RSI: 00007f414247a000 RDI: 000000006fffffff
[   49.639020][ T5927] RBP: 00007ffe638c1220 R08: 0000000000000006 R09: 00000000effffef5
[   49.639030][ T5927] R10: 0000000070000029 R11: 00007ffe638c1308 R12: 00007ffe638c0f80
[   49.639041][ T5927] R13: 00007f414272db20 R14: 00007ffe638c12c0 R15: 00007f414248a010
[   49.639057][ T5927]  </TASK>
Setting up swapspace version 1, size = 127995904 bytes
[   50.917662][ T5864] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k