x6, 0x0, 0x1e, 0x8000, 0xb, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, @perf_bp={&(0x7f0000000100), 0xf}, 0x88300, 0x2, 0x9, 0x6, 0xdd, 0x9, 0x101, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x10, r6, 0x8) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.time\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001a00)=ANY=[@ANYBLOB="b70200000f0e1d09bfa300000000000024020000fffeff7f7a03f0fff8ffffff79a4f0ff00000000b7060000d0b68af1de640300000000007502faff07cd02020404000003007d60b70300000d1000006a0a00fe0000000d8500000028000000b70000000604002995000000000000001da5ad3548ebb63d18db6a1c7282ff9b767ac8328fbcd5c5e4a5ad1059b5725ac60c2ceaea4c0ec908abb6e7325ec1956bd8660bf3664148a2c96752fe2bb328dff1aa503b8de7ab9a780001000000000000d4bf20c2bd152d814f01f2cd539e030b0000000000007f4133b08e6e497640000000aea5cac0ceafdb9a2eeb02a1f5104d16ddb64963d84d91004cd5817e0b7f005e6ee7a39e2f0b5a18ed786b783ab1321ea5e82ae5ba2c42a5e23ea6253d5df768d0cb9f35e4f41a62d79b4c03e53466fa4f22d8c19f958e8b34de3535e7dacf1b13f7e875d1843c2288e7ff949a7a48ce18799ee53de177a81ea67a8f84538a9a311c754e5ab59a43f56d2085786e7ec07d78917f7169f006f3f5c95177fbd0b14b36259e2905ef911785c88a16aae46084d676d8ef8aa6ecc2d34a442bc098f4fcc96623b7c373b0ef04d55b846b0d6c7a75a76d445e0dcdf72c7ef97e08000000007b6e09a6a7caffff0000141f65e7d9ebe3be70c4364333af9a9d91c3e41ac37a63f85ad8254479c12f7c84fa5df32b70a80cce69cf30d3d67d84ccf3f9db9b690111de2ddc4b153c989ef100bbf76063d3f6ffffb73d70e9c3d7b90aecf48eb19767e00b75041739952fe87fde27ce0172f497e251f5b102893f54ec0ea8e792414f639bc9ce1fea3f6ac0d7686bc2e1b45577c205c70631e8ad585951950e851250540593e61860b69a521f4e210b6494e3c52d927195737945cc03d5668483151710de246420a1b6c55b73876a6ed7f58bde38b44ab13d980c894e00009338923789a1edcd8043fe83919088383268324a25df14010c8ea79c0d93ca77fd6c7ee30ea3aad2c6d6b8c97c00eaa00ff9bc46e1cfecbdc0e4ffac53e8f76c8b556306b409d04544d3a7ed54d447d2fb431e226ae182b8dcc86fe09b404a0b7c723d3b19c3dc382fa91fb0fb8f9f3f13296bb1758b24aad0922091d49e2bc408a5a37d2fe7a60b903d2d9fe9c151c2fcc8dc389671c2d08b6e2641500568445b00cee4585af04fa69e0380be0d66649dcf3bf8a9066e596119109ea8b308ff070000aab1c95bb22cedd913b22dcaa197ccc34586dc50bd9f4628ebe757bae30b356521df06f995cb57f97052fc4158250ccecfb47ea8faf509593fadc76e5d3c6840ad05a57af1ede94d87590ce90a0a7579766f7ec4fcd3cb0b1a8c531724d5ef6b334803cedaa9cedf16dc3af6c9eb0dcca5303eed6689ea910900785f61278dde47e6672e93a314a5f60e7b682bf0cacde21f6090f4fb311afd7f8b48f3f0d8c66449d8687dcf2d0f76668b2b9bf8b32b518e01ffb985f8054d37959c529e99b7daf32acfed749d516d014cef5f98126324e202badc1e5c20ddc0103756b894418e4591c624a9b2ccabbfb888d413d923b0c901973cd7c9d197d6d8e64787c4d397f57a15b6e0b4212b6cb55b9c207bbe84f483b15f45b9a1d3af087047c568aef1d8659c6146a793026ebfc0bb5ec10b6290dc757a4903a88fb2c035f9349b6d2f0c051b8b775152786118a1020000fc19928ccb713ff09e179c308fbe9bc543dcf43f731074d96ef2447a2a4af5ca0c39e7ca2e801e57560a55e9cfa095cf3f74398219ad10e5e9d26631c2f1db3a2882f6e130a79517a88de7596429a20793e12616aa32b3e720c6521fbe933321adde8ca7dd99c0a0125ff8c18119a6926083f4a2c008a9f2a29e30823bf0ec3639cadaf9be9605a504bca38627df469cebb7db08358e1e5ab17eea477b1754f78f45468c9568471647f8bc03d11811ac6eec1741ceb39a3ecd9e3c325fcabbab3d12f6a759f7ce11dafa387a8077db8a2230d2014a57bc8dd47741270000008000000000b2eebd5e1626cab98499328ff024a240199993433ceb5be20427a32df7047d63010dfc6a461517ad48ff64042e84c85c899fd11c6320a8d8fc0e78c15a5a4dd567f91dd943f62d167fed1b605965a5c2b32d094a461a990000000000000000000000000000000000000000000200000000000000000000b385c644a4a170e6dc9e9e546bfa049d025b319a9d87fd85481743db5d6c2cb6a204d45f88dd4140c8edb598a36e21ad132bf6b88c99c5a5ed047d6589c10a5f6633b01813fc5cd7d048469a966bbfb300fd772cbadf2cf26899bfd15e7d9408026a92f13f11d1c9832259b2f97227f84a3bb96253717a177ac091d0f4632f638b09a0307ff31729857f9e6fe9f19e481a3f77cead663f42456e080952636515c758f5047b2148944133a492ef20a1778088c42094903d6ece2497b99fc745c420b035ff7961484a0f62a2d957ae2e47ff1ea8a059f2d03bf9c3e8d2b16ab409de762522f6008de48bb70b698c5c9867437ac3127fad4bd699acaad78a5f66c7fc7d46e048082a0af61e6b052e473ed26b0309080ea10e985703b292c7336112b1f35c3b069363869dce725d8da75dcebd168117ea28c76dcfa0c052feecee18c64c4600a0bc3d4945d4b918865bb7a8a726a500689cbd9a84d07846417796f2a85e7a41d27d64b10f8e970469cf495b4a1b4ea8b2322f78e9f3048351b550c59a634b47981420081ea4da18b9d318fa001ce660b28bbcf3c1a8893d130b26d25e491f478ae4f95f71db8897b32858f78d6e25537b959b69a04c5507008b8453f08a5ae1b3b4d8c83053c57637a98ef57e5fa51971eba5e287e9d10cba734336703def181022cb9f1e62079c48c13fe1659b157e5d9de7bfb929e715ed1a9a505a04a8d8474482295afbb9de90de2e918522cac2d5b5ac09d1fdc4147d6393a684ad7234ecb65d0008000000000000560ad146e8b9e9cd9b050edb1f6735c90a76b1ba4dbdee34d0b6750f25ba7251944ada7766c301c65e56351d009a568c782f4438ecba9bee47f25286300e83bd1853076ad52eac84029335b86e7f21e39a1af3d070abef94bc0827db0046dcb7d63bf64bf801c836a40b0100d0961533737c57e9b7337b981a99f63f600f90647703f0640f6594dd9f26436024a1f90f174769bad5a283271e6d7f49dec90a05bd771dd0502dc2170ccf98ade27e858eb5686ac900000000ae1bc4246ae316c6af10bf02088b4bb2ac89c96e58578dc50eddbf01ece3cb8a363ecbeb8198997115d7151f691a2a755d8233e006dd38ed5ba350bd6aad3bf6f55d4014c6100f8a20be455d16134d65ce69c4b906b76427224b69750b779d81eb6e37e1db62b1788ff918433787f8026ef5c518113d48419a14a2bd8d4afff527513a2efc8403be48e494b3de33b1deefd9d902e8dc868f30161c2cd13b21b0a20362181186ff8cf4c8d58d74822f92554287ee157e9f1597c3e2e238f382a91bf48b4de88363c841bd7a8cddae3344295bd3d434d9ecf74634b4c9539010f0d36e672b9d668cc6762c0b25e4a22afb4d184ba84498b1367e4b31faf75f1b3dcecfd80c57015d8cd16171507add30833865fc1a42780e9d57bb14a6ebea4018d26e18747546fc7a4a619753fd9ba9c18e746aa9ea132058eb90f9b80549473eea2fb9bc43d38d8719a1cca094bd933ceef87a3ec0c2ac70d5f843425100950000009e000000000008000018779600e4283095c203b1f2ae5ed34f5b7e77278f7ded9f030000002e050000009f95a59418f612dfa87c654043da1a59c3c43c7884ab65d4b34984afe30c67179c4f5a3ba0e491f2b942b754a3c0d5b878c4ad63591c3fc7d3a4d4296d4bab0a88e55ff9c2536654bb2f83e8015fac216119e8ce582698938c9a331a914087b71f07e50300f7ff00d03bf057b408c86a1165bd9a1bdbf3dff88c9b2173a75d5fc82dce6d8a3f297231e33588d7cf183109c1118d94a41d48f8efcf193ff2699a76973f3f1ec1cff64a1b912ededeb080f9a241e07709e6dd6a3a7e18200c9e80b9634e6f0c4d000000000000000000000000000000005e50e77d04fcf8931ad07b38a39957e6b3a3c909000000e9d694e483e848fe0d00ee7c7d6cc30932a9575aa8808d10a4963560250bb4e60e88c726f63662cb143daf4b9ebd0774998a59fbb42dc35f12452cca456a12b7d15cf3ce7ea350e9510e96527cde622998683e65b235c284543ca32436f9e705dff00f08df1115175628a327876dea291480c2dde8a59d1856eed2b502965038af0d56e49e0e2e9cb0e25104805f386d460e212c27ac7bafe6a0078f8648ff9f1e0257338ae58457fb27b29430cc9ac6a33ea11b88ae8bc95dffa293aa69d6d47f89b28a25a7ec2fce6691549990f93d1f02e1b619813699303b6b1260d5537e85315551adabe00c98282795dc5547aab3dcbd82a06e7f00c8160af19f1fc456b5fc4f099814631024b734c0cd8843c5cb124a21092e6cdd8aa2f4d3f93e92c6d850898890d9449e3f499af92be74ba8ba7928feabbd99d6288dece7513c50b973bab87214415078857d18032ab5adb8d4bf32405cc5f63eba7e60bcd0098fd7957943b3c4cf13de4e049e06ad7ebc236d1088c99d35f40555364ff86cab4542261999bccd3269e51d10900a1c05696b47ff33a159abce6bb1d69193bd01f59f1d3f431b4e0868db623cb8375baa52785b8fcd37ce4c52abe43c1e3368735022e7cc7a9b397b494d0183cbd8dae2ba19b32adc91444f519ad33f7f2680e3cf7ecd3cfc67816eb66b1faa78dd8e3f7e233b6048c53813e6b508dfc713583d8ef8f9cfff5cdae59aa7aca654b1740c90eb71ca000000000000000000000000000000000000000000faa53c07b5f590ee4c8bfbd828e912b150dde95dafe80ee043a107bde9c0bb87155691d640fd000000e4a2d2aa0607b026f78417471e6ea0d10000309b29d0dae2d2c9c730ac21cc2a6213596a784a09775f86a9e6d5b6c7b3c5d10177a873edb630fdf9b1e11005a1ce41d04a2ad3f5d25a1595e7609849033d2e86ac682f2f0cde376f50a88a3ab5e83f56e43a07641b82c077fa1479b79e85c71a9c00000000000000078ce7c4ab383dac0325fa7f4ffb201c479265ff572dd061679c0000000000000f4f6b4ef8eb757ac80dc44711ae17816e32e38d7c894ab51238b2d7051ee26121404c0ade6faea7e72449cf38be7173b066f3a7835a31f1516c4cb1fda57ec8c19bc2800e246c1b64cf278c7afb7c9a5e346bdb259ac6788eefd5086e45554c8e2bdde8a3ac990dd968f2f07d83e925b326b05f130000000000000000000000000000000003572023092306e73a16f4b362f725b22b32be04e53a2219e3b08d75537c158ea4c4821d17d3b844dbe87408c34bb0f26ba43bd4530afb769d45b93b8f2b6c194afc197f77bfb136dfd38c265479bd4f74b9d0b5c2f37eaacb2894370ab02abe06b823a2753ca82ea8888f2a5063212212772dcc541de26c97c1312fc247b56a9cd3e05bcb8bc93363edfa05f9c76e94190f917c3af6884c8742371f25eb0000000000000000000000004ae9afd11c62a57a29a163acc55ca9fe6da9ce6d59bdd87adec5ba4052a5edcd9999720e8b2a08b69f79f78c78b9f720bcf6a2ab411d420db8231780cdf52d44985768353ce1bc587700adf3a307ff11be0ca772f1bcc565070ef9345c2d55f0506d9059fff65ca75c9809c8e5e423f6f210a195e9b59a08c43dab5b025b1dc33ca5adfdafe62aa8f13c38341267a920fc0be4e61fe9d8bed61524ad62896e3dfba3091cf028cdb3fabb530f1d0d4bdf391c5dda4b8b248ea58cb56aed4d968d506a108626e2423c506cc11bc2ec9dc9b793fec489d08085e8c582cf6fc06c20eb57f7a1ba7315c67bd0e50f529a01211f8add5f28fd65fcd373982ae902e67966990cf34be5ed5dcf39b9e44fb0165fa40fcc5643678bab244a3a76f43dd267db562efe5156b85f6e909066b8f37b81b756eeeeee4598195e70d74bd1e221c5e0cf111b816f8bd5c2ac451fabd160815b9e81b9c4abffef4b12d82e401a0cce36fbfedaec4ab6a89e128ef71e63f2239792338e87e4c7d571d6e4bc165ea1d476531b4ddfbb698101e8563f7c25b4d527240dafb074437aa96f66e293df31b7b7689ff290585e132fa95aa09c08ee57f089afc0522b438480aa3dc9f41330dcd3b25703feb85777de8fd5ac57464a31ae5924745f797a0c852ddf67e01dd5736b4826e16f885afb91b6a7f226e0d0aaabd0c01a8262ca35e501ddb3c191797560c91717a2215012da9e717ec8d65887138e3bc3886e5b6f3058e58fb4320338d6413ce94012c293e0042a2f5dd86b78d05efd9e44bbbccfae8b9361072af38c1aa3c030196d72d01a160a19c0060900e8bb2f3613a7ddacf2b878aa6b2952556d79bd183ae195e14d32ffd398ae01dbd20b034da17f5a78ceb03a16e39181a07b14e54f4e2061049569046877b9f5478106f6ac76e56213ec2e85a4dcd5960ad486e7c05a21e52e5c688c1f315169452b1b6a795dd837867899c64a04ec08a4b2d5455d93f6d5baf14ffced8576bfde19de2903835607505b4af824a0a69aee28fe65683dc83c19fed253a5824442530c85d354c05c8b95030e629fb817697f746b9dd02fb40edf4f9886a758e0741ca2711e425f2f5be70a7fa60071da8e4c62849dfbcd9554651c37dd8a494277ccee57598aadacf7da2bb7eee89ebb390ae78d2d8c1d59169bd2a9618b4c6dc605fa3777635f8d08f1a6f1b35cc1b695d6f9ada69f7152417829ac24e1d22d33a8cd97c8360853187d67fb490302e76c4425c7a1a64edd4b6a1541889f170600009dbdbd59208cb1d88cb9d2256907c80da812e3711d0ac459420b5dbeaec4e5d3854dd22229ebac551a44008dd749071117ccbed81568ed2ae6f77e23a3884e0af54cde0afba352249a0b62da853d289702b342738799c81196697b450869a5479d96ca0a68f173b39718e2b9ce8d595e5cc57605995f43706d55f663c3f98417a711da01486f5caa4e702ce6166c88235d032d7ba383871b174417a1497c9495fdb25d00"/5064], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x171}, 0x48) [ 88.530041][ T5444] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 88.537851][ T5444] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 88.545673][ T5444] 13:52:17 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:17 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xfbffffff, &(0x7f0000000040), 0x0, 0x0) 13:52:17 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800de36f20061edf93c1726b500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) r2 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r2, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r2, r1, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_int(r3, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) openat$cgroup_ro(r3, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x0, 0x0) r5 = perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r5, 0x2401, 0x3) r6 = perf_event_open(&(0x7f0000000b00)={0x2, 0x80, 0x7f, 0x7, 0x8, 0x9, 0x0, 0x9, 0x4004, 0xa, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0xf69, 0x2}, 0x10010, 0x6f, 0x1, 0x6, 0x8, 0x31ce, 0x3, 0x0, 0x5, 0x0, 0x1c7f}, 0xffffffffffffffff, 0x8, r5, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000580)={0x0, r6, 0x0, 0x2e5, &(0x7f0000000f00)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\x80\xf8 U\xeb\xd7\xde\x96\x89\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90\xdd[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde\x9a[\xe2(\x88\x06\x1f?\xf5?\x8bk9fx\xffI\x00\xbdm\xbd\x19\xd4@O\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\xa7\xe5\x1b\xaetX\x01\xcb\xdczMS\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4k\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\b\v9}z\xd8\xfd\nCB\xa4\xf2\xb3!\xe0\xc9\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93\xd2\x00\x00\x00\x00\x00\x00\x00\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x832Z\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x007q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xe4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xdf7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.\xa2\xd8\x18`\x1b\x1e\x1d\xc9BFK\xc6^\x13\xce68\xe4\x83\xfd?\x87\x94\v\xb4x\xf4|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xe8\xf0\x15\x9c\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xee>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8d\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xdde\xe8p29\v\x02\xa2b\x13R\xef\xffA\f\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x1e\x00_^\xfe\x11\xf8\xc8W\x81s^\xd9\x03\x00\x00\x00\x00\x00\x00\x00\x1b\x17\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2\x1fA\x00\xdc\xdd\x11x\x90\x97QJ\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00&\xd8\xb3S\xe0\x1e\xa7\xc3`~U\x91\xfa\x92\x1e\xccdfFz\xa8\t\xe4+\x83\xac\x94\x18:7Hx\xde\xd0T)!\x00'/783, 0x0}, 0xfffffffffffffe86) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000a40)={r7}, 0x4) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) openat$cgroup_ro(r8, &(0x7f00000003c0)='cgroup.stat\x00', 0x0, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r7}, 0x4) gettid() perf_event_open(&(0x7f00000002c0)={0x5, 0x80, 0x2, 0x3, 0x6, 0x0, 0x0, 0x25, 0x1000, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000180), 0x2}, 0x0, 0x300000000000, 0x7f, 0x0, 0xd9b, 0x3, 0xc2, 0x0, 0x6, 0x0, 0x1}, 0x0, 0x5, 0xffffffffffffffff, 0x9) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800de36f20061edf93c1726b500000000000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) (async) syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) (async) syz_open_procfs$namespace(r2, 0x0) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r2, r1, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r3, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) openat$cgroup_ro(r3, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x0, 0x0) (async) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_RESET(r5, 0x2401, 0x3) (async) perf_event_open(&(0x7f0000000b00)={0x2, 0x80, 0x7f, 0x7, 0x8, 0x9, 0x0, 0x9, 0x4004, 0xa, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0xf69, 0x2}, 0x10010, 0x6f, 0x1, 0x6, 0x8, 0x31ce, 0x3, 0x0, 0x5, 0x0, 0x1c7f}, 0xffffffffffffffff, 0x8, r5, 0x2) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000580)={0x0, r6, 0x0, 0x2e5, &(0x7f0000000f00)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\x80\xf8 U\xeb\xd7\xde\x96\x89\xef~Iy:\xe1\x87\x12\xee\xeb\x1d\xaav\x94\x97\x80\v\x7f\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6`\xd8c\xe4\x9b\x8cO;=\xadH\x90\xdd[-l\xfd\n\xbd7,c\xbc\xf5\xd7\a\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd\x82\xfc45\xbe\xd4\xde\x9a[\xe2(\x88\x06\x1f?\xf5?\x8bk9fx\xffI\x00\xbdm\xbd\x19\xd4@O\xe7\xba\x15^\xf9\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\xa7\xe5\x1b\xaetX\x01\xcb\xdczMS\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4k\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\b\v9}z\xd8\xfd\nCB\xa4\xf2\xb3!\xe0\xc9\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93\xd2\x00\x00\x00\x00\x00\x00\x00\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x832Z\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x98\x86\"R\x06\x00\x00\x00\x00\x007q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xe4\x11(\xb1|\xb0\x1f\xbf[R+\xe0\xfd\x02\x02*\xdf7\xfe\xcc\x0e\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f.\xa2\xd8\x18`\x1b\x1e\x1d\xc9BFK\xc6^\x13\xce68\xe4\x83\xfd?\x87\x94\v\xb4x\xf4|L\x11\x03\x94\xc0\t=\x17\x95P\x89\xf2\xca\x97\xbb\xe8\xf0\x15\x9c\xfeu\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x8bS\x9c\xecyl\xec\x9b\xf5\x85\xeb\x80\xee>\r&\x014\x01\xf4\xb7\x83\x9a\xfa*\xa6\x06\xb7Pk7N\xc2\xd9\xee\xd0\xb0M\x00\xab\xc3\t\fc\xd8d\x14\xb1\xc0\xd7\x1a\xa0\x16\xa2z\x9e\x93 \xdde\xe8p29\v\x02\xa2b\x13R\xef\xffA\f\xb9.$\xfa\x9f\xde[\x80\xd1=\xce\x1b\xeb\xf6\xf4\xe3z\x1f\x9dz\xa3\xc0\xe2\xa2\xb1\xeeq\xf5\xec0\x8e\xf4\xfb\xd9\x87\xf03\xdb\xae|\x10&V5c\xa6\xce\xcd\x8a\xdf\xe1\x89\"\xea\xde\xe7\xa3\xbe\xe7\xff\xf9 \x11\xfdY\xc6\xa1\xe8\xda\v\\?\xcb\x87\bn\x9b\x01\x1f\xf8\xe8\x1eV\xfaC\xdf\xc3Vv\x9b\x1a\xfc\x14.c\x94\xc9=\xb0\x0f!d\b\x18*@m\x7f\xaal\x17G\xd6?\x81\x16P\x03\x10e\xc3\xcd\xb1B\xeb\x01B\\\x91A\xa1\x8an\xb4#\xadr\x1e\x81v\xa2\x0e6x\xca\x8b\xa6\xd8\x1e\x00_^\xfe\x11\xf8\xc8W\x81s^\xd9\x03\x00\x00\x00\x00\x00\x00\x00\x1b\x17\x8c\xb24h\xd7}\x7f\x92Hgej\x957\xe2\x1fA\x00\xdc\xdd\x11x\x90\x97QJ\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00&\xd8\xb3S\xe0\x1e\xa7\xc3`~U\x91\xfa\x92\x1e\xccdfFz\xa8\t\xe4+\x83\xac\x94\x18:7Hx\xde\xd0T)!\x00'/783}, 0xfffffffffffffe86) (async) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000a40)={r7}, 0x4) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) (async) openat$cgroup_ro(r8, &(0x7f00000003c0)='cgroup.stat\x00', 0x0, 0x0) (async) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r7}, 0x4) (async) gettid() (async) perf_event_open(&(0x7f00000002c0)={0x5, 0x80, 0x2, 0x3, 0x6, 0x0, 0x0, 0x25, 0x1000, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000180), 0x2}, 0x0, 0x300000000000, 0x7f, 0x0, 0xd9b, 0x3, 0xc2, 0x0, 0x6, 0x0, 0x1}, 0x0, 0x5, 0xffffffffffffffff, 0x9) (async) 13:52:17 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:17 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 36) 13:52:17 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:17 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz1\x00', 0x200002, 0x0) openat$cgroup_subtree(r2, &(0x7f00000000c0), 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:17 executing program 3: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r1 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001180)={0xffffffffffffffff, 0x6, 0x34}, 0xc) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) r5 = bpf$ITER_CREATE(0x21, &(0x7f00000011c0), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000001240)={0x8, 0xf, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0xd74f, 0x0, 0x0, 0x0, 0x81}, [@map_idx={0x18, 0x4, 0x5, 0x0, 0x4}, @ldst={0x2, 0x1, 0x6, 0x0, 0x2, 0x1, 0xfffffffffffffffc}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffff9}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x4}, @btf_id={0x18, 0xa, 0x3, 0x0, 0x5}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x4}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000100)=""/4096, 0x41000, 0x1, '\x00', 0x0, 0x12, 0xffffffffffffffff, 0x8, &(0x7f0000001100)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000001140)={0x3, 0x7, 0xa1}, 0x10, 0xffffffffffffffff, r0, 0x0, &(0x7f0000001200)=[r1, 0xffffffffffffffff, r4, r5, 0x1]}, 0x80) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)=0xffff) syz_clone(0x40001400, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) (async) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001180)={0xffffffffffffffff, 0x6, 0x34}, 0xc) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) (async) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) (async) bpf$ITER_CREATE(0x21, &(0x7f00000011c0), 0x8) (async) bpf$PROG_LOAD(0x5, &(0x7f0000001240)={0x8, 0xf, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0xd74f, 0x0, 0x0, 0x0, 0x81}, [@map_idx={0x18, 0x4, 0x5, 0x0, 0x4}, @ldst={0x2, 0x1, 0x6, 0x0, 0x2, 0x1, 0xfffffffffffffffc}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffff9}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x4}, @btf_id={0x18, 0xa, 0x3, 0x0, 0x5}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x4}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000100)=""/4096, 0x41000, 0x1, '\x00', 0x0, 0x12, 0xffffffffffffffff, 0x8, &(0x7f0000001100)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000001140)={0x3, 0x7, 0xa1}, 0x10, 0xffffffffffffffff, r0, 0x0, &(0x7f0000001200)=[r1, 0xffffffffffffffff, r4, r5, 0x1]}, 0x80) (async) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)=0xffff) (async) syz_clone(0x40001400, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0) (async) 13:52:17 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xfeffffff, &(0x7f0000000040), 0x0, 0x0) 13:52:17 executing program 0: perf_event_open(&(0x7f0000000440)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async) r1 = gettid() ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x361) (async) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x20, 0x80, 0x0, 0x8b, 0x0, 0x4, 0x6004, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xb19, 0x0, @perf_bp={&(0x7f0000000040), 0x2}, 0x9008, 0x81, 0x0, 0x4, 0x7, 0x0, 0xfff, 0x0, 0xbbc, 0x0, 0x80000000}, r1, 0xf, r0, 0x0) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x0, 0x7, 0x70, 0x80, 0x0, 0x0, 0x3432, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={&(0x7f0000000240)}, 0x10040, 0x7, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x154}, 0x0, 0x4, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f0000000740)={0x4, 0x80, 0x81, 0x2, 0x3, 0x3, 0x0, 0x7, 0x1, 0x8, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x2, @perf_config_ext={0x93bc, 0x2}, 0x24, 0x2f, 0x8, 0x5, 0x6, 0xb8, 0x4, 0x0, 0x401, 0x0, 0xc3ca}, 0x0, 0xffffffffffffffff, r2, 0x8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="784615e1d9c14bf8b3b6fb5a237043639fb80b2635d2dbdc046f7be376b496bc218ac265cc04b5f836601e7d56590b90bf4e16424b879168a79ce35d45677012290c449cd62620"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) (async) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='io_uring_queue_async_work\x00', r3}, 0xfffffffffffffd82) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f0000000280)='\x00') r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r6, &(0x7f0000000000), 0xffe000) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x1, 0x81, 0x7, 0x6, 0x0, 0x1e, 0x8000, 0xb, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, @perf_bp={&(0x7f0000000100), 0xf}, 0x88300, 0x2, 0x9, 0x6, 0xdd, 0x9, 0x101, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x10, r6, 0x8) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.time\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001a00)=ANY=[@ANYBLOB="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"/5064], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x171}, 0x48) 13:52:17 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, 0x0, 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:17 executing program 0: perf_event_open(&(0x7f0000000440)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async) r1 = gettid() ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x361) (async) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x20, 0x80, 0x0, 0x8b, 0x0, 0x4, 0x6004, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xb19, 0x0, @perf_bp={&(0x7f0000000040), 0x2}, 0x9008, 0x81, 0x0, 0x4, 0x7, 0x0, 0xfff, 0x0, 0xbbc, 0x0, 0x80000000}, r1, 0xf, r0, 0x0) (async) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x0, 0x7, 0x70, 0x80, 0x0, 0x0, 0x3432, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={&(0x7f0000000240)}, 0x10040, 0x7, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x154}, 0x0, 0x4, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000740)={0x4, 0x80, 0x81, 0x2, 0x3, 0x3, 0x0, 0x7, 0x1, 0x8, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x2, @perf_config_ext={0x93bc, 0x2}, 0x24, 0x2f, 0x8, 0x5, 0x6, 0xb8, 0x4, 0x0, 0x401, 0x0, 0xc3ca}, 0x0, 0xffffffffffffffff, r2, 0x8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="784615e1d9c14bf8b3b6fb5a237043639fb80b2635d2dbdc046f7be376b496bc218ac265cc04b5f836601e7d56590b90bf4e16424b879168a79ce35d45677012290c449cd62620"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) (async, rerun: 64) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='io_uring_queue_async_work\x00', r3}, 0xfffffffffffffd82) (rerun: 64) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r5, 0x40082406, &(0x7f0000000280)='\x00') (async) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r6, &(0x7f0000000000), 0xffe000) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x1, 0x81, 0x7, 0x6, 0x0, 0x1e, 0x8000, 0xb, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, @perf_bp={&(0x7f0000000100), 0xf}, 0x88300, 0x2, 0x9, 0x6, 0xdd, 0x9, 0x101, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x10, r6, 0x8) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.time\x00', 0x0, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001a00)=ANY=[@ANYBLOB="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"/5064], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x171}, 0x48) 13:52:17 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz1\x00', 0x200002, 0x0) openat$cgroup_subtree(r2, &(0x7f00000000c0), 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:17 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, 0x0, 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:17 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, 0x0, 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:17 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz1\x00', 0x200002, 0x0) openat$cgroup_subtree(r2, &(0x7f00000000c0), 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 89.131084][ T5553] FAULT_INJECTION: forcing a failure. [ 89.131084][ T5553] name failslab, interval 1, probability 0, space 0, times 0 [ 89.152435][ T5553] CPU: 0 PID: 5553 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 89.162623][ T5553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 89.172499][ T5553] Call Trace: [ 89.175615][ T5553] [ 89.178391][ T5553] dump_stack_lvl+0x151/0x1b7 [ 89.182907][ T5553] ? bfq_pos_tree_add_move+0x43e/0x43e [ 89.188219][ T5553] ? do_syscall_64+0x44/0xd0 [ 89.192630][ T5553] dump_stack+0x15/0x17 [ 89.196621][ T5553] should_fail+0x3c0/0x510 [ 89.200874][ T5553] __should_failslab+0x9f/0xe0 [ 89.205474][ T5553] should_failslab+0x9/0x20 [ 89.209813][ T5553] kmem_cache_alloc+0x4f/0x2f0 [ 89.214414][ T5553] ? anon_vma_clone+0xa1/0x4f0 [ 89.219098][ T5553] anon_vma_clone+0xa1/0x4f0 [ 89.223544][ T5553] anon_vma_fork+0x91/0x4f0 [ 89.227865][ T5553] ? anon_vma_name+0x4c/0x70 [ 89.232294][ T5553] dup_mmap+0x750/0xea0 [ 89.236288][ T5553] ? __delayed_free_task+0x20/0x20 [ 89.241234][ T5553] ? mm_init+0x807/0x960 [ 89.245316][ T5553] dup_mm+0x91/0x330 [ 89.249042][ T5553] copy_mm+0x108/0x1b0 [ 89.252950][ T5553] copy_process+0x1295/0x3250 [ 89.257463][ T5553] ? proc_fail_nth_write+0x213/0x290 [ 89.262582][ T5553] ? proc_fail_nth_read+0x220/0x220 [ 89.267613][ T5553] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 89.272559][ T5553] ? vfs_write+0x9af/0x1050 [ 89.276900][ T5553] ? vmacache_update+0xb7/0x120 [ 89.281584][ T5553] kernel_clone+0x22d/0x990 [ 89.285925][ T5553] ? file_end_write+0x1b0/0x1b0 [ 89.290615][ T5553] ? __kasan_check_write+0x14/0x20 [ 89.295746][ T5553] ? create_io_thread+0x1e0/0x1e0 [ 89.300608][ T5553] ? __mutex_lock_slowpath+0x10/0x10 [ 89.305718][ T5553] __x64_sys_clone+0x289/0x310 [ 89.310320][ T5553] ? __do_sys_vfork+0x130/0x130 [ 89.315009][ T5553] ? debug_smp_processor_id+0x17/0x20 [ 89.320211][ T5553] do_syscall_64+0x44/0xd0 [ 89.324469][ T5553] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 89.330206][ T5553] RIP: 0033:0x7f35007595a9 [ 89.334445][ T5553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 89.353889][ T5553] RSP: 002b:00007f34ff4ac118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 89.362133][ T5553] RAX: ffffffffffffffda RBX: 00007f350087a050 RCX: 00007f35007595a9 [ 89.369946][ T5553] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 89.377753][ T5553] RBP: 00007f34ff4ac1d0 R08: 0000000000000000 R09: 0000000000000000 [ 89.385563][ T5553] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 89.393378][ T5553] R13: 00007ffc2631eaaf R14: 00007f34ff4ac300 R15: 0000000000022000 [ 89.401189][ T5553] 13:52:17 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 37) 13:52:17 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) socketpair(0x1d, 0x6, 0xffffffff, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x4040) write$cgroup_int(r3, &(0x7f0000000080)=0x1, 0x12) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8) write$cgroup_int(r7, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_ro(r7, &(0x7f00000000c0)='blkio.bfq.sectors_recursive\x00', 0x0, 0x0) 13:52:17 executing program 0: r0 = syz_clone(0x55201100, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r1, 0x0) syz_open_procfs$namespace(r0, &(0x7f0000000100)='ns/cgroup\x00') perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x3, 0xf, 0x6, 0xca, 0x0, 0x3edf, 0x6008b, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1f, 0x0, @perf_bp={&(0x7f0000000140), 0x2}, 0x40008, 0x2, 0x2, 0x2, 0x7ff, 0x2dc5fc3c, 0x7fff, 0x0, 0x4, 0x0, 0x6}, r1, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000000c0), 0x10) r3 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000240)={&(0x7f0000000200)='./file0\x00', 0x0, 0x10}, 0x10) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000002c0)=r3, 0x4) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x8, 0x92, 0x1, 0x2, 0x0, 0x9e, 0x1806, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={&(0x7f0000000000), 0x3}, 0x284, 0x101, 0x72, 0x2, 0x4, 0x4, 0x2, 0x0, 0x80000001, 0x0, 0x1}, r1, 0x5, r2, 0xa) [ 89.466713][ T5567] FAULT_INJECTION: forcing a failure. [ 89.466713][ T5567] name failslab, interval 1, probability 0, space 0, times 0 [ 89.545938][ T5567] CPU: 0 PID: 5567 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 89.555929][ T5567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 89.565824][ T5567] Call Trace: [ 89.568946][ T5567] [ 89.571728][ T5567] dump_stack_lvl+0x151/0x1b7 [ 89.576236][ T5567] ? bfq_pos_tree_add_move+0x43e/0x43e [ 89.581533][ T5567] dump_stack+0x15/0x17 [ 89.585520][ T5567] should_fail+0x3c0/0x510 [ 89.589774][ T5567] __should_failslab+0x9f/0xe0 [ 89.594375][ T5567] should_failslab+0x9/0x20 [ 89.598713][ T5567] kmem_cache_alloc+0x4f/0x2f0 [ 89.603314][ T5567] ? vm_area_dup+0x26/0x1d0 [ 89.607656][ T5567] vm_area_dup+0x26/0x1d0 [ 89.611821][ T5567] dup_mmap+0x6b8/0xea0 [ 89.615814][ T5567] ? __delayed_free_task+0x20/0x20 [ 89.620759][ T5567] ? mm_init+0x807/0x960 [ 89.624837][ T5567] dup_mm+0x91/0x330 [ 89.628572][ T5567] copy_mm+0x108/0x1b0 [ 89.632473][ T5567] copy_process+0x1295/0x3250 [ 89.636989][ T5567] ? proc_fail_nth_write+0x213/0x290 [ 89.642107][ T5567] ? proc_fail_nth_read+0x220/0x220 [ 89.647144][ T5567] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 89.652089][ T5567] ? vfs_write+0x9af/0x1050 [ 89.656431][ T5567] ? vmacache_update+0xb7/0x120 [ 89.661117][ T5567] kernel_clone+0x22d/0x990 [ 89.665454][ T5567] ? file_end_write+0x1b0/0x1b0 [ 89.670141][ T5567] ? __kasan_check_write+0x14/0x20 [ 89.675090][ T5567] ? create_io_thread+0x1e0/0x1e0 [ 89.679951][ T5567] ? __mutex_lock_slowpath+0x10/0x10 [ 89.685070][ T5567] __x64_sys_clone+0x289/0x310 [ 89.689673][ T5567] ? __do_sys_vfork+0x130/0x130 [ 89.694358][ T5567] ? debug_smp_processor_id+0x17/0x20 [ 89.699566][ T5567] do_syscall_64+0x44/0xd0 [ 89.703822][ T5567] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 89.709545][ T5567] RIP: 0033:0x7f35007595a9 [ 89.713802][ T5567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 89.733245][ T5567] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 89.741491][ T5567] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 89.749296][ T5567] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 89.757106][ T5567] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 89.764921][ T5567] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 89.772732][ T5567] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 89.780549][ T5567] 13:52:18 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xffff0300, &(0x7f0000000040), 0x0, 0x0) 13:52:18 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:18 executing program 0: r0 = syz_clone(0x55201100, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r1, 0x0) (async) syz_open_procfs$namespace(r0, &(0x7f0000000100)='ns/cgroup\x00') (async) perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x3, 0xf, 0x6, 0xca, 0x0, 0x3edf, 0x6008b, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1f, 0x0, @perf_bp={&(0x7f0000000140), 0x2}, 0x40008, 0x2, 0x2, 0x2, 0x7ff, 0x2dc5fc3c, 0x7fff, 0x0, 0x4, 0x0, 0x6}, r1, 0x0, 0xffffffffffffffff, 0x0) (async) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000000c0), 0x10) (async) r3 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000240)={&(0x7f0000000200)='./file0\x00', 0x0, 0x10}, 0x10) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000002c0)=r3, 0x4) (async) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x8, 0x92, 0x1, 0x2, 0x0, 0x9e, 0x1806, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={&(0x7f0000000000), 0x3}, 0x284, 0x101, 0x72, 0x2, 0x4, 0x4, 0x2, 0x0, 0x80000001, 0x0, 0x1}, r1, 0x5, r2, 0xa) 13:52:18 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 38) 13:52:18 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) (async) socketpair(0x1d, 0x6, 0xffffffff, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x4040) (async) write$cgroup_int(r3, &(0x7f0000000080)=0x1, 0x12) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8) write$cgroup_int(r7, &(0x7f00000001c0), 0xfffffdef) (async) openat$cgroup_ro(r7, &(0x7f00000000c0)='blkio.bfq.sectors_recursive\x00', 0x0, 0x0) 13:52:18 executing program 3: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) (async) r1 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001180)={0xffffffffffffffff, 0x6, 0x34}, 0xc) (async) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) (async) r5 = bpf$ITER_CREATE(0x21, &(0x7f00000011c0), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000001240)={0x8, 0xf, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0xd74f, 0x0, 0x0, 0x0, 0x81}, [@map_idx={0x18, 0x4, 0x5, 0x0, 0x4}, @ldst={0x2, 0x1, 0x6, 0x0, 0x2, 0x1, 0xfffffffffffffffc}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffff9}, @func={0x85, 0x0, 0x1, 0x0, 0x7}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x4}, @btf_id={0x18, 0xa, 0x3, 0x0, 0x5}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x4}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f0000000100)=""/4096, 0x41000, 0x1, '\x00', 0x0, 0x12, 0xffffffffffffffff, 0x8, &(0x7f0000001100)={0x3, 0x5}, 0x8, 0x10, &(0x7f0000001140)={0x3, 0x7, 0xa1}, 0x10, 0xffffffffffffffff, r0, 0x0, &(0x7f0000001200)=[r1, 0xffffffffffffffff, r4, r5, 0x1]}, 0x80) (async) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)=0xffff) (async) syz_clone(0x40001400, &(0x7f0000000380), 0x0, 0x0, 0x0, 0x0) 13:52:18 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 90.122049][ T5577] FAULT_INJECTION: forcing a failure. [ 90.122049][ T5577] name failslab, interval 1, probability 0, space 0, times 0 [ 90.144985][ T5577] CPU: 0 PID: 5577 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 90.154978][ T5577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 90.164867][ T5577] Call Trace: [ 90.167990][ T5577] [ 90.170768][ T5577] dump_stack_lvl+0x151/0x1b7 [ 90.175280][ T5577] ? bfq_pos_tree_add_move+0x43e/0x43e [ 90.180576][ T5577] dump_stack+0x15/0x17 [ 90.184565][ T5577] should_fail+0x3c0/0x510 [ 90.188827][ T5577] __should_failslab+0x9f/0xe0 [ 90.193426][ T5577] should_failslab+0x9/0x20 [ 90.197758][ T5577] kmem_cache_alloc+0x4f/0x2f0 [ 90.202358][ T5577] ? vm_area_dup+0x26/0x1d0 [ 90.206711][ T5577] vm_area_dup+0x26/0x1d0 [ 90.210864][ T5577] dup_mmap+0x6b8/0xea0 [ 90.214863][ T5577] ? __delayed_free_task+0x20/0x20 [ 90.219806][ T5577] ? mm_init+0x807/0x960 [ 90.223887][ T5577] dup_mm+0x91/0x330 [ 90.227614][ T5577] copy_mm+0x108/0x1b0 [ 90.231520][ T5577] copy_process+0x1295/0x3250 [ 90.236037][ T5577] ? proc_fail_nth_write+0x213/0x290 [ 90.241158][ T5577] ? proc_fail_nth_read+0x220/0x220 [ 90.246189][ T5577] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 90.251136][ T5577] ? vfs_write+0x9af/0x1050 [ 90.255481][ T5577] ? vmacache_update+0xb7/0x120 [ 90.260166][ T5577] kernel_clone+0x22d/0x990 [ 90.264507][ T5577] ? file_end_write+0x1b0/0x1b0 [ 90.269194][ T5577] ? __kasan_check_write+0x14/0x20 [ 90.274139][ T5577] ? create_io_thread+0x1e0/0x1e0 [ 90.278997][ T5577] ? __mutex_lock_slowpath+0x10/0x10 [ 90.284122][ T5577] __x64_sys_clone+0x289/0x310 [ 90.288719][ T5577] ? __do_sys_vfork+0x130/0x130 [ 90.293407][ T5577] ? debug_smp_processor_id+0x17/0x20 [ 90.298614][ T5577] do_syscall_64+0x44/0xd0 [ 90.302865][ T5577] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 90.308597][ T5577] RIP: 0033:0x7f35007595a9 [ 90.312848][ T5577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 90.332294][ T5577] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 90.340530][ T5577] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 90.348342][ T5577] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 90.356156][ T5577] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 90.363968][ T5577] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 13:52:18 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 39) [ 90.371780][ T5577] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 90.379610][ T5577] [ 90.409661][ T5596] FAULT_INJECTION: forcing a failure. [ 90.409661][ T5596] name failslab, interval 1, probability 0, space 0, times 0 [ 90.422905][ T5596] CPU: 1 PID: 5596 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 90.432892][ T5596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 90.442784][ T5596] Call Trace: [ 90.445903][ T5596] [ 90.448684][ T5596] dump_stack_lvl+0x151/0x1b7 [ 90.453197][ T5596] ? bfq_pos_tree_add_move+0x43e/0x43e [ 90.458498][ T5596] dump_stack+0x15/0x17 [ 90.462486][ T5596] should_fail+0x3c0/0x510 [ 90.466737][ T5596] __should_failslab+0x9f/0xe0 [ 90.471335][ T5596] should_failslab+0x9/0x20 [ 90.475676][ T5596] kmem_cache_alloc+0x4f/0x2f0 [ 90.480274][ T5596] ? vm_area_dup+0x26/0x1d0 [ 90.484613][ T5596] ? __kasan_check_read+0x11/0x20 [ 90.489477][ T5596] vm_area_dup+0x26/0x1d0 [ 90.493643][ T5596] dup_mmap+0x6b8/0xea0 [ 90.497633][ T5596] ? __delayed_free_task+0x20/0x20 [ 90.502577][ T5596] ? mm_init+0x807/0x960 [ 90.506656][ T5596] dup_mm+0x91/0x330 [ 90.510389][ T5596] copy_mm+0x108/0x1b0 [ 90.514296][ T5596] copy_process+0x1295/0x3250 [ 90.518813][ T5596] ? proc_fail_nth_write+0x213/0x290 [ 90.523926][ T5596] ? proc_fail_nth_read+0x220/0x220 [ 90.528961][ T5596] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 90.533910][ T5596] ? vfs_write+0x9af/0x1050 [ 90.538249][ T5596] ? vmacache_update+0xb7/0x120 [ 90.542938][ T5596] kernel_clone+0x22d/0x990 [ 90.547278][ T5596] ? file_end_write+0x1b0/0x1b0 [ 90.551960][ T5596] ? __kasan_check_write+0x14/0x20 [ 90.556908][ T5596] ? create_io_thread+0x1e0/0x1e0 [ 90.561770][ T5596] ? __mutex_lock_slowpath+0x10/0x10 [ 90.566893][ T5596] __x64_sys_clone+0x289/0x310 [ 90.571498][ T5596] ? __do_sys_vfork+0x130/0x130 [ 90.576176][ T5596] ? debug_smp_processor_id+0x17/0x20 [ 90.581384][ T5596] do_syscall_64+0x44/0xd0 [ 90.585641][ T5596] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 90.591363][ T5596] RIP: 0033:0x7f35007595a9 [ 90.595619][ T5596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 90.615060][ T5596] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 13:52:19 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 40) 13:52:19 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 90.623304][ T5596] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 90.631117][ T5596] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 90.638934][ T5596] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 90.646740][ T5596] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 90.654548][ T5596] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 90.662363][ T5596] 13:52:19 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) socketpair(0x1d, 0x6, 0xffffffff, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x4040) (async) write$cgroup_int(r3, &(0x7f0000000080)=0x1, 0x12) (async) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8) write$cgroup_int(r7, &(0x7f00000001c0), 0xfffffdef) (async) openat$cgroup_ro(r7, &(0x7f00000000c0)='blkio.bfq.sectors_recursive\x00', 0x0, 0x0) [ 90.705072][ T5602] FAULT_INJECTION: forcing a failure. [ 90.705072][ T5602] name failslab, interval 1, probability 0, space 0, times 0 [ 90.719368][ T5602] CPU: 1 PID: 5602 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 90.729358][ T5602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 90.739252][ T5602] Call Trace: [ 90.742374][ T5602] [ 90.745152][ T5602] dump_stack_lvl+0x151/0x1b7 [ 90.749665][ T5602] ? bfq_pos_tree_add_move+0x43e/0x43e [ 90.754962][ T5602] ? do_syscall_64+0x44/0xd0 [ 90.759388][ T5602] dump_stack+0x15/0x17 [ 90.763415][ T5602] should_fail+0x3c0/0x510 [ 90.767634][ T5602] __should_failslab+0x9f/0xe0 [ 90.772237][ T5602] should_failslab+0x9/0x20 [ 90.776569][ T5602] kmem_cache_alloc+0x4f/0x2f0 [ 90.781171][ T5602] ? anon_vma_clone+0xa1/0x4f0 [ 90.785770][ T5602] anon_vma_clone+0xa1/0x4f0 [ 90.790200][ T5602] anon_vma_fork+0x91/0x4f0 [ 90.794537][ T5602] ? anon_vma_name+0x4c/0x70 [ 90.798964][ T5602] dup_mmap+0x750/0xea0 [ 90.802958][ T5602] ? __delayed_free_task+0x20/0x20 [ 90.807903][ T5602] ? mm_init+0x807/0x960 [ 90.811985][ T5602] dup_mm+0x91/0x330 [ 90.815713][ T5602] copy_mm+0x108/0x1b0 [ 90.819618][ T5602] copy_process+0x1295/0x3250 [ 90.824136][ T5602] ? proc_fail_nth_write+0x213/0x290 [ 90.829255][ T5602] ? proc_fail_nth_read+0x220/0x220 [ 90.834286][ T5602] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 90.839236][ T5602] ? vfs_write+0x9af/0x1050 [ 90.843575][ T5602] ? vmacache_update+0xb7/0x120 [ 90.848263][ T5602] kernel_clone+0x22d/0x990 [ 90.852599][ T5602] ? file_end_write+0x1b0/0x1b0 [ 90.857284][ T5602] ? __kasan_check_write+0x14/0x20 [ 90.862234][ T5602] ? create_io_thread+0x1e0/0x1e0 [ 90.867093][ T5602] ? __mutex_lock_slowpath+0x10/0x10 [ 90.872217][ T5602] __x64_sys_clone+0x289/0x310 [ 90.876816][ T5602] ? __do_sys_vfork+0x130/0x130 [ 90.881503][ T5602] ? debug_smp_processor_id+0x17/0x20 [ 90.886711][ T5602] do_syscall_64+0x44/0xd0 [ 90.890965][ T5602] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 90.896688][ T5602] RIP: 0033:0x7f35007595a9 [ 90.900946][ T5602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 90.920394][ T5602] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 90.928627][ T5602] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 90.936443][ T5602] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 90.944252][ T5602] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 13:52:19 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 90.952063][ T5602] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 90.959884][ T5602] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 90.967691][ T5602] 13:52:19 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:19 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xfffffff5, &(0x7f0000000040), 0x0, 0x0) 13:52:19 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 41) 13:52:19 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:19 executing program 0: r0 = syz_clone(0x55201100, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r1, 0x0) syz_open_procfs$namespace(r0, &(0x7f0000000100)='ns/cgroup\x00') perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x3, 0xf, 0x6, 0xca, 0x0, 0x3edf, 0x6008b, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1f, 0x0, @perf_bp={&(0x7f0000000140), 0x2}, 0x40008, 0x2, 0x2, 0x2, 0x7ff, 0x2dc5fc3c, 0x7fff, 0x0, 0x4, 0x0, 0x6}, r1, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000000c0), 0x10) r3 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000240)={&(0x7f0000000200)='./file0\x00', 0x0, 0x10}, 0x10) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000002c0)=r3, 0x4) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x8, 0x92, 0x1, 0x2, 0x0, 0x9e, 0x1806, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={&(0x7f0000000000), 0x3}, 0x284, 0x101, 0x72, 0x2, 0x4, 0x4, 0x2, 0x0, 0x80000001, 0x0, 0x1}, r1, 0x5, r2, 0xa) syz_clone(0x55201100, 0x0, 0x0, 0x0, 0x0, 0x0) (async) syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) (async) syz_open_procfs$namespace(r1, 0x0) (async) syz_open_procfs$namespace(r0, &(0x7f0000000100)='ns/cgroup\x00') (async) perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x3, 0xf, 0x6, 0xca, 0x0, 0x3edf, 0x6008b, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1f, 0x0, @perf_bp={&(0x7f0000000140), 0x2}, 0x40008, 0x2, 0x2, 0x2, 0x7ff, 0x2dc5fc3c, 0x7fff, 0x0, 0x4, 0x0, 0x6}, r1, 0x0, 0xffffffffffffffff, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000000c0), 0x10) (async) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000240)={&(0x7f0000000200)='./file0\x00', 0x0, 0x10}, 0x10) (async) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000002c0)=r3, 0x4) (async) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x8, 0x92, 0x1, 0x2, 0x0, 0x9e, 0x1806, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={&(0x7f0000000000), 0x3}, 0x284, 0x101, 0x72, 0x2, 0x4, 0x4, 0x2, 0x0, 0x80000001, 0x0, 0x1}, r1, 0x5, r2, 0xa) (async) 13:52:19 executing program 3: r0 = syz_clone(0x40800380, &(0x7f0000000200)="5460f9a248221a8b1565ef516df214a6e9daa41bdb3623d58e108e7dc0ea5702f9f972c9bb2d00bb7e1c4430be75a695c9be41350d0f88cf10be1f3f9c013903cc6326fb3f97fd17e13af6e0294ba1bdc01517144a1507f71d37bb30caf1e21697e959b0fe62aa73373cfccc1e8407b11da9901d6bbac64662700440e667793279d04d00a6898c65ca38", 0x8a, &(0x7f0000000180), &(0x7f00000002c0), &(0x7f0000000300)="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") r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x5, &(0x7f00000001c0)=@raw=[@ldst={0x2, 0x0, 0x3, 0x0, 0x3}, @exit, @generic={0x4, 0x1, 0xb, 0x6}, @btf_id={0x18, 0x6}], 0x0, 0x0, 0xf2, &(0x7f0000000240)=""/242, 0x41100, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x0, 0x0, 0xecf, 0x800}, 0x10}, 0x80) r2 = gettid() recvmsg$unix(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000004980)=[{&(0x7f00000018c0)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/2, 0x2}, {&(0x7f0000001440)=""/166, 0xa6}, {&(0x7f0000000100)=""/12, 0xc}, {&(0x7f0000001680)=""/148, 0x94}, {&(0x7f00000028c0)=""/4096, 0x1000}, {&(0x7f0000001740)=""/146, 0x92}, {&(0x7f00000038c0)=""/188, 0xbc}, {&(0x7f0000003980)=""/4096, 0x1000}], 0x9, &(0x7f0000000140)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x40}, 0x2) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001800)={0x0, &(0x7f0000001500)=""/99, &(0x7f0000001580)="4828b17b1984949a7c58aab20a3117534e2c1187a3d5c3125c9340f12a04ba9b1ca3e24ac674914cb82e4847c1f93b1406a128d8f7088a67fff5114a7c8b9f8e64416deb06d229c51f3adbdb1de6b9f9b6b584b4d8470dabbaf59e8ece56e7b57851d89cb4d2eb2d72223312754d5161ceb30a66230773772aa60db14a4bd784d4824afc12d8e514d518de2d3b5d6f1c40161dfb97ad271f8145cc12378f38885a2ec6413c05ef551b6d9bde7fee0af377fad562035529b20687187a7d7d7cdc1ae18ee55ad9ce9de3201b8b424663dfb394dcba", 0x0, 0x9}, 0x38) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000001880)={&(0x7f0000001840)='./file0\x00'}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001400)) write$cgroup_pid(r1, &(0x7f0000001380)=r2, 0x12) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x6, &(0x7f00000013c0)=ANY=[@ANYBLOB="0800000095000000260f8dcb1cd893742fc5c7973a430000000004b106003f00000085000000a60000001898626ddb05324b791d97d0cf60723b"], &(0x7f0000000200)='syzkaller\x00', 0x4, 0xf2, &(0x7f0000000240)=""/242, 0x41100, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x6, 0xecf, 0x800}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000001340)={r0, 0xffffffffffffffff, 0x0, 0xe, &(0x7f0000001300)='./cgroup/syz0\x00'}, 0x30) perf_event_open$cgroup(&(0x7f0000000040)={0x4, 0x80, 0x1f, 0x5, 0x8, 0x3, 0x0, 0x0, 0x180, 0x4, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xff, 0x0, @perf_bp={&(0x7f0000000000), 0x6}, 0x4002, 0x6ec, 0x6c280000, 0x6, 0x400, 0x5, 0x9, 0x0, 0x9, 0x0, 0x3}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0) 13:52:19 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000080)='io.bfq.weight\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:19 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000080)='io.bfq.weight\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:19 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:19 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000080)='io.bfq.weight\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:19 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x0, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 91.394115][ T5624] FAULT_INJECTION: forcing a failure. [ 91.394115][ T5624] name failslab, interval 1, probability 0, space 0, times 0 13:52:19 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x2, 0xff, 0x9, 0x0, 0x10001, 0x30, 0x8, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x5, 0x5}, 0x4200, 0x1, 0x5, 0x9, 0x8, 0x5, 0x3ff, 0x0, 0x7, 0x0, 0x101}, r0, 0x0, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x0, 0xff, 0x1, 0x1f, 0x0, 0x1, 0x8048, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x9, 0x1, @perf_bp={&(0x7f0000000040)}, 0x800, 0x3ff, 0x800, 0x4, 0x4, 0xe419, 0x3, 0x0, 0x8fd, 0x0, 0x100000001}, 0x0, 0x6, r2, 0xa) write$cgroup_int(r1, &(0x7f0000000080)=0x3, 0x12) [ 91.475589][ T5624] CPU: 1 PID: 5624 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 91.485578][ T5624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 91.495469][ T5624] Call Trace: [ 91.498589][ T5624] [ 91.501366][ T5624] dump_stack_lvl+0x151/0x1b7 [ 91.505877][ T5624] ? bfq_pos_tree_add_move+0x43e/0x43e [ 91.511176][ T5624] dump_stack+0x15/0x17 [ 91.515169][ T5624] should_fail+0x3c0/0x510 [ 91.519419][ T5624] __should_failslab+0x9f/0xe0 [ 91.524018][ T5624] should_failslab+0x9/0x20 [ 91.528359][ T5624] kmem_cache_alloc+0x4f/0x2f0 [ 91.532957][ T5624] ? anon_vma_clone+0xa1/0x4f0 [ 91.537556][ T5624] anon_vma_clone+0xa1/0x4f0 [ 91.541985][ T5624] anon_vma_fork+0x91/0x4f0 [ 91.546322][ T5624] ? anon_vma_name+0x4c/0x70 [ 91.550752][ T5624] dup_mmap+0x750/0xea0 [ 91.554743][ T5624] ? __delayed_free_task+0x20/0x20 [ 91.559692][ T5624] ? mm_init+0x807/0x960 [ 91.563770][ T5624] dup_mm+0x91/0x330 [ 91.567500][ T5624] copy_mm+0x108/0x1b0 [ 91.571409][ T5624] copy_process+0x1295/0x3250 [ 91.575921][ T5624] ? proc_fail_nth_write+0x213/0x290 [ 91.581044][ T5624] ? proc_fail_nth_read+0x220/0x220 [ 91.586097][ T5624] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 91.591040][ T5624] ? vfs_write+0x9af/0x1050 [ 91.595364][ T5624] ? vmacache_update+0xb7/0x120 [ 91.600053][ T5624] kernel_clone+0x22d/0x990 [ 91.604391][ T5624] ? file_end_write+0x1b0/0x1b0 [ 91.609075][ T5624] ? __kasan_check_write+0x14/0x20 [ 91.614022][ T5624] ? create_io_thread+0x1e0/0x1e0 [ 91.618882][ T5624] ? __mutex_lock_slowpath+0x10/0x10 [ 91.624003][ T5624] __x64_sys_clone+0x289/0x310 [ 91.628603][ T5624] ? __do_sys_vfork+0x130/0x130 [ 91.633290][ T5624] ? debug_smp_processor_id+0x17/0x20 [ 91.638498][ T5624] do_syscall_64+0x44/0xd0 [ 91.642767][ T5624] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 91.648482][ T5624] RIP: 0033:0x7f35007595a9 [ 91.652735][ T5624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 13:52:20 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x2, 0xff, 0x9, 0x0, 0x10001, 0x30, 0x8, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x5, 0x5}, 0x4200, 0x1, 0x5, 0x9, 0x8, 0x5, 0x3ff, 0x0, 0x7, 0x0, 0x101}, r0, 0x0, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x0, 0xff, 0x1, 0x1f, 0x0, 0x1, 0x8048, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x9, 0x1, @perf_bp={&(0x7f0000000040)}, 0x800, 0x3ff, 0x800, 0x4, 0x4, 0xe419, 0x3, 0x0, 0x8fd, 0x0, 0x100000001}, 0x0, 0x6, r2, 0xa) write$cgroup_int(r1, &(0x7f0000000080)=0x3, 0x12) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x2, 0xff, 0x9, 0x0, 0x10001, 0x30, 0x8, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x5, 0x5}, 0x4200, 0x1, 0x5, 0x9, 0x8, 0x5, 0x3ff, 0x0, 0x7, 0x0, 0x101}, r0, 0x0, 0xffffffffffffffff, 0x2) (async) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x0, 0xff, 0x1, 0x1f, 0x0, 0x1, 0x8048, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x9, 0x1, @perf_bp={&(0x7f0000000040)}, 0x800, 0x3ff, 0x800, 0x4, 0x4, 0xe419, 0x3, 0x0, 0x8fd, 0x0, 0x100000001}, 0x0, 0x6, r2, 0xa) (async) write$cgroup_int(r1, &(0x7f0000000080)=0x3, 0x12) (async) [ 91.672173][ T5624] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 91.680419][ T5624] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 91.688227][ T5624] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 91.696042][ T5624] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 91.703852][ T5624] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 91.711663][ T5624] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 91.719478][ T5624] 13:52:20 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xfffffffb, &(0x7f0000000040), 0x0, 0x0) 13:52:20 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 42) 13:52:20 executing program 3: r0 = syz_clone(0x40800380, &(0x7f0000000200)="5460f9a248221a8b1565ef516df214a6e9daa41bdb3623d58e108e7dc0ea5702f9f972c9bb2d00bb7e1c4430be75a695c9be41350d0f88cf10be1f3f9c013903cc6326fb3f97fd17e13af6e0294ba1bdc01517144a1507f71d37bb30caf1e21697e959b0fe62aa73373cfccc1e8407b11da9901d6bbac64662700440e667793279d04d00a6898c65ca38", 0x8a, &(0x7f0000000180), &(0x7f00000002c0), &(0x7f0000000300)="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") r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x5, &(0x7f00000001c0)=@raw=[@ldst={0x2, 0x0, 0x3, 0x0, 0x3}, @exit, @generic={0x4, 0x1, 0xb, 0x6}, @btf_id={0x18, 0x6}], 0x0, 0x0, 0xf2, &(0x7f0000000240)=""/242, 0x41100, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x0, 0x0, 0xecf, 0x800}, 0x10}, 0x80) (async) r2 = gettid() (async) recvmsg$unix(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000004980)=[{&(0x7f00000018c0)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/2, 0x2}, {&(0x7f0000001440)=""/166, 0xa6}, {&(0x7f0000000100)=""/12, 0xc}, {&(0x7f0000001680)=""/148, 0x94}, {&(0x7f00000028c0)=""/4096, 0x1000}, {&(0x7f0000001740)=""/146, 0x92}, {&(0x7f00000038c0)=""/188, 0xbc}, {&(0x7f0000003980)=""/4096, 0x1000}], 0x9, &(0x7f0000000140)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x40}, 0x2) (async) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001800)={0x0, &(0x7f0000001500)=""/99, &(0x7f0000001580)="4828b17b1984949a7c58aab20a3117534e2c1187a3d5c3125c9340f12a04ba9b1ca3e24ac674914cb82e4847c1f93b1406a128d8f7088a67fff5114a7c8b9f8e64416deb06d229c51f3adbdb1de6b9f9b6b584b4d8470dabbaf59e8ece56e7b57851d89cb4d2eb2d72223312754d5161ceb30a66230773772aa60db14a4bd784d4824afc12d8e514d518de2d3b5d6f1c40161dfb97ad271f8145cc12378f38885a2ec6413c05ef551b6d9bde7fee0af377fad562035529b20687187a7d7d7cdc1ae18ee55ad9ce9de3201b8b424663dfb394dcba", 0x0, 0x9}, 0x38) (async) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000001880)={&(0x7f0000001840)='./file0\x00'}, 0x10) (async) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001400)) write$cgroup_pid(r1, &(0x7f0000001380)=r2, 0x12) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x6, &(0x7f00000013c0)=ANY=[@ANYBLOB="0800000095000000260f8dcb1cd893742fc5c7973a430000000004b106003f00000085000000a60000001898626ddb05324b791d97d0cf60723b"], &(0x7f0000000200)='syzkaller\x00', 0x4, 0xf2, &(0x7f0000000240)=""/242, 0x41100, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x6, 0xecf, 0x800}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000001340)={r0, 0xffffffffffffffff, 0x0, 0xe, &(0x7f0000001300)='./cgroup/syz0\x00'}, 0x30) (async) perf_event_open$cgroup(&(0x7f0000000040)={0x4, 0x80, 0x1f, 0x5, 0x8, 0x3, 0x0, 0x0, 0x180, 0x4, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xff, 0x0, @perf_bp={&(0x7f0000000000), 0x6}, 0x4002, 0x6ec, 0x6c280000, 0x6, 0x400, 0x5, 0x9, 0x0, 0x9, 0x0, 0x3}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0) 13:52:20 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x9) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r1, &(0x7f0000000080), 0x9) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) openat$cgroup_ro(r2, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x4030582a, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='cpuacct.usage_sys\x00', 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0) write$cgroup_int(r0, &(0x7f0000000000)=0x500, 0xffe000) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001380)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000140), 0x114, 0x0, 0x1}, 0x20) 13:52:20 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x0, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:20 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x2, 0xff, 0x9, 0x0, 0x10001, 0x30, 0x8, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x5, 0x5}, 0x4200, 0x1, 0x5, 0x9, 0x8, 0x5, 0x3ff, 0x0, 0x7, 0x0, 0x101}, r0, 0x0, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x0, 0xff, 0x1, 0x1f, 0x0, 0x1, 0x8048, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x9, 0x1, @perf_bp={&(0x7f0000000040)}, 0x800, 0x3ff, 0x800, 0x4, 0x4, 0xe419, 0x3, 0x0, 0x8fd, 0x0, 0x100000001}, 0x0, 0x6, r2, 0xa) write$cgroup_int(r1, &(0x7f0000000080)=0x3, 0x12) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x2, 0xff, 0x9, 0x0, 0x10001, 0x30, 0x8, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x5, 0x5}, 0x4200, 0x1, 0x5, 0x9, 0x8, 0x5, 0x3ff, 0x0, 0x7, 0x0, 0x101}, r0, 0x0, 0xffffffffffffffff, 0x2) (async) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x0, 0xff, 0x1, 0x1f, 0x0, 0x1, 0x8048, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x9, 0x1, @perf_bp={&(0x7f0000000040)}, 0x800, 0x3ff, 0x800, 0x4, 0x4, 0xe419, 0x3, 0x0, 0x8fd, 0x0, 0x100000001}, 0x0, 0x6, r2, 0xa) (async) write$cgroup_int(r1, &(0x7f0000000080)=0x3, 0x12) (async) 13:52:20 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100f79f4677e64a436c3c27e2"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='freezer.self_freezing\x00', 0x0, 0x0) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, r1, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = openat$cgroup_int(r2, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) bpf$PROG_LOAD(0x5, 0xfffffffffffffffd, 0x0) write$cgroup_int(r3, &(0x7f0000000040), 0x5f) [ 91.902809][ T5667] FAULT_INJECTION: forcing a failure. [ 91.902809][ T5667] name failslab, interval 1, probability 0, space 0, times 0 [ 91.949504][ T5667] CPU: 1 PID: 5667 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 91.959492][ T5667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 91.969388][ T5667] Call Trace: [ 91.972511][ T5667] [ 91.975288][ T5667] dump_stack_lvl+0x151/0x1b7 [ 91.979800][ T5667] ? bfq_pos_tree_add_move+0x43e/0x43e [ 91.985095][ T5667] dump_stack+0x15/0x17 [ 91.989088][ T5667] should_fail+0x3c0/0x510 [ 91.993340][ T5667] __should_failslab+0x9f/0xe0 [ 91.997940][ T5667] should_failslab+0x9/0x20 [ 92.002284][ T5667] kmem_cache_alloc+0x4f/0x2f0 [ 92.006881][ T5667] ? anon_vma_clone+0xa1/0x4f0 [ 92.011480][ T5667] anon_vma_clone+0xa1/0x4f0 [ 92.015909][ T5667] anon_vma_fork+0x91/0x4f0 [ 92.020247][ T5667] ? anon_vma_name+0x4c/0x70 [ 92.024673][ T5667] dup_mmap+0x750/0xea0 [ 92.028668][ T5667] ? __delayed_free_task+0x20/0x20 [ 92.033610][ T5667] ? mm_init+0x807/0x960 [ 92.037692][ T5667] dup_mm+0x91/0x330 [ 92.041423][ T5667] copy_mm+0x108/0x1b0 [ 92.045343][ T5667] copy_process+0x1295/0x3250 13:52:20 executing program 3: r0 = syz_clone(0x40800380, &(0x7f0000000200)="5460f9a248221a8b1565ef516df214a6e9daa41bdb3623d58e108e7dc0ea5702f9f972c9bb2d00bb7e1c4430be75a695c9be41350d0f88cf10be1f3f9c013903cc6326fb3f97fd17e13af6e0294ba1bdc01517144a1507f71d37bb30caf1e21697e959b0fe62aa73373cfccc1e8407b11da9901d6bbac64662700440e667793279d04d00a6898c65ca38", 0x8a, &(0x7f0000000180), &(0x7f00000002c0), &(0x7f0000000300)="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") (async) r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x5, &(0x7f00000001c0)=@raw=[@ldst={0x2, 0x0, 0x3, 0x0, 0x3}, @exit, @generic={0x4, 0x1, 0xb, 0x6}, @btf_id={0x18, 0x6}], 0x0, 0x0, 0xf2, &(0x7f0000000240)=""/242, 0x41100, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x0, 0x0, 0xecf, 0x800}, 0x10}, 0x80) (async) r2 = gettid() (async) recvmsg$unix(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000004980)=[{&(0x7f00000018c0)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/2, 0x2}, {&(0x7f0000001440)=""/166, 0xa6}, {&(0x7f0000000100)=""/12, 0xc}, {&(0x7f0000001680)=""/148, 0x94}, {&(0x7f00000028c0)=""/4096, 0x1000}, {&(0x7f0000001740)=""/146, 0x92}, {&(0x7f00000038c0)=""/188, 0xbc}, {&(0x7f0000003980)=""/4096, 0x1000}], 0x9, &(0x7f0000000140)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x40}, 0x2) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001800)={0x0, &(0x7f0000001500)=""/99, &(0x7f0000001580)="4828b17b1984949a7c58aab20a3117534e2c1187a3d5c3125c9340f12a04ba9b1ca3e24ac674914cb82e4847c1f93b1406a128d8f7088a67fff5114a7c8b9f8e64416deb06d229c51f3adbdb1de6b9f9b6b584b4d8470dabbaf59e8ece56e7b57851d89cb4d2eb2d72223312754d5161ceb30a66230773772aa60db14a4bd784d4824afc12d8e514d518de2d3b5d6f1c40161dfb97ad271f8145cc12378f38885a2ec6413c05ef551b6d9bde7fee0af377fad562035529b20687187a7d7d7cdc1ae18ee55ad9ce9de3201b8b424663dfb394dcba", 0x0, 0x9}, 0x38) (async) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000001880)={&(0x7f0000001840)='./file0\x00'}, 0x10) (async) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001400)) (async) write$cgroup_pid(r1, &(0x7f0000001380)=r2, 0x12) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x6, &(0x7f00000013c0)=ANY=[@ANYBLOB="0800000095000000260f8dcb1cd893742fc5c7973a430000000004b106003f00000085000000a60000001898626ddb05324b791d97d0cf60723b"], &(0x7f0000000200)='syzkaller\x00', 0x4, 0xf2, &(0x7f0000000240)=""/242, 0x41100, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x6, 0xecf, 0x800}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x80) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000001340)={r0, 0xffffffffffffffff, 0x0, 0xe, &(0x7f0000001300)='./cgroup/syz0\x00'}, 0x30) (async) perf_event_open$cgroup(&(0x7f0000000040)={0x4, 0x80, 0x1f, 0x5, 0x8, 0x3, 0x0, 0x0, 0x180, 0x4, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xff, 0x0, @perf_bp={&(0x7f0000000000), 0x6}, 0x4002, 0x6ec, 0x6c280000, 0x6, 0x400, 0x5, 0x9, 0x0, 0x9, 0x0, 0x3}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0) 13:52:20 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xfffffffe, &(0x7f0000000040), 0x0, 0x0) [ 92.049847][ T5667] ? proc_fail_nth_write+0x213/0x290 [ 92.055402][ T5667] ? proc_fail_nth_read+0x220/0x220 [ 92.060433][ T5667] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 92.065377][ T5667] ? vfs_write+0x9af/0x1050 [ 92.069718][ T5667] ? vmacache_update+0xb7/0x120 [ 92.074407][ T5667] kernel_clone+0x22d/0x990 [ 92.078745][ T5667] ? file_end_write+0x1b0/0x1b0 [ 92.083432][ T5667] ? __kasan_check_write+0x14/0x20 [ 92.088383][ T5667] ? create_io_thread+0x1e0/0x1e0 [ 92.093239][ T5667] ? __mutex_lock_slowpath+0x10/0x10 13:52:20 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x1b0da1f000, &(0x7f0000000040), 0x0, 0x0) [ 92.098363][ T5667] __x64_sys_clone+0x289/0x310 [ 92.102973][ T5667] ? __do_sys_vfork+0x130/0x130 [ 92.107650][ T5667] ? debug_smp_processor_id+0x17/0x20 [ 92.112942][ T5667] do_syscall_64+0x44/0xd0 [ 92.117193][ T5667] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 92.122920][ T5667] RIP: 0033:0x7f35007595a9 [ 92.127177][ T5667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 13:52:20 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x29cedc673000, &(0x7f0000000040), 0x0, 0x0) 13:52:20 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100f79f4677e64a436c3c27e2"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='freezer.self_freezing\x00', 0x0, 0x0) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, r1, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = openat$cgroup_int(r2, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) bpf$PROG_LOAD(0x5, 0xfffffffffffffffd, 0x0) write$cgroup_int(r3, &(0x7f0000000040), 0x5f) 13:52:20 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x0, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 92.146613][ T5667] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 