BUG: unable to handle kernel paging request at ffffea0008e95988
PGD 21f7ef067 P4D 21f7ef067 PUD 0 
Oops: 0000 [#1] SMP PTI
Dumping ftrace buffer:
   (ftrace buffer empty)
Modules linked in:
CPU: 1 PID: 6633 Comm: syz-executor5 Not tainted 4.17.0-rc5+ #103
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:__list_del_entry_valid+0x117/0x440 lib/list_debug.c:54
RSP: 0018:ffff88014528e3b8 EFLAGS: 00010046
RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
RDX: ffffffff8b588000 RSI: 0000000000000008 RDI: ffff88021fd43230
RBP: ffff88014528e410 R08: 0000000000000000 R09: 00000000ffffffff
R10: 0000000000000000 R11: 0000000000000000 R12: ffffea0007b185c0
R13: ffffea0008e95988 R14: 0000000000000000 R15: 0000000000000000
FS:  00007f52dc9a8700(0000) GS:ffff88021fd00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffea0008e95988 CR3: 000000014b7e0000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 __list_del_entry include/linux/list.h:117 [inline]
 list_del include/linux/list.h:125 [inline]
 __rmqueue_pcplist mm/page_alloc.c:2973 [inline]
 rmqueue_pcplist mm/page_alloc.c:2993 [inline]
 rmqueue mm/page_alloc.c:3015 [inline]
 get_page_from_freelist+0x9c50/0xb5e0 mm/page_alloc.c:3359
 __alloc_pages_nodemask+0x7be/0x5dc0 mm/page_alloc.c:4371
 __alloc_pages include/linux/gfp.h:458 [inline]
 __alloc_pages_node include/linux/gfp.h:471 [inline]
 alloc_pages_node include/linux/gfp.h:485 [inline]
 kmsan_alloc_meta_for_pages+0x10c/0x3a0 mm/kmsan/kmsan.c:800
 kmsan_alloc_page+0x82/0xe0 mm/kmsan/kmsan.c:885
 __alloc_pages_nodemask+0xfc0/0x5dc0 mm/page_alloc.c:4402
 alloc_pages_current+0x6b1/0x970 mm/mempolicy.c:2093
 alloc_pages include/linux/gfp.h:494 [inline]
 __get_free_pages+0x2d/0xc0 mm/page_alloc.c:4423
 tlb_next_batch mm/memory.c:204 [inline]
 __tlb_remove_page_size mm/memory.c:316 [inline]
 __tlb_remove_page include/asm-generic/tlb.h:150 [inline]
 zap_pte_range mm/memory.c:1340 [inline]
 zap_pmd_range mm/memory.c:1441 [inline]
 zap_pud_range mm/memory.c:1470 [inline]
 zap_p4d_range mm/memory.c:1491 [inline]
 unmap_page_range+0x26d2/0x3be0 mm/memory.c:1512
 unmap_single_vma+0x445/0x5e0 mm/memory.c:1557
 unmap_vmas+0x1f4/0x360 mm/memory.c:1587
 exit_mmap+0x4bb/0x970 mm/mmap.c:3105
 __mmput+0x158/0x600 kernel/fork.c:962
 mmput+0xab/0xf0 kernel/fork.c:983
 exit_mm+0x6ed/0x7a0 kernel/exit.c:545
 do_exit+0xc01/0x38d0 kernel/exit.c:854
 do_group_exit+0x1a0/0x360 kernel/exit.c:970
 get_signal+0xfcb/0x1f40 kernel/signal.c:2482
 do_signal+0xb8/0x1cf0 arch/x86/kernel/signal.c:810
 exit_to_usermode_loop arch/x86/entry/common.c:162 [inline]
 prepare_exit_to_usermode+0x271/0x3a0 arch/x86/entry/common.c:196
 syscall_return_slowpath+0xe9/0x700 arch/x86/entry/common.c:265
 do_syscall_64+0x1af/0x230 arch/x86/entry/common.c:290
 entry_SYSCALL_64_after_hwframe+0x44/0xa9
RIP: 0033:0x455a09
RSP: 002b:00007f52dc9a7ce8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
RAX: fffffffffffffe00 RBX: 000000000072bec8 RCX: 0000000000455a09
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000072bec8
RBP: 000000000072bec8 R08: 0000000000000000 R09: 000000000072bea0
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000a3e81f R14: 00007f52dc9a89c0 R15: 0000000000000000
Code: 89 e1 48 33 4d c0 48 f7 d0 48 21 c8 0f 84 e1 01 00 00 4c 3b 65 c0 0f 85 f2 01 00 00 49 83 c5 08 48 83 7d a8 00 0f 85 6b 02 00 00 <4d> 8b 7d 00 4c 89 ef e8 cd 9e bf fd 4c 8b 20 44 8b 32 4c 89 e0 
RIP: __list_del_entry_valid+0x117/0x440 lib/list_debug.c:54 RSP: ffff88014528e3b8
CR2: ffffea0008e95988
---[ end trace 2bb5033645bc8161 ]---