BUG: sleeping function called from invalid context at arch/x86/mm/fault.c:1422
in_atomic(): 0, irqs_disabled(): 1, non_block: 0, pid: 7349, name: syz-executor.0
1 lock held by syz-executor.0/7349:
 #0: ffff888094614f58 (&mm->mmap_sem#2){++++}, at: do_user_addr_fault arch/x86/mm/fault.c:1405 [inline]
 #0: ffff888094614f58 (&mm->mmap_sem#2){++++}, at: do_page_fault+0x34c/0x12da arch/x86/mm/fault.c:1539
irq event stamp: 1732
hardirqs last  enabled at (1731): [<ffffffff839331e3>] __free_object+0x8b3/0xee0 lib/debugobjects.c:360
hardirqs last disabled at (1732): [<ffffffff8100a2b4>] syscall_return_slowpath arch/x86/entry/common.c:277 [inline]
hardirqs last disabled at (1732): [<ffffffff8100a2b4>] do_syscall_64+0x204/0x7d0 arch/x86/entry/common.c:304
softirqs last  enabled at (1498): [<ffffffff8129cea3>] memcpy include/linux/string.h:381 [inline]
softirqs last  enabled at (1498): [<ffffffff8129cea3>] fpu__copy+0x173/0x8b0 arch/x86/kernel/fpu/core.c:195
softirqs last disabled at (1496): [<ffffffff8129cdd1>] fpu__copy+0xa1/0x8b0 arch/x86/kernel/fpu/core.c:183
CPU: 1 PID: 7349 Comm: syz-executor.0 Not tainted 5.6.0-rc7-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x188/0x20d lib/dump_stack.c:118
 ___might_sleep.cold+0x1f4/0x23d kernel/sched/core.c:6798
 do_user_addr_fault arch/x86/mm/fault.c:1422 [inline]
 do_page_fault+0x379/0x12da arch/x86/mm/fault.c:1539
 page_fault+0x39/0x40 arch/x86/entry/entry_64.S:1203
RIP: 0010:__read_once_size include/linux/compiler.h:199 [inline]
RIP: 0010:prepare_exit_to_usermode arch/x86/entry/common.c:198 [inline]
RIP: 0010:syscall_return_slowpath arch/x86/entry/common.c:278 [inline]
RIP: 0010:do_syscall_64+0x35c/0x7d0 arch/x86/entry/common.c:304
Code: 80 3c 02 00 0f 85 f9 03 00 00 4c 8b 2b 31 ff 45 89 ec 41 81 e4 0e 38 00 00 44 89 e6 e8 8d 82 71 00 45 85 e4 0f 85 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
RSP: 0018:ffffc90001daff28 EFLAGS: 00010046
RAX: 0000000000000000 RBX: ffff88809a760480 RCX: ffffffff8100a403
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
RBP: ffffc90001daff58 R08: ffff88809a760480 R09: ffffed10134ec091
R10: ffffed10134ec090 R11: ffff88809a760487 R12: 0000000000000000
R13: 0000000000004000 R14: 0000000000000000 R15: 0000000000000000
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x45ad11
Code: 75 14 b8 23 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 d4 d1 fb ff c3 48 83 ec 08 e8 ea 46 00 00 48 89 04 24 b8 23 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 33 47 00 00 48 89 d0 48 83 c4 08 48 3d 01
RSP: 002b:00007ffe94602fd0 EFLAGS: 00000293 ORIG_RAX: 0000000000000023
RAX: 0000000000000000 RBX: 000000000001c696 RCX: 000000000045ad11
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007ffe94602fe0
RBP: 0000000000000001 R08: 00ffffffffffffff R09: 00ffffffffffffff
R10: 00007ffe946030d0 R11: 0000000000000293 R12: 000000000076bf00
R13: 000000000076c900 R14: 000000000001c418 R15: 000000000076c04c
BUG: kernel NULL pointer dereference, address: 0000000000000000
#PF: supervisor write access in kernel mode
#PF: error_code(0x0002) - not-present page
PGD 8ead4067 P4D 8ead4067 PUD 8ead5067 PMD 0 
Oops: 0002 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 7349 Comm: syz-executor.0 Tainted: G        W         5.6.0-rc7-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
RIP: 0010:__read_once_size include/linux/compiler.h:199 [inline]
RIP: 0010:prepare_exit_to_usermode arch/x86/entry/common.c:198 [inline]
RIP: 0010:syscall_return_slowpath arch/x86/entry/common.c:278 [inline]
RIP: 0010:do_syscall_64+0x35c/0x7d0 arch/x86/entry/common.c:304
Code: 80 3c 02 00 0f 85 f9 03 00 00 4c 8b 2b 31 ff 45 89 ec 41 81 e4 0e 38 00 00 44 89 e6 e8 8d 82 71 00 45 85 e4 0f 85 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
RSP: 0018:ffffc90001daff28 EFLAGS: 00010046
RAX: 0000000000000000 RBX: ffff88809a760480 RCX: ffffffff8100a403
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
RBP: ffffc90001daff58 R08: ffff88809a760480 R09: ffffed10134ec091
R10: ffffed10134ec090 R11: ffff88809a760487 R12: 0000000000000000
R13: 0000000000004000 R14: 0000000000000000 R15: 0000000000000000
FS:  0000000001808940(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 00000000981cf000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 entry_SYSCALL_64_after_hwframe+0x49/0xbe
RIP: 0033:0x45ad11
Code: 75 14 b8 23 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 d4 d1 fb ff c3 48 83 ec 08 e8 ea 46 00 00 48 89 04 24 b8 23 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 33 47 00 00 48 89 d0 48 83 c4 08 48 3d 01
RSP: 002b:00007ffe94602fd0 EFLAGS: 00000293 ORIG_RAX: 0000000000000023
RAX: 0000000000000000 RBX: 000000000001c696 RCX: 000000000045ad11
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007ffe94602fe0
RBP: 0000000000000001 R08: 00ffffffffffffff R09: 00ffffffffffffff
R10: 00007ffe946030d0 R11: 0000000000000293 R12: 000000000076bf00
R13: 000000000076c900 R14: 000000000001c418 R15: 000000000076c04c
Modules linked in:
CR2: 0000000000000000
---[ end trace 21d25b92a50b6eb6 ]---
RIP: 0010:__read_once_size include/linux/compiler.h:199 [inline]
RIP: 0010:prepare_exit_to_usermode arch/x86/entry/common.c:198 [inline]
RIP: 0010:syscall_return_slowpath arch/x86/entry/common.c:278 [inline]
RIP: 0010:do_syscall_64+0x35c/0x7d0 arch/x86/entry/common.c:304
Code: 80 3c 02 00 0f 85 f9 03 00 00 4c 8b 2b 31 ff 45 89 ec 41 81 e4 0e 38 00 00 44 89 e6 e8 8d 82 71 00 45 85 e4 0f 85 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
RSP: 0018:ffffc90001daff28 EFLAGS: 00010046
RAX: 0000000000000000 RBX: ffff88809a760480 RCX: ffffffff8100a403
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
RBP: ffffc90001daff58 R08: ffff88809a760480 R09: ffffed10134ec091
R10: ffffed10134ec090 R11: ffff88809a760487 R12: 0000000000000000
R13: 0000000000004000 R14: 0000000000000000 R15: 0000000000000000
FS:  0000000001808940(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000000 CR3: 00000000981cf000 CR4: 00000000001406e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400