92.154859][ T5667] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 92.162673][ T5667] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 92.170482][ T5667] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 92.178293][ T5667] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 92.186118][ T5667] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 92.193918][ T5667] 13:52:20 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 43) 13:52:20 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100f79f4677e64a436c3c27e2"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='freezer.self_freezing\x00', 0x0, 0x0) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, r1, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = openat$cgroup_int(r2, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) bpf$PROG_LOAD(0x5, 0xfffffffffffffffd, 0x0) (async) write$cgroup_int(r3, &(0x7f0000000040), 0x5f) 13:52:20 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:20 executing program 3: close(0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x0, 0x1, 0x1, 0x91, 0x0, 0x0, 0x10010, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000240), 0x8}, 0x8420, 0x5, 0x9, 0x9, 0x7fff, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, 0x0, 0x0, r0, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r2 = gettid() r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000200)={r1}, 0x8) perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x98, 0x1, 0x60, 0x0, 0x0, 0x747, 0x80808, 0xb, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xf5, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x4, 0xffffffffffffffff, 0xffff4cf3, 0x3, 0x1, 0x8, 0x6, 0x0, 0xfaaa, 0x0, 0x4}, r2, 0x0, r3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x20, 0xe0, 0x6, 0x9, 0x0, 0x0, 0xc1701, 0xc, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, 0x4, @perf_config_ext={0x1}, 0x10008, 0x2, 0x8, 0x3, 0x1, 0xffffffff, 0x0, 0x0, 0x1, 0x0, 0x9}, 0x0, 0x4, 0xffffffffffffffff, 0x1) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4004662b, &(0x7f00000005c0)=0x1) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x5, &(0x7f0000000040)=@framed={{}, [@alu={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}, @jmp={0x5, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffe, 0x8}]}, &(0x7f0000001380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x67000000, 0x0, 0x0, 0x10, 0x0}, 0x80) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001400) 13:52:20 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x9) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) (async) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r1, &(0x7f0000000080), 0x9) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) (async) openat$cgroup_ro(r2, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) (async) r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x4030582a, 0x0) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='cpuacct.usage_sys\x00', 0x0, 0x0) (async, rerun: 32) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0) (rerun: 32) write$cgroup_int(r0, &(0x7f0000000000)=0x500, 0xffe000) (async) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001380)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb01001800000000000000f70000000600000004000000060000000200000604000000060000000100000007011fb01ab8990001ffff000003000000000000080300000008000000000000010000000033006f05080000000000000c050000000bba2cb80b00000f03000000010000000009000000ff7f0400000000000000009100000000050000000900000002000000002000000800000007000000050000000300000000000000020000000300000006000000000000000000000000010000375ddb0800000003000006040000000e000000000000000a000000050000000800000097b7000000000000580900000c000000000000000000000000000000000000000200000000002e30004da9f8c4cbfb53e4a4f9bef1be8842e6b8351a7aef568ed9f165c81397c1f131437095b6"], &(0x7f0000000140), 0x114, 0x0, 0x1}, 0x20) 13:52:20 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x18) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x2) r1 = perf_event_open(&(0x7f0000001500)={0x96fd911a049945ea, 0x80, 0x20, 0x27, 0x0, 0x5, 0x0, 0x800, 0x80, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfe000000, 0x1, @perf_config_ext={0x6, 0x762}, 0x962, 0x6, 0x6, 0x2, 0x8, 0xee, 0x4, 0x0, 0x1ff, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000015c0)={0x0, r1, 0x0, 0x7, &(0x7f0000001580)='cgroup\x00'}, 0x30) syz_open_procfs$namespace(0x0, 0x0) r2 = syz_clone(0x34010a00, &(0x7f00000000c0)="94af8f83ba89966861dcf50f02afbf3f0a2ae2d1dc9033d53ec8b967ba2e2f5bf3fe6f654af04f6008ac38bacf5db4d88d7aadb4ba781f7c0c92d975c2b44a088b838aa31db82f4f17c36bb968e084b6bab3dbe3d7660270bb21639881", 0x5d, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="9c524f51bce4b94a1ec98e862cf2b68141a4e75f135c591ecb854f24dd6e2fa9d80197112ee5c8f677f7b53986942b680243db3a6942fa6363c5910bb27d01d205af77b52d8d962d0930a51f15d4f99230be0608c24bec316c2d845526a5c6cbf8f15a5019282c97ad826af3e507bc6a313f2772df0463a7005da50a2f055a6ebe5e0639bec7fcd2e2def5043e2b59785977790c0c6f61b3df9ea1") syz_open_procfs$namespace(r2, &(0x7f0000001600)='ns/time\x00') r3 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r3, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={r3, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r5 = openat$cgroup_int(r4, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r5, &(0x7f0000000040)=0xffffffffffffffff, 0x12) syz_clone(0x10000, &(0x7f0000000380)="ec052c9cdb218055d7f5e597b70c7cc9687acc14d4db3269491a1104f02c0d79391ce616df86fac0c4d0921350a76b50e81c3d24b73dc8766938539a93cc83fe7b4fedc4a293a40df97a8a93276e26b1a36d4844395140db871a62b297f23e3a057440dcdb86bfd301b9abbae00737e2f36a7a4db7b43b6a2e150ceacd7389f9a214306c649d2a53af7976af60c4f2edee0fc1366f76aa2c992f6d750fbff7f85341297f42a5174b9159dd36027eb9ce8c8c7a9941ad1dd8594a33c79799814d8b0465bc59a02e128b162ad87ff67df78593d3f9a73059a2e5b527ea4c47fe96d4ab251aa3ae69ccf4c3e41bef62dbf22f0171", 0xf3, &(0x7f0000000480), &(0x7f00000004c0), &(0x7f0000000500)="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") ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) 13:52:20 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 92.323721][ T5715] FAULT_INJECTION: forcing a failure. [ 92.323721][ T5715] name fail_page_alloc, interval 1, probability 0, space 0, times 0 13:52:20 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x553a25eef000, &(0x7f0000000040), 0x0, 0x0) [ 92.384409][ T5715] CPU: 1 PID: 5715 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 92.394405][ T5715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 92.404305][ T5715] Call Trace: [ 92.407425][ T5715] [ 92.410207][ T5715] dump_stack_lvl+0x151/0x1b7 [ 92.414715][ T5715] ? bfq_pos_tree_add_move+0x43e/0x43e [ 92.420011][ T5715] dump_stack+0x15/0x17 [ 92.424002][ T5715] should_fail+0x3c0/0x510 [ 92.428256][ T5715] should_fail_alloc_page+0x58/0x70 [ 92.433287][ T5715] __alloc_pages+0x1de/0x7c0 [ 92.437714][ T5715] ? __count_vm_events+0x30/0x30 [ 92.442487][ T5715] ? __this_cpu_preempt_check+0x13/0x20 [ 92.447871][ T5715] ? __mod_node_page_state+0xac/0xf0 [ 92.452988][ T5715] pte_alloc_one+0x73/0x1b0 [ 92.457330][ T5715] ? pfn_modify_allowed+0x2e0/0x2e0 [ 92.462365][ T5715] __pte_alloc+0x86/0x350 [ 92.466530][ T5715] ? free_pgtables+0x210/0x210 [ 92.471127][ T5715] ? _raw_spin_lock+0xa3/0x1b0 [ 92.475728][ T5715] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 92.480941][ T5715] ? __kernel_text_address+0x9a/0x110 [ 92.486231][ T5715] copy_pte_range+0x1b1f/0x20b0 [ 92.490929][ T5715] ? __kunmap_atomic+0x80/0x80 [ 92.495606][ T5715] ? __kasan_slab_alloc+0xc4/0xe0 [ 92.500463][ T5715] ? __kasan_slab_alloc+0xb2/0xe0 [ 92.505325][ T5715] ? kmem_cache_alloc+0x189/0x2f0 [ 92.510184][ T5715] ? vm_area_dup+0x26/0x1d0 [ 92.514520][ T5715] ? dup_mmap+0x6b8/0xea0 [ 92.518689][ T5715] ? dup_mm+0x91/0x330 [ 92.522594][ T5715] ? copy_mm+0x108/0x1b0 [ 92.526677][ T5715] ? copy_process+0x1295/0x3250 13:52:20 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x2020000000000, &(0x7f0000000040), 0x0, 0x0) [ 92.531359][ T5715] ? kernel_clone+0x22d/0x990 [ 92.535876][ T5715] ? __x64_sys_clone+0x289/0x310 [ 92.540646][ T5715] ? do_syscall_64+0x44/0xd0 [ 92.545076][ T5715] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 92.550977][ T5715] copy_page_range+0xc1e/0x1090 [ 92.555664][ T5715] ? pfn_valid+0x1e0/0x1e0 [ 92.559922][ T5715] dup_mmap+0x99f/0xea0 [ 92.563911][ T5715] ? __delayed_free_task+0x20/0x20 [ 92.568855][ T5715] ? mm_init+0x807/0x960 [ 92.573021][ T5715] dup_mm+0x91/0x330 [ 92.576751][ T5715] copy_mm+0x108/0x1b0 [ 92.580693][ T5715] copy_process+0x1295/0x3250 [ 92.585172][ T5715] ? proc_fail_nth_write+0x213/0x290 [ 92.590294][ T5715] ? proc_fail_nth_read+0x220/0x220 [ 92.595329][ T5715] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 92.600278][ T5715] ? vfs_write+0x9af/0x1050 [ 92.604610][ T5715] ? vmacache_update+0xb7/0x120 [ 92.609299][ T5715] kernel_clone+0x22d/0x990 [ 92.613643][ T5715] ? file_end_write+0x1b0/0x1b0 [ 92.618347][ T5715] ? __kasan_check_write+0x14/0x20 [ 92.623276][ T5715] ? create_io_thread+0x1e0/0x1e0 [ 92.628163][ T5715] ? __mutex_lock_slowpath+0x10/0x10 [ 92.633262][ T5715] __x64_sys_clone+0x289/0x310 [ 92.637856][ T5715] ? __do_sys_vfork+0x130/0x130 [ 92.642542][ T5715] ? debug_smp_processor_id+0x17/0x20 [ 92.647749][ T5715] do_syscall_64+0x44/0xd0 [ 92.652000][ T5715] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 92.657730][ T5715] RIP: 0033:0x7f35007595a9 [ 92.661986][ T5715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 13:52:21 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x18) (async) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x2) (async) r1 = perf_event_open(&(0x7f0000001500)={0x96fd911a049945ea, 0x80, 0x20, 0x27, 0x0, 0x5, 0x0, 0x800, 0x80, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfe000000, 0x1, @perf_config_ext={0x6, 0x762}, 0x962, 0x6, 0x6, 0x2, 0x8, 0xee, 0x4, 0x0, 0x1ff, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000015c0)={0x0, r1, 0x0, 0x7, &(0x7f0000001580)='cgroup\x00'}, 0x30) (async) syz_open_procfs$namespace(0x0, 0x0) r2 = syz_clone(0x34010a00, &(0x7f00000000c0)="94af8f83ba89966861dcf50f02afbf3f0a2ae2d1dc9033d53ec8b967ba2e2f5bf3fe6f654af04f6008ac38bacf5db4d88d7aadb4ba781f7c0c92d975c2b44a088b838aa31db82f4f17c36bb968e084b6bab3dbe3d7660270bb21639881", 0x5d, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="9c524f51bce4b94a1ec98e862cf2b68141a4e75f135c591ecb854f24dd6e2fa9d80197112ee5c8f677f7b53986942b680243db3a6942fa6363c5910bb27d01d205af77b52d8d962d0930a51f15d4f99230be0608c24bec316c2d845526a5c6cbf8f15a5019282c97ad826af3e507bc6a313f2772df0463a7005da50a2f055a6ebe5e0639bec7fcd2e2def5043e2b59785977790c0c6f61b3df9ea1") syz_open_procfs$namespace(r2, &(0x7f0000001600)='ns/time\x00') (async) r3 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r3, 0x0) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={r3, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r5 = openat$cgroup_int(r4, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r5, &(0x7f0000000040)=0xffffffffffffffff, 0x12) syz_clone(0x10000, &(0x7f0000000380)="ec052c9cdb218055d7f5e597b70c7cc9687acc14d4db3269491a1104f02c0d79391ce616df86fac0c4d0921350a76b50e81c3d24b73dc8766938539a93cc83fe7b4fedc4a293a40df97a8a93276e26b1a36d4844395140db871a62b297f23e3a057440dcdb86bfd301b9abbae00737e2f36a7a4db7b43b6a2e150ceacd7389f9a214306c649d2a53af7976af60c4f2edee0fc1366f76aa2c992f6d750fbff7f85341297f42a5174b9159dd36027eb9ce8c8c7a9941ad1dd8594a33c79799814d8b0465bc59a02e128b162ad87ff67df78593d3f9a73059a2e5b527ea4c47fe96d4ab251aa3ae69ccf4c3e41bef62dbf22f0171", 0xf3, &(0x7f0000000480), &(0x7f00000004c0), &(0x7f0000000500)="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") (async) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) 13:52:21 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 44) 13:52:21 executing program 3: close(0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x0, 0x1, 0x1, 0x91, 0x0, 0x0, 0x10010, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000240), 0x8}, 0x8420, 0x5, 0x9, 0x9, 0x7fff, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, 0x0, 0x0, r0, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r2 = gettid() r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000200)={r1}, 0x8) perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x98, 0x1, 0x60, 0x0, 0x0, 0x747, 0x80808, 0xb, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xf5, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x4, 0xffffffffffffffff, 0xffff4cf3, 0x3, 0x1, 0x8, 0x6, 0x0, 0xfaaa, 0x0, 0x4}, r2, 0x0, r3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x20, 0xe0, 0x6, 0x9, 0x0, 0x0, 0xc1701, 0xc, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, 0x4, @perf_config_ext={0x1}, 0x10008, 0x2, 0x8, 0x3, 0x1, 0xffffffff, 0x0, 0x0, 0x1, 0x0, 0x9}, 0x0, 0x4, 0xffffffffffffffff, 0x1) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4004662b, &(0x7f00000005c0)=0x1) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x5, &(0x7f0000000040)=@framed={{}, [@alu={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}, @jmp={0x5, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffe, 0x8}]}, &(0x7f0000001380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x67000000, 0x0, 0x0, 0x10, 0x0}, 0x80) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001400) close(0xffffffffffffffff) (async) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x0, 0x1, 0x1, 0x91, 0x0, 0x0, 0x10010, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000240), 0x8}, 0x8420, 0x5, 0x9, 0x9, 0x7fff, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, 0x0, 0x0, r0, 0x1) (async) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) (async) gettid() (async) bpf$ITER_CREATE(0x21, &(0x7f0000000200)={r1}, 0x8) (async) perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x98, 0x1, 0x60, 0x0, 0x0, 0x747, 0x80808, 0xb, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xf5, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x4, 0xffffffffffffffff, 0xffff4cf3, 0x3, 0x1, 0x8, 0x6, 0x0, 0xfaaa, 0x0, 0x4}, r2, 0x0, r3, 0x1) (async) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) (async) perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x20, 0xe0, 0x6, 0x9, 0x0, 0x0, 0xc1701, 0xc, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, 0x4, @perf_config_ext={0x1}, 0x10008, 0x2, 0x8, 0x3, 0x1, 0xffffffff, 0x0, 0x0, 0x1, 0x0, 0x9}, 0x0, 0x4, 0xffffffffffffffff, 0x1) (async) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4004662b, &(0x7f00000005c0)=0x1) (async) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x5, &(0x7f0000000040)=@framed={{}, [@alu={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}, @jmp={0x5, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffe, 0x8}]}, &(0x7f0000001380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x67000000, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001400) (async) [ 92.681421][ T5715] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 92.689668][ T5715] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 92.697479][ T5715] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 92.705291][ T5715] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 92.713104][ T5715] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 92.720912][ T5715] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 92.728729][ T5715] 13:52:21 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x9) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r1, &(0x7f0000000080), 0x9) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0) bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) openat$cgroup_ro(r2, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x4030582a, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='cpuacct.usage_sys\x00', 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0) write$cgroup_int(r0, &(0x7f0000000000)=0x500, 0xffe000) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001380)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb01001800000000000000f70000000600000004000000060000000200000604000000060000000100000007011fb01ab8990001ffff000003000000000000080300000008000000000000010000000033006f05080000000000000c050000000bba2cb80b00000f03000000010000000009000000ff7f0400000000000000009100000000050000000900000002000000002000000800000007000000050000000300000000000000020000000300000006000000000000000000000000010000375ddb0800000003000006040000000e000000000000000a000000050000000800000097b7000000000000580900000c000000000000000000000000000000000000000200000000002e30004da9f8c4cbfb53e4a4f9bef1be8842e6b8351a7aef568ed9f165c81397c1f131437095b6"], &(0x7f0000000140), 0x114, 0x0, 0x1}, 0x20) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x9) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) (async) write$cgroup_type(r1, &(0x7f0000000080), 0x9) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz0\x00', 0x200002, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) (async) openat$cgroup_ro(r2, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x4030582a, 0x0) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='cpuacct.usage_sys\x00', 0x0, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_service_time\x00', 0x26e1, 0x0) (async) write$cgroup_int(r0, &(0x7f0000000000)=0x500, 0xffe000) (async) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001380)={&(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000140), 0x114, 0x0, 0x1}, 0x20) (async) [ 92.777904][ T5742] FAULT_INJECTION: forcing a failure. [ 92.777904][ T5742] name failslab, interval 1, probability 0, space 0, times 0 [ 92.827830][ T5742] CPU: 1 PID: 5742 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 92.837834][ T5742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 92.847729][ T5742] Call Trace: [ 92.850852][ T5742] [ 92.853628][ T5742] dump_stack_lvl+0x151/0x1b7 [ 92.858141][ T5742] ? bfq_pos_tree_add_move+0x43e/0x43e [ 92.863435][ T5742] dump_stack+0x15/0x17 [ 92.867515][ T5742] should_fail+0x3c0/0x510 [ 92.871769][ T5742] __should_failslab+0x9f/0xe0 [ 92.876368][ T5742] should_failslab+0x9/0x20 [ 92.880708][ T5742] kmem_cache_alloc+0x4f/0x2f0 [ 92.885307][ T5742] ? vm_area_dup+0x26/0x1d0 [ 92.889645][ T5742] vm_area_dup+0x26/0x1d0 [ 92.893812][ T5742] dup_mmap+0x6b8/0xea0 [ 92.897804][ T5742] ? __delayed_free_task+0x20/0x20 [ 92.902752][ T5742] ? mm_init+0x807/0x960 [ 92.906833][ T5742] dup_mm+0x91/0x330 [ 92.910563][ T5742] copy_mm+0x108/0x1b0 [ 92.914468][ T5742] copy_process+0x1295/0x3250 [ 92.918984][ T5742] ? proc_fail_nth_write+0x213/0x290 [ 92.924100][ T5742] ? proc_fail_nth_read+0x220/0x220 [ 92.929134][ T5742] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 92.934083][ T5742] ? vfs_write+0x9af/0x1050 [ 92.938422][ T5742] ? vmacache_update+0xb7/0x120 [ 92.943110][ T5742] kernel_clone+0x22d/0x990 [ 92.947448][ T5742] ? file_end_write+0x1b0/0x1b0 [ 92.952137][ T5742] ? __kasan_check_write+0x14/0x20 [ 92.957082][ T5742] ? create_io_thread+0x1e0/0x1e0 [ 92.961943][ T5742] ? __mutex_lock_slowpath+0x10/0x10 [ 92.967064][ T5742] __x64_sys_clone+0x289/0x310 [ 92.971663][ T5742] ? __do_sys_vfork+0x130/0x130 [ 92.976351][ T5742] ? debug_smp_processor_id+0x17/0x20 [ 92.981555][ T5742] do_syscall_64+0x44/0xd0 [ 92.985808][ T5742] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 92.991538][ T5742] RIP: 0033:0x7f35007595a9 [ 92.995791][ T5742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 93.015243][ T5742] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 13:52:21 executing program 3: close(0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x0, 0x1, 0x1, 0x91, 0x0, 0x0, 0x10010, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000240), 0x8}, 0x8420, 0x5, 0x9, 0x9, 0x7fff, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, 0x0, 0x0, r0, 0x1) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r2 = gettid() r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000200)={r1}, 0x8) perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x98, 0x1, 0x60, 0x0, 0x0, 0x747, 0x80808, 0xb, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xf5, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x4, 0xffffffffffffffff, 0xffff4cf3, 0x3, 0x1, 0x8, 0x6, 0x0, 0xfaaa, 0x0, 0x4}, r2, 0x0, r3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x20, 0xe0, 0x6, 0x9, 0x0, 0x0, 0xc1701, 0xc, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, 0x4, @perf_config_ext={0x1}, 0x10008, 0x2, 0x8, 0x3, 0x1, 0xffffffff, 0x0, 0x0, 0x1, 0x0, 0x9}, 0x0, 0x4, 0xffffffffffffffff, 0x1) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4004662b, &(0x7f00000005c0)=0x1) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x5, &(0x7f0000000040)=@framed={{}, [@alu={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}, @jmp={0x5, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffe, 0x8}]}, &(0x7f0000001380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x67000000, 0x0, 0x0, 0x10, 0x0}, 0x80) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001400) close(0xffffffffffffffff) (async) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x0, 0x1, 0x1, 0x91, 0x0, 0x0, 0x10010, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000240), 0x8}, 0x8420, 0x5, 0x9, 0x9, 0x7fff, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, 0x0, 0x0, r0, 0x1) (async) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) (async) gettid() (async) bpf$ITER_CREATE(0x21, &(0x7f0000000200)={r1}, 0x8) (async) perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x98, 0x1, 0x60, 0x0, 0x0, 0x747, 0x80808, 0xb, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xf5, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x4, 0xffffffffffffffff, 0xffff4cf3, 0x3, 0x1, 0x8, 0x6, 0x0, 0xfaaa, 0x0, 0x4}, r2, 0x0, r3, 0x1) (async) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x0) (async) perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x20, 0xe0, 0x6, 0x9, 0x0, 0x0, 0xc1701, 0xc, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, 0x4, @perf_config_ext={0x1}, 0x10008, 0x2, 0x8, 0x3, 0x1, 0xffffffff, 0x0, 0x0, 0x1, 0x0, 0x9}, 0x0, 0x4, 0xffffffffffffffff, 0x1) (async) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x4004662b, &(0x7f00000005c0)=0x1) (async) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x26e1, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x5, &(0x7f0000000040)=@framed={{}, [@alu={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3000000}, @jmp={0x5, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffe, 0x8}]}, &(0x7f0000001380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x67000000, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001400) (async) 13:52:21 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:21 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x18) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x2) r1 = perf_event_open(&(0x7f0000001500)={0x96fd911a049945ea, 0x80, 0x20, 0x27, 0x0, 0x5, 0x0, 0x800, 0x80, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfe000000, 0x1, @perf_config_ext={0x6, 0x762}, 0x962, 0x6, 0x6, 0x2, 0x8, 0xee, 0x4, 0x0, 0x1ff, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000015c0)={0x0, r1, 0x0, 0x7, &(0x7f0000001580)='cgroup\x00'}, 0x30) syz_open_procfs$namespace(0x0, 0x0) r2 = syz_clone(0x34010a00, &(0x7f00000000c0)="94af8f83ba89966861dcf50f02afbf3f0a2ae2d1dc9033d53ec8b967ba2e2f5bf3fe6f654af04f6008ac38bacf5db4d88d7aadb4ba781f7c0c92d975c2b44a088b838aa31db82f4f17c36bb968e084b6bab3dbe3d7660270bb21639881", 0x5d, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="9c524f51bce4b94a1ec98e862cf2b68141a4e75f135c591ecb854f24dd6e2fa9d80197112ee5c8f677f7b53986942b680243db3a6942fa6363c5910bb27d01d205af77b52d8d962d0930a51f15d4f99230be0608c24bec316c2d845526a5c6cbf8f15a5019282c97ad826af3e507bc6a313f2772df0463a7005da50a2f055a6ebe5e0639bec7fcd2e2def5043e2b59785977790c0c6f61b3df9ea1") syz_open_procfs$namespace(r2, &(0x7f0000001600)='ns/time\x00') r3 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r3, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={r3, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r5 = openat$cgroup_int(r4, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r5, &(0x7f0000000040)=0xffffffffffffffff, 0x12) syz_clone(0x10000, &(0x7f0000000380)="ec052c9cdb218055d7f5e597b70c7cc9687acc14d4db3269491a1104f02c0d79391ce616df86fac0c4d0921350a76b50e81c3d24b73dc8766938539a93cc83fe7b4fedc4a293a40df97a8a93276e26b1a36d4844395140db871a62b297f23e3a057440dcdb86bfd301b9abbae00737e2f36a7a4db7b43b6a2e150ceacd7389f9a214306c649d2a53af7976af60c4f2edee0fc1366f76aa2c992f6d750fbff7f85341297f42a5174b9159dd36027eb9ce8c8c7a9941ad1dd8594a33c79799814d8b0465bc59a02e128b162ad87ff67df78593d3f9a73059a2e5b527ea4c47fe96d4ab251aa3ae69ccf4c3e41bef62dbf22f0171", 0xf3, &(0x7f0000000480), &(0x7f00000004c0), &(0x7f0000000500)="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") ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0) (async) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x18) (async) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x2) (async) perf_event_open(&(0x7f0000001500)={0x96fd911a049945ea, 0x80, 0x20, 0x27, 0x0, 0x5, 0x0, 0x800, 0x80, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfe000000, 0x1, @perf_config_ext={0x6, 0x762}, 0x962, 0x6, 0x6, 0x2, 0x8, 0xee, 0x4, 0x0, 0x1ff, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x4) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000015c0)={0x0, r1, 0x0, 0x7, &(0x7f0000001580)='cgroup\x00'}, 0x30) (async) syz_open_procfs$namespace(0x0, 0x0) (async) syz_clone(0x34010a00, &(0x7f00000000c0)="94af8f83ba89966861dcf50f02afbf3f0a2ae2d1dc9033d53ec8b967ba2e2f5bf3fe6f654af04f6008ac38bacf5db4d88d7aadb4ba781f7c0c92d975c2b44a088b838aa31db82f4f17c36bb968e084b6bab3dbe3d7660270bb21639881", 0x5d, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="9c524f51bce4b94a1ec98e862cf2b68141a4e75f135c591ecb854f24dd6e2fa9d80197112ee5c8f677f7b53986942b680243db3a6942fa6363c5910bb27d01d205af77b52d8d962d0930a51f15d4f99230be0608c24bec316c2d845526a5c6cbf8f15a5019282c97ad826af3e507bc6a313f2772df0463a7005da50a2f055a6ebe5e0639bec7fcd2e2def5043e2b59785977790c0c6f61b3df9ea1") (async) syz_open_procfs$namespace(r2, &(0x7f0000001600)='ns/time\x00') (async) syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) (async) syz_open_procfs$namespace(r3, 0x0) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000002c0)={r3, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) (async) openat$cgroup_int(r4, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) write$cgroup_int(r5, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) syz_clone(0x10000, &(0x7f0000000380)="ec052c9cdb218055d7f5e597b70c7cc9687acc14d4db3269491a1104f02c0d79391ce616df86fac0c4d0921350a76b50e81c3d24b73dc8766938539a93cc83fe7b4fedc4a293a40df97a8a93276e26b1a36d4844395140db871a62b297f23e3a057440dcdb86bfd301b9abbae00737e2f36a7a4db7b43b6a2e150ceacd7389f9a214306c649d2a53af7976af60c4f2edee0fc1366f76aa2c992f6d750fbff7f85341297f42a5174b9159dd36027eb9ce8c8c7a9941ad1dd8594a33c79799814d8b0465bc59a02e128b162ad87ff67df78593d3f9a73059a2e5b527ea4c47fe96d4ab251aa3ae69ccf4c3e41bef62dbf22f0171", 0xf3, &(0x7f0000000480), &(0x7f00000004c0), &(0x7f0000000500)="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") (async) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) (async) 13:52:21 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x4000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:21 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 45) [ 93.023478][ T5742] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 93.031286][ T5742] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 93.039273][ T5742] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 93.047084][ T5742] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 93.054896][ T5742] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 93.062799][ T5742] [ 93.134932][ T5814] FAULT_INJECTION: forcing a failure. [ 93.134932][ T5814] name failslab, interval 1, probability 0, space 0, times 0 13:52:21 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000dac}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000680), 0xc}, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf95}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) syz_clone(0x74809c80, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x0, 0x80, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000240), 0xe}, 0x0, 0x1000000c0d, 0x3, 0x0, 0xfffffffffffffffc, 0x2, 0x2, 0x0, 0x0, 0x0, 0x100000001}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000340)={0x4, 0x80, 0x0, 0x0, 0xd7, 0x0, 0x0, 0x200000000000, 0x3000, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3c, 0x1, @perf_bp={&(0x7f0000000140), 0x4}, 0x420, 0x0, 0x2, 0x0, 0x4, 0x1ff, 0x5, 0x0, 0xcd8, 0x0, 0xa2}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000440)='\'*\x00') bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x0, 0x9, &(0x7f00000006c0)=ANY=[@ANYBLOB="850000002d0000000552ff7f070000006d42f8ff00000000851000000500000085000017030000000000000000000000776600010400000018290000e2ea00b176826a79bda8eb4cc8637971c4e7688912ddd15305416ff1584ed0209a50856b1bab78b75cd06b71bbd38d2ec4c9f78bc8266af56073362bd8fb6d105968cde5a03cb32807aca87299223b08f815274e8f1f1255aa9843ec8b2e1c45647fa518e253f3a56cc29e90acaa22d469d0ceff726a0d87281950632cd01d53ecffc8a8ec7e12179e9d7921faf03d77988145fd666e7a0a2c484aca52cbb7f04a324202deee9b147815ca9fdf830a58ba554ce22b72665c7bbf", @ANYRES32=r1, @ANYBLOB="0000000000040000"], 0x0, 0x16f, 0x81, &(0x7f0000000540)=""/129, 0x41100, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x1, 0xa, 0x0, 0x5}, 0x10, 0x0, r1, 0x0, &(0x7f0000000980)=[0xffffffffffffffff, r1]}, 0x80) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000480)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x32600) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='blkio.throttle.write_iops_device\x00', 0x2, 0x0) 13:52:21 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) close(r4) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r5 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r6, r5, r7, r5]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) [ 93.180431][ T5814] CPU: 1 PID: 5814 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 93.190413][ T5814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 93.200311][ T5814] Call Trace: [ 93.203430][ T5814] [ 93.206296][ T5814] dump_stack_lvl+0x151/0x1b7 [ 93.210902][ T5814] ? bfq_pos_tree_add_move+0x43e/0x43e [ 93.216192][ T5814] dump_stack+0x15/0x17 [ 93.220183][ T5814] should_fail+0x3c0/0x510 [ 93.224437][ T5814] __should_failslab+0x9f/0xe0 [ 93.229037][ T5814] should_failslab+0x9/0x20 [ 93.233377][ T5814] kmem_cache_alloc+0x4f/0x2f0 [ 93.237976][ T5814] ? anon_vma_fork+0x1b9/0x4f0 [ 93.242574][ T5814] anon_vma_fork+0x1b9/0x4f0 [ 93.247003][ T5814] dup_mmap+0x750/0xea0 [ 93.250998][ T5814] ? __delayed_free_task+0x20/0x20 [ 93.255944][ T5814] ? mm_init+0x807/0x960 [ 93.260022][ T5814] dup_mm+0x91/0x330 [ 93.263759][ T5814] copy_mm+0x108/0x1b0 [ 93.267660][ T5814] copy_process+0x1295/0x3250 [ 93.272168][ T5814] ? proc_fail_nth_write+0x213/0x290 [ 93.277288][ T5814] ? proc_fail_nth_read+0x220/0x220 [ 93.282321][ T5814] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 93.287268][ T5814] ? vfs_write+0x9af/0x1050 [ 93.291607][ T5814] ? vmacache_update+0xb7/0x120 [ 93.296295][ T5814] kernel_clone+0x22d/0x990 [ 93.300635][ T5814] ? file_end_write+0x1b0/0x1b0 [ 93.305319][ T5814] ? __kasan_check_write+0x14/0x20 [ 93.310267][ T5814] ? create_io_thread+0x1e0/0x1e0 [ 93.315129][ T5814] ? __mutex_lock_slowpath+0x10/0x10 [ 93.320252][ T5814] __x64_sys_clone+0x289/0x310 [ 93.324853][ T5814] ? __do_sys_vfork+0x130/0x130 [ 93.329538][ T5814] ? debug_smp_processor_id+0x17/0x20 [ 93.334747][ T5814] do_syscall_64+0x44/0xd0 [ 93.338998][ T5814] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 93.344724][ T5814] RIP: 0033:0x7f35007595a9 [ 93.348979][ T5814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 93.368418][ T5814] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 93.376659][ T5814] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 93.384473][ T5814] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 93.392290][ T5814] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 93.400097][ T5814] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 93.407909][ T5814] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 93.415720][ T5814] 13:52:21 executing program 0: r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000004400000010000000000000e0200000000000000000000000000000200000000002e2e00"], &(0x7f0000000140)=""/180, 0x38, 0xb4, 0x1}, 0x20) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0xc0506617, &(0x7f0000000040)=0x2) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1a, 0x1f, 0x2000000, 0x12, 0x10, r1, 0x3f, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2}, 0x48) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES32], &(0x7f0000000280)='GPL\x00', 0x7, 0xbd, &(0x7f0000000a40)=""/189, 0x40f00, 0x11, '\x00', r2, 0x25, r1, 0x8, &(0x7f0000000080)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000000840)={0x0, 0x800008, 0x8, 0x3e}, 0x10}, 0x80) bpf$ITER_CREATE(0x21, &(0x7f00000005c0), 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x411, 0xffffffffffffffff, 0xcd, '\x00', r2, 0xffffffffffffffff, 0x3, 0x404, 0x5}, 0x48) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800f1009529"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8) write$cgroup_int(r7, &(0x7f00000001c0), 0xfffffdef) sendmsg(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x0, 0x3, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x42, 0x10, 0x0}, 0x80) r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000440)='sched_kthread_stop\x00'}, 0x46) r9 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r8}, 0x8) write$cgroup_int(r9, &(0x7f0000000580)=0x2, 0x68) sendmsg(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)="0f", 0x1}], 0x1}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1b, 0x9, &(0x7f00000009c0)=@raw=[@alu={0x7, 0x1, 0x9, 0x7, 0x5, 0xffffffffffffffe0}, @cb_func={0x18, 0x7289c7879e153565, 0x4, 0x0, 0x8}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, @ldst={0x0, 0x0, 0x6, 0xa, 0xb, 0x50, 0x10}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xffbffffa}], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0xd3, &(0x7f0000000200)=""/211, 0x41000, 0x1, '\x00', r2, 0x19, r4, 0x8, &(0x7f0000000300)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0xd, 0x6, 0xffffffff}, 0x10, r3, 0xffffffffffffffff, 0x0, &(0x7f0000000380)=[0x1, 0xffffffffffffffff, r9, 0x1, r0]}, 0x80) 13:52:21 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r2, &(0x7f00000000c0)='memory.numa_stat\x00', 0x0, 0x0) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) openat$cgroup(r3, &(0x7f0000000140)='syz0\x00', 0x200002, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:21 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) close(r4) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r5 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r6, r5, r7, r5]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:21 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 46) 13:52:21 executing program 0: r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000004400000010000000000000e0200000000000000000000000000000200000000002e2e00"], &(0x7f0000000140)=""/180, 0x38, 0xb4, 0x1}, 0x20) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0xc0506617, &(0x7f0000000040)=0x2) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1a, 0x1f, 0x2000000, 0x12, 0x10, r1, 0x3f, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2}, 0x48) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES32], &(0x7f0000000280)='GPL\x00', 0x7, 0xbd, &(0x7f0000000a40)=""/189, 0x40f00, 0x11, '\x00', r2, 0x25, r1, 0x8, &(0x7f0000000080)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000000840)={0x0, 0x800008, 0x8, 0x3e}, 0x10}, 0x80) (async) bpf$ITER_CREATE(0x21, &(0x7f00000005c0), 0x8) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x411, 0xffffffffffffffff, 0xcd, '\x00', r2, 0xffffffffffffffff, 0x3, 0x404, 0x5}, 0x48) (async) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) (async) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800f1009529"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8) write$cgroup_int(r7, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x0, 0x3, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x42, 0x10, 0x0}, 0x80) (async) r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000440)='sched_kthread_stop\x00'}, 0x46) r9 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r8}, 0x8) write$cgroup_int(r9, &(0x7f0000000580)=0x2, 0x68) (async) sendmsg(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)="0f", 0x1}], 0x1}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1b, 0x9, &(0x7f00000009c0)=@raw=[@alu={0x7, 0x1, 0x9, 0x7, 0x5, 0xffffffffffffffe0}, @cb_func={0x18, 0x7289c7879e153565, 0x4, 0x0, 0x8}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, @ldst={0x0, 0x0, 0x6, 0xa, 0xb, 0x50, 0x10}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xffbffffa}], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0xd3, &(0x7f0000000200)=""/211, 0x41000, 0x1, '\x00', r2, 0x19, r4, 0x8, &(0x7f0000000300)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0xd, 0x6, 0xffffffff}, 0x10, r3, 0xffffffffffffffff, 0x0, &(0x7f0000000380)=[0x1, 0xffffffffffffffff, r9, 0x1, r0]}, 0x80) 13:52:22 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) close(r4) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r5 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r6, r5, r7, r5]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:22 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r2, &(0x7f00000000c0)='memory.numa_stat\x00', 0x0, 0x0) (async) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) openat$cgroup(r3, &(0x7f0000000140)='syz0\x00', 0x200002, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:22 executing program 0: r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000004400000010000000000000e0200000000000000000000000000000200000000002e2e00"], &(0x7f0000000140)=""/180, 0x38, 0xb4, 0x1}, 0x20) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0xc0506617, &(0x7f0000000040)=0x2) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0x1a, 0x1f, 0x2000000, 0x12, 0x10, r1, 0x3f, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2}, 0x48) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES32], &(0x7f0000000280)='GPL\x00', 0x7, 0xbd, &(0x7f0000000a40)=""/189, 0x40f00, 0x11, '\x00', r2, 0x25, r1, 0x8, &(0x7f0000000080)={0x7, 0x2}, 0x8, 0x10, &(0x7f0000000840)={0x0, 0x800008, 0x8, 0x3e}, 0x10}, 0x80) (async) bpf$ITER_CREATE(0x21, &(0x7f00000005c0), 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x411, 0xffffffffffffffff, 0xcd, '\x00', r2, 0xffffffffffffffff, 0x3, 0x404, 0x5}, 0x48) (async) r4 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) (async) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800f1009529"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8) write$cgroup_int(r7, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x0, 0x3, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x42, 0x10, 0x0}, 0x80) (async) r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000440)='sched_kthread_stop\x00'}, 0x46) r9 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r8}, 0x8) write$cgroup_int(r9, &(0x7f0000000580)=0x2, 0x68) sendmsg(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)="0f", 0x1}], 0x1}, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x1b, 0x9, &(0x7f00000009c0)=@raw=[@alu={0x7, 0x1, 0x9, 0x7, 0x5, 0xffffffffffffffe0}, @cb_func={0x18, 0x7289c7879e153565, 0x4, 0x0, 0x8}, @map_idx_val={0x18, 0xb, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7}, @ldst={0x0, 0x0, 0x6, 0xa, 0xb, 0x50, 0x10}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xffbffffa}], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0xd3, &(0x7f0000000200)=""/211, 0x41000, 0x1, '\x00', r2, 0x19, r4, 0x8, &(0x7f0000000300)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x3, 0xd, 0x6, 0xffffffff}, 0x10, r3, 0xffffffffffffffff, 0x0, &(0x7f0000000380)=[0x1, 0xffffffffffffffff, r9, 0x1, r0]}, 0x80) [ 93.544779][ T5831] FAULT_INJECTION: forcing a failure. [ 93.544779][ T5831] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 93.609235][ T5831] CPU: 1 PID: 5831 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 93.619222][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 93.629116][ T5831] Call Trace: [ 93.632240][ T5831] [ 93.635018][ T5831] dump_stack_lvl+0x151/0x1b7 [ 93.639530][ T5831] ? bfq_pos_tree_add_move+0x43e/0x43e [ 93.644824][ T5831] dump_stack+0x15/0x17 [ 93.648814][ T5831] should_fail+0x3c0/0x510 [ 93.653072][ T5831] should_fail_alloc_page+0x58/0x70 [ 93.658105][ T5831] __alloc_pages+0x1de/0x7c0 [ 93.662529][ T5831] ? __count_vm_events+0x30/0x30 [ 93.667301][ T5831] ? dup_mm+0x91/0x330 [ 93.671207][ T5831] ? copy_mm+0x108/0x1b0 [ 93.675287][ T5831] ? copy_process+0x1295/0x3250 [ 93.679974][ T5831] ? kernel_clone+0x22d/0x990 [ 93.684488][ T5831] ? __x64_sys_clone+0x289/0x310 [ 93.689261][ T5831] pte_alloc_one+0x73/0x1b0 [ 93.693599][ T5831] ? pfn_modify_allowed+0x2e0/0x2e0 [ 93.698636][ T5831] ? __kasan_check_write+0x14/0x20 [ 93.703582][ T5831] ? __set_page_owner+0x2ee/0x310 [ 93.708443][ T5831] __pte_alloc+0x86/0x350 [ 93.712606][ T5831] ? post_alloc_hook+0x1ab/0x1b0 [ 93.717471][ T5831] ? free_pgtables+0x210/0x210 [ 93.722066][ T5831] ? get_page_from_freelist+0x38b/0x400 [ 93.727450][ T5831] copy_pte_range+0x1b1f/0x20b0 [ 93.732145][ T5831] ? __kunmap_atomic+0x80/0x80 [ 93.736738][ T5831] ? __pud_alloc+0x260/0x260 [ 93.741158][ T5831] ? __pud_alloc+0x218/0x260 [ 93.745591][ T5831] ? do_handle_mm_fault+0x2370/0x2370 [ 93.750794][ T5831] copy_page_range+0xc1e/0x1090 [ 93.755492][ T5831] ? pfn_valid+0x1e0/0x1e0 [ 93.759732][ T5831] dup_mmap+0x99f/0xea0 [ 93.763722][ T5831] ? __delayed_free_task+0x20/0x20 [ 93.768671][ T5831] ? mm_init+0x807/0x960 [ 93.772747][ T5831] dup_mm+0x91/0x330 [ 93.776482][ T5831] copy_mm+0x108/0x1b0 [ 93.780387][ T5831] copy_process+0x1295/0x3250 [ 93.784901][ T5831] ? proc_fail_nth_write+0x213/0x290 [ 93.790020][ T5831] ? proc_fail_nth_read+0x220/0x220 [ 93.795054][ T5831] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 93.800002][ T5831] ? vfs_write+0x9af/0x1050 [ 93.804342][ T5831] ? vmacache_update+0xb7/0x120 [ 93.809030][ T5831] kernel_clone+0x22d/0x990 [ 93.813368][ T5831] ? file_end_write+0x1b0/0x1b0 [ 93.818054][ T5831] ? __kasan_check_write+0x14/0x20 [ 93.823000][ T5831] ? create_io_thread+0x1e0/0x1e0 [ 93.827863][ T5831] ? __mutex_lock_slowpath+0x10/0x10 [ 93.832983][ T5831] __x64_sys_clone+0x289/0x310 [ 93.837583][ T5831] ? __do_sys_vfork+0x130/0x130 [ 93.842271][ T5831] ? debug_smp_processor_id+0x17/0x20 [ 93.847476][ T5831] do_syscall_64+0x44/0xd0 [ 93.851729][ T5831] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 93.857458][ T5831] RIP: 0033:0x7f35007595a9 [ 93.861713][ T5831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 93.881326][ T5831] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 93.889570][ T5831] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 93.897380][ T5831] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 13:52:22 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r2, &(0x7f00000000c0)='memory.numa_stat\x00', 0x0, 0x0) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8) openat$cgroup(r3, &(0x7f0000000140)='syz0\x00', 0x200002, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:22 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r2, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, &(0x7f0000000240)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000004c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000500), &(0x7f0000000540), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000580)}}, 0x10) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10) r9 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r8}, 0x8) write$cgroup_int(r9, &(0x7f00000001c0), 0xfffffdef) sendmsg(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000780)={r5}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0x3, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xeb32}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}], &(0x7f00000000c0)='GPL\x00', 0x3, 0xdb, &(0x7f00000003c0)=""/219, 0x40f00, 0xa, '\x00', r6, 0x15, r9, 0x8, &(0x7f0000000700)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000740)={0x4, 0xc, 0xffff, 0x3}, 0x10, 0xffffffffffffffff, r10}, 0x80) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x2, 0x4, &(0x7f0000000840)=ANY=[@ANYBLOB="181a0000", @ANYRES32=r2, @ANYBLOB="000000000000000018220000", @ANYRES32=r5, @ANYBLOB="00000000000800000869aaeaad38b37fe75586cbfb1376876b2f40c2ebbd03ad76664909662faa5905efe7f5e125bb9e81dadb4524b61e275d793e8fa570ce472b9ebef31cf7815fdfd027b2f9eab9a7e61ea66610325578efcde424ecc973e4ded9886883edc5198a6c6b1ac9fb282fe05d849b3e00a6dbb6e17a3c57c2099930eecbae40a8e08ea61c6303d698a5f6d6685bc89d0c4a978eecf2306e9a0b64d665eebb43661f4dd60d65c2ab8ca22e7dac524974b651b88bebc25a1065259d40810586467a8424c91da756c0c5"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x5}, 0x48) r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c00)={&(0x7f0000000a80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x65, 0x65, 0x8, [@datasec={0xd, 0x6, 0x0, 0xf, 0x1, [{0x4, 0x8000, 0x100}, {0x5, 0x100, 0x80}, {0x2, 0x80000000, 0x2}, {0x1, 0x8, 0x2}, {0x5, 0x0, 0x1}, {0x1, 0x1000, 0xffff8000}], 'a'}, @var={0x6, 0x0, 0x0, 0xe, 0x1, 0x1}]}, {0x0, [0x5f, 0x30, 0x0, 0x2e, 0x2e, 0x0]}}, &(0x7f0000000b40)=""/174, 0x88, 0xae}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000cc0)={0x18, 0xc, &(0x7f0000000980)=@raw=[@exit, @map_val={0x18, 0xc, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @generic={0x7f, 0x3, 0x9, 0x1, 0x4ed4}, @map_val={0x18, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x14c}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x4}, @exit, @exit, @cb_func={0x18, 0xb, 0x4, 0x0, 0x2}], &(0x7f0000000a00)='GPL\x00', 0x8, 0x34, &(0x7f0000000a40)=""/52, 0x40f00, 0x11, '\x00', 0x0, 0x0, r11, 0x8, &(0x7f0000000c40)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000c80)={0x3, 0x4, 0x800, 0xb2}, 0x10}, 0x80) 13:52:22 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x8000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:22 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000dac}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000680), 0xc}, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf95}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) syz_clone(0x74809c80, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x0, 0x80, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000240), 0xe}, 0x0, 0x1000000c0d, 0x3, 0x0, 0xfffffffffffffffc, 0x2, 0x2, 0x0, 0x0, 0x0, 0x100000001}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000340)={0x4, 0x80, 0x0, 0x0, 0xd7, 0x0, 0x0, 0x200000000000, 0x3000, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3c, 0x1, @perf_bp={&(0x7f0000000140), 0x4}, 0x420, 0x0, 0x2, 0x0, 0x4, 0x1ff, 0x5, 0x0, 0xcd8, 0x0, 0xa2}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000440)='\'*\x00') bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x0, 0x9, &(0x7f00000006c0)=ANY=[@ANYBLOB="850000002d0000000552ff7f070000006d42f8ff00000000851000000500000085000017030000000000000000000000776600010400000018290000e2ea00b176826a79bda8eb4cc8637971c4e7688912ddd15305416ff1584ed0209a50856b1bab78b75cd06b71bbd38d2ec4c9f78bc8266af56073362bd8fb6d105968cde5a03cb32807aca87299223b08f815274e8f1f1255aa9843ec8b2e1c45647fa518e253f3a56cc29e90acaa22d469d0ceff726a0d87281950632cd01d53ecffc8a8ec7e12179e9d7921faf03d77988145fd666e7a0a2c484aca52cbb7f04a324202deee9b147815ca9fdf830a58ba554ce22b72665c7bbf", @ANYRES32=r1, @ANYBLOB="0000000000040000"], 0x0, 0x16f, 0x81, &(0x7f0000000540)=""/129, 0x41100, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x1, 0xa, 0x0, 0x5}, 0x10, 0x0, r1, 0x0, &(0x7f0000000980)=[0xffffffffffffffff, r1]}, 0x80) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000480)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x32600) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='blkio.throttle.write_iops_device\x00', 0x2, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000dac}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000680), 0xc}, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf95}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) (async) syz_clone(0x74809c80, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x0, 0x80, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000240), 0xe}, 0x0, 0x1000000c0d, 0x3, 0x0, 0xfffffffffffffffc, 0x2, 0x2, 0x0, 0x0, 0x0, 0x100000001}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) (async) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000340)={0x4, 0x80, 0x0, 0x0, 0xd7, 0x0, 0x0, 0x200000000000, 0x3000, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3c, 0x1, @perf_bp={&(0x7f0000000140), 0x4}, 0x420, 0x0, 0x2, 0x0, 0x4, 0x1ff, 0x5, 0x0, 0xcd8, 0x0, 0xa2}) (async) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000440)='\'*\x00') (async) bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x0, 0x9, &(0x7f00000006c0)=ANY=[@ANYBLOB="850000002d0000000552ff7f070000006d42f8ff00000000851000000500000085000017030000000000000000000000776600010400000018290000e2ea00b176826a79bda8eb4cc8637971c4e7688912ddd15305416ff1584ed0209a50856b1bab78b75cd06b71bbd38d2ec4c9f78bc8266af56073362bd8fb6d105968cde5a03cb32807aca87299223b08f815274e8f1f1255aa9843ec8b2e1c45647fa518e253f3a56cc29e90acaa22d469d0ceff726a0d87281950632cd01d53ecffc8a8ec7e12179e9d7921faf03d77988145fd666e7a0a2c484aca52cbb7f04a324202deee9b147815ca9fdf830a58ba554ce22b72665c7bbf", @ANYRES32=r1, @ANYBLOB="0000000000040000"], 0x0, 0x16f, 0x81, &(0x7f0000000540)=""/129, 0x41100, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x1, 0xa, 0x0, 0x5}, 0x10, 0x0, r1, 0x0, &(0x7f0000000980)=[0xffffffffffffffff, r1]}, 0x80) (async) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000480)='./cgroup.net/syz0\x00', 0x1ff) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) (async) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x32600) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) (async) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='blkio.throttle.write_iops_device\x00', 0x2, 0x0) (async) 13:52:22 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 93.905193][ T5831] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 93.913002][ T5831] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 93.920814][ T5831] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 93.928628][ T5831] 13:52:22 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x0, 0x0) 13:52:22 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x0, 0x0) 13:52:22 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:22 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async, rerun: 64) openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x0, 0x0) (rerun: 64) 13:52:22 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 47) 13:52:22 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r0, &(0x7f0000000080)='rdma.max\x00', 0x2, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:22 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:22 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r2, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, &(0x7f0000000240)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000004c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000500), &(0x7f0000000540), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000580)}}, 0x10) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10) r9 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r8}, 0x8) write$cgroup_int(r9, &(0x7f00000001c0), 0xfffffdef) sendmsg(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000780)={r5}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0x3, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xeb32}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}], &(0x7f00000000c0)='GPL\x00', 0x3, 0xdb, &(0x7f00000003c0)=""/219, 0x40f00, 0xa, '\x00', r6, 0x15, r9, 0x8, &(0x7f0000000700)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000740)={0x4, 0xc, 0xffff, 0x3}, 0x10, 0xffffffffffffffff, r10}, 0x80) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x2, 0x4, &(0x7f0000000840)=ANY=[@ANYBLOB="181a0000", @ANYRES32=r2, @ANYBLOB="000000000000000018220000", @ANYRES32=r5, @ANYBLOB="00000000000800000869aaeaad38b37fe75586cbfb1376876b2f40c2ebbd03ad76664909662faa5905efe7f5e125bb9e81dadb4524b61e275d793e8fa570ce472b9ebef31cf7815fdfd027b2f9eab9a7e61ea66610325578efcde424ecc973e4ded9886883edc5198a6c6b1ac9fb282fe05d849b3e00a6dbb6e17a3c57c2099930eecbae40a8e08ea61c6303d698a5f6d6685bc89d0c4a978eecf2306e9a0b64d665eebb43661f4dd60d65c2ab8ca22e7dac524974b651b88bebc25a1065259d40810586467a8424c91da756c0c5"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x5}, 0x48) r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c00)={&(0x7f0000000a80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x65, 0x65, 0x8, [@datasec={0xd, 0x6, 0x0, 0xf, 0x1, [{0x4, 0x8000, 0x100}, {0x5, 0x100, 0x80}, {0x2, 0x80000000, 0x2}, {0x1, 0x8, 0x2}, {0x5, 0x0, 0x1}, {0x1, 0x1000, 0xffff8000}], 'a'}, @var={0x6, 0x0, 0x0, 0xe, 0x1, 0x1}]}, {0x0, [0x5f, 0x30, 0x0, 0x2e, 0x2e, 0x0]}}, &(0x7f0000000b40)=""/174, 0x88, 0xae}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000cc0)={0x18, 0xc, &(0x7f0000000980)=@raw=[@exit, @map_val={0x18, 0xc, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @generic={0x7f, 0x3, 0x9, 0x1, 0x4ed4}, @map_val={0x18, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x14c}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x4}, @exit, @exit, @cb_func={0x18, 0xb, 0x4, 0x0, 0x2}], &(0x7f0000000a00)='GPL\x00', 0x8, 0x34, &(0x7f0000000a40)=""/52, 0x40f00, 0x11, '\x00', 0x0, 0x0, r11, 0x8, &(0x7f0000000c40)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000c80)={0x3, 0x4, 0x800, 0xb2}, 0x10}, 0x80) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) (async) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) (async) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r2, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, &(0x7f0000000240)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000004c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000500), &(0x7f0000000540), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000580)}}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r8}, 0x8) (async) write$cgroup_int(r9, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000780)={r5}, 0x8) (async) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0x3, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xeb32}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}], &(0x7f00000000c0)='GPL\x00', 0x3, 0xdb, &(0x7f00000003c0)=""/219, 0x40f00, 0xa, '\x00', r6, 0x15, r9, 0x8, &(0x7f0000000700)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000740)={0x4, 0xc, 0xffff, 0x3}, 0x10, 0xffffffffffffffff, r10}, 0x80) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x2, 0x4, &(0x7f0000000840)=ANY=[@ANYBLOB="181a0000", @ANYRES32=r2, @ANYBLOB="000000000000000018220000", @ANYRES32=r5, @ANYBLOB="00000000000800000869aaeaad38b37fe75586cbfb1376876b2f40c2ebbd03ad76664909662faa5905efe7f5e125bb9e81dadb4524b61e275d793e8fa570ce472b9ebef31cf7815fdfd027b2f9eab9a7e61ea66610325578efcde424ecc973e4ded9886883edc5198a6c6b1ac9fb282fe05d849b3e00a6dbb6e17a3c57c2099930eecbae40a8e08ea61c6303d698a5f6d6685bc89d0c4a978eecf2306e9a0b64d665eebb43661f4dd60d65c2ab8ca22e7dac524974b651b88bebc25a1065259d40810586467a8424c91da756c0c5"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x5}, 0x48) (async) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c00)={&(0x7f0000000a80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x65, 0x65, 0x8, [@datasec={0xd, 0x6, 0x0, 0xf, 0x1, [{0x4, 0x8000, 0x100}, {0x5, 0x100, 0x80}, {0x2, 0x80000000, 0x2}, {0x1, 0x8, 0x2}, {0x5, 0x0, 0x1}, {0x1, 0x1000, 0xffff8000}], 'a'}, @var={0x6, 0x0, 0x0, 0xe, 0x1, 0x1}]}, {0x0, [0x5f, 0x30, 0x0, 0x2e, 0x2e, 0x0]}}, &(0x7f0000000b40)=""/174, 0x88, 0xae}, 0x20) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000cc0)={0x18, 0xc, &(0x7f0000000980)=@raw=[@exit, @map_val={0x18, 0xc, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @generic={0x7f, 0x3, 0x9, 0x1, 0x4ed4}, @map_val={0x18, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x14c}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x4}, @exit, @exit, @cb_func={0x18, 0xb, 0x4, 0x0, 0x2}], &(0x7f0000000a00)='GPL\x00', 0x8, 0x34, &(0x7f0000000a40)=""/52, 0x40f00, 0x11, '\x00', 0x0, 0x0, r11, 0x8, &(0x7f0000000c40)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000c80)={0x3, 0x4, 0x800, 0xb2}, 0x10}, 0x80) (async) [ 94.151547][ T5893] FAULT_INJECTION: forcing a failure. [ 94.151547][ T5893] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 94.187035][ T5893] CPU: 1 PID: 5893 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 94.197024][ T5893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 94.206913][ T5893] Call Trace: [ 94.210038][ T5893] [ 94.212814][ T5893] dump_stack_lvl+0x151/0x1b7 [ 94.217326][ T5893] ? bfq_pos_tree_add_move+0x43e/0x43e [ 94.222627][ T5893] dump_stack+0x15/0x17 [ 94.226611][ T5893] should_fail+0x3c0/0x510 [ 94.230867][ T5893] should_fail_alloc_page+0x58/0x70 [ 94.235898][ T5893] __alloc_pages+0x1de/0x7c0 [ 94.240327][ T5893] ? __count_vm_events+0x30/0x30 [ 94.245102][ T5893] ? dup_mm+0x91/0x330 [ 94.249120][ T5893] ? copy_mm+0x108/0x1b0 [ 94.253200][ T5893] ? copy_process+0x1295/0x3250 [ 94.257885][ T5893] ? kernel_clone+0x22d/0x990 [ 94.262394][ T5893] ? __x64_sys_clone+0x289/0x310 [ 94.267170][ T5893] pte_alloc_one+0x73/0x1b0 [ 94.271510][ T5893] ? pfn_modify_allowed+0x2e0/0x2e0 [ 94.276544][ T5893] ? __kasan_check_write+0x14/0x20 [ 94.281496][ T5893] ? __set_page_owner+0x2ee/0x310 [ 94.286355][ T5893] __pte_alloc+0x86/0x350 [ 94.290519][ T5893] ? post_alloc_hook+0x1ab/0x1b0 [ 94.295292][ T5893] ? free_pgtables+0x210/0x210 [ 94.299890][ T5893] ? get_page_from_freelist+0x38b/0x400 [ 94.305275][ T5893] copy_pte_range+0x1b1f/0x20b0 [ 94.309964][ T5893] ? __kunmap_atomic+0x80/0x80 [ 94.314559][ T5893] ? __pud_alloc+0x260/0x260 [ 94.319004][ T5893] ? __pud_alloc+0x218/0x260 [ 94.323412][ T5893] ? do_handle_mm_fault+0x2370/0x2370 [ 94.328621][ T5893] copy_page_range+0xc1e/0x1090 [ 94.333311][ T5893] ? pfn_valid+0x1e0/0x1e0 [ 94.337559][ T5893] dup_mmap+0x99f/0xea0 [ 94.341554][ T5893] ? __delayed_free_task+0x20/0x20 [ 94.346503][ T5893] ? mm_init+0x807/0x960 [ 94.350577][ T5893] dup_mm+0x91/0x330 [ 94.354307][ T5893] copy_mm+0x108/0x1b0 [ 94.358214][ T5893] copy_process+0x1295/0x3250 [ 94.362733][ T5893] ? proc_fail_nth_write+0x213/0x290 [ 94.367850][ T5893] ? proc_fail_nth_read+0x220/0x220 [ 94.372891][ T5893] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 94.377829][ T5893] ? vfs_write+0x9af/0x1050 [ 94.382168][ T5893] ? vmacache_update+0xb7/0x120 [ 94.386858][ T5893] kernel_clone+0x22d/0x990 [ 94.391195][ T5893] ? file_end_write+0x1b0/0x1b0 [ 94.395885][ T5893] ? __kasan_check_write+0x14/0x20 [ 94.400831][ T5893] ? create_io_thread+0x1e0/0x1e0 [ 94.405693][ T5893] ? __mutex_lock_slowpath+0x10/0x10 [ 94.410816][ T5893] __x64_sys_clone+0x289/0x310 [ 94.415413][ T5893] ? __do_sys_vfork+0x130/0x130 [ 94.420099][ T5893] ? debug_smp_processor_id+0x17/0x20 [ 94.425319][ T5893] do_syscall_64+0x44/0xd0 [ 94.429552][ T5893] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 94.435280][ T5893] RIP: 0033:0x7f35007595a9 [ 94.439535][ T5893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 94.458978][ T5893] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 94.467221][ T5893] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 94.475030][ T5893] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 94.482844][ T5893] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 94.490653][ T5893] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 13:52:22 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000dac}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) r0 = perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000680), 0xc}, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf95}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) syz_clone(0x74809c80, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x0, 0x80, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000240), 0xe}, 0x0, 0x1000000c0d, 0x3, 0x0, 0xfffffffffffffffc, 0x2, 0x2, 0x0, 0x0, 0x0, 0x100000001}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) (async) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000340)={0x4, 0x80, 0x0, 0x0, 0xd7, 0x0, 0x0, 0x200000000000, 0x3000, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3c, 0x1, @perf_bp={&(0x7f0000000140), 0x4}, 0x420, 0x0, 0x2, 0x0, 0x4, 0x1ff, 0x5, 0x0, 0xcd8, 0x0, 0xa2}) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000440)='\'*\x00') (async) bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x0, 0x9, &(0x7f00000006c0)=ANY=[@ANYBLOB="850000002d0000000552ff7f070000006d42f8ff00000000851000000500000085000017030000000000000000000000776600010400000018290000e2ea00b176826a79bda8eb4cc8637971c4e7688912ddd15305416ff1584ed0209a50856b1bab78b75cd06b71bbd38d2ec4c9f78bc8266af56073362bd8fb6d105968cde5a03cb32807aca87299223b08f815274e8f1f1255aa9843ec8b2e1c45647fa518e253f3a56cc29e90acaa22d469d0ceff726a0d87281950632cd01d53ecffc8a8ec7e12179e9d7921faf03d77988145fd666e7a0a2c484aca52cbb7f04a324202deee9b147815ca9fdf830a58ba554ce22b72665c7bbf", @ANYRES32=r1, @ANYBLOB="0000000000040000"], 0x0, 0x16f, 0x81, &(0x7f0000000540)=""/129, 0x41100, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x1, 0xa, 0x0, 0x5}, 0x10, 0x0, r1, 0x0, &(0x7f0000000980)=[0xffffffffffffffff, r1]}, 0x80) (async) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000480)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) (async) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x32600) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup/syz1\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000003c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='blkio.throttle.write_iops_device\x00', 0x2, 0x0) 13:52:22 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x3067dcce290000, &(0x7f0000000040), 0x0, 0x0) 13:52:22 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r0, &(0x7f0000000080)='rdma.max\x00', 0x2, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000080)='rdma.max\x00', 0x2, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) 13:52:22 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 48) 13:52:23 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 94.498474][ T5893] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 94.506281][ T5893] [ 94.522774][ T30] audit: type=1400 audit(1667569942.929:116): avc: denied { unlink } for pid=165 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 13:52:23 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r0, &(0x7f0000000080)='rdma.max\x00', 0x2, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000080)='rdma.max\x00', 0x2, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) 13:52:23 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xf0a10d1b000000, &(0x7f0000000040), 0x0, 0x0) 13:52:23 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:23 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r2, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, &(0x7f0000000240)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000004c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000500), &(0x7f0000000540), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000580)}}, 0x10) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r8 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10) r9 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r8}, 0x8) write$cgroup_int(r9, &(0x7f00000001c0), 0xfffffdef) sendmsg(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) r10 = bpf$ITER_CREATE(0x21, &(0x7f0000000780)={r5}, 0x8) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0x3, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xeb32}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}], &(0x7f00000000c0)='GPL\x00', 0x3, 0xdb, &(0x7f00000003c0)=""/219, 0x40f00, 0xa, '\x00', r6, 0x15, r9, 0x8, &(0x7f0000000700)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000740)={0x4, 0xc, 0xffff, 