./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1075077392

<...>
Warning: Permanently added '10.128.0.130' (ED25519) to the list of known hosts.
execve("./syz-executor1075077392", ["./syz-executor1075077392"], 0x7ffebf9f43e0 /* 10 vars */) = 0
brk(NULL)                               = 0x555555c7b000
brk(0x555555c7bd00)                     = 0x555555c7bd00
arch_prctl(ARCH_SET_FS, 0x555555c7b380) = 0
set_tid_address(0x555555c7b650)         = 5072
set_robust_list(0x555555c7b660, 24)     = 0
rseq(0x555555c7bca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor1075077392", 4096) = 28
getrandom("\x62\xc0\x8a\x41\xf4\xdf\xc2\xf9", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555555c7bd00
brk(0x555555c9cd00)                     = 0x555555c9cd00
brk(0x555555c9d000)                     = 0x555555c9d000
mprotect(0x7f1718210000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mmap(0x20000000, 16732160, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_ANONYMOUS|MAP_NORESERVE|MAP_POPULATE|MAP_NONBLOCK|MAP_DENYWRITE|MAP_HUGETLB, -1, 0) = 0x20000000
openat(AT_FDCWD, "/proc/self/pagemap", O_RDWR) = 3
getpid()                                = 5072
process_vm_readv(5072, [{iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}], 2, [{iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, {iov_base=NULL, iov_len=0}, ...], 646, 0) = 16743296
[   70.832602][ T5072] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[   70.844359][ T5072] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[   70.852759][ T5072] CPU: 0 PID: 5072 Comm: syz-executor107 Not tainted 6.7.0-rc3-syzkaller-00014-gdf60cee26a2e #0
[   70.863155][ T5072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[   70.873263][ T5072] RIP: 0010:pagemap_scan_hugetlb_entry+0x6ca/0x1130
[   70.879873][ T5072] Code: 3c 02 00 0f 85 68 09 00 00 48 8b 83 80 00 00 00 48 8d 04 40 4d 8d 6c c5 00 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 <80> 3c 02 00 0f 85 51 09 00 00 4d 8b 75 00 48 8b 7c 24 08 4c 89 f6
[   70.899474][ T5072] RSP: 0018:ffffc90003a2fa50 EFLAGS: 00010246
[   70.905525][ T5072] RAX: dffffc0000000000 RBX: ffffc90003a2fdb0 RCX: ffffffff82111e46
[   70.913478][ T5072] RDX: 0000000000000000 RSI: ffffffff82111e54 RDI: ffffc90003a2fe30
[   70.921432][ T5072] RBP: 1ffff92000745f52 R08: 0000000000000006 R09: 0000000020ffc000
[   70.929398][ T5072] R10: 00000000211f9000 R11: ffffffff915f5de8 R12: ffff8880299e0300
[   70.937361][ T5072] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000020ffc000
[   70.945322][ T5072] FS:  0000555555c7b380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[   70.954266][ T5072] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   70.960836][ T5072] CR2: 00000000005fdeb8 CR3: 00000000752b4000 CR4: 00000000003506f0
[   70.968873][ T5072] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   70.976865][ T5072] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   70.984842][ T5072] Call Trace:
[   70.988108][ T5072]  <TASK>
[   70.991022][ T5072]  ? show_regs+0x8f/0xa0
[   70.995264][ T5072]  ? die_addr+0x4f/0xd0
[   70.999418][ T5072]  ? exc_general_protection+0x155/0x230
[   71.004964][ T5072]  ? asm_exc_general_protection+0x26/0x30
[   71.010679][ T5072]  ? pagemap_scan_hugetlb_entry+0x656/0x1130
[   71.016666][ T5072]  ? pagemap_scan_hugetlb_entry+0x664/0x1130
[   71.022630][ T5072]  ? pagemap_scan_hugetlb_entry+0x6ca/0x1130
[   71.028600][ T5072]  ? pagemap_hugetlb_category+0x390/0x390
[   71.034306][ T5072]  __walk_page_range+0x36c/0x770
[   71.039237][ T5072]  walk_page_range+0x626/0xa80
[   71.043987][ T5072]  ? __walk_page_range+0x770/0x770
[   71.049087][ T5072]  ? preempt_count_sub+0x160/0x160
[   71.054182][ T5072]  do_pagemap_scan+0x40d/0xcd0
[   71.059034][ T5072]  ? show_smaps_rollup+0x8f0/0x8f0
[   71.064136][ T5072]  ? restore_fpregs_from_fpstate+0xc1/0x1d0
[   71.070023][ T5072]  do_pagemap_cmd+0x5e/0x80
[   71.074514][ T5072]  ? do_pagemap_scan+0xcd0/0xcd0
[   71.079435][ T5072]  __x64_sys_ioctl+0x18f/0x210
[   71.084207][ T5072]  do_syscall_64+0x40/0x110
[   71.088706][ T5072]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[   71.094604][ T5072] RIP: 0033:0x7f171819d669
[   71.099005][ T5072] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   71.118600][ T5072] RSP: 002b:00007fffbe81bb68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   71.127016][ T5072] RAX: ffffffffffffffda RBX: 00007fffbe81bb80 RCX: 00007f171819d669
[   71.134981][ T5072] RDX: 0000000020000040 RSI: 00000000c0606610 RDI: 0000000000000003
[   71.142938][ T5072] RBP: 00007f1718210610 R08: 0000000000000000 R09: 0000000000000000
[   71.150921][ T5072] R10: 0000000000000286 R11: 0000000000000246 R12: 0000000000000001
[   71.158880][ T5072] R13: 00007fffbe81bdb8 R14: 0000000000000001 R15: 0000000000000001
[   71.166850][ T5072]  </TASK>
[   71.169855][ T5072] Modules linked in:
[   71.174153][ T5072] ---[ end trace 0000000000000000 ]---
[   71.180486][ T5072] RIP: 0010:pagemap_scan_hugetlb_entry+0x6ca/0x1130
[   71.187113][ T5072] Code: 3c 02 00 0f 85 68 09 00 00 48 8b 83 80 00 00 00 48 8d 04 40 4d 8d 6c c5 00 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 <80> 3c 02 00 0f 85 51 09 00 00 4d 8b 75 00 48 8b 7c 24 08 4c 89 f6
[   71.206771][ T5072] RSP: 0018:ffffc90003a2fa50 EFLAGS: 00010246
[   71.212840][ T5072] RAX: dffffc0000000000 RBX: ffffc90003a2fdb0 RCX: ffffffff82111e46
[   71.220847][ T5072] RDX: 0000000000000000 RSI: ffffffff82111e54 RDI: ffffc90003a2fe30
[   71.228855][ T5072] RBP: 1ffff92000745f52 R08: 0000000000000006 R09: 0000000020ffc000
[   71.236868][ T5072] R10: 00000000211f9000 R11: ffffffff915f5de8 R12: ffff8880299e0300
[   71.244895][ T5072] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000020ffc000
[   71.252906][ T5072] FS:  0000555555c7b380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[   71.261867][ T5072] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   71.268568][ T5072] CR2: 00000000005fdeb8 CR3: 00000000752b4000 CR4: 00000000003506f0
[   71.276587][ T5072] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   71.284555][ T5072] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   71.292565][ T5072] Kernel panic - not syncing: Fatal exception
[   71.298814][ T5072] Kernel Offset: disabled
[   71.303122][ T5072] Rebooting in 86400 seconds..