./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2477450373

<...>
DUID 00:04:a3:03:08:15:93:78:e3:1f:4c:1c:fb:56:e6:f5:4b:05
forked to background, child pid 4653
[   32.072500][ T4654] 8021q: adding VLAN 0 to HW filter on device bond0
[   32.082201][ T4654] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.30' (ECDSA) to the list of known hosts.
execve("./syz-executor2477450373", ["./syz-executor2477450373"], 0x7ffc0fd90140 /* 10 vars */) = 0
brk(NULL)                               = 0x555556ab7000
brk(0x555556ab7c40)                     = 0x555556ab7c40
arch_prctl(ARCH_SET_FS, 0x555556ab7300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor2477450373", 4096) = 28
brk(0x555556ad8c40)                     = 0x555556ad8c40
brk(0x555556ad9000)                     = 0x555556ad9000
mprotect(0x7f78ce080000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
memfd_create("\x59\xff\xff", MFD_ALLOW_SEALING|MFD_HUGETLB) = 3
mmap(0x20200000, 4194304, PROT_READ|PROT_WRITE|PROT_SEM, MAP_PRIVATE|MAP_FIXED|MAP_LOCKED, 3, 0) = 0x20200000
clone(child_stack=NULL, flags=0./strace-static-x86_64: Process 5083 attached
)        = 5083
syzkaller login: [   56.845740][ T5082] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5082 'syz-executor247'
[   56.859849][ T5082] ==================================================================
[   56.867948][ T5082] BUG: KASAN: null-ptr-deref in hugetlb_fault+0x1423/0x23f0
[   56.875231][ T5082] Read of size 4 at addr 0000000000000034 by task syz-executor247/5082
[   56.883446][ T5082] 
[   56.885760][ T5082] CPU: 0 PID: 5082 Comm: syz-executor247 Not tainted 6.2.0-rc4-next-20230120-syzkaller #0
[   56.895646][ T5082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[   56.905870][ T5082] Call Trace:
[   56.909133][ T5082]  <TASK>
[   56.912058][ T5082]  dump_stack_lvl+0xd1/0x138
[   56.916654][ T5082]  ? hugetlb_fault+0x1423/0x23f0
[   56.921678][ T5082]  kasan_report+0xc0/0xf0
[   56.926017][ T5082]  ? hugetlb_fault+0x1423/0x23f0
[   56.930950][ T5082]  kasan_check_range+0x141/0x190
[   56.935887][ T5082]  hugetlb_fault+0x1423/0x23f0
[   56.940820][ T5082]  ? hugetlb_wp+0x2540/0x2540
[   56.945664][ T5082]  ? follow_hugetlb_page+0x4b1/0x1e40
[   56.951025][ T5082]  ? lock_downgrade+0x6e0/0x6e0
[   56.956048][ T5082]  ? do_raw_spin_lock+0x124/0x2b0
[   56.961164][ T5082]  ? rwlock_bug.part.0+0x90/0x90
[   56.966293][ T5082]  ? lock_acquire+0x32/0xc0
[   56.970798][ T5082]  ? follow_hugetlb_page+0x443/0x1e40
[   56.976514][ T5082]  follow_hugetlb_page+0x6ab/0x1e40
[   56.981976][ T5082]  __get_user_pages+0x29b/0xfc0
[   56.986838][ T5082]  ? rcu_read_lock_sched_held+0x3e/0x70
[   56.992379][ T5082]  ? follow_page_mask+0x10a0/0x10a0
[   56.997766][ T5082]  populate_vma_page_range+0x241/0x320
[   57.003667][ T5082]  __mm_populate+0x105/0x3b0
[   57.008432][ T5082]  ? faultin_vma_page_range+0x300/0x300
[   57.014422][ T5082]  ? up_write+0x1b0/0x520
[   57.018942][ T5082]  ? find_held_lock+0x2d/0x110
[   57.023884][ T5082]  do_mlock+0x370/0x6d0
[   57.028031][ T5082]  ? folio_evictable+0x270/0x270
[   57.033337][ T5082]  ? _raw_spin_unlock_irq+0x23/0x50
[   57.038806][ T5082]  ? lockdep_hardirqs_on+0x7d/0x100
[   57.044085][ T5082]  ? _raw_spin_unlock_irq+0x2e/0x50
[   57.049288][ T5082]  __x64_sys_mlock+0x59/0x80
[   57.053872][ T5082]  do_syscall_64+0x39/0xb0
[   57.058290][ T5082]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   57.064202][ T5082] RIP: 0033:0x7f78ce013bc9
[   57.068707][ T5082] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   57.088479][ T5082] RSP: 002b:00007fffc078f758 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   57.096882][ T5082] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f78ce013bc9