0x3}, 0x10, 0xffffffffffffffff, r10}, 0x80) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x2, 0x4, &(0x7f0000000840)=ANY=[@ANYBLOB="181a0000", @ANYRES32=r2, @ANYBLOB="000000000000000018220000", @ANYRES32=r5, @ANYBLOB="00000000000800000869aaeaad38b37fe75586cbfb1376876b2f40c2ebbd03ad76664909662faa5905efe7f5e125bb9e81dadb4524b61e275d793e8fa570ce472b9ebef31cf7815fdfd027b2f9eab9a7e61ea66610325578efcde424ecc973e4ded9886883edc5198a6c6b1ac9fb282fe05d849b3e00a6dbb6e17a3c57c2099930eecbae40a8e08ea61c6303d698a5f6d6685bc89d0c4a978eecf2306e9a0b64d665eebb43661f4dd60d65c2ab8ca22e7dac524974b651b88bebc25a1065259d40810586467a8424c91da756c0c5"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x5}, 0x48) r11 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c00)={&(0x7f0000000a80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x65, 0x65, 0x8, [@datasec={0xd, 0x6, 0x0, 0xf, 0x1, [{0x4, 0x8000, 0x100}, {0x5, 0x100, 0x80}, {0x2, 0x80000000, 0x2}, {0x1, 0x8, 0x2}, {0x5, 0x0, 0x1}, {0x1, 0x1000, 0xffff8000}], 'a'}, @var={0x6, 0x0, 0x0, 0xe, 0x1, 0x1}]}, {0x0, [0x5f, 0x30, 0x0, 0x2e, 0x2e, 0x0]}}, &(0x7f0000000b40)=""/174, 0x88, 0xae}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000cc0)={0x18, 0xc, &(0x7f0000000980)=@raw=[@exit, @map_val={0x18, 0xc, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @generic={0x7f, 0x3, 0x9, 0x1, 0x4ed4}, @map_val={0x18, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x14c}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x4}, @exit, @exit, @cb_func={0x18, 0xb, 0x4, 0x0, 0x2}], &(0x7f0000000a00)='GPL\x00', 0x8, 0x34, &(0x7f0000000a40)=""/52, 0x40f00, 0x11, '\x00', 0x0, 0x0, r11, 0x8, &(0x7f0000000c40)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000c80)={0x3, 0x4, 0x800, 0xb2}, 0x10}, 0x80) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) (async) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) (async) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r2, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, &(0x7f0000000240)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x8, &(0x7f00000004c0)=[{}, {}, {}], 0x18, 0x10, &(0x7f0000000500), &(0x7f0000000540), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000580)}}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r8}, 0x8) (async) write$cgroup_int(r9, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000780)={r5}, 0x8) (async) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0x3, &(0x7f0000000040)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xeb32}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}], &(0x7f00000000c0)='GPL\x00', 0x3, 0xdb, &(0x7f00000003c0)=""/219, 0x40f00, 0xa, '\x00', r6, 0x15, r9, 0x8, &(0x7f0000000700)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000740)={0x4, 0xc, 0xffff, 0x3}, 0x10, 0xffffffffffffffff, r10}, 0x80) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x2, 0x4, &(0x7f0000000840)=ANY=[@ANYBLOB="181a0000", @ANYRES32=r2, @ANYBLOB="000000000000000018220000", @ANYRES32=r5, @ANYBLOB="00000000000800000869aaeaad38b37fe75586cbfb1376876b2f40c2ebbd03ad76664909662faa5905efe7f5e125bb9e81dadb4524b61e275d793e8fa570ce472b9ebef31cf7815fdfd027b2f9eab9a7e61ea66610325578efcde424ecc973e4ded9886883edc5198a6c6b1ac9fb282fe05d849b3e00a6dbb6e17a3c57c2099930eecbae40a8e08ea61c6303d698a5f6d6685bc89d0c4a978eecf2306e9a0b64d665eebb43661f4dd60d65c2ab8ca22e7dac524974b651b88bebc25a1065259d40810586467a8424c91da756c0c5"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4, 0x5}, 0x48) (async) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c00)={&(0x7f0000000a80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x65, 0x65, 0x8, [@datasec={0xd, 0x6, 0x0, 0xf, 0x1, [{0x4, 0x8000, 0x100}, {0x5, 0x100, 0x80}, {0x2, 0x80000000, 0x2}, {0x1, 0x8, 0x2}, {0x5, 0x0, 0x1}, {0x1, 0x1000, 0xffff8000}], 'a'}, @var={0x6, 0x0, 0x0, 0xe, 0x1, 0x1}]}, {0x0, [0x5f, 0x30, 0x0, 0x2e, 0x2e, 0x0]}}, &(0x7f0000000b40)=""/174, 0x88, 0xae}, 0x20) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000cc0)={0x18, 0xc, &(0x7f0000000980)=@raw=[@exit, @map_val={0x18, 0xc, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @generic={0x7f, 0x3, 0x9, 0x1, 0x4ed4}, @map_val={0x18, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x14c}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x4}, @exit, @exit, @cb_func={0x18, 0xb, 0x4, 0x0, 0x2}], &(0x7f0000000a00)='GPL\x00', 0x8, 0x34, &(0x7f0000000a40)=""/52, 0x40f00, 0x11, '\x00', 0x0, 0x0, r11, 0x8, &(0x7f0000000c40)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000c80)={0x3, 0x4, 0x800, 0xb2}, 0x10}, 0x80) (async) 13:52:23 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r0, &(0x7f00000000c0)='cgroup.freeze\x00', 0x0, 0x0) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x200002, 0x0) [ 94.691208][ T5938] FAULT_INJECTION: forcing a failure. [ 94.691208][ T5938] name failslab, interval 1, probability 0, space 0, times 0 [ 94.704186][ T5938] CPU: 0 PID: 5938 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 94.714164][ T5938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 94.724143][ T5938] Call Trace: [ 94.727267][ T5938] [ 94.730066][ T5938] dump_stack_lvl+0x151/0x1b7 [ 94.734558][ T5938] ? bfq_pos_tree_add_move+0x43e/0x43e [ 94.739852][ T5938] dump_stack+0x15/0x17 [ 94.743842][ T5938] should_fail+0x3c0/0x510 [ 94.748099][ T5938] __should_failslab+0x9f/0xe0 [ 94.752696][ T5938] should_failslab+0x9/0x20 [ 94.757035][ T5938] kmem_cache_alloc+0x4f/0x2f0 [ 94.761634][ T5938] ? vm_area_dup+0x26/0x1d0 [ 94.765973][ T5938] ? __kasan_check_read+0x11/0x20 [ 94.770836][ T5938] vm_area_dup+0x26/0x1d0 [ 94.774999][ T5938] dup_mmap+0x6b8/0xea0 [ 94.778993][ T5938] ? __delayed_free_task+0x20/0x20 [ 94.783945][ T5938] ? mm_init+0x807/0x960 [ 94.788021][ T5938] dup_mm+0x91/0x330 [ 94.791754][ T5938] copy_mm+0x108/0x1b0 [ 94.795655][ T5938] copy_process+0x1295/0x3250 [ 94.800170][ T5938] ? proc_fail_nth_write+0x213/0x290 [ 94.805291][ T5938] ? proc_fail_nth_read+0x220/0x220 [ 94.810327][ T5938] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 94.815273][ T5938] ? vfs_write+0x9af/0x1050 [ 94.819610][ T5938] ? vmacache_update+0xb7/0x120 [ 94.824299][ T5938] kernel_clone+0x22d/0x990 [ 94.828638][ T5938] ? file_end_write+0x1b0/0x1b0 [ 94.833327][ T5938] ? __kasan_check_write+0x14/0x20 [ 94.838272][ T5938] ? create_io_thread+0x1e0/0x1e0 [ 94.843132][ T5938] ? __mutex_lock_slowpath+0x10/0x10 [ 94.848255][ T5938] __x64_sys_clone+0x289/0x310 [ 94.852854][ T5938] ? __do_sys_vfork+0x130/0x130 [ 94.857542][ T5938] ? debug_smp_processor_id+0x17/0x20 [ 94.862791][ T5938] do_syscall_64+0x44/0xd0 [ 94.867005][ T5938] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 94.872732][ T5938] RIP: 0033:0x7f35007595a9 [ 94.876987][ T5938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 94.896423][ T5938] RSP: 002b:00007f34ff4ac118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 94.904671][ T5938] RAX: ffffffffffffffda RBX: 00007f350087a050 RCX: 00007f35007595a9 [ 94.912479][ T5938] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 94.920293][ T5938] RBP: 00007f34ff4ac1d0 R08: 0000000000000000 R09: 0000000000000000 [ 94.928100][ T5938] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 13:52:23 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async, rerun: 32) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) (rerun: 32) openat$cgroup_ro(r0, &(0x7f00000000c0)='cgroup.freeze\x00', 0x0, 0x0) (async, rerun: 32) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 32) r2 = openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x200002, 0x0) 13:52:23 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x0, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 94.935917][ T5938] R13: 00007ffc2631eaaf R14: 00007f34ff4ac300 R15: 0000000000022000 [ 94.943730][ T5938] 13:52:23 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000000)=0x8) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xda00) gettid() ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40086602, &(0x7f0000000040)) write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[], 0x40000) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r2}, 0x10) syz_clone(0x40001400, &(0x7f0000000380), 0x0, &(0x7f0000000200), 0x0, 0x0) r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000380)={0xffffffffffffffff, 0xfff, 0x10}, 0xc) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000440)={r3, &(0x7f00000003c0)="a8d357f5ab7d0b069513c5daa7659ef3db9d4871cc2da7777146941b2fbb69b4a3422c6b0f15241ec946650455b4cfca3cd001c5fe99d8179e2718fc0ad565f1816401a0a7f822084dbca2d895bf4f78d50ff725d971c00272d61a"}, 0x20) 13:52:23 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 49) 13:52:23 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r0, &(0x7f00000000c0)='cgroup.freeze\x00', 0x0, 0x0) (async) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x200002, 0x0) 13:52:23 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETLINK(r2, 0x400454cd, 0x104) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b4000000000000000f1000000000000073000a00000000009500000000000000ebc5557657f03f78398951520738edcf6a340a9a271ff3586716c4c2d09d16a5a6f32c17e67d81918e9abc6f67590a4dbb22e527c89cdd0898c4da9154ff3c1670f56c3985058cc64ab07160c5ae4694fb8f35922295b550e1f9a7f9b77c81ff4e6dd7434929dcb0b795deb8147067786bbac58c78f0e5dd2a4d9aa9fe647c96feac4f4236cd24f682d3781cdaa11c9695f32610c5cb1c89e89d6b841252fdbc6a34584b864354e1f0002456ab1332be02f64e3bd5b927750767c2c29578459e21942d941b6d849c"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f0000000280)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x35) 13:52:23 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:23 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x1f, &(0x7f0000000080)='cgroup\x00y\xfdn\xf6\xacjiV\x8bI\x8f\x00\x90\xadP\xfbPg\xad=\xd9\x05(\x00'}, 0x5) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 95.068154][ T5972] FAULT_INJECTION: forcing a failure. [ 95.068154][ T5972] name failslab, interval 1, probability 0, space 0, times 0 [ 95.095947][ T5972] CPU: 1 PID: 5972 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 95.105939][ T5972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 95.115836][ T5972] Call Trace: [ 95.118956][ T5972] [ 95.121735][ T5972] dump_stack_lvl+0x151/0x1b7 [ 95.126244][ T5972] ? bfq_pos_tree_add_move+0x43e/0x43e [ 95.131541][ T5972] dump_stack+0x15/0x17 [ 95.135540][ T5972] should_fail+0x3c0/0x510 [ 95.139789][ T5972] __should_failslab+0x9f/0xe0 [ 95.144386][ T5972] should_failslab+0x9/0x20 [ 95.148722][ T5972] kmem_cache_alloc+0x4f/0x2f0 [ 95.153325][ T5972] ? vm_area_dup+0x26/0x1d0 [ 95.157661][ T5972] ? __kasan_check_read+0x11/0x20 [ 95.162524][ T5972] vm_area_dup+0x26/0x1d0 [ 95.166690][ T5972] dup_mmap+0x6b8/0xea0 [ 95.170684][ T5972] ? __delayed_free_task+0x20/0x20 [ 95.175626][ T5972] ? mm_init+0x807/0x960 [ 95.179710][ T5972] dup_mm+0x91/0x330 [ 95.183441][ T5972] copy_mm+0x108/0x1b0 [ 95.187345][ T5972] copy_process+0x1295/0x3250 [ 95.191860][ T5972] ? proc_fail_nth_write+0x213/0x290 [ 95.196979][ T5972] ? proc_fail_nth_read+0x220/0x220 [ 95.202014][ T5972] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 95.206961][ T5972] ? vfs_write+0x9af/0x1050 [ 95.211304][ T5972] ? vmacache_update+0xb7/0x120 [ 95.215989][ T5972] kernel_clone+0x22d/0x990 [ 95.220330][ T5972] ? file_end_write+0x1b0/0x1b0 [ 95.225014][ T5972] ? __kasan_check_write+0x14/0x20 [ 95.229960][ T5972] ? create_io_thread+0x1e0/0x1e0 [ 95.234824][ T5972] ? __mutex_lock_slowpath+0x10/0x10 [ 95.240029][ T5972] __x64_sys_clone+0x289/0x310 [ 95.244636][ T5972] ? __do_sys_vfork+0x130/0x130 [ 95.249316][ T5972] ? debug_smp_processor_id+0x17/0x20 [ 95.254537][ T5972] do_syscall_64+0x44/0xd0 [ 95.258775][ T5972] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 95.264505][ T5972] RIP: 0033:0x7f35007595a9 [ 95.268756][ T5972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 95.288198][ T5972] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 95.296442][ T5972] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 95.304252][ T5972] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 95.312082][ T5972] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 95.319878][ T5972] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 95.327687][ T5972] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 95.335503][ T5972] 13:52:23 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xf0ee253a550000, &(0x7f0000000040), 0x0, 0x0) 13:52:23 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) (async) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETLINK(r2, 0x400454cd, 0x104) (async) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b4000000000000000f1000000000000073000a00000000009500000000000000ebc5557657f03f78398951520738edcf6a340a9a271ff3586716c4c2d09d16a5a6f32c17e67d81918e9abc6f67590a4dbb22e527c89cdd0898c4da9154ff3c1670f56c3985058cc64ab07160c5ae4694fb8f35922295b550e1f9a7f9b77c81ff4e6dd7434929dcb0b795deb8147067786bbac58c78f0e5dd2a4d9aa9fe647c96feac4f4236cd24f682d3781cdaa11c9695f32610c5cb1c89e89d6b841252fdbc6a34584b864354e1f0002456ab1332be02f64e3bd5b927750767c2c29578459e21942d941b6d849c"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f0000000280)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x35) 13:52:23 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x1f, &(0x7f0000000080)='cgroup\x00y\xfdn\xf6\xacjiV\x8bI\x8f\x00\x90\xadP\xfbPg\xad=\xd9\x05(\x00'}, 0x5) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:23 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:23 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 50) 13:52:23 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x1f, &(0x7f0000000080)='cgroup\x00y\xfdn\xf6\xacjiV\x8bI\x8f\x00\x90\xadP\xfbPg\xad=\xd9\x05(\x00'}, 0x5) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:23 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000000)=0x8) (async) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xda00) (async, rerun: 32) gettid() (async, rerun: 32) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40086602, &(0x7f0000000040)) (async) write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[], 0x40000) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8) (async, rerun: 32) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r2}, 0x10) (async, rerun: 32) syz_clone(0x40001400, &(0x7f0000000380), 0x0, &(0x7f0000000200), 0x0, 0x0) (async, rerun: 64) r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000380)={0xffffffffffffffff, 0xfff, 0x10}, 0xc) (rerun: 64) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000440)={r3, &(0x7f00000003c0)="a8d357f5ab7d0b069513c5daa7659ef3db9d4871cc2da7777146941b2fbb69b4a3422c6b0f15241ec946650455b4cfca3cd001c5fe99d8179e2718fc0ad565f1816401a0a7f822084dbca2d895bf4f78d50ff725d971c00272d61a"}, 0x20) 13:52:23 executing program 0: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) (async) ioctl$TUNSETLINK(r2, 0x400454cd, 0x104) (async) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="b4000000000000000f1000000000000073000a00000000009500000000000000ebc5557657f03f78398951520738edcf6a340a9a271ff3586716c4c2d09d16a5a6f32c17e67d81918e9abc6f67590a4dbb22e527c89cdd0898c4da9154ff3c1670f56c3985058cc64ab07160c5ae4694fb8f35922295b550e1f9a7f9b77c81ff4e6dd7434929dcb0b795deb8147067786bbac58c78f0e5dd2a4d9aa9fe647c96feac4f4236cd24f682d3781cdaa11c9695f32610c5cb1c89e89d6b841252fdbc6a34584b864354e1f0002456ab1332be02f64e3bd5b927750767c2c29578459e21942d941b6d849c"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f0000000280)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x35) 13:52:23 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:23 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) openat$cgroup(r2, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001b60000000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) sendmsg(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) openat$cgroup_int(r5, &(0x7f0000000100)='io.weight\x00', 0x2, 0x0) 13:52:23 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cpuacct.usage_user\x00', 0x0, 0x0) openat$cgroup_ro(r0, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000780)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x88, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1ff, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0b0, 0x5300, 0xf, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000040)}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000340)={r2}, 0x8) syz_clone(0x74809480, 0x0, 0x4104, &(0x7f0000000000), 0x0, 0x0) r4 = bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r0}, 0x8) r5 = syz_clone(0x118000, &(0x7f0000000180)="7c44b7f579b6fa138c23100be752cd785e7fc15d196054c9ee7cedb2", 0x1c, &(0x7f00000001c0), &(0x7f0000000800), &(0x7f0000000840)="6764e54f0851c9602c899558ff37e1af00a68520d4e940b9d0d3c1a0d23e3939970746d7fa6c4121c2b61da19ed4e687e7907341ceb1b7c618a7a6658b4f019ff85283b93253d6e02fa2e3cb392ebf9f7f2042b88a942ce664bddc51a5217f3aa4ca93f01bda5f49fd1b4d442d8417d73b7c9d") ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000740)=0x1000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xa, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='syzkaller\x00', 0x1, 0x66, &(0x7f0000000400)=""/102, 0xfb4ad681faae2ba2, 0x1d, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f0000000500)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x0, 0x1, 0x7, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000580)=[r3, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r3, 0xffffffffffffffff]}, 0x80) write$cgroup_pid(r4, &(0x7f00000008c0)=r5, 0x12) syz_clone(0x10000000, &(0x7f0000000300)="5573f24f7ade5411128b790749c4308d3f3560482d5cec27a189e8176fc13ab61beb36b0a4fa23c6b9b90b955c94", 0x2e, &(0x7f00000003c0), &(0x7f0000000480), &(0x7f0000000640)="4eacfa29ed9e786522e89ced5ac745c639c2a69469bacd7dd51a4920eb14aaea6b9cbd1c983117a4f3a09a4b7b76232af1a18fc75114f32cfb6d0e913789add30b14805badcc3066b828341bd9de39d360e513688ea965d008fbac4921e344b34c9724ce1a") openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cpu.idle\x00', 0x2, 0x0) r6 = bpf$ITER_CREATE(0x21, &(0x7f00000004c0)={r3}, 0x8) perf_event_open$cgroup(&(0x7f00000006c0)={0x3, 0x80, 0x0, 0x41, 0xff, 0x4, 0x0, 0x4, 0x215, 0xd, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x100000000, 0x1}, 0x8004, 0x4, 0xa9d, 0x2, 0x90000, 0x38, 0xe67, 0x0, 0x0, 0x0, 0x80000000000}, r3, 0x10, r6, 0xe) 13:52:23 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 95.580775][ T6008] FAULT_INJECTION: forcing a failure. [ 95.580775][ T6008] name failslab, interval 1, probability 0, space 0, times 0 [ 95.644596][ T6008] CPU: 1 PID: 6008 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 95.654591][ T6008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 95.664486][ T6008] Call Trace: [ 95.667606][ T6008] [ 95.670387][ T6008] dump_stack_lvl+0x151/0x1b7 [ 95.674900][ T6008] ? bfq_pos_tree_add_move+0x43e/0x43e [ 95.680197][ T6008] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 95.686442][ T6008] dump_stack+0x15/0x17 [ 95.690434][ T6008] should_fail+0x3c0/0x510 [ 95.694691][ T6008] __should_failslab+0x9f/0xe0 [ 95.699291][ T6008] should_failslab+0x9/0x20 [ 95.703626][ T6008] kmem_cache_alloc+0x4f/0x2f0 [ 95.708226][ T6008] ? anon_vma_fork+0xf7/0x4f0 [ 95.712741][ T6008] anon_vma_fork+0xf7/0x4f0 [ 95.717078][ T6008] ? anon_vma_name+0x4c/0x70 [ 95.721513][ T6008] dup_mmap+0x750/0xea0 [ 95.725505][ T6008] ? __delayed_free_task+0x20/0x20 [ 95.730445][ T6008] ? mm_init+0x807/0x960 [ 95.734524][ T6008] dup_mm+0x91/0x330 [ 95.738257][ T6008] copy_mm+0x108/0x1b0 [ 95.742165][ T6008] copy_process+0x1295/0x3250 [ 95.746683][ T6008] ? proc_fail_nth_write+0x213/0x290 [ 95.751797][ T6008] ? proc_fail_nth_read+0x220/0x220 [ 95.756831][ T6008] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 95.761776][ T6008] ? vfs_write+0x9af/0x1050 [ 95.766118][ T6008] ? vmacache_update+0xb7/0x120 [ 95.770804][ T6008] kernel_clone+0x22d/0x990 [ 95.775141][ T6008] ? file_end_write+0x1b0/0x1b0 [ 95.779826][ T6008] ? __kasan_check_write+0x14/0x20 [ 95.784773][ T6008] ? create_io_thread+0x1e0/0x1e0 [ 95.789636][ T6008] ? __mutex_lock_slowpath+0x10/0x10 [ 95.794757][ T6008] __x64_sys_clone+0x289/0x310 [ 95.799359][ T6008] ? __do_sys_vfork+0x130/0x130 [ 95.804048][ T6008] ? debug_smp_processor_id+0x17/0x20 [ 95.809253][ T6008] do_syscall_64+0x44/0xd0 [ 95.813507][ T6008] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 95.819235][ T6008] RIP: 0033:0x7f35007595a9 [ 95.823489][ T6008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 13:52:24 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xf0ff1f00000000, &(0x7f0000000040), 0x0, 0x0) 13:52:24 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:24 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) openat$cgroup(r2, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001b60000000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) sendmsg(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) openat$cgroup_int(r5, &(0x7f0000000100)='io.weight\x00', 0x2, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) (async) openat$cgroup(r2, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001b60000000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) (async) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async) openat$cgroup_int(r5, &(0x7f0000000100)='io.weight\x00', 0x2, 0x0) (async) 13:52:24 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) (async) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000000)=0x8) (async) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async, rerun: 32) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xda00) (async, rerun: 32) gettid() ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40086602, &(0x7f0000000040)) (async) write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[], 0x40000) (async, rerun: 64) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) (async, rerun: 64) bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r2}, 0x10) (async, rerun: 64) syz_clone(0x40001400, &(0x7f0000000380), 0x0, &(0x7f0000000200), 0x0, 0x0) (rerun: 64) r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000380)={0xffffffffffffffff, 0xfff, 0x10}, 0xc) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000440)={r3, &(0x7f00000003c0)="a8d357f5ab7d0b069513c5daa7659ef3db9d4871cc2da7777146941b2fbb69b4a3422c6b0f15241ec946650455b4cfca3cd001c5fe99d8179e2718fc0ad565f1816401a0a7f822084dbca2d895bf4f78d50ff725d971c00272d61a"}, 0x20) [ 95.842928][ T6008] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 95.851174][ T6008] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 95.858983][ T6008] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 95.866797][ T6008] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 95.874606][ T6008] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 95.882416][ T6008] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 95.890233][ T6008] 13:52:24 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 51) 13:52:24 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:24 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) openat$cgroup(r2, &(0x7f00000000c0)='syz0\x00', 0x200002, 0x0) (async) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001b60000000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) sendmsg(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) openat$cgroup_int(r5, &(0x7f0000000100)='io.weight\x00', 0x2, 0x0) 13:52:24 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x0, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 96.032116][ T6045] FAULT_INJECTION: forcing a failure. [ 96.032116][ T6045] name failslab, interval 1, probability 0, space 0, times 0 [ 96.086931][ T6045] CPU: 1 PID: 6045 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 96.096924][ T6045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 96.106814][ T6045] Call Trace: [ 96.109938][ T6045] [ 96.112727][ T6045] dump_stack_lvl+0x151/0x1b7 [ 96.117243][ T6045] ? bfq_pos_tree_add_move+0x43e/0x43e [ 96.122525][ T6045] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 96.128768][ T6045] dump_stack+0x15/0x17 [ 96.132760][ T6045] should_fail+0x3c0/0x510 [ 96.137028][ T6045] __should_failslab+0x9f/0xe0 [ 96.141624][ T6045] should_failslab+0x9/0x20 [ 96.145955][ T6045] kmem_cache_alloc+0x4f/0x2f0 [ 96.150559][ T6045] ? anon_vma_fork+0xf7/0x4f0 [ 96.155067][ T6045] anon_vma_fork+0xf7/0x4f0 [ 96.159406][ T6045] ? anon_vma_name+0x4c/0x70 [ 96.163833][ T6045] dup_mmap+0x750/0xea0 [ 96.167829][ T6045] ? __delayed_free_task+0x20/0x20 [ 96.172773][ T6045] ? mm_init+0x807/0x960 [ 96.176851][ T6045] dup_mm+0x91/0x330 [ 96.180586][ T6045] copy_mm+0x108/0x1b0 [ 96.184491][ T6045] copy_process+0x1295/0x3250 [ 96.189004][ T6045] ? proc_fail_nth_write+0x213/0x290 [ 96.194125][ T6045] ? proc_fail_nth_read+0x220/0x220 [ 96.199159][ T6045] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 96.204107][ T6045] ? vfs_write+0x9af/0x1050 [ 96.208442][ T6045] ? vmacache_update+0xb7/0x120 [ 96.213219][ T6045] kernel_clone+0x22d/0x990 [ 96.217557][ T6045] ? file_end_write+0x1b0/0x1b0 [ 96.222245][ T6045] ? __kasan_check_write+0x14/0x20 [ 96.227188][ T6045] ? create_io_thread+0x1e0/0x1e0 [ 96.232053][ T6045] ? __mutex_lock_slowpath+0x10/0x10 [ 96.237173][ T6045] __x64_sys_clone+0x289/0x310 [ 96.241772][ T6045] ? __do_sys_vfork+0x130/0x130 [ 96.246555][ T6045] ? debug_smp_processor_id+0x17/0x20 [ 96.251751][ T6045] do_syscall_64+0x44/0xd0 [ 96.256009][ T6045] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 96.261733][ T6045] RIP: 0033:0x7f35007595a9 [ 96.265987][ T6045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 13:52:24 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x0, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 96.285524][ T6045] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 96.293760][ T6045] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 96.301569][ T6045] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 96.309380][ T6045] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 96.317192][ T6045] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 96.325004][ T6045] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 96.332823][ T6045] 13:52:24 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffdb0}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:24 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cpuacct.usage_user\x00', 0x0, 0x0) openat$cgroup_ro(r0, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x0, 0x0) (async) r1 = perf_event_open(&(0x7f0000000780)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x88, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1ff, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0b0, 0x5300, 0xf, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000040)}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) (async) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000340)={r2}, 0x8) (async, rerun: 32) syz_clone(0x74809480, 0x0, 0x4104, &(0x7f0000000000), 0x0, 0x0) (async, rerun: 32) r4 = bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r0}, 0x8) (async) r5 = syz_clone(0x118000, &(0x7f0000000180)="7c44b7f579b6fa138c23100be752cd785e7fc15d196054c9ee7cedb2", 0x1c, &(0x7f00000001c0), &(0x7f0000000800), &(0x7f0000000840)="6764e54f0851c9602c899558ff37e1af00a68520d4e940b9d0d3c1a0d23e3939970746d7fa6c4121c2b61da19ed4e687e7907341ceb1b7c618a7a6658b4f019ff85283b93253d6e02fa2e3cb392ebf9f7f2042b88a942ce664bddc51a5217f3aa4ca93f01bda5f49fd1b4d442d8417d73b7c9d") (async) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000740)=0x1000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xa, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='syzkaller\x00', 0x1, 0x66, &(0x7f0000000400)=""/102, 0xfb4ad681faae2ba2, 0x1d, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f0000000500)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x0, 0x1, 0x7, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000580)=[r3, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r3, 0xffffffffffffffff]}, 0x80) write$cgroup_pid(r4, &(0x7f00000008c0)=r5, 0x12) (async) syz_clone(0x10000000, &(0x7f0000000300)="5573f24f7ade5411128b790749c4308d3f3560482d5cec27a189e8176fc13ab61beb36b0a4fa23c6b9b90b955c94", 0x2e, &(0x7f00000003c0), &(0x7f0000000480), &(0x7f0000000640)="4eacfa29ed9e786522e89ced5ac745c639c2a69469bacd7dd51a4920eb14aaea6b9cbd1c983117a4f3a09a4b7b76232af1a18fc75114f32cfb6d0e913789add30b14805badcc3066b828341bd9de39d360e513688ea965d008fbac4921e344b34c9724ce1a") openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cpu.idle\x00', 0x2, 0x0) (async, rerun: 64) r6 = bpf$ITER_CREATE(0x21, &(0x7f00000004c0)={r3}, 0x8) (rerun: 64) perf_event_open$cgroup(&(0x7f00000006c0)={0x3, 0x80, 0x0, 0x41, 0xff, 0x4, 0x0, 0x4, 0x215, 0xd, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x100000000, 0x1}, 0x8004, 0x4, 0xa9d, 0x2, 0x90000, 0x38, 0xe67, 0x0, 0x0, 0x0, 0x80000000000}, r3, 0x10, r6, 0xe) 13:52:24 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x100000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:24 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 52) 13:52:24 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffdb0}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 96.453459][ T6058] FAULT_INJECTION: forcing a failure. [ 96.453459][ T6058] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 96.474039][ T6058] CPU: 0 PID: 6058 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 96.484023][ T6058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 96.493921][ T6058] Call Trace: [ 96.497041][ T6058] [ 96.499823][ T6058] dump_stack_lvl+0x151/0x1b7 [ 96.504343][ T6058] ? bfq_pos_tree_add_move+0x43e/0x43e [ 96.509631][ T6058] ? stack_trace_save+0x1f0/0x1f0 [ 96.514488][ T6058] ? __kernel_text_address+0x9a/0x110 [ 96.519699][ T6058] dump_stack+0x15/0x17 [ 96.523691][ T6058] should_fail+0x3c0/0x510 [ 96.527944][ T6058] should_fail_alloc_page+0x58/0x70 [ 96.532976][ T6058] __alloc_pages+0x1de/0x7c0 [ 96.537400][ T6058] ? stack_trace_save+0x12d/0x1f0 [ 96.542261][ T6058] ? stack_trace_snprint+0x100/0x100 [ 96.547381][ T6058] ? __count_vm_events+0x30/0x30 [ 96.552381][ T6058] ? __kasan_slab_alloc+0xc4/0xe0 [ 96.557237][ T6058] ? __kasan_slab_alloc+0xb2/0xe0 [ 96.562096][ T6058] ? kmem_cache_alloc+0x189/0x2f0 [ 96.566958][ T6058] ? anon_vma_fork+0x1b9/0x4f0 [ 96.571594][ T6058] get_zeroed_page+0x19/0x40 [ 96.575983][ T6058] __pud_alloc+0x8b/0x260 [ 96.580152][ T6058] ? do_handle_mm_fault+0x2370/0x2370 [ 96.585359][ T6058] copy_page_range+0xd9e/0x1090 [ 96.590050][ T6058] ? pfn_valid+0x1e0/0x1e0 [ 96.594305][ T6058] dup_mmap+0x99f/0xea0 [ 96.598294][ T6058] ? __delayed_free_task+0x20/0x20 [ 96.603238][ T6058] ? mm_init+0x807/0x960 [ 96.607315][ T6058] dup_mm+0x91/0x330 [ 96.611047][ T6058] copy_mm+0x108/0x1b0 [ 96.614956][ T6058] copy_process+0x1295/0x3250 [ 96.619469][ T6058] ? proc_fail_nth_write+0x213/0x290 [ 96.624590][ T6058] ? proc_fail_nth_read+0x220/0x220 [ 96.629625][ T6058] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 96.634569][ T6058] ? vfs_write+0x9af/0x1050 [ 96.638906][ T6058] ? vmacache_update+0xb7/0x120 [ 96.643599][ T6058] kernel_clone+0x22d/0x990 [ 96.647940][ T6058] ? file_end_write+0x1b0/0x1b0 [ 96.652622][ T6058] ? __kasan_check_write+0x14/0x20 [ 96.657568][ T6058] ? create_io_thread+0x1e0/0x1e0 [ 96.662429][ T6058] ? __mutex_lock_slowpath+0x10/0x10 [ 96.667548][ T6058] __x64_sys_clone+0x289/0x310 [ 96.672150][ T6058] ? __do_sys_vfork+0x130/0x130 [ 96.676838][ T6058] ? debug_smp_processor_id+0x17/0x20 [ 96.682046][ T6058] do_syscall_64+0x44/0xd0 [ 96.686296][ T6058] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 96.692023][ T6058] RIP: 0033:0x7f35007595a9 [ 96.696277][ T6058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 96.715718][ T6058] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 96.723961][ T6058] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 96.731773][ T6058] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 96.739587][ T6058] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 13:52:25 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x0, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 96.747405][ T6058] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 96.755206][ T6058] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 96.763024][ T6058] 13:52:26 executing program 3: perf_event_open(&(0x7f0000000440)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x5, 0xfffffffe, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000000)=0x5) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.controllers\x00', 0x26e1, 0x0) write$cgroup_type(r1, &(0x7f0000000080), 0x11ffffce1) perf_event_open(&(0x7f0000001c80)={0x5, 0x80, 0x0, 0x8, 0xfe, 0x1, 0x0, 0x7, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x400, 0x2, @perf_bp={&(0x7f0000000400)}, 0x10020, 0x1f, 0x9, 0x0, 0x8, 0x0, 0xfffc, 0x0, 0x1, 0x0, 0x6}, 0x0, 0xd, 0xffffffffffffffff, 0x2) 13:52:26 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffdb0}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:26 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 53) 13:52:26 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x0, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:26 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x200000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:26 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cpuacct.usage_user\x00', 0x0, 0x0) openat$cgroup_ro(r0, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000780)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x88, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1ff, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0b0, 0x5300, 0xf, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000040)}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000340)={r2}, 0x8) syz_clone(0x74809480, 0x0, 0x4104, &(0x7f0000000000), 0x0, 0x0) r4 = bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r0}, 0x8) r5 = syz_clone(0x118000, &(0x7f0000000180)="7c44b7f579b6fa138c23100be752cd785e7fc15d196054c9ee7cedb2", 0x1c, &(0x7f00000001c0), &(0x7f0000000800), &(0x7f0000000840)="6764e54f0851c9602c899558ff37e1af00a68520d4e940b9d0d3c1a0d23e3939970746d7fa6c4121c2b61da19ed4e687e7907341ceb1b7c618a7a6658b4f019ff85283b93253d6e02fa2e3cb392ebf9f7f2042b88a942ce664bddc51a5217f3aa4ca93f01bda5f49fd1b4d442d8417d73b7c9d") ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000740)=0x1000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xa, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='syzkaller\x00', 0x1, 0x66, &(0x7f0000000400)=""/102, 0xfb4ad681faae2ba2, 0x1d, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f0000000500)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x0, 0x1, 0x7, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000580)=[r3, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r3, 0xffffffffffffffff]}, 0x80) write$cgroup_pid(r4, &(0x7f00000008c0)=r5, 0x12) syz_clone(0x10000000, &(0x7f0000000300)="5573f24f7ade5411128b790749c4308d3f3560482d5cec27a189e8176fc13ab61beb36b0a4fa23c6b9b90b955c94", 0x2e, &(0x7f00000003c0), &(0x7f0000000480), &(0x7f0000000640)="4eacfa29ed9e786522e89ced5ac745c639c2a69469bacd7dd51a4920eb14aaea6b9cbd1c983117a4f3a09a4b7b76232af1a18fc75114f32cfb6d0e913789add30b14805badcc3066b828341bd9de39d360e513688ea965d008fbac4921e344b34c9724ce1a") openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cpu.idle\x00', 0x2, 0x0) r6 = bpf$ITER_CREATE(0x21, &(0x7f00000004c0)={r3}, 0x8) perf_event_open$cgroup(&(0x7f00000006c0)={0x3, 0x80, 0x0, 0x41, 0xff, 0x4, 0x0, 0x4, 0x215, 0xd, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x100000000, 0x1}, 0x8004, 0x4, 0xa9d, 0x2, 0x90000, 0x38, 0xe67, 0x0, 0x0, 0x0, 0x80000000000}, r3, 0x10, r6, 0xe) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cpuacct.usage_user\x00', 0x0, 0x0) (async) openat$cgroup_ro(r0, &(0x7f0000000200)='blkio.bfq.idle_time\x00', 0x0, 0x0) (async) perf_event_open(&(0x7f0000000780)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x88, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1ff, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0b0, 0x5300, 0xf, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000040)}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000340)={r2}, 0x8) (async) syz_clone(0x74809480, 0x0, 0x4104, &(0x7f0000000000), 0x0, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f00000002c0)={r0}, 0x8) (async) syz_clone(0x118000, &(0x7f0000000180)="7c44b7f579b6fa138c23100be752cd785e7fc15d196054c9ee7cedb2", 0x1c, &(0x7f00000001c0), &(0x7f0000000800), &(0x7f0000000840)="6764e54f0851c9602c899558ff37e1af00a68520d4e940b9d0d3c1a0d23e3939970746d7fa6c4121c2b61da19ed4e687e7907341ceb1b7c618a7a6658b4f019ff85283b93253d6e02fa2e3cb392ebf9f7f2042b88a942ce664bddc51a5217f3aa4ca93f01bda5f49fd1b4d442d8417d73b7c9d") (async) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000740)=0x1000) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xa, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='syzkaller\x00', 0x1, 0x66, &(0x7f0000000400)=""/102, 0xfb4ad681faae2ba2, 0x1d, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f0000000500)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000540)={0x0, 0x1, 0x7, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000580)=[r3, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r3, 0xffffffffffffffff]}, 0x80) (async) write$cgroup_pid(r4, &(0x7f00000008c0)=r5, 0x12) (async) syz_clone(0x10000000, &(0x7f0000000300)="5573f24f7ade5411128b790749c4308d3f3560482d5cec27a189e8176fc13ab61beb36b0a4fa23c6b9b90b955c94", 0x2e, &(0x7f00000003c0), &(0x7f0000000480), &(0x7f0000000640)="4eacfa29ed9e786522e89ced5ac745c639c2a69469bacd7dd51a4920eb14aaea6b9cbd1c983117a4f3a09a4b7b76232af1a18fc75114f32cfb6d0e913789add30b14805badcc3066b828341bd9de39d360e513688ea965d008fbac4921e344b34c9724ce1a") (async) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cpu.idle\x00', 0x2, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f00000004c0)={r3}, 0x8) (async) perf_event_open$cgroup(&(0x7f00000006c0)={0x3, 0x80, 0x0, 0x41, 0xff, 0x4, 0x0, 0x4, 0x215, 0xd, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x100000000, 0x1}, 0x8004, 0x4, 0xa9d, 0x2, 0x90000, 0x38, 0xe67, 0x0, 0x0, 0x0, 0x80000000000}, r3, 0x10, r6, 0xe) (async) 13:52:26 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000100)='blkio.throttle.read_bps_device\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) openat$cgroup_int(r0, &(0x7f00000000c0)='cpuset.memory_spread_page\x00', 0x2, 0x0) [ 97.679987][ T6116] FAULT_INJECTION: forcing a failure. [ 97.679987][ T6116] name failslab, interval 1, probability 0, space 0, times 0 [ 97.700802][ T6116] CPU: 0 PID: 6116 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 97.710793][ T6116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 97.720685][ T6116] Call Trace: [ 97.723810][ T6116] [ 97.726585][ T6116] dump_stack_lvl+0x151/0x1b7 [ 97.731100][ T6116] ? bfq_pos_tree_add_move+0x43e/0x43e [ 97.736396][ T6116] dump_stack+0x15/0x17 [ 97.740387][ T6116] should_fail+0x3c0/0x510 [ 97.744638][ T6116] __should_failslab+0x9f/0xe0 [ 97.749237][ T6116] should_failslab+0x9/0x20 [ 97.753579][ T6116] kmem_cache_alloc+0x4f/0x2f0 [ 97.758178][ T6116] ? vm_area_dup+0x26/0x1d0 [ 97.762519][ T6116] vm_area_dup+0x26/0x1d0 [ 97.766684][ T6116] dup_mmap+0x6b8/0xea0 [ 97.770680][ T6116] ? __delayed_free_task+0x20/0x20 [ 97.775629][ T6116] ? mm_init+0x807/0x960 [ 97.779703][ T6116] dup_mm+0x91/0x330 [ 97.783434][ T6116] copy_mm+0x108/0x1b0 [ 97.787343][ T6116] copy_process+0x1295/0x3250 [ 97.791855][ T6116] ? proc_fail_nth_write+0x213/0x290 [ 97.796972][ T6116] ? proc_fail_nth_read+0x220/0x220 [ 97.802008][ T6116] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 97.806956][ T6116] ? vfs_write+0x9af/0x1050 [ 97.811295][ T6116] ? vmacache_update+0xb7/0x120 [ 97.815982][ T6116] kernel_clone+0x22d/0x990 [ 97.820757][ T6116] ? file_end_write+0x1b0/0x1b0 [ 97.825444][ T6116] ? __kasan_check_write+0x14/0x20 [ 97.830391][ T6116] ? create_io_thread+0x1e0/0x1e0 [ 97.835257][ T6116] ? __mutex_lock_slowpath+0x10/0x10 [ 97.840374][ T6116] __x64_sys_clone+0x289/0x310 [ 97.844974][ T6116] ? __do_sys_vfork+0x130/0x130 [ 97.849662][ T6116] ? debug_smp_processor_id+0x17/0x20 [ 97.854869][ T6116] do_syscall_64+0x44/0xd0 [ 97.859123][ T6116] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 97.864847][ T6116] RIP: 0033:0x7f35007595a9 [ 97.869103][ T6116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 97.888543][ T6116] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 97.896789][ T6116] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 97.904598][ T6116] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 97.912411][ T6116] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 97.920223][ T6116] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 13:52:26 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x0, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:26 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000100)='blkio.throttle.read_bps_device\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) openat$cgroup_int(r0, &(0x7f00000000c0)='cpuset.memory_spread_page\x00', 0x2, 0x0) 13:52:26 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x0, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 97.928035][ T6116] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 97.935848][ T6116] 13:52:26 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 54) 13:52:26 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000100)='blkio.throttle.read_bps_device\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) openat$cgroup_int(r0, &(0x7f00000000c0)='cpuset.memory_spread_page\x00', 0x2, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000100)='blkio.throttle.read_bps_device\x00', 0x2, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) openat$cgroup_int(r0, &(0x7f00000000c0)='cpuset.memory_spread_page\x00', 0x2, 0x0) (async) [ 98.080432][ T6161] FAULT_INJECTION: forcing a failure. [ 98.080432][ T6161] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 98.120616][ T6161] CPU: 0 PID: 6161 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 98.130617][ T6161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 98.140508][ T6161] Call Trace: [ 98.143624][ T6161] [ 98.146413][ T6161] dump_stack_lvl+0x151/0x1b7 [ 98.150924][ T6161] ? bfq_pos_tree_add_move+0x43e/0x43e [ 98.156218][ T6161] dump_stack+0x15/0x17 [ 98.160202][ T6161] should_fail+0x3c0/0x510 [ 98.164458][ T6161] should_fail_alloc_page+0x58/0x70 [ 98.169490][ T6161] __alloc_pages+0x1de/0x7c0 [ 98.173917][ T6161] ? __count_vm_events+0x30/0x30 [ 98.178694][ T6161] __pmd_alloc+0xb1/0x550 [ 98.182858][ T6161] ? __kunmap_atomic+0x80/0x80 [ 98.187574][ T6161] ? __kasan_slab_alloc+0xc4/0xe0 [ 98.192435][ T6161] ? kmem_cache_alloc+0x189/0x2f0 [ 98.197378][ T6161] ? __pud_alloc+0x260/0x260 [ 98.201805][ T6161] ? copy_mm+0x108/0x1b0 [ 98.205884][ T6161] ? copy_process+0x1295/0x3250 [ 98.210569][ T6161] ? kernel_clone+0x22d/0x990 [ 98.215086][ T6161] ? __x64_sys_clone+0x289/0x310 [ 98.219855][ T6161] ? do_syscall_64+0x44/0xd0 [ 98.224284][ T6161] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 98.230188][ T6161] copy_page_range+0xd04/0x1090 [ 98.234896][ T6161] ? pfn_valid+0x1e0/0x1e0 [ 98.239126][ T6161] dup_mmap+0x99f/0xea0 [ 98.243122][ T6161] ? __delayed_free_task+0x20/0x20 [ 98.248063][ T6161] ? mm_init+0x807/0x960 [ 98.252151][ T6161] dup_mm+0x91/0x330 [ 98.255878][ T6161] copy_mm+0x108/0x1b0 [ 98.259782][ T6161] copy_process+0x1295/0x3250 [ 98.264307][ T6161] ? proc_fail_nth_write+0x213/0x290 [ 98.269417][ T6161] ? proc_fail_nth_read+0x220/0x220 [ 98.274452][ T6161] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 98.279413][ T6161] ? vfs_write+0x9af/0x1050 [ 98.283742][ T6161] ? vmacache_update+0xb7/0x120 [ 98.288425][ T6161] kernel_clone+0x22d/0x990 [ 98.292790][ T6161] ? file_end_write+0x1b0/0x1b0 [ 98.297448][ T6161] ? __kasan_check_write+0x14/0x20 [ 98.302398][ T6161] ? create_io_thread+0x1e0/0x1e0 [ 98.307259][ T6161] ? __mutex_lock_slowpath+0x10/0x10 [ 98.312379][ T6161] __x64_sys_clone+0x289/0x310 [ 98.316978][ T6161] ? __do_sys_vfork+0x130/0x130 [ 98.321666][ T6161] ? debug_smp_processor_id+0x17/0x20 [ 98.326882][ T6161] do_syscall_64+0x44/0xd0 [ 98.331124][ T6161] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 98.336850][ T6161] RIP: 0033:0x7f35007595a9 [ 98.341106][ T6161] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 98.360547][ T6161] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 98.368794][ T6161] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 98.377210][ T6161] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 98.385022][ T6161] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 98.392833][ T6161] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 98.400643][ T6161] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 98.408461][ T6161] 13:52:26 executing program 3: perf_event_open(&(0x7f0000000440)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x5, 0xfffffffe, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000000)=0x5) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.controllers\x00', 0x26e1, 0x0) write$cgroup_type(r1, &(0x7f0000000080), 0x11ffffce1) (async) perf_event_open(&(0x7f0000001c80)={0x5, 0x80, 0x0, 0x8, 0xfe, 0x1, 0x0, 0x7, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x400, 0x2, @perf_bp={&(0x7f0000000400)}, 0x10020, 0x1f, 0x9, 0x0, 0x8, 0x0, 0xfffc, 0x0, 0x1, 0x0, 0x6}, 0x0, 0xd, 0xffffffffffffffff, 0x2) 13:52:26 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x0, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:26 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000100)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x0, 'blkio'}]}, 0x7) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x54, &(0x7f0000000180)='\xdc\xa3?\x8e\x89JJ\x13\xbc\a\xe4\xfd\x12\x18\x9b^y\xd0\xaaEW\x05\xc0\x8eFQ3\xf1t.4\xb5\xf1\xcfu\xcd\x19\x12\x82\xc9g\xfd\xb3\xf4\xe2\xea\x89.\xd6\x9f\x81\x92D\xbf\xfc\xfd\xee\xa4\xe0\x10\x90_\'\a\t\xa9\xdd\"{\xc9.\xfd\xa9\x16\xea\xac\xecC\xac\x8f\x83\x7fE\x9d'}, 0x30) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = openat$cgroup_int(r2, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) openat$cgroup_ro(r2, &(0x7f0000000080)='cpuacct.stat\x00', 0x0, 0x0) write$cgroup_int(r3, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:26 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x400000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:26 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 55) [ 98.586377][ T6174] FAULT_INJECTION: forcing a failure. [ 98.586377][ T6174] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 98.620902][ T6174] CPU: 1 PID: 6174 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 98.630897][ T6174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 98.640788][ T6174] Call Trace: [ 98.643910][ T6174] [ 98.646688][ T6174] dump_stack_lvl+0x151/0x1b7 [ 98.651202][ T6174] ? bfq_pos_tree_add_move+0x43e/0x43e [ 98.656498][ T6174] dump_stack+0x15/0x17 [ 98.660490][ T6174] should_fail+0x3c0/0x510 [ 98.664745][ T6174] should_fail_alloc_page+0x58/0x70 [ 98.669778][ T6174] __alloc_pages+0x1de/0x7c0 [ 98.674201][ T6174] ? __count_vm_events+0x30/0x30 [ 98.678975][ T6174] ? dup_mm+0x91/0x330 [ 98.682878][ T6174] ? copy_mm+0x108/0x1b0 [ 98.686959][ T6174] ? copy_process+0x1295/0x3250 [ 98.691646][ T6174] ? kernel_clone+0x22d/0x990 [ 98.696160][ T6174] ? __x64_sys_clone+0x289/0x310 [ 98.700935][ T6174] pte_alloc_one+0x73/0x1b0 [ 98.705273][ T6174] ? pfn_modify_allowed+0x2e0/0x2e0 [ 98.710312][ T6174] ? __kasan_check_write+0x14/0x20 [ 98.715254][ T6174] ? __set_page_owner+0x2ee/0x310 [ 98.720117][ T6174] __pte_alloc+0x86/0x350 [ 98.724279][ T6174] ? post_alloc_hook+0x1ab/0x1b0 [ 98.729057][ T6174] ? free_pgtables+0x210/0x210 [ 98.733654][ T6174] ? get_page_from_freelist+0x38b/0x400 [ 98.739036][ T6174] copy_pte_range+0x1b1f/0x20b0 [ 98.743729][ T6174] ? __kunmap_atomic+0x80/0x80 [ 98.748320][ T6174] ? __pud_alloc+0x260/0x260 [ 98.752775][ T6174] ? __pud_alloc+0x218/0x260 [ 98.757173][ T6174] ? do_handle_mm_fault+0x2370/0x2370 [ 98.762384][ T6174] copy_page_range+0xc1e/0x1090 [ 98.767077][ T6174] ? pfn_valid+0x1e0/0x1e0 [ 98.771323][ T6174] dup_mmap+0x99f/0xea0 [ 98.775326][ T6174] ? __delayed_free_task+0x20/0x20 [ 98.780269][ T6174] ? mm_init+0x807/0x960 [ 98.784348][ T6174] dup_mm+0x91/0x330 [ 98.788072][ T6174] copy_mm+0x108/0x1b0 [ 98.791976][ T6174] copy_process+0x1295/0x3250 [ 98.796490][ T6174] ? proc_fail_nth_write+0x213/0x290 [ 98.801613][ T6174] ? proc_fail_nth_read+0x220/0x220 [ 98.806647][ T6174] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 98.811614][ T6174] ? vfs_write+0x9af/0x1050 [ 98.815935][ T6174] ? vmacache_update+0xb7/0x120 [ 98.820622][ T6174] kernel_clone+0x22d/0x990 [ 98.824959][ T6174] ? file_end_write+0x1b0/0x1b0 [ 98.829645][ T6174] ? __kasan_check_write+0x14/0x20 [ 98.834593][ T6174] ? create_io_thread+0x1e0/0x1e0 [ 98.839540][ T6174] ? __mutex_lock_slowpath+0x10/0x10 [ 98.844662][ T6174] __x64_sys_clone+0x289/0x310 [ 98.849262][ T6174] ? __do_sys_vfork+0x130/0x130 [ 98.853952][ T6174] ? debug_smp_processor_id+0x17/0x20 [ 98.859159][ T6174] do_syscall_64+0x44/0xd0 [ 98.863408][ T6174] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 98.869135][ T6174] RIP: 0033:0x7f35007595a9 [ 98.873391][ T6174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 98.892928][ T6174] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 98.901172][ T6174] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 98.908986][ T6174] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 98.916796][ T6174] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 98.924611][ T6174] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 98.932420][ T6174] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 98.940235][ T6174] 13:52:27 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x0, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:27 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000100)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x0, 'blkio'}]}, 0x7) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x54, &(0x7f0000000180)='\xdc\xa3?\x8e\x89JJ\x13\xbc\a\xe4\xfd\x12\x18\x9b^y\xd0\xaaEW\x05\xc0\x8eFQ3\xf1t.4\xb5\xf1\xcfu\xcd\x19\x12\x82\xc9g\xfd\xb3\xf4\xe2\xea\x89.\xd6\x9f\x81\x92D\xbf\xfc\xfd\xee\xa4\xe0\x10\x90_\'\a\t\xa9\xdd\"{\xc9.\xfd\xa9\x16\xea\xac\xecC\xac\x8f\x83\x7fE\x9d'}, 0x30) (async) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = openat$cgroup_int(r2, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async, rerun: 64) openat$cgroup_ro(r2, &(0x7f0000000080)='cpuacct.stat\x00', 0x0, 0x0) (rerun: 64) write$cgroup_int(r3, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:27 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x0, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:27 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 56) 13:52:27 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x700000000000000, &(0x7f0000000040), 0x0, 0x0) [ 99.144741][ T6183] FAULT_INJECTION: forcing a failure. [ 99.144741][ T6183] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 99.164963][ T6183] CPU: 1 PID: 6183 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 99.174963][ T6183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 99.184856][ T6183] Call Trace: [ 99.187981][ T6183] [ 99.190758][ T6183] dump_stack_lvl+0x151/0x1b7 [ 99.195273][ T6183] ? bfq_pos_tree_add_move+0x43e/0x43e [ 99.200565][ T6183] dump_stack+0x15/0x17 [ 99.204560][ T6183] should_fail+0x3c0/0x510 [ 99.208809][ T6183] should_fail_alloc_page+0x58/0x70 [ 99.213842][ T6183] __alloc_pages+0x1de/0x7c0 [ 99.218270][ T6183] ? __count_vm_events+0x30/0x30 [ 99.223045][ T6183] ? __this_cpu_preempt_check+0x13/0x20 [ 99.228424][ T6183] ? __mod_node_page_state+0xac/0xf0 [ 99.233546][ T6183] pte_alloc_one+0x73/0x1b0 [ 99.237884][ T6183] ? pfn_modify_allowed+0x2e0/0x2e0 [ 99.242921][ T6183] __pte_alloc+0x86/0x350 [ 99.247086][ T6183] ? free_pgtables+0x210/0x210 [ 99.251685][ T6183] ? _raw_spin_lock+0xa3/0x1b0 [ 99.256286][ T6183] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 99.261493][ T6183] ? __kernel_text_address+0x9a/0x110 [ 99.266703][ T6183] copy_pte_range+0x1b1f/0x20b0 [ 99.271394][ T6183] ? __kunmap_atomic+0x80/0x80 [ 99.275987][ T6183] ? __kasan_slab_alloc+0xc4/0xe0 [ 99.280849][ T6183] ? __kasan_slab_alloc+0xb2/0xe0 [ 99.285708][ T6183] ? kmem_cache_alloc+0x189/0x2f0 [ 99.290574][ T6183] ? vm_area_dup+0x26/0x1d0 [ 99.294909][ T6183] ? dup_mmap+0x6b8/0xea0 [ 99.299074][ T6183] ? dup_mm+0x91/0x330 [ 99.302980][ T6183] ? copy_mm+0x108/0x1b0 [ 99.307057][ T6183] ? copy_process+0x1295/0x3250 [ 99.311746][ T6183] ? kernel_clone+0x22d/0x990 [ 99.316262][ T6183] ? __x64_sys_clone+0x289/0x310 [ 99.321032][ T6183] ? do_syscall_64+0x44/0xd0 [ 99.325459][ T6183] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 99.331365][ T6183] copy_page_range+0xc1e/0x1090 [ 99.336052][ T6183] ? pfn_valid+0x1e0/0x1e0 [ 99.340308][ T6183] dup_mmap+0x99f/0xea0 [ 99.344300][ T6183] ? __delayed_free_task+0x20/0x20 [ 99.349243][ T6183] ? mm_init+0x807/0x960 [ 99.353317][ T6183] dup_mm+0x91/0x330 [ 99.357052][ T6183] copy_mm+0x108/0x1b0 [ 99.360959][ T6183] copy_process+0x1295/0x3250 [ 99.365470][ T6183] ? proc_fail_nth_write+0x213/0x290 [ 99.370597][ T6183] ? proc_fail_nth_read+0x220/0x220 [ 99.375626][ T6183] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 99.380576][ T6183] ? vfs_write+0x9af/0x1050 [ 99.384911][ T6183] ? vmacache_update+0xb7/0x120 [ 99.389600][ T6183] kernel_clone+0x22d/0x990 [ 99.393942][ T6183] ? file_end_write+0x1b0/0x1b0 [ 99.398623][ T6183] ? __kasan_check_write+0x14/0x20 [ 99.403576][ T6183] ? create_io_thread+0x1e0/0x1e0 [ 99.408439][ T6183] ? __mutex_lock_slowpath+0x10/0x10 [ 99.413561][ T6183] __x64_sys_clone+0x289/0x310 [ 99.418154][ T6183] ? __do_sys_vfork+0x130/0x130 [ 99.422839][ T6183] ? debug_smp_processor_id+0x17/0x20 [ 99.428050][ T6183] do_syscall_64+0x44/0xd0 [ 99.432299][ T6183] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 99.438027][ T6183] RIP: 0033:0x7f35007595a9 [ 99.442283][ T6183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 99.461816][ T6183] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 99.470064][ T6183] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 99.477868][ T6183] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 99.485677][ T6183] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 13:52:27 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x900000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:27 executing program 4: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000100)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)={[{0x0, 'blkio'}]}, 0x7) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x54, &(0x7f0000000180)='\xdc\xa3?\x8e\x89JJ\x13\xbc\a\xe4\xfd\x12\x18\x9b^y\xd0\xaaEW\x05\xc0\x8eFQ3\xf1t.4\xb5\xf1\xcfu\xcd\x19\x12\x82\xc9g\xfd\xb3\xf4\xe2\xea\x89.\xd6\x9f\x81\x92D\xbf\xfc\xfd\xee\xa4\xe0\x10\x90_\'\a\t\xa9\xdd\"{\xc9.