./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1685851431

<...>
DUID 00:04:e5:d7:6b:3e:19:ba:e5:eb:4b:9e:6a:98:ce:0b:a0:29
forked to background, child pid 3187
[   25.632458][ T3188] 8021q: adding VLAN 0 to HW filter on device bond0
[   25.642500][ T3188] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.85' (ECDSA) to the list of known hosts.
execve("./syz-executor1685851431", ["./syz-executor1685851431"], 0x7ffd130f0b10 /* 10 vars */) = 0
brk(NULL)                               = 0x555556d4f000
brk(0x555556d4fc40)                     = 0x555556d4fc40
arch_prctl(ARCH_SET_FS, 0x555556d4f300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor1685851431", 4096) = 28
brk(0x555556d70c40)                     = 0x555556d70c40
brk(0x555556d71000)                     = 0x555556d71000
mprotect(0x7f0995187000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mmap(0x20000000, 11755520, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_ANONYMOUS|MAP_POPULATE|MAP_DENYWRITE|MAP_STACK|MAP_HUGETLB, -1, 0) = 0x20000000
madvise(0x20000000, 6291459, MADV_REMOVE) = 0
madvise(0x20800000, 8388608, MADV_DONTNEED) = 0
syzkaller login: [   48.265054][ T3608] ------------[ cut here ]------------
[   48.270608][ T3608] kernel BUG at include/linux/mm.h:1529!
[   48.276305][ T3608] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   48.282366][ T3608] CPU: 0 PID: 3608 Comm: syz-executor168 Not tainted 6.0.0-rc7-syzkaller-00130-g511cce163b75 #0
[   48.292758][ T3608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[   48.302799][ T3608] RIP: 0010:page_try_dup_anon_rmap+0x905/0x10f0
[   48.309077][ T3608] Code: e6 ff 0f 00 00 31 ff e8 49 21 b2 ff 4c 89 e0 48 25 ff 0f 00 00 0f 84 38 01 00 00 e8 75 1c b2 ff e9 e6 02 00 00 e8 6b 1c b2 ff <0f> 0b 4c 89 e6 48 81 e6 ff 0f 00 00 31 ff e8 18 21 b2 ff 4c 89 e0
[   48.328667][ T3608] RSP: 0018:ffffc90003cd73f0 EFLAGS: 00010293
[   48.334718][ T3608] RAX: ffffffff81d779f5 RBX: 0000000000000000 RCX: ffff888027f73b00
[   48.342688][ T3608] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   48.350668][ T3608] RBP: 1ffff1100eb4164a R08: ffffffff81d774e5 R09: fffff940003f6001
[   48.358641][ T3608] R10: fffff940003f6001 R11: 1ffffd40003f6000 R12: ffffea0001fb0000
[   48.366616][ T3608] R13: dffffc0000000000 R14: 1ffffd40003f6001 R15: ffff888075a0b250
[   48.374578][ T3608] FS:  0000555556d4f300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[   48.383497][ T3608] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.390085][ T3608] CR2: 0000000020003200 CR3: 0000000022d56000 CR4: 00000000003506f0
[   48.398066][ T3608] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.406031][ T3608] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.413997][ T3608] Call Trace:
[   48.417270][ T3608]  <TASK>
[   48.420193][ T3608]  copy_hugetlb_page_range+0xcd0/0x1b20
[   48.425749][ T3608]  ? is_hugetlb_entry_migration+0x80/0x80
[   48.431465][ T3608]  ? dup_mmap+0x8d0/0xfc0
[   48.435811][ T3608]  ? rcu_read_lock_sched_held+0x89/0x130
[   48.441443][ T3608]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[   48.447426][ T3608]  ? dup_mmap+0x8d0/0xfc0
[   48.451748][ T3608]  ? __lock_acquire+0x1f60/0x1f60
[   48.456775][ T3608]  copy_page_range+0x391/0x7f0
[   48.461540][ T3608]  ? up_write+0x131/0x4d0
[   48.465864][ T3608]  ? pfn_valid+0x1c0/0x1c0
[   48.470277][ T3608]  ? __vma_link_rb+0x7c9/0x810