[   57.104847][ T5082] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000000020308000
[   57.112823][ T5082] RBP: 00007f78cdfd7d10 R08: 0000000000000000 R09: 0000000000000000
[   57.120873][ T5082] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f78cdfd7da0
[   57.128928][ T5082] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   57.136896][ T5082]  </TASK>
[   57.139910][ T5082] ==================================================================
[   57.148314][ T5082] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   57.155778][ T5082] CPU: 0 PID: 5082 Comm: syz-executor247 Not tainted 6.2.0-rc4-next-20230120-syzkaller #0
[   57.165668][ T5082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[   57.175720][ T5082] Call Trace:
[   57.178987][ T5082]  <TASK>
[   57.181907][ T5082]  dump_stack_lvl+0xd1/0x138
[   57.186507][ T5082]  panic+0x2cc/0x626
[   57.190402][ T5082]  ? panic_print_sys_info.part.0+0x110/0x110
[   57.196381][ T5082]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[   57.202621][ T5082]  check_panic_on_warn.cold+0x19/0x35
[   57.207996][ T5082]  end_report.part.0+0x36/0x73
[   57.212756][ T5082]  ? hugetlb_fault+0x1423/0x23f0
[   57.217686][ T5082]  kasan_report.cold+0xa/0xf
[   57.222358][ T5082]  ? hugetlb_fault+0x1423/0x23f0
[   57.227296][ T5082]  kasan_check_range+0x141/0x190
[   57.232229][ T5082]  hugetlb_fault+0x1423/0x23f0
[   57.236991][ T5082]  ? hugetlb_wp+0x2540/0x2540
[   57.241663][ T5082]  ? follow_hugetlb_page+0x4b1/0x1e40
[   57.247040][ T5082]  ? lock_downgrade+0x6e0/0x6e0
[   57.251881][ T5082]  ? do_raw_spin_lock+0x124/0x2b0
[   57.256897][ T5082]  ? rwlock_bug.part.0+0x90/0x90
[   57.261837][ T5082]  ? lock_acquire+0x32/0xc0
[   57.266329][ T5082]  ? follow_hugetlb_page+0x443/0x1e40
[   57.271703][ T5082]  follow_hugetlb_page+0x6ab/0x1e40
[   57.276898][ T5082]  __get_user_pages+0x29b/0xfc0
[   57.281751][ T5082]  ? rcu_read_lock_sched_held+0x3e/0x70
[   57.287466][ T5082]  ? follow_page_mask+0x10a0/0x10a0
[   57.292681][ T5082]  populate_vma_page_range+0x241/0x320
[   57.298148][ T5082]  __mm_populate+0x105/0x3b0
[   57.302748][ T5082]  ? faultin_vma_page_range+0x300/0x300
[   57.308325][ T5082]  ? up_write+0x1b0/0x520
[   57.312653][ T5082]  ? find_held_lock+0x2d/0x110
[   57.317427][ T5082]  do_mlock+0x370/0x6d0
[   57.321582][ T5082]  ? folio_evictable+0x270/0x270
[   57.326602][ T5082]  ? _raw_spin_unlock_irq+0x23/0x50
[   57.331797][ T5082]  ? lockdep_hardirqs_on+0x7d/0x100
[   57.336986][ T5082]  ? _raw_spin_unlock_irq+0x2e/0x50
[   57.342179][ T5082]  __x64_sys_mlock+0x59/0x80
[   57.346779][ T5082]  do_syscall_64+0x39/0xb0
[   57.351192][ T5082]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   57.357080][ T5082] RIP: 0033:0x7f78ce013bc9
[   57.361485][ T5082] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   57.381261][ T5082] RSP: 002b:00007fffc078f758 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[   57.389683][ T5082] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f78ce013bc9
[   57.397659][ T5082] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000000020308000
[   57.405628][ T5082] RBP: 00007f78cdfd7d10 R08: 0000000000000000 R09: 0000000000000000
[   57.413592][ T5082] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f78cdfd7da0
[   57.421551][ T5082] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   57.429520][ T5082]  </TASK>
[   57.432677][ T5082] Kernel Offset: disabled
[   57.437023][ T5082] Rebooting in 86400 seconds..