\xfd\xa9\x16\xea\xac\xecC\xac\x8f\x83\x7fE\x9d'}, 0x30) (async) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r3 = openat$cgroup_int(r2, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) openat$cgroup_ro(r2, &(0x7f0000000080)='cpuacct.stat\x00', 0x0, 0x0) (async, rerun: 32) write$cgroup_int(r3, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (rerun: 32) [ 99.493485][ T6183] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 99.501299][ T6183] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 99.509113][ T6183] 13:52:27 executing program 3: perf_event_open(&(0x7f0000000440)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x5, 0xfffffffe, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) (async) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000000)=0x5) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.controllers\x00', 0x26e1, 0x0) write$cgroup_type(r1, &(0x7f0000000080), 0x11ffffce1) perf_event_open(&(0x7f0000001c80)={0x5, 0x80, 0x0, 0x8, 0xfe, 0x1, 0x0, 0x7, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x400, 0x2, @perf_bp={&(0x7f0000000400)}, 0x10020, 0x1f, 0x9, 0x0, 0x8, 0x0, 0xfffc, 0x0, 0x1, 0x0, 0x6}, 0x0, 0xd, 0xffffffffffffffff, 0x2) 13:52:27 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0xffffffffffffffff, r5, 0x0, 0x10, &(0x7f0000000180)='\x00\x00\x00\x00\xb4+R\xa7\xc1\x02\x00O\xbb\x00\x00\x00'}, 0x30) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080), 0x200002, 0x0) r7 = openat$cgroup_int(r6, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) openat$cgroup_ro(r6, &(0x7f0000000080)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) write$cgroup_int(r7, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r8}, 0x10) r10 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r9}, 0x8) write$cgroup_int(r10, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_ro(r10, &(0x7f00000000c0)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) 13:52:27 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x0, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:27 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000003c0), 0x10) perf_event_open(&(0x7f0000001380)={0x2, 0x80, 0x1, 0x9, 0x40, 0x0, 0x0, 0x7, 0x201, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000140), 0x8}, 0x8000, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x164, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, r1, 0x3) r2 = perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x8, 0x18, 0xa0, 0xd4, 0x0, 0x1, 0x88, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0xf6e, 0x4}, 0x600, 0x3ff, 0x4, 0x6, 0x100000000, 0x7, 0xffe0, 0x0, 0x9, 0x0, 0x8000000000000001}, 0x0, 0x8, r0, 0x2) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000040)='cpuset') perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x8}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = getpid() r4 = perf_event_open(0x0, r3, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='+cpuacct -pids \x00perf_event +cpuacccpuset '], 0x35) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, r4, 0x0) openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0) syz_clone(0x74809480, 0x0, 0x4100, &(0x7f0000000000), 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000080)) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="29c385c0"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8) write$cgroup_int(r7, &(0x7f00000001c0), 0xfffffdef) sendmsg(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) write$cgroup_subtree(r7, &(0x7f00000002c0), 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000280)='pids') 13:52:27 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 57) [ 99.566955][ T6204] FAULT_INJECTION: forcing a failure. [ 99.566955][ T6204] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 99.582786][ T6204] CPU: 0 PID: 6204 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 99.592780][ T6204] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 99.602669][ T6204] Call Trace: [ 99.605796][ T6204] [ 99.608573][ T6204] dump_stack_lvl+0x151/0x1b7 [ 99.613081][ T6204] ? bfq_pos_tree_add_move+0x43e/0x43e [ 99.618382][ T6204] dump_stack+0x15/0x17 [ 99.622374][ T6204] should_fail+0x3c0/0x510 [ 99.626625][ T6204] should_fail_alloc_page+0x58/0x70 [ 99.631660][ T6204] __alloc_pages+0x1de/0x7c0 [ 99.636085][ T6204] ? __count_vm_events+0x30/0x30 [ 99.640860][ T6204] ? __this_cpu_preempt_check+0x13/0x20 [ 99.646237][ T6204] ? __mod_node_page_state+0xac/0xf0 [ 99.651362][ T6204] pte_alloc_one+0x73/0x1b0 [ 99.655701][ T6204] ? pfn_modify_allowed+0x2e0/0x2e0 [ 99.660733][ T6204] __pte_alloc+0x86/0x350 [ 99.664899][ T6204] ? free_pgtables+0x210/0x210 [ 99.669499][ T6204] ? _raw_spin_lock+0xa3/0x1b0 [ 99.674099][ T6204] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 99.679306][ T6204] ? __kernel_text_address+0x9a/0x110 [ 99.684518][ T6204] copy_pte_range+0x1b1f/0x20b0 [ 99.689205][ T6204] ? __kunmap_atomic+0x80/0x80 [ 99.693800][ T6204] ? __kasan_slab_alloc+0xc4/0xe0 [ 99.698661][ T6204] ? __kasan_slab_alloc+0xb2/0xe0 [ 99.703523][ T6204] ? kmem_cache_alloc+0x189/0x2f0 [ 99.708388][ T6204] ? vm_area_dup+0x26/0x1d0 [ 99.712719][ T6204] ? dup_mmap+0x6b8/0xea0 [ 99.716907][ T6204] ? dup_mm+0x91/0x330 [ 99.720793][ T6204] ? copy_mm+0x108/0x1b0 [ 99.724961][ T6204] ? copy_process+0x1295/0x3250 [ 99.729644][ T6204] ? kernel_clone+0x22d/0x990 [ 99.734159][ T6204] ? __x64_sys_clone+0x289/0x310 [ 99.738930][ T6204] ? do_syscall_64+0x44/0xd0 [ 99.743358][ T6204] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 99.749260][ T6204] copy_page_range+0xc1e/0x1090 [ 99.753950][ T6204] ? pfn_valid+0x1e0/0x1e0 [ 99.758201][ T6204] dup_mmap+0x99f/0xea0 [ 99.762192][ T6204] ? __delayed_free_task+0x20/0x20 [ 99.767140][ T6204] ? mm_init+0x807/0x960 [ 99.771219][ T6204] dup_mm+0x91/0x330 [ 99.774950][ T6204] copy_mm+0x108/0x1b0 [ 99.778855][ T6204] copy_process+0x1295/0x3250 [ 99.783371][ T6204] ? proc_fail_nth_write+0x213/0x290 [ 99.788491][ T6204] ? proc_fail_nth_read+0x220/0x220 [ 99.793528][ T6204] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 99.798470][ T6204] ? vfs_write+0x9af/0x1050 [ 99.802818][ T6204] ? vmacache_update+0xb7/0x120 [ 99.807500][ T6204] kernel_clone+0x22d/0x990 [ 99.811837][ T6204] ? file_end_write+0x1b0/0x1b0 [ 99.816530][ T6204] ? __kasan_check_write+0x14/0x20 [ 99.821469][ T6204] ? create_io_thread+0x1e0/0x1e0 [ 99.826329][ T6204] ? __mutex_lock_slowpath+0x10/0x10 [ 99.831453][ T6204] __x64_sys_clone+0x289/0x310 [ 99.836050][ T6204] ? __do_sys_vfork+0x130/0x130 [ 99.840737][ T6204] ? debug_smp_processor_id+0x17/0x20 [ 99.845945][ T6204] do_syscall_64+0x44/0xd0 [ 99.850198][ T6204] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 99.855925][ T6204] RIP: 0033:0x7f35007595a9 [ 99.860181][ T6204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 99.879622][ T6204] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 99.887865][ T6204] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 99.895677][ T6204] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 99.903491][ T6204] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 13:52:28 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 99.911299][ T6204] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 99.919115][ T6204] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 99.926924][ T6204] 13:52:28 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:28 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xc8002a0ffffffff, &(0x7f0000000040), 0x0, 0x0) 13:52:28 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:28 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10}, 0x80) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r6, &(0x7f0000000200), 0x23000) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r7, &(0x7f0000000180), 0xfdef) 13:52:28 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 58) 13:52:28 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10}, 0x80) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r6, &(0x7f0000000200), 0x23000) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r7, &(0x7f0000000180), 0xfdef) [ 100.231108][ T6228] FAULT_INJECTION: forcing a failure. [ 100.231108][ T6228] name failslab, interval 1, probability 0, space 0, times 0 [ 100.269938][ T6228] CPU: 1 PID: 6228 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 100.279930][ T6228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 100.289822][ T6228] Call Trace: [ 100.292948][ T6228] [ 100.295722][ T6228] dump_stack_lvl+0x151/0x1b7 [ 100.300237][ T6228] ? bfq_pos_tree_add_move+0x43e/0x43e [ 100.305533][ T6228] dump_stack+0x15/0x17 [ 100.309523][ T6228] should_fail+0x3c0/0x510 [ 100.313774][ T6228] __should_failslab+0x9f/0xe0 [ 100.318372][ T6228] should_failslab+0x9/0x20 [ 100.322714][ T6228] kmem_cache_alloc+0x4f/0x2f0 [ 100.327314][ T6228] ? vm_area_dup+0x26/0x1d0 [ 100.331657][ T6228] vm_area_dup+0x26/0x1d0 [ 100.335819][ T6228] dup_mmap+0x6b8/0xea0 [ 100.339816][ T6228] ? __delayed_free_task+0x20/0x20 [ 100.344758][ T6228] ? mm_init+0x807/0x960 [ 100.348840][ T6228] dup_mm+0x91/0x330 [ 100.352574][ T6228] copy_mm+0x108/0x1b0 [ 100.356475][ T6228] copy_process+0x1295/0x3250 [ 100.360993][ T6228] ? proc_fail_nth_write+0x213/0x290 [ 100.366111][ T6228] ? proc_fail_nth_read+0x220/0x220 [ 100.371149][ T6228] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 100.376095][ T6228] ? vfs_write+0x9af/0x1050 [ 100.380431][ T6228] ? vmacache_update+0xb7/0x120 [ 100.385118][ T6228] kernel_clone+0x22d/0x990 [ 100.389539][ T6228] ? file_end_write+0x1b0/0x1b0 [ 100.394226][ T6228] ? __kasan_check_write+0x14/0x20 [ 100.399264][ T6228] ? create_io_thread+0x1e0/0x1e0 [ 100.404121][ T6228] ? __mutex_lock_slowpath+0x10/0x10 [ 100.409244][ T6228] __x64_sys_clone+0x289/0x310 [ 100.413842][ T6228] ? __do_sys_vfork+0x130/0x130 [ 100.418530][ T6228] ? debug_smp_processor_id+0x17/0x20 [ 100.423738][ T6228] do_syscall_64+0x44/0xd0 [ 100.427990][ T6228] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 100.433716][ T6228] RIP: 0033:0x7f35007595a9 [ 100.437973][ T6228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 100.457505][ T6228] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 100.465743][ T6228] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 100.473561][ T6228] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 100.481368][ T6228] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 100.489178][ T6228] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 100.496989][ T6228] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 100.504806][ T6228] 13:52:29 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xf00000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:29 executing program 3: r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000), 0x4) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000240)=r0, 0x4) openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x0, &(0x7f0000000280), &(0x7f00000002c0)='syzkaller\x00', 0x7fff, 0x0, 0x0, 0x40f00, 0x6, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000340)={0x1, 0x8, 0x3ff, 0x12a}, 0x10, 0xffffffffffffffff, r0}, 0x80) syz_clone(0x40001000, &(0x7f0000000780)="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", 0x1000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)="8885a31d52df18dd0506b54a21d0714cfd5c41dc450bb23c6cb2ebdbde9f6157980ff82b36101db29e3bc1673cfcb4c6279f4533b2fd00de1b324f59979b0650916a843baa1b3f5791ea8cd979b677621561339c983ad46fff68ac801d641c4e1a1a00ba146271b44d5fa5430a0bf0d4c9da24b7bfad52797180c7b67720a7d1ef5a9d373a2897e59d53d17c5f91790c736f4694379c64ad3c1acf068c256e57da91a895ce3f093ec0281b347d2640350de82f2d5a140bc48abbd19ec18ec787d6c94af617f44306eac7960803ee2d245d7485570852c2d85f2b9ad551c44fed25965c4c42fc9a476685ae03") syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') 13:52:29 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000003c0), 0x10) perf_event_open(&(0x7f0000001380)={0x2, 0x80, 0x1, 0x9, 0x40, 0x0, 0x0, 0x7, 0x201, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000140), 0x8}, 0x8000, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x164, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, r1, 0x3) r2 = perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x8, 0x18, 0xa0, 0xd4, 0x0, 0x1, 0x88, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0xf6e, 0x4}, 0x600, 0x3ff, 0x4, 0x6, 0x100000000, 0x7, 0xffe0, 0x0, 0x9, 0x0, 0x8000000000000001}, 0x0, 0x8, r0, 0x2) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000040)='cpuset') perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x8}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = getpid() r4 = perf_event_open(0x0, r3, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='+cpuacct -pids \x00perf_event +cpuacccpuset '], 0x35) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, r4, 0x0) openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0) syz_clone(0x74809480, 0x0, 0x4100, &(0x7f0000000000), 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000080)) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="29c385c0"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8) write$cgroup_int(r7, &(0x7f00000001c0), 0xfffffdef) sendmsg(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) write$cgroup_subtree(r7, &(0x7f00000002c0), 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000280)='pids') perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000003c0), 0x10) (async) perf_event_open(&(0x7f0000001380)={0x2, 0x80, 0x1, 0x9, 0x40, 0x0, 0x0, 0x7, 0x201, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000140), 0x8}, 0x8000, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x164, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, r1, 0x3) (async) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x8, 0x18, 0xa0, 0xd4, 0x0, 0x1, 0x88, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0xf6e, 0x4}, 0x600, 0x3ff, 0x4, 0x6, 0x100000000, 0x7, 0xffe0, 0x0, 0x9, 0x0, 0x8000000000000001}, 0x0, 0x8, r0, 0x2) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000040)='cpuset') (async) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x8}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) getpid() (async) perf_event_open(0x0, r3, 0x0, 0xffffffffffffffff, 0x0) (async) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='+cpuacct -pids \x00perf_event +cpuacccpuset '], 0x35) (async) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, r4, 0x0) (async) openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0) (async) syz_clone(0x74809480, 0x0, 0x4100, &(0x7f0000000000), 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000080)) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="29c385c0"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8) (async) write$cgroup_int(r7, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async) write$cgroup_subtree(r7, &(0x7f00000002c0), 0x0) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000280)='pids') (async) 13:52:29 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10}, 0x80) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r6, &(0x7f0000000200), 0x23000) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r7, &(0x7f0000000180), 0xfdef) 13:52:29 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 59) 13:52:29 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0xffffffffffffffff, r5, 0x0, 0x10, &(0x7f0000000180)='\x00\x00\x00\x00\xb4+R\xa7\xc1\x02\x00O\xbb\x00\x00\x00'}, 0x30) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080), 0x200002, 0x0) r7 = openat$cgroup_int(r6, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) openat$cgroup_ro(r6, &(0x7f0000000080)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) write$cgroup_int(r7, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r8}, 0x10) r10 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r9}, 0x8) write$cgroup_int(r10, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_ro(r10, &(0x7f00000000c0)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0xffffffffffffffff, r5, 0x0, 0x10, &(0x7f0000000180)='\x00\x00\x00\x00\xb4+R\xa7\xc1\x02\x00O\xbb\x00\x00\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080), 0x200002, 0x0) (async) openat$cgroup_int(r6, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) openat$cgroup_ro(r6, &(0x7f0000000080)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) (async) write$cgroup_int(r7, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r8}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r9}, 0x8) (async) write$cgroup_int(r10, &(0x7f00000001c0), 0xfffffdef) (async) openat$cgroup_ro(r10, &(0x7f00000000c0)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) (async) 13:52:29 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 100.852836][ T6238] FAULT_INJECTION: forcing a failure. [ 100.852836][ T6238] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 100.939539][ T6238] CPU: 0 PID: 6238 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 100.949669][ T6238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 100.959563][ T6238] Call Trace: [ 100.962687][ T6238] [ 100.965465][ T6238] dump_stack_lvl+0x151/0x1b7 [ 100.969975][ T6238] ? bfq_pos_tree_add_move+0x43e/0x43e [ 100.975272][ T6238] dump_stack+0x15/0x17 [ 100.979347][ T6238] should_fail+0x3c0/0x510 [ 100.983603][ T6238] should_fail_alloc_page+0x58/0x70 [ 100.988644][ T6238] __alloc_pages+0x1de/0x7c0 [ 100.993067][ T6238] ? __count_vm_events+0x30/0x30 [ 100.997836][ T6238] ? __this_cpu_preempt_check+0x13/0x20 [ 101.003224][ T6238] ? __mod_node_page_state+0xac/0xf0 [ 101.008346][ T6238] pte_alloc_one+0x73/0x1b0 [ 101.012675][ T6238] ? pfn_modify_allowed+0x2e0/0x2e0 [ 101.017710][ T6238] __pte_alloc+0x86/0x350 [ 101.021877][ T6238] ? free_pgtables+0x210/0x210 [ 101.026483][ T6238] ? _raw_spin_lock+0xa3/0x1b0 [ 101.031075][ T6238] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 101.036284][ T6238] ? __kernel_text_address+0x9a/0x110 [ 101.041493][ T6238] copy_pte_range+0x1b1f/0x20b0 [ 101.046187][ T6238] ? __kunmap_atomic+0x80/0x80 [ 101.050864][ T6238] ? __kasan_slab_alloc+0xc4/0xe0 [ 101.055722][ T6238] ? __kasan_slab_alloc+0xb2/0xe0 [ 101.060583][ T6238] ? kmem_cache_alloc+0x189/0x2f0 [ 101.065444][ T6238] ? vm_area_dup+0x26/0x1d0 [ 101.069784][ T6238] ? dup_mmap+0x6b8/0xea0 [ 101.073954][ T6238] ? dup_mm+0x91/0x330 [ 101.077873][ T6238] ? copy_mm+0x108/0x1b0 [ 101.081936][ T6238] ? copy_process+0x1295/0x3250 [ 101.086622][ T6238] ? kernel_clone+0x22d/0x990 [ 101.091162][ T6238] ? __x64_sys_clone+0x289/0x310 [ 101.095907][ T6238] ? do_syscall_64+0x44/0xd0 [ 101.100339][ T6238] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 101.106240][ T6238] copy_page_range+0xc1e/0x1090 [ 101.110926][ T6238] ? pfn_valid+0x1e0/0x1e0 [ 101.115180][ T6238] dup_mmap+0x99f/0xea0 [ 101.119179][ T6238] ? __delayed_free_task+0x20/0x20 [ 101.124123][ T6238] ? mm_init+0x807/0x960 [ 101.128194][ T6238] dup_mm+0x91/0x330 [ 101.132048][ T6238] copy_mm+0x108/0x1b0 [ 101.135943][ T6238] copy_process+0x1295/0x3250 [ 101.140458][ T6238] ? proc_fail_nth_write+0x213/0x290 [ 101.145573][ T6238] ? proc_fail_nth_read+0x220/0x220 [ 101.150609][ T6238] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 101.155562][ T6238] ? vfs_write+0x9af/0x1050 [ 101.159895][ T6238] ? vmacache_update+0xb7/0x120 [ 101.164587][ T6238] kernel_clone+0x22d/0x990 [ 101.168920][ T6238] ? file_end_write+0x1b0/0x1b0 [ 101.173609][ T6238] ? __kasan_check_write+0x14/0x20 [ 101.178555][ T6238] ? create_io_thread+0x1e0/0x1e0 [ 101.183416][ T6238] ? __mutex_lock_slowpath+0x10/0x10 [ 101.188556][ T6238] __x64_sys_clone+0x289/0x310 [ 101.193139][ T6238] ? __do_sys_vfork+0x130/0x130 [ 101.197825][ T6238] ? debug_smp_processor_id+0x17/0x20 [ 101.203032][ T6238] do_syscall_64+0x44/0xd0 [ 101.207286][ T6238] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 101.213010][ T6238] RIP: 0033:0x7f35007595a9 [ 101.217284][ T6238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 13:52:29 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:29 executing program 3: r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000), 0x4) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000240)=r0, 0x4) openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x0, &(0x7f0000000280), &(0x7f00000002c0)='syzkaller\x00', 0x7fff, 0x0, 0x0, 0x40f00, 0x6, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000340)={0x1, 0x8, 0x3ff, 0x12a}, 0x10, 0xffffffffffffffff, r0}, 0x80) (async) syz_clone(0x40001000, &(0x7f0000000780)="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", 0x1000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)="8885a31d52df18dd0506b54a21d0714cfd5c41dc450bb23c6cb2ebdbde9f6157980ff82b36101db29e3bc1673cfcb4c6279f4533b2fd00de1b324f59979b0650916a843baa1b3f5791ea8cd979b677621561339c983ad46fff68ac801d641c4e1a1a00ba146271b44d5fa5430a0bf0d4c9da24b7bfad52797180c7b67720a7d1ef5a9d373a2897e59d53d17c5f91790c736f4694379c64ad3c1acf068c256e57da91a895ce3f093ec0281b347d2640350de82f2d5a140bc48abbd19ec18ec787d6c94af617f44306eac7960803ee2d245d7485570852c2d85f2b9ad551c44fed25965c4c42fc9a476685ae03") (async) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') [ 101.236706][ T6238] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 101.244955][ T6238] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 101.252765][ T6238] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 101.260575][ T6238] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 101.268383][ T6238] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 101.276284][ T6238] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 101.284099][ T6238] 13:52:29 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 60) 13:52:29 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) (async) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0xffffffffffffffff, r5, 0x0, 0x10, &(0x7f0000000180)='\x00\x00\x00\x00\xb4+R\xa7\xc1\x02\x00O\xbb\x00\x00\x00'}, 0x30) (async, rerun: 64) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080), 0x200002, 0x0) (rerun: 64) r7 = openat$cgroup_int(r6, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) openat$cgroup_ro(r6, &(0x7f0000000080)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) write$cgroup_int(r7, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r9 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r8}, 0x10) r10 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r9}, 0x8) write$cgroup_int(r10, &(0x7f00000001c0), 0xfffffdef) (async, rerun: 64) openat$cgroup_ro(r10, &(0x7f00000000c0)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) (rerun: 64) 13:52:29 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:29 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x1f00000000000000, &(0x7f0000000040), 0x0, 0x0) [ 101.339562][ T6295] FAULT_INJECTION: forcing a failure. [ 101.339562][ T6295] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 101.376610][ T6295] CPU: 0 PID: 6295 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 101.386611][ T6295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 101.396507][ T6295] Call Trace: [ 101.399624][ T6295] [ 101.402405][ T6295] dump_stack_lvl+0x151/0x1b7 [ 101.406922][ T6295] ? bfq_pos_tree_add_move+0x43e/0x43e [ 101.412212][ T6295] dump_stack+0x15/0x17 [ 101.416200][ T6295] should_fail+0x3c0/0x510 [ 101.420456][ T6295] should_fail_alloc_page+0x58/0x70 [ 101.425492][ T6295] __alloc_pages+0x1de/0x7c0 [ 101.429919][ T6295] ? __count_vm_events+0x30/0x30 [ 101.434691][ T6295] ? __this_cpu_preempt_check+0x13/0x20 [ 101.440069][ T6295] ? __mod_node_page_state+0xac/0xf0 [ 101.445193][ T6295] pte_alloc_one+0x73/0x1b0 [ 101.449529][ T6295] ? pfn_modify_allowed+0x2e0/0x2e0 [ 101.454564][ T6295] __pte_alloc+0x86/0x350 [ 101.458729][ T6295] ? free_pgtables+0x210/0x210 [ 101.463327][ T6295] ? _raw_spin_lock+0xa3/0x1b0 [ 101.467931][ T6295] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 101.473141][ T6295] ? __kernel_text_address+0x9a/0x110 [ 101.478346][ T6295] copy_pte_range+0x1b1f/0x20b0 [ 101.483037][ T6295] ? __kunmap_atomic+0x80/0x80 [ 101.487634][ T6295] ? __kasan_slab_alloc+0xc4/0xe0 [ 101.492490][ T6295] ? __kasan_slab_alloc+0xb2/0xe0 [ 101.497352][ T6295] ? kmem_cache_alloc+0x189/0x2f0 [ 101.502212][ T6295] ? vm_area_dup+0x26/0x1d0 [ 101.506549][ T6295] ? dup_mmap+0x6b8/0xea0 [ 101.510717][ T6295] ? dup_mm+0x91/0x330 [ 101.514622][ T6295] ? copy_mm+0x108/0x1b0 [ 101.518706][ T6295] ? copy_process+0x1295/0x3250 [ 101.523389][ T6295] ? kernel_clone+0x22d/0x990 [ 101.527901][ T6295] ? __x64_sys_clone+0x289/0x310 [ 101.532674][ T6295] ? do_syscall_64+0x44/0xd0 [ 101.537104][ T6295] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 101.543006][ T6295] copy_page_range+0xc1e/0x1090 [ 101.547697][ T6295] ? pfn_valid+0x1e0/0x1e0 [ 101.551944][ T6295] dup_mmap+0x99f/0xea0 [ 101.555938][ T6295] ? __delayed_free_task+0x20/0x20 [ 101.560882][ T6295] ? mm_init+0x807/0x960 [ 101.564965][ T6295] dup_mm+0x91/0x330 [ 101.568694][ T6295] copy_mm+0x108/0x1b0 [ 101.572600][ T6295] copy_process+0x1295/0x3250 [ 101.577122][ T6295] ? proc_fail_nth_write+0x213/0x290 [ 101.582239][ T6295] ? proc_fail_nth_read+0x220/0x220 13:52:30 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f00000003c0), 0x10) perf_event_open(&(0x7f0000001380)={0x2, 0x80, 0x1, 0x9, 0x40, 0x0, 0x0, 0x7, 0x201, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000140), 0x8}, 0x8000, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x164, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, r1, 0x3) r2 = perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x8, 0x18, 0xa0, 0xd4, 0x0, 0x1, 0x88, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0xf6e, 0x4}, 0x600, 0x3ff, 0x4, 0x6, 0x100000000, 0x7, 0xffe0, 0x0, 0x9, 0x0, 0x8000000000000001}, 0x0, 0x8, r0, 0x2) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000040)='cpuset') (async) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x8}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) r3 = getpid() r4 = perf_event_open(0x0, r3, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='+cpuacct -pids \x00perf_event +cpuacccpuset '], 0x35) (async) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, r4, 0x0) openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0) (async) syz_clone(0x74809480, 0x0, 0x4100, &(0x7f0000000000), 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000080)) (async) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="29c385c0"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) r7 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r6}, 0x8) write$cgroup_int(r7, &(0x7f00000001c0), 0xfffffdef) sendmsg(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async) write$cgroup_subtree(r7, &(0x7f00000002c0), 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000280)='pids') [ 101.587281][ T6295] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 101.592214][ T6295] ? vfs_write+0x9af/0x1050 [ 101.596558][ T6295] ? vmacache_update+0xb7/0x120 [ 101.601243][ T6295] kernel_clone+0x22d/0x990 [ 101.605583][ T6295] ? file_end_write+0x1b0/0x1b0 [ 101.610268][ T6295] ? __kasan_check_write+0x14/0x20 [ 101.615213][ T6295] ? create_io_thread+0x1e0/0x1e0 [ 101.620078][ T6295] ? __mutex_lock_slowpath+0x10/0x10 [ 101.625199][ T6295] __x64_sys_clone+0x289/0x310 [ 101.629801][ T6295] ? __do_sys_vfork+0x130/0x130 [ 101.634491][ T6295] ? debug_smp_processor_id+0x17/0x20 [ 101.639690][ T6295] do_syscall_64+0x44/0xd0 [ 101.643943][ T6295] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 101.649669][ T6295] RIP: 0033:0x7f35007595a9 [ 101.653921][ T6295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 101.673364][ T6295] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 101.681612][ T6295] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 13:52:30 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 61) 13:52:30 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, 0xffffffffffffffff]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 101.689420][ T6295] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 101.697233][ T6295] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 101.705060][ T6295] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 101.712856][ T6295] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 101.720786][ T6295] [ 101.787064][ T6319] FAULT_INJECTION: forcing a failure. [ 101.787064][ T6319] name failslab, interval 1, probability 0, space 0, times 0 [ 101.801146][ T6319] CPU: 1 PID: 6319 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 101.811144][ T6319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 101.821034][ T6319] Call Trace: [ 101.824157][ T6319] [ 101.826937][ T6319] dump_stack_lvl+0x151/0x1b7 [ 101.831450][ T6319] ? bfq_pos_tree_add_move+0x43e/0x43e [ 101.836747][ T6319] dump_stack+0x15/0x17 [ 101.840734][ T6319] should_fail+0x3c0/0x510 [ 101.844988][ T6319] __should_failslab+0x9f/0xe0 [ 101.849588][ T6319] should_failslab+0x9/0x20 [ 101.853929][ T6319] kmem_cache_alloc+0x4f/0x2f0 [ 101.858531][ T6319] ? vm_area_dup+0x26/0x1d0 [ 101.862867][ T6319] vm_area_dup+0x26/0x1d0 [ 101.867035][ T6319] dup_mmap+0x6b8/0xea0 [ 101.871035][ T6319] ? __delayed_free_task+0x20/0x20 [ 101.875974][ T6319] ? mm_init+0x807/0x960 [ 101.880060][ T6319] dup_mm+0x91/0x330 [ 101.883785][ T6319] copy_mm+0x108/0x1b0 [ 101.887693][ T6319] copy_process+0x1295/0x3250 [ 101.892204][ T6319] ? proc_fail_nth_write+0x213/0x290 [ 101.897324][ T6319] ? proc_fail_nth_read+0x220/0x220 [ 101.902359][ T6319] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 101.907311][ T6319] ? vfs_write+0x9af/0x1050 [ 101.911643][ T6319] ? vmacache_update+0xb7/0x120 [ 101.916336][ T6319] kernel_clone+0x22d/0x990 [ 101.920671][ T6319] ? file_end_write+0x1b0/0x1b0 [ 101.925359][ T6319] ? __kasan_check_write+0x14/0x20 [ 101.930478][ T6319] ? create_io_thread+0x1e0/0x1e0 [ 101.935340][ T6319] ? __mutex_lock_slowpath+0x10/0x10 [ 101.940463][ T6319] __x64_sys_clone+0x289/0x310 [ 101.945147][ T6319] ? __do_sys_vfork+0x130/0x130 [ 101.949833][ T6319] ? debug_smp_processor_id+0x17/0x20 [ 101.955041][ T6319] do_syscall_64+0x44/0xd0 [ 101.959297][ T6319] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 101.965020][ T6319] RIP: 0033:0x7f35007595a9 [ 101.969282][ T6319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 101.988715][ T6319] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 101.996961][ T6319] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 102.004772][ T6319] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 102.012581][ T6319] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 102.020395][ T6319] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 102.028211][ T6319] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 13:52:30 executing program 3: r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000), 0x4) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000240)=r0, 0x4) openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x0, &(0x7f0000000280), &(0x7f00000002c0)='syzkaller\x00', 0x7fff, 0x0, 0x0, 0x40f00, 0x6, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000340)={0x1, 0x8, 0x3ff, 0x12a}, 0x10, 0xffffffffffffffff, r0}, 0x80) (async) syz_clone(0x40001000, &(0x7f0000000780)="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", 0x1000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)="8885a31d52df18dd0506b54a21d0714cfd5c41dc450bb23c6cb2ebdbde9f6157980ff82b36101db29e3bc1673cfcb4c6279f4533b2fd00de1b324f59979b0650916a843baa1b3f5791ea8cd979b677621561339c983ad46fff68ac801d641c4e1a1a00ba146271b44d5fa5430a0bf0d4c9da24b7bfad52797180c7b67720a7d1ef5a9d373a2897e59d53d17c5f91790c736f4694379c64ad3c1acf068c256e57da91a895ce3f093ec0281b347d2640350de82f2d5a140bc48abbd19ec18ec787d6c94af617f44306eac7960803ee2d245d7485570852c2d85f2b9ad551c44fed25965c4c42fc9a476685ae03") (async) syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') 13:52:30 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x2000000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:30 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 62) [ 102.036026][ T6319] 13:52:30 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, 0xffffffffffffffff]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:30 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, 0xffffffffffffffff]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:30 executing program 3: r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000000), 0x4) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000240)=r0, 0x4) openat$cgroup(0xffffffffffffffff, &(0x7f0000000080)='syz0\x00', 0x200002, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x0, &(0x7f0000000280), &(0x7f00000002c0)='syzkaller\x00', 0x7fff, 0x0, 0x0, 0x40f00, 0x6, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x9, 0x1}, 0x8, 0x10, &(0x7f0000000340)={0x1, 0x8, 0x3ff, 0x12a}, 0x10, 0xffffffffffffffff, r0}, 0x80) syz_clone(0x40001000, &(0x7f0000000780)="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", 0x1000, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)="8885a31d52df18dd0506b54a21d0714cfd5c41dc450bb23c6cb2ebdbde9f6157980ff82b36101db29e3bc1673cfcb4c6279f4533b2fd00de1b324f59979b0650916a843baa1b3f5791ea8cd979b677621561339c983ad46fff68ac801d641c4e1a1a00ba146271b44d5fa5430a0bf0d4c9da24b7bfad52797180c7b67720a7d1ef5a9d373a2897e59d53d17c5f91790c736f4694379c64ad3c1acf068c256e57da91a895ce3f093ec0281b347d2640350de82f2d5a140bc48abbd19ec18ec787d6c94af617f44306eac7960803ee2d245d7485570852c2d85f2b9ad551c44fed25965c4c42fc9a476685ae03") syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/user\x00') [ 102.142421][ T6333] FAULT_INJECTION: forcing a failure. [ 102.142421][ T6333] name failslab, interval 1, probability 0, space 0, times 0 13:52:30 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000005000000f3d6a3a0020001000100001b32f11a95accab7624fde844ab87635bb95abc0efd302061f66d1088ea86382358ce861edd20fc7dad44755cd9c971f8f8c7e22a178d198002ba3b34a69d32fe46cad9473d1b8d67004c46757e8ad7d3d12c868d5c23d283666a7804177e1c472285018f8ecdb0b83d390c3c74d1fe533f57b9880977607c3"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000280)={@cgroup, r1, 0x26, 0x4, r0}, 0x14) write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000640)={0x0, 0x7f}, 0xc) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000680)={0xffffffffffffffff, 0x8001, 0x8}, 0xc) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0x0, 0x6, 0x8}, 0xc) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r6 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, r5, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r7 = perf_event_open$cgroup(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x40, 0x7f, 0x0, 0x13, 0x83840, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x5, 0x2, @perf_bp={&(0x7f00000002c0), 0x890282cc67785066}, 0x4044, 0xfffffffffffffffc, 0x40, 0x7, 0x1, 0x8001, 0x3ff, 0x0, 0x5, 0x0, 0xfffffffffffff1be}, r6, 0x4, r5, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, r7, 0x0, 0x17, &(0x7f00000000c0)='cgroup.max.descendants\x00'}, 0x30) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r9 = openat$cgroup_int(r8, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r9, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:30 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) [ 102.241500][ T6333] CPU: 0 PID: 6333 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 102.251501][ T6333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 102.261395][ T6333] Call Trace: [ 102.264519][ T6333] [ 102.267297][ T6333] dump_stack_lvl+0x151/0x1b7 [ 102.271818][ T6333] ? bfq_pos_tree_add_move+0x43e/0x43e [ 102.277105][ T6333] dump_stack+0x15/0x17 [ 102.281094][ T6333] should_fail+0x3c0/0x510 [ 102.285352][ T6333] __should_failslab+0x9f/0xe0 [ 102.289953][ T6333] should_failslab+0x9/0x20 [ 102.294289][ T6333] kmem_cache_alloc+0x4f/0x2f0 [ 102.298888][ T6333] ? vm_area_dup+0x26/0x1d0 [ 102.303235][ T6333] vm_area_dup+0x26/0x1d0 [ 102.307393][ T6333] dup_mmap+0x6b8/0xea0 [ 102.311400][ T6333] ? __delayed_free_task+0x20/0x20 [ 102.316334][ T6333] ? mm_init+0x807/0x960 [ 102.320412][ T6333] dup_mm+0x91/0x330 [ 102.324266][ T6333] copy_mm+0x108/0x1b0 [ 102.328169][ T6333] copy_process+0x1295/0x3250 [ 102.332689][ T6333] ? proc_fail_nth_write+0x213/0x290 [ 102.337800][ T6333] ? proc_fail_nth_read+0x220/0x220 [ 102.342835][ T6333] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 102.347777][ T6333] ? vfs_write+0x9af/0x1050 [ 102.352116][ T6333] ? vmacache_update+0xb7/0x120 [ 102.356807][ T6333] kernel_clone+0x22d/0x990 [ 102.361145][ T6333] ? file_end_write+0x1b0/0x1b0 [ 102.365829][ T6333] ? __kasan_check_write+0x14/0x20 [ 102.370794][ T6333] ? create_io_thread+0x1e0/0x1e0 [ 102.375639][ T6333] ? __mutex_lock_slowpath+0x10/0x10 [ 102.380759][ T6333] __x64_sys_clone+0x289/0x310 [ 102.385359][ T6333] ? __do_sys_vfork+0x130/0x130 [ 102.390046][ T6333] ? debug_smp_processor_id+0x17/0x20 [ 102.395266][ T6333] do_syscall_64+0x44/0xd0 [ 102.399506][ T6333] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 102.405234][ T6333] RIP: 0033:0x7f35007595a9 [ 102.409488][ T6333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 102.428927][ T6333] RSP: 002b:00007f34ff4ac118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 13:52:30 executing program 3: perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x3) r0 = perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x7, 0xb8, 0x1, 0x0, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x42006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x8, 0xffffffffffffffff, 0x0) perf_event_open$cgroup(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x800, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x50110, 0x7, 0x5, 0x0, 0x0, 0x1, 0x10, 0x0, 0x51}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_exit\x00'}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r1 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r1, 0x0) perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x1f, 0x6, 0x7f, 0xa1, 0x0, 0x8b3, 0x6400, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0x6, 0xffffffffffffffc0}, 0x11008, 0x4, 0x7952, 0x5, 0x5, 0x6, 0x6, 0x0, 0x101, 0x0, 0x2}, r1, 0x10, r0, 0xb) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={0xffffffffffffffff, 0x0, 0xfa, 0x49, &(0x7f0000000280)="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", &(0x7f0000000380)=""/73, 0x0, 0x0, 0x3a, 0x13, &(0x7f0000000000)="32ee0b93e88b2e50e35ab3055addb07e5f070c94139a208f948be06dfcd4bed8227793cf865b852812dd2fc023ce03727a494156dd36085105ed", &(0x7f0000000140)="eef2892f00491fd7bd62199653df4ef356c0a1", 0x0, 0x4}, 0x48) 13:52:30 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x6, 0x4, 0x80, 0x5, 0x0, 0x9, 0x672518fd5deb841d, 0xe, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xca, 0x4, @perf_bp={&(0x7f0000000100), 0x4}, 0x5102, 0xff, 0x2, 0x4, 0x6, 0x9, 0x1000, 0x0, 0x3, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) r0 = perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000140)='sched_switch\x00') perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0xa1, 0x8, 0x0, 0x0, 0x603e, 0x2000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffff, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0x4200, 0x0, 0x7ff, 0x7, 0x0, 0x0, 0x411, 0x0, 0x80000001, 0x0, 0x80000000}, 0x0, 0x1, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000029c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000001340)='sched_switch\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x100002, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000200)=0x7) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x35af000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, &(0x7f0000000040)) r3 = syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000400)=0x5) perf_event_open(&(0x7f0000000380)={0x3, 0x80, 0x40, 0x2, 0x80, 0x68, 0x0, 0xe4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000240), 0xf}, 0x1000, 0x4, 0x4, 0x0, 0x9, 0x7, 0x1f, 0x0, 0xf0000000, 0x0, 0x5}, r3, 0xffffffffffffffff, r1, 0x0) 13:52:30 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000005000000f3d6a3a0020001000100001b32f11a95accab7624fde844ab87635bb95abc0efd302061f66d1088ea86382358ce861edd20fc7dad44755cd9c971f8f8c7e22a178d198002ba3b34a69d32fe46cad9473d1b8d67004c46757e8ad7d3d12c868d5c23d283666a7804177e1c472285018f8ecdb0b83d390c3c74d1fe533f57b9880977607c3"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000280)={@cgroup, r1, 0x26, 0x4, r0}, 0x14) (async) write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) (async) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000640)={0x0, 0x7f}, 0xc) (async) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000680)={0xffffffffffffffff, 0x8001, 0x8}, 0xc) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0x0, 0x6, 0x8}, 0xc) (async) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) (async) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r6 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, r5, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r7 = perf_event_open$cgroup(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x40, 0x7f, 0x0, 0x13, 0x83840, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x5, 0x2, @perf_bp={&(0x7f00000002c0), 0x890282cc67785066}, 0x4044, 0xfffffffffffffffc, 0x40, 0x7, 0x1, 0x8001, 0x3ff, 0x0, 0x5, 0x0, 0xfffffffffffff1be}, r6, 0x4, r5, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, r7, 0x0, 0x17, &(0x7f00000000c0)='cgroup.max.descendants\x00'}, 0x30) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r9 = openat$cgroup_int(r8, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r9, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:30 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x3f00000000000000, &(0x7f0000000040), 0x0, 0x0) [ 102.437171][ T6333] RAX: ffffffffffffffda RBX: 00007f350087a050 RCX: 00007f35007595a9 [ 102.444985][ T6333] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 102.452796][ T6333] RBP: 00007f34ff4ac1d0 R08: 0000000000000000 R09: 0000000000000000 [ 102.460605][ T6333] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 102.468415][ T6333] R13: 00007ffc2631eaaf R14: 00007f34ff4ac300 R15: 0000000000022000 [ 102.476359][ T6333] 13:52:30 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 63) 13:52:30 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:30 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000005000000f3d6a3a0020001000100001b32f11a95accab7624fde844ab87635bb95abc0efd302061f66d1088ea86382358ce861edd20fc7dad44755cd9c971f8f8c7e22a178d198002ba3b34a69d32fe46cad9473d1b8d67004c46757e8ad7d3d12c868d5c23d283666a7804177e1c472285018f8ecdb0b83d390c3c74d1fe533f57b9880977607c3"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) (async) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000280)={@cgroup, r1, 0x26, 0x4, r0}, 0x14) (async) write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) (async) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000640)={0x0, 0x7f}, 0xc) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000680)={0xffffffffffffffff, 0x8001, 0x8}, 0xc) (async) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0x0, 0x6, 0x8}, 0xc) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) (async) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r6 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, r5, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r7 = perf_event_open$cgroup(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x40, 0x7f, 0x0, 0x13, 0x83840, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x5, 0x2, @perf_bp={&(0x7f00000002c0), 0x890282cc67785066}, 0x4044, 0xfffffffffffffffc, 0x40, 0x7, 0x1, 0x8001, 0x3ff, 0x0, 0x5, 0x0, 0xfffffffffffff1be}, r6, 0x4, r5, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, r7, 0x0, 0x17, &(0x7f00000000c0)='cgroup.max.descendants\x00'}, 0x30) r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r9 = openat$cgroup_int(r8, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r9, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 102.562175][ T6361] FAULT_INJECTION: forcing a failure. [ 102.562175][ T6361] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 102.589441][ T6361] CPU: 1 PID: 6361 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 102.599438][ T6361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 102.609336][ T6361] Call Trace: [ 102.612457][ T6361] [ 102.615234][ T6361] dump_stack_lvl+0x151/0x1b7 [ 102.619749][ T6361] ? bfq_pos_tree_add_move+0x43e/0x43e [ 102.625044][ T6361] dump_stack+0x15/0x17 [ 102.629038][ T6361] should_fail+0x3c0/0x510 [ 102.633288][ T6361] should_fail_alloc_page+0x58/0x70 [ 102.638321][ T6361] __alloc_pages+0x1de/0x7c0 [ 102.642750][ T6361] ? __count_vm_events+0x30/0x30 [ 102.647525][ T6361] ? __this_cpu_preempt_check+0x13/0x20 [ 102.652900][ T6361] ? __mod_node_page_state+0xac/0xf0 [ 102.658028][ T6361] pte_alloc_one+0x73/0x1b0 [ 102.662360][ T6361] ? pfn_modify_allowed+0x2e0/0x2e0 [ 102.667399][ T6361] __pte_alloc+0x86/0x350 [ 102.671562][ T6361] ? free_pgtables+0x210/0x210 [ 102.676162][ T6361] ? _raw_spin_lock+0xa3/0x1b0 [ 102.680761][ T6361] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 102.685970][ T6361] ? __kernel_text_address+0x9a/0x110 [ 102.691180][ T6361] copy_pte_range+0x1b1f/0x20b0 [ 102.695870][ T6361] ? __kunmap_atomic+0x80/0x80 [ 102.700467][ T6361] ? __kasan_slab_alloc+0xc4/0xe0 [ 102.705322][ T6361] ? __kasan_slab_alloc+0xb2/0xe0 [ 102.710182][ T6361] ? kmem_cache_alloc+0x189/0x2f0 [ 102.715046][ T6361] ? vm_area_dup+0x26/0x1d0 [ 102.719385][ T6361] ? dup_mmap+0x6b8/0xea0 [ 102.723548][ T6361] ? dup_mm+0x91/0x330 [ 102.727461][ T6361] ? copy_mm+0x108/0x1b0 [ 102.731534][ T6361] ? copy_process+0x1295/0x3250 [ 102.736225][ T6361] ? kernel_clone+0x22d/0x990 [ 102.740735][ T6361] ? __x64_sys_clone+0x289/0x310 [ 102.745509][ T6361] ? do_syscall_64+0x44/0xd0 [ 102.749936][ T6361] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 102.755843][ T6361] copy_page_range+0xc1e/0x1090 [ 102.760531][ T6361] ? pfn_valid+0x1e0/0x1e0 [ 102.764779][ T6361] dup_mmap+0x99f/0xea0 [ 102.768771][ T6361] ? __delayed_free_task+0x20/0x20 [ 102.773716][ T6361] ? mm_init+0x807/0x960 [ 102.777796][ T6361] dup_mm+0x91/0x330 [ 102.781527][ T6361] copy_mm+0x108/0x1b0 [ 102.785433][ T6361] copy_process+0x1295/0x3250 [ 102.790038][ T6361] ? proc_fail_nth_write+0x213/0x290 [ 102.795159][ T6361] ? proc_fail_nth_read+0x220/0x220 [ 102.800190][ T6361] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 102.805135][ T6361] ? vfs_write+0x9af/0x1050 [ 102.809476][ T6361] ? vmacache_update+0xb7/0x120 [ 102.814165][ T6361] kernel_clone+0x22d/0x990 [ 102.818502][ T6361] ? file_end_write+0x1b0/0x1b0 [ 102.823189][ T6361] ? __kasan_check_write+0x14/0x20 [ 102.828134][ T6361] ? create_io_thread+0x1e0/0x1e0 [ 102.833000][ T6361] ? __mutex_lock_slowpath+0x10/0x10 [ 102.838119][ T6361] __x64_sys_clone+0x289/0x310 [ 102.842766][ T6361] ? __do_sys_vfork+0x130/0x130 [ 102.847409][ T6361] ? debug_smp_processor_id+0x17/0x20 [ 102.852612][ T6361] do_syscall_64+0x44/0xd0 [ 102.856864][ T6361] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 102.862594][ T6361] RIP: 0033:0x7f35007595a9 [ 102.866843][ T6361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 102.886411][ T6361] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 102.894658][ T6361] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 102.902471][ T6361] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 13:52:31 executing program 3: perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x3) r0 = perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x7, 0xb8, 0x1, 0x0, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x42006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x8, 0xffffffffffffffff, 0x0) (async) perf_event_open$cgroup(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x800, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x50110, 0x7, 0x5, 0x0, 0x0, 0x1, 0x10, 0x0, 0x51}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_exit\x00'}, 0x10) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r1 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r1, 0x0) perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x1f, 0x6, 0x7f, 0xa1, 0x0, 0x8b3, 0x6400, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0x6, 0xffffffffffffffc0}, 0x11008, 0x4, 0x7952, 0x5, 0x5, 0x6, 0x6, 0x0, 0x101, 0x0, 0x2}, r1, 0x10, r0, 0xb) (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={0xffffffffffffffff, 0x0, 0xfa, 0x49, &(0x7f0000000280)="71f80316946ff57603a199a47bc79b890f0b8f1163bf3862073e90a3f39ad82f791540018a779718d33e2fbfa6e391068bdbc7674d7afe6cc5803bdb6456351aecd56e1596b03a4c4ec24ea2963471e6eea8eb86bd659ffd25e5155e10e4e981615cd1fb557ebf00f617830b04532a728e9b2ddd758580921179d7f57182d134450be41085ee744c4267fd1d5406ef260d13ccde52f0a2cf10bd12c253fd384b6f10822cd6a3d3bb8162378229445bd88fb0ef4fd5ea5201bce3fc168fc822b5e1e82f38f8f60e9b9ce44a6ebd9a989723f1e2315043b3c7e2936923833bb45cd955229dc86c5537013d41cf382fa482b15787fa85220a09c757", &(0x7f0000000380)=""/73, 0x0, 0x0, 0x3a, 0x13, &(0x7f0000000000)="32ee0b93e88b2e50e35ab3055addb07e5f070c94139a208f948be06dfcd4bed8227793cf865b852812dd2fc023ce03727a494156dd36085105ed", &(0x7f0000000140)="eef2892f00491fd7bd62199653df4ef356c0a1", 0x0, 0x4}, 0x48) 13:52:31 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:31 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x6, 0x4, 0x80, 0x5, 0x0, 0x9, 0x672518fd5deb841d, 0xe, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xca, 0x4, @perf_bp={&(0x7f0000000100), 0x4}, 0x5102, 0xff, 0x2, 0x4, 0x6, 0x9, 0x1000, 0x0, 0x3, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) r0 = perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000140)='sched_switch\x00') perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0xa1, 0x8, 0x0, 0x0, 0x603e, 0x2000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffff, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0x4200, 0x0, 0x7ff, 0x7, 0x0, 0x0, 0x411, 0x0, 0x80000001, 0x0, 0x80000000}, 0x0, 0x1, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000029c0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000800000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b244ccc42606d25dfd73a015e0ca7fc2506a1468a7d46d7535f7866907b627377a05f8817bd10751c985dc6771c40151dfb265a0e3b02fa5cfc5ccae669e173a649c1cfd6587d452d6453559c3421eed73d5661cfe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe0026e7a23129d6606fd28ae7b49d552a04bda9df2c3af36effff9af2551c4cb0f327cb3f011a7d06602e2fd5234712596b696418f143d19d02000000000000005bfacba83109751fe6c0541cd027edd68149ee99eebc677d6dd4aed4af7500d7900a820b63278f4e9a217b98000000002a92895614cd50cbe43a1ed2526814bc00000000000009d27d753a30669596e9e086ce48e90defb6670c291c254479106a91893ed20fa7a040fbbef9e326e827e513e96068fd1e8a43e89f32d08806bc376e3e493f52b59d13182e1f24ed200ada12f7a1525320e71666f472f75bc7a941a2d0b2874df30ed5eb1affb87ba5080000008e9f40b4ae7d01000000d11cd22c35e3348993de314ccb37dc9c4aafb212d3294000000000000000000000000000000000000000000000000000000000000000000000000c52f4ebf1c893bb97a068bd10734a83584898eccb26f3b789cfc4d37b729ac83f0d8b4f48f3c3357f000000fc455a97690b6f7f9ccbe44b13000000000000b77c7e23b03f2a834391ad24fe7d9b20cfde6c25a3836900000068d7604bf251b6224fc22052e50000000000000000000000001d702646d17ef2c71e27e9265cf82e090000000000000000000000000000000000036745ecd8313e521a2a9b36b131a74472362300006f3a3504f07ffc0d2fa95fa60892c2d1d1857b784f974705ca7d8d6681e822cb891e6e4fbe73008d7d8b2a78bbca48035c0cf4230943aa47156b1fba84b44144a9b2469dd93201477050f2d98a0b4f128e904e6fcb77afdf7dbfa228495d9c1b3c1d60476563802bf6cc4ea904b9a73377890fd2951c513d98a79156541ec17921be59526b027c8b3ee7b31a3f05e1281f5dbbc26a1688d99e5a9a36dad66a27f11dc80ddbdae4a0d4b8aaa65bbc42ed9a978428f3aaa7a3e5039700d37200ee43646f950c7f836e101db43479d8152dade1d566eb4caeb2ce2da111b0f5e68ae2cf3bb70e1a2bcbfcdbdbcf22a03392d180974fe24d57de77d44744c3c928a1a17dfe427ca58cbffb1ac55665fb8e68a009ed095fa5edb8193135bf0038ecaa41ef08b249544b5144e1c8cf8b5f54c0d6e7f91a148e06f7bb6ea1c5f91f539e61f8a3a093de2a9fc6648adc1ca6c67d33ba3b0558b0e6baf8c7535d096d7c2a4f18bb0a5d5aa57ca3b8a2cf5e18373eaadcd3547349afde626c2c65f6b4d67017144ee66a69c8bd87abd42fe6629f39c4e97d21000000000000000000000300000030b1dbe5c54a807660283d8de5e799ba252c39881ad14cb3f3f23d731a37cbc4b920f43e2b49e10901b20ff10736eb946333d74807cb5f4ecec693b3936ab559f141067c8ba8d28a4cdb199f9055b577e51cf97550cde886ede49c13d9825d88c4717008ac0354187f2c7c953b5688b64bc7000000000000000000000000000000000000000000c20000000094f678004488f9734592bb9a740690fab2d3c9fbc8710c485981a085c295270c0e656298587841f30e70eb0161785361bd0487804e737b0c5318ccd25de1e7fdad069204682918d6ba354e24eabad62845000000c700005b640c7d1b0f815ae09055006007a0b5d90204d0338a2866d212fe4cf0b3ff46780f3a5fcf96a6a7c1c6e5a9d5d0c735edcf11097b8481876341ad2153f7dfe31cc6eb687829f9894840b4797f20a972887c7c1fa08fbc9c72735628052a8dcd601ba42865639b46f8105c1154142f7506f8bf98b007b342fa45fd5a8d5627afdee086ac2f2aa1bd80e1636fbfe145116e5c5f13208dc7e277186ae30ad845500000000000006fb4bc7cfb3a263a03c2c8b13c1ee09534a5f57a2c5e7556bd6d66aedd9cc5f8721ff5496a65cb101f5ef0ca0f8bd29400936d813a0eb3501a1d62306d448b9c6a3463c884a4556c99bd4d1500000080000000000cdf760000000000000000a886d0a939badb3e000000000061756de0725aa4983d3fc6106cfbac1bc851138c2a65e7069a340a28080948e0752235819061a21d15efa6b4564b30cffb389718ee3483eb42c74513b15460435b823c2193a30f37553deec21440ba2144d67fd6c1ed556859508b4342356f2c1a8477a27ff499a67cf067524e37ffd132fbd52e47fdf6864a13a60b5ed78146158e9ecd8f5a7371995a405fdd7d3aa1636653d38329ef50a7ac8c6b610b24ab31802c0a75b0389a751577f7ca78b1d7690f03cea884c567466cd07ae5b124633b42b545b5ddb99bb218af1126ef52a4d5aeee06885eb43cdd9a74a0a5cb188fdb8a56e5407bd5000000003bd3fd919517aa73dccdab73277a49340a704d385fb371ce45683886c52e14750fe7407fe0cefe0624ef79feb64b0d394d90ca09c69224ec1a3c161898010840c5f7f788bc76403e78c83220fc00ae7646e86c4843b8685ac83e80aa0a801fd1db4d6f4109ab66ece65553133a2c78ed46cb85901113475963aba9e270f1b2c2ea1f9e44743679c83a45273f60db0a72fe9a6d6f86d22e599d29341a6fa6f94800800000d7223ef3fde2085c61e55163ea4f290e83a4b19222849aa6056f415160dbf6cb0c9006ff6dff89140815e5b73a33600313d383210a0842d96bc00455fa255a80659dcc76b1202ea493d121a24703cfd85c2d65e058e509e4b7d01190e5f8e75dc20142bf9570085f5cf153891f838062bbc71b60f4a00b9a8587563e58cebd1d70e8850962210ec0d57196b99c25237252193010d8111a6f55954d76ccaec6db4390c6a4813f638762f46c324ee97c00a4acc9d7b6dd08879083a839e1da4645ab82923a08bd11f845f92f359f169ed2324cc973ce0fc800000000000000000000000000000000000000009cd8f4ad95446c4f9c5bca196e040b705aac0525d072af96c506a5217d4eeee4f96305fd90f165b2a1a25840518e4a59472c5c96f650e2b2450cbba8fee79773422b0c5d846cbd85e68a4875ec81ea7270afdb8b9e60266c1428b2deaf48c4fd9d354a6aeb3aae5a8c4d253eafa3a9bb6a51f7bb2246eb624f6c8fb9fde75cdaf8c1c7897be2c0d1aa4d31b40c6565db1e6478ecc6aa8a24349c3d0030dc818436855244e69ae96328873474c3bd9ee0eb27df20694556ff94210daa7252630c1b7886ae9bddfbf0de8bef15dae531de3b4e21b8eaa808d553ded136ebeb4002f8a26b28e567a9a45418b29e42c5f3b6f742b81ceaa7f87650e5a3be3cd0fe01aa552f788eb000d99c42d6055603348c1dcd10721893e94a1d22cd0401ea35e6ba0af751314c82ecdb4f563e68b2fad375a780ed1c07605e38aafb6257738d94a2f47a093fb74fc832898bb535dabccdb6d10ec804420e0ea352b87307fb00fec4095b0b302dd218c33639b650f6bbb3e60bd3cc7fca554a4cb95c25e7a4ab4d1a284bab0273bb6eb1bf4adc2cb1b4eff060e9b105e02e62602d952867eb7df3b3d10fc81b60080e71346cafd22bc045692ec9c7d013c10048d79e7af0331f3cf764c06cad41c8117febc2fd009dee9cfcb824c1c1072aa8f12db4022992f5ec77b8d3242e922ca3095d3419c5e2851c2324603b992d6db0815f60af4f0d06bfbb250b761f49aceeea736fdf92236b8a0d25049c75e8a5ff29fb47259b4639fc6c1a7147969925d48d583c48ea27f7d3b6150ba573067e998e6fccd40c7fc0988f50df0c97f3683b8019945fefddcc8f0766967bf2c6b9524bbc008f0418b82727d31fdd9e7286c584b16e50f23593b80b343426f646dd7d86aa50f0c3f6cae154ecd14e2a23caaeaa0dc8d87b8a355d30696d3f2cc426737521ed04758dbdab2321a07a2d3355120e632774fcb0dba3c4dcd3a000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000001340)='sched_switch\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x100002, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000200)=0x7) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x35af000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, &(0x7f0000000040)) r3 = syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000400)=0x5) perf_event_open(&(0x7f0000000380)={0x3, 0x80, 0x40, 0x2, 0x80, 0x68, 0x0, 0xe4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000240), 0xf}, 0x1000, 0x4, 0x4, 0x0, 0x9, 0x7, 0x1f, 0x0, 0xf0000000, 0x0, 0x5}, r3, 0xffffffffffffffff, r1, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x6, 0x4, 0x80, 0x5, 0x0, 0x9, 0x672518fd5deb841d, 0xe, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xca, 0x4, @perf_bp={&(0x7f0000000100), 0x4}, 0x5102, 0xff, 0x2, 0x4, 0x6, 0x9, 0x1000, 0x0, 0x3, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) (async) perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x1) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000140)='sched_switch\x00') (async) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0xa1, 0x8, 0x0, 0x0, 0x603e, 0x2000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffff, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0x4200, 0x0, 0x7ff, 0x7, 0x0, 0x0, 0x411, 0x0, 0x80000001, 0x0, 0x80000000}, 0x0, 0x1, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async) bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000029c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000001340)='sched_switch\x00', r1}, 0x10) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x100002, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000200)=0x7) (async) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x35af000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, &(0x7f0000000040)) (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000400)=0x5) (async) perf_event_open(&(0x7f0000000380)={0x3, 0x80, 0x40, 0x2, 0x80, 0x68, 0x0, 0xe4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000240), 0xf}, 0x1000, 0x4, 0x4, 0x0, 0x9, 0x7, 0x1f, 0x0, 0xf0000000, 0x0, 0x5}, r3, 0xffffffffffffffff, r1, 0x0) (async) [ 102.910278][ T6361] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 102.918090][ T6361] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 102.925901][ T6361] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 102.933805][ T6361] 13:52:31 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x11, &(0x7f00000000c0)='cg\xf3\xf0Q,\xba\xfe[\xec\x83oup\x00\x00\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) r4 = openat$cgroup_int(r3, &(0x7f0000000180)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) close(r5) openat$cgroup_ro(r0, &(0x7f0000000080)='memory.events.local\x00', 0x0, 0x0) 13:52:31 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x11, &(0x7f00000000c0)='cg\xf3\xf0Q,\xba\xfe[\xec\x83oup\x00\x00\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) r4 = openat$cgroup_int(r3, &(0x7f0000000180)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) close(r5) openat$cgroup_ro(r0, &(0x7f0000000080)='memory.events.local\x00', 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x11, &(0x7f00000000c0)='cg\xf3\xf0Q,\xba\xfe[\xec\x83oup\x00\x00\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) (async) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) (async) openat$cgroup_int(r3, &(0x7f0000000180)='cgroup.max.descendants\x00', 0x2, 0x0) (async) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) (async) close(r5) (async) openat$cgroup_ro(r0, &(0x7f0000000080)='memory.events.local\x00', 0x0, 0x0) (async) 13:52:31 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 64) 13:52:31 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x4000000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:31 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, 0xffffffffffffffff, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) [ 103.042919][ T6388] FAULT_INJECTION: forcing a failure. [ 103.042919][ T6388] name failslab, interval 1, probability 0, space 0, times 0 [ 103.073687][ T6388] CPU: 1 PID: 6388 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 103.083687][ T6388] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 103.093578][ T6388] Call Trace: [ 103.096700][ T6388] [ 103.099478][ T6388] dump_stack_lvl+0x151/0x1b7 [ 103.103998][ T6388] ? bfq_pos_tree_add_move+0x43e/0x43e [ 103.109291][ T6388] dump_stack+0x15/0x17 [ 103.113282][ T6388] should_fail+0x3c0/0x510 [ 103.117531][ T6388] __should_failslab+0x9f/0xe0 [ 103.122131][ T6388] should_failslab+0x9/0x20 [ 103.126471][ T6388] kmem_cache_alloc+0x4f/0x2f0 [ 103.131073][ T6388] ? vm_area_dup+0x26/0x1d0 [ 103.135412][ T6388] vm_area_dup+0x26/0x1d0 [ 103.139577][ T6388] dup_mmap+0x6b8/0xea0 [ 103.143671][ T6388] ? __delayed_free_task+0x20/0x20 [ 103.148691][ T6388] ? mm_init+0x807/0x960 [ 103.152856][ T6388] dup_mm+0x91/0x330 [ 103.156588][ T6388] copy_mm+0x108/0x1b0 [ 103.160493][ T6388] copy_process+0x1295/0x3250 [ 103.165010][ T6388] ? proc_fail_nth_write+0x213/0x290 [ 103.170127][ T6388] ? proc_fail_nth_read+0x220/0x220 [ 103.175161][ T6388] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 103.180118][ T6388] ? vfs_write+0x9af/0x1050 [ 103.184448][ T6388] ? vmacache_update+0xb7/0x120 [ 103.189140][ T6388] kernel_clone+0x22d/0x990 [ 103.193476][ T6388] ? file_end_write+0x1b0/0x1b0 [ 103.198159][ T6388] ? __kasan_check_write+0x14/0x20 [ 103.203106][ T6388] ? create_io_thread+0x1e0/0x1e0 [ 103.207978][ T6388] ? __mutex_lock_slowpath+0x10/0x10 [ 103.213089][ T6388] __x64_sys_clone+0x289/0x310 [ 103.217690][ T6388] ? __do_sys_vfork+0x130/0x130 [ 103.222381][ T6388] ? debug_smp_processor_id+0x17/0x20 [ 103.227585][ T6388] do_syscall_64+0x44/0xd0 [ 103.231836][ T6388] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 103.237564][ T6388] RIP: 0033:0x7f35007595a9 [ 103.241816][ T6388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 103.261265][ T6388] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 103.269502][ T6388] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 103.277315][ T6388] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 103.285159][ T6388] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 13:52:31 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x11, &(0x7f00000000c0)='cg\xf3\xf0Q,\xba\xfe[\xec\x83oup\x00\x00\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) r4 = openat$cgroup_int(r3, &(0x7f0000000180)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r5}, 0x10) close(r5) (async) openat$cgroup_ro(r0, &(0x7f0000000080)='memory.events.local\x00', 0x0, 0x0) 13:52:31 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, 0xffffffffffffffff, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:31 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 65) [ 103.292940][ T6388] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 103.300749][ T6388] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 103.308564][ T6388] 13:52:31 executing program 3: perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x3) r0 = perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x7, 0xb8, 0x1, 0x0, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x42006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x8, 0xffffffffffffffff, 0x0) perf_event_open$cgroup(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x800, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x50110, 0x7, 0x5, 0x0, 0x0, 0x1, 0x10, 0x0, 0x51}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_exit\x00'}, 0x10) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r1 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r1, 0x0) perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x1f, 0x6, 0x7f, 0xa1, 0x0, 0x8b3, 0x6400, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0x6, 0xffffffffffffffc0}, 0x11008, 0x4, 0x7952, 0x5, 0x5, 0x6, 0x6, 0x0, 0x101, 0x0, 0x2}, r1, 0x10, r0, 0xb) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={0xffffffffffffffff, 0x0, 0xfa, 0x49, &(0x7f0000000280)="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", &(0x7f0000000380)=""/73, 0x0, 0x0, 0x3a, 0x13, &(0x7f0000000000)="32ee0b93e88b2e50e35ab3055addb07e5f070c94139a208f948be06dfcd4bed8227793cf865b852812dd2fc023ce03727a494156dd36085105ed", &(0x7f0000000140)="eef2892f00491fd7bd62199653df4ef356c0a1", 0x0, 0x4}, 0x48) 13:52:31 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, 0xffffffffffffffff, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:31 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='btrfs_handle_em_exist\x00'}, 0x10) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) r5 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000280)={&(0x7f0000000240)='./file0\x00'}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000180)='btrfs_clear_extent_bit\x00', r5}, 0x10) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_ro(r4, &(0x7f0000000100)='cpuset.effective_mems\x00', 0x0, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 103.393092][ T6430] FAULT_INJECTION: forcing a failure. [ 103.393092][ T6430] name failslab, interval 1, probability 0, space 0, times 0 [ 103.433693][ T6430] CPU: 0 PID: 6430 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 103.443699][ T6430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 103.453598][ T6430] Call Trace: [ 103.456721][ T6430] [ 103.459493][ T6430] dump_stack_lvl+0x151/0x1b7 [ 103.464010][ T6430] ? bfq_pos_tree_add_move+0x43e/0x43e [ 103.469306][ T6430] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 103.475552][ T6430] dump_stack+0x15/0x17 [ 103.479546][ T6430] should_fail+0x3c0/0x510 [ 103.483798][ T6430] __should_failslab+0x9f/0xe0 [ 103.488397][ T6430] should_failslab+0x9/0x20 [ 103.492741][ T6430] kmem_cache_alloc+0x4f/0x2f0 [ 103.497335][ T6430] ? anon_vma_fork+0xf7/0x4f0 [ 103.501854][ T6430] anon_vma_fork+0xf7/0x4f0 [ 103.506191][ T6430] ? anon_vma_name+0x43/0x70 [ 103.510617][ T6430] dup_mmap+0x750/0xea0 [ 103.514608][ T6430] ? __delayed_free_task+0x20/0x20 [ 103.519555][ T6430] ? mm_init+0x807/0x960 [ 103.523635][ T6430] dup_mm+0x91/0x330 [ 103.527367][ T6430] copy_mm+0x108/0x1b0 [ 103.531272][ T6430] copy_process+0x1295/0x3250 [ 103.535785][ T6430] ? proc_fail_nth_write+0x213/0x290 [ 103.540908][ T6430] ? proc_fail_nth_read+0x220/0x220 [ 103.545942][ T6430] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 103.550886][ T6430] ? vfs_write+0x9af/0x1050 [ 103.555228][ T6430] ? vmacache_update+0xb7/0x120 [ 103.559913][ T6430] kernel_clone+0x22d/0x990 [ 103.564251][ T6430] ? file_end_write+0x1b0/0x1b0 [ 103.568939][ T6430] ? __kasan_check_write+0x14/0x20 [ 103.573888][ T6430] ? create_io_thread+0x1e0/0x1e0 [ 103.578747][ T6430] ? __mutex_lock_slowpath+0x10/0x10 [ 103.583869][ T6430] __x64_sys_clone+0x289/0x310 [ 103.588468][ T6430] ? __do_sys_vfork+0x130/0x130 [ 103.593156][ T6430] ? debug_smp_processor_id+0x17/0x20 [ 103.598361][ T6430] do_syscall_64+0x44/0xd0 [ 103.602615][ T6430] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 103.608342][ T6430] RIP: 0033:0x7f35007595a9 [ 103.612602][ T6430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 13:52:32 executing program 0: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x6, 0x4, 0x80, 0x5, 0x0, 0x9, 0x672518fd5deb841d, 0xe, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xca, 0x4, @perf_bp={&(0x7f0000000100), 0x4}, 0x5102, 0xff, 0x2, 0x4, 0x6, 0x9, 0x1000, 0x0, 0x3, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) r0 = perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000140)='sched_switch\x00') perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0xa1, 0x8, 0x0, 0x0, 0x603e, 0x2000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffff, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0x4200, 0x0, 0x7ff, 0x7, 0x0, 0x0, 0x411, 0x0, 0x80000001, 0x0, 0x80000000}, 0x0, 0x1, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000029c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000001340)='sched_switch\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x100002, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000200)=0x7) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x35af000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, &(0x7f0000000040)) r3 = syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000400)=0x5) perf_event_open(&(0x7f0000000380)={0x3, 0x80, 0x40, 0x2, 0x80, 0x68, 0x0, 0xe4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000240), 0xf}, 0x1000, 0x4, 0x4, 0x0, 0x9, 0x7, 0x1f, 0x0, 0xf0000000, 0x0, 0x5}, r3, 0xffffffffffffffff, r1, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x6, 0x4, 0x80, 0x5, 0x0, 0x9, 0x672518fd5deb841d, 0xe, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xca, 0x4, @perf_bp={&(0x7f0000000100), 0x4}, 0x5102, 0xff, 0x2, 0x4, 0x6, 0x9, 0x1000, 0x0, 0x3, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa) (async) perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x1) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000140)='sched_switch\x00') (async) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0xa1, 0x8, 0x0, 0x0, 0x603e, 0x2000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffff, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0x4200, 0x0, 0x7ff, 0x7, 0x0, 0x0, 0x411, 0x0, 0x80000001, 0x0, 0x80000000}, 0x0, 0x1, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async) bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000029c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000001340)='sched_switch\x00', r1}, 0x10) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x100002, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000200)=0x7) (async) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x35af000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, &(0x7f0000000040)) (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000400)=0x5) (async) perf_event_open(&(0x7f0000000380)={0x3, 0x80, 0x40, 0x2, 0x80, 0x68, 0x0, 0xe4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000240), 0xf}, 0x1000, 0x4, 0x4, 0x0, 0x9, 0x7, 0x1f, 0x0, 0xf0000000, 0x0, 0x5}, r3, 0xffffffffffffffff, r1, 0x0) (async) 13:52:32 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:32 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='btrfs_handle_em_exist\x00'}, 0x10) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) (async) r5 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000280)={&(0x7f0000000240)='./file0\x00'}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000180)='btrfs_clear_extent_bit\x00', r5}, 0x10) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) (async) openat$cgroup_ro(r4, &(0x7f0000000100)='cpuset.effective_mems\x00', 0x0, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 103.632043][ T6430] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 103.640280][ T6430] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 103.648094][ T6430] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 103.655904][ T6430] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 103.663720][ T6430] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 103.671526][ T6430] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 103.679343][ T6430] 13:52:32 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x4100000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:32 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:32 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='btrfs_handle_em_exist\x00'}, 0x10) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) (async) r5 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000280)={&(0x7f0000000240)='./file0\x00'}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000180)='btrfs_clear_extent_bit\x00', r5}, 0x10) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_ro(r4, &(0x7f0000000100)='cpuset.effective_mems\x00', 0x0, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:32 executing program 3: perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x3) r0 = perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x7, 0xb8, 0x1, 0x0, 0x0, 0x80000001, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x1}, 0x42006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x8, 0xffffffffffffffff, 0x0) perf_event_open$cgroup(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x800, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x50110, 0x7, 0x5, 0x0, 0x0, 0x1, 0x10, 0x0, 0x51}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_exit\x00'}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) r1 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r1, 0x0) perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x1f, 0x6, 0x7f, 0xa1, 0x0, 0x8b3, 0x6400, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0x6, 0xffffffffffffffc0}, 0x11008, 0x4, 0x7952, 0x5, 0x5, 0x6, 0x6, 0x0, 0x101, 0x0, 0x2}, r1, 0x10, r0, 0xb) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={0xffffffffffffffff, 0x0, 0xfa, 0x49, &(0x7f0000000280)="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", &(0x7f0000000380)=""/73, 0x0, 0x0, 0x3a, 0x13, &(0x7f0000000000)="32ee0b93e88b2e50e35ab3055addb07e5f070c94139a208f948be06dfcd4bed8227793cf865b852812dd2fc023ce03727a494156dd36085105ed", &(0x7f0000000140)="eef2892f00491fd7bd62199653df4ef356c0a1", 0x0, 0x4}, 0x48) 13:52:32 executing program 4: r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x4, 0x80, 0x1f, 0x2, 0xc0, 0x7f, 0x0, 0x0, 0x700, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0x18, 0x841, 0x800000, 0x4, 0x8, 0x9, 0x800, 0x0, 0x81, 0x0, 0x8000000000000000}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0xffffffffffffffff, r0, 0x0, 0x3c, &(0x7f0000000080)='cgroup\x00O\x12\x1d\xaf\xa6\x91\a\xa8\xc0\xc9\xd5\xa3\xabpy`\xd52p[\x11\x1a\bS>\xaaD$w.y;\xdf\xaf\xf8tm\x1d\xe9\x95\x84\xb4O\xf3P\x98\xf8YtS\xc9\xd0s'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:32 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 66) 13:52:32 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:32 executing program 4: r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x4, 0x80, 0x1f, 0x2, 0xc0, 0x7f, 0x0, 0x0, 0x700, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0x18, 0x841, 0x800000, 0x4, 0x8, 0x9, 0x800, 