[   48.475045][ T3608]  ? __do_sys_brk+0x6d0/0x6d0
[   48.479719][ T3608]  dup_mmap+0x9e9/0xfc0
[   48.483870][ T3608]  ? lockdep_unregister_key+0x600/0x600
[   48.489420][ T3608]  ? __delayed_free_task+0x20/0x20
[   48.494528][ T3608]  ? __init_rwsem+0x11e/0x160
[   48.499195][ T3608]  ? mm_init+0x66e/0x7b0
[   48.503428][ T3608]  dup_mm+0x8c/0x310
[   48.507312][ T3608]  copy_mm+0x102/0x190
[   48.511370][ T3608]  copy_process+0x1976/0x3f60
[   48.516039][ T3608]  ? __might_sleep+0xc0/0xc0
[   48.520632][ T3608]  ? idle_dummy+0x10/0x10
[   48.524956][ T3608]  ? __might_fault+0xb2/0x110
[   48.529622][ T3608]  ? memset+0x1f/0x40
[   48.533595][ T3608]  kernel_clone+0x22f/0x7a0
[   48.538101][ T3608]  ? create_io_thread+0x1b0/0x1b0
[   48.543134][ T3608]  __se_sys_clone3+0x372/0x410
[   48.547889][ T3608]  ? __x64_sys_clone3+0x60/0x60
[   48.552735][ T3608]  ? do_notify_parent+0xeb0/0xeb0
[   48.557753][ T3608]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[   48.563723][ T3608]  ? syscall_enter_from_user_mode+0x2e/0x1d0
[   48.569699][ T3608]  ? syscall_enter_from_user_mode+0x86/0x1d0
[   48.575665][ T3608]  do_syscall_64+0x2b/0x70
[   48.580066][ T3608]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   48.585949][ T3608] RIP: 0033:0x7f099511ac39
[   48.590348][ T3608] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   48.609940][ T3608] RSP: 002b:00007fffa80da3a8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[   48.618339][ T3608] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f099511ac39
[   48.626294][ T3608] RDX: 00007f099511ac39 RSI: 0000000000000058 RDI: 00007fffa80da3b0
[   48.634250][ T3608] RBP: 00007f09950ded80 R08: 0000000000000000 R09: 0000000000000000
[   48.642206][ T3608] R10: 00007fffa80da3b0 R11: 0000000000000246 R12: 00007f09950dee10
[   48.650163][ T3608] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   48.658126][ T3608]  </TASK>
[   48.661130][ T3608] Modules linked in:
[   48.665085][ T3608] ---[ end trace 0000000000000000 ]---
[   48.670535][ T3608] RIP: 0010:page_try_dup_anon_rmap+0x905/0x10f0
[   48.676798][ T3608] Code: e6 ff 0f 00 00 31 ff e8 49 21 b2 ff 4c 89 e0 48 25 ff 0f 00 00 0f 84 38 01 00 00 e8 75 1c b2 ff e9 e6 02 00 00 e8 6b 1c b2 ff <0f> 0b 4c 89 e6 48 81 e6 ff 0f 00 00 31 ff e8 18 21 b2 ff 4c 89 e0
[   48.696409][ T3608] RSP: 0018:ffffc90003cd73f0 EFLAGS: 00010293
[   48.702457][ T3608] RAX: ffffffff81d779f5 RBX: 0000000000000000 RCX: ffff888027f73b00
[   48.710444][ T3608] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   48.718435][ T3608] RBP: 1ffff1100eb4164a R08: ffffffff81d774e5 R09: fffff940003f6001
[   48.726447][ T3608] R10: fffff940003f6001 R11: 1ffffd40003f6000 R12: ffffea0001fb0000
[   48.734439][ T3608] R13: dffffc0000000000 R14: 1ffffd40003f6001 R15: ffff888075a0b250
[   48.742496][ T3608] FS:  0000555556d4f300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[   48.751465][ T3608] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.758097][ T3608] CR2: 0000000020003200 CR3: 0000000022d56000 CR4: 00000000003506f0
[   48.766094][ T3608] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.774090][ T3608] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.782057][ T3608] Kernel panic - not syncing: Fatal exception
[   48.788260][ T3608] Kernel Offset: disabled
[   48.792576][ T3608] Rebooting in 86400 seconds..