------------[ cut here ]------------
kernel BUG at mm/memory.c:2220!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 5898 Comm: syz-executor.0 Not tainted 6.1.55-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
RIP: 0010:vmf_insert_pfn_prot+0x428/0x440 mm/memory.c:2220
Code: ff 89 de e8 5a 43 be ff 45 84 e4 74 2b e8 f0 40 be ff e9 54 fd ff ff e8 e6 40 be ff 0f 0b e8 df 40 be ff 0f 0b e8 d8 40 be ff <0f> 0b e8 41 86 bc 08 e8 cc 40 be ff 0f 0b e8 c5 40 be ff 0f 0b 0f
RSP: 0000:ffffc90005dbfae0 EFLAGS: 00010293
RAX: ffffffff81cc3238 RBX: 0000000000000420 RCX: ffff888089c0bb80
RDX: 0000000000000000 RSI: 0000000000000420 RDI: 0000000000000420
RBP: ffffc90005dbfba0 R08: ffffffff81cc2f10 R09: ffffffff81cc2ee4
R10: 0000000000000002 R11: ffff888089c0bb80 R12: 000000000c040475
R13: ffff888073b0ba20 R14: ffffc90005dbfb20 R15: 000000000001f771
FS:  00007f7746a316c0(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f4f8a569fe4 CR3: 000000008d9c1000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000430
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 drm_gem_shmem_fault+0x1d9/0x230 drivers/gpu/drm/drm_gem_shmem_helper.c:562
 __do_fault+0x136/0x4f0 mm/memory.c:4231
 do_read_fault mm/memory.c:4582 [inline]
 do_fault mm/memory.c:4711 [inline]
 handle_pte_fault mm/memory.c:4983 [inline]
 __handle_mm_fault mm/memory.c:5125 [inline]
 handle_mm_fault+0x3412/0x5340 mm/memory.c:5246
 do_user_addr_fault arch/x86/mm/fault.c:1380 [inline]
 handle_page_fault arch/x86/mm/fault.c:1471 [inline]
 exc_page_fault+0x26f/0x660 arch/x86/mm/fault.c:1527
 asm_exc_page_fault+0x22/0x30 arch/x86/include/asm/idtentry.h:570
RIP: 0033:0x7f7745c7355e
Code: fd d7 c9 0f bc d1 c5 fe 7f 27 c5 fe 7f 6f 20 c5 fe 7f 77 40 c5 fe 7f 7f 60 49 83 c0 1f 49 29 d0 48 8d 7c 17 61 e9 d2 04 00 00 <c5> fe 6f 1e c5 fe 6f 56 20 c5 fd 74 cb c5 fd d7 d1 49 83 f8 21 0f
RSP: 002b:00007f7746a30c78 EFLAGS: 00010287
RAX: 00007f7746a30ca0 RBX: 6666666666666667 RCX: 0000000000000000
RDX: 00000000000003ff RSI: 0000000020000000 RDI: 00007f7746a30ca0
RBP: 00007f7746a30ca0 R08: 00000000000003ff R09: 0000000000000000
R10: 0000000020000000 R11: 0000000000004000 R12: 0000000000000000
R13: 000000000000000b R14: 00007f7745d9bf80 R15: 00007fff40e811d8
 </TASK>
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:vmf_insert_pfn_prot+0x428/0x440 mm/memory.c:2220
Code: ff 89 de e8 5a 43 be ff 45 84 e4 74 2b e8 f0 40 be ff e9 54 fd ff ff e8 e6 40 be ff 0f 0b e8 df 40 be ff 0f 0b e8 d8 40 be ff <0f> 0b e8 41 86 bc 08 e8 cc 40 be ff 0f 0b e8 c5 40 be ff 0f 0b 0f
RSP: 0000:ffffc90005dbfae0 EFLAGS: 00010293
RAX: ffffffff81cc3238 RBX: 0000000000000420 RCX: ffff888089c0bb80
RDX: 0000000000000000 RSI: 0000000000000420 RDI: 0000000000000420
RBP: ffffc90005dbfba0 R08: ffffffff81cc2f10 R09: ffffffff81cc2ee4
R10: 0000000000000002 R11: ffff888089c0bb80 R12: 000000000c040475
R13: ffff888073b0ba20 R14: ffffc90005dbfb20 R15: 000000000001f771
FS:  00007f7746a316c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fd2c9a21f00 CR3: 000000008d9c1000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000430
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400