0x0, 0x81, 0x0, 0x8000000000000000}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0xffffffffffffffff, r0, 0x0, 0x3c, &(0x7f0000000080)='cgroup\x00O\x12\x1d\xaf\xa6\x91\a\xa8\xc0\xc9\xd5\xa3\xabpy`\xd52p[\x11\x1a\bS>\xaaD$w.y;\xdf\xaf\xf8tm\x1d\xe9\x95\x84\xb4O\xf3P\x98\xf8YtS\xc9\xd0s'}, 0x30) (async, rerun: 32) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (rerun: 32) r2 = openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:32 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 103.849218][ T6480] FAULT_INJECTION: forcing a failure. [ 103.849218][ T6480] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 103.901007][ T6480] CPU: 0 PID: 6480 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 103.911010][ T6480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 103.920900][ T6480] Call Trace: [ 103.924024][ T6480] [ 103.926824][ T6480] dump_stack_lvl+0x151/0x1b7 [ 103.931314][ T6480] ? bfq_pos_tree_add_move+0x43e/0x43e [ 103.936614][ T6480] dump_stack+0x15/0x17 [ 103.940604][ T6480] should_fail+0x3c0/0x510 [ 103.944856][ T6480] should_fail_alloc_page+0x58/0x70 [ 103.950005][ T6480] __alloc_pages+0x1de/0x7c0 [ 103.954428][ T6480] ? __count_vm_events+0x30/0x30 [ 103.959201][ T6480] ? __this_cpu_preempt_check+0x13/0x20 [ 103.964587][ T6480] pte_alloc_one+0x73/0x1b0 [ 103.968925][ T6480] ? pfn_modify_allowed+0x2e0/0x2e0 [ 103.974042][ T6480] ? preempt_schedule+0xd9/0xe0 [ 103.978729][ T6480] ? preempt_schedule_common+0xcb/0x100 [ 103.984108][ T6480] __pte_alloc+0x86/0x350 [ 103.988276][ T6480] ? free_pgtables+0x210/0x210 [ 103.992874][ T6480] ? _raw_spin_lock+0xa3/0x1b0 [ 103.997476][ T6480] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 104.002683][ T6480] ? preempt_schedule_thunk+0x16/0x18 [ 104.007892][ T6480] copy_pte_range+0x1b1f/0x20b0 [ 104.012583][ T6480] ? __kunmap_atomic+0x80/0x80 [ 104.017176][ T6480] ? __kasan_slab_alloc+0xc4/0xe0 [ 104.022038][ T6480] ? __kasan_slab_alloc+0xb2/0xe0 [ 104.026906][ T6480] ? kmem_cache_alloc+0x189/0x2f0 [ 104.031759][ T6480] ? vm_area_dup+0x26/0x1d0 [ 104.036096][ T6480] ? dup_mmap+0x6b8/0xea0 [ 104.040261][ T6480] ? dup_mm+0x91/0x330 [ 104.044181][ T6480] ? copy_mm+0x108/0x1b0 [ 104.048248][ T6480] ? copy_process+0x1295/0x3250 [ 104.052939][ T6480] ? kernel_clone+0x22d/0x990 [ 104.057446][ T6480] ? __x64_sys_clone+0x289/0x310 [ 104.062224][ T6480] ? do_syscall_64+0x44/0xd0 [ 104.066643][ T6480] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 104.072556][ T6480] copy_page_range+0xc1e/0x1090 [ 104.077248][ T6480] ? pfn_valid+0x1e0/0x1e0 [ 104.081492][ T6480] dup_mmap+0x99f/0xea0 [ 104.085489][ T6480] ? __delayed_free_task+0x20/0x20 [ 104.090430][ T6480] ? mm_init+0x807/0x960 [ 104.094510][ T6480] dup_mm+0x91/0x330 [ 104.098237][ T6480] copy_mm+0x108/0x1b0 [ 104.102144][ T6480] copy_process+0x1295/0x3250 [ 104.106745][ T6480] ? proc_fail_nth_write+0x213/0x290 [ 104.111865][ T6480] ? proc_fail_nth_read+0x220/0x220 [ 104.116917][ T6480] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 104.121850][ T6480] ? vfs_write+0x9af/0x1050 [ 104.126187][ T6480] ? vmacache_update+0xb7/0x120 [ 104.131396][ T6480] kernel_clone+0x22d/0x990 [ 104.135739][ T6480] ? file_end_write+0x1b0/0x1b0 [ 104.140425][ T6480] ? __kasan_check_write+0x14/0x20 [ 104.145457][ T6480] ? create_io_thread+0x1e0/0x1e0 [ 104.150316][ T6480] ? __mutex_lock_slowpath+0x10/0x10 [ 104.155436][ T6480] __x64_sys_clone+0x289/0x310 [ 104.160034][ T6480] ? __do_sys_vfork+0x130/0x130 [ 104.164723][ T6480] ? debug_smp_processor_id+0x17/0x20 [ 104.169932][ T6480] do_syscall_64+0x44/0xd0 [ 104.174183][ T6480] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 104.179911][ T6480] RIP: 0033:0x7f35007595a9 [ 104.184165][ T6480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 104.203608][ T6480] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 104.211849][ T6480] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 104.219661][ T6480] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 104.227473][ T6480] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 104.235283][ T6480] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 104.243092][ T6480] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 104.250906][ T6480] 13:52:32 executing program 0: perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x1c, 0x2, 0x1, 0x0, 0xcff, 0x4202, 0x7, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x10000, 0x1, @perf_bp={&(0x7f0000000040)}, 0x12200, 0x7, 0x3, 0x7, 0x800, 0x7, 0x0, 0x0, 0x4, 0x0, 0x1}, 0x0, 0xa, 0xffffffffffffffff, 0x9) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001c40)=ANY=[@ANYBLOB="b70200000f0e1d09bfa300000000000024020000fffeff7f7a03f0fff8ffffff79a4f0ff00000000b7060000d0b68af1de640300000000007502faff07cd02020404000003007d60b70300000d1000006a0a00fe0000000d8500000026000000b70000000604002995000000000000001da5ad3548ebb63d18db6a1c72821c9b763e13308fbcd5c5e4a5ad1059b5725ac60c2ceaea4c0ec908abb6e7325ec1956bd8660bf3664148a2c96752fe2bb328dff1aa503b8de7ab9a780001000000000000d4bf20c2bd152d814f01f2cd539e030b0000000000007f4182f32333b08e6e497640000000aea5cac0ceafdb9a2eeb02a1f5104d16ddb64963d84d91004cd5817e0b7f005e6ee7a39e2f0b5a18ed786b783ab1321ea5e82ae5ba2c42a5e23ea6253d5df768d0cb9f35e4f41a62d79b4c03e53466fa4f22d8c19f958e8b34de3535e7dacf1b13f7e851ec843c2288e7ff949a7a48ce18799ee53de177a81ea67a8f84538a9a311c754e5ab59a43fdb6e60296bbbca0f56d2085786e7ec07d78917f7169f006f3f5c95177fbd0b14b36259e2905ef911785c88a16aae46084d676d8ef8aa6ecc2d34a442bc098f4fcc96623b7c373b0ef04d55b846b094b0d6c7a75a76d445e0dcdf72c7ef97e08000000007b6e09a6a7caffff0000141f65e7d9ebe3be70c4364333af9a9d91c3e41ac37a63f85ad8254479c12f7c84fa5df32b70a80cce69cf30d3d67d84ccf3f9db9b690111de2ddc4b153c989ef100bbf76063d3f6ffffb73d70e9c3d7b90aecf48eb19767e00b75041739952fe87fde27ce01893f54ec0ea8e792414f639bc9ce1fea3f6ac0d7686bc2e1b45577c205c70631e8ad585951950e851250540593e61860b69a521f4e210b6494e3c52d927195737945cc03d5668483151710de246420a1b6c55b73876a6ed7f58bde38b44ab13d980c894e00009338923789a1edcd8043fe83919088383268324a25df14010c8ea79c0d93ca77fd6c7ee30ea3aad2c6d6b8c97c00eaa00ff9bc46e1cfecbdc0e4ffac53e8f76c8b556306b409d04544d3a7edd4d447d2fb431e226ae182b8dcc86fe09b404a0b7c723d3b19c3dc382fa91fb0fb8f9f3f13296bb1758b24aad0922091d49e2bc408a5a37d2fe7a60b903d2d9fe9c151c2fcc8dc389671c2d08b6e2641500568445b00cee4585af04fa69e0380be0d66649dcf3bf8a9066e596119109ea8b308ff070000aab1c95bb22cedd913b22dcaa197ccc34586dc50bd9f4628ebe757bae30b356521df06f995cb57f97052fc4158250ccecfb47ea8faf509593fadc76e5d3c6840ad05a57af1ede94d87590ce90a0a7579766f7ec4fcd3cb0b1a8c531724d5ef6b334803cedaa9cedf16dc3af6c9eb0dcca5303eed6689ea910900785f61278dde47e6672e93a314a5f60e7b682bf0cacde21f6090f4fb311afd7f8b48f3f0d8c66449d8687dcf2d0f76668b2b9bf8b3054d37959c529e99b7daf32acfed749d516d014cef5f98126324e202badc1e5c20d6a3576a770000000000005addc0103756b894418e4591c624a9b2ccabbfb888d413d923b0c901973cd7c9d197d6d8e64787c4d397f57a15b6e0b4212b6cb55b9c207bbe84f483b15f45b9a1d3af087047c568aef1d8659c6146a793026ebfc0bb5ec10b6290dc757a4903a88fb2c035f9349b6d2f0c051b8b775152786118a1020000fc19928ccb713ff09e179c308fbe9bc543dcf43f731074d96ef2447a2a4af5ca0c39e7ca2e801e57560a55e9cfa095cf3f74398219ad10e5e9d26631c2f1db3a2882f6e130a79517a88de7596429a20793e12616aa32b3e720c6521fbe933321adde8ca7dd99c0a0125ff8c18119a6926083f4a2c008a9f2a29e30823bf0ec3639cadaf9be9605a504bca38627df469cebb7db08358e1e5ab17eea477b1754f78f45468c9568471647f8bc03d11811ac6eec1741ceb39a3ecd9e3c325fcabbab3d12f6a759f7ce11dafa386ae15a139cae2d2b61cb06d381f57a8077db8a2230d2014a57bc8dd47741270000008000000000b2eebd5e1626cab98499328ff024a240199993433ceb5be20427a32df7047d63010dfc6a461517ad48ff64042e84c85c899fd11c6320a8d8fc0e78c15a5a4dd567f91dd943f62d167fed1b605965a5c2b32d094a461a990000000000000000000000000000000000000000000200000000000000000000b385c644a4a170e6dc9e9e546bba049d025b319abd87fd85481743db5d6c2cb6a204d45f88dd4140c8edb598a36e21ad132bf6b88c99c5a5ed047d6589c10a5f6633b01813fc5cd7d048469a966bbfb300fd772cbadf2cf26899bfd15e7d9408026a92f13f11d1c9832259b2f97227f84a3bb96253717a177ac091d0f4632f638b09a0307ff31729857f9e6fe9f19e481a3f77cead663f42456e080952636515c758f5047b2148944133a492ef20a1778088c42094903d6ece2497b99fc745c420b035ff7961484a0f62a2d957ae2e47ff1ea8a059f2d03bf9c3e8d2b16ab409de762522f6008de48bb70b698c5c9867437ac3127fad4bd699acaad78a5f66c7fc7d46e048082a0af61e6b052e473ed26b0309070ea10e985703b292c7336112b1f35c3b069363869dce725d8da75dcec76dcfa0c052feecee18c64c4600a0bc3d4945d4b918865bb7a8a726a500689cbdcfea99e793480fabf2a85e7a41d27d64b10f8e970469cf495b4a1b4ea8b5322f78e9f3048351b550c59a634b47981420081ea4da18b9d318fa001ce660b28bbcf3c1a8893d130b26d25e491f478ae4f95f71ea8897b34c5507008b8453f08a5ae1b3b4d8c83053c57637a98ef57e5fa51971eba5e287e9d90cba734336703defc13fe1659b157e5d9de7bfb929e715ed1a9a505a04a8d8474482295afbb9de90de2e918522cac2d5b5ac09d1fdc4fd7c6393a684ad7234ecb65d0008000000000000560ad146e8b9e9cd9b050edb1f6735c90a76b1ba4dbdee34d0b6750f25ba7251944ada7766c301c65e56351d009a568c782f4438ecba9bee47f25286300e83bd1853076ad52eac840293bd3c6e7f21e39a1af3d070abef94ac0827db0046dcb7d63bf64bf801c836a40b0100d0961533737c57e9b7337b981a99f63f600f90647703f0640f6594dd9f26436024a1f90f174769bad5a283271e6d7f49dec90a05bd771dd0502dc2170ccf98ade27e858eb5686ac900000000ae1bc4246ae31626af10bf02088b4bb2ac89c96e58578dc50eddbf46ece3cb8a363ecbeb8198997115d7151f691a2a755d8233e006dd38ed5ba350bd6aad3bf6f5108083f0100f8a20666e92ec7254ce7284157b57be455d16134d65ce69c4b906b76427224b69750b779d81eb6e37e1db62b1788ff918433787f8026ef5c518113d48419a14a2bd8d4afff527513a2efc8403be48e494b3de33b1deefd9d902e8dc868f30161c2cd13b21b0a20362181186ff8cf4c8d58d74822f92554287ee157e9f1597c3e2e238f382a91bf48b4de88363c841bd7a8cddae3344295bd3d434d9ecf74634ffc9539010f0d36e672b9d668cc6762c0b25e4a22afb4d184ba84498b1367e4b31faf75f1b3dcecfd80c57015d8cd16171507add30833865fc1a42780e9d57bb14a6ebea4018d26e18747546fc7a4a619753fd9ba9c18e746aa9ea132058eb90f9b80549473eea2fb9bc43d38d8719a1cca094bd933ceef87a3ec0c2ac70d5f843425100950000009e000000000008000018779600b1f2ae5ed34f5b7e77278f7ded9f030000002e050000009f95a59418f612dfa87c654043da1a59c3c43c7884ab65d4b34984afe30c67179c4f5a3ba0e491f2b942b754a3c0d5b878c4ad63591c3fc7d3a4d4296d4bab0a88e55ff9c2536654bb2f83e8015fac216119e8ce582698938c9a331a974087b71f07e50300f7ff00d03bf057b408c86a1165bd9a1bdbf3ddf88c9b2173a75d5fc82dce6d8a3f297231e33588d7cf183109c1118d94a41d48f8efcf193ff26908accba23f1ec1cff64a1b912ededeb080f9a241e07709e6dd6a3a7e18200c9e80b9634e6b0c4d000000000000000000000000000000005e50e77d04fcf8931ad07b38a39957e6b3a3c909000000e9d694e483e848fe0d00ee7c7d6cc30932a9575aa8808d10a4963560250bb4e60e88c726b63662cb143daf4b9ebd0774998a59fbb42dc35f12452cca456a12b7d15cf3ce7ea350e9510e96527cde622998683e65b235c284543ca32436f9e705dff00f08df1115175628a327876dea291480c2dde8a59d1856eed2b502965038af0d56e49e0e2e9cb0e25104805f386d460e212c27ac7bafe6a0078f8648ff9f1e0257338ae58457fb27010000809ac6a33ea11b88ae8bc95dffa293aa69d6d47f89b28a25a7ec2fce6691549990f93d1f02e1b619813699303b6b1260d5537e85315551adabe00c98282795dc5547aab3dcbd82a06e7f00c8160af19f1fc456b5fc4f099814631024b734c0cd8843c5cb124a21092e6cdd8aa2f4d3f93e92c6d850898890d9449e3f499af92be74ba8ba7928feabbd99d6288dece7513c50b973bab87214415078857d18032ab5adb8d4bf32405cc5f63eba7e60bcd0098fd7957943b3c4cf13de4e049e06ad7ebc236d1088c99d35f40555364ff86cab4542261999bccd3269e51d10900a1c05696b47ff33a159abce6bb1d69193bd01f59f1d3f431b4e0868db623cb8375baa50785b8fcd37ce4c52abe43c1e3368735022e7cc7a9b397b494d0183cbd8dae2ba19b32adc91444f519ad3b66b1faa78dd8e3f7e233b6048c53813e6b508dfc713583d8ef8f9cfff5cdae59aa7aca654b1740c90eb71ca000000000000000000000000000000000000000000faa53c07b5f590ee4c8bfbd828e912b150dde95dafe80ee043a107bde9c0bb87155691d640fd000000e4a2d2aa0607b026f78417471e6ea0d10000309b29d0dae2d2c9c730ac21cc2a6213596a784a09775f86a9e6d5b6c7b3c5d10177a873edb630fdf9b1e11005a1ce41d04a2ad3f5d25a1595e7609849033d2e86ac682f2f0cde376f50a88a3ab5e83f56e43a07641b82c077fa1479b79e85c71a9c00000000000000078ce7c4ab383dac0325fa7f4ffb201c479265ff572dd061679c0000000000000f4f6b4ef8eb757ac80dc44711ae17816e32e38d7c8b4ab51238b2d7051ee26121404c0ade6faea7e72449cf38be7173b066f3a7835a31f1516c4cb1fda57ec8c19bc2800e246c1b64cf278c7afb3c9a5e346bdb259ac6788eefd5086e45554c8e2bdde8a3ac990dd929277a6af1876940c7c012f4b7d3d7aa68f2f07d83e925b326b05f130000000000000000000000000000000003572023092306e73a16f4b362f725b22b32be04e53a2219e3b08d75537c158ea4c4821d17d3b844dbe87408c34bb0f26ba43bd4530afb769d45b93b8f2b6c194afc197f77bfb136dfd38c265479bd4f74b9d0b5c2f37eaacb2894370ab02a83b865c7a2753ca82ea8888f2a5063212212772dcc541de26c97c1312fc247b56a9cd3e05bcb8bc93363edfa05f9c76e94190f917c3af6884c25eb0000000000000000000000004ae9afd11c62a57a29a163acc55ca9fe6da9ce6d59bdd87adec5ba4052a5edcd9999720e8b2a08b69f79f78c78b9f720bcf6a2ab411d420db8231780cdf52d4498353ce1bc587700adf3a307ff11be0ca772f1bcc565070ec9a85c2d55f0506d9059fff65ca75c9809c8e5e423f6f210a195e9b59a08c43dab5b025b1dc33cfdafe62aa8f13c38341267a920fc0be4e61f0000000000000080896e3dfba3091cf028cdb3fabb530f1d0d4bdf3b13b2be391c5dda4b8b248ea58cb56aed4d968d506a108626e2423c506cc11bc2ec9de3b793fec489d08085e8c582cf6fc06c20eb57f7a1ba7315c67bd0e40f529a01211f8add5f28fd65fcd373982ae902e67966990cf34be5ed5dcf39b9e44fb0165fa40fcc5643678bab244a3a76f43dd267db562efe5156b8f37b81b756eeeeee4598195e70d74bd1e221c5e0cf111b816f8bd5c2ac451fabd160815b9e81b9c4abffef4b12d82e401a0cce36fbfedaec4ab6a89e128ef71e63f2239792338e87e4c7d571d6e4bc165ea1d476531b4d7c25b4d527240dafb074437aa96f66e293df31b7b7689ff290585e132fa95a2b505b9471c5df5ada66b291f8bf4cd7d66331c1d8f7f393db56406c8733fee718cf0e69376d2d0002a91bdde4e1f0ec03b54e206a07bcf89b271713fe449ed058622a8787328983f445af5bbd3dd228da6749dc3e9b63fc641ee5ab158392ecd80216793d4ad622a7a6a1c518ba3f9d8845d5d5d1a6c225555c42bf9f1915d6de289d02cb084e5594969d6c6e3726d5fcf62bac48d6e911bd314ad79876f9fe774021620ed9b3615a3fefc18120265320361d34a80f5c4a4a40ae9566d5ec6384c6bf74209f2dc46c17b4fcb961233f50d95d5c6792ac94e1b51faf7980d77741586cb44e92dc0a8313924303728116ef58ca1ae63d340060487508e8f036918f508f995faf1e209cb1a3f42b37a71a6ed32f88b54587a93f4d40427cdb580825af9390e5a69ce47c917fbb3136c6a33b8298e401ea8b8b199e9918b6e4d903b19784e0a8cc059a3ef3c4da381fa0ed18142c66cdf47cb9827fef137b439a7a2b989d9e957408a524ddd1e282fd328eafa2bdc7837bb6fa23ac78860e2f0a24eda3e35b114c1c74cd73c2cd456745c4e424ba5afa32627f025b729aecacc55fd7c91858e2822bcc083d5a93ecf167c401c7f4def5fd3358050a662ad6795e57904dcc786c3f61dfdd906f9f05a80fb2897c690e8a85ee681694ea4ce8820d1069614dcd19f2a5cfbadff5c4c63592ff70f0d79a484e6b1e3f39bb1503b36a97808ac702e1186df158c7f823d9e23a3ab3bf44de61203ce86ec3024ba634947b41951f3d1ce2e4a758d24a3e5782b57d64b3946ca7fdf1ed297ed4eae5d2709b2ae81b7872e46a64e8bcab998503778ba26699c937f858334e0f6b18650aeb359b0888fd465760249b6b02048785ff8e4261d2377f4c83e8d93fe064058cd551284632db19f856bc35ad5af67e3903b274a487a134c476c612ebbebaea990be724ac3ae537fd330fc68f69840fd56fb897a359a6d1cbb634f12e9ffb9a78249955d4724f318b0a3ac9c5a85f88ff346ef2f0b5eb7d8e5261c203ada067e2ea2be8b7f786fbd10fbd4a316020cc936e6380d29cbc7677d9064ecf1fc7bd86b462e3bbd28cb88a49d391ece3cb5e20fc4e653f827729508030742eae1a287f16b3f2186e13dc4fd752e1cc0f3c652453c260d067adfce6d71f83108979ad88955ad414ccd905fe6c3aed7f9073dfb7b488ce14305367bf047e96fc635b46c55f77faea1755af649f8300"/5285], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x171}, 0x48) 13:52:32 executing program 4: r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x4, 0x80, 0x1f, 0x2, 0xc0, 0x7f, 0x0, 0x0, 0x700, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0x18, 0x841, 0x800000, 0x4, 0x8, 0x9, 0x800, 0x0, 0x81, 0x0, 0x8000000000000000}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0xffffffffffffffff, r0, 0x0, 0x3c, &(0x7f0000000080)='cgroup\x00O\x12\x1d\xaf\xa6\x91\a\xa8\xc0\xc9\xd5\xa3\xabpy`\xd52p[\x11\x1a\bS>\xaaD$w.y;\xdf\xaf\xf8tm\x1d\xe9\x95\x84\xb4O\xf3P\x98\xf8YtS\xc9\xd0s'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:32 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:32 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:32 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x4903000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:32 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 67) 13:52:32 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="b28d58b4c382fec2e03f7d646f1334a3065324924e2e7e963f2d5cbd96935c1e2caf5c4c7bbbbdfe1bb76355347482eea89a8275714dd20e135a93d3e80fe30967edaeba507cb2d9b58e65418f054f25"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_freezer_state(r4, &(0x7f0000000080), 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 104.456830][ T6496] FAULT_INJECTION: forcing a failure. [ 104.456830][ T6496] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 104.482335][ T6496] CPU: 1 PID: 6496 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 104.492324][ T6496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 104.502213][ T6496] Call Trace: [ 104.505337][ T6496] [ 104.508117][ T6496] dump_stack_lvl+0x151/0x1b7 [ 104.512631][ T6496] ? bfq_pos_tree_add_move+0x43e/0x43e [ 104.517924][ T6496] dump_stack+0x15/0x17 [ 104.522023][ T6496] should_fail+0x3c0/0x510 [ 104.526258][ T6496] should_fail_alloc_page+0x58/0x70 [ 104.531289][ T6496] __alloc_pages+0x1de/0x7c0 [ 104.535809][ T6496] ? __count_vm_events+0x30/0x30 [ 104.540578][ T6496] ? dup_mm+0x91/0x330 [ 104.544481][ T6496] ? copy_mm+0x108/0x1b0 [ 104.548561][ T6496] ? copy_process+0x1295/0x3250 [ 104.553246][ T6496] ? kernel_clone+0x22d/0x990 [ 104.557770][ T6496] ? __x64_sys_clone+0x289/0x310 [ 104.562539][ T6496] pte_alloc_one+0x73/0x1b0 [ 104.566876][ T6496] ? pfn_modify_allowed+0x2e0/0x2e0 [ 104.571911][ T6496] ? __kasan_check_write+0x14/0x20 [ 104.576853][ T6496] ? __set_page_owner+0x2ee/0x310 [ 104.581804][ T6496] __pte_alloc+0x86/0x350 [ 104.585993][ T6496] ? post_alloc_hook+0x1ab/0x1b0 [ 104.590746][ T6496] ? free_pgtables+0x210/0x210 [ 104.595352][ T6496] ? get_page_from_freelist+0x38b/0x400 [ 104.600814][ T6496] copy_pte_range+0x1b1f/0x20b0 [ 104.605503][ T6496] ? __kunmap_atomic+0x80/0x80 [ 104.610097][ T6496] ? __pud_alloc+0x260/0x260 [ 104.614522][ T6496] ? copy_mm+0x108/0x1b0 [ 104.618601][ T6496] ? copy_process+0x1295/0x3250 [ 104.623290][ T6496] ? kernel_clone+0x22d/0x990 [ 104.627892][ T6496] ? __x64_sys_clone+0x289/0x310 [ 104.632663][ T6496] ? do_syscall_64+0x44/0xd0 [ 104.637092][ T6496] copy_page_range+0xc1e/0x1090 [ 104.641783][ T6496] ? pfn_valid+0x1e0/0x1e0 [ 104.646030][ T6496] dup_mmap+0x99f/0xea0 [ 104.650022][ T6496] ? __delayed_free_task+0x20/0x20 [ 104.654967][ T6496] ? mm_init+0x807/0x960 [ 104.659048][ T6496] dup_mm+0x91/0x330 [ 104.662788][ T6496] copy_mm+0x108/0x1b0 [ 104.666709][ T6496] copy_process+0x1295/0x3250 [ 104.671202][ T6496] ? proc_fail_nth_write+0x213/0x290 [ 104.676320][ T6496] ? proc_fail_nth_read+0x220/0x220 [ 104.681354][ T6496] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 104.686388][ T6496] ? vfs_write+0x9af/0x1050 [ 104.690740][ T6496] ? vmacache_update+0xb7/0x120 [ 104.695501][ T6496] kernel_clone+0x22d/0x990 [ 104.699841][ T6496] ? file_end_write+0x1b0/0x1b0 [ 104.704528][ T6496] ? __kasan_check_write+0x14/0x20 [ 104.709476][ T6496] ? create_io_thread+0x1e0/0x1e0 [ 104.714338][ T6496] ? __mutex_lock_slowpath+0x10/0x10 [ 104.719456][ T6496] __x64_sys_clone+0x289/0x310 [ 104.724054][ T6496] ? __do_sys_vfork+0x130/0x130 [ 104.728746][ T6496] ? debug_smp_processor_id+0x17/0x20 [ 104.733949][ T6496] do_syscall_64+0x44/0xd0 [ 104.738200][ T6496] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 104.743928][ T6496] RIP: 0033:0x7f35007595a9 [ 104.748186][ T6496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 104.767625][ T6496] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 104.775869][ T6496] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 104.783681][ T6496] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 104.791491][ T6496] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 104.799303][ T6496] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 13:52:32 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, 0xffffffffffffffff, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:33 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="b28d58b4c382fec2e03f7d646f1334a3065324924e2e7e963f2d5cbd96935c1e2caf5c4c7bbbbdfe1bb76355347482eea89a8275714dd20e135a93d3e80fe30967edaeba507cb2d9b58e65418f054f25"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) (async) openat$cgroup_freezer_state(r4, &(0x7f0000000080), 0x2, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:33 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x40000000, &(0x7f0000000140)="f888a2c1a70374fa055e4a700f6531bf69023359965071118cc67e6f4734343b988ff37638f47c0a1ee0f2ff3dac7be439eec972bb06f792683c2facc2c043eaae9d960f047ab21d49dc25aedb9a03723a9c1f20e1013097f86f1c0759ca0be5359eb942a8789146c3c0e489b275f9de4a76359f66f3896c58ef29fd77d40a459e01dfaf80d2bb4f1768", 0x8a, &(0x7f0000000000), &(0x7f0000000200), &(0x7f0000000240)="70bef29b93e520c8e92d0125f7dfe4a22148afe74fd778c68464c5c62adb82f02d25ae2429c07303c2f6d266d0a141e5c825b809ace3f350e80e0042e4fb3251aca284483b32e204951ca86423771d79dcd00c5ef53dde276ecec804e9836a78d2a283af3335f3f9aef80d9e2f3505c87316ffe2227532c709c5ca4576979f00c44cc2c3c05d32a6bd43b5542b5db2c2bfcfb4aef47e81a3db1abef7b1934c3bbe1b0d8553864708a00379812e") perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x30, 0x3f, 0xaf, 0x4, 0x0, 0x200, 0x810, 0x6, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, @perf_config_ext={0x7, 0x4}, 0x0, 0x7fffffffffffffff, 0x7, 0x0, 0x32, 0x0, 0x80, 0x0, 0x100, 0x0, 0x2}, r1, 0x2, r0, 0xa) 13:52:33 executing program 0: perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x1c, 0x2, 0x1, 0x0, 0xcff, 0x4202, 0x7, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x10000, 0x1, @perf_bp={&(0x7f0000000040)}, 0x12200, 0x7, 0x3, 0x7, 0x800, 0x7, 0x0, 0x0, 0x4, 0x0, 0x1}, 0x0, 0xa, 0xffffffffffffffff, 0x9) (async) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 32) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/5285], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x171}, 0x48) (rerun: 32) 13:52:33 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="b28d58b4c382fec2e03f7d646f1334a3065324924e2e7e963f2d5cbd96935c1e2caf5c4c7bbbbdfe1bb76355347482eea89a8275714dd20e135a93d3e80fe30967edaeba507cb2d9b58e65418f054f25"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_freezer_state(r4, &(0x7f0000000080), 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="b28d58b4c382fec2e03f7d646f1334a3065324924e2e7e963f2d5cbd96935c1e2caf5c4c7bbbbdfe1bb76355347482eea89a8275714dd20e135a93d3e80fe30967edaeba507cb2d9b58e65418f054f25"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) (async) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) (async) openat$cgroup_freezer_state(r4, &(0x7f0000000080), 0x2, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) [ 104.807114][ T6496] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 104.814930][ T6496] 13:52:33 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 68) 13:52:33 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r6, r7, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) [ 104.888955][ T6518] FAULT_INJECTION: forcing a failure. [ 104.888955][ T6518] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 104.907426][ T6518] CPU: 1 PID: 6518 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 104.917414][ T6518] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 104.927313][ T6518] Call Trace: [ 104.930432][ T6518] [ 104.933212][ T6518] dump_stack_lvl+0x151/0x1b7 [ 104.937722][ T6518] ? bfq_pos_tree_add_move+0x43e/0x43e [ 104.943101][ T6518] ? dump_stack_lvl+0x11/0x1b7 [ 104.947713][ T6518] dump_stack+0x15/0x17 [ 104.951697][ T6518] should_fail+0x3c0/0x510 [ 104.955946][ T6518] should_fail_alloc_page+0x58/0x70 [ 104.960982][ T6518] __alloc_pages+0x1de/0x7c0 [ 104.965413][ T6518] ? __count_vm_events+0x30/0x30 [ 104.970182][ T6518] ? __this_cpu_preempt_check+0x13/0x20 [ 104.975558][ T6518] ? __mod_node_page_state+0xac/0xf0 [ 104.980686][ T6518] ? __mod_lruvec_page_state+0x15f/0x1c0 [ 104.986151][ T6518] pte_alloc_one+0x73/0x1b0 [ 104.990499][ T6518] ? pfn_modify_allowed+0x2e0/0x2e0 [ 104.995525][ T6518] __pte_alloc+0x86/0x350 [ 104.999689][ T6518] ? free_pgtables+0x210/0x210 [ 105.004318][ T6518] ? _raw_spin_lock+0xa3/0x1b0 [ 105.008889][ T6518] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 105.014100][ T6518] ? unwind_get_return_address+0x4c/0x90 [ 105.019578][ T6518] copy_pte_range+0x1b1f/0x20b0 [ 105.024257][ T6518] ? stack_trace_save+0x12d/0x1f0 [ 105.029113][ T6518] ? anon_vma_clone+0xa1/0x4f0 [ 105.033717][ T6518] ? __kunmap_atomic+0x80/0x80 [ 105.038320][ T6518] ? dup_mmap+0x750/0xea0 [ 105.042486][ T6518] ? copy_mm+0x108/0x1b0 [ 105.046556][ T6518] ? copy_process+0x1295/0x3250 [ 105.051243][ T6518] ? kernel_clone+0x22d/0x990 [ 105.055842][ T6518] ? __x64_sys_clone+0x289/0x310 [ 105.060617][ T6518] ? do_syscall_64+0x44/0xd0 [ 105.065040][ T6518] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 105.070948][ T6518] copy_page_range+0xc1e/0x1090 [ 105.075635][ T6518] ? pfn_valid+0x1e0/0x1e0 [ 105.079977][ T6518] dup_mmap+0x99f/0xea0 [ 105.083964][ T6518] ? __delayed_free_task+0x20/0x20 [ 105.088910][ T6518] ? mm_init+0x807/0x960 [ 105.092990][ T6518] dup_mm+0x91/0x330 [ 105.096722][ T6518] copy_mm+0x108/0x1b0 [ 105.100634][ T6518] copy_process+0x1295/0x3250 [ 105.105143][ T6518] ? proc_fail_nth_write+0x213/0x290 [ 105.110267][ T6518] ? proc_fail_nth_read+0x220/0x220 [ 105.115308][ T6518] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 105.120242][ T6518] ? vfs_write+0x9af/0x1050 [ 105.124583][ T6518] ? vmacache_update+0xb7/0x120 [ 105.129272][ T6518] kernel_clone+0x22d/0x990 [ 105.133610][ T6518] ? file_end_write+0x1b0/0x1b0 [ 105.138297][ T6518] ? __kasan_check_write+0x14/0x20 [ 105.143243][ T6518] ? create_io_thread+0x1e0/0x1e0 [ 105.148120][ T6518] ? __mutex_lock_slowpath+0x10/0x10 [ 105.153226][ T6518] __x64_sys_clone+0x289/0x310 [ 105.157824][ T6518] ? __do_sys_vfork+0x130/0x130 [ 105.162557][ T6518] ? debug_smp_processor_id+0x17/0x20 [ 105.167724][ T6518] do_syscall_64+0x44/0xd0 [ 105.171972][ T6518] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 105.177730][ T6518] RIP: 0033:0x7f35007595a9 [ 105.181953][ T6518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 105.201392][ T6518] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 105.209637][ T6518] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 105.217451][ T6518] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 105.225262][ T6518] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 13:52:33 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cg\xf1Vup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) sendmsg(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) openat$cgroup_netprio_ifpriomap(r3, &(0x7f0000000080), 0x2, 0x0) r4 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:33 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r6, r7, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) [ 105.233082][ T6518] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 105.240885][ T6518] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 105.248702][ T6518] 13:52:33 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xb600000000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:33 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r6, r7, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:33 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x40000000, &(0x7f0000000140)="f888a2c1a70374fa055e4a700f6531bf69023359965071118cc67e6f4734343b988ff37638f47c0a1ee0f2ff3dac7be439eec972bb06f792683c2facc2c043eaae9d960f047ab21d49dc25aedb9a03723a9c1f20e1013097f86f1c0759ca0be5359eb942a8789146c3c0e489b275f9de4a76359f66f3896c58ef29fd77d40a459e01dfaf80d2bb4f1768", 0x8a, &(0x7f0000000000), &(0x7f0000000200), &(0x7f0000000240)="70bef29b93e520c8e92d0125f7dfe4a22148afe74fd778c68464c5c62adb82f02d25ae2429c07303c2f6d266d0a141e5c825b809ace3f350e80e0042e4fb3251aca284483b32e204951ca86423771d79dcd00c5ef53dde276ecec804e9836a78d2a283af3335f3f9aef80d9e2f3505c87316ffe2227532c709c5ca4576979f00c44cc2c3c05d32a6bd43b5542b5db2c2bfcfb4aef47e81a3db1abef7b1934c3bbe1b0d8553864708a00379812e") perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x30, 0x3f, 0xaf, 0x4, 0x0, 0x200, 0x810, 0x6, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, @perf_config_ext={0x7, 0x4}, 0x0, 0x7fffffffffffffff, 0x7, 0x0, 0x32, 0x0, 0x80, 0x0, 0x100, 0x0, 0x2}, r1, 0x2, r0, 0xa) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (async) syz_clone(0x40000000, &(0x7f0000000140)="f888a2c1a70374fa055e4a700f6531bf69023359965071118cc67e6f4734343b988ff37638f47c0a1ee0f2ff3dac7be439eec972bb06f792683c2facc2c043eaae9d960f047ab21d49dc25aedb9a03723a9c1f20e1013097f86f1c0759ca0be5359eb942a8789146c3c0e489b275f9de4a76359f66f3896c58ef29fd77d40a459e01dfaf80d2bb4f1768", 0x8a, &(0x7f0000000000), &(0x7f0000000200), &(0x7f0000000240)="70bef29b93e520c8e92d0125f7dfe4a22148afe74fd778c68464c5c62adb82f02d25ae2429c07303c2f6d266d0a141e5c825b809ace3f350e80e0042e4fb3251aca284483b32e204951ca86423771d79dcd00c5ef53dde276ecec804e9836a78d2a283af3335f3f9aef80d9e2f3505c87316ffe2227532c709c5ca4576979f00c44cc2c3c05d32a6bd43b5542b5db2c2bfcfb4aef47e81a3db1abef7b1934c3bbe1b0d8553864708a00379812e") (async) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x30, 0x3f, 0xaf, 0x4, 0x0, 0x200, 0x810, 0x6, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, @perf_config_ext={0x7, 0x4}, 0x0, 0x7fffffffffffffff, 0x7, 0x0, 0x32, 0x0, 0x80, 0x0, 0x100, 0x0, 0x2}, r1, 0x2, r0, 0xa) (async) 13:52:33 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cg\xf1Vup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) openat$cgroup_netprio_ifpriomap(r3, &(0x7f0000000080), 0x2, 0x0) (async, rerun: 32) r4 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (rerun: 32) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:33 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 69) [ 105.578258][ T6544] FAULT_INJECTION: forcing a failure. [ 105.578258][ T6544] name failslab, interval 1, probability 0, space 0, times 0 [ 105.600453][ T6544] CPU: 1 PID: 6544 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 105.610446][ T6544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 105.620431][ T6544] Call Trace: [ 105.623557][ T6544] [ 105.626335][ T6544] dump_stack_lvl+0x151/0x1b7 [ 105.630844][ T6544] ? bfq_pos_tree_add_move+0x43e/0x43e [ 105.636143][ T6544] dump_stack+0x15/0x17 [ 105.640138][ T6544] should_fail+0x3c0/0x510 [ 105.644385][ T6544] __should_failslab+0x9f/0xe0 [ 105.648986][ T6544] should_failslab+0x9/0x20 [ 105.653322][ T6544] kmem_cache_alloc+0x4f/0x2f0 [ 105.658047][ T6544] ? vm_area_dup+0x26/0x1d0 [ 105.662386][ T6544] vm_area_dup+0x26/0x1d0 [ 105.666550][ T6544] dup_mmap+0x6b8/0xea0 [ 105.670543][ T6544] ? __delayed_free_task+0x20/0x20 [ 105.675486][ T6544] ? mm_init+0x807/0x960 [ 105.679564][ T6544] dup_mm+0x91/0x330 [ 105.683297][ T6544] copy_mm+0x108/0x1b0 [ 105.687204][ T6544] copy_process+0x1295/0x3250 [ 105.691735][ T6544] ? proc_fail_nth_write+0x213/0x290 [ 105.696842][ T6544] ? proc_fail_nth_read+0x220/0x220 [ 105.701900][ T6544] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 105.706816][ T6544] ? vfs_write+0x9af/0x1050 [ 105.711159][ T6544] ? vmacache_update+0xb7/0x120 [ 105.715842][ T6544] kernel_clone+0x22d/0x990 [ 105.720183][ T6544] ? file_end_write+0x1b0/0x1b0 [ 105.724871][ T6544] ? __kasan_check_write+0x14/0x20 [ 105.729819][ T6544] ? create_io_thread+0x1e0/0x1e0 [ 105.734675][ T6544] ? __mutex_lock_slowpath+0x10/0x10 [ 105.739808][ T6544] __x64_sys_clone+0x289/0x310 [ 105.744399][ T6544] ? __do_sys_vfork+0x130/0x130 [ 105.749089][ T6544] ? debug_smp_processor_id+0x17/0x20 [ 105.754297][ T6544] do_syscall_64+0x44/0xd0 [ 105.758558][ T6544] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 105.764292][ T6544] RIP: 0033:0x7f35007595a9 [ 105.768620][ T6544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 105.788055][ T6544] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 105.796298][ T6544] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 105.804112][ T6544] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 105.811921][ T6544] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 105.819731][ T6544] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 13:52:34 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xf5ffffff00000000, &(0x7f0000000040), 0x0, 0x0) 13:52:34 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, 0xffffffffffffffff, r6, r7, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:34 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 70) 13:52:34 executing program 0: perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x1c, 0x2, 0x1, 0x0, 0xcff, 0x4202, 0x7, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x10000, 0x1, @perf_bp={&(0x7f0000000040)}, 0x12200, 0x7, 0x3, 0x7, 0x800, 0x7, 0x0, 0x0, 0x4, 0x0, 0x1}, 0x0, 0xa, 0xffffffffffffffff, 0x9) (async) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/5285], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x171}, 0x48) [ 105.827756][ T6544] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 105.835713][ T6544] 13:52:34 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, 0xffffffffffffffff, r6, r7, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) [ 105.905615][ T6563] FAULT_INJECTION: forcing a failure. [ 105.905615][ T6563] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 105.943824][ T6563] CPU: 0 PID: 6563 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 13:52:34 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, 0xffffffffffffffff, r6, r7, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) [ 105.953820][ T6563] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 105.963720][ T6563] Call Trace: [ 105.966841][ T6563] [ 105.969617][ T6563] dump_stack_lvl+0x151/0x1b7 [ 105.974131][ T6563] ? bfq_pos_tree_add_move+0x43e/0x43e [ 105.979429][ T6563] dump_stack+0x15/0x17 [ 105.983430][ T6563] should_fail+0x3c0/0x510 [ 105.987677][ T6563] should_fail_alloc_page+0x58/0x70 [ 105.992702][ T6563] __alloc_pages+0x1de/0x7c0 [ 105.997140][ T6563] ? __count_vm_events+0x30/0x30 [ 106.001905][ T6563] ? __this_cpu_preempt_check+0x13/0x20 [ 106.007287][ T6563] ? __mod_node_page_state+0xac/0xf0 [ 106.012404][ T6563] pte_alloc_one+0x73/0x1b0 [ 106.016741][ T6563] ? pfn_modify_allowed+0x2e0/0x2e0 [ 106.021790][ T6563] __pte_alloc+0x86/0x350 [ 106.025938][ T6563] ? free_pgtables+0x210/0x210 [ 106.030555][ T6563] ? _raw_spin_lock+0xa3/0x1b0 [ 106.035141][ T6563] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 106.040431][ T6563] ? __kernel_text_address+0x9a/0x110 [ 106.045639][ T6563] copy_pte_range+0x1b1f/0x20b0 [ 106.050329][ T6563] ? __kunmap_atomic+0x80/0x80 [ 106.054924][ T6563] ? __kasan_slab_alloc+0xc4/0xe0 [ 106.059784][ T6563] ? __kasan_slab_alloc+0xb2/0xe0 [ 106.064645][ T6563] ? kmem_cache_alloc+0x189/0x2f0 [ 106.069507][ T6563] ? vm_area_dup+0x26/0x1d0 [ 106.073856][ T6563] ? dup_mmap+0x6b8/0xea0 [ 106.078015][ T6563] ? dup_mm+0x91/0x330 [ 106.081920][ T6563] ? copy_mm+0x108/0x1b0 [ 106.085999][ T6563] ? copy_process+0x1295/0x3250 [ 106.090685][ T6563] ? kernel_clone+0x22d/0x990 [ 106.095199][ T6563] ? __x64_sys_clone+0x289/0x310 [ 106.099969][ T6563] ? do_syscall_64+0x44/0xd0 [ 106.104425][ T6563] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 106.110313][ T6563] copy_page_range+0xc1e/0x1090 [ 106.114994][ T6563] ? pfn_valid+0x1e0/0x1e0 [ 106.119241][ T6563] dup_mmap+0x99f/0xea0 [ 106.123237][ T6563] ? __delayed_free_task+0x20/0x20 [ 106.128180][ T6563] ? mm_init+0x807/0x960 [ 106.132379][ T6563] dup_mm+0x91/0x330 [ 106.136103][ T6563] copy_mm+0x108/0x1b0 [ 106.140010][ T6563] copy_process+0x1295/0x3250 [ 106.144523][ T6563] ? proc_fail_nth_write+0x213/0x290 [ 106.149640][ T6563] ? proc_fail_nth_read+0x220/0x220 [ 106.154675][ T6563] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 106.159621][ T6563] ? vfs_write+0x9af/0x1050 [ 106.163961][ T6563] ? vmacache_update+0xb7/0x120 [ 106.168649][ T6563] kernel_clone+0x22d/0x990 [ 106.172987][ T6563] ? file_end_write+0x1b0/0x1b0 [ 106.177675][ T6563] ? __kasan_check_write+0x14/0x20 [ 106.182620][ T6563] ? create_io_thread+0x1e0/0x1e0 [ 106.187481][ T6563] ? __mutex_lock_slowpath+0x10/0x10 [ 106.192602][ T6563] __x64_sys_clone+0x289/0x310 [ 106.197202][ T6563] ? __do_sys_vfork+0x130/0x130 [ 106.201887][ T6563] ? fpregs_restore_userregs+0x1f0/0x3a0 [ 106.207365][ T6563] ? switch_fpu_return+0xe/0x10 [ 106.212049][ T6563] do_syscall_64+0x44/0xd0 [ 106.216297][ T6563] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 106.222025][ T6563] RIP: 0033:0x7f35007595a9 [ 106.226278][ T6563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 106.245717][ T6563] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 13:52:34 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cg\xf1Vup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) sendmsg(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) openat$cgroup_netprio_ifpriomap(r3, &(0x7f0000000080), 0x2, 0x0) r4 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:34 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:34 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 71) [ 106.253963][ T6563] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 106.261773][ T6563] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 106.269586][ T6563] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 106.277395][ T6563] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 106.285208][ T6563] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 106.293024][ T6563] [ 106.335137][ T6572] FAULT_INJECTION: forcing a failure. [ 106.335137][ T6572] name failslab, interval 1, probability 0, space 0, times 0 [ 106.347805][ T6572] CPU: 0 PID: 6572 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 106.357780][ T6572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 106.367672][ T6572] Call Trace: [ 106.370898][ T6572] [ 106.373674][ T6572] dump_stack_lvl+0x151/0x1b7 [ 106.378189][ T6572] ? bfq_pos_tree_add_move+0x43e/0x43e [ 106.383481][ T6572] dump_stack+0x15/0x17 [ 106.387476][ T6572] should_fail+0x3c0/0x510 [ 106.391735][ T6572] __should_failslab+0x9f/0xe0 [ 106.396323][ T6572] should_failslab+0x9/0x20 [ 106.400662][ T6572] kmem_cache_alloc+0x4f/0x2f0 [ 106.405261][ T6572] ? vm_area_dup+0x26/0x1d0 [ 106.409637][ T6572] vm_area_dup+0x26/0x1d0 [ 106.413770][ T6572] dup_mmap+0x6b8/0xea0 [ 106.417760][ T6572] ? __delayed_free_task+0x20/0x20 [ 106.422708][ T6572] ? mm_init+0x807/0x960 [ 106.426786][ T6572] dup_mm+0x91/0x330 [ 106.430519][ T6572] copy_mm+0x108/0x1b0 [ 106.434425][ T6572] copy_process+0x1295/0x3250 [ 106.438938][ T6572] ? proc_fail_nth_write+0x213/0x290 [ 106.444059][ T6572] ? proc_fail_nth_read+0x220/0x220 [ 106.449095][ T6572] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 106.454037][ T6572] ? vfs_write+0x9af/0x1050 [ 106.458377][ T6572] ? vmacache_update+0xb7/0x120 [ 106.463067][ T6572] kernel_clone+0x22d/0x990 [ 106.467406][ T6572] ? file_end_write+0x1b0/0x1b0 [ 106.472091][ T6572] ? __kasan_check_write+0x14/0x20 [ 106.477038][ T6572] ? create_io_thread+0x1e0/0x1e0 [ 106.481898][ T6572] ? __mutex_lock_slowpath+0x10/0x10 [ 106.487022][ T6572] __x64_sys_clone+0x289/0x310 [ 106.491623][ T6572] ? __do_sys_vfork+0x130/0x130 [ 106.496311][ T6572] ? debug_smp_processor_id+0x17/0x20 [ 106.501516][ T6572] do_syscall_64+0x44/0xd0 [ 106.505856][ T6572] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 106.511582][ T6572] RIP: 0033:0x7f35007595a9 [ 106.515836][ T6572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 106.535279][ T6572] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 106.543522][ T6572] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 106.551335][ T6572] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 106.559144][ T6572] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 106.566956][ T6572] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 106.574771][ T6572] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 106.582588][ T6572] 13:52:35 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 72) 13:52:35 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) (async) r1 = syz_clone(0x40000000, &(0x7f0000000140)="f888a2c1a70374fa055e4a700f6531bf69023359965071118cc67e6f4734343b988ff37638f47c0a1ee0f2ff3dac7be439eec972bb06f792683c2facc2c043eaae9d960f047ab21d49dc25aedb9a03723a9c1f20e1013097f86f1c0759ca0be5359eb942a8789146c3c0e489b275f9de4a76359f66f3896c58ef29fd77d40a459e01dfaf80d2bb4f1768", 0x8a, &(0x7f0000000000), &(0x7f0000000200), &(0x7f0000000240)="70bef29b93e520c8e92d0125f7dfe4a22148afe74fd778c68464c5c62adb82f02d25ae2429c07303c2f6d266d0a141e5c825b809ace3f350e80e0042e4fb3251aca284483b32e204951ca86423771d79dcd00c5ef53dde276ecec804e9836a78d2a283af3335f3f9aef80d9e2f3505c87316ffe2227532c709c5ca4576979f00c44cc2c3c05d32a6bd43b5542b5db2c2bfcfb4aef47e81a3db1abef7b1934c3bbe1b0d8553864708a00379812e") perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x30, 0x3f, 0xaf, 0x4, 0x0, 0x200, 0x810, 0x6, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, @perf_config_ext={0x7, 0x4}, 0x0, 0x7fffffffffffffff, 0x7, 0x0, 0x32, 0x0, 0x80, 0x0, 0x100, 0x0, 0x2}, r1, 0x2, r0, 0xa) 13:52:35 executing program 0: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cg\xf1Vup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) sendmsg(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) openat$cgroup_netprio_ifpriomap(r3, &(0x7f0000000080), 0x2, 0x0) r4 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:35 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) openat$cgroup_ro(r2, &(0x7f0000000280)='memory.events.local\x00', 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgr\xcf-w\x05'}, 0x30) r3 = getpid() r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='blkio.throttle.read_iops_device\x00', 0x2, 0x0) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x80, 0x1, 0x8, 0xc9, 0x0, 0x0, 0x6880, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_bp={&(0x7f0000000100), 0x6}, 0x1202, 0x8, 0x3ba, 0x5, 0xf, 0x401, 0x1000, 0x0, 0x317, 0x0, 0x5}, r3, 0xe, r5, 0x1) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz0\x00', 0x200002, 0x0) r7 = openat$cgroup_int(r6, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) openat$cgroup_ro(r6, &(0x7f00000000c0)='pids.events\x00', 0x0, 0x0) write$cgroup_int(r7, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:35 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xfbffffff00000000, &(0x7f0000000040), 0x0, 0x0) 13:52:35 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:35 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) (async) openat$cgroup_ro(r2, &(0x7f0000000280)='memory.events.local\x00', 0x0, 0x0) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgr\xcf-w\x05'}, 0x30) r3 = getpid() (async) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='blkio.throttle.read_iops_device\x00', 0x2, 0x0) (async) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) (async) perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x80, 0x1, 0x8, 0xc9, 0x0, 0x0, 0x6880, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_bp={&(0x7f0000000100), 0x6}, 0x1202, 0x8, 0x3ba, 0x5, 0xf, 0x401, 0x1000, 0x0, 0x317, 0x0, 0x5}, r3, 0xe, r5, 0x1) (async) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz0\x00', 0x200002, 0x0) r7 = openat$cgroup_int(r6, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) openat$cgroup_ro(r6, &(0x7f00000000c0)='pids.events\x00', 0x0, 0x0) write$cgroup_int(r7, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 106.701104][ T6581] FAULT_INJECTION: forcing a failure. [ 106.701104][ T6581] name failslab, interval 1, probability 0, space 0, times 0 [ 106.720462][ T6581] CPU: 1 PID: 6581 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 106.730460][ T6581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 106.740452][ T6581] Call Trace: [ 106.743606][ T6581] [ 106.746354][ T6581] dump_stack_lvl+0x151/0x1b7 [ 106.750867][ T6581] ? bfq_pos_tree_add_move+0x43e/0x43e [ 106.756159][ T6581] dump_stack+0x15/0x17 [ 106.760152][ T6581] should_fail+0x3c0/0x510 [ 106.764405][ T6581] __should_failslab+0x9f/0xe0 [ 106.769004][ T6581] should_failslab+0x9/0x20 [ 106.773343][ T6581] kmem_cache_alloc+0x4f/0x2f0 [ 106.777943][ T6581] ? vm_area_dup+0x26/0x1d0 [ 106.782284][ T6581] vm_area_dup+0x26/0x1d0 [ 106.786449][ T6581] dup_mmap+0x6b8/0xea0 [ 106.790443][ T6581] ? __delayed_free_task+0x20/0x20 [ 106.795390][ T6581] ? mm_init+0x807/0x960 [ 106.799479][ T6581] dup_mm+0x91/0x330 [ 106.803199][ T6581] copy_mm+0x108/0x1b0 [ 106.807103][ T6581] copy_process+0x1295/0x3250 [ 106.811614][ T6581] ? proc_fail_nth_write+0x213/0x290 [ 106.816737][ T6581] ? proc_fail_nth_read+0x220/0x220 [ 106.821771][ T6581] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 106.826716][ T6581] ? vfs_write+0x9af/0x1050 [ 106.831063][ T6581] ? vmacache_update+0xb7/0x120 [ 106.835746][ T6581] kernel_clone+0x22d/0x990 [ 106.840082][ T6581] ? file_end_write+0x1b0/0x1b0 [ 106.844767][ T6581] ? __kasan_check_write+0x14/0x20 [ 106.849719][ T6581] ? create_io_thread+0x1e0/0x1e0 [ 106.854577][ T6581] ? __mutex_lock_slowpath+0x10/0x10 [ 106.859697][ T6581] __x64_sys_clone+0x289/0x310 [ 106.864301][ T6581] ? __do_sys_vfork+0x130/0x130 [ 106.868988][ T6581] ? debug_smp_processor_id+0x17/0x20 [ 106.874192][ T6581] do_syscall_64+0x44/0xd0 [ 106.878445][ T6581] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 106.884173][ T6581] RIP: 0033:0x7f35007595a9 [ 106.888426][ T6581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 106.907866][ T6581] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 106.916148][ T6581] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 106.923924][ T6581] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 106.931733][ T6581] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 106.939568][ T6581] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 13:52:35 executing program 4: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r0}, 0x10) r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8) write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef) (async) openat$cgroup_ro(r2, &(0x7f0000000280)='memory.events.local\x00', 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgr\xcf-w\x05'}, 0x30) (async) r3 = getpid() (async) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000240)='blkio.throttle.read_iops_device\x00', 0x2, 0x0) (async) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) (async) perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x80, 0x1, 0x8, 0xc9, 0x0, 0x0, 0x6880, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_bp={&(0x7f0000000100), 0x6}, 0x1202, 0x8, 0x3ba, 0x5, 0xf, 0x401, 0x1000, 0x0, 0x317, 0x0, 0x5}, r3, 0xe, r5, 0x1) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz0\x00', 0x200002, 0x0) r7 = openat$cgroup_int(r6, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) openat$cgroup_ro(r6, &(0x7f00000000c0)='pids.events\x00', 0x0, 0x0) (async) write$cgroup_int(r7, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:35 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:35 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x5, 0x4, 0x7, 0x3, 0x0, 0x100000000, 0x20860, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000000080), 0xa}, 0x302, 0x8, 0x3, 0xc, 0x7f, 0x5, 0x2, 0x0, 0x0, 0x0, 0x20}, r0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, r1, 0x0, 0x17, &(0x7f0000000140)='cgroup.max.descendants\x00'}, 0x30) r2 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 106.947361][ T6581] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 106.955171][ T6581] 13:52:35 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 73) 13:52:35 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:35 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x5, 0x4, 0x7, 0x3, 0x0, 0x100000000, 0x20860, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000000080), 0xa}, 0x302, 0x8, 0x3, 0xc, 0x7f, 0x5, 0x2, 0x0, 0x0, 0x0, 0x20}, r0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, r1, 0x0, 0x17, &(0x7f0000000140)='cgroup.max.descendants\x00'}, 0x30) r2 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 107.050247][ T6610] FAULT_INJECTION: forcing a failure. [ 107.050247][ T6610] name failslab, interval 1, probability 0, space 0, times 0 [ 107.067878][ T6610] CPU: 0 PID: 6610 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 107.077872][ T6610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 107.087766][ T6610] Call Trace: [ 107.090894][ T6610] [ 107.093670][ T6610] dump_stack_lvl+0x151/0x1b7 [ 107.098178][ T6610] ? bfq_pos_tree_add_move+0x43e/0x43e [ 107.103472][ T6610] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 107.109843][ T6610] dump_stack+0x15/0x17 [ 107.113833][ T6610] should_fail+0x3c0/0x510 [ 107.118086][ T6610] __should_failslab+0x9f/0xe0 [ 107.122686][ T6610] should_failslab+0x9/0x20 [ 107.127029][ T6610] kmem_cache_alloc+0x4f/0x2f0 [ 107.131627][ T6610] ? anon_vma_fork+0xf7/0x4f0 [ 107.136138][ T6610] anon_vma_fork+0xf7/0x4f0 [ 107.140476][ T6610] ? anon_vma_name+0x43/0x70 [ 107.144904][ T6610] dup_mmap+0x750/0xea0 [ 107.148960][ T6610] ? __delayed_free_task+0x20/0x20 [ 107.153848][ T6610] ? mm_init+0x807/0x960 [ 107.157926][ T6610] dup_mm+0x91/0x330 [ 107.161660][ T6610] copy_mm+0x108/0x1b0 [ 107.165564][ T6610] copy_process+0x1295/0x3250 [ 107.170078][ T6610] ? proc_fail_nth_write+0x213/0x290 [ 107.175196][ T6610] ? proc_fail_nth_read+0x220/0x220 [ 107.180235][ T6610] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 107.185175][ T6610] ? vfs_write+0x9af/0x1050 [ 107.189515][ T6610] ? vmacache_update+0xb7/0x120 [ 107.194207][ T6610] kernel_clone+0x22d/0x990 [ 107.198544][ T6610] ? file_end_write+0x1b0/0x1b0 [ 107.203227][ T6610] ? __kasan_check_write+0x14/0x20 [ 107.208175][ T6610] ? create_io_thread+0x1e0/0x1e0 [ 107.213035][ T6610] ? __mutex_lock_slowpath+0x10/0x10 [ 107.218245][ T6610] __x64_sys_clone+0x289/0x310 [ 107.222844][ T6610] ? __do_sys_vfork+0x130/0x130 [ 107.227532][ T6610] ? debug_smp_processor_id+0x17/0x20 [ 107.232739][ T6610] do_syscall_64+0x44/0xd0 [ 107.236991][ T6610] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 107.242721][ T6610] RIP: 0033:0x7f35007595a9 [ 107.246973][ T6610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 107.266415][ T6610] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 107.274660][ T6610] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 107.282470][ T6610] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 107.290281][ T6610] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 13:52:35 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r6, r7, r6]}, 0x80) r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r8, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:35 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x5, 0x4, 0x7, 0x3, 0x0, 0x100000000, 0x20860, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000000080), 0xa}, 0x302, 0x8, 0x3, 0xc, 0x7f, 0x5, 0x2, 0x0, 0x0, 0x0, 0x20}, r0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, r1, 0x0, 0x17, &(0x7f0000000140)='cgroup.max.descendants\x00'}, 0x30) (async) r2 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:35 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 107.298103][ T6610] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 107.305906][ T6610] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 107.313719][ T6610] 13:52:35 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xfeffffff00000000, &(0x7f0000000040), 0x0, 0x0) 13:52:35 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:35 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0x6, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000001400), 0x20000000}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000400)={r0, &(0x7f0000000280)="ebb02800e27e", &(0x7f0000000300)=""/135}, 0x20) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000440)={&(0x7f00000003c0)='./file0\x00', 0x0, 0x10}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) r6 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) write$cgroup_int(r6, &(0x7f00000001c0), 0xfffffdef) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10) r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) r9 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000004c0)={&(0x7f0000000480)='./file0\x00', 0x0, 0x30}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x9, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3}, [@map_val={0x18, 0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @exit, @map_fd={0x18, 0x2}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x8}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6}]}, &(0x7f0000000180)='syzkaller\x00', 0xfff, 0xf, &(0x7f00000001c0)=""/15, 0x40f00, 0x3, '\x00', r1, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x4, 0x0, 0x9, 0x5487}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r3, r6, r8, 0x1, r9, r0]}, 0x80) 13:52:35 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 74) 13:52:35 executing program 4: bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000200)={&(0x7f0000000080)="a5f3aec3d8cdb9a422862c240226a45d358a67202b052dd81d846d5ff9c005d481f2883f69157fff675f3076a5f13bfebefdea984b5dee6a22f80cc4df036705f3989ecbf5288af1a7aa1a0d75b1d28f0e2d757b09fa4affb20ecc59056eaa6cc4cfeea16a01efc8f9ab9a4434ecc187b324f5f4", &(0x7f0000000480)=""/4096, &(0x7f0000000100)="83294d709ffaabf8b9a40175f11cfcd9a1fceebbba08", &(0x7f0000000140)="e5036ba8350447ef1c660bb220bd9631943ee9f3bcfbdbe6943eb0017d649494673f24dc83a5d278dca6e07767758d22607ea3e0d40f4c917d4fc90494b35e5c7ed82adf21de740ef93f398f6c7f59a74572ea3078cd468276d5cc37755bda4799911c6a232bd61ae96c30d2f6302123ef9eff06660cb94715ff5b5ca2ada6327c2e6271adb6215b3d697139a9259cad87b552", 0x3, 0x1, 0x4}, 0x38) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0xc0506617, &(0x7f0000000040)=0x2) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, r0, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0x80) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000001540)=@bloom_filter={0x1e, 0x2, 0x10000, 0x2, 0x28, 0xffffffffffffffff, 0x4, '\x00', r1, 0xffffffffffffffff, 0x2, 0x1, 0x1, 0xc}, 0x48) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xd5, &(0x7f0000001780)='cgroup\x00\xc3B>NW\xb2\xbd>\x958\xf8z\x95\xa1\xfb\xef\xc2\xab\xbe$\xbe\xc6\\\xde\xe0\xf17\xd0\xdf\xa5\xd7M\x01E\xa2{\xb6\xdc\x96\xefr\xed>\x13td\xed\xd5\x1a\xa3\xbd\xa2x\xcf\xde0aCE\xd8\x00\x00\x00\x00\x03\xb5\n\xef\x98q3\x86yT\xc6t\x15\xae\x1bE\x12pWo\"3\xf2\xb5\x03\xcd\xdeOx\xd6(\xd5Q\xf5\xe0A<\xcf\x8c\xe3\xf1\xb5\xb2\x92\x80\x97\t\xd4\x83\x8a\xddW\xc8\xa8\xe3\x12\x1c\x88\x8e\x05\rh\xda\xc0p\xa3]\x88\x82\xe6Uj\x8b\xb5\xedV\xb8v\x8fHg\x03W\xb4n\xccZ\xcc\x8e#]'}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_int(r3, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r5 = openat$cgroup_ro(r3, &(0x7f0000000240)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001500)='./cgroup.net/syz0\x00', 0x200002, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='timer_start\x00', r5}, 0x10) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r5, 0x58, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000015c0)=ANY=[@ANYBLOB="64ac493d000000ea000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r7 = openat$cgroup_ro(r0, &(0x7f0000000400)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x3, 0xffffffe0, 0x9, 0x101, 0xa4, 0xffffffffffffffff, 0xffffb3a7, '\x00', r6, r7, 0x2, 0x5, 0x4}, 0x48) 13:52:35 executing program 0: syz_clone(0x40800380, &(0x7f0000000200)="5460f9a248221a8b1565ef516df214a6e9daa41bdb3623d58e108e7dc0ea5702f9f972c9bb2d00", 0x27, 0x0, &(0x7f00000002c0), &(0x7f0000000300)="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") r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x0, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x4, 0xf2, &(0x7f0000000240)=""/242, 0x41100, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x6, 0xecf, 0x800}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[0xffffffffffffffff]}, 0x80) r2 = gettid() perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r2, 0xc, 0xffffffffffffffff, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=@bloom_filter={0x1e, 0x72e8, 0x3, 0x0, 0x123a, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001800)={&(0x7f0000001440)="15c82a7c2ee1b2a56897e6224a7d62efaeaea90e253f5680ca6996741149dab1a49c874c097b1663886b0087993e289f8398e65b84cc1cac8e58eb53ee2fa1ca47b5f303668e6db8d6eec6407699ba6a39ce8a3dad8e171184d53a0549571a0dc6fae0f43a8397de0dc883d5e3ed69cabfb4c5294abe523c516fc47cb163c68dee1321a7b5deb2909ddd2f10b8bda9ace3761a94c24f84bc7793c14b4f0c", &(0x7f0000001500)=""/99, &(0x7f0000001580)="4828b17b1984949a7c58aab20a3117534e2c1187a3d5c3125c9340f12a04ba9b1ca3e24ac674914cb82e4847c1f93b1406a128d8f7088a67fff5114a7c8b9f8e64416deb06d229c51f3adbdb1de6b9f9b6b584b4d8470dabbaf59e8ece56e7b57851d89cb4d2eb2d72223312754d5161ceb30a66230773772aa60db14a4bd784d4824afc12d8e514d518de2d3b5d6f1c40161dfb97ad271f8145cc12378f38885a2ec6413c05ef551b6d9bde7fee0af377fad562035529b20687187a7d7d7cdc1ae18ee55ad9ce9de3201b8b424663dfb394dcba", &(0x7f0000000000)="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", 0x9, r3}, 0x38) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000001880)={&(0x7f0000001840)='./file0\x00', r0}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) sendmsg(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001280)={&(0x7f0000001240)='./file0\x00', 0x0, 0x18}, 0x10) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) sendmsg(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001300)={0x18, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffff9}]}, &(0x7f0000001180)='syzkaller\x00', 0xff, 0x1000, &(0x7f00000018c0)=""/4096, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000011c0)={0x2, 0x5}, 0x8, 0x10, &(0x7f0000001200)={0x5, 0xa, 0x80000000, 0xe95}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000012c0)=[r1, r0, r3, 0xffffffffffffffff, 0xffffffffffffffff, r0, r4, r5, r8]}, 0x80) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001400)) 13:52:35 executing program 4: bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000200)={&(0x7f0000000080)="a5f3aec3d8cdb9a422862c240226a45d358a67202b052dd81d846d5ff9c005d481f2883f69157fff675f3076a5f13bfebefdea984b5dee6a22f80cc4df036705f3989ecbf5288af1a7aa1a0d75b1d28f0e2d757b09fa4affb20ecc59056eaa6cc4cfeea16a01efc8f9ab9a4434ecc187b324f5f4", &(0x7f0000000480)=""/4096, &(0x7f0000000100)="83294d709ffaabf8b9a40175f11cfcd9a1fceebbba08", &(0x7f0000000140)="e5036ba8350447ef1c660bb220bd9631943ee9f3bcfbdbe6943eb0017d649494673f24dc83a5d278dca6e07767758d22607ea3e0d40f4c917d4fc90494b35e5c7ed82adf21de740ef93f398f6c7f59a74572ea3078cd468276d5cc37755bda4799911c6a232bd61ae96c30d2f6302123ef9eff06660cb94715ff5b5ca2ada6327c2e6271adb6215b3d697139a9259cad87b552", 0x3, 0x1, 0x4}, 0x38) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0xc0506617, &(0x7f0000000040)=0x2) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, r0, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0x80) (async, rerun: 32) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) (rerun: 32) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) (async, rerun: 64) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) (async, rerun: 64) bpf$MAP_CREATE(0x0, &(0x7f0000001540)=@bloom_filter={0x1e, 0x2, 0x10000, 0x2, 0x28, 0xffffffffffffffff, 0x4, '\x00', r1, 0xffffffffffffffff, 0x2, 0x1, 0x1, 0xc}, 0x48) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xd5, &(0x7f0000001780)='cgroup\x00\xc3B>NW\xb2\xbd>\x958\xf8z\x95\xa1\xfb\xef\xc2\xab\xbe$\xbe\xc6\\\xde\xe0\xf17\xd0\xdf\xa5\xd7M\x01E\xa2{\xb6\xdc\x96\xefr\xed>\x13td\xed\xd5\x1a\xa3\xbd\xa2x\xcf\xde0aCE\xd8\x00\x00\x00\x00\x03\xb5\n\xef\x98q3\x86yT\xc6t\x15\xae\x1bE\x12pWo\"3\xf2\xb5\x03\xcd\xdeOx\xd6(\xd5Q\xf5\xe0A<\xcf\x8c\xe3\xf1\xb5\xb2\x92\x80\x97\t\xd4\x83\x8a\xddW\xc8\xa8\xe3\x12\x1c\x88\x8e\x05\rh\xda\xc0p\xa3]\x88\x82\xe6Uj\x8b\xb5\xedV\xb8v\x8fHg\x03W\xb4n\xccZ\xcc\x8e#]'}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_int(r3, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) r5 = openat$cgroup_ro(r3, &(0x7f0000000240)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async, rerun: 64) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001500)='./cgroup.net/syz0\x00', 0x200002, 0x0) (async, rerun: 64) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='timer_start\x00', r5}, 0x10) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r5, 0x58, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000015c0)=ANY=[@ANYBLOB="64ac493d000000ea000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r7 = openat$cgroup_ro(r0, &(0x7f0000000400)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x3, 0xffffffe0, 0x9, 0x101, 0xa4, 0xffffffffffffffff, 0xffffb3a7, '\x00', r6, r7, 0x2, 0x5, 0x4}, 0x48) 13:52:35 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:35 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0x6, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000001400), 0x20000000}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000400)={r0, &(0x7f0000000280)="ebb02800e27e", &(0x7f0000000300)=""/135}, 0x20) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000440)={&(0x7f00000003c0)='./file0\x00', 0x0, 0x10}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) r6 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) write$cgroup_int(r6, &(0x7f00000001c0), 0xfffffdef) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10) r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) r9 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000004c0)={&(0x7f0000000480)='./file0\x00', 0x0, 0x30}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x9, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3}, [@map_val={0x18, 0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @exit, @map_fd={0x18, 0x2}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x8}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6}]}, &(0x7f0000000180)='syzkaller\x00', 0xfff, 0xf, &(0x7f00000001c0)=""/15, 0x40f00, 0x3, '\x00', r1, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x4, 0x0, 0x9, 0x5487}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r3, r6, r8, 0x1, r9, r0]}, 0x80) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0x6, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x48) (async) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000001400), 0x20000000}, 0x20) (async) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000400)={r0, &(0x7f0000000280)="ebb02800e27e", &(0x7f0000000300)=""/135}, 0x20) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) (async) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) (async) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000440)={&(0x7f00000003c0)='./file0\x00', 0x0, 0x10}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) (async) write$cgroup_int(r6, &(0x7f00000001c0), 0xfffffdef) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8) (async) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) (async) bpf$OBJ_GET_MAP(0x7, &(0x7f00000004c0)={&(0x7f0000000480)='./file0\x00', 0x0, 0x30}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x9, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3}, [@map_val={0x18, 0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @exit, @map_fd={0x18, 0x2}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x8}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6}]}, &(0x7f0000000180)='syzkaller\x00', 0xfff, 0xf, &(0x7f00000001c0)=""/15, 0x40f00, 0x3, '\x00', r1, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x4, 0x0, 0x9, 0x5487}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r3, r6, r8, 0x1, r9, r0]}, 0x80) (async) [ 107.404464][ T6626] FAULT_INJECTION: forcing a failure. [ 107.404464][ T6626] name failslab, interval 1, probability 0, space 0, times 0 13:52:35 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0x6, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000001400), 0x20000000}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000400)={r0, &(0x7f0000000280)="ebb02800e27e", &(0x7f0000000300)=""/135}, 0x20) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) r3 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000440)={&(0x7f00000003c0)='./file0\x00', 0x0, 0x10}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) r6 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) write$cgroup_int(r6, &(0x7f00000001c0), 0xfffffdef) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10) r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) r9 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000004c0)={&(0x7f0000000480)='./file0\x00', 