BUG: sleeping function called from invalid context at mm/util.c:761
in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 15573, name: syz-executor.4
2 locks held by syz-executor.4/15573:
 #0: ffff88807b3a5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: mmap_read_trylock include/linux/mmap_lock.h:136 [inline]
 #0: ffff88807b3a5c28 (&mm->mmap_lock#2){++++}-{3:3}, at: do_user_addr_fault+0x285/0x11c0 arch/x86/mm/fault.c:1331
 #1: ffff88801df20a70 (&mapping->private_lock){+.+.}-{2:2}, at: spin_lock include/linux/spinlock.h:359 [inline]
 #1: ffff88801df20a70 (&mapping->private_lock){+.+.}-{2:2}, at: __buffer_migrate_page+0x3a8/0xa80 mm/migrate.c:722
Preemption disabled at:
[<0000000000000000>] 0x0
CPU: 0 PID: 15573 Comm: syz-executor.4 Not tainted 5.14.0-rc2-next-20210722-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:105
 ___might_sleep.cold+0x1f3/0x239 kernel/sched/core.c:9182
 folio_copy+0x10c/0x1a0 mm/util.c:761
 folio_migrate_copy+0x19/0x30 mm/migrate.c:619
 __buffer_migrate_page+0x820/0xa80 mm/migrate.c:757
 move_to_new_page+0x339/0xf00 mm/migrate.c:904
 __unmap_and_move mm/migrate.c:1069 [inline]
 unmap_and_move mm/migrate.c:1210 [inline]
 migrate_pages+0x2867/0x3890 mm/migrate.c:1487
 compact_zone+0x1abb/0x3860 mm/compaction.c:2393
 compact_zone_order+0x165/0x270 mm/compaction.c:2513
 try_to_compact_pages+0x275/0x7e0 mm/compaction.c:2579
 __alloc_pages_direct_compact+0x132/0x510 mm/page_alloc.c:4356
 __alloc_pages_slowpath.constprop.0+0x43b/0x21b0 mm/page_alloc.c:4940
 __alloc_pages+0x412/0x500 mm/page_alloc.c:5387
 __alloc_pages_node include/linux/gfp.h:566 [inline]
 alloc_pages_vma+0x648/0x760 mm/mempolicy.c:2221
 do_huge_pmd_anonymous_page+0x42b/0x27a0 mm/huge_memory.c:777
 create_huge_pmd mm/memory.c:4422 [inline]
 __handle_mm_fault+0x2a2c/0x5150 mm/memory.c:4657
 handle_mm_fault+0x1c8/0x790 mm/memory.c:4784
 do_user_addr_fault+0x48b/0x11c0 arch/x86/mm/fault.c:1390
 handle_page_fault arch/x86/mm/fault.c:1475 [inline]
 exc_page_fault+0x9e/0x180 arch/x86/mm/fault.c:1531
 asm_exc_page_fault+0x1e/0x30 arch/x86/include/asm/idtentry.h:568
RIP: 0033:0x461d7a
Code: 6f 06 c5 fa 6f 4c 16 f0 c5 fa 7f 07 c5 fa 7f 4c 17 f0 c3 48 8b 4c 16 f8 48 8b 36 48 89 4c 17 f8 48 89 37 c3 8b 4c 16 fc 8b 36 <89> 4c 17 fc 89 37 c3 0f b7 4c 16 fe 0f b7 36 66 89 4c 17 fe 66 89
RSP: 002b:00007ffddfe2aa08 EFLAGS: 00010202
RAX: 00000000205f7ffa RBX: 000000000056cb00 RCX: 000000000073666d
RDX: 0000000000000006 RSI: 00000000666d6172 RDI: 00000000205f7ffa
RBP: 00007ffddfe2aac8 R08: 0000000000970000 R09: 00007ffddfe2d080
R10: 00007ffddfe2d090 R11: 0000000000049d9a R12: 0000000000174af1
R13: 00000000000003e8 R14: 000000000056bf80 R15: 0000000000174ace