0x0, 0x30}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x9, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3}, [@map_val={0x18, 0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @exit, @map_fd={0x18, 0x2}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x8}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6}]}, &(0x7f0000000180)='syzkaller\x00', 0xfff, 0xf, &(0x7f00000001c0)=""/15, 0x40f00, 0x3, '\x00', r1, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x4, 0x0, 0x9, 0x5487}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r3, r6, r8, 0x1, r9, r0]}, 0x80) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0x6, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x48) (async) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000001400), 0x20000000}, 0x20) (async) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000400)={r0, &(0x7f0000000280)="ebb02800e27e", &(0x7f0000000300)=""/135}, 0x20) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) (async) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) (async) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000440)={&(0x7f00000003c0)='./file0\x00', 0x0, 0x10}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) (async) write$cgroup_int(r6, &(0x7f00000001c0), 0xfffffdef) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r7}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8) (async) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) (async) bpf$OBJ_GET_MAP(0x7, &(0x7f00000004c0)={&(0x7f0000000480)='./file0\x00', 0x0, 0x30}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x9, 0xc, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3}, [@map_val={0x18, 0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}, @exit, @map_fd={0x18, 0x2}, @cb_func={0x18, 0x7, 0x4, 0x0, 0x8}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6}]}, &(0x7f0000000180)='syzkaller\x00', 0xfff, 0xf, &(0x7f00000001c0)=""/15, 0x40f00, 0x3, '\x00', r1, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x4, 0x0, 0x9, 0x5487}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000500)=[r3, r6, r8, 0x1, r9, r0]}, 0x80) (async) 13:52:35 executing program 3: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r2 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r2, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000001280)={0x7, 0x80, 0x81, 0x4a, 0x8, 0xff, 0x0, 0x0, 0x40020, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80000000, 0x1, @perf_config_ext={0x8000000000000000, 0x100}, 0x10, 0x8, 0x1, 0x3, 0x2, 0x2, 0x9, 0x0, 0x1f, 0x0, 0x3ff}, r1, 0xc, r0, 0x9) perf_event_open(&(0x7f0000001200)={0x2, 0x80, 0x2, 0xc4, 0x8, 0x2, 0x0, 0x2, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x1080a, 0x200, 0x0, 0x5, 0xff, 0x5d4, 0x3, 0x0, 0x0, 0x0, 0xe9fd}, r2, 0x7, r3, 0x2) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r5, &(0x7f0000000080), 0x9) close(r0) write$cgroup_int(r4, &(0x7f0000000000), 0xffe000) [ 107.462031][ T6626] CPU: 1 PID: 6626 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 107.472020][ T6626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 107.481918][ T6626] Call Trace: [ 107.485041][ T6626] [ 107.487814][ T6626] dump_stack_lvl+0x151/0x1b7 [ 107.492336][ T6626] ? bfq_pos_tree_add_move+0x43e/0x43e [ 107.497624][ T6626] dump_stack+0x15/0x17 [ 107.501623][ T6626] should_fail+0x3c0/0x510 [ 107.505870][ T6626] __should_failslab+0x9f/0xe0 [ 107.510468][ T6626] should_failslab+0x9/0x20 [ 107.514811][ T6626] kmem_cache_alloc+0x4f/0x2f0 [ 107.519409][ T6626] ? vm_area_dup+0x26/0x1d0 [ 107.523748][ T6626] vm_area_dup+0x26/0x1d0 [ 107.527934][ T6626] dup_mmap+0x6b8/0xea0 [ 107.531905][ T6626] ? __delayed_free_task+0x20/0x20 [ 107.536853][ T6626] ? mm_init+0x807/0x960 [ 107.540930][ T6626] dup_mm+0x91/0x330 [ 107.544664][ T6626] copy_mm+0x108/0x1b0 [ 107.548568][ T6626] copy_process+0x1295/0x3250 [ 107.553087][ T6626] ? proc_fail_nth_write+0x213/0x290 [ 107.558199][ T6626] ? proc_fail_nth_read+0x220/0x220 [ 107.563237][ T6626] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 107.568181][ T6626] ? vfs_write+0x9af/0x1050 [ 107.572607][ T6626] ? vmacache_update+0xb7/0x120 [ 107.577298][ T6626] kernel_clone+0x22d/0x990 [ 107.581639][ T6626] ? file_end_write+0x1b0/0x1b0 [ 107.586327][ T6626] ? __kasan_check_write+0x14/0x20 [ 107.591270][ T6626] ? create_io_thread+0x1e0/0x1e0 [ 107.596132][ T6626] ? __mutex_lock_slowpath+0x10/0x10 [ 107.601250][ T6626] __x64_sys_clone+0x289/0x310 [ 107.605855][ T6626] ? __do_sys_vfork+0x130/0x130 [ 107.610543][ T6626] ? debug_smp_processor_id+0x17/0x20 [ 107.615746][ T6626] do_syscall_64+0x44/0xd0 [ 107.620000][ T6626] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 107.625724][ T6626] RIP: 0033:0x7f35007595a9 [ 107.629979][ T6626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 107.649422][ T6626] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 13:52:36 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) [ 107.657663][ T6626] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 107.665474][ T6626] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 107.673283][ T6626] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 107.681096][ T6626] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 107.688910][ T6626] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 107.696719][ T6626] 13:52:36 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xffff030000000000, &(0x7f0000000040), 0x0, 0x0) 13:52:36 executing program 4: bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000200)={&(0x7f0000000080)="a5f3aec3d8cdb9a422862c240226a45d358a67202b052dd81d846d5ff9c005d481f2883f69157fff675f3076a5f13bfebefdea984b5dee6a22f80cc4df036705f3989ecbf5288af1a7aa1a0d75b1d28f0e2d757b09fa4affb20ecc59056eaa6cc4cfeea16a01efc8f9ab9a4434ecc187b324f5f4", &(0x7f0000000480)=""/4096, &(0x7f0000000100)="83294d709ffaabf8b9a40175f11cfcd9a1fceebbba08", &(0x7f0000000140)="e5036ba8350447ef1c660bb220bd9631943ee9f3bcfbdbe6943eb0017d649494673f24dc83a5d278dca6e07767758d22607ea3e0d40f4c917d4fc90494b35e5c7ed82adf21de740ef93f398f6c7f59a74572ea3078cd468276d5cc37755bda4799911c6a232bd61ae96c30d2f6302123ef9eff06660cb94715ff5b5ca2ada6327c2e6271adb6215b3d697139a9259cad87b552", 0x3, 0x1, 0x4}, 0x38) (async, rerun: 64) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) (rerun: 64) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0xc0506617, &(0x7f0000000040)=0x2) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, r0, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0x80) (async, rerun: 64) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) (rerun: 64) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) (async) bpf$MAP_CREATE(0x0, &(0x7f0000001540)=@bloom_filter={0x1e, 0x2, 0x10000, 0x2, 0x28, 0xffffffffffffffff, 0x4, '\x00', r1, 0xffffffffffffffff, 0x2, 0x1, 0x1, 0xc}, 0x48) (async, rerun: 32) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xd5, &(0x7f0000001780)='cgroup\x00\xc3B>NW\xb2\xbd>\x958\xf8z\x95\xa1\xfb\xef\xc2\xab\xbe$\xbe\xc6\\\xde\xe0\xf17\xd0\xdf\xa5\xd7M\x01E\xa2{\xb6\xdc\x96\xefr\xed>\x13td\xed\xd5\x1a\xa3\xbd\xa2x\xcf\xde0aCE\xd8\x00\x00\x00\x00\x03\xb5\n\xef\x98q3\x86yT\xc6t\x15\xae\x1bE\x12pWo\"3\xf2\xb5\x03\xcd\xdeOx\xd6(\xd5Q\xf5\xe0A<\xcf\x8c\xe3\xf1\xb5\xb2\x92\x80\x97\t\xd4\x83\x8a\xddW\xc8\xa8\xe3\x12\x1c\x88\x8e\x05\rh\xda\xc0p\xa3]\x88\x82\xe6Uj\x8b\xb5\xedV\xb8v\x8fHg\x03W\xb4n\xccZ\xcc\x8e#]'}, 0x30) (async, rerun: 32) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_int(r3, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) r5 = openat$cgroup_ro(r3, &(0x7f0000000240)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) write$cgroup_int(r4, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001500)='./cgroup.net/syz0\x00', 0x200002, 0x0) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='timer_start\x00', r5}, 0x10) (async) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000300)={r5, 0x58, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000015c0)=ANY=[@ANYBLOB="64ac493d000000ea000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) r7 = openat$cgroup_ro(r0, &(0x7f0000000400)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x3, 0xffffffe0, 0x9, 0x101, 0xa4, 0xffffffffffffffff, 0xffffb3a7, '\x00', r6, r7, 0x2, 0x5, 0x4}, 0x48) 13:52:36 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 75) 13:52:36 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x23000) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r9, &(0x7f0000000180), 0xfdef) 13:52:36 executing program 3: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r2 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r2, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000001280)={0x7, 0x80, 0x81, 0x4a, 0x8, 0xff, 0x0, 0x0, 0x40020, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80000000, 0x1, @perf_config_ext={0x8000000000000000, 0x100}, 0x10, 0x8, 0x1, 0x3, 0x2, 0x2, 0x9, 0x0, 0x1f, 0x0, 0x3ff}, r1, 0xc, r0, 0x9) perf_event_open(&(0x7f0000001200)={0x2, 0x80, 0x2, 0xc4, 0x8, 0x2, 0x0, 0x2, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x1080a, 0x200, 0x0, 0x5, 0xff, 0x5d4, 0x3, 0x0, 0x0, 0x0, 0xe9fd}, r2, 0x7, r3, 0x2) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r5, &(0x7f0000000080), 0x9) close(r0) write$cgroup_int(r4, &(0x7f0000000000), 0xffe000) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) (async) syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) (async) syz_open_procfs$namespace(r2, 0x0) (async) perf_event_open$cgroup(&(0x7f0000001280)={0x7, 0x80, 0x81, 0x4a, 0x8, 0xff, 0x0, 0x0, 0x40020, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80000000, 0x1, @perf_config_ext={0x8000000000000000, 0x100}, 0x10, 0x8, 0x1, 0x3, 0x2, 0x2, 0x9, 0x0, 0x1f, 0x0, 0x3ff}, r1, 0xc, r0, 0x9) (async) perf_event_open(&(0x7f0000001200)={0x2, 0x80, 0x2, 0xc4, 0x8, 0x2, 0x0, 0x2, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x1080a, 0x200, 0x0, 0x5, 0xff, 0x5d4, 0x3, 0x0, 0x0, 0x0, 0xe9fd}, r2, 0x7, r3, 0x2) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) (async) write$cgroup_type(r5, &(0x7f0000000080), 0x9) (async) close(r0) (async) write$cgroup_int(r4, &(0x7f0000000000), 0xffe000) (async) 13:52:36 executing program 0: syz_clone(0x40800380, &(0x7f0000000200)="5460f9a248221a8b1565ef516df214a6e9daa41bdb3623d58e108e7dc0ea5702f9f972c9bb2d00", 0x27, 0x0, &(0x7f00000002c0), &(0x7f0000000300)="a089a5f56d1995ab3fe8c8f2618906b8b27d6a6f6ce9deef18aeab6ff7a0d606778fe3c4cd7d338068db83730ad6968af106860573d6a52960caf788e544eda6242aa0246c4c50db2a1c7bf56ec22fe5557342883d52871fd866bb4ab912aaaadaa663fa3cc6a1fa3527fa07aa405bee8bb1220a9eff327cd2b378a006d5901de3ccd400acc3cc18162658a55f1ab339ff73529e499c5405eda0a74a968f29c4f3cb0f58e84e65b8f26bc4bc8a644834bb02ae68dcd60176d07dcae23d4e4054528aee30f56f827fe3fe8c5fe050e22294379bb73094d4c179cadec73b515d7737528181547c58470709fb326f4dd06bbb633f3859a2f5efb670c2ad134d31390e8dbe1904ead95ee7f6407419e2ab9e62ad7df60e45f9f37000d7bdaac2d23e896ac7792b711368bb9f98eac10512d8eb7bd36d3717617ef61aef269a34a3bfb03f2df35fcb6a4015c7d85334ce4167a80fb6f71b3e666fbc41fcc2d04f704bc41373d016077e5fb4cb6e153acc16e6529bb7a939421e1ec55d32dd36aaf807e565d8b65153cf5c07bc1bdc85dda8daf11a3e2e0f8d5fb180ac83fcf0bdc882cb8acc92538b91fdc5f3f1ad0f86828b96295b41b85d82a283f16c214b8d5c5d409653abb6562231e47a7a1d34628eb17de5154290ef11caa2fd89a1c4cfa14f14a8dd8492d4afb0f89da06dd7cace1e628e547b7ac645147508c4794fb47d8fe062f809f69ad703fe3e40d26b328ccd3a47918a7d2be619f5e50d22af0fc3d5e9046b3e0b2659440978f8f4f566f29c2f6b805f62852112ca6612d027bdd1305df32df116c835cc38bd6052979e758a262a72a7c3accc10caa22ca38b2474e1f04d052311b0eaa65785335d4cd60823c82e82e0baf5f6960e5f3b65b610d28d76366084266cc286fa48d13cb3cd35e90d6b6b4b8df67d2f26ff4400217283cd04913fab7b5f6889cefca2f1bf1fa21ef50e130ae5dbab6a64813eabc0ba315d32fa2498085957b7ca7df81662a77ce80e62a1f2abe9d2f5e55c1a80f2c580717e52e5c2065c0728f1faa3e9bc7708a0c367472620e6da9d509fe836fc008ec2e971e73ccae07e387f39c44edd97e839918fcbd5e0f711a780c9217e20ab87df58297787f9ffaac9178244ed729131580c85bc9bd2e0e8d30ee73f334652dd29eeb1edd5dcbbcd281bc699821df8288c939d2b87930cb7eb3dfa6a749fc8d88318e44477919c0bb3060b17458637c2d68f6e4413690aa45ba72f42de201e15918d90a7ae52cd5eb136a649fc6ac8e9bd0849a4989c87ebb9a1e96f6c71578ce6293a5fca17f73793f6fe5279cf62d92cddba895ae9e2cf25cacabe73412f6b663169de2a11633b5f36d2967878d6a184f8e9a35dda26781c15fc5a2fc15aae614ee719f2467b45dab101389f5d9b9f728cbd81f44f660e88d574f693a684f9d32b8ffa9ab2b2e4a090424df7bd7f8c25ec45b39f994c820129ec5b10dc3af428cfe53b812b0229f521fae656e1ae5d05c46e6c08760bca4cc6a12408bd14e14601ea094e6f8290e071ae5416fe15703fb7422c679b22d04331df3fe8369b8709ee8ca621216a0fb62a7dcdd6a72b9613cbaa6fc1a277b50199142dc655490cacdbfaac5039c34fadd39f23374413ba45fd0eef0a3473e02918487771ba3bf847b1363abb60d2542476023c060be7e1b2109ce12277e307013623a1dd9e4444ca7ae2dd9a0bd48827abfe280b4a49533394b44a981f08fa49bf71384c894a6317ba586ecaca9dad7265e7390efdf644bbcdb933a6e8c4ab6bd9f6025a11e169a304cc68fc54b8efdc847766b5b349a3efe23e9adf765e1c4821ceed0db1eedcbf1f10ddbbf8f1034c7f2103bdb75923038a70d7e76bfdf70e513c7bd91b6220dc57a93072647e33bb476a8be080c5b5a4ad48112a354a1fe08059e551178cd75ab19f7ff647195a4f7cf52e1d801fd51999b961861932128f804bfcee812e0aef3c423168c04c40cd83dd02a05886a1193197957f3021975d9412d36a8a223da9f6eae3cbc6019cfcefb1cb9569e3c88ce5dcbdcdc718be911fe076dbcee36af997541373bf83970e0d4d682815601ad338bef547a5af2f3056eddd492a5fdbe0c33c639c667dba30f0096ea31473086c605ef00a52b6564e5cd453ab6589dc6ef62d844a9d1f57a26a2b6fd2bceb0d465d8d2751df24debaa743eba7e51eafd558c068ac42b1bd531bb74765e35272d5a9c26eb8e2710d1949d951c41866bb71eba4631d62b0d7a90f8adbd874bad5ac99d89e80d8730608303dfd31657a99e034a7e2c3dc19eab022cd51a2d0a4b1c49f653e1842ca1b833bd8060b577447a4fed53b8c894228348a66a1de9cdf33cf5da84aa7748a98076ea7e6bfb439cda3043be50501c002080ce929d180fb62f5ec23527fed9644cddb2e990131f1edb7188bfedf38d6cfe80fecb61d0665f736a30616b5eb758430223a14bd71220df6cee40e2f0af45c02cf7a25225ce5a5d8efb346971047a6d278677a29df0dbab9a29b1a51dda6dacc5098db5e92463ced0ad84ffc2da5218ec50b090d1601b587283b283225674b89b9d04e35f03852448aa35988b43cfa7cc55304d0b0466a2d2d178d38558fe3730083e74ebb5d21892b1e4a4be10e1cb19f12e4edbade5dd97901d5f338c8508a8096f3b17b08697b1fce865921f9610b7f10db0290ad63d1d47c20370946179aa53e96be647a78d215d5bca68a81517970053fbd40bdbb8b788d1baf26a746e071f98866856add7aeb15651a5021a18361f23a415e575513946b19999947e5c1c30a4c1920060a8671791217114a664f340cda384c11543479d56fd6022c42070e24db6c44133c3f8d64643f51a152f115a3e4af45998e9cc3d37f0c99ac43958343fde40ca799a0965f68e1699b37f9adc673a942fd40d4421e4b0e7fc4b32edb2e341e6e31d5ed461e83cee15497a17697197895cc191680ed3fc0056f6cea8633f61943b9b3ca8c1e22dfeeabdd4047542e4dd898cb17b6af68e86b39b086dc0fe4a1d8c724bb67a053b4171783f7ce6b3ed9d02adec23c887bc90adf4c7cc3c676be5503820d94423403a8175f6174f603ae241fec637679f31f57612a61034bdeb477156a5464170ef4222cb0771e6f2bede11e4b1222ced942333ad2c350b2940be6101cf478d2835c64b4cb2199c916a48e68ab095cad059b5a3a7ef0b5d6ea771880e0b1ddc47de3619b33b1aff4e490a512b6407a736a66ff54a95fda3f7465aaa78e7abf15526da3dd7a1fc41d452ed5f95fb22b943ea1b7388347e664e37a0f3a33e4da58d4368303f5d569efeca5407c27a3d2554e8dc33e57671b9bb9755e3aa409cac7845007ac42e552005cd526fe725566a66fff85c9782dd923b3c1941585d6ef05ac968d8dc77692e51cfaa28d4f4df790d2791c62a03cc71ca02f12226f686696103006045c11d0c7972605bf30b024217b8a928c8b60e45c45be0c45a91781c1c5d42d7312ca73e8399892d4efe356390a46bc73b7300d1120a7f64b9a6ae1a927fa3b954651d42bb524b949e1f071990a8da37b4f706030877b1f073bc0de1853901cacb3eef6f5932a34d30b593ff873a38ba87ba5ab385b69fa838ca255e08eba87a0d70b511580d3bd00bb22e5d9afecb5889f3e2910376634e080d02b3dac50eb1d87b853c19d308c636eacba4a2fd663c60b03fa445b31b97dbbb5083694a02e15306c0a004bfe0eecd668dd49d41dfd4a42c6294fe5697dc09e09b4cf87d99abdc326f44dcdf5bfd4e9c8f43b132b5b40bba3a4c6048b2b777b956c7a5eb4ceb40417d3e19535fb2c39f056a556169f73efe245c6e0dadfb88abdcf4600693670cdd3b413a91e56d85d5fc7eaa9300ddef9efd957891160b7905683a9ee225e3f6a859c4cebf0d2d40dd7f35c7231da881209184aea0b283b577533a69db2a502dcc46763dfab9b0b6ab239d138abf1470db73ad4a90a409f286f704dec96d03b1f9914d7253c884595af702f22c1f4596427bee52066e3d9f434f5693614a180aa380740b5c5cedfe9dc7d31d8078a690e3d8e3d38b5b06c144b70372e91719677bbf7ded4014370bd3628729c93f4d8750aac7f65f5a69d66967e2fb677fb776907e36e7eba62dc72ca9df3703f111e04a98ad7c7dc30f2b9c421c972972f50152592906c4507521b4deaba0721f2251b20b38d56f370a03503b7daf65ec3e15842e3a29c07d9520ef0633e458533ae9da6f668d43d33dcae4d64738036bed5548bd5f6522c9faf0487e656220a84fe7b32a23c7bfd13413d736e038c7936369ae3d1af71efca58ec7b96ae302f3f3063c120ad22ebf14422ec73fea6661e041181a0736c3cdf2f827ea97b94a809886c2dab347e1c8722af7658972a5e573bab3853740ad9b0c4c966cefff7d990f0f10b698fbcd4cc0aa0c8f5d1c1f5b33e58043222686d88bcc55344e4dbb93aec3b23f35248ce84d0121316b62c2434cbe4c6202c5222f561bf4c6f2e1c6c009ab593181ad4b29be3ad9e084a435b5c99d6576a2708533f9e9f730e519fd55d3b531069eec125c2c20723847e5a363723922621fe8b65e04708124d8bf8f3a906a78292c80b19c7785bc3bfeb17e042f6d491f3c35e93121ca5a388789fdb767a78f852da817da41a447001450af0be88164f133872772a4c319319c51a2cec2619e0a9b18950a85516bbc1971866a00c0318d4c9cb78c34ea3e9d61d2fb44418f4ead82a85ccf370860628979df2e8740e087a962550f195faa3d2cac904e76a44c3823e7f3315073afd0c6bb19cdc6cb4586e483b57df37bcda9a2d7db33cc1f693d8dc2da80cb12b36a0307babf55a8550fa198fd014197f82423978217e98f3a3ac409335fcea96b4b5a642bdecaad3bdd4cde0a39185bf2acfe151cec56bd76594a2ddb8c053e910ab3ce3106cd5f64bef3ef0059580f8309521124f0fac2d3ea586f4310246dd87420403f46a120d8bf010826ef53a42f9b62f2a29fe469f5f69bb9f8e86cbe1c66cfa0fce2c8c9f0b89be1f88d0c0682f2b0967fd16daa8c9dc6a2be3175f50e86e0f23de0e4568fc8245b963a3b64579fa071c4b153db2fa80a906fe55729b085d5654ed8999a4c9e02a56257cf7f76d5c4aa221f064a7b045f59438912e0868a65f44ff3b814d1572f42d4a8b0283d1ab3d9bf1cd3f2ed50590332c9c022330d940949cb84d4296") r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x0, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x4, 0xf2, &(0x7f0000000240)=""/242, 0x41100, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x6, 0xecf, 0x800}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[0xffffffffffffffff]}, 0x80) r2 = gettid() perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r2, 0xc, 0xffffffffffffffff, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=@bloom_filter={0x1e, 0x72e8, 0x3, 0x0, 0x123a, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001800)={&(0x7f0000001440)="15c82a7c2ee1b2a56897e6224a7d62efaeaea90e253f5680ca6996741149dab1a49c874c097b1663886b0087993e289f8398e65b84cc1cac8e58eb53ee2fa1ca47b5f303668e6db8d6eec6407699ba6a39ce8a3dad8e171184d53a0549571a0dc6fae0f43a8397de0dc883d5e3ed69cabfb4c5294abe523c516fc47cb163c68dee1321a7b5deb2909ddd2f10b8bda9ace3761a94c24f84bc7793c14b4f0c", &(0x7f0000001500)=""/99, &(0x7f0000001580)="4828b17b1984949a7c58aab20a3117534e2c1187a3d5c3125c9340f12a04ba9b1ca3e24ac674914cb82e4847c1f93b1406a128d8f7088a67fff5114a7c8b9f8e64416deb06d229c51f3adbdb1de6b9f9b6b584b4d8470dabbaf59e8ece56e7b57851d89cb4d2eb2d72223312754d5161ceb30a66230773772aa60db14a4bd784d4824afc12d8e514d518de2d3b5d6f1c40161dfb97ad271f8145cc12378f38885a2ec6413c05ef551b6d9bde7fee0af377fad562035529b20687187a7d7d7cdc1ae18ee55ad9ce9de3201b8b424663dfb394dcba", &(0x7f0000000000)="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", 0x9, r3}, 0x38) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000001880)={&(0x7f0000001840)='./file0\x00', r0}, 0x10) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) sendmsg(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001280)={&(0x7f0000001240)='./file0\x00', 0x0, 0x18}, 0x10) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) sendmsg(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001300)={0x18, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffff9}]}, &(0x7f0000001180)='syzkaller\x00', 0xff, 0x1000, &(0x7f00000018c0)=""/4096, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000011c0)={0x2, 0x5}, 0x8, 0x10, &(0x7f0000001200)={0x5, 0xa, 0x80000000, 0xe95}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000012c0)=[r1, r0, r3, 0xffffffffffffffff, 0xffffffffffffffff, r0, r4, r5, r8]}, 0x80) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001400)) syz_clone(0x40800380, &(0x7f0000000200)="5460f9a248221a8b1565ef516df214a6e9daa41bdb3623d58e108e7dc0ea5702f9f972c9bb2d00", 0x27, 0x0, &(0x7f00000002c0), &(0x7f0000000300)="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") (async) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) (async) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x0, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x4, 0xf2, &(0x7f0000000240)=""/242, 0x41100, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x6, 0xecf, 0x800}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[0xffffffffffffffff]}, 0x80) (async) gettid() (async) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r2, 0xc, 0xffffffffffffffff, 0x0) (async) bpf$MAP_CREATE(0x0, &(0x7f0000001780)=@bloom_filter={0x1e, 0x72e8, 0x3, 0x0, 0x123a, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2}, 0x48) (async) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001800)={&(0x7f0000001440)="15c82a7c2ee1b2a56897e6224a7d62efaeaea90e253f5680ca6996741149dab1a49c874c097b1663886b0087993e289f8398e65b84cc1cac8e58eb53ee2fa1ca47b5f303668e6db8d6eec6407699ba6a39ce8a3dad8e171184d53a0549571a0dc6fae0f43a8397de0dc883d5e3ed69cabfb4c5294abe523c516fc47cb163c68dee1321a7b5deb2909ddd2f10b8bda9ace3761a94c24f84bc7793c14b4f0c", &(0x7f0000001500)=""/99, &(0x7f0000001580)="4828b17b1984949a7c58aab20a3117534e2c1187a3d5c3125c9340f12a04ba9b1ca3e24ac674914cb82e4847c1f93b1406a128d8f7088a67fff5114a7c8b9f8e64416deb06d229c51f3adbdb1de6b9f9b6b584b4d8470dabbaf59e8ece56e7b57851d89cb4d2eb2d72223312754d5161ceb30a66230773772aa60db14a4bd784d4824afc12d8e514d518de2d3b5d6f1c40161dfb97ad271f8145cc12378f38885a2ec6413c05ef551b6d9bde7fee0af377fad562035529b20687187a7d7d7cdc1ae18ee55ad9ce9de3201b8b424663dfb394dcba", &(0x7f0000000000)="97b11670f643341788e732101658b14deb848733e34c1d3b41654da58782302787f5787620436a129f317abcb5998f49149179f24154c5e2759ed8f16366fbc4848eb523cb1ac48a184bab48623c186b9ba5fbff9c2dae0bf565923c6620c64a8990d5f3bb83ef53befd841949008427ecaedaeffdbf4de98f011511e8ac3165f5d97ffe4ff3b4c0d0a409b0f884a7a77fe7f85386cc8b547250b65dfaa21cef58519931c0dd9225e4d6fe78d1fe5e4a48f8daba9f7bcd1e614e822dd871cd98bffd17fb78590cd91b419251443e5c11b247a964e41f838fee41cc6a980d0ffb9b3fbd0bb0a6aa6a38d4299f3efaea4ff7e0d842035a52fa5f47f418425adf89df5fad3684143a3fff02773ab04d776142811c6d5dfc4aefb22f55d95811c748c8481b3784d9c64ecb6f0742eec2763606355a9492918f11cca1ee209a9790fdd220b5758ab9d77956eadfbde50dbbf669e1e687f115091fca9a16db97d08614a0de6bf129ea56a78b5ec3986a5c4d1144d4fabdecca25f3850814171fb416e03711eb03b37684594ba9923b58c9cc5eae85362847852477621b4f6cc4b2a528b3da26", 0x9, r3}, 0x38) (async) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000001880)={&(0x7f0000001840)='./file0\x00', r0}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8) (async) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async) bpf$OBJ_GET_MAP(0x7, &(0x7f0000001280)={&(0x7f0000001240)='./file0\x00', 0x0, 0x18}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8) (async) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001300)={0x18, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffff9}]}, &(0x7f0000001180)='syzkaller\x00', 0xff, 0x1000, &(0x7f00000018c0)=""/4096, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000011c0)={0x2, 0x5}, 0x8, 0x10, &(0x7f0000001200)={0x5, 0xa, 0x80000000, 0xe95}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000012c0)=[r1, r0, r3, 0xffffffffffffffff, 0xffffffffffffffff, r0, r4, r5, r8]}, 0x80) (async) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001400)) (async) 13:52:36 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, 0x0, 0x0) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 107.844949][ T6693] FAULT_INJECTION: forcing a failure. [ 107.844949][ T6693] name failslab, interval 1, probability 0, space 0, times 0 [ 107.878888][ T6693] CPU: 1 PID: 6693 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 107.888876][ T6693] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 107.898769][ T6693] Call Trace: [ 107.901889][ T6693] [ 107.904672][ T6693] dump_stack_lvl+0x151/0x1b7 [ 107.909181][ T6693] ? bfq_pos_tree_add_move+0x43e/0x43e [ 107.914475][ T6693] dump_stack+0x15/0x17 [ 107.918468][ T6693] should_fail+0x3c0/0x510 [ 107.922830][ T6693] __should_failslab+0x9f/0xe0 [ 107.927427][ T6693] should_failslab+0x9/0x20 [ 107.931763][ T6693] kmem_cache_alloc+0x4f/0x2f0 [ 107.936364][ T6693] ? vm_area_dup+0x26/0x1d0 [ 107.940705][ T6693] ? __kasan_check_read+0x11/0x20 [ 107.945566][ T6693] vm_area_dup+0x26/0x1d0 [ 107.949733][ T6693] dup_mmap+0x6b8/0xea0 [ 107.953724][ T6693] ? __delayed_free_task+0x20/0x20 [ 107.958671][ T6693] ? mm_init+0x807/0x960 [ 107.962750][ T6693] dup_mm+0x91/0x330 [ 107.966482][ T6693] copy_mm+0x108/0x1b0 [ 107.970387][ T6693] copy_process+0x1295/0x3250 [ 107.974901][ T6693] ? proc_fail_nth_write+0x213/0x290 [ 107.980026][ T6693] ? proc_fail_nth_read+0x220/0x220 [ 107.985057][ T6693] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 107.990006][ T6693] ? vfs_write+0x9af/0x1050 [ 107.994340][ T6693] ? vmacache_update+0xb7/0x120 [ 107.999031][ T6693] kernel_clone+0x22d/0x990 [ 108.003371][ T6693] ? file_end_write+0x1b0/0x1b0 [ 108.008056][ T6693] ? __kasan_check_write+0x14/0x20 [ 108.013004][ T6693] ? create_io_thread+0x1e0/0x1e0 [ 108.017866][ T6693] ? __mutex_lock_slowpath+0x10/0x10 [ 108.022988][ T6693] __x64_sys_clone+0x289/0x310 [ 108.027585][ T6693] ? __do_sys_vfork+0x130/0x130 [ 108.032271][ T6693] ? debug_smp_processor_id+0x17/0x20 [ 108.037566][ T6693] do_syscall_64+0x44/0xd0 [ 108.041817][ T6693] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 108.047545][ T6693] RIP: 0033:0x7f35007595a9 [ 108.051977][ T6693] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 108.071415][ T6693] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 108.079658][ T6693] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 108.087472][ T6693] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 13:52:36 executing program 4: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0xe, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x73}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) openat$cgroup_int(r0, &(0x7f0000000080)='memory.swap.max\x00', 0x2, 0x0) 13:52:36 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, 0x0, 0x0) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 108.095283][ T6693] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 108.103093][ T6693] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 108.111000][ T6693] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 108.118807][ T6693] 13:52:36 executing program 4: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0xe, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x73}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async, rerun: 64) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (rerun: 64) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async, rerun: 32) openat$cgroup_int(r0, &(0x7f0000000080)='memory.swap.max\x00', 0x2, 0x0) (rerun: 32) 13:52:36 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 76) 13:52:36 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, 0x0, 0x0) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) [ 108.216924][ T6739] FAULT_INJECTION: forcing a failure. [ 108.216924][ T6739] name failslab, interval 1, probability 0, space 0, times 0 [ 108.268176][ T6739] CPU: 1 PID: 6739 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 108.278169][ T6739] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 108.288066][ T6739] Call Trace: [ 108.291187][ T6739] [ 108.293972][ T6739] dump_stack_lvl+0x151/0x1b7 [ 108.298481][ T6739] ? bfq_pos_tree_add_move+0x43e/0x43e [ 108.303787][ T6739] ? do_syscall_64+0x44/0xd0 [ 108.308197][ T6739] dump_stack+0x15/0x17 [ 108.312192][ T6739] should_fail+0x3c0/0x510 [ 108.316450][ T6739] __should_failslab+0x9f/0xe0 [ 108.321045][ T6739] should_failslab+0x9/0x20 [ 108.325382][ T6739] kmem_cache_alloc+0x4f/0x2f0 [ 108.329980][ T6739] ? anon_vma_clone+0xa1/0x4f0 [ 108.334582][ T6739] anon_vma_clone+0xa1/0x4f0 [ 108.339096][ T6739] anon_vma_fork+0x91/0x4f0 [ 108.343439][ T6739] ? anon_vma_name+0x43/0x70 [ 108.347862][ T6739] dup_mmap+0x750/0xea0 [ 108.351942][ T6739] ? __delayed_free_task+0x20/0x20 [ 108.356888][ T6739] ? mm_init+0x807/0x960 [ 108.360964][ T6739] dup_mm+0x91/0x330 [ 108.364696][ T6739] copy_mm+0x108/0x1b0 [ 108.368604][ T6739] copy_process+0x1295/0x3250 [ 108.373118][ T6739] ? proc_fail_nth_write+0x213/0x290 [ 108.378240][ T6739] ? proc_fail_nth_read+0x220/0x220 [ 108.383281][ T6739] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 108.388306][ T6739] ? vfs_write+0x9af/0x1050 [ 108.392646][ T6739] ? vmacache_update+0xb7/0x120 [ 108.397338][ T6739] kernel_clone+0x22d/0x990 [ 108.401673][ T6739] ? file_end_write+0x1b0/0x1b0 [ 108.406354][ T6739] ? __kasan_check_write+0x14/0x20 [ 108.411300][ T6739] ? create_io_thread+0x1e0/0x1e0 [ 108.416162][ T6739] ? __mutex_lock_slowpath+0x10/0x10 [ 108.421288][ T6739] __x64_sys_clone+0x289/0x310 [ 108.425881][ T6739] ? __do_sys_vfork+0x130/0x130 [ 108.430569][ T6739] ? debug_smp_processor_id+0x17/0x20 [ 108.435780][ T6739] do_syscall_64+0x44/0xd0 [ 108.440029][ T6739] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 108.445760][ T6739] RIP: 0033:0x7f35007595a9 [ 108.450020][ T6739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 108.469455][ T6739] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 108.477700][ T6739] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 108.485509][ T6739] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 108.493327][ T6739] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 108.501133][ T6739] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 108.508946][ T6739] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 13:52:36 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:36 executing program 4: bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0xe, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0x73}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) openat$cgroup_int(r0, &(0x7f0000000080)='memory.swap.max\x00', 0x2, 0x0) 13:52:36 executing program 3: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r2 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r2, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000001280)={0x7, 0x80, 0x81, 0x4a, 0x8, 0xff, 0x0, 0x0, 0x40020, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80000000, 0x1, @perf_config_ext={0x8000000000000000, 0x100}, 0x10, 0x8, 0x1, 0x3, 0x2, 0x2, 0x9, 0x0, 0x1f, 0x0, 0x3ff}, r1, 0xc, r0, 0x9) perf_event_open(&(0x7f0000001200)={0x2, 0x80, 0x2, 0xc4, 0x8, 0x2, 0x0, 0x2, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x1080a, 0x200, 0x0, 0x5, 0xff, 0x5d4, 0x3, 0x0, 0x0, 0x0, 0xe9fd}, r2, 0x7, r3, 0x2) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r5, &(0x7f0000000080), 0x9) close(r0) write$cgroup_int(r4, &(0x7f0000000000), 0xffe000) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) (async) syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) (async) syz_open_procfs$namespace(r2, 0x0) (async) perf_event_open$cgroup(&(0x7f0000001280)={0x7, 0x80, 0x81, 0x4a, 0x8, 0xff, 0x0, 0x0, 0x40020, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80000000, 0x1, @perf_config_ext={0x8000000000000000, 0x100}, 0x10, 0x8, 0x1, 0x3, 0x2, 0x2, 0x9, 0x0, 0x1f, 0x0, 0x3ff}, r1, 0xc, r0, 0x9) (async) perf_event_open(&(0x7f0000001200)={0x2, 0x80, 0x2, 0xc4, 0x8, 0x2, 0x0, 0x2, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x1080a, 0x200, 0x0, 0x5, 0xff, 0x5d4, 0x3, 0x0, 0x0, 0x0, 0xe9fd}, r2, 0x7, r3, 0x2) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) (async) write$cgroup_type(r5, &(0x7f0000000080), 0x9) (async) close(r0) (async) write$cgroup_int(r4, &(0x7f0000000000), 0xffe000) (async) 13:52:36 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xffffffff00000000, &(0x7f0000000040), 0x0, 0x0) 13:52:36 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='afs_dir_check_failed\x00'}, 0x10) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r0 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) openat$cgroup_ro(r0, &(0x7f0000000100)='memory.events\x00', 0x0, 0x0) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000180)={&(0x7f0000000140)='./file0\x00', r0}, 0x10) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0xffffffffffffffff) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) [ 108.516755][ T6739] 13:52:37 executing program 0: syz_clone(0x40800380, &(0x7f0000000200)="5460f9a248221a8b1565ef516df214a6e9daa41bdb3623d58e108e7dc0ea5702f9f972c9bb2d00", 0x27, 0x0, &(0x7f00000002c0), &(0x7f0000000300)="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") (async) r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) (async, rerun: 32) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x0, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x4, 0xf2, &(0x7f0000000240)=""/242, 0x41100, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000380)={0x3, 0x6, 0xecf, 0x800}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[0xffffffffffffffff]}, 0x80) (async, rerun: 32) r2 = gettid() perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r2, 0xc, 0xffffffffffffffff, 0x0) (async) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=@bloom_filter={0x1e, 0x72e8, 0x3, 0x0, 0x123a, 0xffffffffffffffff, 0x5, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x2}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001800)={&(0x7f0000001440)="15c82a7c2ee1b2a56897e6224a7d62efaeaea90e253f5680ca6996741149dab1a49c874c097b1663886b0087993e289f8398e65b84cc1cac8e58eb53ee2fa1ca47b5f303668e6db8d6eec6407699ba6a39ce8a3dad8e171184d53a0549571a0dc6fae0f43a8397de0dc883d5e3ed69cabfb4c5294abe523c516fc47cb163c68dee1321a7b5deb2909ddd2f10b8bda9ace3761a94c24f84bc7793c14b4f0c", &(0x7f0000001500)=""/99, &(0x7f0000001580)="4828b17b1984949a7c58aab20a3117534e2c1187a3d5c3125c9340f12a04ba9b1ca3e24ac674914cb82e4847c1f93b1406a128d8f7088a67fff5114a7c8b9f8e64416deb06d229c51f3adbdb1de6b9f9b6b584b4d8470dabbaf59e8ece56e7b57851d89cb4d2eb2d72223312754d5161ceb30a66230773772aa60db14a4bd784d4824afc12d8e514d518de2d3b5d6f1c40161dfb97ad271f8145cc12378f38885a2ec6413c05ef551b6d9bde7fee0af377fad562035529b20687187a7d7d7cdc1ae18ee55ad9ce9de3201b8b424663dfb394dcba", &(0x7f0000000000)="97b11670f643341788e732101658b14deb848733e34c1d3b41654da58782302787f5787620436a129f317abcb5998f49149179f24154c5e2759ed8f16366fbc4848eb523cb1ac48a184bab48623c186b9ba5fbff9c2dae0bf565923c6620c64a8990d5f3bb83ef53befd841949008427ecaedaeffdbf4de98f011511e8ac3165f5d97ffe4ff3b4c0d0a409b0f884a7a77fe7f85386cc8b547250b65dfaa21cef58519931c0dd9225e4d6fe78d1fe5e4a48f8daba9f7bcd1e614e822dd871cd98bffd17fb78590cd91b419251443e5c11b247a964e41f838fee41cc6a980d0ffb9b3fbd0bb0a6aa6a38d4299f3efaea4ff7e0d842035a52fa5f47f418425adf89df5fad3684143a3fff02773ab04d776142811c6d5dfc4aefb22f55d95811c748c8481b3784d9c64ecb6f0742eec2763606355a9492918f11cca1ee209a9790fdd220b5758ab9d77956eadfbde50dbbf669e1e687f115091fca9a16db97d08614a0de6bf129ea56a78b5ec3986a5c4d1144d4fabdecca25f3850814171fb416e03711eb03b37684594ba9923b58c9cc5eae85362847852477621b4f6cc4b2a528b3da26", 0x9, r3}, 0x38) (async, rerun: 64) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000001880)={&(0x7f0000001840)='./file0\x00', r0}, 0x10) (async, rerun: 64) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x8) write$cgroup_int(r4, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async, rerun: 32) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001280)={&(0x7f0000001240)='./file0\x00', 0x0, 0x18}, 0x10) (rerun: 32) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) sendmsg(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001300)={0x18, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @cb_func={0x18, 0x3, 0x4, 0x0, 0xfffffffffffffff9}]}, &(0x7f0000001180)='syzkaller\x00', 0xff, 0x1000, &(0x7f00000018c0)=""/4096, 0x40f00, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000011c0)={0x2, 0x5}, 0x8, 0x10, &(0x7f0000001200)={0x5, 0xa, 0x80000000, 0xe95}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000012c0)=[r1, r0, r3, 0xffffffffffffffff, 0xffffffffffffffff, r0, r4, r5, r8]}, 0x80) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000001400)) 13:52:37 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:37 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async, rerun: 32) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='afs_dir_check_failed\x00'}, 0x10) (async, rerun: 32) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) r0 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) openat$cgroup_ro(r0, &(0x7f0000000100)='memory.events\x00', 0x0, 0x0) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000180)={&(0x7f0000000140)='./file0\x00', r0}, 0x10) (async) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) (async) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0xffffffffffffffff) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) 13:52:37 executing program 3: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r2 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r2, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000001280)={0x7, 0x80, 0x81, 0x4a, 0x8, 0xff, 0x0, 0x0, 0x40020, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80000000, 0x1, @perf_config_ext={0x8000000000000000, 0x100}, 0x10, 0x8, 0x1, 0x3, 0x2, 0x2, 0x9, 0x0, 0x1f, 0x0, 0x3ff}, r1, 0xc, r0, 0x9) perf_event_open(&(0x7f0000001200)={0x2, 0x80, 0x2, 0xc4, 0x8, 0x2, 0x0, 0x2, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x1080a, 0x200, 0x0, 0x5, 0xff, 0x5d4, 0x3, 0x0, 0x0, 0x0, 0xe9fd}, r2, 0x7, r3, 0x2) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r5, &(0x7f0000000080), 0x9) close(r0) write$cgroup_int(r4, &(0x7f0000000000), 0xffe000) 13:52:37 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0xffffffffa002800c, &(0x7f0000000040), 0x0, 0x0) 13:52:37 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 77) [ 108.985471][ T6788] FAULT_INJECTION: forcing a failure. [ 108.985471][ T6788] name failslab, interval 1, probability 0, space 0, times 0 [ 109.004574][ T6788] CPU: 0 PID: 6788 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 109.014565][ T6788] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 109.024461][ T6788] Call Trace: [ 109.027582][ T6788] [ 109.030360][ T6788] dump_stack_lvl+0x151/0x1b7 [ 109.034869][ T6788] ? bfq_pos_tree_add_move+0x43e/0x43e [ 109.040169][ T6788] dump_stack+0x15/0x17 [ 109.044157][ T6788] should_fail+0x3c0/0x510 [ 109.048410][ T6788] __should_failslab+0x9f/0xe0 [ 109.053009][ T6788] should_failslab+0x9/0x20 [ 109.057351][ T6788] kmem_cache_alloc+0x4f/0x2f0 [ 109.061950][ T6788] ? anon_vma_clone+0xa1/0x4f0 [ 109.066549][ T6788] anon_vma_clone+0xa1/0x4f0 [ 109.070977][ T6788] anon_vma_fork+0x91/0x4f0 [ 109.075320][ T6788] ? anon_vma_name+0x43/0x70 [ 109.079746][ T6788] dup_mmap+0x750/0xea0 [ 109.083738][ T6788] ? __delayed_free_task+0x20/0x20 [ 109.088696][ T6788] ? mm_init+0x807/0x960 [ 109.092764][ T6788] dup_mm+0x91/0x330 [ 109.096494][ T6788] copy_mm+0x108/0x1b0 [ 109.100400][ T6788] copy_process+0x1295/0x3250 [ 109.104913][ T6788] ? proc_fail_nth_write+0x213/0x290 [ 109.110031][ T6788] ? proc_fail_nth_read+0x220/0x220 [ 109.115066][ T6788] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 109.120015][ T6788] ? vfs_write+0x9af/0x1050 [ 109.124355][ T6788] ? vmacache_update+0xb7/0x120 [ 109.129044][ T6788] kernel_clone+0x22d/0x990 [ 109.133381][ T6788] ? file_end_write+0x1b0/0x1b0 [ 109.138064][ T6788] ? __kasan_check_write+0x14/0x20 [ 109.143013][ T6788] ? create_io_thread+0x1e0/0x1e0 [ 109.147883][ T6788] ? __mutex_lock_slowpath+0x10/0x10 [ 109.152995][ T6788] __x64_sys_clone+0x289/0x310 [ 109.157596][ T6788] ? __do_sys_vfork+0x130/0x130 [ 109.162286][ T6788] ? debug_smp_processor_id+0x17/0x20 [ 109.167492][ T6788] do_syscall_64+0x44/0xd0 [ 109.171744][ T6788] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 109.177470][ T6788] RIP: 0033:0x7f35007595a9 13:52:37 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x44227, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x1, 0xffffffffffffffff, 0x6) perf_event_open(&(0x7f0000001300)={0x2, 0x80, 0x7, 0x4f, 0x3, 0x4, 0x0, 0x100000001, 0x84, 0x4, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000000140), 0x6}, 0xa000, 0xffffffff, 0x81, 0x8, 0xffffffffffffff00, 0x4, 0x8, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0) r0 = syz_clone(0x802000, &(0x7f0000000200)="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", 0x1000, &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000001200)="e77cbbbd088143157d14d8797d01e1f5d963c825331f4c870b0f517e5fd1a63d39e5c56849d6b8f101ffad0796d9bc0b6ecdb7d84d1757813be47ad5fba3dbc5d13c1a90d16b4ebc73908d4b1aa5f005de60b8d47827b0c05176ba80f699534339912d03e0ddf1bc482c917330e5403d44397e57dcdfbb3fe672715d83e4b204bbdbaed91957fbad3176e75b098dedf2cebffa3894ffaa0829bb91f2b195ff46549515785c4f730b3d62285c11378f570a3147b7f7bb8336afecd21375cc28d2a210732412f94da0") perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x80, 0x6, 0x20, 0x7a, 0x0, 0x10000, 0x4ca, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0xffffffffffffffff, 0x8}, 0x1088, 0x8, 0x2, 0x1, 0x40, 0x3, 0x0, 0x0, 0x6, 0x0, 0x9}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) 13:52:37 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r2 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r2, 0x0) r3 = perf_event_open$cgroup(&(0x7f0000001280)={0x7, 0x80, 0x81, 0x4a, 0x8, 0xff, 0x0, 0x0, 0x40020, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80000000, 0x1, @perf_config_ext={0x8000000000000000, 0x100}, 0x10, 0x8, 0x1, 0x3, 0x2, 0x2, 0x9, 0x0, 0x1f, 0x0, 0x3ff}, r1, 0xc, r0, 0x9) perf_event_open(&(0x7f0000001200)={0x2, 0x80, 0x2, 0xc4, 0x8, 0x2, 0x0, 0x2, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x1080a, 0x200, 0x0, 0x5, 0xff, 0x5d4, 0x3, 0x0, 0x0, 0x0, 0xe9fd}, r2, 0x7, r3, 0x2) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000001c00)='memory.events\x00', 0x7a05, 0x1700) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r5, &(0x7f0000000080), 0x9) close(r0) write$cgroup_int(r4, &(0x7f0000000000), 0xffe000) 13:52:37 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x44227, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x1, 0xffffffffffffffff, 0x6) perf_event_open(&(0x7f0000001300)={0x2, 0x80, 0x7, 0x4f, 0x3, 0x4, 0x0, 0x100000001, 0x84, 0x4, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000000140), 0x6}, 0xa000, 0xffffffff, 0x81, 0x8, 0xffffffffffffff00, 0x4, 0x8, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0) (async, rerun: 32) r0 = syz_clone(0x802000, &(0x7f0000000200)="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", 0x1000, &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000001200)="e77cbbbd088143157d14d8797d01e1f5d963c825331f4c870b0f517e5fd1a63d39e5c56849d6b8f101ffad0796d9bc0b6ecdb7d84d1757813be47ad5fba3dbc5d13c1a90d16b4ebc73908d4b1aa5f005de60b8d47827b0c05176ba80f699534339912d03e0ddf1bc482c917330e5403d44397e57dcdfbb3fe672715d83e4b204bbdbaed91957fbad3176e75b098dedf2cebffa3894ffaa0829bb91f2b195ff46549515785c4f730b3d62285c11378f570a3147b7f7bb8336afecd21375cc28d2a210732412f94da0") (rerun: 32) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x80, 0x6, 0x20, 0x7a, 0x0, 0x10000, 0x4ca, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0xffffffffffffffff, 0x8}, 0x1088, 0x8, 0x2, 0x1, 0x40, 0x3, 0x0, 0x0, 0x6, 0x0, 0x9}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) [ 109.181724][ T6788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 109.201165][ T6788] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 109.209413][ T6788] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 109.217224][ T6788] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 109.225034][ T6788] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 13:52:37 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='afs_dir_check_failed\x00'}, 0x10) (async, rerun: 64) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async, rerun: 64) r0 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8) openat$cgroup_ro(r0, &(0x7f0000000100)='memory.events\x00', 0x0, 0x0) (async) bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000180)={&(0x7f0000000140)='./file0\x00', r0}, 0x10) (async, rerun: 32) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (rerun: 32) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) (async) ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0xffffffffffffffff) (async) openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0) [ 109.233102][ T6788] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 109.240916][ T6788] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 109.248731][ T6788] 13:52:37 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 78) 13:52:37 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) 13:52:37 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r2 = openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x0, 0x0) openat$cgroup_procs(r2, &(0x7f00000000c0)='tasks\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000100)=0xffffffffffffffff, 0x12) 13:52:37 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) r2 = openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x0, 0x0) openat$cgroup_procs(r2, &(0x7f00000000c0)='tasks\x00', 0x2, 0x0) write$cgroup_pid(r2, &(0x7f0000000100)=0xffffffffffffffff, 0x12) [ 109.333967][ T6836] FAULT_INJECTION: forcing a failure. [ 109.333967][ T6836] name failslab, interval 1, probability 0, space 0, times 0 13:52:37 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40086602, &(0x7f0000000040)) perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r1, &(0x7f0000000180), 0xfdef) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0) write$cgroup_type(0xffffffffffffffff, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x5, 0x9, 0xe0, 0x1, 0x0, 0x5, 0x88000, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000000), 0x5}, 0x0, 0x800, 0x800, 0x9, 0x8, 0x9, 0xe29f, 0x0, 0x101, 0x0, 0xffffffffffff0d4d}, 0x0, 0x4, 0xffffffffffffffff, 0x1) 13:52:37 executing program 0: r0 = gettid() r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="09b782262d24639c9965b642d46a1800000001000003000000064000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x16, 0x7f, 0x9, 0x8a, 0x0, 0x10000, 0x842, 0x6, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_bp={&(0x7f00000000c0), 0x2}, 0x40802, 0x3ff, 0x20, 0x0, 0x10000, 0x8, 0x9, 0x0, 0x8, 0x0, 0xfffffffffffffffa}, 0xffffffffffffffff, 0x0, r2, 0x9) syz_clone(0x50a06080, 0x0, 0x0, 0x0, &(0x7f0000001840), &(0x7f0000001880)) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x1, 0x3, 0x1, 0x2, 0x0, 0x0, 0x9ddcddd8517a4d41, 0xa, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x400, 0x4, @perf_bp={&(0x7f0000000000), 0xb}, 0x8000, 0x8, 0x6be, 0x7, 0x7c, 0x0, 0xd64, 0x0, 0x0, 0x0, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) [ 109.376481][ T6836] CPU: 0 PID: 6836 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 109.386480][ T6836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 109.396373][ T6836] Call Trace: [ 109.399498][ T6836] [ 109.402271][ T6836] dump_stack_lvl+0x151/0x1b7 [ 109.406790][ T6836] ? bfq_pos_tree_add_move+0x43e/0x43e [ 109.412082][ T6836] dump_stack+0x15/0x17 [ 109.416071][ T6836] should_fail+0x3c0/0x510 [ 109.420328][ T6836] __should_failslab+0x9f/0xe0 [ 109.424927][ T6836] should_failslab+0x9/0x20 [ 109.429265][ T6836] kmem_cache_alloc+0x4f/0x2f0 [ 109.433863][ T6836] ? anon_vma_clone+0xa1/0x4f0 [ 109.438467][ T6836] anon_vma_clone+0xa1/0x4f0 [ 109.442891][ T6836] anon_vma_fork+0x91/0x4f0 [ 109.447229][ T6836] ? anon_vma_name+0x4c/0x70 [ 109.451659][ T6836] dup_mmap+0x750/0xea0 [ 109.455652][ T6836] ? __delayed_free_task+0x20/0x20 [ 109.460595][ T6836] ? mm_init+0x807/0x960 [ 109.464677][ T6836] dup_mm+0x91/0x330 [ 109.468410][ T6836] copy_mm+0x108/0x1b0 [ 109.472332][ T6836] copy_process+0x1295/0x3250 [ 109.476827][ T6836] ? proc_fail_nth_write+0x213/0x290 [ 109.481950][ T6836] ? proc_fail_nth_read+0x220/0x220 [ 109.486981][ T6836] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 109.491929][ T6836] ? vfs_write+0x9af/0x1050 [ 109.496267][ T6836] ? vmacache_update+0xb7/0x120 [ 109.500957][ T6836] kernel_clone+0x22d/0x990 [ 109.505294][ T6836] ? file_end_write+0x1b0/0x1b0 [ 109.509983][ T6836] ? __kasan_check_write+0x14/0x20 [ 109.514929][ T6836] ? create_io_thread+0x1e0/0x1e0 [ 109.519789][ T6836] ? __mutex_lock_slowpath+0x10/0x10 [ 109.524912][ T6836] __x64_sys_clone+0x289/0x310 [ 109.529509][ T6836] ? __do_sys_vfork+0x130/0x130 [ 109.534205][ T6836] ? debug_smp_processor_id+0x17/0x20 [ 109.539404][ T6836] do_syscall_64+0x44/0xd0 [ 109.543666][ T6836] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 109.549385][ T6836] RIP: 0033:0x7f35007595a9 [ 109.549936][ T6817] cgroup: fork rejected by pids controller in 13:52:38 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000180), 0xfdef) [ 109.553634][ T6836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 109.553655][ T6836] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 [ 109.574089][ T6817] /syz5 [ 109.579065][ T6836] ORIG_RAX: 0000000000000038 [ 109.592091][ T6836] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 109.599898][ T6836] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 109.607713][ T6836] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 109.615518][ T6836] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 109.622784][ T6817] 13:52:38 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r2 = openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x0, 0x0) openat$cgroup_procs(r2, &(0x7f00000000c0)='tasks\x00', 0x2, 0x0) (async, rerun: 64) write$cgroup_pid(r2, &(0x7f0000000100)=0xffffffffffffffff, 0x12) (rerun: 64) 13:52:38 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000180), 0xfdef) 13:52:38 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40086602, &(0x7f0000000040)) perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r1, &(0x7f0000000180), 0xfdef) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0) write$cgroup_type(0xffffffffffffffff, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x5, 0x9, 0xe0, 0x1, 0x0, 0x5, 0x88000, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000000), 0x5}, 0x0, 0x800, 0x800, 0x9, 0x8, 0x9, 0xe29f, 0x0, 0x101, 0x0, 0xffffffffffff0d4d}, 0x0, 0x4, 0xffffffffffffffff, 0x1) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40086602, &(0x7f0000000040)) (async) perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) (async) write$cgroup_type(r1, &(0x7f0000000180), 0xfdef) (async) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0) (async) write$cgroup_type(0xffffffffffffffff, 0x0, 0x0) (async) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0xa) (async) perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x5, 0x9, 0xe0, 0x1, 0x0, 0x5, 0x88000, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000000), 0x5}, 0x0, 0x800, 0x800, 0x9, 0x8, 0x9, 0xe29f, 0x0, 0x101, 0x0, 0xffffffffffff0d4d}, 0x0, 0x4, 0xffffffffffffffff, 0x1) (async) [ 109.623331][ T6836] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 109.633315][ T6836] 13:52:38 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x44227, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x1, 0xffffffffffffffff, 0x6) perf_event_open(&(0x7f0000001300)={0x2, 0x80, 0x7, 0x4f, 0x3, 0x4, 0x0, 0x100000001, 0x84, 0x4, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000000140), 0x6}, 0xa000, 0xffffffff, 0x81, 0x8, 0xffffffffffffff00, 0x4, 0x8, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0) r0 = syz_clone(0x802000, &(0x7f0000000200)="50346470f5ead1687818f450a5b0bdd86ead4b46db302e5b814b7636ef754ee69b2f3f909c360586e990c390fcb618a17fb005ce05d34d107e66ed48d0f5fc1540b265a336705d5eaa467069e8ab6f0edaf39f480ad083ce942cb708807da44f295a876c40108f9115a6efaebd8e3e7b6716821b1d8601d4da038cb9c88ad8c00065ea5705dc999c8eecaca1e52ba9c80c16d6c52d6012e62fbe74a28c0d3a9a57e5600cda42d46ca15f97a460092475e7b42df8d39ea4531cad24f3effd1c65bfbdca7ab0f29acb5e2a7ca1781f321dee3eadb1160fbc59229d65cd0f0e2e3924499369252ce251d8f79769b886ea65416c7e61fa7139182198d9ab67a50cc8dc958a2266cfbdc6dd84aa0a9a9c3603ac20c0344b7f0956b0cb69b0a5d3335d628fd88bb695bef3e13467eefcc0b15a64947083d3670d4933f39260c99526c252d133fea9a169d886c613895ffa0c677565bcd07296d71c52bccfb67f967100af8fe6be86dc3e4601d3f189083eff0eec453db63d878a00ee6b5037dfb13bc9bd00d27742ea4133633eee99d8ebd5bcd9f61607d37ffbcd0eb136010046d5d9c2e662641ddb70a26a47a209046c29a940b8f2b6e3585308bbe7dcec4b4cf1ff1d8ff8ae1edfa12e3ee0c1676a004cacaffa8de93b6f7deb827dfb0d557839fc74a91b6d5d6206ff587b20e22f541d12a04f69d4ebe5ec9b5dcae7eca7298cf04b1418c76428d4d08fc2025c71cc5a1b1a290c77056c43aa357fc623a47f52e1fdaef57a258a9d23a7b070bbff4c91230a1d45392bb2bea90c0f0f6e3f1227ff6350f210ab114377c58366b3ab1c383f271c535a237b894848e9fe8ae343a05d9bd9d5b2bb43ff5034460c74673d6edfadfad6c2eeb538c091770ae0ff57249b3d2cd5d9ec430d7490b1fc4deef853ba7ac3ced74a90fac0995087be8ed501166f3e9a4c7731dea5147e1a1fac6f55afcc622e6c34a0aa04cf21502287a9bb5203c82433c773e969afab959a7a89c75816a0aa163420b47b31ca9989f243c14d11995293c5d50c0cd72e1ee039ff4145124b6e49ce6f4836becd1dacef6aee75f8005c4316c0518efaf46e47f6cc9f74a5780deb66097bf07db4b5f15a8e3119d9e5a4bd6a9f37a1d4b2213f42d79c4020ab600c89e2e3c0c00c7d7fca2e86b56d9d866b650d0397a0a378c8f42a78696ce1b1ec81e42a640f9f2fce58b7e415d4b23eba29e04167cdf3f4992719464c7d5b0e2131c59aaf1b9df7b2489b9ad16f85858d57ada819f4f96606a1b1b18830aeafa840fa8d40682311c6e214baa68baec17779b4688187acdae6b99b3c767b2c0f0de34f4d3061e3359ab51e6f043fb320b54973e7abd8c0ab586087b8a898407e62ba5173d7d4ffe2744bb6538558e917ed00755317ba20647275c8009a4428a12512c0a31abd0e301e260ed8032b75af8b253e12b37d60d7221919132f2debb73f9c6ac80d75d7e0ba94e7ccbc039e262ccb0738bad13f1c20f2a73ae11467cee02de78ab91fd0bf76b77cd311e93b18bd6e90e13c3be0efacd3e8412605d672725052a8606188901ff1801ac37e84a9161556b5ba2712fba09ab2d3ff3fe12943266c8b77e69317991879fb44fb73d634abcfe9415f8c59f7ffd9bea4eeb5beb13f1657b4280467a519c9b014d923be5aba837153c4cfd6bde31b54e1c2de08e5f303fdb16a8537bd2a5af9d74f51decb51e2a081766e589dd824fd1cfe16750f6a81337823e2a1aaaf8522f6d56d1a6ba6c7c60389d14dd16d9f70cd4826c1627efb36ed6841def34776de6fd9df751857f066b799d82ddc8d7bbea5655ae2e32ccf43e2d4cd825eccd46b16f8521e7fb385d378b80b715b445c40e25caeb45a4c7f8369846bc90f63b3f44c7b66fa93b539f362e83db0f875f9c1e65c5885e62db7c69f0a598dde16c25d392761198932a2e1a354d0d087ec90f5c03c8b7010209047326edc03562eccccace5e49e93e35e0e5f2907d35970b4b91cf05c8060168f8fa94ddd0b2425868f2b41742024be43adf858a1cc5ccf91321cf68b10403fe5e881f2f39d2e74c7312894009831c6356acaa45f1e5ed771a676335e721091eb92bb1f6e21a13872f56da184a3cdbd139a28728ae8435c610e53a484165a6633082e269a982fe52745fb7c0a9e3a16e67cbd9a4228988f83ec599ce9ec5868a420c89acf72e3fbfd7ffe59860f2b56137b1ba27f26e2e5847d035777b4d8d1265da8779b80bd1197e198cb749cb4d0a0973e89e8dd3ed7634d39741c8c0c545854b071185cd7074efded5b0be4aa25406a44ffe17ca6f72af28b25dfa1b5f3fbb0577a358a646fb84cf85e62b83b18584a18718afcf5fd68ade013b3c4cb7b6e182d30e97d8ad544c5a358091aeef1f7cbcb8a3d89df0c66ad9402b3e6717767a30e80e9c1bdddea55b1a1a0a22596f49f0f94ee9338e148c77109bd44bf9e51ac515ebbf836d7d2b6a2ea09921ee07a2cf1477865217af716e3226035e2e314c7c32cda2f010c0c75e77663dfd1ded886ccfdfd577b4a390907d984f0913d1397e743d10052f2885a3caa7bb53d3b08269737f26c4a07f9197e14ce957aac8a8c9ffd442ad668087b527171e25aa0972ae67ac46ced5c81652abf8dd61ab0068dff7f68dc25b5b5d32719e934e3fdba0fee889ef5e953c6f363473def107a68223f128240487b6341eadd435e543bc7736862eb91cec0af9aa9a713bd04bb9cc2cf843a9a60a9f2b529470e477a056ed1006be1e2f384972a22fcddf047a6b797d525171ba0a26aa0d4f61b3c1914590bf8de5171ad4ed2ab923c11b1c2b5dd270dec9744c205adf5ac55a851271dadb1d658311569eb91efa6ff6a6aa8ad70237acf539c8ba70a2358584385f426900c2064f836ff933f296c7386a41fb6c75978bf9a2bcc437c629d0872b6b6c6a8de3c46612fd7c499ff8d9a1d8c4629cdc445055893a5bdfd66bb02b89c538d47b2ff29e6878637765c1fd788cc488ea9c5518112f45215a17de1355dc7ec012cc42842a8016ba9a20f6f1106429c881d82aabdfb82f0e6d3c44ce957694524f583c5bf386525cdf8679861921c2f7b9970eb04e2a8a265a248661e43c88ea452da4cb8617971c3f72b2945d31a9bd2591f4219c7b8ea418184862de087158810fb97b7a1bd13cb94f5c5b397d13014c4b0852e68b5e0659acb0af5f44dc91b00f69898e98d412ab38e09601a73cd9635dbe1c0d6bcebadb13547af19595ba0793baeb75932a9f1549f250c3fb4fc5cca9f8d0a26b613e9e9f0cb0d15ab3a1455d7ee6753d30d150aed6c5b4d31550873f93df83f9807aa7a3ce9972c3b6cc055bf0cbe6b790e9cd3e0881c379b7f67550aded958e89393ad5dd283b759ab201575c24ed88e3f8c1fa9576525ef0500981307fa42fbf3f304debaeac6447ea5aeb5b99c2a4689e90051d81b7fd115d0b1958109e90fcd2e484bd90a44edbdc6a580eaaf70d00524cacd08f3f45e789532525ab494872e27971e44137ab61856e247a8e10eb10cb035e4ccc31cf0017daa4f0d19f7e938770c7fd20912ec0df7872d1371bf3776900044721db2f90865ddd07ad332493634e0dcd617a794783b673546c2a3c94182d8d33124a0610013384e60c5d3f9d413922895414958c95567c37ede7bd304e6947b2cdcbed761183b63c385ab15d8ba0ab74314ad754f02ba4a526f0ea9839899203b5402d5e9dce4cf8e5f5bf62018c02c39cba12cc11074756fd70f577cd3bd1ad15827d610727a8d355d7aa5d1bbeebcb1c91cdcb5aeded55969291abf8df29179d8770c6d4c69f4bb1230d003864fbb5490b7d25e5d82b0be68917046438a682261d68d7b668bf601fda4c3e5a6a2ab0366bbe15fa4595b9402b60030d136072f4b55163e36d98c05a463ff98df7481ce232c6215f701700e467e1db731dfa4e164264167a6677232f51a629c19d96762b6e6409e5a3f2988dc4ca30d2d5f0921a9324367d25ba94f0e7b8d0ac2075e0011abb5e9100fcf060282e6c5690858dc2d13796c8e06ecf1e6935b399fb29e70212987f2610fd4fbad13ed408c4913175d887a0b84dd9c0a282cf95635cde0d054ae5e7562189286e89205e875b7e53878809d888bb0017f958e234165c38827e60462ea654a68f5883187badca85b18fffb71e529a71cce990130c439c9dc29a613e3cdc20b75b3268c3e6cd767d8d78c2b3739b368618917502504f4a15debdabb82ad90dc4e45da8be34f0450f9112955c1e1f7b86155d7fea9f334b0f1f1f58fd3bbedeb932930eaede999314c9d4df44232c68c837af8554b4cff7cb8af2651e3080c265222a3c51f8767e7e15b57145ed6d1ad9ade1d647bcba44ca41c9b604a99491a038b5dc0873d3fa7d3221d02ac3394601de9fdecbb5ed1e9da61ee192071f4bb195eb11e0aec3ae424bc231a32edd0328aa72df64a2120681f2bbef101b673ba245fadf16d7b2f08ff0470b5ae71aeb1795759e167187a9e4d2781d149f3ef4e2edffb69920ad6e1f065e6be657b26c80eeea19d0942c593ec6fc6744a73a073f98bdc4285c95d5a04302b7bfcc0b1919ad40f1dad572d04a0a379b8ec48ae29d739996fccf8c10e72b513b0cbf4281e11acbf7f5d9e3ec102c32d060b6fc0cd12ca7ff1be37e6c629c96902fc1f25e2a6a55900ee74395485dd5520529fb5774aeb0b699c8ed6679f1985b3cd499303284fc666abc62913ea48173973032f2c419d941d944d01ab7bef72b29e8073d61fa7ee5d5867b1c175f64e7f18a434046f63681aa3ec3d75ca3f883080c7d967ed0f7913bb23c5a146dba264b98c2cf9bb66f4d10477812989c95e0259d3111d0933db3afc30828d0810af269fbe807eb77bda40a6d020d37a7a3afb3dd7fadc3f157357a331bc7551118f6db1c78bfac3bb028edd968bd9ab49f84080cf513c7d22b7d599ba963d2b59de89f15fd8441882671406220f133c1923174078f8afa86dc7bdb032bb4a3658ba759b303f911399dd463a3a4799da01bf9eeb3417dc9babcbafb5f800c2f0d0dd4ccfbe2b9a95cd32986dc6db112c12098c5a06071600613c306d9030335379d507605d26e24802dbaab5b0162224139ed91a6bbb9081199b3e11c9fdf39d717e466e8c6c06ff4f92dc46f198fe5ec3eb91b2de30b77e68b9b366a369f525f0916b388dee2c8a90d5999b220ba7fd9eef013a8a39c6d7d8ca709ca9c426462529a89ba2ed15a867f362783cd756af26135c5a331f9d67b468959f78bafb3569945b6d3293143af1337d43dd15e131742cc15a81f915a2f1b24cb0fefeab04693bf9f7f389769c2b142551c8c295429c0f8cfba010519b7264ce2c81c05d3abeea6d0a30c6268ea4d759c78613abb01c171ff1c1f94d7fb437e788ffce3309a0750a128ba7116877ed5178135205f31c4bda0d8150c66fa4ebdff09aca7cb5a5caf6d4082fdf509ad009292f9fa2e9662aa0fc897c378e07823948f47118e65219a948db38cd5b000a5975f79026bc07747b66936e12ab584f81507f461edcb4e33e3167567ba38ad155423d0a090faaa35eb5cc90167b51f7815fc436f5ef14d7630469b67b636bf65fbd9e554016b9d7c7290e780dbd97c44cca29fd4d4cfea52b018f388e01cfcf0b82dcee843abd9a1522479a8123b404eea1097f5cbcd4d9e54e877ab47c97c2b6c432288874626b94cc081093a977661055d355cba6f2c3ae4b7c1ec7cd76b20b9f4d543bd774ba2845050c063b02fb7a8b84fc65bd3f", 0x1000, &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000001200)="e77cbbbd088143157d14d8797d01e1f5d963c825331f4c870b0f517e5fd1a63d39e5c56849d6b8f101ffad0796d9bc0b6ecdb7d84d1757813be47ad5fba3dbc5d13c1a90d16b4ebc73908d4b1aa5f005de60b8d47827b0c05176ba80f699534339912d03e0ddf1bc482c917330e5403d44397e57dcdfbb3fe672715d83e4b204bbdbaed91957fbad3176e75b098dedf2cebffa3894ffaa0829bb91f2b195ff46549515785c4f730b3d62285c11378f570a3147b7f7bb8336afecd21375cc28d2a210732412f94da0") perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x80, 0x6, 0x20, 0x7a, 0x0, 0x10000, 0x4ca, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0xffffffffffffffff, 0x8}, 0x1088, 0x8, 0x2, 0x1, 0x40, 0x3, 0x0, 0x0, 0x6, 0x0, 0x9}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x44227, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x1, 0xffffffffffffffff, 0x6) (async) perf_event_open(&(0x7f0000001300)={0x2, 0x80, 0x7, 0x4f, 0x3, 0x4, 0x0, 0x100000001, 0x84, 0x4, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000000140), 0x6}, 0xa000, 0xffffffff, 0x81, 0x8, 0xffffffffffffff00, 0x4, 0x8, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x0) (async) syz_clone(0x802000, &(0x7f0000000200)="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", 0x1000, &(0x7f0000000000), &(0x7f0000000100), &(0x7f0000001200)="e77cbbbd088143157d14d8797d01e1f5d963c825331f4c870b0f517e5fd1a63d39e5c56849d6b8f101ffad0796d9bc0b6ecdb7d84d1757813be47ad5fba3dbc5d13c1a90d16b4ebc73908d4b1aa5f005de60b8d47827b0c05176ba80f699534339912d03e0ddf1bc482c917330e5403d44397e57dcdfbb3fe672715d83e4b204bbdbaed91957fbad3176e75b098dedf2cebffa3894ffaa0829bb91f2b195ff46549515785c4f730b3d62285c11378f570a3147b7f7bb8336afecd21375cc28d2a210732412f94da0") (async) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x80, 0x6, 0x20, 0x7a, 0x0, 0x10000, 0x4ca, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0xffffffffffffffff, 0x8}, 0x1088, 0x8, 0x2, 0x1, 0x40, 0x3, 0x0, 0x0, 0x6, 0x0, 0x9}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) 13:52:38 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0xc0506617, &(0x7f0000000040)=0x2) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) openat$cgroup(r0, &(0x7f00000003c0)='syz1\x00', 0x200002, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r4], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x40f00, 0x11, '\x00', r3, 0x25, r2, 0x8, &(0x7f0000000800)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800004, 0x8, 0x3c}, 0x10}, 0x80) r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r5}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r3, r5, 0x3, 0x4, 0x5}, 0x48) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYRES8=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) sendmsg(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) openat$cgroup_int(r8, &(0x7f0000000080)='memory.oom.group\x00', 0x2, 0x0) r9 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r9, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:38 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000180), 0xfdef) 13:52:38 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 79) 13:52:38 executing program 3: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40086602, &(0x7f0000000040)) perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r1, &(0x7f0000000180), 0xfdef) (async) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0) (async) write$cgroup_type(0xffffffffffffffff, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x5, 0x9, 0xe0, 0x1, 0x0, 0x5, 0x88000, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000000), 0x5}, 0x0, 0x800, 0x800, 0x9, 0x8, 0x9, 0xe29f, 0x0, 0x101, 0x0, 0xffffffffffff0d4d}, 0x0, 0x4, 0xffffffffffffffff, 0x1) 13:52:38 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, 0x0, 0x0) 13:52:38 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0xc0506617, &(0x7f0000000040)=0x2) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) (async) openat$cgroup(r0, &(0x7f00000003c0)='syz1\x00', 0x200002, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r4], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x40f00, 0x11, '\x00', r3, 0x25, r2, 0x8, &(0x7f0000000800)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800004, 0x8, 0x3c}, 0x10}, 0x80) (async) r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r5}, 0x8) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r3, r5, 0x3, 0x4, 0x5}, 0x48) (async) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYRES8=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) openat$cgroup_int(r8, &(0x7f0000000080)='memory.oom.group\x00', 0x2, 0x0) r9 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r9, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 109.749042][ T6897] FAULT_INJECTION: forcing a failure. [ 109.749042][ T6897] name failslab, interval 1, probability 0, space 0, times 0 [ 109.763705][ T6897] CPU: 0 PID: 6897 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 109.773697][ T6897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 109.783586][ T6897] Call Trace: [ 109.786713][ T6897] [ 109.789488][ T6897] dump_stack_lvl+0x151/0x1b7 [ 109.794005][ T6897] ? bfq_pos_tree_add_move+0x43e/0x43e [ 109.799298][ T6897] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 109.805637][ T6897] dump_stack+0x15/0x17 [ 109.809630][ T6897] should_fail+0x3c0/0x510 [ 109.813879][ T6897] __should_failslab+0x9f/0xe0 [ 109.818482][ T6897] should_failslab+0x9/0x20 [ 109.822819][ T6897] kmem_cache_alloc+0x4f/0x2f0 [ 109.827420][ T6897] ? anon_vma_fork+0xf7/0x4f0 [ 109.831931][ T6897] anon_vma_fork+0xf7/0x4f0 [ 109.836271][ T6897] ? anon_vma_name+0x43/0x70 [ 109.840704][ T6897] dup_mmap+0x750/0xea0 [ 109.844691][ T6897] ? __delayed_free_task+0x20/0x20 [ 109.849639][ T6897] ? mm_init+0x807/0x960 [ 109.853714][ T6897] dup_mm+0x91/0x330 [ 109.857453][ T6897] copy_mm+0x108/0x1b0 [ 109.861372][ T6897] copy_process+0x1295/0x3250 [ 109.865866][ T6897] ? proc_fail_nth_write+0x213/0x290 [ 109.870985][ T6897] ? proc_fail_nth_read+0x220/0x220 [ 109.876017][ T6897] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 109.880962][ T6897] ? vfs_write+0x9af/0x1050 [ 109.885304][ T6897] ? vmacache_update+0xb7/0x120 [ 109.889990][ T6897] kernel_clone+0x22d/0x990 [ 109.894330][ T6897] ? file_end_write+0x1b0/0x1b0 [ 109.899023][ T6897] ? __kasan_check_write+0x14/0x20 [ 109.903962][ T6897] ? create_io_thread+0x1e0/0x1e0 [ 109.908828][ T6897] ? __mutex_lock_slowpath+0x10/0x10 [ 109.913947][ T6897] __x64_sys_clone+0x289/0x310 [ 109.918545][ T6897] ? __do_sys_vfork+0x130/0x130 [ 109.923234][ T6897] ? debug_smp_processor_id+0x17/0x20 [ 109.928440][ T6897] do_syscall_64+0x44/0xd0 [ 109.932694][ T6897] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 109.938419][ T6897] RIP: 0033:0x7f35007595a9 [ 109.942672][ T6897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 109.962115][ T6897] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 109.970362][ T6897] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 109.978203][ T6897] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 109.985983][ T6897] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 13:52:38 executing program 0: r0 = gettid() (async) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="09b782262d24639c9965b642d46a1800000001000003000000064000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) (async) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x16, 0x7f, 0x9, 0x8a, 0x0, 0x10000, 0x842, 0x6, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_bp={&(0x7f00000000c0), 0x2}, 0x40802, 0x3ff, 0x20, 0x0, 0x10000, 0x8, 0x9, 0x0, 0x8, 0x0, 0xfffffffffffffffa}, 0xffffffffffffffff, 0x0, r2, 0x9) syz_clone(0x50a06080, 0x0, 0x0, 0x0, &(0x7f0000001840), &(0x7f0000001880)) (async) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x1, 0x3, 0x1, 0x2, 0x0, 0x0, 0x9ddcddd8517a4d41, 0xa, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x400, 0x4, @perf_bp={&(0x7f0000000000), 0xb}, 0x8000, 0x8, 0x6be, 0x7, 0x7c, 0x0, 0xd64, 0x0, 0x0, 0x0, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) 13:52:38 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0xc0506617, &(0x7f0000000040)=0x2) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) openat$cgroup(r0, &(0x7f00000003c0)='syz1\x00', 0x200002, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r4], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x40f00, 0x11, '\x00', r3, 0x25, r2, 0x8, &(0x7f0000000800)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800004, 0x8, 0x3c}, 0x10}, 0x80) r5 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r5}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r3, r5, 0x3, 0x4, 0x5}, 0x48) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYRES8=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) sendmsg(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) openat$cgroup_int(r8, &(0x7f0000000080)='memory.oom.group\x00', 0x2, 0x0) r9 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r9, &(0x7f0000000040)=0xffffffffffffffff, 0x12) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_ro(r0, &(0x7f00000000c0)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0xc0506617, &(0x7f0000000040)=0x2) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) (async) openat$cgroup(r0, &(0x7f00000003c0)='syz1\x00', 0x200002, 0x0) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r4], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x40f00, 0x11, '\x00', r3, 0x25, r2, 0x8, &(0x7f0000000800)={0x6, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800004, 0x8, 0x3c}, 0x10}, 0x80) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) (async) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r5}, 0x8) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r3, r5, 0x3, 0x4, 0x5}, 0x48) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYRES8=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r3, 0x0, r1, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8) (async) write$cgroup_int(r8, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r8, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x0) (async) openat$cgroup_int(r8, &(0x7f0000000080)='memory.oom.group\x00', 0x2, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) write$cgroup_int(r9, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) 13:52:38 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, 0x0, 0x0) 13:52:38 executing program 3: syz_clone(0x800, &(0x7f0000000080)="09d3ad90fa09ebeeeff91e24f018949020f5b525cf4c21b7301c9a9e57960ca6c5a01df95eaa24b620cd5363f55ce2a3c3aa6fa7b854b22bf95f5f2f0e157f1df6e96f1894471a8118a838cb579fdcfd8ff3f8bbefaa9ca9984c58f8561ebb56419711a5d7a3b810f5846788d6ec3a43fe9a05203a2ebbf8eeacefa9d608955484304d6b31bcfecbfbd6edd2d18e9d607fa408", 0x93, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="908dea6edbb4ba926f60745f8f5ff8f01bb3d69659c97482fa48b363429e01d1548385f9a38b597cf9d1a156977674c358ee7b441b6d3763137ece65aee80dff05691bb7214b4bd9f9a2f26bcd131d690ce439204aecc0586984bf0eadbf8b35a5e797284171e54f9685af8971eb7835552df1bb151fd762a87ed5ea980c1e69be131a650ad4c7c7db3a518027aeb9bab6876cfe2c0bd5a226ce415ea086cfdf5b3e81583fd604ea50eae0e5d2f36367e82af9241681c348a4f81df6810f0403") bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x71, 0x10, 0x30}, [@ldst={0x2, 0x0, 0x3, 0xa, 0x0, 0xff00}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48) [ 109.993791][ T6897] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 110.001602][ T6897] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 110.009427][ T6897] [ 110.022500][ T6897] ================================================================== [ 110.030398][ T6897] BUG: KASAN: use-after-free in vm_area_free+0x7e/0x230 [ 110.037520][ T6897] Write of size 4 at addr ffff8881120784f8 by task syz-executor.2/6897 [ 110.045592][ T6897] 13:52:38 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, 0x0, 0x0) [ 110.047762][ T6897] CPU: 0 PID: 6897 Comm: syz-executor.2 Not tainted 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 110.057745][ T6897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 110.067638][ T6897] Call Trace: [ 110.070758][ T6897] [ 110.073538][ T6897] dump_stack_lvl+0x151/0x1b7 [ 110.078050][ T6897] ? bfq_pos_tree_add_move+0x43e/0x43e [ 110.083340][ T6897] ? panic+0x727/0x727 [ 110.087248][ T6897] ? slab_free_freelist_hook+0xc9/0x1a0 [ 110.092628][ T6897] print_address_description+0x87/0x3d0 [ 110.098010][ T6897] kasan_report+0x1a6/0x1f0 [ 110.102348][ T6897] ? vm_area_free+0x7e/0x230 [ 110.106774][ T6897] ? vm_area_free+0x7e/0x230 [ 110.111202][ T6897] kasan_check_range+0x2aa/0x2e0 [ 110.115977][ T6897] __kasan_check_write+0x14/0x20 [ 110.120748][ T6897] vm_area_free+0x7e/0x230 [ 110.125003][ T6897] dup_mmap+0xbcd/0xea0 [ 110.128994][ T6897] ? __delayed_free_task+0x20/0x20 [ 110.133942][ T6897] ? mm_init+0x807/0x960 [ 110.138023][ T6897] dup_mm+0x91/0x330 [ 110.141753][ T6897] copy_mm+0x108/0x1b0 [ 110.145659][ T6897] copy_process+0x1295/0x3250 [ 110.150172][ T6897] ? proc_fail_nth_write+0x213/0x290 [ 110.155301][ T6897] ? proc_fail_nth_read+0x220/0x220 [ 110.160331][ T6897] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 110.165274][ T6897] ? vfs_write+0x9af/0x1050 [ 110.169612][ T6897] ? vmacache_update+0xb7/0x120 [ 110.174299][ T6897] kernel_clone+0x22d/0x990 [ 110.178640][ T6897] ? file_end_write+0x1b0/0x1b0 [ 110.183325][ T6897] ? __kasan_check_write+0x14/0x20 [ 110.188272][ T6897] ? create_io_thread+0x1e0/0x1e0 [ 110.193141][ T6897] ? __mutex_lock_slowpath+0x10/0x10 [ 110.198252][ T6897] __x64_sys_clone+0x289/0x310 [ 110.202856][ T6897] ? __do_sys_vfork+0x130/0x130 [ 110.207540][ T6897] ? debug_smp_processor_id+0x17/0x20 [ 110.212745][ T6897] do_syscall_64+0x44/0xd0 [ 110.217006][ T6897] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 110.222730][ T6897] RIP: 0033:0x7f35007595a9 [ 110.226982][ T6897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 110.246422][ T6897] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 110.254668][ T6897] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 110.262477][ T6897] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 110.270295][ T6897] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 110.278101][ T6897] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 110.286037][ T6897] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 110.293859][ T6897] [ 110.296708][ T6897] [ 110.298876][ T6897] Allocated by task 6836: [ 110.303047][ T6897] __kasan_slab_alloc+0xb2/0xe0 [ 110.307730][ T6897] kmem_cache_alloc+0x189/0x2f0 [ 110.312418][ T6897] vm_area_dup+0x26/0x1d0 [ 110.316582][ T6897] dup_mmap+0x6b8/0xea0 [ 110.321269][ T6897] dup_mm+0x91/0x330 [ 110.324999][ T6897] copy_mm+0x108/0x1b0 [ 110.328906][ T6897] copy_process+0x1295/0x3250 [ 110.333419][ T6897] kernel_clone+0x22d/0x990 [ 110.337757][ T6897] __x64_sys_clone+0x289/0x310 [ 110.342363][ T6897] do_syscall_64+0x44/0xd0 [ 110.346611][ T6897] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 110.352343][ T6897] [ 110.354512][ T6897] Freed by task 6876: [ 110.358329][ T6897] kasan_set_track+0x4c/0x70 [ 110.362756][ T6897] kasan_set_free_info+0x23/0x40 [ 110.367530][ T6897] ____kasan_slab_free+0x126/0x160 [ 110.372477][ T6897] __kasan_slab_free+0x11/0x20 [ 110.377075][ T6897] slab_free_freelist_hook+0xc9/0x1a0 [ 110.382371][ T6897] kmem_cache_free+0x11a/0x2e0 [ 110.386968][ T6897] vm_area_free+0x1ae/0x230 [ 110.391321][ T6897] exit_mmap+0x5dd/0x7a0 [ 110.395389][ T6897] __mmput+0x95/0x300 [ 110.399207][ T6897] mmput+0x50/0x60 [ 110.402766][ T6897] exit_mm+0x50d/0x760 [ 110.406676][ T6897] do_exit+0x63c/0x24d0 [ 110.410666][ T6897] __ia32_sys_exit+0x0/0x40 [ 110.415006][ T6897] do_syscall_64+0x44/0xd0 [ 110.419259][ T6897] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 110.424985][ T6897] [ 110.427155][ T6897] The buggy address belongs to the object at ffff8881120784a0 [ 110.427155][ T6897] which belongs to the cache vm_area_struct of size 232 [ 110.441302][ T6897] The buggy address is located 88 bytes inside of [ 110.441302][ T6897] 232-byte region [ffff8881120784a0, ffff888112078588) [ 110.454324][ T6897] The buggy address belongs to the page: [ 110.459798][ T6897] page:ffffea0004481e00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x112078 [ 110.469858][ T6897] flags: 0x4000000000000200(slab|zone=1) [ 110.475333][ T6897] raw: 4000000000000200 dead000000000100 dead000000000122 ffff888100275680 [ 110.483765][ T6897] raw: 0000000000000000 00000000000d000d 00000001ffffffff 0000000000000000 [ 110.492163][ T6897] page dumped because: kasan: bad access detected [ 110.498412][ T6897] page_owner tracks the page as allocated [ 110.503965][ T6897] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 441, ts 48002162127, free_ts 47988568779 [ 110.519674][ T6897] post_alloc_hook+0x1ab/0x1b0 [ 110.524272][ T6897] get_page_from_freelist+0x38b/0x400 [ 110.529482][ T6897] __alloc_pages+0x3a8/0x7c0 [ 110.533907][ T6897] allocate_slab+0x62/0x580 [ 110.538249][ T6897] ___slab_alloc+0x2e2/0x6f0 [ 110.542676][ T6897] __slab_alloc+0x4a/0x90 [ 110.546842][ T6897] kmem_cache_alloc+0x205/0x2f0 [ 110.551528][ T6897] vm_area_dup+0x26/0x1d0 [ 110.555693][ T6897] dup_mmap+0x6b8/0xea0 [ 110.559690][ T6897] dup_mm+0x91/0x330 [ 110.563417][ T6897] copy_mm+0x108/0x1b0 [ 110.567324][ T6897] copy_process+0x1295/0x3250 [ 110.571835][ T6897] kernel_clone+0x22d/0x990 [ 110.576178][ T6897] __x64_sys_clone+0x289/0x310 [ 110.580777][ T6897] do_syscall_64+0x44/0xd0 [ 110.585028][ T6897] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 110.590756][ T6897] page last free stack trace: [ 110.595270][ T6897] free_pcp_prepare+0x448/0x450 [ 110.599959][ T6897] free_unref_page_list+0x16a/0xad0 [ 110.604993][ T6897] release_pages+0xf3e/0xf90 [ 110.609416][ T6897] free_pages_and_swap_cache+0x97/0xb0 [ 110.614712][ T6897] tlb_flush_mmu+0x860/0xa00 [ 110.619137][ T6897] tlb_finish_mmu+0xd2/0x1f0 [ 110.623563][ T6897] exit_mmap+0x46e/0x7a0 [ 110.627644][ T6897] __mmput+0x95/0x300 [ 110.631462][ T6897] mmput+0x50/0x60 [ 110.635021][ T6897] exit_mm+0x50d/0x760 [ 110.638926][ T6897] do_exit+0x63c/0x24d0 [ 110.642920][ T6897] do_group_exit+0x13a/0x300 [ 110.647346][ T6897] get_signal+0x77e/0x1600 [ 110.651596][ T6897] arch_do_signal_or_restart+0x9f/0x670 [ 110.656978][ T6897] exit_to_user_mode_loop+0xd4/0x110 [ 110.662101][ T6897] syscall_exit_to_user_mode+0x79/0xc0 [ 110.667400][ T6897] [ 110.669565][ T6897] Memory state around the buggy address: [ 110.675041][ T6897] ffff888112078380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 110.682939][ T6897] ffff888112078400: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 110.690838][ T6897] >ffff888112078480: fc fc fc fc fa fb fb fb fb fb fb fb fb fb fb fb 13:52:39 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x3f, 0x9, 0x8, 0x0, 0x0, 0x7da48c0b, 0x600, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x3}, 0x2104, 0x80, 0x1b, 0x7, 0x824a, 0x4, 0x3ff, 0x0, 0x6, 0x0, 0xb5}, r1, 0xf, r0, 0xa) 13:52:39 executing program 3: syz_clone(0x800, &(0x7f0000000080)="09d3ad90fa09ebeeeff91e24f018949020f5b525cf4c21b7301c9a9e57960ca6c5a01df95eaa24b620cd5363f55ce2a3c3aa6fa7b854b22bf95f5f2f0e157f1df6e96f1894471a8118a838cb579fdcfd8ff3f8bbefaa9ca9984c58f8561ebb56419711a5d7a3b810f5846788d6ec3a43fe9a05203a2ebbf8eeacefa9d608955484304d6b31bcfecbfbd6edd2d18e9d607fa408", 0x93, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="908dea6edbb4ba926f60745f8f5ff8f01bb3d69659c97482fa48b363429e01d1548385f9a38b597cf9d1a156977674c358ee7b441b6d3763137ece65aee80dff05691bb7214b4bd9f9a2f26bcd131d690ce439204aecc0586984bf0eadbf8b35a5e797284171e54f9685af8971eb7835552df1bb151fd762a87ed5ea980c1e69be131a650ad4c7c7db3a518027aeb9bab6876cfe2c0bd5a226ce415ea086cfdf5b3e81583fd604ea50eae0e5d2f36367e82af9241681c348a4f81df6810f0403") bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x71, 0x10, 0x30}, [@ldst={0x2, 0x0, 0x3, 0xa, 0x0, 0xff00}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48) 13:52:39 executing program 3: syz_clone(0x800, &(0x7f0000000080)="09d3ad90fa09ebeeeff91e24f018949020f5b525cf4c21b7301c9a9e57960ca6c5a01df95eaa24b620cd5363f55ce2a3c3aa6fa7b854b22bf95f5f2f0e157f1df6e96f1894471a8118a838cb579fdcfd8ff3f8bbefaa9ca9984c58f8561ebb56419711a5d7a3b810f5846788d6ec3a43fe9a05203a2ebbf8eeacefa9d608955484304d6b31bcfecbfbd6edd2d18e9d607fa408", 0x93, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)="908dea6edbb4ba926f60745f8f5ff8f01bb3d69659c97482fa48b363429e01d1548385f9a38b597cf9d1a156977674c358ee7b441b6d3763137ece65aee80dff05691bb7214b4bd9f9a2f26bcd131d690ce439204aecc0586984bf0eadbf8b35a5e797284171e54f9685af8971eb7835552df1bb151fd762a87ed5ea980c1e69be131a650ad4c7c7db3a518027aeb9bab6876cfe2c0bd5a226ce415ea086cfdf5b3e81583fd604ea50eae0e5d2f36367e82af9241681c348a4f81df6810f0403") bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x71, 0x10, 0x30}, [@ldst={0x2, 0x0, 0x3, 0xa, 0x0, 0xff00}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48) 13:52:39 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 80) 13:52:39 executing program 4: r0 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r0, 0xffffffffffffffff, 0x0, 0x78, &(0x7f0000000080)='cgroup\x00}\xc5\x18\x880\x81e\xc1\x14\xae\xecl\xa3;\xba\x1e\xc1\\>\xdd\xc4\xa6\xd1\x81\t\xd7\xd34C\xb3\xf29\t\xcf+:\xb8j\xda4\x801c\x02z\x18<,\x84\xa3\x9f[\x86\xbf\xd4\x97c7Gf*\x0e\xd4&\xd70 \az\x1f\x0e\xb1L\xc8*\a>\x1f.\x11\xe2&\x8d\x85\x98*ii!2o\xae\x92y\x99\x9c\x19\xeag#\x9b\x15XX\x01\xc3\xb5\xcc\x16\x1d\xe5\x14\xf1'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 110.698727][ T6897] ^ [ 110.706543][ T6897] ffff888112078500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 110.714441][ T6897] ffff888112078580: fb fc fc fc fc fc fc fc fc fa fb fb fb fb fb fb [ 110.722334][ T6897] ================================================================== [ 110.730232][ T6897] Disabling lock debugging due to kernel taint 13:52:39 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) (fail_nth: 1) 13:52:39 executing program 4: r0 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r0, 0xffffffffffffffff, 0x0, 0x78, &(0x7f0000000080)='cgroup\x00}\xc5\x18\x880\x81e\xc1\x14\xae\xecl\xa3;\xba\x1e\xc1\\>\xdd\xc4\xa6\xd1\x81\t\xd7\xd34C\xb3\xf29\t\xcf+:\xb8j\xda4\x801c\x02z\x18<,\x84\xa3\x9f[\x86\xbf\xd4\x97c7Gf*\x0e\xd4&\xd70 \az\x1f\x0e\xb1L\xc8*\a>\x1f.\x11\xe2&\x8d\x85\x98*ii!2o\xae\x92y\x99\x9c\x19\xeag#\x9b\x15XX\x01\xc3\xb5\xcc\x16\x1d\xe5\x14\xf1'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 110.796435][ T6958] FAULT_INJECTION: forcing a failure. [ 110.796435][ T6958] name failslab, interval 1, probability 0, space 0, times 0 [ 110.819016][ T6958] CPU: 0 PID: 6958 Comm: syz-executor.2 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 110.830396][ T6958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 110.840291][ T6958] Call Trace: [ 110.843419][ T6958] [ 110.846193][ T6958] dump_stack_lvl+0x151/0x1b7 [ 110.850704][ T6958] ? bfq_pos_tree_add_move+0x43e/0x43e [ 110.855998][ T6958] dump_stack+0x15/0x17 [ 110.859989][ T6958] should_fail+0x3c0/0x510 [ 110.864240][ T6958] __should_failslab+0x9f/0xe0 [ 110.868845][ T6958] should_failslab+0x9/0x20 [ 110.873184][ T6958] kmem_cache_alloc+0x4f/0x2f0 [ 110.877783][ T6958] ? anon_vma_fork+0x1b9/0x4f0 [ 110.882385][ T6958] anon_vma_fork+0x1b9/0x4f0 [ 110.886811][ T6958] dup_mmap+0x750/0xea0 [ 110.889743][ T6967] FAULT_INJECTION: forcing a failure. [ 110.889743][ T6967] name failslab, interval 1, probability 0, space 0, times 0 [ 110.890803][ T6958] ? __delayed_free_task+0x20/0x20 [ 110.908164][ T6958] ? mm_init+0x807/0x960 [ 110.912241][ T6958] dup_mm+0x91/0x330 [ 110.915972][ T6958] copy_mm+0x108/0x1b0 [ 110.919878][ T6958] copy_process+0x1295/0x3250 [ 110.924389][ T6958] ? proc_fail_nth_write+0x213/0x290 [ 110.929509][ T6958] ? proc_fail_nth_read+0x220/0x220 [ 110.934544][ T6958] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 110.939493][ T6958] ? vfs_write+0x9af/0x1050 13:52:39 executing program 0: r0 = gettid() r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="09b782262d24639c9965b642d46a1800000001000003000000064000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x16, 0x7f, 0x9, 0x8a, 0x0, 0x10000, 0x842, 0x6, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_bp={&(0x7f00000000c0), 0x2}, 0x40802, 0x3ff, 0x20, 0x0, 0x10000, 0x8, 0x9, 0x0, 0x8, 0x0, 0xfffffffffffffffa}, 0xffffffffffffffff, 0x0, r2, 0x9) syz_clone(0x50a06080, 0x0, 0x0, 0x0, &(0x7f0000001840), &(0x7f0000001880)) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x1, 0x3, 0x1, 0x2, 0x0, 0x0, 0x9ddcddd8517a4d41, 0xa, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x400, 0x4, @perf_bp={&(0x7f0000000000), 0xb}, 0x8000, 0x8, 0x6be, 0x7, 0x7c, 0x0, 0xd64, 0x0, 0x0, 0x0, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) gettid() (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="09b782262d24639c9965b642d46a1800000001000003000000064000f10095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) (async) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x16, 0x7f, 0x9, 0x8a, 0x0, 0x10000, 0x842, 0x6, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x4, @perf_bp={&(0x7f00000000c0), 0x2}, 0x40802, 0x3ff, 0x20, 0x0, 0x10000, 0x8, 0x9, 0x0, 0x8, 0x0, 0xfffffffffffffffa}, 0xffffffffffffffff, 0x0, r2, 0x9) (async) syz_clone(0x50a06080, 0x0, 0x0, 0x0, &(0x7f0000001840), &(0x7f0000001880)) (async) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x1, 0x3, 0x1, 0x2, 0x0, 0x0, 0x9ddcddd8517a4d41, 0xa, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x400, 0x4, @perf_bp={&(0x7f0000000000), 0xb}, 0x8000, 0x8, 0x6be, 0x7, 0x7c, 0x0, 0xd64, 0x0, 0x0, 0x0, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) (async) 13:52:39 executing program 4: r0 = gettid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r0, 0xffffffffffffffff, 0x0, 0x78, &(0x7f0000000080)='cgroup\x00}\xc5\x18\x880\x81e\xc1\x14\xae\xecl\xa3;\xba\x1e\xc1\\>\xdd\xc4\xa6\xd1\x81\t\xd7\xd34C\xb3\xf29\t\xcf+:\xb8j\xda4\x801c\x02z\x18<,\x84\xa3\x9f[\x86\xbf\xd4\x97c7Gf*\x0e\xd4&\xd70 \az\x1f\x0e\xb1L\xc8*\a>\x1f.\x11\xe2&\x8d\x85\x98*ii!2o\xae\x92y\x99\x9c\x19\xeag#\x9b\x15XX\x01\xc3\xb5\xcc\x16\x1d\xe5\x14\xf1'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) gettid() (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r0, 0xffffffffffffffff, 0x0, 0x78, &(0x7f0000000080)='cgroup\x00}\xc5\x18\x880\x81e\xc1\x14\xae\xecl\xa3;\xba\x1e\xc1\\>\xdd\xc4\xa6\xd1\x81\t\xd7\xd34C\xb3\xf29\t\xcf+:\xb8j\xda4\x801c\x02z\x18<,\x84\xa3\x9f[\x86\xbf\xd4\x97c7Gf*\x0e\xd4&\xd70 \az\x1f\x0e\xb1L\xc8*\a>\x1f.\x11\xe2&\x8d\x85\x98*ii!2o\xae\x92y\x99\x9c\x19\xeag#\x9b\x15XX\x01\xc3\xb5\xcc\x16\x1d\xe5\x14\xf1'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) [ 110.943830][ T6958] ? vmacache_update+0xb7/0x120 [ 110.948518][ T6958] kernel_clone+0x22d/0x990 [ 110.952859][ T6958] ? file_end_write+0x1b0/0x1b0 [ 110.957545][ T6958] ? __kasan_check_write+0x14/0x20 [ 110.962493][ T6958] ? create_io_thread+0x1e0/0x1e0 [ 110.967350][ T6958] ? __mutex_lock_slowpath+0x10/0x10 [ 110.972472][ T6958] __x64_sys_clone+0x289/0x310 [ 110.977076][ T6958] ? __do_sys_vfork+0x130/0x130 [ 110.981762][ T6958] ? debug_smp_processor_id+0x17/0x20 [ 110.986972][ T6958] do_syscall_64+0x44/0xd0 [ 110.991217][ T6958] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 110.996951][ T6958] RIP: 0033:0x7f35007595a9 [ 111.001205][ T6958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 111.020643][ T6958] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 111.028885][ T6958] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 111.036697][ T6958] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 111.044506][ T6958] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 111.052320][ T6958] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 111.060133][ T6958] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 111.067948][ T6958] [ 111.070810][ T6967] CPU: 1 PID: 6967 Comm: syz-executor.1 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 111.082180][ T6967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 111.092076][ T6967] Call Trace: [ 111.095193][ T6967] [ 111.097973][ T6967] dump_stack_lvl+0x151/0x1b7 [ 111.102665][ T6967] ? bfq_pos_tree_add_move+0x43e/0x43e [ 111.107961][ T6967] ? percpu_ref_put+0xc0/0xc0 [ 111.112477][ T6967] ? __alloc_pages+0x3a8/0x7c0 [ 111.117083][ T6967] dump_stack+0x15/0x17 [ 111.121067][ T6967] should_fail+0x3c0/0x510 [ 111.125322][ T6967] __should_failslab+0x9f/0xe0 [ 111.129929][ T6967] should_failslab+0x9/0x20 [ 111.134258][ T6967] kmem_cache_alloc+0x4f/0x2f0 [ 111.138857][ T6967] ? jbd2__journal_start+0x14f/0x6f0 [ 111.144153][ T6967] ? perf_swevent_put_recursion_context+0xb0/0xb0 [ 111.150404][ T6967] jbd2__journal_start+0x14f/0x6f0 [ 111.155349][ T6967] ? __kasan_check_read+0x11/0x20 [ 111.160209][ T6967] __ext4_journal_start_sb+0xf2/0x2a0 [ 111.165419][ T6967] ext4_dirty_inode+0x8e/0x100 [ 111.170017][ T6967] ? __ext4_expand_extra_isize+0x3d0/0x3d0 [ 111.175660][ T6967] __mark_inode_dirty+0xb8/0x8a0 [ 111.180431][ T6967] ? generic_update_time+0xe8/0x210 [ 111.185467][ T6967] generic_update_time+0x1ee/0x210 [ 111.190414][ T6967] file_update_time+0x383/0x3f0 [ 111.195101][ T6967] ? file_remove_privs+0x690/0x690 [ 111.200047][ T6967] ? down_write+0xdd/0x140 [ 111.204298][ T6967] ? down_read_killable+0x250/0x250 [ 111.209333][ T6967] ? do_handle_mm_fault+0x1720/0x2370 [ 111.214541][ T6967] ? generic_write_checks+0x3d8/0x490 [ 111.219751][ T6967] file_modified+0x79/0xb0 [ 111.224002][ T6967] ext4_buffered_write_iter+0x324/0x630 [ 111.229477][ T6967] ext4_file_write_iter+0x456/0x1dc0 [ 111.234762][ T6967] ? kstrtol_from_user+0x310/0x310 [ 111.239712][ T6967] ? avc_policy_seqno+0x1b/0x70 [ 111.244401][ T6967] ? selinux_file_permission+0x2ae/0x520 [ 111.249864][ T6967] ? ext4_file_read_iter+0x4b0/0x4b0 [ 111.254989][ T6967] ? iov_iter_init+0x53/0x180 [ 111.259498][ T6967] vfs_write+0xc8d/0x1050 [ 111.263666][ T6967] ? vmacache_update+0xb7/0x120 [ 111.268353][ T6967] ? file_end_write+0x1b0/0x1b0 [ 111.273040][ T6967] ? mutex_lock+0xb6/0x130 [ 111.277290][ T6967] ? wait_for_completion_killable_timeout+0x10/0x10 [ 111.283715][ T6967] ? __fdget_pos+0x26d/0x310 [ 111.288138][ T6967] ? ksys_write+0x77/0x2c0 [ 111.292391][ T6967] ksys_write+0x198/0x2c0 [ 111.296560][ T6967] ? __ia32_sys_read+0x90/0x90 [ 111.301161][ T6967] ? debug_smp_processor_id+0x17/0x20 [ 111.306365][ T6967] __x64_sys_write+0x7b/0x90 [ 111.310793][ T6967] do_syscall_64+0x44/0xd0 [ 111.315047][ T6967] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 111.320773][ T6967] RIP: 0033:0x7f6a990585a9 [ 111.325030][ T6967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 13:52:39 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x3f, 0x9, 0x8, 0x0, 0x0, 0x7da48c0b, 0x600, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x3}, 0x2104, 0x80, 0x1b, 0x7, 0x824a, 0x4, 0x3ff, 0x0, 0x6, 0x0, 0xb5}, r1, 0xf, r0, 0xa) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x3f, 0x9, 0x8, 0x0, 0x0, 0x7da48c0b, 0x600, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x3}, 0x2104, 0x80, 0x1b, 0x7, 0x824a, 0x4, 0x3ff, 0x0, 0x6, 0x0, 0xb5}, r1, 0xf, r0, 0xa) (async) 13:52:39 executing program 3: bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x6, 0x2244, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000c2930a0000000000000000493d73b6362b601f9354"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0xf5, &(0x7f0000000140)=""/245, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0xc0506617, &(0x7f0000000040)=0x2) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000b40)=ANY=[@ANYBLOB="bc0932a592fddd0f175a19031a5c05fddc4f7d8a14142276da564e5a9a3f7fd05f12febf1571d75dc1427f2b897f38ce627d7b512b02dad2d4764fdaaac0f08c3a3078a72fef5fe3bfd2cebd8c8654a0698025295a29198d0aa481c681a76a1e7435a23e1874655fcead047c627d64b13cc2dbc15fb97253ff5847a3fe4a9c653d7228c2bb5a72394679b063e15614f420a6382d29c8383c00"/163], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0x3, &(0x7f0000000c00)=@raw=[@map_idx={0x18, 0x4, 0x5, 0x0, 0x2}, @alu={0x4, 0x0, 0x3, 0x2, 0x2, 0xfffffffffffffff0, 0x10}], &(0x7f0000000480)='syzkaller\x00', 0x9, 0x95, &(0x7f00000009c0)=""/149, 0xc3000, 0x10, '\x00', r1, 0x0, r5, 0x8, &(0x7f0000000580)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x1, 0x8, 0x101, 0xfffffffb}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000a80)=[r0, r0]}, 0x80) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0xc0506617, &(0x7f0000000040)=0x2) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r6], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r6, 0x25, r0, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r7}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r6, r7, 0x3, 0x4, 0x5}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800ed0000000200000095000000000000"], &(0x7f0000000080)='syzkaller\x00', 0xc1, 0x0, 0x0, 0x40f00, 0x4, '\x00', r6, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x9, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0x6, 0x8, 0x8001}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000380)=[0xffffffffffffffff, r0]}, 0x80) 13:52:39 executing program 4: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000100)=""/173, 0xad}, {&(0x7f00000001c0)=""/95, 0x5f}, {&(0x7f0000000240)=""/241, 0xf1}, {&(0x7f0000000380)=""/114, 0x72}, {&(0x7f0000000480)=""/96, 0x60}], 0x5, &(0x7f0000000700)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}, 0x2043) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000640)={r0}, 0x8) openat$cgroup_ro(r3, &(0x7f00000006c0)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) openat$cgroup_ro(r3, &(0x7f0000000680)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) [ 111.344467][ T6967] RSP: 002b:00007f6a97dcc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 111.352714][ T6967] RAX: ffffffffffffffda RBX: 00007f6a99178f80 RCX: 00007f6a990585a9 [ 111.360524][ T6967] RDX: 000000000000fdef RSI: 0000000020000180 RDI: 0000000000000005 [ 111.368335][ T6967] RBP: 00007f6a97dcc1d0 R08: 0000000000000000 R09: 0000000000000000 [ 111.376146][ T6967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 111.383957][ T6967] R13: 00007ffe68dec34f R14: 00007f6a97dcc300 R15: 0000000000022000 [ 111.391773][ T6967] 13:52:39 executing program 3: bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x6, 0x2244, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000c2930a0000000000000000493d73b6362b601f9354"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0xf5, &(0x7f0000000140)=""/245, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0xc0506617, &(0x7f0000000040)=0x2) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000b40)=ANY=[@ANYBLOB="bc0932a592fddd0f175a19031a5c05fddc4f7d8a14142276da564e5a9a3f7fd05f12febf1571d75dc1427f2b897f38ce627d7b512b02dad2d4764fdaaac0f08c3a3078a72fef5fe3bfd2cebd8c8654a0698025295a29198d0aa481c681a76a1e7435a23e1874655fcead047c627d64b13cc2dbc15fb97253ff5847a3fe4a9c653d7228c2bb5a72394679b063e15614f420a6382d29c8383c00"/163], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0x3, &(0x7f0000000c00)=@raw=[@map_idx={0x18, 0x4, 0x5, 0x0, 0x2}, @alu={0x4, 0x0, 0x3, 0x2, 0x2, 0xfffffffffffffff0, 0x10}], &(0x7f0000000480)='syzkaller\x00', 0x9, 0x95, &(0x7f00000009c0)=""/149, 0xc3000, 0x10, '\x00', r1, 0x0, r5, 0x8, &(0x7f0000000580)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x1, 0x8, 0x101, 0xfffffffb}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000a80)=[r0, r0]}, 0x80) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0xc0506617, &(0x7f0000000040)=0x2) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r6], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r6, 0x25, r0, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r7}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r6, r7, 0x3, 0x4, 0x5}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800ed0000000200000095000000000000"], &(0x7f0000000080)='syzkaller\x00', 0xc1, 0x0, 0x0, 0x40f00, 0x4, '\x00', r6, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x9, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0x6, 0x8, 0x8001}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000380)=[0xffffffffffffffff, r0]}, 0x80) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x6, 0x2244, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000c2930a0000000000000000493d73b6362b601f9354"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0xf5, &(0x7f0000000140)=""/245, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0xc0506617, &(0x7f0000000040)=0x2) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) (async) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000b40)=ANY=[@ANYBLOB="bc0932a592fddd0f175a19031a5c05fddc4f7d8a14142276da564e5a9a3f7fd05f12febf1571d75dc1427f2b897f38ce627d7b512b02dad2d4764fdaaac0f08c3a3078a72fef5fe3bfd2cebd8c8654a0698025295a29198d0aa481c681a76a1e7435a23e1874655fcead047c627d64b13cc2dbc15fb97253ff5847a3fe4a9c653d7228c2bb5a72394679b063e15614f420a6382d29c8383c00"/163], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) (async) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0x3, &(0x7f0000000c00)=@raw=[@map_idx={0x18, 0x4, 0x5, 0x0, 0x2}, @alu={0x4, 0x0, 0x3, 0x2, 0x2, 0xfffffffffffffff0, 0x10}], &(0x7f0000000480)='syzkaller\x00', 0x9, 0x95, &(0x7f00000009c0)=""/149, 0xc3000, 0x10, '\x00', r1, 0x0, r5, 0x8, &(0x7f0000000580)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x1, 0x8, 0x101, 0xfffffffb}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000a80)=[r0, r0]}, 0x80) (async) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0xc0506617, &(0x7f0000000040)=0x2) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r6], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r6, 0x25, r0, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) (async) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r7}, 0x8) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r6, r7, 0x3, 0x4, 0x5}, 0x48) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800ed0000000200000095000000000000"], &(0x7f0000000080)='syzkaller\x00', 0xc1, 0x0, 0x0, 0x40f00, 0x4, '\x00', r6, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x9, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0x6, 0x8, 0x8001}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000380)=[0xffffffffffffffff, r0]}, 0x80) (async) 13:52:39 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) (fail_nth: 2) 13:52:39 executing program 4: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000100)=""/173, 0xad}, {&(0x7f00000001c0)=""/95, 0x5f}, {&(0x7f0000000240)=""/241, 0xf1}, {&(0x7f0000000380)=""/114, 0x72}, {&(0x7f0000000480)=""/96, 0x60}], 0x5, &(0x7f0000000700)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}, 0x2043) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000640)={r0}, 0x8) openat$cgroup_ro(r3, &(0x7f00000006c0)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) (async) openat$cgroup_ro(r3, &(0x7f0000000680)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) [ 111.452536][ T6991] FAULT_INJECTION: forcing a failure. [ 111.452536][ T6991] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 111.465444][ T6991] CPU: 1 PID: 6991 Comm: syz-executor.1 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 111.476756][ T6991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 111.486655][ T6991] Call Trace: [ 111.489771][ T6991] [ 111.492549][ T6991] dump_stack_lvl+0x151/0x1b7 [ 111.497070][ T6991] ? bfq_pos_tree_add_move+0x43e/0x43e 13:52:39 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 81) 13:52:39 executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x2, &(0x7f0000000040)=@raw=[@ldst={0x1, 0x2, 0x6, 0xb, 0xe, 0xfffffffffffffff4, 0x1}, @jmp={0x5, 0x1, 0x6, 0x2, 0xb, 0x2}], &(0x7f0000000140)='syzkaller\x00', 0x4, 0xe1, &(0x7f0000000380)=""/225, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x3, 0x4}, 0x8, 0x10, &(0x7f00000001c0)={0x5, 0xa, 0x3b92, 0x28}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000280)=[0xffffffffffffffff]}, 0x80) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x1c, 0x0, &(0x7f0000000100)="b9ff03076044238cb89e0cf008001be0ffff00004000633a77fb0806", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f00000008c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) sendmsg(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x40004) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@bloom_filter={0x1e, 0x9, 0x8, 0x8001, 0x19c4, 0xffffffffffffffff, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x3, 0x6}, 0x48) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000740)={&(0x7f0000000700)='./file0\x00', 0x0, 0xb7015405464bae85}, 0x10) r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000007c0)={&(0x7f0000000780)='./file0\x00'}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x6, &(0x7f0000000480)=@raw=[@map_fd={0x18, 0x9}, @alu={0x4, 0x1, 0xd, 0xa, 0x4, 0xc, 0x4}, @call={0x85, 0x0, 0x0, 0xc9}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffffe}], &(0x7f00000004c0)='GPL\x00', 0x1, 0xe8, &(0x7f0000000500)=""/232, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000640)={0x2, 0xb, 0x20, 0x5}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000800)=[r3, 0x1, r4, r5, 0xffffffffffffffff, 0x1, r6, 0xffffffffffffffff]}, 0x80) 13:52:39 executing program 3: bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x6, 0x2244, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000c2930a0000000000000000493d73b6362b601f9354"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0xf5, &(0x7f0000000140)=""/245, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cpuacct.stat\x00', 0x26e1, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0xc0506617, &(0x7f0000000040)=0x2) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r1], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) (async) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r2}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r1, r2, 0x3, 0x4, 0x5}, 0x48) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000b40)=ANY=[@ANYBLOB="bc0932a592fddd0f175a19031a5c05fddc4f7d8a14142276da564e5a9a3f7fd05f12febf1571d75dc1427f2b897f38ce627d7b512b02dad2d4764fdaaac0f08c3a3078a72fef5fe3bfd2cebd8c8654a0698025295a29198d0aa481c681a76a1e7435a23e1874655fcead047c627d64b13cc2dbc15fb97253ff5847a3fe4a9c653d7228c2bb5a72394679b063e15614f420a6382d29c8383c00"/163], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0x3, &(0x7f0000000c00)=@raw=[@map_idx={0x18, 0x4, 0x5, 0x0, 0x2}, @alu={0x4, 0x0, 0x3, 0x2, 0x2, 0xfffffffffffffff0, 0x10}], &(0x7f0000000480)='syzkaller\x00', 0x9, 0x95, &(0x7f00000009c0)=""/149, 0xc3000, 0x10, '\x00', r1, 0x0, r5, 0x8, &(0x7f0000000580)={0x1, 0x5}, 0x8, 0x10, &(0x7f0000000640)={0x1, 0x8, 0x101, 0xfffffffb}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000a80)=[r0, r0]}, 0x80) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0xc0506617, &(0x7f0000000040)=0x2) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f00000004c0)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[0x0], 0x0, 0x8, &(0x7f0000000540)=[{}, {}], 0x10, 0x10, &(0x7f00000005c0), &(0x7f0000000600), 0x8, 0x10, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x5, &(0x7f0000000240)=ANY=[@ANYRES64=r6], &(0x7f0000000280)='syzkaller\x00', 0x7, 0xbd, &(0x7f0000000900)=""/189, 0x41100, 0x11, '\x00', r6, 0x25, r0, 0x8, &(0x7f0000000800)={0x7, 0x4}, 0x8, 0x10, &(0x7f0000000840)={0xffffffff, 0x800008, 0x8, 0x3e}, 0x10}, 0xff72) (async) r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8) bpf$ITER_CREATE(0x21, &(0x7f00000005c0)={r7}, 0x8) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1a, 0x3, 0x716, 0x3431af00, 0x410, 0xffffffffffffffff, 0xcd, '\x00', r6, r7, 0x3, 0x4, 0x5}, 0x48) (async) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800ed0000000200000095000000000000"], &(0x7f0000000080)='syzkaller\x00', 0xc1, 0x0, 0x0, 0x40f00, 0x4, '\x00', r6, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000100)={0x9, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x0, 0x6, 0x8, 0x8001}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000380)=[0xffffffffffffffff, r0]}, 0x80) 13:52:39 executing program 4: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000100)=""/173, 0xad}, {&(0x7f00000001c0)=""/95, 0x5f}, {&(0x7f0000000240)=""/241, 0xf1}, {&(0x7f0000000380)=""/114, 0x72}, {&(0x7f0000000480)=""/96, 0x60}], 0x5, &(0x7f0000000700)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}, 0x2043) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r3 = bpf$ITER_CREATE(0x21, &(0x7f0000000640)={r0}, 0x8) openat$cgroup_ro(r3, &(0x7f00000006c0)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) openat$cgroup_ro(r3, &(0x7f0000000680)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000100)=""/173, 0xad}, {&(0x7f00000001c0)=""/95, 0x5f}, {&(0x7f0000000240)=""/241, 0xf1}, {&(0x7f0000000380)=""/114, 0x72}, {&(0x7f0000000480)=""/96, 0x60}], 0x5, &(0x7f0000000700)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}, 0x2043) (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000580), 0x8) (async) write$cgroup_int(r2, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) bpf$ITER_CREATE(0x21, &(0x7f0000000640)={r0}, 0x8) (async) openat$cgroup_ro(r3, &(0x7f00000006c0)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) (async) openat$cgroup_ro(r3, &(0x7f0000000680)='blkio.throttle.io_service_bytes_recursive\x00', 0x0, 0x0) (async) [ 111.502360][ T6991] ? ext4_da_write_begin+0x7d5/0xbf0 [ 111.507480][ T6991] dump_stack+0x15/0x17 [ 111.511560][ T6991] should_fail+0x3c0/0x510 [ 111.515817][ T6991] should_fail_usercopy+0x1a/0x20 [ 111.520672][ T6991] copy_page_from_iter_atomic+0x433/0x11c0 [ 111.526320][ T6991] ? pipe_zero+0x4d0/0x4d0 [ 111.530570][ T6991] ? current_time+0x1c4/0x310 [ 111.535124][ T6991] ? fault_in_iov_iter_readable+0x1bb/0x210 [ 111.540809][ T6991] generic_perform_write+0x343/0x5d0 [ 111.545940][ T6991] ? grab_cache_page_write_begin+0xa0/0xa0 [ 111.551569][ T6991] ? down_write+0xdd/0x140 [ 111.555822][ T6991] ? down_read_killable+0x250/0x250 [ 111.560854][ T6991] ? do_handle_mm_fault+0x1720/0x2370 [ 111.566079][ T6991] ? generic_write_checks+0x3d8/0x490 [ 111.571268][ T6991] ext4_buffered_write_iter+0x49b/0x630 [ 111.576650][ T6991] ext4_file_write_iter+0x456/0x1dc0 [ 111.581772][ T6991] ? kstrtol_from_user+0x310/0x310 [ 111.586718][ T6991] ? avc_policy_seqno+0x1b/0x70 [ 111.591414][ T6991] ? selinux_file_permission+0x2ae/0x520 [ 111.596875][ T6991] ? ext4_file_read_iter+0x4b0/0x4b0 [ 111.601992][ T6991] ? iov_iter_init+0x53/0x180 [ 111.606506][ T6991] vfs_write+0xc8d/0x1050 [ 111.610671][ T6991] ? vmacache_update+0xb7/0x120 [ 111.615357][ T6991] ? file_end_write+0x1b0/0x1b0 [ 111.620051][ T6991] ? mutex_lock+0xb6/0x130 [ 111.624311][ T6991] ? wait_for_completion_killable_timeout+0x10/0x10 [ 111.630719][ T6991] ? __fdget_pos+0x26d/0x310 [ 111.635148][ T6991] ? ksys_write+0x77/0x2c0 [ 111.639397][ T6991] ksys_write+0x198/0x2c0 [ 111.643569][ T6991] ? __ia32_sys_read+0x90/0x90 [ 111.648165][ T6991] ? debug_smp_processor_id+0x17/0x20 [ 111.653373][ T6991] __x64_sys_write+0x7b/0x90 [ 111.657800][ T6991] do_syscall_64+0x44/0xd0 [ 111.662054][ T6991] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 111.667779][ T6991] RIP: 0033:0x7f6a990585a9 [ 111.672037][ T6991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 111.691472][ T6991] RSP: 002b:00007f6a97dcc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 111.699717][ T6991] RAX: ffffffffffffffda RBX: 00007f6a99178f80 RCX: 00007f6a990585a9 [ 111.707532][ T6991] RDX: 000000000000fdef RSI: 0000000020000180 RDI: 0000000000000005 [ 111.715343][ T6991] RBP: 00007f6a97dcc1d0 R08: 0000000000000000 R09: 0000000000000000 [ 111.723155][ T6991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 111.730965][ T6991] R13: 00007ffe68dec34f R14: 00007f6a97dcc300 R15: 0000000000022000 [ 111.738780][ T6991] [ 111.743617][ T7026] FAULT_INJECTION: forcing a failure. [ 111.743617][ T7026] name failslab, interval 1, probability 0, space 0, times 0 [ 111.756464][ T7026] CPU: 1 PID: 7026 Comm: syz-executor.2 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 111.767839][ T7026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 111.777728][ T7026] Call Trace: [ 111.780852][ T7026] [ 111.784152][ T7026] dump_stack_lvl+0x151/0x1b7 [ 111.788664][ T7026] ? bfq_pos_tree_add_move+0x43e/0x43e [ 111.793959][ T7026] ? do_syscall_64+0x44/0xd0 [ 111.798395][ T7026] dump_stack+0x15/0x17 [ 111.802378][ T7026] should_fail+0x3c0/0x510 [ 111.806632][ T7026] __should_failslab+0x9f/0xe0 [ 111.811232][ T7026] should_failslab+0x9/0x20 [ 111.815568][ T7026] kmem_cache_alloc+0x4f/0x2f0 [ 111.820169][ T7026] ? anon_vma_clone+0xa1/0x4f0 [ 111.824769][ T7026] anon_vma_clone+0xa1/0x4f0 [ 111.829198][ T7026] anon_vma_fork+0x91/0x4f0 [ 111.833535][ T7026] ? anon_vma_name+0x43/0x70 [ 111.837964][ T7026] dup_mmap+0x750/0xea0 [ 111.841956][ T7026] ? __delayed_free_task+0x20/0x20 [ 111.846903][ T7026] ? mm_init+0x807/0x960 [ 111.850994][ T7026] dup_mm+0x91/0x330 [ 111.854715][ T7026] copy_mm+0x108/0x1b0 [ 111.858625][ T7026] copy_process+0x1295/0x3250 [ 111.863140][ T7026] ? proc_fail_nth_write+0x213/0x290 [ 111.868250][ T7026] ? proc_fail_nth_read+0x220/0x220 [ 111.873288][ T7026] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 111.878231][ T7026] ? vfs_write+0x9af/0x1050 [ 111.882570][ T7026] ? vmacache_update+0xb7/0x120 [ 111.887258][ T7026] kernel_clone+0x22d/0x990 [ 111.891597][ T7026] ? file_end_write+0x1b0/0x1b0 [ 111.896284][ T7026] ? __kasan_check_write+0x14/0x20 [ 111.901234][ T7026] ? create_io_thread+0x1e0/0x1e0 [ 111.906095][ T7026] ? __mutex_lock_slowpath+0x10/0x10 [ 111.911214][ T7026] __x64_sys_clone+0x289/0x310 [ 111.915816][ T7026] ? __do_sys_vfork+0x130/0x130 [ 111.920502][ T7026] ? debug_smp_processor_id+0x17/0x20 [ 111.925709][ T7026] do_syscall_64+0x44/0xd0 [ 111.929961][ T7026] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 111.935689][ T7026] RIP: 0033:0x7f35007595a9 [ 111.939947][ T7026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 111.959389][ T7026] RSP: 002b:00007f34ff4ac118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 111.967627][ T7026] RAX: ffffffffffffffda RBX: 00007f350087a050 RCX: 00007f35007595a9 [ 111.975448][ T7026] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 111.983260][ T7026] RBP: 00007f34ff4ac1d0 R08: 0000000000000000 R09: 0000000000000000 [ 111.991066][ T7026] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 13:52:40 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) r1 = syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x3f, 0x9, 0x8, 0x0, 0x0, 0x7da48c0b, 0x600, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x3}, 0x2104, 0x80, 0x1b, 0x7, 0x824a, 0x4, 0x3ff, 0x0, 0x6, 0x0, 0xb5}, r1, 0xf, r0, 0xa) 13:52:40 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40086602, &(0x7f0000000040)) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r2, &(0x7f0000000200), 0x15000) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x6628, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) r6 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) write$cgroup_int(r6, &(0x7f00000001c0), 0xfffffdef) ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xda00) 13:52:40 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) (fail_nth: 3) [ 111.998872][ T7026] R13: 00007ffc2631eaaf R14: 00007f34ff4ac300 R15: 0000000000022000 [ 112.006687][ T7026] 13:52:40 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x2, 0xdd, 0x20, 0x3f, 0x0, 0x3, 0xc0100, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x3, @perf_bp={&(0x7f0000000080), 0x2}, 0x1, 0x4, 0x80000000, 0x9, 0x234, 0xbe0, 0x4, 0x0, 0x1, 0x0, 0x3}, 0x0, 0xe, 0xffffffffffffffff, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:40 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 82) 13:52:40 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x2, 0xdd, 0x20, 0x3f, 0x0, 0x3, 0xc0100, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x3, @perf_bp={&(0x7f0000000080), 0x2}, 0x1, 0x4, 0x80000000, 0x9, 0x234, 0xbe0, 0x4, 0x0, 0x1, 0x0, 0x3}, 0x0, 0xe, 0xffffffffffffffff, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:40 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1) (async) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40086602, &(0x7f0000000040)) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r2, &(0x7f0000000200), 0x15000) (async) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x6628, 0x0) (async) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) r6 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) write$cgroup_int(r6, &(0x7f00000001c0), 0xfffffdef) ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xda00) [ 112.068005][ T7053] FAULT_INJECTION: forcing a failure. [ 112.068005][ T7053] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 112.080926][ T7053] CPU: 0 PID: 7053 Comm: syz-executor.1 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 112.092231][ T7053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 112.102130][ T7053] Call Trace: [ 112.105249][ T7053] [ 112.108026][ T7053] dump_stack_lvl+0x151/0x1b7 [ 112.112542][ T7053] ? bfq_pos_tree_add_move+0x43e/0x43e [ 112.117836][ T7053] ? ext4_da_write_begin+0x7d5/0xbf0 [ 112.122953][ T7053] ? kmem_cache_free+0x11a/0x2e0 [ 112.127733][ T7053] dump_stack+0x15/0x17 [ 112.131719][ T7053] should_fail+0x3c0/0x510 [ 112.135975][ T7053] should_fail_usercopy+0x1a/0x20 [ 112.140836][ T7053] copy_page_from_iter_atomic+0x433/0x11c0 [ 112.146478][ T7053] ? jbd2_journal_start_reserved+0x3c0/0x3c0 [ 112.152293][ T7053] ? pipe_zero+0x4d0/0x4d0 [ 112.156548][ T7053] ? __ext4_expand_extra_isize+0x3d0/0x3d0 [ 112.162188][ T7053] ? fault_in_iov_iter_readable+0x1bb/0x210 [ 112.167917][ T7053] generic_perform_write+0x343/0x5d0 [ 112.173045][ T7053] ? grab_cache_page_write_begin+0xa0/0xa0 [ 112.178670][ T7053] ? down_write+0xdd/0x140 [ 112.182936][ T7053] ? down_read_killable+0x250/0x250 [ 112.187957][ T7053] ? do_handle_mm_fault+0x1720/0x2370 [ 112.193172][ T7053] ? generic_write_checks+0x3d8/0x490 [ 112.198371][ T7053] ext4_buffered_write_iter+0x49b/0x630 [ 112.203766][ T7053] ext4_file_write_iter+0x456/0x1dc0 [ 112.208881][ T7053] ? kstrtol_from_user+0x310/0x310 [ 112.213841][ T7053] ? avc_policy_seqno+0x1b/0x70 [ 112.218509][ T7053] ? selinux_file_permission+0x2ae/0x520 [ 112.223974][ T7053] ? ext4_file_read_iter+0x4b0/0x4b0 [ 112.229098][ T7053] ? iov_iter_init+0x53/0x180 [ 112.233611][ T7053] vfs_write+0xc8d/0x1050 [ 112.237776][ T7053] ? vmacache_update+0xb7/0x120 [ 112.242465][ T7053] ? file_end_write+0x1b0/0x1b0 [ 112.247152][ T7053] ? mutex_lock+0xb6/0x130 [ 112.251403][ T7053] ? wait_for_completion_killable_timeout+0x10/0x10 [ 112.257826][ T7053] ? __fdget_pos+0x26d/0x310 [ 112.262251][ T7053] ? ksys_write+0x77/0x2c0 [ 112.266506][ T7053] ksys_write+0x198/0x2c0 [ 112.270674][ T7053] ? __ia32_sys_read+0x90/0x90 [ 112.275270][ T7053] ? debug_smp_processor_id+0x17/0x20 [ 112.280479][ T7053] __x64_sys_write+0x7b/0x90 [ 112.284903][ T7053] do_syscall_64+0x44/0xd0 [ 112.289164][ T7053] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 112.294890][ T7053] RIP: 0033:0x7f6a990585a9 [ 112.299137][ T7053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 13:52:40 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x2, 0xdd, 0x20, 0x3f, 0x0, 0x3, 0xc0100, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x3, @perf_bp={&(0x7f0000000080), 0x2}, 0x1, 0x4, 0x80000000, 0x9, 0x234, 0xbe0, 0x4, 0x0, 0x1, 0x0, 0x3}, 0x0, 0xe, 0xffffffffffffffff, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x2, 0xdd, 0x20, 0x3f, 0x0, 0x3, 0xc0100, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x3, @perf_bp={&(0x7f0000000080), 0x2}, 0x1, 0x4, 0x80000000, 0x9, 0x234, 0xbe0, 0x4, 0x0, 0x1, 0x0, 0x3}, 0x0, 0xe, 0xffffffffffffffff, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) [ 112.318578][ T7053] RSP: 002b:00007f6a97dcc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 112.326827][ T7053] RAX: ffffffffffffffda RBX: 00007f6a99178f80 RCX: 00007f6a990585a9 [ 112.334636][ T7053] RDX: 000000000000fdef RSI: 0000000020000180 RDI: 0000000000000005 [ 112.342449][ T7053] RBP: 00007f6a97dcc1d0 R08: 0000000000000000 R09: 0000000000000000 [ 112.350257][ T7053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 112.358091][ T7053] R13: 00007ffe68dec34f R14: 00007f6a97dcc300 R15: 0000000000022000 [ 112.365887][ T7053] 13:52:40 executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x2, &(0x7f0000000040)=@raw=[@ldst={0x1, 0x2, 0x6, 0xb, 0xe, 0xfffffffffffffff4, 0x1}, @jmp={0x5, 0x1, 0x6, 0x2, 0xb, 0x2}], &(0x7f0000000140)='syzkaller\x00', 0x4, 0xe1, &(0x7f0000000380)=""/225, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x3, 0x4}, 0x8, 0x10, &(0x7f00000001c0)={0x5, 0xa, 0x3b92, 0x28}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000280)=[0xffffffffffffffff]}, 0x80) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x1c, 0x0, &(0x7f0000000100)="b9ff03076044238cb89e0cf008001be0ffff00004000633a77fb0806", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f00000008c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x40004) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@bloom_filter={0x1e, 0x9, 0x8, 0x8001, 0x19c4, 0xffffffffffffffff, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x3, 0x6}, 0x48) (async) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000740)={&(0x7f0000000700)='./file0\x00', 0x0, 0xb7015405464bae85}, 0x10) (async) r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000007c0)={&(0x7f0000000780)='./file0\x00'}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x6, &(0x7f0000000480)=@raw=[@map_fd={0x18, 0x9}, @alu={0x4, 0x1, 0xd, 0xa, 0x4, 0xc, 0x4}, @call={0x85, 0x0, 0x0, 0xc9}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffffe}], &(0x7f00000004c0)='GPL\x00', 0x1, 0xe8, &(0x7f0000000500)=""/232, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000640)={0x2, 0xb, 0x20, 0x5}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000800)=[r3, 0x1, r4, r5, 0xffffffffffffffff, 0x1, r6, 0xffffffffffffffff]}, 0x80) 13:52:40 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40086602, &(0x7f0000000040)) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r2, &(0x7f0000000200), 0x15000) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x6628, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) r6 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) write$cgroup_int(r6, &(0x7f00000001c0), 0xfffffdef) ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r0) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xda00) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x1) (async) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) (async) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40086602, &(0x7f0000000040)) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) (async) write$cgroup_int(r2, &(0x7f0000000200), 0x15000) (async) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) (async) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x6628, 0x0) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) (async) write$cgroup_int(r6, &(0x7f00000001c0), 0xfffffdef) (async) ioctl$PERF_EVENT_IOC_SET_BPF(r6, 0x40042408, r0) (async) write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xda00) (async) 13:52:40 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000400)={0x4, 0x80, 0x0, 0x26, 0x6, 0x91, 0x0, 0x9, 0xa08, 0x8, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4, @perf_config_ext={0x6, 0xffffffffffffffff}, 0x8400, 0xfffffffffffffffd, 0x7, 0x7, 0x1, 0x2, 0x49, 0x0, 0x200, 0x0, 0x6}, 0x0, 0x4, r0, 0x1) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000000)='\\@-&.[:\x00') syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='svc_unregister\x00'}, 0x10) r2 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r2, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x61, 0x52, 0x9, 0x1, 0x0, 0x4, 0x800, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0xff, 0x7}, 0x838, 0x4, 0x5, 0x2, 0x5, 0x80000000, 0x0, 0x0, 0x25d, 0x0, 0x74}, r2, 0xe, r0, 0x8) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="5d525ba2b9b33078d31bba5999f4db13220d4e7c05c55a8095cf58c505932ca36f0c9cbc469ac70aa40ccc20af1f3e4bbe4df5f03ffe1864b9fba5729e621d72f2c5fa9b586f2106a4e0947ed0af3a9e6df2fef417a85565320a99650cdb684e417ba4c9642be1c30570e98a8257d67aa3fc737ba771a32ba2cc767857c3d49e1be3c9e21be2edb54055b77816f2e844f97aeb1c6beae78e863a006e50cfc8f08cf49126f6b2d6eeece5a28d826df956af06926e6bab4503bbf892ef880b8745c0b18a064b2e5a0932e769a79aa5ee32f6b04a8e125c879794618e7c9ec8d2de3cc74c3f12208f69b5"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000500)='blkio.throttle.io_serviced\x00', 0x0, 0x0) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) perf_event_open$cgroup(&(0x7f0000000480)={0x3, 0x80, 0x4, 0x5, 0x5, 0xff, 0x0, 0xfffffffffffffffb, 0x0, 0x7, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x7, 0x101}, 0x101, 0x40, 0x1, 0x8, 0x3260d9e6, 0x2, 0x5, 0x0, 0x1, 0x0, 0x401}, r5, 0xfffffffffffffffd, r0, 0x8) perf_event_open(&(0x7f00000002c0)={0x3, 0x80, 0x3, 0x40, 0xf8, 0x3, 0x0, 0x6be, 0x2012, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x20, 0x4, @perf_bp={&(0x7f0000000280), 0x2}, 0x420, 0x0, 0x878, 0x6, 0x100, 0xfff, 0xc6, 0x0, 0x6b6, 0x0, 0x4}, 0x0, 0xb, r1, 0x8) syz_clone(0x8200000, &(0x7f0000000100)="0848938901443d947a90", 0xa, &(0x7f0000000140), &(0x7f0000000200), &(0x7f0000000240)="1900b1fd44ccdc8719d5e65048ebe7448d77301414669d3ada95bfa73c48f8f34b21") write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="9eb6538433eab7d1be21ceff66b71b3f8a5d6bf4cfb06791689b819bb53fdb5f6ac659e28862018000005b47cea053959656634bd2ea38419e7350fbe70427774e3175d848e8af1fea9d142b0000000000e26607816074fe5a7633e6b18e55dca702039e980109192b00000000000000004555b766a9881b65d0082b9b6adf0b7cca77fa231f00"/147], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x17, 0xb, &(0x7f0000000540)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x2f7}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @ldst={0x0, 0x0, 0x2, 0x1, 0x8, 0xc, 0xfffffffffffffff0}, @ldst={0x3, 0x0, 0x6, 0x8, 0x9, 0x200, 0xffffffffffffffff}, @cb_func={0x18, 0x4, 0x4, 0x0, 0x4}, @map_val={0x18, 0x2, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3ff}], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x8, '\x00', 0x0, 0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0xa, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x5, 0xa, 0x5, 0x6}, 0x10, 0x0, r6}, 0x80) 13:52:40 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) (fail_nth: 4) [ 112.386146][ T7067] FAULT_INJECTION: forcing a failure. [ 112.386146][ T7067] name failslab, interval 1, probability 0, space 0, times 0 [ 112.412780][ T7067] CPU: 0 PID: 7067 Comm: syz-executor.2 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 112.424165][ T7067] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 112.434061][ T7067] Call Trace: [ 112.437183][ T7067] [ 112.439960][ T7067] dump_stack_lvl+0x151/0x1b7 [ 112.442656][ T7073] FAULT_INJECTION: forcing a failure. [ 112.442656][ T7073] name failslab, interval 1, probability 0, space 0, times 0 [ 112.444470][ T7067] ? bfq_pos_tree_add_move+0x43e/0x43e [ 112.462183][ T7067] dump_stack+0x15/0x17 [ 112.466172][ T7067] should_fail+0x3c0/0x510 [ 112.470431][ T7067] __should_failslab+0x9f/0xe0 [ 112.475019][ T7067] should_failslab+0x9/0x20 [ 112.479361][ T7067] kmem_cache_alloc+0x4f/0x2f0 [ 112.483960][ T7067] ? vm_area_dup+0x26/0x1d0 [ 112.488299][ T7067] ? __kasan_check_read+0x11/0x20 [ 112.493159][ T7067] vm_area_dup+0x26/0x1d0 [ 112.497327][ T7067] dup_mmap+0x6b8/0xea0 [ 112.501319][ T7067] ? __delayed_free_task+0x20/0x20 [ 112.506264][ T7067] ? mm_init+0x807/0x960 [ 112.510345][ T7067] dup_mm+0x91/0x330 [ 112.514078][ T7067] copy_mm+0x108/0x1b0 [ 112.517993][ T7067] copy_process+0x1295/0x3250 [ 112.522498][ T7067] ? proc_fail_nth_write+0x213/0x290 [ 112.527616][ T7067] ? proc_fail_nth_read+0x220/0x220 [ 112.532651][ T7067] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 112.537597][ T7067] ? vfs_write+0x9af/0x1050 [ 112.541937][ T7067] ? vmacache_update+0xb7/0x120 [ 112.546625][ T7067] kernel_clone+0x22d/0x990 [ 112.550962][ T7067] ? file_end_write+0x1b0/0x1b0 [ 112.555648][ T7067] ? __kasan_check_write+0x14/0x20 [ 112.560597][ T7067] ? create_io_thread+0x1e0/0x1e0 [ 112.565454][ T7067] ? __mutex_lock_slowpath+0x10/0x10 [ 112.570580][ T7067] __x64_sys_clone+0x289/0x310 [ 112.575177][ T7067] ? __do_sys_vfork+0x130/0x130 [ 112.579867][ T7067] ? debug_smp_processor_id+0x17/0x20 [ 112.585073][ T7067] do_syscall_64+0x44/0xd0 [ 112.589327][ T7067] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 112.595056][ T7067] RIP: 0033:0x7f35007595a9 [ 112.599307][ T7067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 112.618750][ T7067] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 112.626991][ T7067] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 112.634804][ T7067] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 112.642615][ T7067] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 112.650426][ T7067] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 112.658237][ T7067] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 112.666051][ T7067] [ 112.668918][ T7073] CPU: 1 PID: 7073 Comm: syz-executor.1 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 112.680285][ T7073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 112.690175][ T7073] Call Trace: [ 112.693298][ T7073] [ 112.696077][ T7073] dump_stack_lvl+0x151/0x1b7 [ 112.700590][ T7073] ? bfq_pos_tree_add_move+0x43e/0x43e [ 112.705882][ T7073] ? arch_stack_walk+0xf8/0x140 [ 112.710571][ T7073] dump_stack+0x15/0x17 [ 112.714563][ T7073] should_fail+0x3c0/0x510 [ 112.718816][ T7073] __should_failslab+0x9f/0xe0 [ 112.723417][ T7073] should_failslab+0x9/0x20 [ 112.727755][ T7073] kmem_cache_alloc+0x4f/0x2f0 [ 112.732361][ T7073] ? xas_create+0x60e/0x1630 [ 112.736784][ T7073] xas_create+0x60e/0x1630 [ 112.741040][ T7073] xas_store+0x96/0x1830 [ 112.745115][ T7073] ? xas_find_conflict+0x724/0x800 [ 112.750061][ T7073] ? __mem_cgroup_charge+0x36d/0x490 [ 112.755184][ T7073] __add_to_page_cache_locked+0x65d/0xa00 [ 112.760738][ T7073] ? post_alloc_hook+0x1ab/0x1b0 [ 112.765516][ T7073] ? put_page+0xa0/0xa0 [ 112.769505][ T7073] ? workingset_activation+0x3d0/0x3d0 [ 112.774799][ T7073] ? __alloc_pages+0x3a8/0x7c0 [ 112.779399][ T7073] add_to_page_cache_lru+0x11b/0x2c0 [ 112.784526][ T7073] ? add_to_page_cache_locked+0x40/0x40 [ 112.789900][ T7073] ? xas_load+0x2b9/0x2e0 [ 112.794066][ T7073] pagecache_get_page+0xb17/0xdb0 [ 112.798927][ T7073] ? page_cache_prev_miss+0x430/0x430 [ 112.804136][ T7073] grab_cache_page_write_begin+0x5c/0xa0 [ 112.809604][ T7073] ext4_da_write_begin+0x5c1/0xbf0 [ 112.814550][ T7073] ? ext4_set_page_dirty+0x1a0/0x1a0 [ 112.819669][ T7073] ? fault_in_readable+0x1db/0x2e0 [ 112.824616][ T7073] ? fault_in_safe_writeable+0x240/0x240 [ 112.830085][ T7073] ? fault_in_iov_iter_readable+0x1bb/0x210 [ 112.835812][ T7073] generic_perform_write+0x2cd/0x5d0 [ 112.840933][ T7073] ? grab_cache_page_write_begin+0xa0/0xa0 [ 112.846575][ T7073] ? down_write+0xdd/0x140 [ 112.850828][ T7073] ? down_read_killable+0x250/0x250 [ 112.855859][ T7073] ? do_handle_mm_fault+0x1720/0x2370 [ 112.861070][ T7073] ? generic_write_checks+0x3d8/0x490 [ 112.866276][ T7073] ext4_buffered_write_iter+0x49b/0x630 [ 112.871665][ T7073] ext4_file_write_iter+0x456/0x1dc0 [ 112.876776][ T7073] ? kstrtol_from_user+0x310/0x310 [ 112.881727][ T7073] ? avc_policy_seqno+0x1b/0x70 [ 112.886411][ T7073] ? selinux_file_permission+0x2ae/0x520 [ 112.891878][ T7073] ? ext4_file_read_iter+0x4b0/0x4b0 [ 112.897001][ T7073] ? iov_iter_init+0x53/0x180 [ 112.901512][ T7073] vfs_write+0xc8d/0x1050 [ 112.905682][ T7073] ? vmacache_update+0xb7/0x120 [ 112.910365][ T7073] ? file_end_write+0x1b0/0x1b0 [ 112.915051][ T7073] ? mutex_lock+0xb6/0x130 [ 112.919305][ T7073] ? wait_for_completion_killable_timeout+0x10/0x10 [ 112.925729][ T7073] ? __fdget_pos+0x26d/0x310 [ 112.930153][ T7073] ? ksys_write+0x77/0x2c0 [ 112.934408][ T7073] ksys_write+0x198/0x2c0 [ 112.938574][ T7073] ? __ia32_sys_read+0x90/0x90 [ 112.943176][ T7073] ? debug_smp_processor_id+0x17/0x20 [ 112.948405][ T7073] __x64_sys_write+0x7b/0x90 [ 112.952810][ T7073] do_syscall_64+0x44/0xd0 [ 112.957061][ T7073] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 112.962787][ T7073] RIP: 0033:0x7f6a990585a9 [ 112.967043][ T7073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 13:52:41 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:41 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x1) r1 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000006c0)={0x4, 0x80, 0x0, 0x7, 0x3f, 0x7, 0x0, 0x8000000000000001, 0x24010, 0xd, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000680), 0x8}, 0x2a400, 0x4, 0x20, 0x3, 0x3, 0x3, 0x22, 0x0, 0x40, 0x0, 0x8000000000000000}, 0x0, 0xb, 0xffffffffffffffff, 0xb) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) perf_event_open(&(0x7f0000000740)={0x1, 0x80, 0x6, 0x41, 0x2, 0x0, 0x0, 0x6, 0x1080, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x2, @perf_config_ext={0x5, 0x3}, 0x4, 0x27c, 0x80000001, 0x8, 0x2, 0x5, 0x4, 0x0, 0x100, 0x0, 0x1}, 0x0, 0xc, r0, 0x1) bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000200)=0x7) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x35af000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000280)={0x0, 0x7, 0x10}, 0xc) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000640)={r3, &(0x7f00000002c0)="fa48060dc8f1d5f9ba279591d8847046f96eb2734270c9d3d048f509603c28628a3f409d65ebdd3ee5e5549b86422acf8f81064fb2e5b385781b39873e", &(0x7f0000000540)=""/233}, 0x20) r4 = perf_event_open$cgroup(&(0x7f0000000300)={0x2, 0x80, 0x3, 0x0, 0x8, 0x3, 0x0, 0x0, 0x80, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x1, 0x20, 0x4, 0x0, 0x1, 0x6, 0x86, 0x0, 0x9, 0x0, 0x7}, 0xffffffffffffffff, 0x200000000000000e, r2, 0x4) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0xd2, 0x2, 0x8, 0x3, 0x0, 0x9, 0x90000, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffffffb, 0x2, @perf_config_ext={0x7}, 0x222, 0x9, 0xffff, 0x4, 0x49, 0x282, 0x3a, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x2, r4, 0x1) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) r5 = syz_clone(0x40002000, &(0x7f0000000380)="e947410d47175682afb85300f3b8cf66ac5ed9a7b99db76a578b64ac4bac112933b54542882fcd9133a29c67c9e216893565427246daf3ba9dcde352e366b2298f286042f4282292cf53cb14264fdca21dc892b7526de02294aa06c9e4ff002f1de4889b58d91ab527d0398c92361a557f02176f45767f2e98b11c3923f5a335e8dc09fef1b196cc5a5ae586cd057e45b57ef7ebd5713ddf439092d07fe586f49c1f1531fcf6aae967397ed41dc34ad0fbc5a15c295817423422e2625b8f778ce456883e5674ae1fbd", 0xc9, &(0x7f0000000000), &(0x7f0000000240), &(0x7f0000000480)="1a2791915632ed364361ffdb660f333f67cdcc53453469a8cabb8c4d58f7c3d7d20627c2bb81e25b6fc57c9bf4fb1a78c5c5a318e3f7bea198f95e46d92985e3408d73bd5fd106bd285c3bdc9fc024ddbfd9d47b7c8d7c2aeec81620bb5d285212f4a00c69b0adebbf1e06d728431fb89dd0c75a7ae8fa4d3fb6225d273738bb5b5eb7e9ee2113f08db6ee2699bc41647b8394") perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x57, 0xe1, 0x3, 0x0, 0x0, 0x375, 0x200, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x101, 0x0, @perf_config_ext={0x3, 0x3}, 0x1, 0x2, 0xfffffffd, 0x9, 0x80000001, 0x400, 0x0, 0x0, 0x5, 0x0, 0x26}, r5, 0xf, r1, 0x2) [ 112.986488][ T7073] RSP: 002b:00007f6a97dcc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 112.994728][ T7073] RAX: ffffffffffffffda RBX: 00007f6a99178f80 RCX: 00007f6a990585a9 [ 113.002538][ T7073] RDX: 000000000000fdef RSI: 0000000020000180 RDI: 0000000000000005 [ 113.010351][ T7073] RBP: 00007f6a97dcc1d0 R08: 0000000000000000 R09: 0000000000000000 [ 113.018160][ T7073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 113.025973][ T7073] R13: 00007ffe68dec34f R14: 00007f6a97dcc300 R15: 0000000000022000 [ 113.033786][ T7073] 13:52:41 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r0, &(0x7f00000000c0)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) 13:52:41 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) (fail_nth: 5) 13:52:41 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 83) 13:52:41 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f00000000c0)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:41 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000080)='hugetlb.1GB.rsvd.limit_in_bytes\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 113.127291][ T7113] FAULT_INJECTION: forcing a failure. [ 113.127291][ T7113] name failslab, interval 1, probability 0, space 0, times 0 [ 113.145420][ T7110] FAULT_INJECTION: forcing a failure. [ 113.145420][ T7110] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 113.158350][ T7110] CPU: 1 PID: 7110 Comm: syz-executor.1 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 113.169662][ T7110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 113.179552][ T7110] Call Trace: [ 113.182674][ T7110] [ 113.185453][ T7110] dump_stack_lvl+0x151/0x1b7 [ 113.189967][ T7110] ? bfq_pos_tree_add_move+0x43e/0x43e [ 113.195260][ T7110] ? ext4_da_write_begin+0x7d5/0xbf0 [ 113.200391][ T7110] dump_stack+0x15/0x17 [ 113.204375][ T7110] should_fail+0x3c0/0x510 [ 113.208629][ T7110] should_fail_usercopy+0x1a/0x20 [ 113.213486][ T7110] copy_page_from_iter_atomic+0x433/0x11c0 [ 113.219132][ T7110] ? pipe_zero+0x4d0/0x4d0 [ 113.223382][ T7110] ? fault_in_iov_iter_readable+0x1bb/0x210 [ 113.229108][ T7110] generic_perform_write+0x343/0x5d0 [ 113.234233][ T7110] ? grab_cache_page_write_begin+0xa0/0xa0 [ 113.239870][ T7110] ? down_write+0xdd/0x140 [ 113.244126][ T7110] ? down_read_killable+0x250/0x250 [ 113.249156][ T7110] ? do_handle_mm_fault+0x1720/0x2370 [ 113.254365][ T7110] ? generic_write_checks+0x3d8/0x490 [ 113.259572][ T7110] ext4_buffered_write_iter+0x49b/0x630 [ 113.264955][ T7110] ext4_file_write_iter+0x456/0x1dc0 [ 113.270077][ T7110] ? kstrtol_from_user+0x310/0x310 [ 113.275023][ T7110] ? avc_policy_seqno+0x1b/0x70 [ 113.279707][ T7110] ? selinux_file_permission+0x2ae/0x520 [ 113.285175][ T7110] ? ext4_file_read_iter+0x4b0/0x4b0 [ 113.290301][ T7110] ? iov_iter_init+0x53/0x180 [ 113.294817][ T7110] vfs_write+0xc8d/0x1050 [ 113.298975][ T7110] ? vmacache_update+0xb7/0x120 [ 113.303664][ T7110] ? file_end_write+0x1b0/0x1b0 [ 113.308350][ T7110] ? mutex_lock+0xb6/0x130 [ 113.312601][ T7110] ? wait_for_completion_killable_timeout+0x10/0x10 [ 113.319026][ T7110] ? __fdget_pos+0x26d/0x310 [ 113.323449][ T7110] ? ksys_write+0x77/0x2c0 [ 113.327704][ T7110] ksys_write+0x198/0x2c0 [ 113.331873][ T7110] ? __ia32_sys_read+0x90/0x90 [ 113.336473][ T7110] ? debug_smp_processor_id+0x17/0x20 [ 113.341676][ T7110] __x64_sys_write+0x7b/0x90 [ 113.346103][ T7110] do_syscall_64+0x44/0xd0 [ 113.350355][ T7110] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 113.356087][ T7110] RIP: 0033:0x7f6a990585a9 [ 113.360338][ T7110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 113.379779][ T7110] RSP: 002b:00007f6a97dcc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 113.388026][ T7110] RAX: ffffffffffffffda RBX: 00007f6a99178f80 RCX: 00007f6a990585a9 [ 113.395837][ T7110] RDX: 000000000000fdef RSI: 0000000020000180 RDI: 0000000000000005 [ 113.403645][ T7110] RBP: 00007f6a97dcc1d0 R08: 0000000000000000 R09: 0000000000000000 [ 113.411460][ T7110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 113.419269][ T7110] R13: 00007ffe68dec34f R14: 00007f6a97dcc300 R15: 0000000000022000 [ 113.427085][ T7110] [ 113.437849][ T7113] CPU: 0 PID: 7113 Comm: syz-executor.2 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 113.449241][ T7113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 113.459134][ T7113] Call Trace: [ 113.462255][ T7113] [ 113.465032][ T7113] dump_stack_lvl+0x151/0x1b7 [ 113.469549][ T7113] ? bfq_pos_tree_add_move+0x43e/0x43e [ 113.474844][ T7113] dump_stack+0x15/0x17 [ 113.478834][ T7113] should_fail+0x3c0/0x510 [ 113.483088][ T7113] __should_failslab+0x9f/0xe0 [ 113.487872][ T7113] should_failslab+0x9/0x20 [ 113.492207][ T7113] kmem_cache_alloc+0x4f/0x2f0 [ 113.496807][ T7113] ? vm_area_dup+0x26/0x1d0 [ 113.501150][ T7113] ? __kasan_check_read+0x11/0x20 [ 113.506010][ T7113] vm_area_dup+0x26/0x1d0 [ 113.510170][ T7113] dup_mmap+0x6b8/0xea0 [ 113.514168][ T7113] ? __delayed_free_task+0x20/0x20 [ 113.519116][ T7113] ? mm_init+0x807/0x960 [ 113.523196][ T7113] dup_mm+0x91/0x330 13:52:41 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000400)={0x4, 0x80, 0x0, 0x26, 0x6, 0x91, 0x0, 0x9, 0xa08, 0x8, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4, @perf_config_ext={0x6, 0xffffffffffffffff}, 0x8400, 0xfffffffffffffffd, 0x7, 0x7, 0x1, 0x2, 0x49, 0x0, 0x200, 0x0, 0x6}, 0x0, 0x4, r0, 0x1) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000000)='\\@-&.[:\x00') (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='svc_unregister\x00'}, 0x10) (async) r2 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r2, 0x0) (async) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x61, 0x52, 0x9, 0x1, 0x0, 0x4, 0x800, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0xff, 0x7}, 0x838, 0x4, 0x5, 0x2, 0x5, 0x80000000, 0x0, 0x0, 0x25d, 0x0, 0x74}, r2, 0xe, r0, 0x8) (async) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="5d525ba2b9b33078d31bba5999f4db13220d4e7c05c55a8095cf58c505932ca36f0c9cbc469ac70aa40ccc20af1f3e4bbe4df5f03ffe1864b9fba5729e621d72f2c5fa9b586f2106a4e0947ed0af3a9e6df2fef417a85565320a99650cdb684e417ba4c9642be1c30570e98a8257d67aa3fc737ba771a32ba2cc767857c3d49e1be3c9e21be2edb54055b77816f2e844f97aeb1c6beae78e863a006e50cfc8f08cf49126f6b2d6eeece5a28d826df956af06926e6bab4503bbf892ef880b8745c0b18a064b2e5a0932e769a79aa5ee32f6b04a8e125c879794618e7c9ec8d2de3cc74c3f12208f69b5"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000500)='blkio.throttle.io_serviced\x00', 0x0, 0x0) (async) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) perf_event_open$cgroup(&(0x7f0000000480)={0x3, 0x80, 0x4, 0x5, 0x5, 0xff, 0x0, 0xfffffffffffffffb, 0x0, 0x7, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x7, 0x101}, 0x101, 0x40, 0x1, 0x8, 0x3260d9e6, 0x2, 0x5, 0x0, 0x1, 0x0, 0x401}, r5, 0xfffffffffffffffd, r0, 0x8) (async) perf_event_open(&(0x7f00000002c0)={0x3, 0x80, 0x3, 0x40, 0xf8, 0x3, 0x0, 0x6be, 0x2012, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x20, 0x4, @perf_bp={&(0x7f0000000280), 0x2}, 0x420, 0x0, 0x878, 0x6, 0x100, 0xfff, 0xc6, 0x0, 0x6b6, 0x0, 0x4}, 0x0, 0xb, r1, 0x8) (async) syz_clone(0x8200000, &(0x7f0000000100)="0848938901443d947a90", 0xa, &(0x7f0000000140), &(0x7f0000000200), &(0x7f0000000240)="1900b1fd44ccdc8719d5e65048ebe7448d77301414669d3ada95bfa73c48f8f34b21") (async) write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) (async) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="9eb6538433eab7d1be21ceff66b71b3f8a5d6bf4cfb06791689b819bb53fdb5f6ac659e28862018000005b47cea053959656634bd2ea38419e7350fbe70427774e3175d848e8af1fea9d142b0000000000e26607816074fe5a7633e6b18e55dca702039e980109192b00000000000000004555b766a9881b65d0082b9b6adf0b7cca77fa231f00"/147], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x17, 0xb, &(0x7f0000000540)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x2f7}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @ldst={0x0, 0x0, 0x2, 0x1, 0x8, 0xc, 0xfffffffffffffff0}, @ldst={0x3, 0x0, 0x6, 0x8, 0x9, 0x200, 0xffffffffffffffff}, @cb_func={0x18, 0x4, 0x4, 0x0, 0x4}, @map_val={0x18, 0x2, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3ff}], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x8, '\x00', 0x0, 0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0xa, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x5, 0xa, 0x5, 0x6}, 0x10, 0x0, r6}, 0x80) [ 113.526929][ T7113] copy_mm+0x108/0x1b0 [ 113.530829][ T7113] copy_process+0x1295/0x3250 [ 113.535346][ T7113] ? proc_fail_nth_write+0x213/0x290 [ 113.540466][ T7113] ? proc_fail_nth_read+0x220/0x220 [ 113.545503][ T7113] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 113.550445][ T7113] ? vfs_write+0x9af/0x1050 [ 113.554784][ T7113] ? vmacache_update+0xb7/0x120 [ 113.559483][ T7113] kernel_clone+0x22d/0x990 [ 113.563821][ T7113] ? file_end_write+0x1b0/0x1b0 [ 113.568495][ T7113] ? __kasan_check_write+0x14/0x20 [ 113.573445][ T7113] ? create_io_thread+0x1e0/0x1e0 [ 113.578304][ T7113] ? __mutex_lock_slowpath+0x10/0x10 [ 113.583433][ T7113] __x64_sys_clone+0x289/0x310 [ 113.588028][ T7113] ? __do_sys_vfork+0x130/0x130 [ 113.592715][ T7113] ? debug_smp_processor_id+0x17/0x20 [ 113.597927][ T7113] do_syscall_64+0x44/0xd0 [ 113.602174][ T7113] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 113.607899][ T7113] RIP: 0033:0x7f35007595a9 [ 113.612154][ T7113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 113.631597][ T7113] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 113.639847][ T7113] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 113.647650][ T7113] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 113.655465][ T7113] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 113.663277][ T7113] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 113.671084][ T7113] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 13:52:42 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) (fail_nth: 6) 13:52:42 executing program 0: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x2, &(0x7f0000000040)=@raw=[@ldst={0x1, 0x2, 0x6, 0xb, 0xe, 0xfffffffffffffff4, 0x1}, @jmp={0x5, 0x1, 0x6, 0x2, 0xb, 0x2}], &(0x7f0000000140)='syzkaller\x00', 0x4, 0xe1, &(0x7f0000000380)=""/225, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x3, 0x4}, 0x8, 0x10, &(0x7f00000001c0)={0x5, 0xa, 0x3b92, 0x28}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000280)=[0xffffffffffffffff]}, 0x80) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x1c, 0x0, &(0x7f0000000100)="b9ff03076044238cb89e0cf008001be0ffff00004000633a77fb0806", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f00000008c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) sendmsg(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x40004) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@bloom_filter={0x1e, 0x9, 0x8, 0x8001, 0x19c4, 0xffffffffffffffff, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x3, 0x6}, 0x48) r5 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000740)={&(0x7f0000000700)='./file0\x00', 0x0, 0xb7015405464bae85}, 0x10) r6 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000007c0)={&(0x7f0000000780)='./file0\x00'}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x6, &(0x7f0000000480)=@raw=[@map_fd={0x18, 0x9}, @alu={0x4, 0x1, 0xd, 0xa, 0x4, 0xc, 0x4}, @call={0x85, 0x0, 0x0, 0xc9}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffffe}], &(0x7f00000004c0)='GPL\x00', 0x1, 0xe8, &(0x7f0000000500)=""/232, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000640)={0x2, 0xb, 0x20, 0x5}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000800)=[r3, 0x1, r4, r5, 0xffffffffffffffff, 0x1, r6, 0xffffffffffffffff]}, 0x80) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x2, &(0x7f0000000040)=@raw=[@ldst={0x1, 0x2, 0x6, 0xb, 0xe, 0xfffffffffffffff4, 0x1}, @jmp={0x5, 0x1, 0x6, 0x2, 0xb, 0x2}], &(0x7f0000000140)='syzkaller\x00', 0x4, 0xe1, &(0x7f0000000380)=""/225, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000180)={0x3, 0x4}, 0x8, 0x10, &(0x7f00000001c0)={0x5, 0xa, 0x3b92, 0x28}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000280)=[0xffffffffffffffff]}, 0x80) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x1c, 0x0, &(0x7f0000000100)="b9ff03076044238cb89e0cf008001be0ffff00004000633a77fb0806", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x48) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000001000003000000000000f10095"], &(0x7f00000008c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) (async) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) (async) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) (async) sendmsg(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002540)='O', 0x1}], 0x1}, 0x40004) (async) bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@bloom_filter={0x1e, 0x9, 0x8, 0x8001, 0x19c4, 0xffffffffffffffff, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x3, 0x6}, 0x48) (async) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000740)={&(0x7f0000000700)='./file0\x00', 0x0, 0xb7015405464bae85}, 0x10) (async) bpf$OBJ_GET_MAP(0x7, &(0x7f00000007c0)={&(0x7f0000000780)='./file0\x00'}, 0x10) (async) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x6, &(0x7f0000000480)=@raw=[@map_fd={0x18, 0x9}, @alu={0x4, 0x1, 0xd, 0xa, 0x4, 0xc, 0x4}, @call={0x85, 0x0, 0x0, 0xc9}, @cb_func={0x18, 0x9, 0x4, 0x0, 0xfffffffffffffffe}], &(0x7f00000004c0)='GPL\x00', 0x1, 0xe8, &(0x7f0000000500)=""/232, 0x41000, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x8, 0x1}, 0x8, 0x10, &(0x7f0000000640)={0x2, 0xb, 0x20, 0x5}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000800)=[r3, 0x1, r4, r5, 0xffffffffffffffff, 0x1, r6, 0xffffffffffffffff]}, 0x80) (async) 13:52:42 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 32) r0 = perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x1) (async, rerun: 32) r1 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f00000006c0)={0x4, 0x80, 0x0, 0x7, 0x3f, 0x7, 0x0, 0x8000000000000001, 0x24010, 0xd, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000680), 0x8}, 0x2a400, 0x4, 0x20, 0x3, 0x3, 0x3, 0x22, 0x0, 0x40, 0x0, 0x8000000000000000}, 0x0, 0xb, 0xffffffffffffffff, 0xb) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) (async) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async) perf_event_open(&(0x7f0000000740)={0x1, 0x80, 0x6, 0x41, 0x2, 0x0, 0x0, 0x6, 0x1080, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x2, @perf_config_ext={0x5, 0x3}, 0x4, 0x27c, 0x80000001, 0x8, 0x2, 0x5, 0x4, 0x0, 0x100, 0x0, 0x1}, 0x0, 0xc, r0, 0x1) (async) bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0) (async) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000200)=0x7) (async, rerun: 32) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x35af000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 32) r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000280)={0x0, 0x7, 0x10}, 0xc) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000640)={r3, &(0x7f00000002c0)="fa48060dc8f1d5f9ba279591d8847046f96eb2734270c9d3d048f509603c28628a3f409d65ebdd3ee5e5549b86422acf8f81064fb2e5b385781b39873e", &(0x7f0000000540)=""/233}, 0x20) r4 = perf_event_open$cgroup(&(0x7f0000000300)={0x2, 0x80, 0x3, 0x0, 0x8, 0x3, 0x0, 0x0, 0x80, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x1, 0x20, 0x4, 0x0, 0x1, 0x6, 0x86, 0x0, 0x9, 0x0, 0x7}, 0xffffffffffffffff, 0x200000000000000e, r2, 0x4) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0xd2, 0x2, 0x8, 0x3, 0x0, 0x9, 0x90000, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffffffb, 0x2, @perf_config_ext={0x7}, 0x222, 0x9, 0xffff, 0x4, 0x49, 0x282, 0x3a, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x2, r4, 0x1) (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) r5 = syz_clone(0x40002000, &(0x7f0000000380)="e947410d47175682afb85300f3b8cf66ac5ed9a7b99db76a578b64ac4bac112933b54542882fcd9133a29c67c9e216893565427246daf3ba9dcde352e366b2298f286042f4282292cf53cb14264fdca21dc892b7526de02294aa06c9e4ff002f1de4889b58d91ab527d0398c92361a557f02176f45767f2e98b11c3923f5a335e8dc09fef1b196cc5a5ae586cd057e45b57ef7ebd5713ddf439092d07fe586f49c1f1531fcf6aae967397ed41dc34ad0fbc5a15c295817423422e2625b8f778ce456883e5674ae1fbd", 0xc9, &(0x7f0000000000), &(0x7f0000000240), &(0x7f0000000480)="1a2791915632ed364361ffdb660f333f67cdcc53453469a8cabb8c4d58f7c3d7d20627c2bb81e25b6fc57c9bf4fb1a78c5c5a318e3f7bea198f95e46d92985e3408d73bd5fd106bd285c3bdc9fc024ddbfd9d47b7c8d7c2aeec81620bb5d285212f4a00c69b0adebbf1e06d728431fb89dd0c75a7ae8fa4d3fb6225d273738bb5b5eb7e9ee2113f08db6ee2699bc41647b8394") perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x57, 0xe1, 0x3, 0x0, 0x0, 0x375, 0x200, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x101, 0x0, @perf_config_ext={0x3, 0x3}, 0x1, 0x2, 0xfffffffd, 0x9, 0x80000001, 0x400, 0x0, 0x0, 0x5, 0x0, 0x26}, r5, 0xf, r1, 0x2) 13:52:42 executing program 5: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000400)={0x4, 0x80, 0x0, 0x26, 0x6, 0x91, 0x0, 0x9, 0xa08, 0x8, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4, @perf_config_ext={0x6, 0xffffffffffffffff}, 0x8400, 0xfffffffffffffffd, 0x7, 0x7, 0x1, 0x2, 0x49, 0x0, 0x200, 0x0, 0x6}, 0x0, 0x4, r0, 0x1) (async) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000000)='\\@-&.[:\x00') (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='svc_unregister\x00'}, 0x10) (async) r2 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r2, 0x0) (async) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x61, 0x52, 0x9, 0x1, 0x0, 0x4, 0x800, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0xff, 0x7}, 0x838, 0x4, 0x5, 0x2, 0x5, 0x80000000, 0x0, 0x0, 0x25d, 0x0, 0x74}, r2, 0xe, r0, 0x8) (async) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="5d525ba2b9b33078d31bba5999f4db13220d4e7c05c55a8095cf58c505932ca36f0c9cbc469ac70aa40ccc20af1f3e4bbe4df5f03ffe1864b9fba5729e621d72f2c5fa9b586f2106a4e0947ed0af3a9e6df2fef417a85565320a99650cdb684e417ba4c9642be1c30570e98a8257d67aa3fc737ba771a32ba2cc767857c3d49e1be3c9e21be2edb54055b77816f2e844f97aeb1c6beae78e863a006e50cfc8f08cf49126f6b2d6eeece5a28d826df956af06926e6bab4503bbf892ef880b8745c0b18a064b2e5a0932e769a79aa5ee32f6b04a8e125c879794618e7c9ec8d2de3cc74c3f12208f69b5"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000500)='blkio.throttle.io_serviced\x00', 0x0, 0x0) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) (async) perf_event_open$cgroup(&(0x7f0000000480)={0x3, 0x80, 0x4, 0x5, 0x5, 0xff, 0x0, 0xfffffffffffffffb, 0x0, 0x7, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x7, 0x101}, 0x101, 0x40, 0x1, 0x8, 0x3260d9e6, 0x2, 0x5, 0x0, 0x1, 0x0, 0x401}, r5, 0xfffffffffffffffd, r0, 0x8) (async) perf_event_open(&(0x7f00000002c0)={0x3, 0x80, 0x3, 0x40, 0xf8, 0x3, 0x0, 0x6be, 0x2012, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x20, 0x4, @perf_bp={&(0x7f0000000280), 0x2}, 0x420, 0x0, 0x878, 0x6, 0x100, 0xfff, 0xc6, 0x0, 0x6b6, 0x0, 0x4}, 0x0, 0xb, r1, 0x8) syz_clone(0x8200000, &(0x7f0000000100)="0848938901443d947a90", 0xa, &(0x7f0000000140), &(0x7f0000000200), &(0x7f0000000240)="1900b1fd44ccdc8719d5e65048ebe7448d77301414669d3ada95bfa73c48f8f34b21") (async) write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) (async) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="9eb6538433eab7d1be21ceff66b71b3f8a5d6bf4cfb06791689b819bb53fdb5f6ac659e28862018000005b47cea053959656634bd2ea38419e7350fbe70427774e3175d848e8af1fea9d142b0000000000e26607816074fe5a7633e6b18e55dca702039e980109192b00000000000000004555b766a9881b65d0082b9b6adf0b7cca77fa231f00"/147], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x17, 0xb, &(0x7f0000000540)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x2f7}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @ldst={0x0, 0x0, 0x2, 0x1, 0x8, 0xc, 0xfffffffffffffff0}, @ldst={0x3, 0x0, 0x6, 0x8, 0x9, 0x200, 0xffffffffffffffff}, @cb_func={0x18, 0x4, 0x4, 0x0, 0x4}, @map_val={0x18, 0x2, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3ff}], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x8, '\x00', 0x0, 0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0xa, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x5, 0xa, 0x5, 0x6}, 0x10, 0x0, r6}, 0x80) 13:52:42 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000080)='hugetlb.1GB.rsvd.limit_in_bytes\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:42 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000080)='hugetlb.1GB.rsvd.limit_in_bytes\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 113.678897][ T7113] 13:52:42 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 84) 13:52:42 executing program 4: r0 = getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = getpid() perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x7a, 0x6, 0x0, 0x6, 0x0, 0x8000000000000001, 0x8, 0x8, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3f, 0x1, @perf_bp={&(0x7f0000000040), 0xa}, 0x2040, 0x1000, 0x70c7, 0x9, 0x4, 0x9, 0x6, 0x0, 0x4, 0x0, 0x9}, r2, 0x9, 0xffffffffffffffff, 0xc) [ 113.735297][ T7141] FAULT_INJECTION: forcing a failure. [ 113.735297][ T7141] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 113.743004][ T7154] FAULT_INJECTION: forcing a failure. [ 113.743004][ T7154] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 113.785947][ T7154] CPU: 0 PID: 7154 Comm: syz-executor.2 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 113.797333][ T7154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 113.807225][ T7154] Call Trace: [ 113.810347][ T7154] [ 113.813126][ T7154] dump_stack_lvl+0x151/0x1b7 [ 113.817638][ T7154] ? bfq_pos_tree_add_move+0x43e/0x43e [ 113.822936][ T7154] dump_stack+0x15/0x17 [ 113.826925][ T7154] should_fail+0x3c0/0x510 [ 113.831176][ T7154] should_fail_alloc_page+0x58/0x70 [ 113.836220][ T7154] __alloc_pages+0x1de/0x7c0 [ 113.840641][ T7154] ? __count_vm_events+0x30/0x30 [ 113.845411][ T7154] ? __this_cpu_preempt_check+0x13/0x20 [ 113.850791][ T7154] ? __mod_node_page_state+0xac/0xf0 [ 113.855912][ T7154] ? __mod_lruvec_page_state+0x15f/0x1c0 [ 113.861379][ T7154] pte_alloc_one+0x73/0x1b0 [ 113.865721][ T7154] ? pfn_modify_allowed+0x2e0/0x2e0 [ 113.870758][ T7154] __pte_alloc+0x86/0x350 [ 113.874921][ T7154] ? free_pgtables+0x210/0x210 [ 113.879520][ T7154] ? _raw_spin_lock+0xa3/0x1b0 [ 113.884120][ T7154] ? _raw_spin_trylock_bh+0x1d0/0x1d0 [ 113.889331][ T7154] ? unwind_get_return_address+0x4c/0x90 [ 113.894796][ T7154] copy_pte_range+0x1b1f/0x20b0 [ 113.899483][ T7154] ? stack_trace_save+0x12d/0x1f0 [ 113.904343][ T7154] ? anon_vma_clone+0xa1/0x4f0 [ 113.908945][ T7154] ? __kunmap_atomic+0x80/0x80 [ 113.913542][ T7154] ? dup_mmap+0x750/0xea0 [ 113.917710][ T7154] ? copy_mm+0x108/0x1b0 [ 113.921787][ T7154] ? copy_process+0x1295/0x3250 [ 113.926473][ T7154] ? kernel_clone+0x22d/0x990 [ 113.930985][ T7154] ? __x64_sys_clone+0x289/0x310 [ 113.935766][ T7154] ? do_syscall_64+0x44/0xd0 [ 113.940190][ T7154] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 113.946092][ T7154] copy_page_range+0xc1e/0x1090 [ 113.950779][ T7154] ? pfn_valid+0x1e0/0x1e0 [ 113.955033][ T7154] dup_mmap+0x99f/0xea0 [ 113.959022][ T7154] ? __delayed_free_task+0x20/0x20 [ 113.963968][ T7154] ? mm_init+0x807/0x960 [ 113.968047][ T7154] dup_mm+0x91/0x330 [ 113.971782][ T7154] copy_mm+0x108/0x1b0 [ 113.975685][ T7154] copy_process+0x1295/0x3250 [ 113.980200][ T7154] ? proc_fail_nth_write+0x213/0x290 [ 113.985323][ T7154] ? proc_fail_nth_read+0x220/0x220 [ 113.990353][ T7154] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 113.995315][ T7154] ? vfs_write+0x9af/0x1050 [ 113.999647][ T7154] ? vmacache_update+0xb7/0x120 [ 114.004326][ T7154] kernel_clone+0x22d/0x990 [ 114.008668][ T7154] ? file_end_write+0x1b0/0x1b0 [ 114.013351][ T7154] ? __kasan_check_write+0x14/0x20 [ 114.018300][ T7154] ? create_io_thread+0x1e0/0x1e0 [ 114.023159][ T7154] ? __mutex_lock_slowpath+0x10/0x10 [ 114.028281][ T7154] __x64_sys_clone+0x289/0x310 [ 114.032884][ T7154] ? __do_sys_vfork+0x130/0x130 [ 114.037569][ T7154] ? debug_smp_processor_id+0x17/0x20 [ 114.042777][ T7154] do_syscall_64+0x44/0xd0 [ 114.047028][ T7154] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 114.052757][ T7154] RIP: 0033:0x7f35007595a9 [ 114.057011][ T7154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 114.076455][ T7154] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 114.084696][ T7154] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 114.092510][ T7154] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 114.100316][ T7154] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 114.108127][ T7154] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 114.115939][ T7154] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 114.123765][ T7154] [ 114.129133][ T7141] CPU: 0 PID: 7141 Comm: syz-executor.1 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 114.140506][ T7141] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 114.150399][ T7141] Call Trace: [ 114.153522][ T7141] [ 114.156303][ T7141] dump_stack_lvl+0x151/0x1b7 [ 114.160814][ T7141] ? bfq_pos_tree_add_move+0x43e/0x43e [ 114.166105][ T7141] ? percpu_counter_add_batch+0x13d/0x160 [ 114.171662][ T7141] dump_stack+0x15/0x17 [ 114.175653][ T7141] should_fail+0x3c0/0x510 [ 114.179907][ T7141] should_fail_alloc_page+0x58/0x70 [ 114.184940][ T7141] __alloc_pages+0x1de/0x7c0 [ 114.189367][ T7141] ? __count_vm_events+0x30/0x30 [ 114.194140][ T7141] ? _raw_spin_lock+0xa3/0x1b0 [ 114.198742][ T7141] ? xas_load+0x2c7/0x2e0 [ 114.202907][ T7141] pagecache_get_page+0xa60/0xdb0 [ 114.207770][ T7141] ? page_cache_prev_miss+0x430/0x430 [ 114.212976][ T7141] ? __kasan_check_write+0x14/0x20 [ 114.217926][ T7141] ? xas_set_mark+0x1f5/0x390 [ 114.222436][ T7141] grab_cache_page_write_begin+0x5c/0xa0 [ 114.227903][ T7141] ext4_da_write_begin+0x5c1/0xbf0 [ 114.232850][ T7141] ? ext4_set_page_dirty+0x1a0/0x1a0 [ 114.237970][ T7141] ? __kasan_check_write+0x14/0x20 [ 114.242916][ T7141] ? __block_commit_write+0x278/0x2a0 [ 114.248125][ T7141] ? fault_in_readable+0x1db/0x2e0 [ 114.253072][ T7141] ? fault_in_safe_writeable+0x240/0x240 [ 114.258548][ T7141] ? fault_in_iov_iter_readable+0x1bb/0x210 [ 114.264268][ T7141] generic_perform_write+0x2cd/0x5d0 [ 114.269392][ T7141] ? grab_cache_page_write_begin+0xa0/0xa0 [ 114.275031][ T7141] ? down_write+0xdd/0x140 [ 114.279282][ T7141] ? down_read_killable+0x250/0x250 [ 114.284316][ T7141] ? do_handle_mm_fault+0x1720/0x2370 [ 114.289527][ T7141] ? generic_write_checks+0x3d8/0x490 [ 114.294736][ T7141] ext4_buffered_write_iter+0x49b/0x630 [ 114.300202][ T7141] ext4_file_write_iter+0x456/0x1dc0 [ 114.305323][ T7141] ? kstrtol_from_user+0x310/0x310 [ 114.310268][ T7141] ? avc_policy_seqno+0x1b/0x70 [ 114.314967][ T7141] ? selinux_file_permission+0x2ae/0x520 [ 114.320428][ T7141] ? ext4_file_read_iter+0x4b0/0x4b0 [ 114.325544][ T7141] ? iov_iter_init+0x53/0x180 [ 114.330057][ T7141] vfs_write+0xc8d/0x1050 [ 114.334231][ T7141] ? vmacache_update+0xb7/0x120 [ 114.338912][ T7141] ? file_end_write+0x1b0/0x1b0 [ 114.343594][ T7141] ? mutex_lock+0xb6/0x130 [ 114.347857][ T7141] ? wait_for_completion_killable_timeout+0x10/0x10 [ 114.354271][ T7141] ? __fdget_pos+0x26d/0x310 [ 114.358697][ T7141] ? ksys_write+0x77/0x2c0 [ 114.362960][ T7141] ksys_write+0x198/0x2c0 [ 114.367116][ T7141] ? __ia32_sys_read+0x90/0x90 [ 114.371718][ T7141] ? debug_smp_processor_id+0x17/0x20 [ 114.376931][ T7141] __x64_sys_write+0x7b/0x90 [ 114.381382][ T7141] do_syscall_64+0x44/0xd0 [ 114.385604][ T7141] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 114.391329][ T7141] RIP: 0033:0x7f6a990585a9 [ 114.395585][ T7141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 114.415025][ T7141] RSP: 002b:00007f6a97dcc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 114.423272][ T7141] RAX: ffffffffffffffda RBX: 00007f6a99178f80 RCX: 00007f6a990585a9 [ 114.431082][ T7141] RDX: 000000000000fdef RSI: 0000000020000180 RDI: 0000000000000005 13:52:42 executing program 4: r0 = getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = getpid() perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x7a, 0x6, 0x0, 0x6, 0x0, 0x8000000000000001, 0x8, 0x8, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3f, 0x1, @perf_bp={&(0x7f0000000040), 0xa}, 0x2040, 0x1000, 0x70c7, 0x9, 0x4, 0x9, 0x6, 0x0, 0x4, 0x0, 0x9}, r2, 0x9, 0xffffffffffffffff, 0xc) 13:52:42 executing program 0: r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000400)={0x4, 0x80, 0x0, 0x26, 0x6, 0x91, 0x0, 0x9, 0xa08, 0x8, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4, @perf_config_ext={0x6, 0xffffffffffffffff}, 0x8400, 0xfffffffffffffffd, 0x7, 0x7, 0x1, 0x2, 0x49, 0x0, 0x200, 0x0, 0x6}, 0x0, 0x4, r0, 0x1) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000000)='\\@-&.[:\x00') syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000380)='svc_unregister\x00'}, 0x10) r2 = syz_clone(0x18c2080, 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0) syz_open_procfs$namespace(r2, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x61, 0x52, 0x9, 0x1, 0x0, 0x4, 0x800, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0xff, 0x7}, 0x838, 0x4, 0x5, 0x2, 0x5, 0x80000000, 0x0, 0x0, 0x25d, 0x0, 0x74}, r2, 0xe, r0, 0x8) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="5d525ba2b9b33078d31bba5999f4db13220d4e7c05c55a8095cf58c505932ca36f0c9cbc469ac70aa40ccc20af1f3e4bbe4df5f03ffe1864b9fba5729e621d72f2c5fa9b586f2106a4e0947ed0af3a9e6df2fef417a85565320a99650cdb684e417ba4c9642be1c30570e98a8257d67aa3fc737ba771a32ba2cc767857c3d49e1be3c9e21be2edb54055b77816f2e844f97aeb1c6beae78e863a006e50cfc8f08cf49126f6b2d6eeece5a28d826df956af06926e6bab4503bbf892ef880b8745c0b18a064b2e5a0932e769a79aa5ee32f6b04a8e125c879794618e7c9ec8d2de3cc74c3f12208f69b5"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r3}, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000500)='blkio.throttle.io_serviced\x00', 0x0, 0x0) r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8) write$cgroup_int(r5, &(0x7f00000001c0), 0xfffffdef) perf_event_open$cgroup(&(0x7f0000000480)={0x3, 0x80, 0x4, 0x5, 0x5, 0xff, 0x0, 0xfffffffffffffffb, 0x0, 0x7, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x7, 0x101}, 0x101, 0x40, 0x1, 0x8, 0x3260d9e6, 0x2, 0x5, 0x0, 0x1, 0x0, 0x401}, r5, 0xfffffffffffffffd, r0, 0x8) perf_event_open(&(0x7f00000002c0)={0x3, 0x80, 0x3, 0x40, 0xf8, 0x3, 0x0, 0x6be, 0x2012, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x20, 0x4, @perf_bp={&(0x7f0000000280), 0x2}, 0x420, 0x0, 0x878, 0x6, 0x100, 0xfff, 0xc6, 0x0, 0x6b6, 0x0, 0x4}, 0x0, 0xb, r1, 0x8) syz_clone(0x8200000, &(0x7f0000000100)="0848938901443d947a90", 0xa, &(0x7f0000000140), &(0x7f0000000200), &(0x7f0000000240)="1900b1fd44ccdc8719d5e65048ebe7448d77301414669d3ada95bfa73c48f8f34b21") write$cgroup_int(0xffffffffffffffff, &(0x7f00000001c0), 0xfffffdef) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="9eb6538433eab7d1be21ceff66b71b3f8a5d6bf4cfb06791689b819bb53fdb5f6ac659e28862018000005b47cea053959656634bd2ea38419e7350fbe70427774e3175d848e8af1fea9d142b0000000000e26607816074fe5a7633e6b18e55dca702039e980109192b00000000000000004555b766a9881b65d0082b9b6adf0b7cca77fa231f00"/147], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r6}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x17, 0xb, &(0x7f0000000540)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x2f7}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x1}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @ldst={0x0, 0x0, 0x2, 0x1, 0x8, 0xc, 0xfffffffffffffff0}, @ldst={0x3, 0x0, 0x6, 0x8, 0x9, 0x200, 0xffffffffffffffff}, @cb_func={0x18, 0x4, 0x4, 0x0, 0x4}, @map_val={0x18, 0x2, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3ff}], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x8, '\x00', 0x0, 0x29, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0xa, 0x4}, 0x8, 0x10, &(0x7f0000000640)={0x5, 0xa, 0x5, 0x6}, 0x10, 0x0, r6}, 0x80) 13:52:42 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) (fail_nth: 7) [ 114.438891][ T7141] RBP: 00007f6a97dcc1d0 R08: 0000000000000000 R09: 0000000000000000 [ 114.446702][ T7141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 114.454516][ T7141] R13: 00007ffe68dec34f R14: 00007f6a97dcc300 R15: 0000000000022000 [ 114.462330][ T7141] 13:52:42 executing program 4: r0 = getpid() bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) r2 = getpid() perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x7a, 0x6, 0x0, 0x6, 0x0, 0x8000000000000001, 0x8, 0x8, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3f, 0x1, @perf_bp={&(0x7f0000000040), 0xa}, 0x2040, 0x1000, 0x70c7, 0x9, 0x4, 0x9, 0x6, 0x0, 0x4, 0x0, 0x9}, r2, 0x9, 0xffffffffffffffff, 0xc) getpid() (async) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r1, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) (async) getpid() (async) perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x7a, 0x6, 0x0, 0x6, 0x0, 0x8000000000000001, 0x8, 0x8, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3f, 0x1, @perf_bp={&(0x7f0000000040), 0xa}, 0x2040, 0x1000, 0x70c7, 0x9, 0x4, 0x9, 0x6, 0x0, 0x4, 0x0, 0x9}, r2, 0x9, 0xffffffffffffffff, 0xc) (async) 13:52:42 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 85) 13:52:42 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x93, &(0x7f0000000080)='=\x98Q\x18\xec\xe5\xc2J\x82\x1f\xfa\xf7\xe28\xc7\x15y`\xe7]\xcc\xcf9\xd1\xe8|?\xa9\xc3\xf1\xa4J\xde\x1a\xaf\xdf\xcem\xe2\x196R\xd1\xfc\x84\x0f\xdf\xe2z\x18\xcb\xf1\xe2%\x03{\xcd\xc7\xe0\xe6\x83\xf4\x81B\x05XJ\"\xdd\xd8UF\r\xf3i|\x86\b\xefX\x8eA-\x13\xb7\"_\xe9e;y\xbd\\y\xba\x01r\xb6O\xae@\x1aG{n\xb6M\x05\x15\xa0:\x9e\n_;dI^\x9b\x93}\x01N\xe4x\x0e$\xc7U\xc52\x9d\x03\xff\xc2\xcd9\xad\xbc-\xe2\xe4\xff\x84Q\xe6|'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r0, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f0000000180)={0x3, 0x80, 0x92, 0x1, 0xb, 0xef, 0x0, 0x4, 0x4, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_config_ext={0x2, 0x1cd}, 0x40000, 0x8000, 0xefe9, 0x4, 0x10001, 0x0, 0x7ff, 0x0, 0x3, 0x0, 0xbb12}, r2, 0xa, 0xffffffffffffffff, 0x3) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0) [ 114.526490][ T7177] FAULT_INJECTION: forcing a failure. [ 114.526490][ T7177] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 114.543972][ T7177] CPU: 0 PID: 7177 Comm: syz-executor.1 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 114.555348][ T7177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 114.565240][ T7177] Call Trace: [ 114.568365][ T7177] [ 114.571143][ T7177] dump_stack_lvl+0x151/0x1b7 [ 114.575652][ T7177] ? bfq_pos_tree_add_move+0x43e/0x43e [ 114.580950][ T7177] ? percpu_counter_add_batch+0x13d/0x160 [ 114.586505][ T7177] dump_stack+0x15/0x17 [ 114.590498][ T7177] should_fail+0x3c0/0x510 [ 114.594751][ T7177] should_fail_alloc_page+0x58/0x70 [ 114.599785][ T7177] __alloc_pages+0x1de/0x7c0 [ 114.604210][ T7177] ? __count_vm_events+0x30/0x30 [ 114.608984][ T7177] ? _raw_spin_lock+0xa3/0x1b0 [ 114.613580][ T7177] ? xas_load+0x2c7/0x2e0 [ 114.617745][ T7177] pagecache_get_page+0xa60/0xdb0 [ 114.622606][ T7177] ? page_cache_prev_miss+0x430/0x430 [ 114.627812][ T7177] ? __kasan_check_write+0x14/0x20 [ 114.632761][ T7177] grab_cache_page_write_begin+0x5c/0xa0 [ 114.638226][ T7177] ext4_da_write_begin+0x5c1/0xbf0 [ 114.643176][ T7177] ? ext4_set_page_dirty+0x1a0/0x1a0 [ 114.648303][ T7177] ? fault_in_readable+0x1db/0x2e0 [ 114.653245][ T7177] ? fault_in_safe_writeable+0x240/0x240 [ 114.658710][ T7177] ? fault_in_iov_iter_readable+0x1bb/0x210 [ 114.664440][ T7177] generic_perform_write+0x2cd/0x5d0 [ 114.669561][ T7177] ? grab_cache_page_write_begin+0xa0/0xa0 [ 114.675210][ T7177] ? down_write+0xdd/0x140 [ 114.679452][ T7177] ? down_read_killable+0x250/0x250 [ 114.684492][ T7177] ? do_handle_mm_fault+0x1720/0x2370 [ 114.689695][ T7177] ? generic_write_checks+0x3d8/0x490 [ 114.694902][ T7177] ext4_buffered_write_iter+0x49b/0x630 [ 114.700288][ T7177] ext4_file_write_iter+0x456/0x1dc0 [ 114.705405][ T7177] ? kstrtol_from_user+0x310/0x310 [ 114.710353][ T7177] ? avc_policy_seqno+0x1b/0x70 [ 114.715037][ T7177] ? selinux_file_permission+0x2ae/0x520 [ 114.720504][ T7177] ? ext4_file_read_iter+0x4b0/0x4b0 [ 114.725634][ T7177] ? iov_iter_init+0x53/0x180 [ 114.730143][ T7177] vfs_write+0xc8d/0x1050 [ 114.734305][ T7177] ? vmacache_update+0xb7/0x120 [ 114.738992][ T7177] ? file_end_write+0x1b0/0x1b0 [ 114.743680][ T7177] ? mutex_lock+0xb6/0x130 [ 114.747931][ T7177] ? wait_for_completion_killable_timeout+0x10/0x10 [ 114.754354][ T7177] ? __fdget_pos+0x26d/0x310 [ 114.758783][ T7177] ? ksys_write+0x77/0x2c0 [ 114.763032][ T7177] ksys_write+0x198/0x2c0 [ 114.767200][ T7177] ? __ia32_sys_read+0x90/0x90 [ 114.771801][ T7177] ? debug_smp_processor_id+0x17/0x20 [ 114.777007][ T7177] __x64_sys_write+0x7b/0x90 [ 114.781432][ T7177] do_syscall_64+0x44/0xd0 [ 114.785687][ T7177] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 114.791414][ T7177] RIP: 0033:0x7f6a990585a9 [ 114.795670][ T7177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 114.815109][ T7177] RSP: 002b:00007f6a97dcc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 114.823357][ T7177] RAX: ffffffffffffffda RBX: 00007f6a99178f80 RCX: 00007f6a990585a9 [ 114.831165][ T7177] RDX: 000000000000fdef RSI: 0000000020000180 RDI: 0000000000000005 [ 114.838973][ T7177] RBP: 00007f6a97dcc1d0 R08: 0000000000000000 R09: 0000000000000000 [ 114.846787][ T7177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 114.854599][ T7177] R13: 00007ffe68dec34f R14: 00007f6a97dcc300 R15: 0000000000022000 [ 114.862414][ T7177] [ 114.870173][ T7191] FAULT_INJECTION: forcing a failure. [ 114.870173][ T7191] name failslab, interval 1, probability 0, space 0, times 0 [ 114.883657][ T7191] CPU: 1 PID: 7191 Comm: syz-executor.2 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 114.895039][ T7191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 114.904935][ T7191] Call Trace: [ 114.908057][ T7191] [ 114.910834][ T7191] dump_stack_lvl+0x151/0x1b7 [ 114.915350][ T7191] ? bfq_pos_tree_add_move+0x43e/0x43e [ 114.920644][ T7191] dump_stack+0x15/0x17 [ 114.924634][ T7191] should_fail+0x3c0/0x510 [ 114.928887][ T7191] __should_failslab+0x9f/0xe0 [ 114.933486][ T7191] should_failslab+0x9/0x20 [ 114.937828][ T7191] kmem_cache_alloc+0x4f/0x2f0 [ 114.942428][ T7191] ? anon_vma_clone+0xa1/0x4f0 [ 114.947027][ T7191] anon_vma_clone+0xa1/0x4f0 [ 114.951456][ T7191] anon_vma_fork+0x91/0x4f0 [ 114.955791][ T7191] ? anon_vma_name+0x4c/0x70 [ 114.960220][ T7191] dup_mmap+0x750/0xea0 [ 114.964213][ T7191] ? __delayed_free_task+0x20/0x20 [ 114.969159][ T7191] ? mm_init+0x807/0x960 [ 114.973238][ T7191] dup_mm+0x91/0x330 [ 114.976973][ T7191] copy_mm+0x108/0x1b0 [ 114.980878][ T7191] copy_process+0x1295/0x3250 [ 114.985390][ T7191] ? proc_fail_nth_write+0x213/0x290 [ 114.990509][ T7191] ? proc_fail_nth_read+0x220/0x220 [ 114.995543][ T7191] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 115.000492][ T7191] ? vfs_write+0x9af/0x1050 [ 115.004846][ T7191] ? vmacache_update+0xb7/0x120 [ 115.009523][ T7191] kernel_clone+0x22d/0x990 [ 115.013859][ T7191] ? file_end_write+0x1b0/0x1b0 [ 115.018633][ T7191] ? __kasan_check_write+0x14/0x20 [ 115.023583][ T7191] ? create_io_thread+0x1e0/0x1e0 [ 115.028435][ T7191] ? __mutex_lock_slowpath+0x10/0x10 [ 115.033554][ T7191] __x64_sys_clone+0x289/0x310 [ 115.038154][ T7191] ? __do_sys_vfork+0x130/0x130 [ 115.042842][ T7191] ? debug_smp_processor_id+0x17/0x20 [ 115.048050][ T7191] do_syscall_64+0x44/0xd0 [ 115.052300][ T7191] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 115.058031][ T7191] RIP: 0033:0x7f35007595a9 [ 115.062284][ T7191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 115.081723][ T7191] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 115.089968][ T7191] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 115.097797][ T7191] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 115.105591][ T7191] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 115.113403][ T7191] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 115.121214][ T7191] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 115.129028][ T7191] 13:52:44 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x3, 0x1, 0xe0, 0xff, 0x0, 0x7, 0x10000, 0x4, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0xdf2, 0x2, @perf_config_ext={0x100, 0x18}, 0x220, 0x8, 0x7f, 0x4, 0x7, 0x857, 0xfeff, 0x0, 0x7fffffff, 0x0, 0x7}, r0, 0x0, 0xffffffffffffffff, 0x8) 13:52:44 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x93, &(0x7f0000000080)='=\x98Q\x18\xec\xe5\xc2J\x82\x1f\xfa\xf7\xe28\xc7\x15y`\xe7]\xcc\xcf9\xd1\xe8|?\xa9\xc3\xf1\xa4J\xde\x1a\xaf\xdf\xcem\xe2\x196R\xd1\xfc\x84\x0f\xdf\xe2z\x18\xcb\xf1\xe2%\x03{\xcd\xc7\xe0\xe6\x83\xf4\x81B\x05XJ\"\xdd\xd8UF\r\xf3i|\x86\b\xefX\x8eA-\x13\xb7\"_\xe9e;y\xbd\\y\xba\x01r\xb6O\xae@\x1aG{n\xb6M\x05\x15\xa0:\x9e\n_;dI^\x9b\x93}\x01N\xe4x\x0e$\xc7U\xc52\x9d\x03\xff\xc2\xcd9\xad\xbc-\xe2\xe4\xff\x84Q\xe6|'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r0, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x0, 0x0) (async) perf_event_open$cgroup(&(0x7f0000000180)={0x3, 0x80, 0x92, 0x1, 0xb, 0xef, 0x0, 0x4, 0x4, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_config_ext={0x2, 0x1cd}, 0x40000, 0x8000, 0xefe9, 0x4, 0x10001, 0x0, 0x7ff, 0x0, 0x3, 0x0, 0xbb12}, r2, 0xa, 0xffffffffffffffff, 0x3) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0) 13:52:44 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x1) (async) r1 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000006c0)={0x4, 0x80, 0x0, 0x7, 0x3f, 0x7, 0x0, 0x8000000000000001, 0x24010, 0xd, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7, 0x2, @perf_bp={&(0x7f0000000680), 0x8}, 0x2a400, 0x4, 0x20, 0x3, 0x3, 0x3, 0x22, 0x0, 0x40, 0x0, 0x8000000000000000}, 0x0, 0xb, 0xffffffffffffffff, 0xb) (async, rerun: 32) ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x0) (async, rerun: 32) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async) perf_event_open(&(0x7f0000000740)={0x1, 0x80, 0x6, 0x41, 0x2, 0x0, 0x0, 0x6, 0x1080, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x2, @perf_config_ext={0x5, 0x3}, 0x4, 0x27c, 0x80000001, 0x8, 0x2, 0x5, 0x4, 0x0, 0x100, 0x0, 0x1}, 0x0, 0xc, r0, 0x1) (async) bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0) (async) bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000200)=0x7) (async) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x35af000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) (async, rerun: 64) r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000280)={0x0, 0x7, 0x10}, 0xc) (rerun: 64) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000640)={r3, &(0x7f00000002c0)="fa48060dc8f1d5f9ba279591d8847046f96eb2734270c9d3d048f509603c28628a3f409d65ebdd3ee5e5549b86422acf8f81064fb2e5b385781b39873e", &(0x7f0000000540)=""/233}, 0x20) (async) r4 = perf_event_open$cgroup(&(0x7f0000000300)={0x2, 0x80, 0x3, 0x0, 0x8, 0x3, 0x0, 0x0, 0x80, 0x4, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x9}, 0x1, 0x20, 0x4, 0x0, 0x1, 0x6, 0x86, 0x0, 0x9, 0x0, 0x7}, 0xffffffffffffffff, 0x200000000000000e, r2, 0x4) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0xd2, 0x2, 0x8, 0x3, 0x0, 0x9, 0x90000, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffffffb, 0x2, @perf_config_ext={0x7}, 0x222, 0x9, 0xffff, 0x4, 0x49, 0x282, 0x3a, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x2, r4, 0x1) (async) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (async) r5 = syz_clone(0x40002000, &(0x7f0000000380)="e947410d47175682afb85300f3b8cf66ac5ed9a7b99db76a578b64ac4bac112933b54542882fcd9133a29c67c9e216893565427246daf3ba9dcde352e366b2298f286042f4282292cf53cb14264fdca21dc892b7526de02294aa06c9e4ff002f1de4889b58d91ab527d0398c92361a557f02176f45767f2e98b11c3923f5a335e8dc09fef1b196cc5a5ae586cd057e45b57ef7ebd5713ddf439092d07fe586f49c1f1531fcf6aae967397ed41dc34ad0fbc5a15c295817423422e2625b8f778ce456883e5674ae1fbd", 0xc9, &(0x7f0000000000), &(0x7f0000000240), &(0x7f0000000480)="1a2791915632ed364361ffdb660f333f67cdcc53453469a8cabb8c4d58f7c3d7d20627c2bb81e25b6fc57c9bf4fb1a78c5c5a318e3f7bea198f95e46d92985e3408d73bd5fd106bd285c3bdc9fc024ddbfd9d47b7c8d7c2aeec81620bb5d285212f4a00c69b0adebbf1e06d728431fb89dd0c75a7ae8fa4d3fb6225d273738bb5b5eb7e9ee2113f08db6ee2699bc41647b8394") perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x57, 0xe1, 0x3, 0x0, 0x0, 0x375, 0x200, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x101, 0x0, @perf_config_ext={0x3, 0x3}, 0x1, 0x2, 0xfffffffd, 0x9, 0x80000001, 0x400, 0x0, 0x0, 0x5, 0x0, 0x26}, r5, 0xf, r1, 0x2) 13:52:44 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x37c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0xff, 0x7f, 0x9, 0x1, 0x0, 0x2, 0xc, 0x8, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0x3f, 0x3f}, 0x4008, 0x3, 0x4d6, 0x4, 0x800, 0x1, 0xd69, 0x0, 0x3, 0x0, 0x4}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0x8) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000002000)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x4, 0x1076, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) r2 = perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x7, 0x4, 0xdb, 0x7e, 0x0, 0xc59, 0x88200, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000000), 0x8}, 0x200, 0x4, 0x0, 0x5, 0x7f, 0x3ff, 0x16e, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x9, r0, 0x6) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000200)=0x80000001) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x403, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 13:52:44 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x74809480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) (fail_nth: 86) 13:52:44 executing program 1: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r1}, 0x10) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000100000300"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x80) r5 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='mm_page_alloc\x00', r4}, 0x10) bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r5}, 0x8) close(r5) write$cgroup_int(r3, &(0x7f00000001c0), 0xfffffdef) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'dvmrp1\x00', 0x1000}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) r6 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x7a05, 0x1700) r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x48101, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)={&(0x7f0000000440)='.\x00', 0x0, 0x10}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1b, 0x5, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f00000000c0)='syzkaller\x00', 0x2, 0x63, &(0x7f0000000240)=""/99, 0x41000, 0x25, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x6, 0x2}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0x1, 0x9, 0x6}, 0x10, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000004c0)=[0xffffffffffffffff, r7, r6, r8, r6]}, 0x80) r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_int(r9, &(0x7f0000000200), 0x23000) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r10, &(0x7f0000000180), 0xfdef) (fail_nth: 8) 13:52:44 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x93, &(0x7f0000000080)='=\x98Q\x18\xec\xe5\xc2J\x82\x1f\xfa\xf7\xe28\xc7\x15y`\xe7]\xcc\xcf9\xd1\xe8|?\xa9\xc3\xf1\xa4J\xde\x1a\xaf\xdf\xcem\xe2\x196R\xd1\xfc\x84\x0f\xdf\xe2z\x18\xcb\xf1\xe2%\x03{\xcd\xc7\xe0\xe6\x83\xf4\x81B\x05XJ\"\xdd\xd8UF\r\xf3i|\x86\b\xefX\x8eA-\x13\xb7\"_\xe9e;y\xbd\\y\xba\x01r\xb6O\xae@\x1aG{n\xb6M\x05\x15\xa0:\x9e\n_;dI^\x9b\x93}\x01N\xe4x\x0e$\xc7U\xc52\x9d\x03\xff\xc2\xcd9\xad\xbc-\xe2\xe4\xff\x84Q\xe6|'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_ro(r0, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f0000000180)={0x3, 0x80, 0x92, 0x1, 0xb, 0xef, 0x0, 0x4, 0x4, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_config_ext={0x2, 0x1cd}, 0x40000, 0x8000, 0xefe9, 0x4, 0x10001, 0x0, 0x7ff, 0x0, 0x3, 0x0, 0xbb12}, r2, 0xa, 0xffffffffffffffff, 0x3) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x93, &(0x7f0000000080)='=\x98Q\x18\xec\xe5\xc2J\x82\x1f\xfa\xf7\xe28\xc7\x15y`\xe7]\xcc\xcf9\xd1\xe8|?\xa9\xc3\xf1\xa4J\xde\x1a\xaf\xdf\xcem\xe2\x196R\xd1\xfc\x84\x0f\xdf\xe2z\x18\xcb\xf1\xe2%\x03{\xcd\xc7\xe0\xe6\x83\xf4\x81B\x05XJ\"\xdd\xd8UF\r\xf3i|\x86\b\xefX\x8eA-\x13\xb7\"_\xe9e;y\xbd\\y\xba\x01r\xb6O\xae@\x1aG{n\xb6M\x05\x15\xa0:\x9e\n_;dI^\x9b\x93}\x01N\xe4x\x0e$\xc7U\xc52\x9d\x03\xff\xc2\xcd9\xad\xbc-\xe2\xe4\xff\x84Q\xe6|'}, 0x30) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async) openat$cgroup_int(r0, &(0x7f0000000000)='hugetlb.1GB.max_usage_in_bytes\x00', 0x2, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) (async) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) (async) openat$cgroup_ro(r0, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x0, 0x0) (async) perf_event_open$cgroup(&(0x7f0000000180)={0x3, 0x80, 0x92, 0x1, 0xb, 0xef, 0x0, 0x4, 0x4, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_config_ext={0x2, 0x1cd}, 0x40000, 0x8000, 0xefe9, 0x4, 0x10001, 0x0, 0x7ff, 0x0, 0x3, 0x0, 0xbb12}, r2, 0xa, 0xffffffffffffffff, 0x3) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0) (async) [ 115.876267][ T7199] FAULT_INJECTION: forcing a failure. [ 115.876267][ T7199] name failslab, interval 1, probability 0, space 0, times 0 [ 115.912429][ T7208] FAULT_INJECTION: forcing a failure. [ 115.912429][ T7208] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 115.913013][ T7199] CPU: 1 PID: 7199 Comm: syz-executor.2 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 115.936778][ T7199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 115.946667][ T7199] Call Trace: [ 115.949792][ T7199] [ 115.952571][ T7199] dump_stack_lvl+0x151/0x1b7 [ 115.957082][ T7199] ? bfq_pos_tree_add_move+0x43e/0x43e [ 115.962378][ T7199] ? vma_interval_tree_augment_rotate+0x210/0x210 [ 115.968623][ T7199] dump_stack+0x15/0x17 [ 115.972616][ T7199] should_fail+0x3c0/0x510 [ 115.976873][ T7199] __should_failslab+0x9f/0xe0 [ 115.981483][ T7199] should_failslab+0x9/0x20 [ 115.985807][ T7199] kmem_cache_alloc+0x4f/0x2f0 [ 115.990409][ T7199] ? anon_vma_fork+0xf7/0x4f0 [ 115.994924][ T7199] anon_vma_fork+0xf7/0x4f0 [ 115.999262][ T7199] ? anon_vma_name+0x43/0x70 [ 116.003689][ T7199] dup_mmap+0x750/0xea0 [ 116.007749][ T7199] ? __delayed_free_task+0x20/0x20 [ 116.012637][ T7199] ? mm_init+0x807/0x960 [ 116.016708][ T7199] dup_mm+0x91/0x330 [ 116.020442][ T7199] copy_mm+0x108/0x1b0 [ 116.024346][ T7199] copy_process+0x1295/0x3250 [ 116.028860][ T7199] ? proc_fail_nth_write+0x213/0x290 [ 116.033981][ T7199] ? proc_fail_nth_read+0x220/0x220 [ 116.039015][ T7199] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 116.043960][ T7199] ? vfs_write+0x9af/0x1050 [ 116.048297][ T7199] ? vmacache_update+0xb7/0x120 [ 116.052988][ T7199] kernel_clone+0x22d/0x990 [ 116.057327][ T7199] ? file_end_write+0x1b0/0x1b0 [ 116.062015][ T7199] ? __kasan_check_write+0x14/0x20 [ 116.066963][ T7199] ? create_io_thread+0x1e0/0x1e0 [ 116.071820][ T7199] ? __mutex_lock_slowpath+0x10/0x10 [ 116.076942][ T7199] __x64_sys_clone+0x289/0x310 [ 116.081542][ T7199] ? __do_sys_vfork+0x130/0x130 [ 116.086229][ T7199] ? debug_smp_processor_id+0x17/0x20 [ 116.091437][ T7199] do_syscall_64+0x44/0xd0 [ 116.095691][ T7199] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 116.101415][ T7199] RIP: 0033:0x7f35007595a9 [ 116.105681][ T7199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 116.125111][ T7199] RSP: 002b:00007f34ff4cd118 EFLAGS: 00000202 ORIG_RAX: 0000000000000038 [ 116.133363][ T7199] RAX: ffffffffffffffda RBX: 00007f3500879f80 RCX: 00007f35007595a9 [ 116.141170][ T7199] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000074809480 [ 116.148979][ T7199] RBP: 00007f34ff4cd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 116.156788][ T7199] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000002 [ 116.164603][ T7199] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 116.172416][ T7199] [ 116.175277][ T7208] CPU: 0 PID: 7208 Comm: syz-executor.1 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 116.186647][ T7208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 116.196540][ T7208] Call Trace: [ 116.199665][ T7208] [ 116.202442][ T7208] dump_stack_lvl+0x151/0x1b7 [ 116.206954][ T7208] ? bfq_pos_tree_add_move+0x43e/0x43e [ 116.212253][ T7208] ? ext4_da_write_begin+0x7d5/0xbf0 [ 116.217369][ T7208] dump_stack+0x15/0x17 [ 116.221360][ T7208] should_fail+0x3c0/0x510 [ 116.225626][ T7208] should_fail_usercopy+0x1a/0x20 [ 116.230472][ T7208] copy_page_from_iter_atomic+0x433/0x11c0 [ 116.236117][ T7208] ? pipe_zero+0x4d0/0x4d0 [ 116.240368][ T7208] ? fault_in_iov_iter_readable+0x1bb/0x210 [ 116.246104][ T7208] generic_perform_write+0x343/0x5d0 [ 116.251217][ T7208] ? grab_cache_page_write_begin+0xa0/0xa0 [ 116.256858][ T7208] ? down_write+0xdd/0x140 [ 116.261110][ T7208] ? down_read_killable+0x250/0x250 [ 116.266147][ T7208] ? do_handle_mm_fault+0x1720/0x2370 [ 116.271351][ T7208] ? generic_write_checks+0x3d8/0x490 [ 116.276561][ T7208] ext4_buffered_write_iter+0x49b/0x630 [ 116.281944][ T7208] ext4_file_write_iter+0x456/0x1dc0 [ 116.287060][ T7208] ? kstrtol_from_user+0x310/0x310 [ 116.292009][ T7208] ? avc_policy_seqno+0x1b/0x70 [ 116.296698][ T7208] ? selinux_file_permission+0x2ae/0x520 [ 116.302180][ T7208] ? ext4_file_read_iter+0x4b0/0x4b0 [ 116.307285][ T7208] ? iov_iter_init+0x53/0x180 [ 116.311799][ T7208] vfs_write+0xc8d/0x1050 [ 116.315969][ T7208] ? vmacache_update+0xb7/0x120 [ 116.320685][ T7208] ? file_end_write+0x1b0/0x1b0 [ 116.325345][ T7208] ? mutex_lock+0xb6/0x130 [ 116.329592][ T7208] ? wait_for_completion_killable_timeout+0x10/0x10 [ 116.336015][ T7208] ? __fdget_pos+0x26d/0x310 [ 116.340446][ T7208] ? ksys_write+0x77/0x2c0 [ 116.344691][ T7208] ksys_write+0x198/0x2c0 [ 116.348858][ T7208] ? __ia32_sys_read+0x90/0x90 [ 116.353457][ T7208] ? debug_smp_processor_id+0x17/0x20 [ 116.358666][ T7208] __x64_sys_write+0x7b/0x90 [ 116.363096][ T7208] do_syscall_64+0x44/0xd0 [ 116.367344][ T7208] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 116.373072][ T7208] RIP: 0033:0x7f6a990585a9 [ 116.377326][ T7208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 116.396764][ T7208] RSP: 002b:00007f6a97dcc168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 116.405011][ T7208] RAX: ffffffffffffffda RBX: 00007f6a99178f80 RCX: 00007f6a990585a9 [ 116.412820][ T7208] RDX: 000000000000fdef RSI: 0000000020000180 RDI: 0000000000000005 [ 116.420633][ T7208] RBP: 00007f6a97dcc1d0 R08: 0000000000000000 R09: 0000000000000000 13:52:44 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x200002, 0x0) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) 13:52:44 executing program 3: socketpair$tipc(0x1e, 0x0, 0x0, 0x0) recvmsg(0xffffffffffffffff, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x34808480, 0x0, 0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, 0x0) perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x2) 13:52:44 executing program 4: bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000440)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000340)='cgroup.max.descendants\x00', 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x200002, 0x0) (async) write$cgroup_int(r1, &(0x7f0000000040)=0xffffffffffffffff, 0x12) [ 116.428447][ T7208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 116.436258][ T7208] R13: 00007ffe68dec34f R14: 00007f6a97dcc300 R15: 0000000000022000 [ 116.444072][ T7208] [ 116.467361][ T7199] general protection fault, probably for non-canonical address 0xe24f060b1ffff110: 0000 [#1] PREEMPT SMP KASAN 13:52:44 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x37c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0xff, 0x7f, 0x9, 0x1, 0x0, 0x2, 0xc, 0x8, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0x3f, 0x3f}, 0x4008, 0x3, 0x4d6, 0x4, 0x800, 0x1, 0xd69, 0x0, 0x3, 0x0, 0x4}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0x8) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000002000)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x4, 0x1076, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) r2 = perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x7, 0x4, 0xdb, 0x7e, 0x0, 0xc59, 0x88200, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000000), 0x8}, 0x200, 0x4, 0x0, 0x5, 0x7f, 0x3ff, 0x16e, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x9, r0, 0x6) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000200)=0x80000001) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x403, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x37c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0xff, 0x7f, 0x9, 0x1, 0x0, 0x2, 0xc, 0x8, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0x3f, 0x3f}, 0x4008, 0x3, 0x4d6, 0x4, 0x800, 0x1, 0xd69, 0x0, 0x3, 0x0, 0x4}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0x8) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000002000)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x4, 0x1076, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) (async) perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x7, 0x4, 0xdb, 0x7e, 0x0, 0xc59, 0x88200, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3f, 0x2, @perf_bp={&(0x7f0000000000), 0x8}, 0x200, 0x4, 0x0, 0x5, 0x7f, 0x3ff, 0x16e, 0x0, 0x0, 0x0, 0x5}, 0xffffffffffffffff, 0x9, r0, 0x6) (async) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000200)=0x80000001) (async) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x403, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) (async) [ 116.478906][ T7199] KASAN: maybe wild-memory-access in range [0x12785058ffff8880-0x12785058ffff8887] [ 116.488023][ T7199] CPU: 0 PID: 7199 Comm: syz-executor.2 Tainted: G B 5.15.74-syzkaller-04383-g7f2e600bf63a #0 [ 116.499387][ T7199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 116.509281][ T7199] RIP: 0010:__rb_erase_color+0x6c/0xb60 [ 116.514659][ T7199] Code: e8 09 05 2d ff 4c 8b 23 4d 39 e6 4c 89 6d c8 0f 84 79 01 00 00 48 89 5d c0 4c 89 e3 48 c1 eb 03 48 b8 00 00 00 00 00 fc ff df <80> 3c 03 00 74 08 4c 89 e7 e8 d6 04 2d ff 41 f6 04 24 01 4c 89 7d [ 116.534102][ T7199] RSP: 0018:ffffc90006437728 EFLAGS: 00010202 [ 116.540007][ T7199] RAX: dffffc0000000000 RBX: 024f0a0b1ffff110 RCX: dffffc0000000000 [ 116.547813][ T7199] RDX: ffffffff81a6fa00 RSI: ffff88810b66f828 RDI: ffff888112785058 [ 116.555627][ T7199] RBP: ffffc90006437788 R08: ffffffff81a6db99 R09: ffffed10216cdf09 [ 116.563443][ T7199] R10: ffffed10216cdf09 R11: 1ffff110216cdf08 R12: 12785058ffff8881 [ 116.571350][ T7199] R13: ffff88810bec9994 R14: ffff888112785058 R15: 1ffff110217d9333 [ 116.579235][ T7199] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 116.588002][ T7199] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.594422][ T7199] CR2: 00007f2cb1aab3be CR3: 0000000135f5f000 CR4: 00000000003506b0 [ 116.602236][ T7199] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 116.610044][ T7199] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 [ 116.617860][ T7199] Call Trace: [ 116.620980][ T7199] [ 116.623759][ T7199] ? anon_vma_interval_tree_iter_next+0x3b0/0x3b0 [ 116.630008][ T7199] ? down_write+0xdd/0x140 [ 116.634258][ T7199] vma_interval_tree_remove+0xa66/0xa80 [ 116.639642][ T7199] unlink_file_vma+0xd9/0xf0 [ 116.644066][ T7199] free_pgtables+0x13b/0x210 [ 116.648492][ T7199] exit_mmap+0x466/0x7a0 [ 116.652579][ T7199] ? exit_aio+0x270/0x3b0 [ 116.656739][ T7199] ? vm_brk+0x30/0x30 [ 116.660557][ T7199] ? mutex_unlock+0xa2/0x110 [ 116.664984][ T7199] ? uprobe_clear_state+0x2c2/0x320 [ 116.670016][ T7199] __mmput+0x95/0x300 [ 116.673836][ T7199] mmput+0x50/0x60 [ 116.677480][ T7199] exit_mm+0x50d/0x760 [ 116.681386][ T7199] ? exit_itimers+0x694/0x6e0 [ 116.685902][ T7199] ? do_exit+0x24d0/0x24d0 [ 116.690153][ T7199] ? taskstats_exit+0x3a0/0xa20 [ 116.694845][ T7199] do_exit+0x63c/0x24d0 [ 116.698833][ T7199] ? get_task_struct+0x80/0x80 [ 116.703439][ T7199] ? _raw_spin_lock_irqsave+0x210/0x210 [ 116.708813][ T7199] do_group_exit+0x13a/0x300 [ 116.713240][ T7199] ? __kasan_check_write+0x14/0x20 [ 116.718365][ T7199] get_signal+0x77e/0x1600 [ 116.722618][ T7199] arch_do_signal_or_restart+0x9f/0x670 [ 116.727994][ T7199] ? get_sigframe_size+0x10/0x10 [ 116.732769][ T7199] exit_to_user_mode_loop+0xd4/0x110 [ 116.737974][ T7199] syscall_exit_to_user_mode+0x79/0xc0 [ 116.743270][ T7199] do_syscall_64+0x50/0xd0 [ 116.747523][ T7199] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 116.753248][ T7199] RIP: 0033:0x7f35007595a9 [ 116.757509][ T7199] Code: Unable to access opcode bytes at RIP 0x7f350075957f. [ 116.764793][ T7199] RSP: 002b:00007f34ff4cd218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 116.773039][ T7199] RAX: fffffffffffffe00 RBX: 00007f3500879f88 RCX: 00007f35007595a9 [ 116.780850][ T7199] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3500879f88 [ 116.788661][ T7199] RBP: 00007f3500879f80 R08: 0000000000000000 R09: 0000000000000000 [ 116.796470][ T7199] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3500879f8c [ 116.804282][ T7199] R13: 00007ffc2631eaaf R14: 00007f34ff4cd300 R15: 0000000000022000 [ 116.812105][ T7199] [ 116.814967][ T7199] Modules linked in: [ 116.819505][ T7199] ---[ end trace 1aee8973cb1ffd4a ]--- [ 116.824984][ T7199] RIP: 0010:__rb_erase_color+0x6c/0xb60 [ 116.831122][ T7199] Code: e8 09 05 2d ff 4c 8b 23 4d 39 e6 4c 89 6d c8 0f 84 79 01 00 00 48 89 5d c0 4c 89 e3 48 c1 eb 03 48 b8 00 00 00 00 00 fc ff df <80> 3c 03 00 74 08 4c 89 e7 e8 d6 04 2d ff 41 f6 04 24 01 4c 89 7d [ 116.850858][ T7199] RSP: 0018:ffffc90006437728 EFLAGS: 00010202 [ 116.857013][ T7199] RAX: dffffc0000000000 RBX: 024f0a0b1ffff110 RCX: dffffc0000000000 [ 116.864877][ T7199] RDX: ffffffff81a6fa00 RSI: ffff88810b66f828 RDI: ffff888112785058 [ 116.872986][ T7199] RBP: ffffc90006437788 R08: ffffffff81a6db99 R09: ffffed10216cdf09 [ 116.881045][ T7199] R10: ffffed10216cdf09 R11: 1ffff110216cdf08 R12: 12785058ffff8881 [ 116.889094][ T7199] R13: ffff88810bec9994 R14: ffff888112785058 R15: 1ffff110217d9333 [ 116.897140][ T7199] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 116.906186][ T7199] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 116.912664][ T7199] CR2: 00007f2cb1aab3be CR3: 0000000135f5f000 CR4: 00000000003506b0 [ 116.920711][ T7199] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 116.928747][ T7199] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 [ 116.936791][ T7199] Kernel panic - not syncing: Fatal exception [ 116.942728][ T7199] Kernel Offset: disabled [ 116.946836][ T7199] Rebooting in 86400 seconds..